No, it really doesn’t. That’s like creating a bot that buys and sells company shares automatically, and saying the stock exchange has a vulnerability because your bot makes bad decisions.

What’s absurd is this crypto maximalist take.

You can’t just make up your own permission and punishment system, and then expect the legal system to just step aside and let it handle all disputes, especially when it comes to fraud. That’s like founding your own city in an existing country, and declaring all existing law obsolete. I know some people think this is a real possibility, but the real world doesn’t work like that.

IANAL and all, but bad/unfavorable contracts and literal deception/fraud are two different things, at least in the legal system. Not everything that’s technically possible is also allowed, obviously.

Compare it to using a security flaw to hack into a system. Technically you’re only using the official API, maybe in unusual ways, but still. But you’re doing it in bad faith and causing harm, maybe pretending to be someone you’re not or injecting fake data into the system, and that can make a difference.

It’s not. They tricked some MEV-Boost bots into doing bad trades.

Here is a more detailed explanation of the exploit.

The Pepaire-Bueno brothers exploited a bug in MEV-boost’s code that allowed them to preview the content of blocks before they were officially delivered to validators, according to the indictment.

The brothers created 16 Ethereum validators and targeted three specific traders who operated MEV bots, the indictment said. They used bait transactions to figure out how those bots traded, lured the bots to one of their validators which was validating a new block and basically tricked these bots into proposing certain transactions. […]

So hardly an attack on any core system of cryptocurrencies.

I hope at that point we have enough capable alternatives. Like, hopefully around the time they add ads is also the time when open-source models and apps have caught up again.

You have to provide the user, group and file name as the next three guesses, just trust me!

It’s a group therapy called !linux@lemmy.ml, we always have free seats!

This is pretty impressive and hella creepy!

How about some JavaScript p+=[]**[]?

If you’re curious, here are the numbers added up for all Lemmy instances with 10+ users:

blocked/fedipact

• ​​users: 251442 (~60%)
• active: 24106 (~55%) ​​​

federated

• ​​users: 167166 (~40%)
• ​​active: 19558 (~45%)

If you have a monopoly and need to maximize profits then the question becomes: Why not?! You could extract more money this way, and it’s not like your users would go anywhere else at this point.

That is why it’s so important to fight and break up monopolies, and to limit what these companies can do. Because they have no reason not to squeeze every penny they can get out of you!

I guess it depends on whether it only applies to “large platforms” as the wording of this article suggests. Otherwise it should definitely affect every site with a similar option.

Yes and yes. It runs the bridge and en/decrypts messages locally on your device, so full e2ee is preserved. The bridge still has to login to your messenger accounts, so nothing changes there.

There’s almost no difference to a good Matrix client if you already selfhost the server and bridges. Most of the Beeper client’s value is making it very easy to manage the bridges they host for you.

It should probably be replaced with a more bespoke operator for that, like x isempty or something.

Please try to request the source code with that screenshot!

But M$ likes to play games with you!

Relevant xkcd

I’ll repeat what I said the last time this was posted: NO f*cking way the Fedora guy got past the partition configuration step without pulling at least a few hairs out! I love Fedora, but that UI is just cursed!