Indie iOS app developer with a passion for SwiftUI
USPS’ website does this, sort of.
If their text service is down it’ll let you know and just skip the 2FA process even though normally they offer an option to get the code via email.
The fact that they do this is bad enough, the fact that this happens so often that I’ve seen this at least a dozen times is even worse.
Dude has reverse engineered pretty much the entire hardware stack of Macs to be able to provide the global community with Asahi, but because he says something you disagree with he’s supposedly “uninformed”.
Talk about childish…
Good for them, but this whole clickbait nonsense about Apple “locking” things is just that, nonsense.
Hector Martin, creator of Asahi Linux said it best so instead of repeating his words I’ll just leave a link to his comments on the matter: https://social.treehouse.systems/@marcan/110803356645502548
You’re right that a lot of Terms of Service documents and similar agreement documents have language that reserves the right to modify those terms.
At the same time just because something is in the terms doesn’t mean it can stand the test of adjudication and terms as well as changes are often challenged in court with success.
Unity is in a particular tricky situation because the clause that governed modifications in their last ToS explicitly gives the user the option to pass on modifications that adversely affects them and stick with the old terms:
Unity may update these Unity Software Additional Terms at any time for any reason and without notice (the “Updated Terms”) and those Updated Terms will apply to the most recent current-year version of the Unity Software, provided that, if the Updated Terms adversely impact your rights, you may elect to continue to use any current-year versions of the Unity Software (e.g., 2018.x and 2018.y and any Long Term Supported (LTS) versions for that current-year release) according to the terms that applied just prior to the Updated Terms (the “Prior Terms”). The Updated Terms will then not apply to your use of those current-year versions unless and until you update to a subsequent year version of the Unity Software (e.g. from 2019.4 to 2020.1). If material modifications are made to these Terms, Unity will endeavor to notify you of the modification. If a modification is required to comply with applicable law, the modification will apply notwithstanding this section. Except as explicitly set forth in this paragraph, your use of any new version or release of the Unity Software will be subject to the Updated Terms applicable to that release or version. You understand that it is your responsibility to maintain complete records establishing your entitlement to Prior Terms.
You can still do this if you use https://www.shodan.io/
It’ll let you find IoT devices and cameras connected to the internet if you know what to search for and an alarming amount of them are locked behind an admin/admin login.
I advise against nosying around because there’s a near 100% chance that it’s illegal to do so in your jurisdiction.
Most doxxers don’t technically release the information, rather they’ve acquired it and point others to where they’ve acquired it or simply disseminate it further.
That’s what I’m saying. In most cases the doxxer isn’t the one who originally provided the info, but rather someone who has found the information online via a Google search or something similar.
Isn’t that a little bit of circular reasoning?
If I doxx someone online then it gets indexed by Google, if someone then Google’s the information it stops being doxxing?
I’d assume most doxxing isn’t done by someone who has unique firsthand knowledge (e.g. “Oh I know John, he lives on so and so road”) and instead is done by finding the information online whether via Google or a different public source.
At least in the US, where a ridiculous amount of private information is deemed “public”.
There are plenty of instances that are open, but it depends on your definition of “censored” if they are what you seek.
Completely “uncensored” instances are rare if not non-existent because most instances will at least try to adhere to the laws of their jurisdiction and in addition will have some rules in place to keep things running smoothly and pleasant for everyone.
Most big instances are run from the EU so they’ll often have rules regarding hate speech.
Depending on your definition your only options might either be Japanese instances due to less strict laws around certain content or right wing instances, but both will be almost uniformly blocked on other instances.
It means no porn, how much that overlaps with anything remotely considered NSFW is up to the admin and you’d have to ask them.
Apparently if you try to use the USB port it’ll stop after having printed 20 or so pages, telling you you need to setup WiFi and install their bloatware app.
Typically low level attacks such as these is where it starts because they grant access to parts that can be used to learn more about the system as a whole.
This understanding then can be used to find easier to exploit avenues.
A good example of this is the history of exploits on Nintendo hardware.
They almost all started with finding an exploit at the hardware level, which then subsequently lead to finding software exploits and ways to leverage them in an easy way for end users.
