@awesomekling @dhh I'd like one as well but so hecking expensive.
Serious note it's epic they're giving them away. Rewarding opensource work. Does ladybird take monetary contributions? I want to send you some.
English
Potat
553 posts
There's never any appeasement possible with these lunatics. Whatever concession or apology you offer, there's always another round of demands coming. The sooner you learn to say no to these people the better.
🐝🇬🇷@bee_fumo
NAZIBOOK 13 PRO
English
@TehRockettek @FrameworkPuter Sweet. Someone I know I going to get the pro test driving woo. I'm not fond of the old touchpad at all. Man. I'm hella excited for this. Thanks for the info much appreciated.
English
@Supreme_Tiny @FrameworkPuter The input module on the pro should work on the non-pro laptops, but not the other way around. The display should work completely fine with the old motherboard too.
English
Our biggest breakthrough in efficiency yet, the Framework Laptop 13 Pro with 20 hours of battery life. In Graphite.
Linux-first with options for Ubuntu pre-installed. Featuring Intel® Core™ Ultra Series 3 processors, LPCAMM2 Memory, a new haptic touchpad, and a touchscreen display.
Pre-orders for the Framework Laptop 13 Pro open now: frame.work
English
@sophiefleur__nl @PetradeBoevere Ik vind het vrij normaal om luie uitvreters en nuttelozen uit de zandbak te bestempelen als onrendabel ja. Ben wel klaar met belasting betalen voor die groepen. Wat ik zeg en of ik doe bepaal ik zelf overigens wel pedante muts.
Nederlands
@Supreme_Tiny @PetradeBoevere Nee? Kinderopvangtoeslag? Zorgtoeslag? Kindgebonden budget? Bijstand? De overheid doet meer dan genoeg. Onrendabel? Mijn hemel, doe normaal.
Nederlands
"Ik moet naar mijn werk, maar kan die tank benzine niet meer betalen."
Ons kabinet: "Je krijgt een sloopvergoeding voor je auto, je bier wordt duurder en we hebben subsidie voor je dakisolatie."
Dan kun je nog steeds niet naar je werk.
Nederlands
@sophiefleur__nl @PetradeBoevere Als die overheid steeds neemt en blijft nemen mag je op een gegeven moment wel wat terug verwachten. Alleen dat gebeurd niet. We blijven betalen en dan komen ze met maatregelen die grotendeels alleen onrendabelen helpen.
Nederlands
@PetradeBoevere Wat een gejank. Doe eens volwassen en zet je in- en uitgaven tegenover elkaar. Lukt het niet, dan fiets of zoek een baan dichterbij je huis. Hoezo moet de overheid alles voor je regelen?
Nederlands
@LincolnWatson86 @RupertLowe10 Yet you keep coming back for more. You definetely have a thing for public humiliation.
English
@Roekx4Reason @brunocbreis @DieTukkerfries By odin's beard. Another short Dutch brother. Fist bump in 1.67m
English
@brunocbreis @DieTukkerfries Imagine how I feel.
1,70m and Dutch.
English
Deutsch
Deutsch
Hacking the #EU #AgeVerification app in under 2 minutes.
During setup, the app asks you to create a PIN. After entry, the app *encrypts* it and saves it in the shared_prefs directory.
1. It shouldn't be encrypted at all - that's a really poor design.
2. It's not cryptographically tied to the vault which contains the identity data.
So, an attacker can simply remove the PinEnc/PinIV values from the shared_prefs file and restart the app.
After choosing a different PIN, the app presents credentials created under the old profile and let's the attacker present them as valid.
Other issues:
1. Rate limiting is an incrementing number in the same config file. Just reset it to 0 and keep trying.
2. "UseBiometricAuth" is a boolean, also in the same file. Set it to false and it just skips that step.
Seriously @vonderleyen - this product will be the catalyst for an enormous breach at some point. It's just a matter of time.
Paul Moore - Security Consultant @Paul_Reviews
.@vonderleyen "The European #AgeVerification app is technically ready. It respects the highest privacy standards in the world. It's open-source, so anyone can check the code..." I did. It didn't take long to find what looks like a serious #privacy issue. The app goes to great lengths to protect the AV data AFTER collection (is_over_18: true is AES-GCM'd); it does so pretty well. But, the source image used to collect that data is written to disk without encryption and not deleted correctly. For NFC biometric data: It pulls DG2 and writes a lossless PNG to the filesystem. It's only deleted on success. If it fails for any reason (user clicks back, scan fails & retries, app crashes etc), the full biometric image remains on the device in cache. This is protected with CE keys at the Android level, but the app makes no attempt to encrypt/protect them. For selfie pictures: Different scenario. These images are written to external storage in lossless PNG format, but they're never deleted. Not a cache... long-term storage. These are protected with DE keys at the Android level, but again, the app makes no attempt to encrypt/protect them. This is akin to taking a picture of your passport/government ID using the camera app and keeping it just in case. You can encrypt data taken from it until you're blue in the face... leaving the original image on disk is crazy & unnecessary. From a #GDPR standpoint: Biometric data collected is special category data. If there's no lawful basis to retain it after processing, that's potentially a material breach. youtube.com/watch?v=4VRRri…
English
@maietta @LundukeJournal Well well lookie here. The archived paged. What a retarded move from Wenter.
web.archive.org/web/2026041306…
English
@LundukeJournal Wait, so the Arch Wiki, which has been traditionally a reliable and detailed source of valid information on how things work and how to solve problems, is playing politics when it comes to information gatekeeping?
