Indie iOS app developer with a passion for SwiftUI
You can still do this if you use https://www.shodan.io/
It’ll let you find IoT devices and cameras connected to the internet if you know what to search for and an alarming amount of them are locked behind an admin/admin login.
I advise against nosying around because there’s a near 100% chance that it’s illegal to do so in your jurisdiction.
Oh wow, they really closed it down huh?
Not too long ago you were able to change it.
This dumbing things down to prevent customers from fucking themselves over and using up CS resources is getting ridiculous.
Say you need to change some settings but your modem/router isn’t online then you’re SOOL.
Cox, who uses the same gateway, is even worse. They won’t even allow you to enable legacy mode (802.11b) for IoT devices that cheaped out on WiFi cards, not even on a separate network and their customer service can’t enable it either.
I dread moving into a Cox region where there’s no fiber competitor available.
Most doxxers don’t technically release the information, rather they’ve acquired it and point others to where they’ve acquired it or simply disseminate it further.
That’s what I’m saying. In most cases the doxxer isn’t the one who originally provided the info, but rather someone who has found the information online via a Google search or something similar.
Only if there’s a risk at incriminating yourself, and if it’s not immediately apparent how you’d run that risk (e.g. you’re a witness that doesn’t have a direct relation to the crime at hand) you’d have to motivate how it could be incriminating.
Isn’t that a little bit of circular reasoning?
If I doxx someone online then it gets indexed by Google, if someone then Google’s the information it stops being doxxing?
I’d assume most doxxing isn’t done by someone who has unique firsthand knowledge (e.g. “Oh I know John, he lives on so and so road”) and instead is done by finding the information online whether via Google or a different public source.
At least in the US, where a ridiculous amount of private information is deemed “public”.
There are plenty of instances that are open, but it depends on your definition of “censored” if they are what you seek.
Completely “uncensored” instances are rare if not non-existent because most instances will at least try to adhere to the laws of their jurisdiction and in addition will have some rules in place to keep things running smoothly and pleasant for everyone.
Most big instances are run from the EU so they’ll often have rules regarding hate speech.
Depending on your definition your only options might either be Japanese instances due to less strict laws around certain content or right wing instances, but both will be almost uniformly blocked on other instances.
It means no porn, how much that overlaps with anything remotely considered NSFW is up to the admin and you’d have to ask them.
Typically low level attacks such as these is where it starts because they grant access to parts that can be used to learn more about the system as a whole.
This understanding then can be used to find easier to exploit avenues.
A good example of this is the history of exploits on Nintendo hardware.
They almost all started with finding an exploit at the hardware level, which then subsequently lead to finding software exploits and ways to leverage them in an easy way for end users.
The US can look at how other countries, that don’t outright provide free education, do it instead of reinventing the wheel.
Getting rid of the discharge protection is only a small part of it.
It’s more important to set a legal maximum for college tuition for accredited institutions.
Then make any subsidies and funds contingent being accredited.
Lastly make federal loans contingent on enrollment to accredited institutions, with the additional benefit of being able to cap the loan amount at a level correlated to the legal maximum tuition (not to be confused with setting at the tuition level because living expenses need to be taken into account as well).
Make the interest rate sub 1%, because the government shouldn’t profit off of you as it is a service and do away with private middle men that administer the loans, instead establishing a special loan administration agency.
This will have as effect that institutions either get in line or lose all government funds and a significant portion of enrollments.
If you then also manage to uphold a uniform quality level that you regularly inspect at the accredited institutions, you’ll end up with a clear, affordable choice of quality education v. unknown quality education that may or may not be a huge waste of non-publicly provided money.
ETA:
You can even take it a step further and follow more examples from abroad in terms of acceptance.
Where you aim to get to a situation that everyone that applies with the pre-requisite prior education credentials, gets accepted.
The way this is often done abroad is with a centralized application process managed by the government, in which you indicate your top 3 preferred colleges, the portal verifies your prior education (as it’s centrally registered) and then enrolls you in order of preference.
For some studies, like law school, med school and psychology they’ll have more applicants than available spots, and in those cases it’s decided by lottery with slightly weighted chances based on your grade average.
The end result is that the vast majority of people automatically get accepted and the ones that don’t get in via the lottery are almost guaranteed to be placed the following year.
