Joined devRant on 6/12/2017
Do all the things like ++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatarSign Up
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple APILearn More
A guy is sitting at a bar when the guy next to him lights up a cigarette. Horrified, the guy turns to him and says "hey! Don't you know the surgeon general warns that cigarettes can cause cancer!?" The guy next to him replies "I'm a software developer, I don't care about warnings. Only errors"2
So today (or a day ago or whatever), Pavel Durov attacked Signal by saying that he wouldn't be surprised if a backdoor would be discovered in Signal because it's partially funded by the US government (or, some part of the us govt).
Let's break down why this is utter bullshit.
First, he wouldn't be surprised if a backdoor would be discovered 'within 5 years from now'.
- Teeny tiny little detail: THE FUCKING APP IS OPEN SOURCE. So yeah sure, go look through the code! Good idea! You might actually learn something from it as your own crypto seems to be broken! (for the record, I never said anything about telegram not being open source as it is)
- The server side code is closed (of signal and telegram both). Well, if your app is open source, enrolled with one of the strongest cryptographic protocols in the world and has been audited, then even if the server gets compromised, the hackers are still nowhere.
- Metadata. Signal saves the following and ONLY the following: timestamp of registration, timestamp of the last connection with the server (both rounded to the day so not on the second), your phone number and your contact details (if you authorize it) (only phone numbers) in HASHED (BCrypt I thought?) format.
There have been multiple telegram metadata leaks and it's pretty known that it saves way more than neccesary.
So, before you start judging an app which is open, uses one of the best crypto protocols in the world while you use your own homegrown horribly insecure protocol AND actually tries its best to save the least possible, maybe try to fix your own shit!
*gets ready for heavy criticism*20
Having a hard time finding work. Jack of all trades, master of none. Went to college for a while, but never finished a degree. Mostly self taught and can easily learn on the fly.
Can program, 3d design and model, ins and outs of unreal engine 4, web stuff, can do IT work, knows VR standards and tricks, powerful desktop and powerful laptop, plenty of uhd cameras, knows Android and ios, etc.
Where do I look? What can I apply for? Can I make money on my own? Can I provide a service? How do I sell that?
I finaly managed to make a dark mode on slack desktop app! Still has some bugs (like scrollbar being white) but works well enough for me. If anyone is interested tell me in the comments 🙂
How i did it (Linux paths but should be the same process for Windows):
You can execute scripts in /usr/lib/slack/resources/app.asar.unpacked/src/static/index.js
Using that i figgured out that slack desktop is basically an actual webview to their website and some os hooks.
Then i just simply packaged up some custom css to be loaded with JS.
Quite simple actually.
Using this method you can create all kinds of plugins for slack, so go wild!3
Not a rant, but a question.
Why is their so much fear of Google and Microsoft misusing information they collect?
What proof is there of this (provide references and cases, for a proper argument)?
What would you have these companies do to resolve the issues you brought up above?
I'm sorry if I seem ignorant, I'm genuinely unaware of all this. I'm willing to learn provided it's a fair analysis.7
Just a quick update (been a little) on the privacy website!
Although both the frontend and the backend need quite some work, I managed, with the help of some other guys, to get everything (only for the IM section yet for now) loaded from the database instead of hardcoded! Yes, that also means that the tiny icon colors are either red or green based on database values :).
Going to keep working on this tomorrow in the hopes I can also get some other subjects ready.
So, just to try this out, I'm going to temporarily "de-google" and use other services. What are the absolute best alternatives?16
De-google your life
-duck duck go look up the founder
-yandex (putin botnet)
-https://kek.gg/i/3g2z6d.png (superior list)
-https://kek.gg/i/67YQQx.jpg (for furfags)
-ether pad (eg: notes.typo3.org or etherpad.net)
-microsoft office online (lol)
-gnu social (for freedom loving patriots)
-mastodon (for proprietary loving gook pedos and sjws)
Google CDN avoidance
Ad and script blocking
Share links without gibbing clicks
How to hosts file (lol, just block google bro):
Last weak I tried to use Linux Arch on my VM. The only Linux distribution I'm used to is Ubuntu and the fist time I launched Arch I completely forgot that it was " do it yourself ". And that the ISO isn't actually a fancy installer like the Ubuntu one.
So I started following a guide and found out that the arch wiki is actually the way to go.
I searched for 1 hour how to change the keyboard to swiss-french which was actually pretty simple.
After that exhausting research that made me realise how ignorant I am with UNIX universe, I finally tried to install the thing.
When I was done installing, it didn't want to boot after I restarted. I got stuck at the 'Booting...' screen. After a few tries I lost all my energy and motivation.
Tl;dr: Tried Arch Linux, realised I had no idea, gave up after a few tries5
What kind of cum gargling gerbil shelfer stores and transmits user passwords in plain text, as well as displays them in the clear, Everywhere!
This, alongside other numerous punishable by death, basic data and user handling flaws clearly indicate this fucking simpleton who is "more certified than you" clearly doesn't give a flying fuck about any kind of best practice that if the extra time was taken to implement, might not totally annihilate the company in lawsuits when several big companies gang up to shower rape us with lawsuits over data breaches.
Even better than that is the login fields don't even differentiate between uppercase or lowercase, I mean WHAT THE ACTUAL FUCK DO YOU SELF RIGHTEOUS IGNORANT CUNTS THINK IS GOING TO HAPPEN IN THIS SCENARIO?13
Came home late last night and told my wife I'm skipping dinner to take a 1hr nap as it's going to be a long night of bug fixing and testing. Woke up, my wife and 1yr old son are already asleep. Saw the pic below posted on the wall above my work area at home. She's a teacher, she's never heard me mention it, and I don't use this method (I prefer music on my headphones). But she does know I lurk devrant so she must've browsed here while I was napping. Feels good. Code fixed, checked-in, unit tested and released for user testing.6