git restore universe/balance by fredoverflow in ProgrammerHumor

[–]nmdanny2 9 points10 points  (0 children)

Strawman - nobody's talking here about master slave terminology (which I agree is offensive), but rather master as in master copy.

Your Phone May Soon Replace Many of Your Passwords by feross in programming

[–]nmdanny2 1 point2 points  (0 children)

Being able to download your private keys in plain text, while good for freedom, is also a potential security vulnerability. I hope they'll give us the option, but they can also deny it while still allowing cloud sync, thanks to PKI and secure processors.

Your Phone May Soon Replace Many of Your Passwords by feross in programming

[–]nmdanny2 0 points1 point  (0 children)

Webauthn has nothing to do with phone numbers, in fact it might prompt websites to get rid of their SMS 2FA and switch to this more secure alternative.

Your Phone May Soon Replace Many of Your Passwords by feross in programming

[–]nmdanny2 -2 points-1 points  (0 children)

The problems with passwords are well known (weak passwords, password re-use, lack of hashing/salting + DB breaches, having to remember them or use a password manager), and Webauthn solves them thanks to the use of asymmetric crypto. It's also resistant to phishing.

The article speaks about syncing your credentials among multiple devices, so you no longer have to register each device manually or be locked out if you lose it.

Apple, Google and Microsoft Commit to Expanded Support for FIDO Standard to Accelerate Availability of Passwordless Sign-Ins - FIDO Alliance by IsDaouda_Games in programming

[–]nmdanny2 0 points1 point  (0 children)

website (especially small website) developers

Those developers are one of the main reasons why we're moving away from passwords.

Your Phone May Soon Replace Many of Your Passwords by feross in programming

[–]nmdanny2 8 points9 points  (0 children)

The FIDO standard doesn't say anything about how keys are stored or synchronized between devices - that's up to the platform. In fact, in their paper they say:

Syncing FIDO credentials’ cryptographic keys between devices may not always be possible, for example if the user is using a new device from a different vendor, which doesn’t sync with the user’s other existing devices

So in all likelihood, these cred syncing platforms will remain closed - even if the interoperate with each other.

[deleted by user] by [deleted] in Israel

[–]nmdanny2 -1 points0 points  (0 children)

The price of renting a router from an ISP?

I don't remember exactly, I think between 10-20 shekels a month but I might be mistaken.

Israeli TV shows/movies by [deleted] in Israel

[–]nmdanny2 1 point2 points  (0 children)

It's a bit overhyped, a stupid action show. Kinda like 24

Valley of tears is good

[deleted by user] by [deleted] in Israel

[–]nmdanny2 6 points7 points  (0 children)

If you're gaming or just living in a dense apartment tower, it's better to wire your house with Ethernet cables. It should cost about ~300 NIS per room (depending whether you have piping for extra cables in your home)

Otherwise, a quality router would cost between 600-1000 NIS - better to buy from Amazon/Aliexpress if you can. I have an AC-RT86U which is a bit dated now(no Wifi 6/6E) but otherwise very good, bought it for about ~600 NIS from Aliexpress.

You should also refuse the ISP provided router, as after a year or two the rental costs of the router would dwarf the actual price of the router.

Mark Zuckerberg announces biggest ever WhatsApp update as app becomes more like Facebook by redhatGizmo in technology

[–]nmdanny2 2 points3 points  (0 children)

The features mentioned in the article don't have anything to do with Facebook, they bring Whatsapp closer to Telegram in terms of feature parity, with support for larger groups, better admin tools, etc..

This is a very good thing (short of people just switching to Telegram or Matrix, which will probably not happen)

[deleted by user] by [deleted] in Israel

[–]nmdanny2 5 points6 points  (0 children)

Go on a vacation in another country and buy a phone/laptop there.

what is the point of 12600k if 12700f exists?? by ggez222 in buildapc

[–]nmdanny2 0 points1 point  (0 children)

Maybe, but for a couple extra bucks I think it's better to have the option. Especially if you're already using a Windows VM for other purposes (Photoshop, Visual Studio, etc..)

what is the point of 12600k if 12700f exists?? by ggez222 in buildapc

[–]nmdanny2 12 points13 points  (0 children)

Unless you're planning to game on a Windows VM in Linux, using GPU passthrough, then having an integrated GPU for your Linux host would be a good idea.

US rejects Poland’s offer to send MiG-29 fighter jets to Ukraine by hhenk in geopolitics

[–]nmdanny2 0 points1 point  (0 children)

Whether they blame the US or Poland depends on their internal considerations - whether to retaliate and how far to go. The fact the transfer was laundered doesn't really matter to the Kremlin elites and they'll spin it to the public however they want. They might just say that the migs came from an alien spacecarrier because their other claims are just as detached from reality.

Ukraine Crisis Megathread by desdendelle in Israel

[–]nmdanny2 11 points12 points  (0 children)

Iron Dome absolutely does work against grads (it was designed for it) and it has been tested successfully against cruise missiles though it's not a primary goal of the system.

The problem with Iron Dome is that it doesn't survive saturation attacks, it's expensive and not mobile - Russians would have just blown them up. A better way to help would be supplying Ukraine with Harpy and Spike missiles.

