![](https://lemmy.deadca.de/api/v3/image_proxy?url=https%3A%2F%2Fpawb.social%2Fpictrs%2Fimage%2F2612f189-281b-48d3-8dea-27f16eb91b53.png)
![](https://lemmy.deadca.de/api/v3/image_proxy?url=https%3A%2F%2Flemmy.ml%2Fpictrs%2Fimage%2F2QNz7bkA1V.png)
Yeah, just like headphone jacks. Oh wait…
Yeah, just like headphone jacks. Oh wait…
It’s not just that they demand more, they demand more/faster growth all the time. It doesn’t matter that the economy has slowed down to borderline recession, it doesn’t matter that they pretty much captured all the market they can, they still need to make more and more money every quarter otherwise they’re considered a failure even if they are one of the biggest companies in the world.
It generates code and then you can use a call to some runtime execution API to run that code, completely separate from the neural network.
Yes, that’s one option. Then you only have to distribute the certificates and keys.
Or you allow remote access to that DNS server (Bind has a secure protocol for this), do the challenge requests and cert generation on some other machine. Depends on what is more convenient for you (the latter is better if you have lots of machines/certs).
Worst case if someone compromises that DNS server they can only generate certificates but not change your actual valuable records because these are not delegated there.
What you can (and absolutely should) do is DNS delegation. On your main domain you delegate the _acme-challenge.
subdomains with NS records to your DNS server that will do cert generation (and cert generation only). You probably want to run Bind there (since it has decent and fast remote access for changing records and other existing solutions). You can still split it with separate keys into different zones (I would suggest one key per certificate, and splitting certificates by where/how they will be used).
You don’t even need to allow remote access beyond the DNS responses if you don’t want to, and that server doesn’t have anything to do with anything else in your infrastructure.
Have been for a long time. You just have to use the DNS validation. But you should do that (and it’s easy) if you want to manage “internal” domains anyway.
…which shouldn’t be an issue in any way. For extra obscurity (and convenience) you can use wildcard certs, too.
Packages or dependencies with only one maintainer that are this popular have always been an issue, and not just a security one.
What happens when that person can’t afford to or doesn’t want to run the project anymore? What if they become malicious? What if they sell out? Etc.
Waiting for Proton to acknowledge and fix critical bugs that can cause data loss was way more painful… took them years with the solution being “just wait for the bridge rewrite it will be (most likely) fixed there”.
Chrome dev tools are better for JS debugging, but Firefox wins with everything else, IMO. Especially their flexbox, grid and font visualizations and debug tools are amazing.
If you ask a user to show you a “core dump” they’re more likely to shit on their floor and send you a photo than do what you actually mean.
Telemetry is absolutely crucial in determining what to focus on in development, to fix issues the users might not even realize exist. Especially for projects that aim at the general public. As long as it’s communicated clearly, used truly only for development purposes and an opt-out is available there’s nothing wrong about it.
On the contrary, it’s the only comparison you can make, since they are literally the only options.
…and there is no way to do that, currently.
That’s not something that’d likely scale enough to bring any meaningful sum of money.
Even then it targets a tiny, tiny minority of their even current userbase, let alone if they want to approach more “average” users.
I dunno, having a free, open model made by a trusted company would be nice. I like initiatives like Mozilla Voice, this could be something similar. Probably not great if it’s replacing focus on the other things though.
…and, more importantly, none of the donations go towards Firefox development. Instead they go towards “causes” that Mozilla Foundation finds worthy, and usually they have nothing to do with the open web.
They’re two separate(ish) issues.
But it’s still a bad idea to use national TLDs for stuff that has nothing to do with that nation.
Granted, is ICANN wasn’t just a money-grabbing machine with no forward thinking they wouldn’t give nations clearly “generally desirable” gTLDs, but since they did already that doesn’t mean they should be misused.
I had a similar issue and in my case it ended up being some AMD crap (I think an updater or something) that probably didn’t install properly or something.
IIRC I just ended up disabling the scheduled task that was running it and that was the end of it.
…especially when they don’t bother to fix years (sometimes decades) old bugs.
They aren’t really even in budget phones anymore. When you don’t want a notch and want a headphone jack there is almost nothing to choose from: https://www.gsmarena.com/results.php3?nYearMin=2023&chk35mm=selected&sFormFactors=1&sOSes=2&idDisplayNotch=1 :/