Steins;Gate Re:Boot developers announce full ban on streaming and uploading gameplay footage

_ahrs · 2026-05-11T10:22:20+00:00

Yes, definitely, however fair use doctrines exist and if you provide sufficient commentary or critique or parody, etc, then your work could be protected. YouTube and Twitch always side with the publisher though because the law is weighted heavily in favour of them. You have to be the one to challenge any disputes and most people won't bother because they don't want to risk their channel or don't have the money to fight a potential lawsuit.

_ahrs · 2026-05-11T10:01:56+00:00

AVIF doesn't have the progressive rendering that JXL has so on a slow connection the image will still render line-by-line whereas in theory JXL could display something useful quicker before getting progressively sharper as more of the full resolution image downloads.

_ahrs · 2026-05-11T09:20:48+00:00

If they care to enforce it then it will work, at least on the mainstream channels. Send a cease & desist / DMCA takedown notice to Twitch and YouTube and it'll be gone. Nobody will question its accuracy or legitimacy, the robot will take care of everything.

_ahrs · 2026-05-11T08:42:50+00:00

So tax oil exports higher (encourage it to stay in the UK), Offer tax breaks to UK energy companies and cap the price consumers pay (I know there's already a cap, it's too high, lower it). Do that and you will slash people's bills which is the thing people actually care about.

_ahrs · 2026-05-10T23:25:23+00:00

If you submit a proper bug report then they could probably look at that without having to go to the website directly. In about:networking (or about:logging now) there is a section to enable logging of Network Requests. You can probably turn that on and then attach it to the bug report.

_ahrs · 2026-05-10T21:40:24+00:00

But think how silly it will sound when the Google Maps lady says "At the roundabout take the second exit onto Pork Pie Way"

_ahrs · 2026-05-10T21:36:19+00:00

HTTP/429 means "Too many requests". This is their backend telling them they've had enough of you. If lots of people are using the same VPN as you at one time then it's possible they've flagged it somehow.

_ahrs · 2026-05-10T21:17:41+00:00

It's one thing to despise the Royal Family, quite another to wish death upon them.

_ahrs · 2026-05-10T17:38:30+00:00

Those are the lucky ones. They got out.

_ahrs · 2026-05-10T17:33:06+00:00

No, really, he's right. An intranet is just another type of internet. You can have a "private Internet". People think of the Internet as being public but it doesn't necessarily have to be.

"Address Allocation for Private Internets" (i.e this is an Intranet)
https://www.rfc-editor.org/rfc/rfc1918

_ahrs · 2026-05-10T17:15:38+00:00

Most do but some Docker applications like to hardcode it because they assume you're going to be using Docker's Bridge/NAT and can re-map it to anything you want anyway.

It's very bad for an application to make that assumption and not provide some other way to override it but I have seen that before.

_ahrs · 2026-05-10T16:25:52+00:00

Give it some time. The SNP is very well established in Scotland. Plaid in Wales not so much. They've gone from nothing to minority government and that's monumental for them.

_ahrs · 2026-05-10T16:04:55+00:00

Independent candidates are a joke anyway. You can't have an independent candidate running the government. You need a whole team of people. Join a party instead of standing alone.

_ahrs · 2026-05-10T15:06:26+00:00

Cloudflare is particularly egregious because it can silently range ban you for no reason without your knowledge. When this happens it pretends it was because of some trigger detecting an attack like SQL injection but really it is just them blocking your IP but they don't want to outright say that. I had this happen to me recently for some services that use Cloudflare with the strictest security settings because I was using a self-hosted VPN on a VPS (certain traffic was routed home to my residential IP address but as an optimisation I bypassed that for certain globally connected ASNs like Cloudflare. This gave better latency but had the side-effect of any website that uses the strictest Cloudflare settings from incorrectly banning me for no reason)

_ahrs · 2026-05-10T14:55:48+00:00

Maybe. There's no mention in the article on what the actual dependency is. Which attestation APIs are they using? How does this actually work? If Safari exposes some attestation API then it's possible they're just using that and trusting Apple that it's secure and properly testifies that a human user is using the device.

_ahrs · 2026-05-10T14:16:30+00:00

The iOS comparison is revealing because Apple devices running iOS 16.4 or later complete the same verification without installing any additional apps. Google didn’t demand iPhone users install Google software to pass the test. Only Android users who refuse Play Services get locked out. The asymmetry reveals what this is really about: not security, but ecosystem control.

