I'm not that knowledgeable on networking, but I do remember that if a device is connected to a wired network, it can end up receiving packets not meant for it because switches will flood all the ports for packets they don't know how to route. But I also heard that Wi-Fi is supposedly smarter than that and a device connected to it should never receive a packet not meant for it.
Is this true? And in practice, does this mean it's preferable should keep computers with invasive operating systems (which might decide to record foreign packets sent to it in its telemetry) on Wi-Fi instead of on the wired network?
Also, how exactly does Wi-Fi prevent devices from receiving the wrong packets when it's a radio based system and any suitable antenna can receive any Wi-Fi signal? Does each device get assigned a unique encryption key and so is only capable of decrypting packets meant for it? How secure is it actually?
Yes that's true, sort of. There are many layers to it, but generally unmanaged wired switches are less strict. Most modern wifi systems enable client isolation by default.
it can end up receiving packets not meant for it because switches will flood all the ports for packets they don’t know how to route
This is only applicable to IPv4 networking and is very much "the old way" of doing things. If you have properly designed and set up your own home network, you shouldn't be having broadcast traffic happen at all, because all your switches should have a MAC table that includes all the devices you have physically connected. Especially if you have bothered to take the time to hand out static addresses tied to the MAC address. A broadcast should generally only be happening if there is an unknown destination on the LAN, and an unknown destination only happens when there is a new device added at an unknown location. Once a broadcast packet has been sent and replied to, the switch fills it's MAC table with the information on the new device, now knowing it's location.
Wi-Fi's packets can be intercepted by anyone, it's technically sending all packets on blast as radio waves at all times. Sure, modern Wi-Fi can be encrypted, but that encryption can also often be broken.
Finally, IPv6 doesn't use broadcast packets at all, instead using multicasting, which is similar to a broadcast but doesn't flood every port in the wired network and is a bit more tightly directed.
The flooding a network thing really isn’t an issue, they’ll only flood for the first packet just to find the way and then it stops. Fire up Wireshark on a different machine and transfer a file between two other machines, you won’t see anything. I don’t know too much about WiFi but it probably does the same, it’s just a bridge to the same network.
Wired is probably better because machines can estimate your location from the SSID and they can leak the password giving access to the network.
Fire up Wireshark on a different machine and transfer a file between two other machines, you won’t see anything.
This is true, but only because we've replaced Ethernet hubs with switches.
An Ethernet hub was a dumber, cheaper device that imitated a switch, but with a fundamental difference: all connected devices were in the same collision domain.
I don’t know too much about WiFi but it probably does the same, it’s just a bridge to the same network.
Wireless communication has the same problem as Ethernet hubs, with no real solution like a switch though. Any wireless transmission involves an antenna, and transmitting is similar to standing in your yard with a bull horn to talk to your buddy two houses down. Anyone with an antenna can receive the wireless signal you send out. Period.
So some really smart people found ways to keep the stuff you send private, but anyone can sit nearby and capture data going through the air, it's just not anything you can use because of the encryption.
Worth highlighting WiFi blasts all your data in all directions, and unless you're using enterprise/WPA3 encryption with a strong password, someone determined enough can break in.
If someone wanted to they could park near your house and run aircrack (or whatever the modern suite is called) without you ever knowing. FWIW this is why it's good to set up a way of getting notified about new devices on your network (most modern non-ISP routers support a way of doing this)
Conversely, I believe most ethernet NICs discard any packet not intended for it at hardware level, they're super optimised for speed, it would be much slower to leave that for software. I'm not 100% if that's universal however, so I'd try and double check that
If someone wanted to they could park near your house and run aircrack
Aircrack-ng can only try to guess the simple shared password (pre-shared key). So when you run your airodump-ng, it's got to show the network as having type PSK, or you're pissing up a rope. With WEP, you could collect IVs, however, with WPA/WPA2, there are no IVs to collect. So you have to guess the password one by one. The only clue you get is when a device performs a handshake with the Wi-Fi. You need to capture that handshake to even start guessing. WPA/WPA2 passwords can be/should be quite long, like up to 63 letters, numbers, or symbols. If the password is a simple word like "cat" or "password," aircrack-ng might guess it if it’s in the dictionary.
So it behooves the Wi-Fi owner to create a very long, complicated, password with all the bells and whistles. If you are using WEP, you might as well be holding up a sheet of single ply, no brand toilet paper. Also, turn off WPS and UPnP ffs.
I vaguely remember getting into a WPA network (that I owned!) using kismet about 15 years ago with relative ease, but I'm struggling to remember details about that process.
I also remember reading that WPA2 non-enterprise was broken a while ago, however I just looked into it and both of the main exploits I can find were patchable (and have been patched) at client OS level (They were the KRACK and FragAttacks). Seems like there has already been something found wrong with WPA3 too that's also been addressed.
So yeah as you say back to brute forcing for the most part. Forcing reconnects was a pretty easy way to get more handshakes to record back when I last tried, so I assume that still has decent levels of success, given the prevalence of mesh networks. Looking further it seems people use a tool called hashcat today to get pretty rapid results doing the actual brute forcing using a modern GPU.
But yes very good advice all in all, long passwords and the highest WPA version you can get away with are going to make an attackers job harder.
Thanks for the reply, you got me to go back down an interesting rabbit hole I've not looked at in a while
but I’m struggling to remember details about that process.
At 71, I struggle sometimes remembering what I had for breakfast. LOL It is a very interesting rabbit hole for me as well. Wasn't trying to correct you, I'm an expert at nothing. Your comment just spurred a memory of a long forgotten era of my life as a wannabe haxor.
I vaguely remember getting into a WPA network (that I owned!) using kismet about 15 years ago with relative ease, but I’m struggling to remember details about that process.
The 4-way handshake crack was the only key recovery attack until 2018 when the PMKID-based attack was discovered (here: hashcat.net/forum/thread-7717.…). The PMKID crack attack still required brute-forcing the key, but it didn't require the 4-way handshake so you didn't have to depend on a de-authentication attack to get started.
At that time there was another WPA vulnerability, if you were using WPA-TKIP, but it only allowed sending a few small packets every 10-12 minutes so it wouldn't allow you to gain access to the network.
Later there were a few WPS-based attacks but they were slow (4 hours to recover the WPS PIN) and/or limited to specific manufacturers (weak hardware random number generation).
If you use some WFP manager you can block all incoming connections and also block all OS connections... I basically only let my browser communicating with the internet, the rest has no business online.
Also, how exactly does Wi-Fi prevent devices from receiving the wrong packets when it’s a radio based system and any suitable antenna can receive any Wi-Fi signal?
Your device, say an iphone, has a MAC address. It sends a request to the Wi-Fi access point. The Wi-Fi router also has a MAC address and responds with a packet that contains the destination MAC address (your iphone). All devices listen to all Wi-Fi signals but only processes packets where the destination MAC matches its own. If the MAC doesn’t match, it ignores the packet. This happens at the data link level or commonly referred to as Layer 2 of the OSI model.
No. For the purposes you’re talking about wired is fine.
How your network is managed and set up makes it possible to get more security from WiFi using a bunch of new technologies added to recent WiFi protocols but you’d have to be actually have set all that up and have compatible networking stacks on the computers.
