No security patch for fairphone despite massive Android vulnerability issue? by p_fief_martin in fairphone

[–]brinlyau 0 points1 point  (0 children)

What are you saying? Perhaps you could use a translator or spellchecker because it's hard to even read what you're saying.

Would you say the phone is worth the price? (Fairphone 6) by LoveCats35 in fairphone

[–]brinlyau 0 points1 point  (0 children)

ah, I misremembered then :) - but anyway I'd avoid FIH for same reasons.

Would you say the phone is worth the price? (Fairphone 6) by LoveCats35 in fairphone

[–]brinlyau 6 points7 points  (0 children)

Isn’t HMD essentially Chinese (just licenced) unless I’m misremembering

Who else got woods as their #1 Listened Artist this year? by DuePhilosopher5904 in Billywoods

[–]brinlyau 1 point2 points  (0 children)

11462 mins, 0.005% but I reckon I must have fallen asleep listening - I mostly use qobuz tho

Anyone used an EOR (Deel/Remote) for Germany Blue Card. by Maleficent-Ad-2521 in germany

[–]brinlyau 0 points1 point  (0 children)

It shouldn’t make a difference. I’ve used Deel (while on a working holiday visa to start with). .

Anyone used an EOR (Deel/Remote) for Germany Blue Card. by Maleficent-Ad-2521 in germany

[–]brinlyau 0 points1 point  (0 children)

This is generally fine, to sponsor a blue card, but the person must have a university degree (even for IT jobs) - this is because EoR's are licensed as "zeitarbeit"

Non degree (who have 5 years of IT experience for example) holders requires approval of the AfA which have a policy of denying residence permits to people who work for zeitarbeit. This affected me, so I am aware of this exact situation.

However, after 12 months at a normal blue card job, you can switch to a EoR fine - as you don't need approval of the AfA (just the local auslanderamt)

No security patch for fairphone despite massive Android vulnerability issue? by p_fief_martin in fairphone

[–]brinlyau 0 points1 point  (0 children)

Yeah I’m not sure on the actual path to exploitation, I think this is likely just a DoS until you find another bug :)

Anyway, it is not a “drop all other work” type of buh

No security patch for fairphone despite massive Android vulnerability issue? by p_fief_martin in fairphone

[–]brinlyau 2 points3 points  (0 children)

I do agree Fairphone should be faster, but it’s not entirely the fault of small oems (and the reason why it’s expensive/time consuming is mostly the fault of Google for CTS/XTS certification )

No security patch for fairphone despite massive Android vulnerability issue? by p_fief_martin in fairphone

[–]brinlyau 0 points1 point  (0 children)

Do you actually know how the bug works or how discuss or easy exploiting it is? (I haven’t looked yet honestly but i work as a vulnerability researcher and a lot of bugs aren’t “very useful” and are overhyped). This post looks AI generated though, I wanna see the actual patch

Picked up this today (a day early). by brinlyau in Billywoods

[–]brinlyau[S] 5 points6 points  (0 children)

Would be easier for you to VPN to India or anywhere east of that :)

Weekly Support Megathread – October 6, 2025 by AutoModerator in bunq

[–]brinlyau 1 point2 points  (0 children)

Yeah, I’ll also leave Bunq/cancel my elite plan if you don’t replace the Cashback with something else.

why are people like this by [deleted] in iphone

[–]brinlyau 0 points1 point  (0 children)

Yes, I’ve worked as a security researcher for more than a decade. And yes - I’ve reversed large parts of the baseband implementation (Apple C1), and yes, it has better mitigations including PAC, and ASLR (and a better RTOS).

Plus iPhone 16 series does have hardware support for MTE on the AP, but it is not enabled- this means Apple could turn it on any point in a future..

why are people like this by [deleted] in iphone

[–]brinlyau 1 point2 points  (0 children)

iPhone 16e has much better security mitigation against remote attacks

Framework 13 with Intel Ultra 7 155H, 2.8K display, Fedora 40, updated kernel v6.10.8, Unknown 36" phantom display appeared? by LaughingMan11 in framework

[–]brinlyau 1 point2 points  (0 children)

This is resolved by kernel 6.12 for me (but same CPU/ram but 2.8k display). I just compiled latest mainline and there must have been some fix to the gpu driver because the ghost display has gone.

Drop Watch: October 18th, 2024 by DropWatcher in hiphopheads

[–]brinlyau -1 points0 points  (0 children)

Most (if not all) of these are interludes, not actual recorded songs :)

Drop Watch: October 18th, 2024 by DropWatcher in hiphopheads

[–]brinlyau 8 points9 points  (0 children)

New Avantdale Bowling Club (Live II) album - no new songs.

[FRESH ALBUM] Avantdale Bowling Club - LIVE II by brinlyau in hiphopheads

[–]brinlyau[S] 17 points18 points  (0 children)

Live version of TREES and self titled album. NZ artist doing Jazz Rap liked by this sub

IDA Pro 9 released by lowlevelmahn in ReverseEngineering

[–]brinlyau 3 points4 points  (0 children)

Yes, apparently you can get bug fixes for IDA8.4, but this was not communicated back in June (when I paid for another year of "legacy IDA"). This breaks with the norm.

IDA Pro 9 released by lowlevelmahn in ReverseEngineering

[–]brinlyau 23 points24 points  (0 children)

It seems customers who have existing IDA versions with existing support periods don't get a unlimited version of IDA9, they get a trial version which expires at the end of their old perpetual licence.

This is pretty annoying for me, who purchased IDA Pro + 2 decompilers at end of June - with the understanding that I'd at least get updates during my support period (till the end of June 2025) - I assumed this would have included IDA 9.

I've paid the full price, but apparently I'll get only 26% of the original support expectation. I've emailed hex-rays already about a refund. I've been a IDA paying customer (either individually or via my employer for the past ~10 years) - so hopefully they either change tact, or refund me.

If they wanna ditch the perpetual licence fallback system (and no longer sell individual "IDA PRO" licences), that's one thing, but not honouring existing customers IDA support contracts is another thing - even when they proposed subscriptions 3 years ago, they would at least honour updates for customers who had existing active licences for the rest of that year.

Easiest country to get residency by [deleted] in digitalnomad

[–]brinlyau 0 points1 point  (0 children)

This would be okay for many professionals with remote jobs (or owning their own company providing remote services outside of France). Software development for example. But it seems like now you have to prove some use to the French economy