bjorney

You gotta donate to planned parenthood for every dollar spent there. It’s like buying carbon offsets, but for sandwiches. /s

More, but not way more - they would be licensing window IoT, not a full blown OS, and they wouldn’t be paying OTC retail rates for it.

If you know the key is composed of English language words you can skip strings of letters like “ZRZP” and “TQK” and focus on sequences that actually occur in a dictionary

You don’t memorize RSA keys

No im saying if your password size is limited to a fixed number of characters, as is the case with RSA keys, words are substantially less secure

“can you string words to form a valid RSA key”

“Yes this is the most secure way to do it”

“No, it’s not when there is a fixed byte length”

-> where we are now

1. we are talking about RSA keys - you don’t memorize your RSA keys

2. if you rely on memorizing all your passwords, I assume that means you have ample password reuse, which is a million times worse than using a different less-secure password on every site

Sure but we aren’t talking about that

You memorize your RSA keys?

We are talking about RSA though, so there is a fixed character length and it isn’t meant to be remembered because your private key is stored on disk.

Yes the word method is better than a random character password when length is unbounded, but creating secure and memorable passwords is a bit of an oxymoron in today’s date and age - if you are relying on remembering your passwords that likely means you are reusing at least some of them, which is arguably one of the worst things you can do.

Words are the least secure way to generate a password of a given length because you are limiting your character set to 26, and character N gives you information about the character at position N+1

The most secure way to generate a password is to uniformly pick bytes from the entire character set using a suitable form of entropy

Edit: for the dozens of people still feeling the need to reply to me: RSA keys are fixed length, and you don’t need to memorize them. Using a dictionary of words to create your own RSA key is intentionally kneecapping the security of the key.

You can just point your domain at your local IP, e.g. 192.168.0.100

Literally every library with any traction in any field is MIT licensed.

If the scientific python stack was GPL, then industry would have just kept paying for Matlab licenses

For every 1 person who knows how to use the windows command line, there are 50 people struggling because they didn’t embed their video into their PowerPoint, or worse, their USB stick only contains a shortcut to their actual .ppt file

The feature is explicit sync, which is a brand new graphics stack API that would fix some issues with nvidia rendering under Wayland.

It’s not a big deal, canonical basically said ‘this isn’t a bug fix or security patch, it’s not getting backported into our LTS release’ - so if you want it you have to install GNOME/mutter from source, switch operating systems, or just wait a few months for the next Ubuntu release

GNOME said this update is a minor bug fix (point release)

Canonical said this is actually a major feature update, and doesn’t want to backport it into its LTS repositories

Not with 64gb ram and 16+ cores on that budget

The plaintiff(s) in a class action usually gets a pretty decent chunk - substantially more than the class members because they are the one’s doing all the work on the class’s behalf

The payout for class members depends on the number of people who sign up, which generally depends on the burden of proof. If you need to provide a receipt the payout is generally much higher because it gets split up fewer ways. I’ve gotten class action payouts as high as $300 when all I had to do was dig up through my bank records to find out the date of a transaction, and as low as $2, when all I had to do was click a link and enter my email address

They aren’t talking about system administrators. They are talking about 3rd party software presenting a privilege escalation prompt (administrator access) and changing your default browser without you knowing about it

“how dare they use the right tool for the job without taking the time to learn how to do it sub optimally first”