Also, and I say this as no great lover of Microsoft or its products, windows isn’t snooping network traffic not meant for it and bundling it up in its telemetry uploads.
The Dutch court document said records from a June 12 meeting between U.S. Commerce Department officials and the Dutch Foreign Ministry showed rising pressure to remove Nexperia's Chinese CEO to help keep the company off the list.
"The fact that the company's CEO is still the same Chinese owner is problematic," the filing said, citing minutes from the Dutch-U.S. meeting. "It is almost certain the CEO will have to be replaced to qualify for the exemption from the entity list."
Nexperia is caught between the U.S. and China, with U.S. President Donald Trump ratcheting up pressure on tech as part of a broader trade war in which he threatened 100% tariffs on China's exports last week. Beijing has announced curbs on exports of rare earths.
The Creator Program wasn’t just a feature, it was a full blown movement that rocked Reddit, on the blockchain no less. You all built communities. You created art. Your art became memes. You put a cone on it. You even got paid (a first!). At the end of the day, you all made magic.
Lemmy (and Piefed) have avatars and bio, and Piefed also has the custom fields thing that Mastodon has, but not all clients show this stuff. Voyager is probably the best Lemmy/Piefed client that basically has no support for profile details.
One of the things that bug me about Fediverse is that the amount of profile features varies so much between the services and it's kinda inconsistent too.
I feel like I joined Reddit so long ago that I can't really remember the sign up process but I do dimly seem to remember that I had to unsubscribe from a bunch of stuff your default subscribe to because it was all garbage.
So probably what happened is they only advertised it in the stupid subs like that one where they still think lol catz is peak humour.
Honestly they're leaving money on the table by not doing this. They have a horde of mindless whales that are physically unable to stop themselves from buying the Golden LaSnooSnoo and posting about making it "moon", the place is crypto bro idiot headquarters
Reddit already got on my bad side when they got rid of their Public Access TV thing, the only good idea they've had in years; removing 3rd party apps was the last straw for me.
Blows my mind that more people didn't leave over that. I was expecting a mass exodus, a la Digg.
I wasn't expecting say, a mass exodus. But I was certainly surprised at how few people made the jump. Unsurprisingly, a lot of the best content creators and bot defenders didn't continue using reddit, so the quality dropped like a stone.
A BOOX device is basically an Android tablet with an eye-friendly e-ink screen. The nice part is that you can install whatever book store you want on it, you can get the Kindle, the Kobo, Libby for library books, Moon+ Reader, or any other reading app you want. You're not locked into one ecosystem.
The other thing is that BOOX devices are for writing and productivity, not just reading. They have stylus support and fantastic note-taking apps built in. So you can mark up a PDF, take meeting notes, or split the screen to have a book open on one side and your notes on the other.
So, while a typical ebook vendor gives you a closed device to consume their content, BOOX gives you an open, flexible tool that you can use anyway you like.
I hate articles about market success but I love my boox device... it's sooo much better than the alternatives it's not even close. It's a pity their tablets are becoming more expensive.
My partner has a BOOX and loves it. I still like my Kobo, but I admit that the BOOX is pretty neat with all the other stuff it can do since it has android.
Sen. Mark Kelly (D-Ariz.) joins Meet the Press to respond to former Vice President Kamala Harris’ words about him in her new book — questioning whether he had been tested on the national stage — and weighs in on whether she should run for president a…
Our steadfast people, this stage represents an opportunity to enhance social solidarity within the Gaza Strip by supporting affected families, securing the necessities of daily life and activating frameworks of cooperation between factions, society and relevant local and international institutions, creating a resilient and unified environment capable of facing all challenges and preserving our people’s steadfastness.
We renew the call for unity and national responsibility, to embark on a unified national political path with all powers and factions. We are working in cooperation with gracious Egyptian efforts to hold an urgent and comprehensive national meeting for the next step after the ceasefire to unify the Palestinian position, formulate a comprehensive national strategy and rebuild our national institutions on the foundations of partnership, credibility and transparency.
We also stress our categorical rejection of any foreign guardianship and affirm that determining the form of governance for the Gaza Strip and the foundations of its institutions’ work is an internal Palestinian matter to be jointly decided by the national components of our people. We are prepared to benefit from Arab and international participation in the areas of reconstruction, recovery and development support, in a way that promotes a dignified life for our people and preserves their rights to their land.
In conclusion, at this decisive historical moment, we renew our loyalty to the martyrs, prisoners, wounded and resistance fighters. We affirm our unwavering adherence to our people’s rights to their land, homeland, holy sites and dignity and our insistence on continuing the resistance in all its forms until all our rights are achieved, foremost among them the removal of the occupation, self-determination and the establishment of a fully sovereign and independent state with Al-Quds as its capital.
Hamas, Palestinian Islamic Jihad and the Popular Front for the Liberation of Palestine — the three powers — issued a joint statement on Oct. 10, 2025, posted by Resistance News Network.
We're excited to announce that Loops now federates with the fediverse. After months of development, ActivityPub support has officially entered beta. Your loops can now travel across the open social web.
I tried searching for @loops.video users on three separate mastodon instances and the only ones that pop up are the "official" accounts (@dansup@loops.video and @loops.video@loops.video).
Anyone else have better luck federating with loops?
this week’s fediverse news:
- a closer look at the Tumblr-like platform Wafrn, which connects to both activitypub and atproto. Their latest update allows people to migrate their #bluesky account to wafrn, joining the fediverse while staying connected to t
this week's fediverse news: - a closer look at the Tumblr-like platform Wafrn, which connects to both activitypub and atproto. Their latest update allows people to migrate their #bluesky account to wafrn, joining the fediverse while staying connected to their bluesky network - Loops is getting closer to joining the fediverse
WeDistribute has published an extensive overview and review of Wafrn, the Tumblr-like platform that is both on the fediverse as well as on ATProto. Wafrn is a unique platform in the open social web, and it is the first and only platform that fully integrates both protocols. The name Wafrn explains the tone of the project well: it stands for ‘We Allow Female Representing Nipples’, which is a reference to the language Tumblr used when they banned porn. Because Wafrn natively integrates both protocols, there is no bridging involved like there is with Bridgy Fed, and a Wafrn account connects with all accounts on both networks, although the ATProto features are somewhat limited and not all implemented. Wafrn also recently released a new feature to migrate your Bluesky account to a Wafrn server. This gives another option for people who are looking to move away from Bluesky and are interested in the fediverse, without having to give up their connection to the rest of the Bluesky network.
Short-form video platform Loops has announced it is joining the fediverse. In an announcement post, creator Daniel Supernault explains that Loops has now implemented support for ActivityPub. The marketing on Loops and the fediverse was always a bit fuzzy, while it was advertised as a fediverse platform, the actual fediverse integration was still in development. With this update, Loops is now using ActivityPub. However, this does not go for the main Loops server, Loops.video, just yet, as Supernault says that he is “working on an updated app build that supports the new APIs and other servers besides just the hardcoded loops.video server!” Supernault says that this will happen ‘this week’, although the project has missed deadlines before. Still, for those people who are self-hosting a Loops server, the code for federation is now indeed available.
