The Linux Hack was an inside job…
Vložit
- čas přidán 29. 04. 2024
- Can you save money & still get reliable phone service? The answer is YES with Tello Mobile! You get top-notch coverage, no contracts, and no hidden fees. Plus, you can build your own phone plan just the way you like it. All under $25/mo. Switch to Tello & start saving now!
lmg.gg/tellotl
► GET MERCH: lttstore.com
► GET EXCLUSIVE CONTENT ON FLOATPLANE: lmg.gg/lttfloatplane
► LISTEN TO THE TECH NEWS: lmg.gg/TechLinkedPodcast
► SPONSORS, AFFILIATES, AND PARTNERS: lmg.gg/partners
► OUR PODCAST GEAR: lmg.gg/podcastgear
NEWS SOURCES: lmg.gg/kRESW
---------------------------------------------------
Timestamps:
0:00 appreciate ur help
0:06 Linux backdoor found, crisis averted
2:15 Amazon drops cashierless stores
3:51 Google Incognito Mode settlement
5:57 QUICK BITS INTRO
6:07 Snapdragon X Elite vs Intel Core Ultra
6:58 Google Podcasts shut down
7:38 TSMC starts work again right away
8:25 Cars cannot spot kangaroos
9:33 ISS component crashes into house
FOLLOW US ELSEWHERE
---------------------------------------------------
Twitter: / techlinkedyt
Instagram: / techlinkedyt
Facebook: / techlinked
TikTok: / techlinkedyt - Věda a technologie
Kangaroos seemingly wait for you to get close then launch at your car at the last second. Mob of bastards
Yeah. TechLink jokes, but kangaroos are such dangerous and life-ruining pests.
Yep. My severely damaged Suzuki Swift out near Emerald is proof of it. Dense psychos
Their just more aggressive deer. Be thankful they don't have antlers.
Yeah, they also don't run in a predictable pattern, which is why no car manufacturer has been able code avoidance detection for them
Man, I drive past them all the time at my local botanical garden, and the big 6ft males make me shit myself. Don't mess with the roos, they're insane.
I know that there's another comment stating something like "BuT i ThOuGhT lInUx Is SaFeR??".
It is open source, so that's why someone could figure out the problem with the code, and be able to figure out that it was a multi year long con to get backdoor access. Open Source is doing what it is intended; letting everyone see the code to understand what it is doing.
My main concern is with the attack itself. You know the XKCD joke that alot of main utils is supported by one guy in his basement in Nebraska? Like it is literally this, except it is much sadder. If anything, that is the main issue; we need to support developers who literally make what Linux is today, because otherwise, some nefarious state actor could take advantage of that again.
Linux is safer because of its support and emphasis on privacy over profits.
It doesn't mean it is perfect or immune to exploitation, especially in cases of malicious sabotage.
Yes, there are nefarious state entities but I think the motivations are mostly profit driven.
Open source and public owned economic model is the biggest threat to the wealthy powerful enterprise system.
I mean, I would've pointed out all the bugs Windows has had for years that *no one* is fixing, because no one with the power to do so cares, but then, I'm a much more petty person.
(To say nothing of the bugs they "fix" at the *exact* point of failure, only to have the same or very similar problem pop up further down the pipeline. The point being the people working on Windows barely give a shit.)
You are assuming that only a few systems have been compromised by state actors. That's not the correct perspective to take. The correct perspective is that you should assume that every single system and software product has already been compromised and that the xz utility breach was just one exploit that was caught. There are thousands of similar breaches already out in the wild and every computer system is compromised on some fundamental level. Security is a myth when facing reality.
Yes, and that lone guy is probably paid by IBM. Let's be honest, Linux is maintained by just as corporate folks as something like Ubuntu is. I took liberties with that statement but seriously, most of the maintainers work for IBM or RedHat (IBM) except maybe drivers.
0
I tried to go outside, but there's this bright orb that made my eyes hurt, and started to burn my skin. I'll just tell people I use arch through the Internet thank you very much.
I looked it up online such orbs may be called stars. The closest appears to be the 'sun'. That's at least what it says on Wikipedia. Another theory is that it's an orb that is red hot. Many things glow bright when you heat them up enough. Because of how hot those are they may also burn your skin. And one last theory: it might be a lightbulb of a lantern or similar. Their purpose is apparently so you can see without the glow of your screen. But it's way to bright in my opinion. Could you provide more information so we can narrow it down.
