I think “hot dog” was used as an example here. A hot dog has around 50 grams of meat (1.8 oz).

I might be wrong, but it sounds like hosted nextcloud, not a completely new platform.

Thats from the current nextcloud docs:

We strive to bring Artificial Intelligence features to Nextcloud. This section highlights these features, how they work and where to find them. All of these features are completely optional. If you want to have them on your server, you need install them via separate Nextcloud Apps.

I don‘t think religion is to blame for what some abuse it for.

Headline is cut off:

84% of Organizations’ SOC Analysts are Unknowingly Investigating the Same Incidents

Yeah apparently the desktop doesn’t even load when this launcher is used. But it’s still an option.

I don’t think not loading the desktop will really help much. Maybe it will free up a few hundred MB of memory.

From what I saw, it’s more or less just a new app that starts when windows boots up. Plus some improvements like “the controller now works in UAC prompts” - which tells me that they didn’t really learn anything.

steam.com is a nice example, as its an old, unused domain. If you were to visit steam.com, an attacker could likely forward it to another domain.

However, with store.steampowered.com, this attack would not succeed if you have visited this website in the last 120 days.

HSTS prevents the malicious redirect for most websites. Steam is one of them.

You’re right, that’s an option. I could set this up at my router, this way it would be almost indistinguishable from IPv6 via my ISP.

Its really not that hard. Sadly, my ISP doesn’t offer IPv6 yet, but for my vServer, enabling IPv6 was just a checkbox during creation. Then, you need to make sure that the service (e.g. webserver) also listens on the IPv6 address and maybe tweak the configuration of the webserver to actually serve websites via IPv6. Also, check your firewall settings. Lastly, you need to set the DNS AAAA records and you’re done.

“With the latest update, you are now unable to read any encrypted PMs before may 2025. Sorry for the inconvenience.”

Its quite unintuitive how hard it is to melt snow.

Not going to downplay the vulnerability, but the key requirement for this attack is that both attacker and the victim domain must both be present in the SSL certificate’s SAN entries. This is something that can happen, e.g. with some web hosters, but is probably pretty rare.

Battery life doubled in some games? Now that is even more impressive than 10-20% performance gain.

Lenovo has the “Lenovo Tab M10 TB360ZU” for sale at 210€, but I cannot find it on the US website of lenovo. However, I would not recommend it as it only has 4GB of ram.

After that, I couldn’t find any other options (except those cheapish noname tablets)

Maybe the Xiaomi Redmi Pad Pro 5G? In the EU, it costs about 280€.

This is super interesting. I did not expext a non-steamOS linux gaming handheld.

I mostly try to read the docs, but sadly good documentation is pretty rare.

I’m currently following this guide to setup caddy reverse proxy with coraza web app firewall.

But be warned, this whole rabbit hole of WAF isn’t trivial, some protections don’t work well with some apps (e.g. portainer triggers some rules about system command execution) and it needs some tuning. I personally set it up to learn more about WAFs because I believe it will help me in my career, but I would not blindly recommend it to everyone.

Approaches like crowdsec and fail2ban seem much more suitable for selfhosters – and keep your server software updated.