melroy

joined 1 year ago
sorted by: new top controversial old
It Took 23 Days for Lemmy Posts to Double from 1 Million to 2 Million in c/[email protected]
[–] [email protected] 2 points 6 hours ago (1 children)

I didn't saw it earlier.. :P

It Took 23 Days for Lemmy Posts to Double from 1 Million to 2 Million in c/[email protected]
[–] [email protected] 1 points 6 hours ago (3 children)

The thread itself is actually already 1 year old. Well, look at the screens above. Somebody asked for a follow-up, so I gave a follow-up of both the average posts by day for Lemmy as well as Mbin... The trend is still up.

It Took 23 Days for Lemmy Posts to Double from 1 Million to 2 Million in c/[email protected]
[–] [email protected] 1 points 8 hours ago

And.. for the Mbin users out there. Here is the same average posts by day, but on the Mbin platform.

It Took 23 Days for Lemmy Posts to Double from 1 Million to 2 Million in c/[email protected]
[–] [email protected] 2 points 8 hours ago (6 children)

It seems that. 1) Cumulative graph is removed, because cumulative doesn't make sense. There is an average graph though. Average Lemmy Posts by Day... 2) In just a single day the numbers of this new average graph exploded.. that can't be right.. 3) What about all the spam posts!??

AI-Generated Code is Causing Outages and Security Issues in Businesses in c/[email protected]
[–] [email protected] 1 points 11 hours ago

My point exactly, now you have genAI code written by AI, who doesn't know what it is doing. Instructed by a developer, who doesn't understand the programming language. Reviewed by a co-worker, who doesn't know what is doing on. It's madness I tell you!

AI-Generated Code is Causing Outages and Security Issues in Businesses in c/[email protected]
[–] [email protected] 1 points 11 hours ago (1 children)

Thank you! That is indeed a valid point. I was hoping more people came up with this valid remark. Do you have any other questions or predictions you would like to know? So that we don't get "surprises" in the field of technology again?

AI-Generated Code is Causing Outages and Security Issues in Businesses in c/[email protected]
[–] [email protected] 1 points 11 hours ago

I predicted that introducing AI on software engineer (especially juniors) will result in overall worse code, since apparently people don't feel responsible for the genAI code. While I believe the responsibility is still fully at the humans who try to deliver code. And on top of that, most devs are not doing good code reviews in general (often due to lack of time or .. skill issue). And now we have AI that generates code which are too easily accepted on top of reviewers who blindly accept code.. And no unit tests or integration tests.. And then we have this current situation. No wonder this would happen. If you are in software engineering, you would know exactly where I'm talking about. Especially if you would work at larger companies.

AI-Generated Code is Causing Outages and Security Issues in Businesses in c/[email protected]
[–] [email protected] 9 points 22 hours ago (7 children)

No sh*t, this is what I predicted from day one.

Recommendation for Email-Provider in c/[email protected]
[–] [email protected] 2 points 1 day ago

Proton Mail?

Generative AI is reportedly tripling carbon dioxide emissions from data centers in c/[email protected]
[–] [email protected] 2 points 1 day ago

I'm afraid the power needs for AI will also not decrease. Even if individual models become more efficient and the hardware become more AI optimized. The next logical step is to run even more if those AIs as agents and creating huge chain of thoughts... So no, ai power usage will increase.

I have been getting into emulation (discussion) in c/[email protected]
[–] [email protected] 3 points 1 day ago (1 children)

We need to leverage existing solutions like how Ana archive is working. Which makes use of torrents. https://annas-archive.org/ Like read this carefully: https://annas-archive.org/datasets

This Windows 11 Start menu change is now coming to Windows 10 in c/[email protected]
[–] [email protected] 2 points 1 day ago

Luckily for you Arch has the best wiki pages out there for documentation purposes. If you have any questions regarding Linux or you want to know something, just ask.

-10
Today I removed Firefox (sad day) (kbin.melroy.org)
 

Sad story ahead

Today I fully removed Firefox as my main browser. It's banned from all my devices from now onwards. I used Firefox as my only browser since I was 10 years old. Which is 24 years now (24 years!). I loved

Firefox trying to be a good alternative to Chrome, promoting open-source and showing the world that privacy does matter. Sadly not anymore, recently after Mozilla hostile CEO takeover and moving the company forward to an advertisement company. Neglecting privacy. And fully want the other way around, tracking user data sending back to Mozilla. And at the same time Mozilla has also became an ads company just like Google, so there is no difference anymore really. And it only goes down-hill from here.