Omarchy, my daily driver OS, is built on Arch. I hate this.
English
The XLibre page on the Arch Linux Wiki has been deleted, with the following reason given:
“The Xlibre project goes against [Arch Linux Code of Conduct] and should not be listed on ArchWiki.”
The deletion appears to have been done by Alad Wenter, an Arch package maintainer and Wiki Administrator.
wiki.archlinux.org/title/Xlibre
English
@Paul_Reviews I'm howling. This just keeps getting better. Gg my dude.
English
Bypassing #EU #AgeVerification using their own infrastructure.
I've ported the Android app logic to a Chrome extension - stripping out the pesky step of handing over biometric data which they can leak... and pass verification instantly.
Step 1: Install the extension
Step 2: Register an identity (just once)
Step 3: Continue using the web as normal
The extension detects the QR code, generates a cryptographically identical payload and tells the verifier I'm over 18, which it "fully trusts".
This isn't a bug... it's a fundamental design flaw they can't solve without irrevocably tying a key to you personally; which then allows tracking/monitoring.
Of course, I could skip the enrolment process entirely and hard-code the credentials into the extension... and the verifier would never know.
Paul Moore - Security Consultant @Paul_Reviews
Hacking the #EU #AgeVerification app in under 2 minutes. During setup, the app asks you to create a PIN. After entry, the app *encrypts* it and saves it in the shared_prefs directory. 1. It shouldn't be encrypted at all - that's a really poor design. 2. It's not cryptographically tied to the vault which contains the identity data. So, an attacker can simply remove the PinEnc/PinIV values from the shared_prefs file and restart the app. After choosing a different PIN, the app presents credentials created under the old profile and let's the attacker present them as valid. Other issues: 1. Rate limiting is an incrementing number in the same config file. Just reset it to 0 and keep trying. 2. "UseBiometricAuth" is a boolean, also in the same file. Set it to false and it just skips that step. Seriously @vonderleyen - this product will be the catalyst for an enormous breach at some point. It's just a matter of time.
English
@csmproject @Paul_Reviews Oh my days. That's fricking child's play. This is horrendously bad. I wonder how much they paid for the development. "Secure by design" 😂😂
English
@Paul_Reviews Apart from the things you highlighted, why do users only have a certain number of age verifications available? Why does proof of age have an expiration date?
Once I'm over 18, I will always be over 18. I'm not turning any younger!
English
Potat retweetledi
🇪🇺 Will #ChatControl 2.0 (CSAR) result in indiscriminate mass scanning of our chats after all? EU govts reviewing all options (Politico leak): patrick-breyer.de/wp-content/upl…
Council so far uncompromising on “voluntary” mass scanning. And your gov?
Trilogue Thursday!
English
I ported Mac OS X to run natively on the Nintendo Wii - an idea I had over 10 years ago that I finally pursued last year.
Here’s how I pulled it off:
bryankeller.github.io/2026/04/08/por…
English
@eagleeye2805 Brother don't forget about Luxembourg, Lichenstein maybe Monaco? Banker money man.
English
I say it again and again...given the new geopolitical and economic realities, the internal weakness of the EU itself, the future is the United Confederation of Germania with Germany, Netherlands and Austria as nucleus.
112 million people with an economic power of 7.3 trillion USD (PPP: 8.6 trillion USD), the high tech and logistics core of Europe.
These 3 countries already today have the closest partnership within the EU due to similar cultural and fiscal values.
This Confederation could be operational in the shortest time.
Can the Swiss, Czech, Slovenes, and Danes join? in principle yes, if they want to. Belgium only Flanders.
English
I’ve interviewed 100s of people, here’s a realistic question that really helps weed out the cybersec candidates:
Would you surrender your admin password to a stranger for $10million in btc?
>If they say yes, they can’t be trusted
>if they say no, they’re stupid (or lying)
himug-lamuh@HimugLamuh
i'm interviewing two people in the next week. give me your best interview questions.
English
Well yes. Since biggest part of the total Dutch petrol price is vat and excise tax.
It's currently like 85 cent excluding vat of 21%.
That boils down to roughly 50% or more of the total petrol price is going to the government.
They've got plenty of margin. Except they're greedy bastards.
English
I mean, you’re acting like he can just pull that cash out of his pocket.
Either it comes back as inflation if they print more money which hurts the same people you mention, or they have to take it from somewhere else, like infrastructure, hospitals, etc. which hurts somone aswell 🤷♂️
English
Dutch Minister of Finance doesn't see urgency in lowering the taxes on petrol.
'We're waiting to see whether further escalations happen. Every 10 cent decrease on the price costs us €1 billion.'
Yeah, well, the price of petrol was 60 cents lower a month ago.
This costs the society literally everything on their day to day life.
Stupidity.
English
@0gtweet @UK_Daniel_Card Ah yeah. I mostly familiar with doing things locally. My co-worker has got his whole house automated with Shelly Pro 1PM's. Shelly cloud is pretty allright. As far as I've heard.
English
@Supreme_Tiny @UK_Daniel_Card I like Shelly for its cloud and Sonoff for 16A max current.
English
@UK_Daniel_Card I use Shelly and Sonoff. Depending on WiFi/Zigbee.
English