You don’t know Some Software Corp and their world famous website somesoftwarecorp.com?
Most likely different incentives and platform culture.
Customization isn’t that big on iOS, other than the occasional viral fad, so there’s less interest for custom keyboards and in return less development spent on it.
Monetization of custom keyboards is also really hard and due to limitations on tracking and collecting data the incentives that Android has don’t really exists on iOS.
So what you end up with is a handful of custom keyboards often by big players that have bags of money to throw at it or as a companion to a regular app (e.g. Grammarly, GIF apps) to fulfill a specific function.
They’re right about browsers, but jumped the shark on keyboards.
Custom keyboards come with some rules and limitations for obvious reasons, but they’re by no means the system keyboard in disguise like how browsers are all WebKit under the hood.
Here’s documentation on custom keyboards: https://developer.apple.com/library/archive/documentation/General/Conceptual/ExtensibilityPG/CustomKeyboard.html#//apple_ref/doc/uid/TP40014214-CH16
Most of these services are US-centric because a lot of the necessary records to provide the information isn’t public in many countries outside of the US.
Birth records, death records, marriage records, divorce records, voting records, criminal records, etc. is considered public information in much of the US. Even address information can be found publicly and immigration records become available to the public after a certain time.
In a lot of countries, especially in many European countries, these are hard to access for people that aren’t the subject of these records, if accessible at all.
For example while court records are public in much of Europe, often times the names of private persons are censored because it’s not deemed necessary to know who the parties are to be able to check if the courts make fair decisions.
This automatically excludes criminal and divorce information from disseminating into the public.
Some countries will make some records public once the subject of those records have passed for X amount of years, but that’s still pretty rare.
As such services like these have limited use outside the United States.
@mrmanager@lemmy.today was talking about European companies doing fine despite strong unions in Europe and there being a lack of companies toppling over due to the strong unions.
They actually undersold it, because in many Western-European countries everyone benefits from union negotiations, even people that aren’t members of a union because the collective bargaining agreements unions manage to negotiate will affect everyone working in the relevant industry by virtue of laws deferring to those collective bargaining agreements.
You in turn decided to reframe the discussion at hand from companies doing well to unemployment numbers and not just general unemployment numbers, but youth unemployment numbers because you felt it would serve your argument best.
But if you look at the trends for unemployment then the story isn’t as bleak as you’d make it out to be.
For starters general unemployment averages under 6% with only two countries being above 10% (and below 15%).
Average youth unemployment sits at 13.9% with a hand full over 20%.
However, both general and youth unemployment are on a steady downwards trend since 2013.
One exception to this trend for general unemployment is during the pandemic, where it shows a bump and for youth unemployment there’s an additional minor bump in 2022, which suggests a correlation with the influx of refugees from Ukraine.
This is the European source on these statistics.
There will always be a higher unemployment rate in the EU compared to the US, especially when it comes to youth unemployment.
This lies mainly in the fact that most European countries have a civil registry system that automatically keeps track of certain data, unemployment being one of them, whereas in the US this data is collected by the Census Bureau for the Bureau of Labor Statistics by conducting a survey of roughly 60,000 households.
Another factor is a difference in definitions. A good example is the one from the website of the Bureau of Labor Statistics:
Garrett is 16 years old, and he has no job from which he receives any pay or profit. However, Garrett does help with the regular chores around his parents’ farm and spends about 20 hours each week doing so.
Lisa spends most of her time taking care of her home and children, but she helps in her husband’s computer software business all day Friday and Saturday.
Both Garrett and Lisa are considered employed.
Neither of them would be considered employed in most European countries. There are other such discrepancies, for example the US doesn’t include people under 16, whereas Europe looks at 15-24 for youth unemployment.
And then there’s the cultural difference between the two markets about when people are expected to start working and subsequently the jobs that will be available.
Which makes sense. Companies still need people, but if it’s more expensive to get low-end workers you just won’t hire entry level workers unless they’ve proven themselves beyond a shadow of a doubt.
Your hypothesis is quite lacking.
As stated, the trends have been going down for a decade now, if your hypothesis was true we’d see an upwards trend.
Additionally, these labor protections, including protections against being laid off, have been around for decades, your hypothesis doesn’t offer an explanation why, despite these protections, unemployment is going down.