In the update, Supernault also talks about some of the technical design choices that he’s made for federation with Loops. Loops servers use the ‘Note’ content type to send out the videos. This means that a Loops video is effectively quite similar to a microblog made on a platform like Mastodon or Misskey, which also use the ‘Note’ type. Most platforms indeed use ‘Note’, as this allows for compatibility with Mastodon. ActivityPub allows for a wide variety of content types (called Activities, which is where the protocol gets its name from), but in practice most platforms fall back to ‘Note’, even when other types (like ‘video’ for Loops) would make more sense. It indicates one of the challenges of the open-ended nature of how ActivityPub works: the protocol allows for a diverse set of Activities, but in practice it is more beneficial for most platforms to fall back to a single type, that all other platforms also use.
An excellent overview of last week’s FediForum by Richard MacManus for The New Stack. MacManus covers the keynote speech, as well as some of the products that were demoed at the event: alternative app store AltStore, how you can now move your Mastodon account to Bluesky with Bounce, as well as two platforms currently in development that are getting close to release: the privacy-focused photo sharing app Frequency, and the monetisation platform CrowdBucks.
Pandacap is a single-user artwork gallery and feed reading platform, that supports a wide range of protocols. It supports ActivityPub, ATProto, RSS. It also has the option to crosspost your image posts and text posts to attached DeviantArt, Fur Affinity, or Weasyl accounts. Pandacap does not have a timeline like most platform, instead opting for a design that centers around an inbox, similar to feed reading apps for RSS. Pandacap has been around for a bit, but I had completely missed it and don’t think I had ever covered it before.
PeerTube is now officially recognised as a Digital Public Good. A digital public good recognized by the Digital Public Goods Alliance is an open-source resource that uses approved open licenses and demonstrably supports at least one of the UN’s Sustainable Development Goals (SDG). For PeerTube this means that it contributes to SDG 9, which aims to “significantly increase access to information and communications technology and strive to provide universal and affordable access to the Internet in least developed countries. PeerTube also contributes to the SDG for developing “effective, accountable and transparent institutions at all levels” and ensuring “responsive, inclusive, participatory and representative decision-making at all levels.”
Fedify, the ActivityPub server framework that secured two sources of funding last week, has a major new update, with security enhancements, improved DX, and expanded framework support.
An extensive interview with the creators of event planning app Mobilizon. Mobilizon got created by Framasoft, the organisation who also builds PeerTube. Framasoft saw the project as completed, and handed the further development over to Kaihuri, a small French organisation who also runs one of the most active Mobilizon instances. The Project Libres podcast interviews Alexandra, one of the two people behind Kaihuri, in French, but a transcript in English is available.
The Solo Instance Problem – a PeerTube video by FediHost in which they talk about some of the challenges for self-hosting a solo instance for the fediverse.
The Social Web Foundation talks with Ghost CEO John O’Nolan about Ghost 6 and ActivityPub.
DiscoverFedi.app is a new site that lets you explore other instance’s timelines in various manners, with an accompanying blog post explaining the project.
Yes, I’ve still got four tracks left to construct for my next album that’ll be releasing here in a few weeks. Don’t worry! I feel like I can get it done.
L'articolo spiega il rischio nell'utilizzo dei social network tradizionali, e come il Fediverso costituisca un'alternativa etica sempre più necessaria.
Un viaggio nel FEDIVERSO: la soluzione al problema dei social
In questo articolo parlo di social network, un argomento non direttamente collegato al viaggio, ma comunque molto importante se pensiamo a tutti i contenuti di viaggio che transitano sulle pagine social e le nostre interazioni con altre persone attraverso i social, ma anche a quante ore trascorriamo davanti agli schermi “grazie” ad essi.
Sui social ormai ci siamo tutti, ci si parla di tutto, e sappiamo bene che tutti passiamo molte ore al giorno davanti alle pagine social, ma possiamo dire anche, più in generale, utilizzando servizi on line “gratuiti”. Spesso è su quelle pagine che scopriamo cosa succede nel mondo, gli ultimi eventi su un certo argomento, i risultati elettorali.
È un dato di fatto che al giorno d’oggi tutti i grandi social siano nelle mani di aziende, ma non aziende qualunque: veri e propri colossi dell’informatica, che investono cifre da capogiro per capire come tenerci incollati alle alle loro piattaforme per un tempo sempre maggiore. Quel tempo lo togliamo ai nostri cari, alle nostre attività, ad altre cose che amiamo, e più in generale alla nostra presenza nel mondo.
Un altro grande problema di tutto questo è che quelle piattaforme vendono ad altri ciò che scriviamo, le nostre abitudini e preferenze di ogni tipo, affinché questi “altri” possano farne ciò che vogliono, compreso analizzarci per capire sempre meglio come indurci ad acquistare di tutto.
Di più: chi possiede il social network e quindi i dati che hanno origine da noi, può sapere chi siamo meglio di noi stessi a volte, e può usare queste informazioni per plasmare le nostre idee.
Cosa c’entra il Fediverso in tutto questo? Ci sto arrivando. 🙂
Se quello che ti ho descritto ti sembra una teoria del complotto, purtroppo ti stai sbagliando. Tutto questo è reale, e basta fare una ricerca in line per trovare le conferme di ciò che dico.
D’altra parte, nel mondo dell’informatica e del web, c’è un detto: se un servizio è gratuito, allora il prodotto in vendita sei tu.
Nelle piattaforme social come Facebook, Instagram, TikTok o similari, i proprietari hanno investito miliardi di dollari. Si potrebbe pensare che i costi sostenuti siano in gran parte per l’infrastruttura, ma la parte più impegnativa di un social network è la messa a punto e il mantenimento dell’algoritmo, ossia quell’insieme di meccanismi che sulla base di una serie di eventi (i nostri comportamenti on line), decidono cosa farci vedere, e di conseguenza cosa nasconderci.
Per fare un esempio pratico, supponiamo che un utente abbia un vago interesse per un argomento spinoso come l’immigrazione. Gli algoritmi intercetteranno alla perfezione questo interesse (sono lì apposta del resto, anche se l’utente non li vede; possiamo dire che il social stesso è un algoritmo molto complesso).
Una volta compreso il nostro interesse, verrà deciso quale sarà il prossimo articolo o il prossimo video che vedremo scorrendo verso il basso, o a quale notifica dare la priorità, quale annuncio pubblicitario farci vedere prima, eccetera. Negli ultimi anni gli algoritmi social sono diventanti anche esperti nel creare curiosità che non abbiamo.
Badate bene che l’interesse della piattaforma non è quello di darci un’idea chiara, equilibrata ed imparziale su un argomento, ma di trattenerci sull piattaforma il più possibile affinché continuiamo a vedere gli annunci pubblicitari.
E qual è il metodo migliore per raggiungere questo obiettivo? La paura, o la rabbia, o entrambe.
L’algoritmo comincerà a proporci video in cui si dice che i nostri problemi derivano dagli immigrati, e che se non facciamo qualcosa “ci rimpiazzeranno” (ti suona familiare?).
