Good to know! I saw that mentioned on some (apparently outdated) Comodo marketing copy as a benefit over LE
Good to know! I saw that mentioned on some (apparently outdated) Comodo marketing copy as a benefit over LE
EV certs give you an extra green bar or something along those lines. If your customers care about it, then you have to. If they don’t - and they probably don’t - it’s a waste.
What exactly are you trusting a cert provider with and what are the security implications?
End users trust the cert provider. The cert provider has a process that they use to determine if they can trust you.
What attack vectors do you open yourself up to when trusting a certificate authority with your websites’ certificates?
You’re not really trusting them with your certificates. You don’t give them your private key or anything like that, and the certs are visible to anyone navigating to your website.
Your new vulnerabilities are basically limited to what you do for them - any changes you make to your domain’s DNS config, or anything you host, etc. - and depend on that introducing a vulnerability of its own. You also open a new phishing attack vector, where someone might contact you, posing as the certificate authority, and ask you to make a change that would introduce a vulnerability.
In what way could it benefit security and/or privacy to utilize a paid service?
For most use cases, as far as I know, it doesn’t.
LetsEncrypt doesn’t offer EV or OV certificates, which you may need for your use case. However, these are mostly relevant at the enterprise level. Maybe you have a storefront and want an EV cert?
LetsEncrypt also only offers community support, and if you set something up wrong you could be less secure.
Other CAs may offer services that enhance privacy and security, as well, like scanning your site to confirm your config is sound… but the core offering isn’t really going to be different (aside from LE having intentionally short renewal periods), and theoretically you could get those same services from a different vendor.
You can get wildcard certs with LetsEncrypt (since 2018): https://community.letsencrypt.org/t/acme-v2-production-environment-wildcards/55578
They have no recourse
They can do all of the following:
Wow, what a terrible set of moves by whoever at AMD made that call. Lack of CUDA support is the only thing keeping me from buying AMD GPUs, and I’m pretty sure I’m not alone.
I use --format-sort +res:1080
, which, if my understanding of the documentation is correct, will make it prefer 1080p, the smallest video larger than 1080p if 1080p isn’t available, or the largest video if nothing 1080p or larger is available.
res
is the smallest dimension of the video (so for a 1080x1920 portrait video, it would be 1080).
Default sort is descending order. The +
makes it sort in ascending order instead.
Does your script handle bi-directional sync or one-way only?
Doesn’t their API also require you to allow-list IPs, making it basically useless for dynamic DNS?
From https://www.namecheap.com/support/api/intro/ under “Whitelisting IP.”
Ah, good point. Apparently it shows 4 different things: https://twitter.com/foone/status/1301718864573554689
If you’re using the screen on the front of your fridge and your fridge’s built-in buttons, if your computer is in the door or walls of the fridge as opposed to just chilling on a shelf like a leftover burrito, if your computer doesn’t have its own distinct power source, and if your fridge continues to cool your food like a fridge… why not?
No, it’s not running entirely on the fridge’s hardware at that point, but you did basically hack your fridge to be able to play Crysis.
In this case it does all of the above and also triggers device functionality based off of game events.
Personally I didn’t think the pregnancy test one really counted, either, but I’m with you on this one. This isn’t just “I put Doom on a sex toy,” but “I put Doom on a sex toy and used game events to trigger its functionality,” which is a level above.
Also looking at the pregnancy test one now I might change my mind. They did use a different microcontroller and screen, but the pregnancy test already had a microcontroller inside it; it just wasn’t programmable. If the replacement microcontroller and screen had the same specs as the old one, it’s more than fair to call that a win IMO. At that point, it’s the same hardware, after all.
Oh, good. In that case, carry on!
Did you just imply that dbrand employs humans? I’ll have you know that the company is robots all the way down.
Reverse proxies aren’t DNS servers.
The DNS server will be configured to know that your domain, e.g., example.com or *.example.com, is a particular IP, and when someone navigates to that URL it tells them the IP, which they then send a request to.
The reverse proxy runs on that IP; it intercepts and analyzes the request. This can be as simple as transparently forwarding jellyfin.example.com to the specific IP (could even be an internal IP address on the same machine - I use Traefik to expose Docker network IPs that aren’t exposed at the host level) and port, but they can also inspect and rewrite headers and other request properties and they can have different logic depending on the various values.
Your router is likely handling the .local “domain” resolution and that’s what you’ll need to be concerned with when configuring AdGuard.
Yeah, this is just an issue with the Lemmy post’s title. The article is clear that 15% are using controllers now, up from 5% in 2018.
Say I go to a furniture store and buy a table. It has a 5 year warranty. 2 years later, it breaks, so I call Ubersoft and ask them to honor the warranty and fix it. If they don’t, then I can file a suit against them, i.e., for breach of contract. I may not even have to file a suit, as there may be government agencies who receive and act on these complaints, like my local consumer protection division.
I’m talking about real things here. Your example is a situation where the US government agrees that a company shouldn’t be permitted to take my money and then renege on their promises. And that’s generally true of most governments.
Supposing an absence of regulations protecting consumers like me, like you’re trying to suggest in your example, then it would be reasonable to assume an absence of laws and regulations protecting the corporation from consumers like me. Absent such laws, a consumer would be free to take matters into their own hands. They could go back to Ubersoft and take a replacement table without their agreement - it wouldn’t be “stealing” because it wouldn’t be illegal. If Ubersoft were closed, the consumer could break in. If Ubersoft security tried to stop them, the consumer could retaliate - damaging Ubersoft’s property, physically attacking the owner / management / employees, etc… Ubersoft could retaliate as well, of course - nothing’s stopping them. And as a corporation, they certainly have more power than a random consumer - but at that point they would need to employ their own security forces rather than relying on the government for them.
Even if we kept laws prohibiting physical violence, the consumer is still regulated by things like copyright and IP protections, e.g., the anti-circumvention portion of the DMCA. Absent such regulations, a consumer whose software was rendered unusable or changed in a way they didn’t like could reverse engineer it, bypass DRM, host their own servers, etc… Given that you didn’t speak against those regulations, I can only infer that you are not opposed to them.
Why do you think we don’t need regulations protecting consumers but that we do need regulations restricting them?
I have the 8bitdo SN30 Pro+ and almost got one of their Hall effect controllers for my most recent controller (but ended up going with the King Kong 3 Max instead).
I noticed they have a repair parts section on their shop, but frustratingly, it doesn’t have analog stick replacements - just the joystick caps.
There’s an iFixit guide to replacing them, but it doesn’t list where you can get the new part, either. I’m guessing they use a standard part - maybe even one you could get for a few bucks off AliExpress - assuming you’re up to the task of desoldering the old stick and resoldering the new one.
You can also get replacement Hall effect analog sticks from Gulikit and install them in your joycons yourself. They also made them for the Steam Deck. I installed a set in my old LCD Steam Deck and it was really straightforward, but I suspect the joycons take a bit more work.
It’s a shame they don’t make them for the PS5 - there are multiple third party controllers with Hall effect sensors that are compatible with pretty much everything else, but there’s only one Hall effect controller compatible with the PS5 (the Nacon Revolution 5 Pro), and it’s $200.
Which system(s) are you playing on?