Maybe you can disable the orb somewhere once the exact issue is identified.
An easy fix was not in the wiki that's why I assume this may be a bug.
@@unnamed82979 I think toggling dark mode on would help with the issue (at least with the first possibility you mentioned), but it seems the method to do so is not well documented. The closest thing to it I found was called "night mode" but it seems to be a temporary mitigation as it just replaces the bright orb with a less bright one for a period of time.
Another partial solution was named clouds, but it is unpredictable and unstable so could crash at any moment exposing you to the death rays of the bulb.
@@unnamed82979 That's the kernel level anti-cheat. If you wanna play the game, you need it to oversea your every move, you can't do much without it auditing your actions. If you disable it, its game over. You will be kicked out. So, the only solution is deal with it.
Alternatively, dont play the game, stay in.
@@unnamed82979 Perhaps we could even disable this entry known as 'star' from grub to restrict it from booting up with each day cycle until further developments are made?
The orb was gone for a bit today, that was your chance
I love that Jacob is getting way more relaxed - it is much better to watch. Also Riley is a great offsider cause they are clearly good friends
Very similar vibe to Riley, they’re definitely good friends.
He just needs to chill like another 14% and he’ll probably be just about right 👍🏼
If the hands could just relax a bit…. But that last gag was chef’s kiss
He should go somewhere else and do something else; i can't watch him!
I'm loving Jacob presenting with Riley providing sideline commentary, very entertaining combo. 😆
Worth noting. Open source is great. This issue was found and sorted. Closed source likely would never find it until a huge data leak ends up online from their services.
Open Source is working as intended.
unfortunately this was more luck than anything. There were no systematic step that went through that change and approved it.
Oh closed source would have found it just fine. But the company behind the software would have denied, stalled, refused to fix, refused to pay the bug bounties and ultimately charged the bug reporters with corporate sabotage and espionage.
The changed got approved and found by accident
Honestly, it will be much easier to find in closed source apps because there are paid QA teams reviewing each change.. there by ensuring only backdoors getting added is one that approved by company itself
@@Saturate0806 This was no "luck". The luck part was was the Microsoft guy finding it out. If it wasn't for him someone else would have found out (Though we are thankful for his contribution). Point is, so many people having access to source code makes it so that you have a lot of eyes on the code, and somebody will eventually notice the malicious code.
Dang, I had "Flordia man sues Japan for terrestrial attack"
Well it is a terrestrial attack. That piece of metal came from Earth, it just took a very long ballistic trajectory.
@@wingracer1614 Ya know what? I'm gonna accept that, give myself a little grace. The lawyers can fight it out if anyone challenges me, and I will bring you on as my expert witness
For what it's worth, it's my understanding that even though the compromised versions of XZ were shipped on Arch Linux, The malicious code was ineffective due to the way Arch packages OpenSSH.
Yes, only debian and fedora were affected.
It's not a packaging issue. It was ineffective because Arch doesn't link liblzma with sshd for systemd notifications. Realistically, Arch was never the target of this to begin with.
Thank you for saying this XD
You use Arch, btw.
@@ark_knight Also Kali was efected, ok it is debian baised.
Regarding the Incognito mode issue, I used firefox for years, then chrome came out and it was crazy light and fast. Then it turned into a data miner and after more time then I'm proud to admit I switched back to Firefox. People, switch to firefox it's the smart call.
Sadly, there is really no other option. FF has become painfully bloated and slow, particularly on CZcams for some reason. But it's got the only browser that isn't tainted by Google while still having lots of addons.
@@Racistobamaif I were to believe what I've heard the CZcams speed is due to Google checking your browser and slowing the site if it isn't chromium based
I use both, but it's FF first, then Chrome next if something's kludgy in FF. I noticed annoyingly FF freezes for a split second every second if I'm playing YT videos in Chrome (might be a display driver issue I dunno)
They all spy on you. Just use all browsers but for different things and FFS never create accounts, let alone fill in your info.
@@youdontknowme5969 just use a chromium based privacy friendly browser instead, like brave or duckduckgo
Meanwhile windows comes with backdoors preinstalled for you
Windows have preinstalled doors? In the back? What a country!