Ci è appena stata instillata la paura, più o meno conscia, che qualcuno voglia portarci via qualcosa, che il nostro stile di vita è in pericolo, che non è colpa nostra se la vita non ci riesce proprio come vorremmo, ma anzi è colpa di una persona disperata che è morta attraversando il Mediterraneo su un pezzo di legno scadente. Donne, uomini, bambini, neonati, non importa: tutti ugualmente destabilizzanti per le nostre vite.
La frittata è fatta. Vorremo saperne di più, staremo lì ancora e ancora per cercare qualcosa che ci tranquillizzi, che ci tolga quella paura; ma quel qualcosa non arriverà. Anzi, l’idea di base, la paura, verrà sempre più rinforzata, video dopo video, articolo dopo articolo.
Pur essendo un grande utilizzatore di questi social (lo ammetto, io trovo sconcertante che esistano aziende dal potere – enorme – di decidere cosa dobbiamo guardare, e di conseguenza cosa dobbiamo pensare, che idee dobbiamo farci. Se a fare tutto questo fosse un Governo, diremmo che si tratta di una dittatura. Perché non ci scuote l’idea che possa farlo un privato?
È proprio per tutte queste ragioni che sempre più persone riconoscono che questo sistema di cose è una grande anomalia per le democrazie.
Rifiutare questo sistema è un atto rivoluzionario.
Ma come fare? Rinunciare per sempre alla propria vita on line? È qui che entra in gioco il Fediverso.
Cos’è? Può sembrare qualcosa di complesso ma in realtà è qualcosa di molto semplice.
Immagina di vivere nell’appartamento di un condominio. Quando vuoi parlare con qualcuno, o sapere di cosa si parla nel condominio, puoi uscire dal tuo appartamento e incontrare i tuoi vicini di casa. Puoi parlare con loro privatamente, ma anche in uno spazio comune, come il pianerottolo, dove puoi parlare a tutti gli altri inquilini che stanno sul pianerottolo insieme a te.
In questo esempio, è come se il condominio fosse un social network.
Esistono persone nel mondo che hanno creato diversi social network (condominii) che sono liberi dalle logiche di cui parlavamo sopra.
Queste persone hanno creato il codice d social network del tutto nuovi, e lo hanno messo a disposizione di chiunque lo voglia usare, a patto che lo distribuisca di nuovo in quella forma. Può sembrare una cosa da poco, ma non la è: chiunque abbia sufficienti competenze può prendere questo codice e costruire un nuovo condominio (una istanza del social network), dove le persone possono “abitare”, digitalmente parlando. Inoltre, è anche possibile verificare che i “mattoni” che costituiscono questi nuovi condominii non contengano algoritmi poco desiderabili, come quelli dei social di cui parlavamo prima: Facebook, Instagram, Tiktok e tutti gli altri. Se anche dovessero all’improvviso contenerli, la licenza adottata consentirebbe di rimuoverli e redistribuire di nuovo il codice (ma chi vorrebbe mai usarlo senza modifiche, a quel punto?).
I programmatori dei nuovi social liberi non si sono fermati qui, ma hanno fatto qualcosa di ancora più utile e straordinario: hanno messo in comunicazione tra loro i condominii.
Restando nella metafora dei condominii, hanno fatto in modo che gli inquilini di un condominio possano parlare con le persone che si trovano negli spazi comuni di un altro condominio, e viceversa. Hanno fatto in modo che gli abitanti di un condominio possano parlare con gli abitanti di una villette a schiera, o di uno chalet di montagna.
In sostanza, non è più necessario abitare lo stesso tipo di casa per potersi parlarsi.
Questa è una delle enormi differenze tra i social vecchi e i nuovi social network liberi. Se hai un account Facebook, da Facebook non potrai vedere i video che vengono pubblicati su YouTube: al limite potrai seguire un collegamento che ti porta là, abbandonando quindi Facebook. Poi dovrai aprire un altro account, regalare i tuoi dati personali anche a TikTok, e allora potrai vedere i video ma i due mondi resteranno separati.
Nei social liberi non è così. Ne esistono di diversi tipi, e sono TUTTI interconnessi l’uno all’altro.
Questo è il Fediverso, un social network fatto da tantissimi social network più piccoli, collegati tra loro. Una città formata da tante abitazioni diverse, siano esse condominii, villette indipendenti o casette a schiera.
Le “case” che compongono la grande città del Fediverso (le ho chiamate istanze) sono fabbricate usando il codice di cui parlavamo prima da chiunque lo voglia, e di conseguenza si assomigliano tra loro per gruppi omogenei.
In sostanza è una federazione di social network, ed ecco perché viene chiamata “Fediverso”.
Quali sono i social network che compongono il Fediverso?
Ne esistono tanti, ma vediamo brevemente i più popolari: – Mastodon: adatto per il microblogging, cioè testi molto brevi. E’ il social più popolare nel Fediverso, anche in Italia. A prima vista può somigliare a X (ex Twitter), BlueSky o Threads. – Friendica: più adatto ai testi lunghi, e quindi più simile a Facebook (anche nell’interfaccia). Il primo approccio però può essere meno semplice rispetto a Mastodon. – Pixelfed: nasce per la condivisione di Foto, ed è quindi paragonabile ad Instagram. – PeerTube: nasce come piattaforma di condivisione di video, similmente a quanto fa Youtube o TikTok. – Lemmy: in grado di dare vita ad una piattaforma di aggregazione dei contenuti, similmente a Reddit.
In nessuno di questi nuovi social ci sono algoritmi che decidono cosa tu debba vedere. Le pubblicazioni sono – e rimangono – sempre in ordine cronologico: i contenuti si scoprono seguendo i tag degli argomenti che ci interessando, o ricercandoli tramite la funzione di ricerca. All’interno delle istanze, ad ora, non c’è pubblicità. Cosa non da poco, i nostri dati personali non vengono venduti o ceduti a nessuno.
Per i motivi di cui sopra, quando ci si iscrive ad una delle istanze dei social network che ho citato, si può rimanere un po’ spaesati e spiazzati, e ci si può sentire un po’ soli. Questo non deve bloccarci, ma anzi è la prova che la piattaforma non ci “spinge” a vedere ciò che lei desidera (a chi gioverebbe?).
Ci sono molte organizzazioni, aziende e persino privati nel mondo che gestiscono attivamente istanze di questi social. Tra tutti, credo che i privati siano quelli che più di tutti hanno bisogno del nostro supporto come utenti finali, perché…sì, mantenere questi social costa. Ci vogliono server che li ospitano, tempo da dedicarvi per l’installazione, gli aggiornamenti e la moderazione dei contenuti, quando qualche utente viola le regole richieste per la permanenza sulla piattaforma (le regole sono semplici, ben chiare ed evidenti al momento dell’iscrizione). L’accesso alle istanze generalmente è gratuito, ma non sorprendetevi se i gestori – giustamente – pubblicheranno di tanto in tanto qualche invito alla donazione. Il mio suggerimento è di trovare un’istanza che ci piace, “sposarla” e sostenerla economicamente con un piccolo obolo mensile, anche pochi euro, che possono fare la differenza. Per quanto mi riguarda li investo molto volentieri in questo tipo di supporto.
Io ho diversi account nel Fediverso perché pubblico molti contenuti, ma ribadisco che da “spettatori” può bastarne anche soltanto uno.
