• 0 Posts
  • 7 Comments
Joined 1 year ago
cake
Cake day: June 20th, 2023

help-circle
  • WxFisch@lemmy.worldtoTechnology@lemmy.world*Permanently Deleted*
    link
    fedilink
    English
    arrow-up
    22
    arrow-down
    3
    ·
    22 days ago

    Kagi doesn’t hide that they use API calls to multiple sources for each search, they are fairly upfront about honestly. The benefits of use Jagi IME are the results are great, the site is fast and gets out of the way, it’s fairly affordable for what it provides, and the goals of the company is in line with mine (namely to find a thing I’m searching for). They are well funded enough to give me confidence that I’m not going to have to configure yet another search engine, and the integrate into pretty much all my access points easily as a default search engine.

    I have seen no reason to think they abuse their position to impact my privacy, and bring closed source does not automatically make them evil. You included no alternatives that are open source, and the ones I explored were either difficult to get setup, required me to run something on my own infrastructure, or didn’t provide the integrations or results I expect. Kagi does.

    Kagi isn’t perfect, and there are a ton of suggestions on their feature tracker that users rightly want implemented (including open sourcing more of their code-base). But as a paid search engine that makes me not the product, it does that job well.


  • Looks from the article like it was stolen by infecting the PC of a third party analytics firm user who had privileged access to Hot Topics snowflake data warehouses and didn’t have MFA enabled. That is just inexcusable in this day and age and $100k is a small price for Hot Topics snowflake to pay for that fuck up (assuming the bad actor actually follows through and doesn’t sell the data if HT pays the price set). Pro tip (or really amateur tip), MFA all the things. Even SMS based MFA is better than no MFA even though it’s not ideal.




  • So still not addressing the myriad problems the player has, especially on AppleTV where it’s been reported for nearly half a decade to not work well. But hey you get yet another place to do photos things (which they admit literally no one wants or uses, they’d be better off dropping support for photos altogether).

    This is super frustrating because plex is very polished despite its clear bugs and misdirection. I just switched over to JellyFin and it’s faster and much more focused but just still has a lot of rough edges. I’m not sure which will be my long term solution but plex needs to attract folks to subscribe and focusing on features that 1/5 of a percent of users utilize is not how you do that.


  • The article title is misleading, but the research is interesting. Essentially it’s saying that when the rocket self-destructed due to it performing off nominal (as the first test ever of this vehicle) it ionized a large swath of the ionosphere from Mexico to the SE US which can impact the accuracy of GPS for systems that require high precision. The ionosphere reionizes very quickly naturally though so the effects are short lived (hours to maybe a day) and the impact to navigation at least should be small because of how GNSS works with built in corrections for exactly these types of errors. It feels like Nature is stretching a bit with the doom and gloom headline that the authors don’t even point to in the article (though I have not read the paper to be fair).


  • From my reading this is misleading at best and likely wrong. I don’t work with CrowdStrike Falcon but have installed and maintained very similar EDR tools in enterprise environments and the channel updates referenced are the modern version of definition updates for a classic AV engine. Being up to date is the entire point and so typically there are only global options to either grab those updates from the vendor or host them internally on a central server but you wouldn’t want to slow roll or stage those updates since that fundamentally reduces the protection from zero days and novel attacks that the product is specifically there to detect and stop. These are not engine updates in that they don’t change the code that is running, they give the code new information about what an attack will look like to allow it to detect malicious activity as soon as CrowdStrike knows what the IoCs look like.

    In this case it appears that one of these updates pointed to a bad memory location which caused the engine to crash the OS, but it wasn’t a code update that did it (like a software patch). That should have been caught in QA checks prior to the channel update being pushed out, but it’s in CrowdStrikes interest to push these updates to all of their customers PCs as quickly as they can to allow detection of novel attacks.