This is the day after iOS 18.2 was released with native ChatGPT integration.
This is the day after iOS 18.2 was released with native ChatGPT integration.
It was reported by several outlets as true.
Risky publicity stunt if that’s what it was.
First time seeing this? Man, that’s fwupd.
It’s so old it’s not called self-hosted.
Moneydance https://moneydance.com/
Started using it close to twenty years ago and keep using it because it seems fine.
So, carry two phones?
I agree. Android a has sandboxed work profile that limits what the org has access to. The employee can also turn off all the work apps at once.
I see nothing better about Apple’s all-or-nothing access approach.
Maybe this lawsuit will nudge Apple towards the Work Profile approach of Android. Sounds like it could have addressed the employees concerns.
Part of my job includes mobile device management so I can explain.
There is a class of software that can be installed on phones that has the privilege of an administrator on the phone. This called Mobile Device Management software or MDM. This management software can disable certain features by policy, install, remove or block software, remote wipe, monitor and backup the device.
It’s most often used on company-owned devices. But people understandably don’t want to carry two phones.
So some companies like Apple allow employees to opt-in to using a personal device for work, with the trade-off that company has some management options on the phone to comply with their security and data privacy policies.
It sounds like in this case Apple offered employees to stay hands off their personal phones and connected accounts by using a second work-only phone. The employee opted-in to connecting their personal device to Apple and was then frustrated that Apple had more access to their device.
To answer the question directly: This mobile device management software isn’t running on most personal devices. See for yourself under Settings: Device Management. If the device is managed, you’ll see something there.
This is about Apple managing personal phones, not just work phones.
I use QGIS, which needs to stay in sync with a number of Python packages and plugins. I have thought of using Nix for that, but am not sure if everything I need is packaged for Nix.
I’m using Conda now, a Python package member which seems more popular for this niche need.
I agree. Flatpak could be used to further lockdown what Firefox can do, but it has so much features and complexity that I also expect it to be difficult to successfully lockdown.
I would either start with a product that explicitly has just the features a web-kiosk needs or use something based on ChromeOS, which explicitly has a set of enterprise policies that are there to allow admins to lock down a fleet of Chromebooks as they need.
This is based on the security principle that a system is far more secure if you explicitly allow what you need vs trying to explicitly block or disable all the things you don’t want.
Over time, the features you need to allow your web kiosk needs maybe somewhat static and in your control, while all the features you need to disable in Firefox could be constantly evolving and put of your control if you are keeping Firefox up to date.
I like the project but use DIY Sway.
Yes, particularly the variant distributed on a business-card sized CD rom. To be carried in your wallet for emergency use.
So we have learned their plan ton pay for those 38% pay raises.
At one time there were browser extensions that allowed you to comment on any web page and allowed other extension users to see your comments.
The comments were hosted through the extension and not on the pages themselves.
Something like that would be possible but I don’t know anyone offering it now. I presume no one wants to moderate that.
This coverage provides an example of what is sent, and it includes neither MACs nor HDD serial numbers.
Good example. It’s true that an even a GET request not designed to mutate data might still fail to validate input, allowing a SQL injection attack or other attack that escalates to the privileges that the running app has.
Immich has a whole set of end-to-end automated tests to ensure they don’t accidentally make public any URLs they went to be private:
https://github.com/immich-app/immich/tree/main/e2e/src/api/specs
As a popular open source project, that would be e glaring security hole.
Using this proxy puts the trust in a far less popular project with fewer eyeballs on it, and introduces new risks that the author’s Github account is hacked or there’s vulnerability in he supply chain of this docker container.
It’s also not true that you “never need to touch it again” . It’s based on Node whose security update expire every two years. New image should be built at least every two years to keep to update with the latest Node security updates, which have often been in their HTTP/HTTPS protocol implementations, so they affect a range of Node apps directly exposed to the internet.
Yes, there are broken uses of the HTTP protocol verbs where filtering to GET won’t work.
https://www.cloudns.net/ Makes dynamic DNS very easy.