Sono iscritto e sostengo economicamente l’istanza Mastodon.uno (mastodon.uno), dove mi trovate come @simonperry.
Sono iscritto a Pixelfed.uno, (pixelfed.uno) dove condivido gli scatti dei miei viaggi che ritengo più interessanti. Lì potete trovarmi come @Perry77
I miei 3 podcas sono tutti ospidati su castopod.it, una piattaforma di podcasting federata con il Fediverso. Il mio ultimo podcast Verso Casa, ad esempio, può essere seguito dando il follow al profilo @versocasa da qualunque account del Fediverso.
Il sito che stai leggendo, ospitato su wordpress, è associato ad un account nel Fediverso, cosicché ogni articolo che pubblico qui viene automaticamente condiviso nel fediverso. Il profilo che si può seguire da qualsiasi social del Fediverso, per vedere gli articoli che pubblico, è @simoneviaggiatore.wordpress.com@simoneviaggiatore.wordpress.com
Tutti i nomi account che ho riportato, se ci fai caso, sono costruiti con [nome dell’account] + [nome dell’istanza su cui è registrato quell’account]
Il Fediverso, per ora, è un posto magico per me; senza pubblicità, ben moderato da esseri umani (non certo da algoritmi) e ogni volta che ci entro per me è come ritrovare quella pace che si ritrova in un bosco. Parliamo sempre di social newtork, ma non c’è confusione: solo contenuti.
Per restare in questo modo, il Fediverso ha bisogno di più iscritti che capiscano il valore di quanto hanno tra le mani, e di qualche donazione in più.
Date una chance al Fediverso, iscrivetevi ad una delle istanze.
Non sentitevi spaesati, ma apprezzate il silenzio. Potrete dare maggior valore alle interazioni, che saranno reali e non forzate dagli algoritmi che fomentano il litigio.
[Nota: ogni litigio nel Fediverso, che comunque capita, saprete che è autentico].
Per qualsiasi dubbio io possa chiarire, sono disponibile!
Dal 2019 è la comunità Mastodon più grande d’Italia, con i suoi 77.000 iscritti è fra le 10 istanze più attive al mondo ed è parte dall'associazione italiana noprofit Fedimedia Italia APS.
Mi auguro che questo articolo possa essere diffuso il più possibile, e magari utilizzato come una piccola guida per fare capire quanto è prezioso il Fediverso a chi ancora non lo conosce o non ci è ancora entrato.
#fediday2025 Andy Piper - For Freedom and Sovereignty (EN)
Andy Piper @[url=https://macaw.social/users/andypiper]Andy Piper[/url] ist bei @[url=https://mastodon.uno/users/mastodon]Mastodon.Uno Italia[/url] Head of Communications und kümmert sich um die Communities im Fediverse. Andy arbeitet seit vielen Jahren in der Technologiebranche und lebt in UK.
Large Language Models (LLMs) today are powerful problem solvers across many domains, and they continue to get stronger as they scale in model size, training set size, and training set quality, as shown by extensive research and experimentation across…
@francina1909 @snow Eccomi anch'io. Dopo un po' di assestamento agli orari e dopo qualche corsa sospesa per problemi tecnici, adesso il trenino arriva puntuale! ❤️
- ai 'vecchi' thread e' stato aggiunto l'indirizzo del trenino - ho messo il follow all'indirizzo del trenino - mi aspettavo di ricevere da quel momento in poi due copie, una dal thread, una dal trenino - non mi sembra - a quel punto avrei chiesto la rimozione del mio indirizzo dalla catena, e le avrei lette solo dal trenino.
- il senso, per come l'avevo capito io, era di togliere i propri indirizzi personali, regalando più caratteri per scrivere agli altri.
Ma forse funziona solo per i thread nuovi ?
Il che vuol dire che se tutti non fanno esaurire i thread vecchi non scrivendo per un paio di giorni, abbiamo peggiorato le cose
Ma non l'hanno capito, ho provato a spiegarlo. Ho anche provato a fare partire un thread di buongiorno io (mettendo in copia esplicita tutti gli altri).
Nessuno fa partire un thread nuovo ricordandosi tutti gli indirizzi, fanno tutti reply a quello che ha fatto partire Ciube tot anni fa.
Se non ti coordini con Luca per azzerare quelli, non ci si può togliere dall'altro
🤦 non *deve* usarlo, deve semplicemente fare esaurire il thread attuale (perche' basterebbe un giorno) e farne partire uno nuovo con tutte le persone in copia, gruppo incluso
@LasolitaLaura Boosto qualunque thread mi citi nel suo primo post. Quando Mastodon diventerà compatibile, per essere boostato automaticamente bisognerà per forza seguirmi e avere ricevuto il follow back, dopo di che boosterò i thread in cui verrò citato, con visibilità limitata a chi mi segue.
Like, why Valve? I was so close to clearing out all the games I was partway through, now I need to add some demos to my backlog (not many, this Next Fest is kinda weak).
Probably could've made it but I haven't picked a distro. I'm planning on turning my desktop into a dedicated gaming computer and not daily driver, because of the malware risk. I wanted something not finicky, something devs would test on as a known quantity, and preferably something Arch-based like SteamOS. - Garuda (Arch-based) - Bazzite (Known quantity, immutable, Fedora-based, I don't trust it for some reason) - Nobara (Proton-adjacent distro, Fedora-based) - CachyOS (Super fast, Arch-based, presumably finicky?) - Windows 7 (Based, unsupported by steam, insecure)
I'm a fedora user, so I would recommend Bazzite/Nobara, but all of these are good (Except Windows 7, it's not officially supported anymore and I'm pretty sure it doesn't even get security updates). I think you can try them before installing thanks to live USB, so you can just see which one you like more.
Amichai Chikli, Diaspora Minister of Diaspora Affairs and Combating Antisemitism, has invited Tommy Robinson, the fascist anti-Muslim demagogue who recently mobilized the largest far-right demonstration in British history, on an expenses paid, five-day visit to Israel.
Fifty-five healthcare workers from Gaza are listed among the Palestinians released from Israeli detention today as part of the exchange deal. While not all releases are confirmed yet, the list includes 24 nurses, 7 doctors, and 2 paramedics. Fourty-four of the healthcare workers listed were abducted by the Israeli Occupation Forces from the hospitals where they were working and they have spent between nine and 22 months illegally imprisoned in Israeli detention and torture facilities. Dr Ahmed Mhanna, the Director of Al-Awda Hospital, was not on the list but has also been released today.
While their release is warmly welcomed, there are at least 115 more Gazan healthcare workers who are still being held in Israeli detention. These include at least 20 doctors, of whom 15 are irreplaceable senior specialists. In the past two years, the Israeli Occupation Forces have unlawfully detained over 409 Palestinian healthcare workers from both Gaza and the West Bank. Testimonies from released healthcare workers and other Palestinians describe the horrific conditions inside the detention facilities where brutality and torture are rife[1]. Five healthcare workers have been killed while in detention.
