@freddy if I understand correctly this is not even a fix, but a workaround for non-compliant behavior for a large enough site?

@freddy move fast and fix things!

@david_chisnall Chaotic Evil: *starts beatboxing*

[RSS] wtf is NS_ERROR_INVALID_CONTENT_ENCODING? investigating shared dictionaries and ChatGPT breakage in Firefox

https://joshua.hu/chatgpt-fail-loading-firefox

Tracing the ptrace

https://blogs.oracle.com/linux/tracing-the-ptrace

@320x200 @qaris @hobbs Thank you!

@320x200 Could you please ELI5 for me what a "permacomputing collective" is? This brewing metaphor is cool but a bit too abstract for me to imagine what is happening in such a group.

GLIBC-SA-2026-0001: Integer overflow in memalign leads to heap corruption (CVE-2026-0861)

https://www.openwall.com/lists/oss-security/2026/01/16/5

GLIBC-SA-2026-0002: getnetbyaddr and getnetbyaddr_r leak stack contents to DNS resovler (CVE-2026-0915)

https://www.openwall.com/lists/oss-security/2026/01/16/6

Read about CVE-2025-13154, a privilege escalation vulnerability in a Lenovo Vantage addin called SmartPerformance

https://cyllective.com/blog/posts/lenovo-vantage

Part of the reason of every service turning shit is that some technical writers assume that shit can only ever run on k8s...

https://worstofbreed.net/patterns/k8s-overkill/

#documentation

@pooh When asked "who's there" I say "nobody", therefore I am.

I laughed

https://github.com/curl/curl/pull/20312

There, now you know.

RE: https://mastodon.social/@fj/114024334222739130

Think of the folks at Palantir who built this.
https://www.404media.co/elite-the-palantir-app-ice-uses-to-find-neighborhoods-to-raid/

God bless people who do stuff like getting in touch with the US patent office and putting the source code for the 1998 furby on archive.org

https://archive.org/details/furby-source/mode/2up

@nicolaottomano that is true but how does it explain this email?

I just got the weirdest e-mail:

It's a lab result for someone else. It has a PDF attachment, but I can see nothing malicious in it. The sender domain exists and does lab stuff. I looked up the person in the document and he seems to exist (in the US).

I'd say this must be a typo, but my e-mail address has only the first character (and probably the domain) matching with the persons name. I highly doubt his internet handle is a short keyboard distance from my Hungarian handle.

I have two theories:

a. This is a highly sophisticated scam (but I don't see the scam part yet)
b. Copilot hallucinated my e-mail address (which is actually pretty easy to scrape from the web)

@algernon @hongminhee "They need new content to "improve" the models." -> The easiest way to think about this is to consider some fast evolving library API. If you don't scrape+train constantly, you won't be able to generate code for the latest&greatest, so by this logic (incredibly costly) training *can never stop*.

IMO, the biggest takeaway from this research is the huge promise shown by memory mitigations, both hardware and software, in protecting users against 0-days.