aMockTie

I’m sorry to say it but now I’m even more confused.

“You’re the vulnerability”

I don’t understand how this can still happen with a well known brand in 2026. Personally the microphone is the least concerning aspect of this finding, since a Bluetooth connection would still be required. With more dedicated research, the BadUSB aspect is far more concerning in my book. Plug the speaker into a computer, even once and only to charge, and the computer is pwned? Preventing any future patching? I don’t know how I could ever trust one of these devices going forward.

I suppose that depends on your definition of a cybersecurity risk. Unfortunately it likely won’t matter to them unless it starts affecting their bottom line.

I don’t understand the purpose of your comment. That word exclusively appears twice in the twelfth paragraph, and makes complete sense in context. I think the write up is incredibly detailed but also easy to understand.

Awesome write up.

Allowing arbitrary firmware updates without any signature validation, over Bluetooth, even unpaired and in sleep mode, and without any authentication is absolutely wild and should be criminal negligence.

It took Creative nearly two months to respond to SingCERT. Unfortunately, their response was that “they do not consider this to be a vulnerability, as it does not present a cybersecurity risk”

What a foolish response. The guy wasn’t asking for money and gave them everything they would need to make a patched firmware.

Agreed.

I don’t mind paying a reasonable price for access to SSO, especially if the service is fully provided by third-party infrastructure. For something that is fully self hosted on the other hand, a recurring cost for what should be a basic (or at most a one time reasonable fee) feature feels egregious.

Yes I already do so, but this dashboard requires an enterprise license to also use OIDC.

This looks really cool, but I wish that OIDC wasn’t tied to an enterprise license that doesn’t show a price (just a contact us form and email address) and requires annual renewal.

I’d be willing to pay a reasonable one time fee to unlock OIDC support, and I understand why they charge a recurring fee for the other enterprise license features, but as it currently stands this doesn’t really make sense for a home lab.

I would argue that what has been accomplished with the Artemis missions so far has been a parallel evolution to Apollo, and not any kind of competition.

Of course technology has advanced since the late 1960s and 1970s. But the challenges of traveling safely to the moon and back again as humans are still just as treacherous. Doing something that has never been done before in the history of humanity is incredibly impressive. Doing it repeatedly, decades apart, with vastly different people and technology proves that we can continue to accomplish this task and perhaps beyond. That is equally impressive in my book.

The innovations created by the needs of space travel have regularly and constantly improved our everyday lives. There are absolutely more important things to focus on at home, but for some reason we tend to focus on the destructive actions, rather than the constructive alternatives. Space travel by public agencies like NASA have historically been a unifying force that have consistently driven positive technologies to the human species, and not just the privileged few.

The kinds of emotions and experiences that can only be imagined by the overwhelming majority of every human that has ever existed until very recently. Sights and accomplishments, discoveries and relics our shared ancestors could have only ever dreamed of.

A powerful reminder that humanity is still capable of achieving previously impossible feats when we seek to understand, instead of destroy. When we strive to push the boundaries of our collective capabilities, rather than focusing on diminishing the capabilities of others. When we work together, and don’t arbitrarily divide ourselves apart. When we, unfortunately scarcely, recognize that we are all just a fraction of a mote of dust on that otherwise insignificant pale blue dot in the distance.

Archive link.

My understanding is that focus on the mouth in social interactions is also influenced by culture. That’s why some cultures generally represented a happy face with the emoticon :) while others used ^_^

The former is focused on the mouth and the eyes lack meaningful expression, while the latter is the opposite.

They don’t mess around with their requirements either and strictly enforce them. If you don’t follow their rules and your domain is deleted, there is no refund or recourse.

That’s usually determined at the registrar level, not the registry level, though of course there are always exceptions.

Some ccTLDs have strict requirements (looking at you .de), but most are fairly standard TLDs. The last time I checked, .tv (for Tuvalu) was responsible for something like 40% of the country’s GDP, so it’s not surprising that most ccTLDs are welcoming to outsiders.

Edit: I was curious so I double checked, and apparently as of 2019 .tv was closer to 9% of Tuvalu’s Government spending according to Wikipedia. In my defense, the last time I researched the matter was several years prior to 2019, and additionally I have no doubt that I’m misremembering and/or unintentionally exaggerating that figure.

Regarding .de domains, I’ve seen multiple examples of a registered domain being completely deleted with absolutely no refund or recourse because the Registrant/Admin contact(s) didn’t respond to a physical letter sent by DENIC via post in Germany.

I’ve used this handle before that sounds like it would suit your needs. Of course it also requires Zigbee or Z-wave connected to your HA setup if you want to log locking/unlocking in HA.

Check smoke detectors, clocks, plants near desks, anything that’s always been there and nobody questions.

To add to this as someone who has seen behind the curtain of how much of this tech is set up, lights are a common hiding place for cameras. Exit signs, parking lot lights, motion sensor lights, and the like. These are unfortunately also very difficult to detect by design, since they are expected to consume electricity, are almost always closed circuit with data wires parallel to the power wires, are practically impossible to observe in low light, and generate some heat even without any included surveillance equipment.

I hope the launch goes well, I’ll certainly give it a try.

I didn’t find anything wrong with it on Mac, it was a perfectly cromulent browser. And anything that can help dethrone the chrome monopoly is a win in my book.

I’ve used it on both macOS (Intel and Apple Silicon) and iOS.

On macOS it’s been fine, but nothing about it was unique or beneficial enough to make me switch to it as my default browser. I imagine the experience on Linux will be similar.

On iOS, I’ve been daily driving it for almost exactly a year. At first it was very buggy, and I once lost all of my opened tabs. But for the past 6-8 months it has been very solid, and is the only browser on iOS that allows me to use both ad and sponsor block plug-ins to my knowledge. Tab groups are also fantastic and easy to manage.