Fifty-five healthcare workers from Gaza are listed among the Palestinians released from Israeli detention today as part of the exchange deal. While not all releases are confirmed yet, the list includes 24 nurses, 7 doctors, and 2 paramedics. Fourty-four of the healthcare workers listed were abducted by the Israeli Occupation Forces from the hospitals where they were working and they have spent between nine and 22 months illegally imprisoned in Israeli detention and torture facilities. Dr Ahmed Mhanna, the Director of Al-Awda Hospital, was not on the list but has also been released today.
While their release is warmly welcomed, there are at least 115 more Gazan healthcare workers who are still being held in Israeli detention. These include at least 20 doctors, of whom 15 are irreplaceable senior specialists. In the past two years, the Israeli Occupation Forces have unlawfully detained over 409 Palestinian healthcare workers from both Gaza and the West Bank. Testimonies from released healthcare workers and other Palestinians describe the horrific conditions inside the detention facilities where brutality and torture are rife[1]. Five healthcare workers have been killed while in detention.
But just three states — Arkansas, Idaho and Virginia — enacted laws this session that establish or amend rules for law enforcement agencies using the high-tech camera systems and the manner in which license plate data should be stored. And this month, California Democratic Gov. Gavin Newsom vetoed a bill that would have restricted use of such data.
Russian forces struck a United Nations aid convoy in the partially occupied Kherson region of southern Ukraine on Tuesday, Ukrainian and UN officials said, though no one was reported injured or killed in the incident.
The United Nations said the convoy, consisting of four marked vehicles, came under attack from Russian drones and artillery while delivering humanitarian aid to the frontline town of Bilozerka.
"Such attacks are utterly unacceptable. Aid workers are protected by international humanitarian law and should never be attacked," said Matthias Schmale, the UN's humanitarian coordinator for Ukraine.
Two trucks operated by the World Food Program were damaged in the strike, while two others were unharmed, he said. The UN Population Fund said the convoy was carrying 800 packages containing essential items for elderly people, women and girls.
"The area has a very high proportion of older people, many of whom are unable to relocate due to drones and shelling and rely on humanitarian assistance for survival," said Jacqueline Mahon, UNFPA's representative in Ukraine.
Prosecutors said that hundreds of people were trafficked and forced to work in the scam compounds, “often under the threat of violence.”
Zhi and a network of top executives in the Prince Group are accused of using political influence in multiple countries to protect their criminal enterprise and paid bribes to public officials to avoid actions by law enforcement authorities targeting the scheme, according to prosecutors.
An indictment says forced-labor compounds ran cryptocurrency investment fraud schemes that stole billions of dollars from victims in the U.S. and elsewhere.
Prosecutors said that hundreds of people were trafficked and forced to work in the scam compounds, “often under the threat of violence.”
Zhi and a network of top executives in the Prince Group are accused of using political influence in multiple countries to protect their criminal enterprise and paid bribes to public officials to avoid actions by law enforcement authorities targeting the scheme, according to prosecutors.
An indictment says forced-labor compounds ran cryptocurrency investment fraud schemes that stole billions of dollars from victims in the U.S. and elsewhere.
“Not too often do you see a brother that looks like me come into the county and take the entire county over,” Tanner said in a July TikTok post. “Well, I have taken the entire county over, out here in Loving County, Texas. When these elections hit in 2026, we’re going to wipe the board. Everybody that I selected will be elected.”
Although many were rejected for technical reasons, he said most of them could be easily cured. A dozen of Tanner’s followers have successfully registered, the sheriff said last week.
Targeting an entire county for political takeover might seem difficult, but Loving County represented a ripe target. With only about 70 residents, it is the least-populated county in the country. County commission seats can be won with as few as a dozen votes; county-wide positions often are gained with fewer than 50.
Ken Paxton filed a lawsuit against Malcolm Tanner, the leader of a group of people that moved to Loving County with the intent to gain political control.
Airport authorities in Phoenix, Las Vegas, Seattle, Portland, Oregon, Charlotte and Westchester county, New York, have refused to display the footage at security checkpoints, saying the overtly political messaging potentially violates state and federal law, including the Hatch Act, which bars federal employees from partisan political activity.
Eco-Libre is a volunteer-run project that designs libre technology for sustainable communities.
Eco-Libre's mission is to research, develop, document, teach, build, and distribute open-source technology that sustainably enfranchises communities' human rights.
We aim to provide clear documentation to build low-cost machines, tools, and infrastructure for people all over the world who wish to live in sustainable communities with others.
Contribute to Eco-Libre
If you'd like to help Eco-Libre reach our mission to enfranchise sustainable communities' human rights with libre tech, please contact us to get involved 😀
On March 2, 2023, Aiden Sagala did what many people do after a long, hot day at work. He cracked open a cold one. Little did he know, that swig of beer would kill him. Aiden didn’t realize that the can was full of liquid methamphetamine, not beer.
This is fucking awful. Such a terrible, out of nowhere death
Have to say aswell, after reading the article, how stupid is his boss who gave him it? He was involved in the whole meth operation with these cans and decided to give away the excess ones that he thought only had beer in them. Why not just throw them away? Such an idiotic risk for no good reason. Was he high on the supply or something? Only thing I can think to explain why he'd do something as utterly careless as this. And now he's in prison for 20 years because of it
Solubility in water is .5g/mL, average gulp is around 20mL, so possibly up to 10 grams. A normal dose is .1-.2g so it could've been the equivalent of 100 doses.
C'è un cibo "povero", nel senso che costa poco, fa bene, è salutare, è benefico per la donna incinta, per gli anziani e nella prevenzione delle malattie cardiovascolari e, appunto, non costa neanche tanto. E' gustoso, diffuso, ma non da tutti apprezzato ed è un vero peccato! Ecco la vera Regina del mare in scatola
BENGALURU, Oct 14 (Reuters) - Google said on Tuesday it would invest $15 billion over five years to set up an artificial intelligence data centre in India's southern state of Andhra Pradesh, its biggest ever investment in the world's most populous nation.
The U.S. tech giant's plan comes amid a tense diplomatic standoff between New Delhi and Washington over tariffs and a stalled trade deal, as Prime Minister Narendra Modi has urged a boycott of foreign goods.
The Istanbul Bridge's maiden voyage, originally expected to take 18 days, was delayed by two days due to a storm off the coast of Norway but the ship still reached Europe earlier than the 40 to 50 days it takes freighters going through the Suez Canal or around the Cape of Good Hope.
The new Northern Sea Route, running entirely through Arctic waters and within Russia's exclusive economic zone, can now be navigated by ships due to global warming.
An increase in shipping in the Arctic will lead to - an increase in shipping’s global climate impact due to black carbon emissions – which have a disproportionately higher impact when emitted in the Arctic, - an increase in disturbance to wildlife and to communities dependent on marine resources due to increased ship pollution including underwater noise in a comparatively quiet ocean, and - an increase in the risk of damaging oil spills.
The Arctic is warming four times faster than any other place on the planet. As sea ice melts, new shipping routes between continents are opening up, and the yearly window for navigating through these freezing waters is expanding.
The Singapore Customs is investigating a case where a man entering Singapore did not declare that he was in possession of assorted Pokemon trading cards worth more than $30,000 in total.
