Saturday, 28 March

22:00 EDT

MacOS 26.4 Adds Warnings For ClickFix Attacks to Its Terminal App [Slashdot]

An anonymous Slashdot reader writes: ClickFix attacks are ramping up. These attacks have users copy and paste a string to something that can execute a command line — like the Windows Run dialog, or a shell prompt. But MacRumors reports that macOS 26.4 Tahoe (updated earlier this week) introduces a new feature to its Terminal app where it will detect ClickFix attempts and stop them by prompting the user if they really wanted to run those commands. According to MacRumors, the warning readers "Possible malware, Paste blocked." "Your Mac has not been harmed. Scammers often encourage pasting text into Terminal to try and harm your Mac or compromise your privacy...." There is also a "Paste Anyway" option if users still wish to proceed.

Read more of this story at Slashdot.

19:00 EDT

SystemD Contributor Harassed Over Optional Age Verification Field, Suggests Installer-Level Disabling [Slashdot]

It's FOSS interviewed a software engineer whose long-running open source contributions include Python code for the Arch Linux installer and maintaining packages for NixOS. But "a recent change he made to systemd has pushed him into the spotlight" after he'd added the optional birthDate field for systemd's user database: Critics saw it not merely as a technical addition, but as a symbolic capitulation to government overreach. A crack in the philosophical foundation of freedom that Linux is built on. What followed went far beyond civil disagreement. Dylan revealed that he faced harassment, doxxing, death threats, and a flood of hate mail. He was forced to disable issues and pull request tabs across his GitHub repositories... Q: Should FOSS projects adapt to laws they fundamentally disagree with? Because these kinds of laws are certainly in conflict with what a lot of Linux users believe in. A. Unfortunately, in a lot of cases, the answer is yes — at least for any distribution with corporate backing. The small independent distributions are much more flexible to refuse as a protest. If we ignore regulations entirely, we risk Linux being something that companies are not willing to contribute to, and Linux may be shipped on less hardware. I'm talking about things like Valve and System76 (despite them very vocally hating these laws). That does not help us; it just lowers the quality of software contributions due to less investment in the platform and makes Linux less accessible to the average person. We need Linux and other free operating systems to remain a viable alternative to closed systems. Q. Do you think regulations like these will reshape desktop Linux in the next 5-10 years where we might have "compliant Linux" and "Freedom-first Linux"? A. Unfortunately, yes, to some degree this is likely. I imagine the split will be mostly along the lines of independent distributions and those with corporate backing. We're already seeing it as far as which distributions plan on implementing some sort of age verification and which ones are not, and that sucks. I'd rather nobody have to deal with this mess at all, but this is the reality of things now. As I said in the previous response, the corporate-backed distributions really have no choice in the matter. Companies are notoriously risk-adverse, but something like Artix or Devuan? Those are small and independent enough where the individual maintainers may be willing to take on more risk. I was actually thinking about what this would look like if we added it to [Linux system installer] Calamares and chatting about that with the maintainers before that thread got brigaded by bad actors posting personal information and throwing around insults. I completely support the freedom for the distro maintainers to choose their risk tolerance. If the distribution is based out of Ireland or something (like Linux Mint) without these silly laws in the jurisdiction the developer operates in, I think that we should leave it up to them to make a choice here. They think the installer should have a date picker with a flag to disable it, and "We can even default it to off, and corporate distributions using Calamares or those not willing to take the risk could flip it on if they need to. That way if maintainers of the distributions do not wish to collect the birth date, they won't have to, and no forking is required to patch it out."

Read more of this story at Slashdot.

Feeds

FeedRSSLast fetchedNext fetched after
0xADADA XML 09:00, Monday, 30 March 17:00, Monday, 30 March
AI Daily News by Bush Bush XML 01:00, Monday, 30 March 13:00, Monday, 30 March
Ars Technica - All content XML 09:00, Monday, 30 March 10:00, Monday, 30 March
art blog - miromi XML 09:00, Monday, 30 March 17:00, Monday, 30 March
Astral Codex Ten XML 09:00, Monday, 30 March 17:00, Monday, 30 March
Blog - Ethan Zuckerman XML 09:00, Monday, 30 March 17:00, Monday, 30 March
Cool Tools XML 09:00, Monday, 30 March 10:00, Monday, 30 March
Explorations of Style XML 17:00, Sunday, 29 March 17:00, Monday, 30 March
Geek&Poke XML 01:00, Monday, 30 March 13:00, Monday, 30 March
goatee XML 06:00, Monday, 30 March 12:00, Monday, 30 March
Hacker News XML 09:00, Monday, 30 March 10:00, Monday, 30 March
Joho the Blog XML 09:00, Monday, 30 March 17:00, Monday, 30 March
LESSIG Blog XML 01:00, Monday, 30 March 13:00, Monday, 30 March
Notes From the North Country XML 17:00, Sunday, 29 March 17:00, Monday, 30 March
NPR Topics: News XML 09:00, Monday, 30 March 10:00, Monday, 30 March
Pharyngula XML 06:00, Monday, 30 March 12:00, Monday, 30 March
Philip Greenspun’s Weblog XML 08:00, Monday, 30 March 10:00, Monday, 30 March
Philosophical Disquisitions XML 08:00, Monday, 30 March 10:00, Monday, 30 March
quarlo XML 01:00, Monday, 30 March 13:00, Monday, 30 March
Rhetorica XML 20:00, Sunday, 29 March 20:00, Tuesday, 31 March
Science-Based Medicine XML 09:00, Monday, 30 March 17:00, Monday, 30 March
Slashdot XML 10:00, Monday, 30 March 10:30, Monday, 30 March
Stories by Yonatan Zunger on Medium XML 09:00, Monday, 30 March 17:00, Monday, 30 March
Study Hacks - Decoding Patterns of Success - Cal Newport XML 09:00, Monday, 30 March 17:00, Monday, 30 March
Techne/Polity | Matt Nisbet XML 09:00, Monday, 30 March 17:00, Monday, 30 March
tinywords XML 08:00, Monday, 30 March 12:00, Monday, 30 March
W3C - News XML 09:00, Monday, 30 March 10:00, Monday, 30 March