Furthermore, Mozilla is spending more money in AI companies then in the product Firefox itself. So..

Luckily, there are plenty great Firefox forks! Look into some of them yourself and really pick an alternative rather sooner than later:

  • LibreWolf
  • Floorp (I went with Floorp, thus far it's great!!!)
  • Waterfox
  • Mullvad

Just pick one, anything... from above list!

I know, it's sad. It's very sad, after 24 years I didn't went to leave Firefox, but this last moves was the straw that broke the camel's back. I'm out, cya at the fork!

39
I saw today the infamous pop-up of YouTube again that they will block the video player after 2 more videos if I keep using uBlock Origin. ** Google. (kbin.melroy.org)
 

I saw today the infamous pop-up of YouTube again that they will block the video player after 2 more videos if I keep using uBlock Origin. ** Google.

1
Use env variables in Docker Compose file (kbin.melroy.org)
 

Some people might think you can only use or set environment variable of the service in docker compose eg.:

my-service:
  image: lts-alpine
  environment:
    MY_SECRET_KEY: ${MY_SECRET_KEY}

But the same ${} syntax can be used to set a version of Docker image of PostgreSQL, like in this example below:

my-service:
  image: postgres:${POSTGRES_VERSION:-13}-alpine

If nothing is set, version 13 is the fallback value. Now you can set POSTGRES_VERSION environment via your shell. Or leverage the .env file of Docker:

POSTGRES_VERSION=16

When running: docker compose --env-file .env up, Docker should now use PostgreSQL v16 Alpine as Docker image.

Bonus: The docker-compose.yml filename is an old filename, use compose.yml from now. Same for other Compose files like compose.override.yml.

More info: https://docs.docker.com/compose/environment-variables/set-environment-variables/ and https://docs.docker.com/compose/environment-variables/set-environment-variables/

4
YouTube is starting to censor medical information (kbin.melroy.org)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
3 comments fedilink
 

YouTube starts censoring medical information and content. And only content that "meets WHO guidelines" appears on YouTube. No other medical data.

I found this very dangerous, because people should be able to judge themselves what they want to read or hear about. It's our body and your health. I would like to make my own decisions.

More info: https://support.google.com/youtube/answer/13813322

3
Fediverse Observer Map View (kbin.fediverse.observer)
 

You can also use the map feature of fediverse.observer to pick your new kbin instance.

1
TIL Lemmy.world got hacked - Details (kbin.melroy.org)
 

Lemmy was/is vulnerable for XSS attacks.

Hackers try to inject JavaScript code that tries to steal your (ideally admin) cookie credentials. It seems that the admin account of lemmy.world was compromised this way (MichelleG). Other instances aren't safe either. Which could point to the custom emojis feature in the federate comments, meaning a lot of external instances could be effected by now.

Incorrect escaping of user input data could lead to these issues. Kbin just recently discovered a similar regression issue and which has been solved by now. But it seems that Lemmy was or still is vulnerable to this attack factor.

Mitigation action Lemmy users: You might want to disable JavaScript in the meanwhile.

Mitigation action for Lemmy server owner: Disable custom emoji:

DELETE FROM custom_emoji_keyword;
DELETE FROM custom_emoji;

Clean-up the exploit content:

UPDATE comment SET content = '<REMOVED BY ADMIN>' WHERE content LIKE '%![" onload%';
UPDATE private_message SET content = '<REMOVED BY ADMIN>' WHERE content LIKE '%![" onload%';
UPDATE post SET body = '<REMOVED BY ADMIN>' WHERE body LIKE '%![" onload%';
UPDATE post SET name = '<REMOVED BY ADMIN>' WHERE name LIKE '%![" onload%';

Rotate your JWT secret (invalidates all current login sessions):

UPDATE secret SET jwt_secret = gen_random_uuid();

Note: Even just opening a link to a vulnerable Lemmy instance could allow hackers to steal your cookies or sessions credentials. Therefore I will not share or allow people to share URLs of comprised / vulnerable instances.

view more: next ›