It's a "feature"
NSA
If Linux was so much better than Windows, more people and companies would be using it on their PCs. Linux only boomed in market share when Google used it for Android.
All OSes have backdoors.
@@sepg5084 do you realize what OS these comments are being stored on rn? Lmao
"so congrats to whoever had florida man sues japan after extraterrestrial attack on their 2024 bingo card"
I had it in 2023, but I removed it for, "Intel releases arm chips". Sadly, probably not an upgrade
I'm very proud of writing that line. I even got the Jessica Pigeau seal of approval™️
@@JakobRush You made me LOL several times this episode, but definitely after that line.
@@JakobRush Damn, that's an impressive accolade Jakob. Are you keeping it in the bathtub with cold water? Remember to swing by the store for some fresh fish on the way back too!
Thank u subtitle gang. Would never know what the video said without u
"Not with that attitude" - Immaculate
The thought that those virtual fences will spook a kangaroo. More likely the kangaroo will just go "What was that noise?" and head towards the light to beat up whatever it was doing that.
Imagine you're a Secret Service and you're setting up a major backdoor injection for over 2 years and then, after only 4 weeks of having it life, some random, 'I'm not a security researcer', dude from the open source community crashes the whole operation before it could get any traction, publishing all the clever ideas you put into it to stay undetected.
That's what I call a major fail.
The fact that the guy just went “hmm why is it taking .5 seconds longer than it should be” and stopped this whole thing from happening is funny to me
The dude wasnt a random from the 'open source community', the dude that found it was a senior software engineer from Microsoft, mate. The "Open source community" let this one slide right past them.
@@Bramble20322 Of course Andres is obviously extremely skilled, but that's not what made him detect the issue. All it took was some curiosity. There are a lot of very skilled people in the Open Source community, which makes it hard to drive through an attack like that.
Ah yes, a Senior Software engineer is a "random dude."
@@rustler08 You would be surprised how many extremely skilled people like Andres create Open Source software. And the initial observation he made didn't require much skill. That could have been noticed by anybody. His analysis afterwards was indeed very well executed and took significant skill.
As an Aussie I can tell you that hitting a kangaroo with a car at highway speeds will kill your car if you don’t have a good bullbar/roobar installed, but the roo will get up and hop away as though they had tripped on a stick.
I can attest to that I hit a roo while doing 100kmh at night, luckily I missed hitting it head on but the right front side of my car clipped it enough that it made a right mess of my car.
So if you hit a roo and your roobar comes off, does that mean you have to rebar your roobar?
I know that in reality we're the backwards people - but 100 km/h isn't really "Highway speed" here in Germany...😂
Guess we're to be glad that there's no Kangaroos in Europe.
@@danieloberhofer9035but here in Germany almost all highways, that have no speed-cap, already have a fence next to them, preventing animals to cross the roads.
For "Landstraßen" (roads that are typically regulated to 100km/h) there often are no fences.
Why is the difficulty level on your ecosystem set so high?
Major props to the writers for properly explaining that this never actually hit production systems.
As absolutely terrifying as this incident was, this was an example of *open source at its best,* with an unaffiliated developer (and absolute 🐐 of a human being) discovering a regression in an alpha build.
On the note of the Linux XZ, situation... its worth noting that (1) THIS CAN IMPACT MAC USERS, who may be running xz utils through homebrew. There's a few write ups on this topic, how to check and remedy it. (2) The part with JiaT and the "sockpuppets" have also had some good write ups of the social engineering part of how this became an issue, and shows the fragile side of how someone's mental health can really play a factor when looking into factors like burnout, along with over-worked and under appreciated. The dev who was pretty much solo until JiaT showed up has recently posted some remarks on the situation, and is working on helping while being on vacation.
On the macOS point, I'm fairly sure that in order for the backdoor to be activated, the infected ssh server needs to be using some systemd component that then arms the liblzma backdoor. macOS doesn't use systemd (and as far as I know the exploit needs to be run in tandem with ssh anyways) and as such it probably won't be active in macOS systems even if you have the infected version of xz
@@nx4184 It also checks for architecture and OS signature being "Linux".
