Protect your what what:
Oh good. Facebook gives advertisers your two factor authentication phone number.
<< They found that when a user gives Facebook a phone number for two-factor authentication or in order to receive alerts about new log-ins to a user’s account, that phone number became targetable by an advertiser within a couple of weeks. >>
A new L5 progress update has been posted - it is full steam ahead! - https://puri.sm/posts/massive-progress-exact-cpu-selected-minor-shipping-adjustment #demandfreedom
Do you know how long your password should be? A strong password should be able to withstand a supercomputer guessing a few hundred billion combinations per second. https://protonmail.com/blog/how-long-should-my-password-be/
Excellent talk on systemd:
Whenever I think Facebook has reached the pinnacle of Evil they manage to surprise me… I have to say that the “Facebook VPN which rewards you with $20/mth” (aka “Project Atlas”¹) plan is so disgusting it defies belief.
They even know how Evil the whole thing is because they go to the pains of hiding behind shell companies so Apple doesn’t block them.
How can this not be criminal?
My Pixel battery was shot, and because I've dropped the phone I was not able to even attempt replacing the battery without permanently damaging the screen. I pre-ordered the Purism Librem 5 and can't wait for it but needed a replacement phone until then (estimates of April this year). So I ordered a Fairphone 2. Modular phone, open design, with an open source stripped version of Android. Despite the 2014 chipset, it is speedy and running nougat. Very impressed.
It seems that social media is becoming more and more about hostility. It's everyone's cowardly little place to beat their drum and stand on their soapbox. Really makes me glad things like dectralized federated social media alternatives are becoming a thing. Viva Mastodon and the fediverse. Be good to each other.
Everybody does it: The messy truth about infiltrating computer supply chains https://theintercept.com/2019/01/24/computer-supply-chain-attacks/
Firmware attacks like in this article are why the Heads tamper-evident BIOS is so important. With Heads the *user* is empowered to inspect, reproducibly build and reflash themselves instead of anchoring all trust in a vendor. #infosec https://theintercept.com/2019/01/24/computer-supply-chain-attacks/
@kylerankin Related to this, a few months ago I wrote a post that details some of the steps @Puri_sm takes to protect the digital supply chain: https://puri.sm/posts/protecting-the-digital-supply-chain/
@mastohost Update went smooth for my instance. Thanks a lot!
👋So, it's upgrade day and I will be starting the upgrade to v2.7.0 for all instance hosted in Masto.host now.
To avoid long waits during database upgrade there will be 2 downtimes of under 30 seconds. Meaning, your instance will go down and come back up and after some minutes (depending on instance size) the same will happen and the upgrade finished.
You can read the blog post with the highlights of v2.7.0 here: https://blog.joinmastodon.org/2019/01/mastodon-2.7/
Any issues, please let me know.
Software engineer, family man, and lover of good.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!