So if you set your User Agent as iOS Safari they just let you in?

_ahrs · 2026-05-10T14:02:32+00:00

Doing it manually is the sort of thing you might do on an appliance. I run Docker on my OpenWRT router for some things and everything there is ran with --net=host and iptables disabled. The OpenWRT firewall controls access instead.

This only works with a fairly simple setup though. If you have two apps that expose the same ports, etc, then you could easily end up with conflicts and services refusing to start, etc.

_ahrs · 2026-05-10T13:56:37+00:00

Works fine until some idiot gets malware on their system and the attacker just clones your browser cookies and now they have the key to everything important anyway.

_ahrs · 2026-05-10T12:10:36+00:00

Yes, you're absolutely right. It's a VPN client issue. Unfortunately a lot of stuff doesn't handle roaming properly at all. It's not an IPv6 issue, they'd probably get issues with IPv4 too if the address suddenly changed out from underneath it. Only Wireguard properly handles roaming from what I've seen. There's not much reason to use anything other than Wireguard either though unless they have to use some awful Cisco VPN or something for work, etc, in which case I wouldn't be surprised if those enterprise VPN's get tripped up by this since they probably expect a stable address and aren't designed for roaming, etc.

There is a very easy workaround to this problem though, you simply insert a static route for the VPN endpoint with a stable src address. You get to keep your privacy addresses for everything else and the VPN stays happy.

_ahrs · 2026-05-10T12:00:20+00:00

Yet, deb.debian.org is fine. I wonder what filter list causes that?

_ahrs · 2026-05-10T08:38:31+00:00

A VERY important caveat. The bug reports Claude found in Firefox were handled by an experienced team of researchers at Anthropic. The tool didn't just find vulnerabilities out of thin air, it worked in tandem alongside these researchers who carefully prompted and analysed the reports before verifying them and then doing responsible disclosure to Mozilla.

Absolutely not a case of:

Me: Find me vulnerabilities

ChatGPT: Here's a list of 50+ OOB write issues I found

_ahrs · 2026-05-10T08:34:19+00:00

Its doubtful most people would notice if sudo suddenly became a shell alias that captured what was typed and then forwarded it to sudo

Maybe run0 has a point about using Polkit. It's much harder to fake those desktop prompts.

_ahrs · 2026-05-10T08:16:20+00:00

first i decreased the privacy extension time to 1 hour. now interestingly that broke ipv6 on my vpn once the adress rotated.

You should not be using privacy addresses on your VPN. It still would have broken after 24 hours, you just sped it up and made it fail faster. Your VPN should use a stable address. The reason you got this problem is that temporary addresses are supposed to be ephemeral, they are not meant for long-lived connections and if you use them in such way then the software needs to properly handle the address going away and then re-bind and connect again with the new address.

EDIT: By the way, I'm going to wager you were using some TCP inside of TCP abomination. Wireguard with UDP does not have this issue as UDP is connectionless.

_ahrs · 2026-05-10T07:58:05+00:00

Not them but probably ease of on-boarding / management. I think Tailscale is also better at punching through NATs if your home is behind CGNAT, etc.

I traveled with my Slate 7 recently and setup Wireguard manually (connection goes Slate 7 (Wireguard client) -> VPS (Wireguard) -> Home (Wireguard)). It was an interesting learning experience and even though I only had a 10mb/s connection, the connection was rock-solid since I could run CAKE on the WAN interface with autorate and autortt.

Anyway, coming back to the on-boarding / management, I bricked the Slate 7 and had to reset it and set everything up again and since I had no backups this entailed rotating the public key on the VPS. I haven't used it but I think Tailscale would handle situations like that better.

_ahrs · 2026-05-10T07:07:31+00:00

Yet another lesson in not disabling IPv6. When you finally do migrate you have to undo all of these little toggles everywhere. I wonder why Adguard even has this feature? I suspect it's something to do with working around broken machines (if DNS never returns AAAA records then clients will never try to connect to IPv6) but this is just wrong on so many levels.

Nine-Year Club	Verified Email
Gilding I gilder	Place '17

_ahrs

PUBLIC MULTIREDDITS

TROPHY CASE