As an Arch user (well, an offshoot) I resemble that remark!
yeah I was actually really upset to find out that it ended up on arch, as a user. probably the single most compelling reason to move to a slower distribution. obviously they can't find everything but this was a serious exploit that could have done a TON of damage to my personal system. all of our bungholes are tight rn
Arch wasn't affecter because it built lzma from source, not from release tarballs. Also if i'm not mistaken they are rolling back the version, because people are now wary of other issues introduced by Jia Tan. If i'm not mistaken gnu tar had a patch applied by him
@@franciscopena7859 that's the due diligence that i like to hear about. thank you so much
As a debian/sid user I was affected...
You really do! Haha
2:33 That "Just walk out " punchline goes too hard 😂😂😂😂.
That version were found in Arch yes, but it were not vulnerable because sshd were not patched to use xz like in Debian or Fedora.
you forgot the "btw"
the most shocking thing in this episode was not seeing naked linus at the mention of their long ago channel hack
Especially after four "intimately"s
Sidenote when Jacob talked with quotations his hands looked like 2 Kangaroos 09:04
🤣 I can't un-see it now LOL
My favorite part of the Linux story is that it was found by a Microsoft employee.
Microsoft is a major contributor to open source
@@SnowyRVulpixMicrosoft’s stance on OSS is still rather fresh. Regardless, there is still irony that the makers of insufferableOS found a vuln in goodOS
A lot of companies contribute to FOSS, like Google, Amazon, and Microsoft. Also I hate the way they worded the Linux distros that were affected because they were not “unstable” distros, they were rolling release, so they never have a version of the distro that is stable, because it’s always updating. And also Arch is another rolling release, so again, no set and stone version.
@@DedMem3 Another thing most outlets failed to mention is that a lot of distros even if they had the vulnerable version weren't actually effected by the vulnerability. Only distros with the effected version that also linked it to systemd. Arch does not do that in their ssh package and neither does gentoo. Realistically the only vulnerable distros were the beta releases of fedora and debian. No current release of any distro was effected to my knowledge whether they be point release or rolling release.
Postgres contributor* that was running debian testing/unstable
Fantastic episode. Cheers to All those working hard to deliver us the tech news
Thankfully my Google Podcast app is still hanging out. The UI for podcasts in CZcams music is more complicated than it needs to be.
The logins were not into XZ, rather XZ was backdoored to affect SSHD which was what the logins were into
That’s why you should use Firefox in stead of any Chromium browsers.
As a (fellow) Canadian I didn't think twice when you said "xzed" as that's what I've always said, and hearing you say "xzee" was the first time I've heard it said that way :p.
I really think that as Canadians, they have every right to pronounce it the way they do. There's no need to default to US English just because they're a widely watched tech channel. Just do Canadian! We don't mind. Some of us Australians even like it.
@@danielharvison7510 that's the spirit! Just let people talk how they talk haha.
9:29 driving down the highway will sound like! Absolutely loved the sound effect 😂
I don't understand, incognito mode isn't supposed to be a private connection. It was meant for separating the browsing history and cookies, like a container. It removes traces from your pc not from the websites. Why people complain about it still tracking, if you don't want to be tracked don't use Chrome
If you are in a car with one of those plastic front ends there is a good chance the roo won't die on impact either. It'll just be really pissed off, so make sure you are out of sight when it gets loose.
1. The code was indeed rolled out to several major distros, but was reverted quickly.
2. The backdoor could only be used by a single actor and only when the targeted machine was hosting an ssh-server with compression enabled.
3. I use Gentoo (which also rolled out the affected xz-utils), not Arch btw.
"You have to see your family to tell them you use Arch" 💀
So this vulnerable package was published on arch linux yes, but critically the known attack vector is not present on arch because arch does not link sshd against systemd and by extension liblzma. Arch users were likely never in any serious danger
I use arch btw
After loosing the Great Emu War, Australia is now loosing the Great Kangaroo Car Software War
It's okay, I'm confident we will win the next animal kingdom war despite it looking likely the Emu's and Kangaroos will form an axis and unite against us.
Riley’s commentary was on point
Lone Arch user in an Ubuntu family, the statement of visiting them to convert them hits home :D
God, why would you *ever* try to convert a family member to Arch? Do you _want_ to spend the rest of your life helping them fix their borked-and utterly bespoke-systems?
