sneak @sneak@sneak.berlin

When you update the OS on an M1 Mac, it transmits system unique identifiers to Apple's TSS server on gs.apple.com via plaintext HTTP (no TLS/SSL!) via an XML plist.

Verified today on a new M1 Max 16" rMBP upgrading to 12.2. I have pcaps.

@eloisa no, your answer is to a question along the lines of "why would ukraine want ammo right now?"

the question I asked is "why is the usa sending tons of ammo to ukraine?"

what's the US LTE or 5G carrier that you can simply pay per GB used and not get throttled at x GB? i'm using fi but it throttles you and caps your bill after x GB, and i'd rather pay more and not be throttled to 128kbps (i downloaded apple OS updates on LTE today and destroyed my data cap)

@bionade24@mastodon.social there is a safari 0day out that lets webpages own the whole system, too

it's sort of crazy, internet i regard today as very slow would have been mindblowingly fast for me when i first got broadband

@eloisa that has literally nothing to do with the question i asked.

fucking ios won't let me download updates bigger than 1gb on cellular, even though i pay my carrier for unlimited data. it wants me to connect to wi-fi. if i pull the sim out of the ios device and put it in a wifi lte router, it works fine to do the download over the same connection.

fuck this platform

OS updates for M1 macs (like today's 12.2 security update) connect to some random 17./8 on port 80 to "personalize", which presumably transmits your hardware serial unencrypted? i'm redoing it now, while pcapping, to see what it is actually sending...

@eloisa @alexandra

this scene plays in my head everytime someone says that

https://www.youtube.com/watch?v=lB6Gk5EtunI

@xorman @mike but it doesn't cache the videos of subscriptions locally, does it?

i want to, for example, have a raspberry pi I bring with me places that has hundreds of gb of video on it, and only downloads new stuff from channels as released (due to shit slow/metered mobile connections), and can be used locally/offline, but stays current when connected to the internet.

rss isn't the goal, the net effect of a "download my feeds automatically for offline reading" that an RSS reader provides

there are at least 5 places in brave you have to opt out from it advertising to you or trying to get you to use their services

why is the usa sending tons of ammo to ukraine?

https://twitter.com/USEmbassyKyiv/status/1484709938807070721

symbolics.com, the first .com ever registered, has a webpage on it that does not render without javascript.

one of the original tenets of the world wide web (which of course .coms predate) is graceful degradation: that if your computer sucks and can't do the thing, it will at least still render the words.

guess we can cross that one off the list...

this person literally said they only care about human rights in one nation: that is, for only part of the humans.

https://thehill.com/policy/international/asia-pacific/590034-golden-state-part-owner-says-he-doesnt-care-about-uyghurs

lol macos makes you agree to a license to run /usr/bin/strings

these are the words that china's apps are required to censor. anyone got translations?

https://github.com/citizenlab/chat-censorship/blob/master/olympics/illegalwords.txt

even with location services off, anything that uses maps on macOS will send locations to apple because it fetches tiles from the apple maps tile servers.

@charlie_root@social.linux.pizza yes but the system does not put the monitors to sleep because it's sitting at the console. linux does not implement blanking by default.

i really wish my calendar reminders for all day events would bug me incessantly about them at like, 6pm, 8pm, 10pm on the day. i snooze the notifications of friends' birthdays at like 9am or whenever they go off, and then i'm working in the evenings when i need to be reminded and end up forgetting until it's super late where my friends are and too late to call. i literally remembered my friend's birthday today at 23:59 in the timezone we're both in (after several alert reminders at like 9am)