Also, minimum wage, as is often paid for these kinds of jobs, is lower in most EU countries than in many US states, making it comparably cheaper to hire those kind of jobs in Europe than it is in the US, your hypothesis doesn’t explain why, despite this, the unemployment rate is higher in Europe than it is in the US.
In short, your hypothesis nor the unemployment rate is relevant to what @mrmanager@lemmy.today was positing, so lets refocus to the topic at hand: the lack of companies toppling over like domino bricks despite the copious amounts of employee protection facilitated by strong unions.
Perhaps afterwards, we can talk about the lack of landlords, corporate or otherwise, going bankrupt despite the strong tenant protections as well as the lack of companies selling merchandise to consumers pulling out of the market despite the strong consumer protections, and so and so forth.
And then, maybe, just maybe, we can afterwards all come to the conclusion that these QoL improvements are attainable without some kind of economic doom scenario.
This reads as incredibly condescending, naive and duplicitous, filled with hubris.
For starters, the whole “yeah sure XMPP got EEE’d but who cares, only nerds cared about that, lol” is not only false (e.g. Jabber), but also does nothing to quell concerns.
Here’s an account by someone who was in the XMPP trenches when Google started adopting it.
Notice something? The “omg so cool!”, this is exactly the same as Rochko.
It’s the hubris when you’re a FOSS maintainer who toiled away for years without recognition and now a $700B+ corporation is flattering him by wanting to use/interact with his work.
The blog is a far cry from the anti-corporate tone in the informational video from 2018.
Then there’s the fact that Rochko is extremely tight lipped about the off the record meeting with Meta and consistently refuses to deny having received funds from Meta and refuses to pledge not to accept any funds from Meta.
There’s also the unsatisfactory answer he gave to people who started questioning some dubious sponsors and the fact that he rushed to lock the thread, killing any further discussion.
I genuinely think the dude is just so hyped for the perceived recognition, that he lost the thread.
So much so that he thinks Mastodon is untouchable.
And it’s extremely naive to think that Meta has benevolent motives here or that Mastodon will survive any schemes Meta might have.
What’s more realistic is that Mastodon will die because people will flock to Threads if their social graph has moved over.
Similarly these lofty and naive ideas that people on Threads will make the switch to Mastodon once they get a taste of what it has to offer.
So now all of a sudden the “difficulty” to get started in Mastodon, that is keeping people who want a polished corporate experience away isn’t going to be an issue?
Especially when in the “extinguish” phase Meta will have siloed off from Mastodon and its portability function, having to leave their social graph behind?
It’s all so increasingly naive, one can’t help but wonder if it’s intentional sabotage at this point.
Mark my words, this’ll be the end of Mastodon especially when Meta can outspend Mastodon all day every day to add proprietary functionality.
Sure perhaps years from now a few hundred to a few thousand people might still use it, but it will be as irrelevant as XMPP is to most people, and Rochko with it.
@remindme@mstdn.social in 2 years.
Current 2FA implementation in Lemmy is a bit janky with the risk of being locked out.
First things first: DO NOT UNDER ANY CIRCUMSTANCES LOG OUT UNTIL YOU’RE 100% SURE YOUR AUTHENTICATOR WORKS AND THAT YOU CAN LOGIN USING ITS GENERATED 2FA CODE
Now that that’s out of the way, here are some steps to follow:
If you can’t get it to work then you can disable it in the window you’re still logged into.
If you share which authenticator you use, people might be able to give you more specific instructions to get you through step 1.
Whatever you do, don’t log out. You will be locked out!
Unlike most common implementations, there is no built in step to verify if you can successfully generate a TOTP before 2FA is fully enabled.
I feel you’re brushing over the privacy implications regarding how apps are used.
Sure, you could say: “Oh, but it’s inefficient to compile the entire application, and what if there are features that barely anyone uses.”
But you can also say: “Compiling the entire application ensures we don’t need to collect usage data and it ensures everyone gets the best experience, even the people that use features that are otherwise hardly used.”
Now, of course, to go with the second option, you need to care about user privacy and not gain any benefits from usage data beyond the benefits for compiling it.