Singapore doesn't fuck around, which my cousin found out the hard way when he had to leave Australia after a year of travelling/working and he just took the cheapest flight (pretty much the only one he could afford) out of the country, which went to Singapore. Of course he had no clue about Singapore and when he arrived without a visum, they took him into custody and interrogated him for over 12 hours. After they put him on a plane home (in Europe). In the end he rode the cheapest flight out of Australia all the way home, so that did work out for him.
Satellites beam data down to the Earth all around us, all the time. So you might expect that those space-based radio communications would be encrypted to prevent any snoop with a satellite dish from accessing the torrent of secret information constantly raining from the sky. You would, to a surprising and troubling degree, be wrong.
Roughly half of geostationary satellite signals, many carrying sensitive consumer, corporate, and government communications, have been left entirely vulnerable to eavesdropping, a team of researchers at UC San Diego and the University of Maryland revealed today in a study that will likely resonate across the cybersecurity industry, telecom firms, and inside military and intelligence agencies worldwide.
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
Long term everything they make is for the landfill. Soldered RAM and SSDs on most M-series made it clear Apple doesnt expect the devices to last very long.
A 5-7 year lifespan is enough if your customers generally upgrade every 2-4 years.
The talent was upset at a conflict between kernel maintainers and posted a personal attack on Mastodon. The comment is now deleted ( web.archive.org/web/2025020400… ).
The Code of Conduct explicitly lists public harassment as an example of unacceptable behavior.
Examples of unacceptable behavior by participants include:
-The use of sexualized language or imagery and unwelcome sexual attention or advances
-Trolling, insulting/derogatory comments, and personal or political attacks
-Public or private harassment
-Publishing others’ private information, such as a physical or electronic address, without explicit permission.
-Other conduct which could reasonably be considered inappropriate in a professional setting
Even if he is correct about about it being a code of conduct violation (it wasn't), there is way to take action and it isn't posting an attack on social media.
Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the Code of Conduct Committee at conduct@kernel.org. All complaints will be reviewed and investigated and will result in a response that is deemed necessary and appropriate to the circumstances. The Code of Conduct Committee is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
There has certainly been drama around Rust, but as was said in the thread: "Being toxic on the right side of an argument is still toxic, [...]"
Behold, a Linux maintainer openly admitting to attempting to sabotage the entire Rust for Linux project:
https://lwn.net/ml/all/20250131075751.GA16720@lst.
The talent has nothing to do with Rust AFAIK. Only the GPU driver is written in Rust. There are however efforts put into other drivers written in Rust.
The developers could have written those drivers in C instead, or to hell with those close-minded Linux developers, fork Linux and keep writing in Rust.
Forking Linux and continuing to do that instead of up streaming is a massive task, especially as time goes by and code similarities drift. It's much better to upstream. This is why fortune 500 companies contribute to the Linux kernel.
The old guard in the Linux kernel have a real stick up their ass against anything not C, despite Linus himself advocating that rust drivers should at least be looked at. It's turned off a lot of new blood doing projects like Asahi because they don't have upstream support so the burden of the project is much too great for a hobbyist endeavor for something that should otherwise be fun and mentally engaging.
Agreed. I was fully aware that forking Linux is more of a joke than anything.
Spot on on the hobby point. If I am writing code while not being paid, I need to enjoy every moment of it. In addition to coding, project managing and ensuring backlash make me nope the fuck out of it.
According to this Blender benchmark, a M3 Ultra with 80 cores is similar to a 4070 Ti. Too bad a machine with a M3 Ultra with 80 cores will cost several grand while a 4070 Ti can be had for a grand. I appreciate that a SoC can use RAM instead of the scam that is VRAM, but Apple needs to do something about that price, or otherwise, might as well get a 5090.
It’s a SoC and is certainly more power efficient, can fit into smaller form factors, etc. It’s definitely progress in the right direction, but is still to expensive to be a practical alternative to higher-end GPUs. What am I missing?
I guess you do understand what the M chip is, which makes your comparison even more surprising. First, comparing a SoC to a GPU is wildly unfair. Second, you are severely underselling exactly how much more energy efficient an M chip is versus a CPU/GPU combo. My PC laptop with an i7 and a 4070 built in will run for about 20 minutes, maybe 30, under a full workload, all the while being hot enough to fry an egg and noisier than a jet engine. Even then, the performance will be trash and get worse as the temps rise. My MBP M3 Max will run a DAW sessions my PC could never dream of, with multiple plugins, on battery, silent, no heat, for a couple of hours without even the hint of a stutter.
All of that said, when it comes to price, Apple's gonna Apple.
PS: I'm typing this on my phone while the idle i7/4070 laptop is fanning (again, fully idle) because it runs so hot. I might need to start traveling for work again and, if I do, I might need to switch to a MacBook Air for work on the road unless I can find an ultra-slim, powerful yet efficient, high resolution screen, Linux supported laptop. Simply because of the chip. We need an equivalent on the PC side.
Yeah, looking forward to the day when SoCs fully replace discrete GPUs for all the reasons you stated, and also when there are better options than Apple devices in that space. Pretty sure there have never been many render farms built from Apple hardware, though, and Mac Pros have never been the most cost effective option for applications requiring a lot of compute. MacBooks and phones, on the other hand, are more of a sweet spot, and the M chips have done wonders there to your point.
I'm convinced Arch with archinstall is the easiest Linux to use for users competent with computers. It just requires that the user isn't afraid of command line interfaces.
I've tried the Mint, Ubuntu and uBlue. Had something go wrong with each. Mint didn't install graphics drivers, Ubuntu had nonsensical design with snap and uBlue corrupted the boot order after a month.
With distros designed to just work it isn't easy to fix issues when they come up. With Arch there's no expectation that things work by default, so when something goes wrong you can just make it work again.
The choice tree is true, though. In high school, I used Arch Linux on my PC because I liked tinkering. Now that I'm in college, I'm using Fedora because I need something stable and don't have time to mess with it.
Pretty much. But if you need to test it, you can buy another drive and install linux and your games there. If it doesn't work, you can use the extra drive for something else.
In Steam on Linux, use settings to enable Experimental or Proton for Windows games.
Edit: This is computer science, you must report your findings!
99% of the steam library. Only thing I can think of right now is battlefield 6 has anti cheat that wont work. And apex. Basically the developers have to be jerks for it not to work so no reason to pay em anyways.
And the owner of Epic, which owns Fortnite, is rabidly anti Linux. I believe he's made some concessions to lose less of the Deck market share, but he's made many insulting and untrue statements of Linux and its users in the past as well as actively sabotaging Linux functionality in games that used to have it.
Depends on the games you have. The biggest issue is anti-cheat, so competitive online games have a worse chance of working, nearly all other games should work though.
And also get the same performance from AAA games?
Again depends on the specific games. Some have worse performance than on Windows, some have better performance.
The UK's domestic security service, MI5, warned politicians and their staff that they are being targeted by spies from China, Russia and Iran in efforts to undermine British democracy.
MI5 said foreign actors may use methods such as dishonest online approaches, hacks and cyber attacks to recruit assets and obtain information, and may use financial donations to influence politicians' decisions.
The security service urged politicians to be wary of "overt flattery", conduct due diligence on new contacts, and report any suspicious interactions to their security team promptly.
[...]
