If attacker can modify the shell script, they can modify checksums in the script.

But still that sounds like `curl && sh` is *safer* than downloading the payload directly, because the script can add an integrity check, which users may not do themselves.

HTTPS would notice attack on your DNS (and without transport security you're totally screwed no matter what you download from where).

Kornel boosted

elementary OS comes with a carefully considered set of apps that cater to every day needs so you can spend more time using your computer and less time cleaning up bloat. Looking for more? Just open AppCenter to choose from tons of pay-what-you-want apps. buff.ly/2JwoJtS

Kornel boosted

google> We must send you a text to verify it's you logging in

google> But we don't have your phone number. Please give it to us now so we can send you the text

me> This is very secure and not at all a poor attempt at harvesting my phone number

@aeveltstra The cache is in ./target/release/ subdirectories.

In case you can't preserve the cache locally, lib.rs/sccache may give you another, external caching layer.

Kornel boosted

Good morning, everyone! I've put up another call for contributions for #entropic: discourse.entropic.dev/t/looki

This one is a particularly nice way for JS devs to get into Rust, since it involves porting an existing JS module! It also has the potential to be widely-used by Rust folks!

Are draggable scrollbars a new feature in iOS?

Suddenly, I keep hitting scrollbars by accident. And I couldn't manage to intentionally grab one when I wanted. Very fiddly.

nightly is not compatible with macOS — webrender renders very colorful garbage instead of text.

I'm considering trying , especially that I need to ensure Sparkle and ImageOptim are compatible, but since the OS changes partitions, I suspect it's a high risk one-way-only install.

How usable is Catalina preview?
Anything breaks in , Homebrew or ?

app is shutting down :( I can't find a good replacement for that supports following of hashtags or at least has easily accessible saved searches.

Kornel boosted

Hey Scandinavia?!

What the hell does this button do!?

Kornel boosted
Kornel boosted

I've just noticed that Apple's Silicone iPhone case is velvety soft on the *inner* side. The luxury experience is for the phone, not the user.

Kornel boosted

"Privacy Anti-Patterns in Standards | W3C Blog" w3.org/blog/2019/06/privacy-an

Interesting points. I've definitely seen these kinds of discussions in standards meetings.

Kornel boosted
Kornel boosted

-, angry at someone 

Show more
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!