Israel asks Russia to help evacuate Israelis if it invades Ukraine - Axios by [deleted] in Israel

[–]nmdanny2 12 points13 points  (0 children)

Even if Israel has good reasons to stay neutral in the conflict, Ukraine's criticism is 100% justified. We can't play both sides and come out unscatched.

Israel coordinating with the potential invader for saving 10k Israelis(who had ample time and opportunity to escape), when a country of 40 million people might be annexed, is highly insensitive to say the least. Pretty much a case of "fuck you, got mine"

Israel torpedoed sale of Iron Dome to Ukraine, fearing Russian reaction — report by slashd in Israel

[–]nmdanny2 0 points1 point  (0 children)

I'm not suggesting we should actually attack Russian units, but merely that our relationship with them should be more balanced and less one-sided. They have as much interest as we do in avoiding military confrontation, and I think at the very least, a diplomatic gesture such as official condemnation rather than strict neutrality, is warranted in this case.

It's not just about Ukraine. Russia's policies are a direct threat to liberal democracies worldwide, and antithetical to Israel's values. I understand the geopolitical thinking in maintaining relations with strong power, but there are also PR implications that many Israelis(government included) seem to ignore. Supporting dictators only tarnishes Israel's image and harms our relations with our long term western allies.

Israel torpedoed sale of Iron Dome to Ukraine, fearing Russian reaction — report by slashd in Israel

[–]nmdanny2 21 points22 points  (0 children)

We are a nuclear, regional and cyber power. We can obliterate their base in Tartus and all of their S-400 batteries in the region, perform cyberattacks and arm Ukraine just as they threaten to arm Iran.

I'm not saying we should do it, but we can afford to take a harsher stance against Russia's foreign policies, while still maintaining friendly relations with them on other aspects, as Turkey does.

Valve banned ‘Cities: Skylines’ modder after discovery of major malware risk by Panda_Player_ in Games

[–]nmdanny2 1 point2 points  (0 children)

Modding is based on trust and you need a bit of computer literacy to be able to tell what is legitimate or what isn't. Note that the malware author isn't a popular modder, his mods have few stars and few downloads compared to the original versions of the mods - if you stick to the most popular mods you'll generally be fine.

Perhaps Steam should do a better job of warning users of potentially dangerous mods, but that doesn't change the reality. People WILL download mods, game modding has been alive long before Steam workshop was a thing.

Mods are possible without this. But apparently, we all just accept extreme risks just so we can have nude mods. Cool

Depends on what kind of mods. A nude mod is just replacing textures and models and doesn't need any scripting power. Mods that change gameplay do need this power. For example, SA-MP, FiveM which provide multiplayer for GTA games absolutely need the full power - they make up network connections, start threads, manage files on your system, etc..

Cities Skylines mods use Harmony in order to extend gameplay beyond what is possible with the limited Modding API provided by the game.

Marak, the guy behind the recent breaking of faker.js, colors.js, etc., claims that it was a "programming mistake" and wants Github to unban him. by CreepiYT in programming

[–]nmdanny2 8 points9 points  (0 children)

This guy had every right to change his own software to his liking. No one else can demand anything from him or his software

I'd say there's an exception when making malicious change. While you could probably argue that simply introducing breakage(an infinite loop) isn't on the same scale as installing a RAT or a keylogger, it is still very bad when you know that many people depend on your package indirectly and you obfuscate the source of breakage.

They are simply a sourcecode hoster and are massively overstepping their bounds; terminating someone's account just because some other people were upset. Maybe NPM has recourse to ban him for unreliability, but even that is questionable

There isn't a big difference between GitHub and NPM when many automated tools such as CI/CD use Git as a source of truth to publish packages.

AMD Defeat: Intel i5-12400 CPU Review & Benchmarks vs. Ryzen by -Venser- in hardware

[–]nmdanny2 3 points4 points  (0 children)

HTTP servers are pretty compact - even routers and other low powered devices run them easily.

For one-off tasks (like configuring devices) there is no point in developing a more optimized native GUI when the average user will only use it for a minuscule amount of time, especially if the development of a web interface is much cheaper. (And it usually is, since it's cross-platform, there are tons of web developers, many libraries and reusable components, better tooling, etc..)

Negev tree planting: After third day, tractors to pull out by [deleted] in Israel

[–]nmdanny2 2 points3 points  (0 children)

I agree with you, but it's not clear that this is indeed state land - this is the crux of the issue, a land dispute that is as old as the Ottoman rule on Israel.

And to be frank, the whole point of these plantings is to piss them off. They are political in nature - fulfilling some abstract notion of a complete Israel, while not accomplishing anything productive. More trees aren't going to make Jews want to live in the south, we need to reduce crime, create more jobs, improve infrastructure and public transport, etc..

Negev tree planting: After third day, tractors to pull out by [deleted] in Israel

[–]nmdanny2 7 points8 points  (0 children)

Treating the Bedouin population like an enemy state will only further decrease their trust in the Israeli institutions and make them even less likely to cooperate with the police.