“The UK is a target of long-term strategic foreign interference and espionage from elements of the Russian, Chinese and Iranian states which, in different ways, seek to further their economic and strategic interests and cause harm to our democratic institutions,” according to the advice.
The document comes just weeks after a high-profile espionage case in which two men were accused of spying for China fell apart, sparking criticism of the government’s handling of the case and Starmer’s wider policy toward Beijing, with which he has sought to improve diplomatic ties since entering office last year.
Separately, Nathan Gill — a former Welsh leader of Nigel Farage’s populist right-wing Reform UK party — pleaded guilty last month to taking bribes in exchange for making statements in favor of Russia.
frongt
in reply to HiddenLayer555 • • •Snot Flickerman
in reply to HiddenLayer555 • • •This is only applicable to IPv4 networking and is very much "the old way" of doing things. If you have properly designed and set up your own home network, you shouldn't be having broadcast traffic happen at all, because all your switches should have a MAC table that includes all the devices you have physically connected. Especially if you have bothered to take the time to hand out static addresses tied to the MAC address. A broadcast should generally only be happening if there is an unknown destination on the LAN, and an unknown destination only happens when there is a new device added at an unknown location. Once a broadcast packet has been sent and replied to, the switch fills it's MAC table with the information on the new device, now knowing it's location.
Wi-Fi's packets can be intercepted by anyone, it's technically sending all packets on blast as radio waves at all times. Sure, modern Wi-Fi can be encrypted, but that encryption can also often be broken.
Finally, IPv6 doesn't use broadcast packets at all, instead using multicasting, which is similar to a broadcast but doesn't flood every port in the wired network and is a bit more tightly directed.
twinnie
in reply to HiddenLayer555 • • •The flooding a network thing really isn’t an issue, they’ll only flood for the first packet just to find the way and then it stops. Fire up Wireshark on a different machine and transfer a file between two other machines, you won’t see anything. I don’t know too much about WiFi but it probably does the same, it’s just a bridge to the same network.
Wired is probably better because machines can estimate your location from the SSID and they can leak the password giving access to the network.
like this
TVA likes this.
BluescreenOfDeath
in reply to twinnie • • •This is true, but only because we've replaced Ethernet hubs with switches.
An Ethernet hub was a dumber, cheaper device that imitated a switch, but with a fundamental difference: all connected devices were in the same collision domain.
Wireless communication has the same problem as Ethernet hubs, with no real solution like a switch though. Any wireless transmission involves an antenna, and transmitting is similar to standing in your yard with a bull horn to talk to your buddy two houses down. Anyone with an antenna can receive the wireless signal you send out. Period.
So some really smart people found ways to keep the stuff you send private, but anyone can sit nearby and capture data going through the air, it's just not anything you can use because of the encryption.
9point6
in reply to HiddenLayer555 • • •Worth highlighting WiFi blasts all your data in all directions, and unless you're using enterprise/WPA3 encryption with a strong password, someone determined enough can break in.
If someone wanted to they could park near your house and run aircrack (or whatever the modern suite is called) without you ever knowing. FWIW this is why it's good to set up a way of getting notified about new devices on your network (most modern non-ISP routers support a way of doing this)
Conversely, I believe most ethernet NICs discard any packet not intended for it at hardware level, they're super optimised for speed, it would be much slower to leave that for software. I'm not 100% if that's universal however, so I'd try and double check that
like this
TVA likes this.
irmadlad
in reply to 9point6 • • •Aircrack-ng can only try to guess the simple shared password (pre-shared key). So when you run your airodump-ng, it's got to show the network as having type PSK, or you're pissing up a rope. With WEP, you could collect IVs, however, with WPA/WPA2, there are no IVs to collect. So you have to guess the password one by one. The only clue you get is when a device performs a handshake with the Wi-Fi. You need to capture that handshake to even start guessing. WPA/WPA2 passwords can be/should be quite long, like up to 63 letters, numbers, or symbols. If the password is a simple word like "cat" or "password," aircrack-ng might guess it if it’s in the dictionary.
So it behooves the Wi-Fi owner to create a very long, complicated, password with all the bells and whistles. If you are using WEP, you might as well be holding up a sheet of single ply, no brand toilet paper. Also, turn off WPS and UPnP ffs.
9point6
in reply to irmadlad • • •I vaguely remember getting into a WPA network (that I owned!) using kismet about 15 years ago with relative ease, but I'm struggling to remember details about that process.
I also remember reading that WPA2 non-enterprise was broken a while ago, however I just looked into it and both of the main exploits I can find were patchable (and have been patched) at client OS level (They were the KRACK and FragAttacks). Seems like there has already been something found wrong with WPA3 too that's also been addressed.
So yeah as you say back to brute forcing for the most part. Forcing reconnects was a pretty easy way to get more handshakes to record back when I last tried, so I assume that still has decent levels of success, given the prevalence of mesh networks. Looking further it seems people use a tool called hashcat today to get pretty rapid results doing the actual brute forcing using a modern GPU.
But yes very good advice all in all, long passwords and the highest WPA version you can get away with are going to make an attackers job harder.
Thanks for the reply, you got me to go back down an interesting rabbit hole I've not looked at in a while
irmadlad
in reply to 9point6 • • •At 71, I struggle sometimes remembering what I had for breakfast. LOL It is a very interesting rabbit hole for me as well. Wasn't trying to correct you, I'm an expert at nothing. Your comment just spurred a memory of a long forgotten era of my life as a wannabe haxor.
FauxLiving
in reply to 9point6 • • •The 4-way handshake crack was the only key recovery attack until 2018 when the PMKID-based attack was discovered (here: hashcat.net/forum/thread-7717.…). The PMKID crack attack still required brute-forcing the key, but it didn't require the 4-way handshake so you didn't have to depend on a de-authentication attack to get started.
At that time there was another WPA vulnerability, if you were using WPA-TKIP, but it only allowed sending a few small packets every 10-12 minutes so it wouldn't allow you to gain access to the network.
Later there were a few WPS-based attacks but they were slow (4 hours to recover the WPS PIN) and/or limited to specific manufacturers (weak hardware random number generation).
New attack on WPA/WPA2 using PMKID
hashcat.netPiraHxCx
in reply to HiddenLayer555 • • •irmadlad
in reply to HiddenLayer555 • • •Your device, say an iphone, has a MAC address. It sends a request to the Wi-Fi access point. The Wi-Fi router also has a MAC address and responds with a packet that contains the destination MAC address (your iphone). All devices listen to all Wi-Fi signals but only processes packets where the destination MAC matches its own. If the MAC doesn’t match, it ignores the packet. This happens at the data link level or commonly referred to as Layer 2 of the OSI model.
helpImTrappedOnline
in reply to HiddenLayer555 • • •stupid_asshole69 [none/use name]
in reply to HiddenLayer555 • • •No. For the purposes you’re talking about wired is fine.
How your network is managed and set up makes it possible to get more security from WiFi using a bunch of new technologies added to recent WiFi protocols but you’d have to be actually have set all that up and have compatible networking stacks on the computers.
Also, and I say this as no great lover of Microsoft or its products, windows isn’t snooping network traffic not meant for it and bundling it up in its telemetry uploads.