Suggested Reads

Week Ending October 15, 2023 http://lwkd.info/2023/20231018

Looks to be related to critical libwebp bug found — and fixed — last month

Dozens of companies pull out of Lisbon event following a wave of protest from tech bosses

Queued up this week as part of the HID subsystem fixes ahead of today's Linux 6.6-rc6 kernel test release has been a rather embarrassing bug: unplugging Logitech USB receivers has for the past several months been causing the Linux kernel to crash

Epic redundancies all round

Time to update that resume on, er ... oh.

What is curl? curl is an open source command line tool and embeddable library for transferring data over a network.

How we scaled daily.dev from its first moments to hundreds of thousands of users. Technical decisions, hiring the first engineers and more.

Generalist developer writing about fullstack development, system administration and free software.

The agency moved to raise pay using a “people first, mission always” approach, according to Veterans Affairs Office CIO and CPO Nathan Tierney.

Valve, the company behind the Steam video game platform, has announced [https://steamcommunity.

CISA updated its Known Exploited Vulnerabilities Catalog to alert organizations to CVEs linked to ransomware.

Dubbed “HTTP/2 Rapid Reset,” the flaw requires issuing patches to virtually every web server around the world before the problem can be eradicated.

Discover how we’re securing authentication and reducing NTLM usage in Windows.

Online AI image detecting tools that may or may not work are labeling real photographs from the war in Israel and Palestine as fake, creating what a world leading expert called a “second level of disinformation.”

How to use a few means to work out what version of Go a given binary was compiled with.

The hacker from the initial leak offered to sell data profiles in bulk for $1 to $10 per account.

Wikipedia's top five accounts (by number of edits) are all bots. There’s MalnadachBot (11 million edits), WP 1.0 bot(10 million), Cydebot (6.8 million), ClueBot NG (6.3 million), and AnomieBOT (5.9 million.). These bots range in functionality from migrating tables, formats, and markup as Wikipedia changes to automatically detecting and reverting vandalism. Others tag content with labels, archive old discussions, recommend edits, or create new content. The website couldn’t function without them.

Here’s a blog post to answer the question: Why do you write so much about CoreOS? 📦

Yesterday, CVE-2023-44487, a DDOS vulnerability in many HTTP/2 implementations, was disclosed. This is a very interesting attack involving the specifics of how HTTP/2 multiplexes concurrent requests on the same TCP connection, and there are several great writeups on how it works—see e.g. Cloudflare’s HTTP/2 Rapid Reset: deconstructing the record-breaking attack and Google’s How it works: The novel HTTP/2 ‘Rapid Reset’ DDoS attack for details of how this attack works and the consequences.

Hours after the release of Ubuntu 23.10, Canonical has pulled the ISOs and is re-spinning them after user-submitted translations for the Ubuntu installer turned out to contain hate speech.

Bypass Paywalls web browser extension for Chrome and Firefox. - iamadamdev/bypass-paywalls-chrome: Bypass Paywalls web browser extension for Chrome and Firefox.

Data Processing benchmark featuring Rust, Go, Swift, Zig, Julia etc. - jinyus/related_post_gen: Data Processing benchmark featuring Rust, Go, Swift, Zig, Julia etc.

You may need it – Windows 10 is no longer a free upgrade