I say this as an Arch user who's looking at having to DE hop for a few weeks because Pantheon is being a little slow to upgrade to mutter46.
you're right to say zed as well, you're speaking English and the actual English people say zed, so you're completely right to say zed. Fight the power.
Kicking ass, jacob
Keep it up 💪
How had i not found your channel b4 bro great stuff just subbed
Theo, low level learning, and Primeagean have good coverage of the xz backdoor. It's pretty wild. Seems like if jia and other possible sock puppet accounts weren't so pushy at the finish line it wouldn't be so suspicious.
Brodie Robertson and Fireship as well.
I don't feel remotely bad about being relieved it was Florida and not Italy. To quote John Oliver, Florida is "America's Florida."
LMFAOOOOOOOOOO
"and the arch users will inform you of that". Arch users are the vegans of linux lmao
What does that make gentoo users now lol.
@@Anonymous4045Masochists? I'm really not sure.
@@danielharvison7510 Nah, that title goes to the LFS crowd.
@@AceMcCrankThat's not a daily driver OS, that's a trial by fire.
@@danielharvison7510 It could be a daily driver for a masochist though.
My kangaroo detection system is much better than those car makers system. Its called my eye and its so robust of a solution, it follows me to any vehicle I drive regardless of the make model or year of vehicle.
The Amazon part is crazy for me.
In Poland we have Żabka Nano shops where you walk in, take a product from shelf and it gets added to your cart. When you leave they take adequate amount of money from your card. It works well for 3-4 years already.
Kangaroo accidents are no small matter - at high speeds they can be lethal.
My own experience: Unlike other animals, they Love to jump in front of moving cars to get a better look. I can still that one, glaring at me as I hit the brakes, then jumped straight up as I passed under it. I last saw it in the rear-view giving me the stink eye.
We have moose in the state. They just stand there and don't move.
4:39 omg
9:28 that's a good impression
I really love that I can't have a separate queue for music and podcasts now, it's great. And importing my subscriptions into CZcams Music didn't bring over played status or auto-download preferences.
“You have to see your family to tell them you use Arch!” 😂
Dammit Jakob, you made me laugh out loud THRICE this episode! How dare you sir!
Say "zed" Jakob! SAY "ZED"!!!
It's not just Australia that has an issue with kangaroos and wallabies. There are also wild feral populations in various places across the UK. It's only a matter of time before a motorcyclist hits a wallaby at 300km/h in the Isle of Man TT.
Jacob, you're getting a lot easier to watch; I don't know why I found you annoying previously but you're kicking ass and I'm rooting for you
It's usually pronounced "lasser" rather than "Lassie". And "zed" not "zee".
aww, you guys say 'zed' too ☺️
Greatings from the UK, home on the ZX spectrum ;)
I've used Tello for years and love how cheap and reliable they are in Austin and NYC. Hopefully that doesn't change now that they've started paying for ads, which is a significant expense 😢
This is like the only time an Arch Linux user might not feel that proud of being an Arch Linux user
Oh, don't worry, Arch users are still feeling smugly superior, because Arch doesn't patch openSSH and thus isn't vulnerable to this attack vector.
It was, evidently, a bad week to be an OpenSUSE Tumbleweed user, though.
The time has to be Rush Hour 😂
On the note about XZ Utils: what's Canada's deal with the letter Z? I know us Americans are basically the only English-speakers to say "zee" while everyone else says "zed," so why was Riley giving Jakob flak for saying "zed?" Is it because LMG knows a large portion of their audience is American, or do Canadians colloquially say "zed" when referring to the letter, but "zee" when it's part of an acronym or initial?
Backdoor to Linux was in a news story which went to openwall and was a great read.The vapor-ware person rose in position to be allowed to approve and impliment the code. Call it being trusted from his lower position via time.
The code was readable (except one chunk goes out in binary) and variable names were renamed (my words here.)
Noticed first by doing time tests. The submitted analysis to the security folk is available. Too many wrong assumptions by folk who didn't read the source I gave.
Where has Anthony been? I need more videos of him.
It's . . . been . . . complicated
But I miss him too
I doubt Anthony will ever get back on camera and I really don't blame them.
