Have you had anyone with experience with security look at this thing? There’s a lot of really questionable practices in your schedule shell scripts. I especially find how you’re handling VPN secrets kinda worrying. And the backup_challenge_clients.sh script isn’t robust at all. Your nginx config has a few bad choices like lack of try_files, the regex \.php$. It’s definitely not hardened so I hope people don’t put this Internet facing.

I’ve spent like 5min in the GitHub to get a feel for the project maturity. Personally, I don’t think this is suitable for actual use yet.

If you’ve not done any security assessments on your project yet, you might not want to (a) call it “Safe”box and (b) might not want to start charging money for it until you do.

I worry you’re setting yourself up for a hard-to-shake-off embarrassment should a nasty vuln be found. Maybe a name like “selfbox” etc that drops the connotation of security would be safer.

Edit: Kudos on the project website though! Looks fricking gorgeous.

Crazy cool sound. Thumping metal rap. Looking into the artist, they produced the whole thing themselves!

deleted by creator

Not with that attitude!

If you went with Arch Linux, you could effectively set up your own mirror, download the wiki zim file, and you should be good to go.

There is bandersnatch for mirroring PyPI but docs are all over the place for Python packages. You might just have to hope they made liberal use of docstrings…

Almost without a doubt. Original Sin 1 and 2 were my all-time favourite RPGs until the same developer casually released Baldurs Gate 3 and stole the #1 slot.

I know people in the working group in the cybersecurity space working with MS on these APIs and this really isn’t their plan. They aren’t doing it to kick people out - cybersecurity want out for themselves as no one wants to do a CrowdStrike.

There are countless other use cases for kernel drivers that won’t be in scope of the APIs being drafted.

What’s that got to do with MS’s decision to kick them out? What’s the Venn diagram of mission critical systems and systems running Valorant/League?

I’m not disagreeing that these bullshitty kernel drivers running from boot exist, I’m stating that MS aren’t going to do shit about it if even more risky kernel drivers aren’t planned to be removed from the OS and there’s plenty of other popular anti cheat drivers that are only loaded at runtime.

Yes but many don’t. And the risk impact of BSODing gaming computers vs business systems is dramatically different.

We won’t see MS do anything about kernel drivers until the majority of security industry has moved to whatever new userspace APIs MS release.

Even then, do gaming anti cheat developers really care?

IMO simply vote with your wallet and don’t buy games that need kernel drivers and still fail to address cheaters who always find a way around.

Those remote jobs are plentiful but not open to US candidates. I’ve heard rumblings that US hires are being deprioritised even in US-headquartered orgs as US staff are simply too pricey so they’re looking towards European and Asian countries (and even Canada).

There’s little reason to force them out given games run temporarily. We’re more likely to see security products move out of the kernel first since they run full time and from boot (meaning there’s stronger implications if they fail in kernel space e.g. Crowdstrike). And even then, they’re not forcing them out, just offering APIs in user space to negate the need to be running in the kernel for those use cases.

I’d love to see games denied the ability to run drivers in kernel space on Windows but I don’t think we’ll see that any time soon.

Full paper is here for those looking for it

You need to turn it upside down and look at it in a mirror to get the full effect.

Sadly not, first time I’ve heard of it.

I’m still rocking my OG Steam Controller so I still use that for anything mouse-related on the couch.

What about a trackball mouse?

Steam Input can be used to turn your joystick on your existing pad into a mouse. You could add a button for a speed modifier.

It won’t be perfect or good for precision mouse stuff but it’ll unlock a lot of games for couch gameplay with your existing setup.

A wild sparkly fart appears

Who can murder someone with a PC this excellent?

Professor Belvedere “Fartsparkles” Tinkletuft was once a respected lecturer at the Neverwinter Arcane Academy. His groundbreaking research into “transmogrified odoriferous manifestations” (or, as the students called it, fart magic) was dismissed as childish and “in poor taste.”

In protest, the Professor vowed to prove that flatulence is the ultimate illusion. Through alchemical experimentation, he discovered how to weaponize his digestive essence into arcane displays — clouds of glittering gas, illusionary stink beasts, and even gaseous duplicates of himself.

Now he roams the realms, performing “scientific demonstrations” and occasionally saving the world — usually by accident.

You’re arguing with someone who hasn’t read the article…

And wasn’t the makeup to hide chlamydia / syphilis etc?

Is it any good?