This solves the whole minority/legacy/etc. acceptance debacle, makes applying for schools less like applying for a job with writing essays and stuffing your resume with a bunch of extracurriculars and in the process makes the accredited institutions even more attractive compared to the potential hold outs that keep doing things the old fashioned way.
Most likely different incentives and platform culture.
Customization isn’t that big on iOS, other than the occasional viral fad, so there’s less interest for custom keyboards and in return less development spent on it.
Monetization of custom keyboards is also really hard and due to limitations on tracking and collecting data the incentives that Android has don’t really exists on iOS.
So what you end up with is a handful of custom keyboards often by big players that have bags of money to throw at it or as a companion to a regular app (e.g. Grammarly, GIF apps) to fulfill a specific function.
They’re right about browsers, but jumped the shark on keyboards.
Custom keyboards come with some rules and limitations for obvious reasons, but they’re by no means the system keyboard in disguise like how browsers are all WebKit under the hood.
Here’s documentation on custom keyboards: https://developer.apple.com/library/archive/documentation/General/Conceptual/ExtensibilityPG/CustomKeyboard.html#//apple_ref/doc/uid/TP40014214-CH16
It’s hard to explain without a similar sound existing in English.
The “eu” part in “neuken” and “keuken” is pronounced like the French word for 2: deux.
The ”-ken” end of both words is almost exactly pronounced as the word “cunt” without the t.
“de” is pronounced like “the” but with a “d” sound, like “duh” but not in the exaggerated way you’d do it when you’re mocking someone. And “in” is the same pronunciation as the English one.
So putting that all together, I’d write it out as follows if I’d like to make it pronounceable for an English speaker: “neuxcun in duh keuxcun”
I would expect they’d collate that information and pass it on at regular intervals to the instance that holds the true version of the post, who then subsequently disseminates that information to subscriber instances.
Then again, I guess you could collate the detailed information in a similar manner.
Not disputing what you’re saying, I assume you’ve tested this out and that’s what you’re reporting, just commenting on the choices made by the project to implement it this way.
Is that what you found out during your experiments?
That seems like a really inefficient and useless implementation to have all instances provide those details to one another, when every instance can simply keep track of it for their own users and pass along the total number.
That sounds like a gaping security hole, but with how likely it is that you lock yourself out with the current 2FA implementation, I can’t be mad about it.
If all else fails you could also reach out to the admin of your instance I suppose and see if they can disable 2FA on your account, but I figured it’s best to avoid the headache altogether and just not log out until you’re 100% the 2FA works properly.
That’s also a good way of verifying! As long as you go through the login process somewhere different than your current browser window you should be able to make sure it works properly.
Current 2FA implementation in Lemmy is a bit janky with the risk of being locked out.
First things first: DO NOT UNDER ANY CIRCUMSTANCES LOG OUT UNTIL YOU’RE 100% SURE YOUR AUTHENTICATOR WORKS AND THAT YOU CAN LOGIN USING ITS GENERATED 2FA CODE
Now that that’s out of the way, here are some steps to follow:
If you can’t get it to work then you can disable it in the window you’re still logged into.
If you share which authenticator you use, people might be able to give you more specific instructions to get you through step 1.
Whatever you do, don’t log out. You will be locked out!
Unlike most common implementations, there is no built in step to verify if you can successfully generate a TOTP before 2FA is fully enabled.
Pro tip: if you do insist on using Google scroll to the bottom until you see a notice like the one below.
You can then click on the complaint to see the URLs that were removed.
They’ve wisened up a bit and now require a (throwaway) email to access the links, but chances are that if you’re looking for something more obscure, the link you seek is still there.
You’re right that a lot of Terms of Service documents and similar agreement documents have language that reserves the right to modify those terms.
At the same time just because something is in the terms doesn’t mean it can stand the test of adjudication and terms as well as changes are often challenged in court with success.
Unity is in a particular tricky situation because the clause that governed modifications in their last ToS explicitly gives the user the option to pass on modifications that adversely affects them and stick with the old terms:
https://web.archive.org/web/20201111183311/https://github.com/Unity-Technologies/TermsOfService/blob/master/Unity Software Additional Terms.md