I'm wondering this too
@@Blue-sb4hv Anthony is now known as Emily. They came out as transgender about a year ago and took a step back from the camera as a result.
This isn't trolling and I wish Emily all the best.
Australian here. Z pronounced zed is correct.
*shudders* “Zee”
It's not the first time they've felt the need to default to the U.S pronunciation. Grates on me a little.
Used a Dash Cart for the first time at Whole Foods last week, and that was an awesome experience. Wish more grocery stores would do it. I'm already annoyed that HyVee and Bakers cancelled their Scan and Go checkouts locally :(
I was relieved when he specified which Naples... Damn!
Good to see Jacob back
"You put some scotch in me and I put myself in women" 🤣🤣🤣🤣
And the kangaroo thing is gonna give Joel some ideas on what to put into Helldivers 2's next update. 😂
Oooh, orbital-drop zeno-kanga nest into the battlefield...and just normal Kangaroos come out, 'cause their scary enough! :P
The Arch comment is accurate. I first heard of XZ-Utils through a *fellow* Arch user. We're usually the first to get new updates.
The backdoor didn't target my distro. Only debian and rhel based ones.
I use Arch BTW.
8:25 As an Australian I ... I can't stand big tech companies. Do they not have any shame? "Oh, these kangaroos are too much for our pathetic little algorithms, so lets blare flashing lights and loud noises to scare them off". Big tech is going to be the end of humanity.
Watch the kangaroo's just break them.
Tbf I don't even think those will work, roos are notoriously hard to deter. Those Shoo Roo things that you see on cars all the time? Don't work. VW's fancy new roo deterrent badge? Probably bound for the same fate. Hell here in Canberra we put big actual fences along the major highway through the city to stop roo strikes and they STILL happen.
A better fix would be a signal not the Kangaroos but the driver to slow down the car. Imagine being a kangaroo wanting to cross a road because that's like your home no 😶
Bright lights and loud noises is about half the drivers in my neighborhood (driving with 3000W subs and/or straight pipes and with their high-beams on, like they think they're special or something)
💪
Hopefully LTT HR doesn’t need tot review this video in 3 to 6 months
8:56 that’s a pretty solid impersonation of a rural Australian
CROSSCODE
Absolutely relieved, 300% percent.
Last time I was this early, Riley was still working for NCIX yes I'm old
Linux was supposed to be the safe option
Safer**
What? I wonder if that's why this is news......
Nah.
Would a back-door snuck into windows be discovered like this or made public?
Nothing is 100% safe, but linux is safer
"YOU WERE THE CHOSEN ONE!"
3:47 That is actually how it works on the Discworld. Only it's not a tiny man but an imp with a paintbrush who paints the receipt as items are being passed by the peephole. This is usually done by very old imps who can no longer paint fast enough to man a fotocamera
*social engineering. It's prounced post-gres-QL. Or post-gre-squeal... It was before easter weekend, and he was not logging into XZ, but the sshd server calls the lzma library (XZ uses LZMA compression) because these distros link it to xz/lzma
"you put some scotch in me, and I put myself in women" 🤣🤣🤣🤣
def doesn't have a rapey vibe to it
Finally, someone explaining the xz drama properly, thanks! Everyone who's been commenting on the issue for the past three days seems to already know what's up and I was like
👁️👄👁️
Linux relies on multiple openly development packages.
Some of which rely on xz and some directly use xz.
One of the maintainers slid in a backdoor, that only they could access because only they had the key.
Only some versions of the xz package were affected.
Got caught because once it sent out the ssh(backdoor) request to possibly some remote vps (server) . Now this took too long to respond or something and increased cpu time.
Generally you wouldn't need a network request for compression so yeah.
The last kangaroo we got hit by was scared by a car going the other way and so it was startled and suddenly crossed in front of us getting the front corner of the car. The audio devices tend to make things worse since it makes them move more
when advertising mobile service providers could you mention what country it's for? I was interested in Tello but it's not in Canada.
You'll have to move, then.
I had a feeling Colin was to blame 😢
It's 2024. Anyone who still thinks that ANY software made by someone other than yourself is not spying or mining, then you're just playing yourself.
If that includes libraries, software you made by yourself is also spying on you.
That Tello ad is hilarious. "Unlimited 2G data after your 35GB of 4G/5G data runs out" - 2G tops out at a theoretical 384kbps. Bits, not bytes. That's 48kBps. Or it would take nearly 21 seconds to transfer even a single megabyte of data - in a never-seen-in-real-life best-case scenario. With that "unlimited" data you could transfer a whole 2.8MB/minute, or 173MB/hour! You could probably load an LTT video in 480p in... tens of minutes at most! Much wow, such unlimited data
EDGE (2G) was only ever meant for calls and texts, and sometimes my connection at work drops that low. DX
@@blunderingfool EDGE was designed for data traffic of all kinds, including internet traffic, so you're wrong there - but this was also in the early 2000s, so it drastically exceeding the speed of a 56k modem over cellular was honestly not that bad for the time. Still, absolutely useless for 2024 internet usage.
Apparently I was wrong: according to Wikipedia, newer 3GPP standards have improved EDGE ("Evolved EDGE") to where it can (theoretically) hit - wait for it - a whopping 1Mbps. That's just eight seconds for a full megabyte! Crazy speeds!
No, I was just unaware that there was a Naples in Florida
Some one get this man a scotch.
and rewind about 6 mths and ask why they shut the company down for a bit. Yeah...
@@brianbarker2551 Spicy. I'm looking this up
@@brianbarker2551 Ah, I do love it when people tout unsubstantiated claims backed by no evidence whatsoever as if it were fact. The internet is such a wonderful place.
Make it a double.
🥃😏
Zed not Zee
Kilometers not Miles
@@greatwavefan397 exactly
That last story had me going crazy at work 🤣🤣🤣🤣🤣 and yes I was relieved that it was Florida
I love how Amazon dropping the "cashierless" stores reveals just how little we've actually advanced. We thought we were living in the future but really Rajesh was just watching you make poor shopping decisions from his desk thousands of miles away.
All these Linux devs are so busy making niche only good for like two purpose Linux distros that they didn't see an oversight like that?
It's one peice of software out of thousands and most random niche distros are made by 1-5 people usually. Before you throw stones while living in your glass house, let's not forget how often things like web browsers or other pieces of software often have day zero exploits
Can ragebait get more obvious than this?
@@SyntheticEugeo the thing about rage bait is no matter how sort sighted or misguided a take is a lot of people will just agree with it because it's talking about a thing they dislike
Maintaining a random compression lib isn't exactly the most glamorous of jobs, hence why only one guy was doing it.
@@Anonymous4045 there's several things you can do with Mac OS that only five people use. You don't have to have a whole damn operating system just for that.
I use a scanner at stop and shop just as simple and have been for years
Riley’s extra commentary during each segment EARNED the like I’m giving… 😅
God I love this guy who’s presenting! Keep him
code the backdoor in assembly and maybe it will be more efficient and less cpu intensive making it more stealthy
It's already in assembly (in the build step they inject malwere binary strings bit by bit after croping from some mp4 file)
Why it took extra 500ms because he was running it in a non standerd testing environment that it was not expecting, so constantly getting crashed due to searching for unset env variables
Wait what?
So excited for the Snapdragon now
It’s faster than a mobile i9?
Thanks! I updated to the latest xz. I use Arch, btw.
Arch was never vulnerable to the specific exploit in ssh, because they don’t patch their ssh packages to be linked with xz
@@erdraghArch is still recommending upgrading in case of other, as-yet-undiscovered backdoors. Also just because why would you want an inert payload just sitting on your system?
@@GSBarlev I wouldn’t and that wasn’t the point. Yes you should absolutely update and not keep an assumed inert payload installed. Iirc it’s not been decompiled in its entirety yet so who knows what else it can do.
Worth noting on the Australian big animal problem, Volkswagen released something called RooBadge which releases directional sounds we can't hear, but the roos hate
i was super excited to join tello, but its only available to US residents... i feel this should have been made known during the sponsor segment...
2:12 not yo mention that the israeli network Jia used to communicate with opensource projects refused to disclose Jia's IP.
Google killing services left and right is why I have a hard time believing they'll provide long term updates for pixel devices (not that they'll last that long)
Nooo, I use Google Podcast! I like the timeout feature. I hope I won't have to pay for features like that with other services
The Florida Man lore is getting deeper woth every passing second.