BC INTERNET
Saved by @Mollyycolllinss

I did more research into the Parler dump. What probably happened was not so much a "hack", but this: When Twilio/Okta shut them down, they just disabled email/phone verification to create an account. This means anyone could directly create huge amounts of accounts via their API.

 Someone also found out that fetching Parler posts could be done by enumerating IDs (e.g 1, 2, 3) instead of random IDs that can't be guessed. Unclear if this was via the ordinary API endpoint, or that they found a separate one by monitoring app network traffic.
So you combine these two things and you can create a script to scrape all the posts on the entire platform, using a lot of different accounts to avoid suspicion. Anyone could download and run this script to spread it out over many IP addresses as well.
What I'm still not sure about is whether deleted (meaning flagged as deleted, it's common that services never actually delete data) posts could be fetched without any special handling.
The verdict: The people who wrote Parler are fucking amateurs.
This Reddit comment is a good, and from what it seems, correct, summary: https://t.co/SfJQFQQG2h
Using sequential IDs was supported because the Parler API had an endpoint to convert them to the UUIDs used to fetch posts. Easy to find endpoint via network monitoring, and didn't require any special authentication. 🤦
Here's that specific function in @donk_enby library parler-tricks: https://t.co/kKQT2KCac1
It also seems like they did not have any kind of rate-limiting. This just gets better and better.

More from Internet

David Kaplan
David Kaplan
@depletionmode
Linux code injection paint-by-numbers.

Can we launch a process that looks one way to (superficial) auditors but is, in fact, entirely different? (Think process hollowing and the like on Windows).

Firstly, how are processes created and what does related auditing look like?

The most common pattern is fork() → execve(). Where the fork() syscall create a duplicate of the running process context and execve() overlays a copy of the target program onto that context.

After calling fork(), we’ll have two processes, the original one and a new - duplicated - one (with a new pid).

Control will return from fork() to both process instances. In the child process, the return value will simply by 0, in the parent it will hold the pid of the child.

Thus we can determine whether we are running in the child context and call execv() accordingly, while allowing the parent to continue.


Now, let’s take a look at where the auditing hooks lie. From calling execve(), we’ll eventually land up in exec_binrpm().
INTERNET
Cory Doctorow #BLM
Cory Doctorow #BLM
@doctorow
There are lots of problems with ad-tech:

* being spied on all the time means that the people of the 21st century are less able to be their authentic selves;

* any data that is collected and retained will eventually breach, creating untold harms;

1/


* data-collection enables for discriminatory business practices ("digital redlining");

* the huge, tangled hairball of adtech companies siphons lots (maybe even most) of the money that should go creators and media orgs; and

2/

* anti-adblock demands browsers and devices that thwart their owners' wishes, a capability that can be exploited for even more nefarious purposes;

That's all terrible, but it's also IRONIC, since it appears that, in addition to everything else, ad-tech is a fraud, a bezzle.

3/

Bezzle was John Kenneth Galbraith's term for "the magic interval when a confidence trickster knows he has the money he has appropriated but the victim does not yet understand that he has lost it." That is, a rotten log that has yet to be turned over.

4/

Bezzles unwind slowly, then all at once. We've had some important peeks under ad-tech's rotten log, and they're increasing in both intensity and velocity. If you follow @Chronotope, you've had a front-row seat to the
INTERNET
Advertisement
Ananth Rupanagudi
Ananth Rupanagudi
@rananth
Lunchtime #humour - Ordering a Pizza in 2021!
CALLER: Is this Pizza Delight?

GOOGLE: No sir, it's Google Pizza.

CALLER: I must have dialed the wrong number. Sorry.

GOOGLE: No sir, Google bought Pizza Delight last month.

CALLER: OK, I would like to order a pizza.

Contd... 1/9

GOOGLE: Do you want your usual, sir?

CALLER: My usual? You know me?

GOOGLE: According to our caller ID data sheet, the last 12 times you called you ordered an extra-large pizza with 3 slices of cheese, sausage, pepperoni, mushrooms, and meatballs on a thick crust.

Contd... 2/9

CALLER: OK! That’s what I want.

GOOGLE: May I suggest that this time you order a pizza with ricotta, arugula, sun-dried tomatoes, and olives on a whole wheat gluten-free thin crust?

CALLER: What? I detest vegetables!

GOOGLE: Your cholesterol is not good, sir.

Contd... 3/9

CALLER: How the hell do you know?

GOOGLE: Well, we cross-referenced your home phone number with your medical records. We have the result of your blood tests for the last 7 years.

Contd... 4/9

CALLER: Okay, but I do not want your rotten vegetable pizza! I already take medication for my cholesterol.

GOOGLE: Excuse me sir, but you have not taken your medication regularly.

Contd... 5/9
INTERNET
Alberto Gimeno \U0001f3f3\ufe0f\u200d\U0001f308\U0001f1ea\U0001f1f8\U0001f49c\U0001f90e
Alberto Gimeno 🏳️‍🌈🇪🇸💜...
@gimenete
I'm going to tell you a little bit how we work on features at GitHub. It's simple, but very powerful in my opinion. At GitHub we have a high performance culture.

We are deploying changes almost all the time while keeping the service running and the deployment failure ratio needs to be super low! We are constantly working on new medium/big features, we have frequent deploys and required peer reviews.

How do we know that big features are not conflicting with each other in functionality and in version control. How do we merge the work done in these non-trivial features? How do we do prevent peer reviews slow down our productivity?

With basically two things: split the work in small batches and feature flags. We don't have long-lived feature branches. We do very small changes all the time and deploy them.

We could split a feature in tens or hundreds of PRs, but until it is beta or GA, we don't expose it to users by using feature flags.
INTERNET
David Evans
David Evans
@pentops4
Years before Andy Grove was attributed with the phrase:

"Whatever can be done, will be done"

A lot of us technologists assumed this was the case anyway.

It's a truism.

What if we could track every person on the planet in real time?

Or at least everyone in a major city

🤔🔮


So, given someone has this idea.

Then the only question is can it be done.

Well, we're already installing all the tech to do this for autonomous vehicles, drones and smart city infrastructure.

It really wouldn't be a huge leap to do that for people.

But how might that be possible 🤔

Sure we can already do it with phones right, but not everyone has a phone and sometimes the batteries die blah blah.

Could we do it in a way that it was difficult to circumvent, and always active?

Well, maybe we could if we put our thinking caps on about the problem.

--- this line intentionally left blank ---

Now I'm going to enter the wild world of wild speculative futurism, so take everything else with a pinch of salt 🧂

--- this line intentionally left blank ---

Turns out cell phone towers pinpoint the location of your phone as part of how they work.

And then as you move around you switch from one tower to another.

I think most people get this.

Something like the image below
INTERNET

You May Also Like

k\u0101rthik \u0b95\u0bbe\u0bb0\u0bcd\u0ba4\u0bcd\u0ba4\u0bbf\u0b95\u0bcd \u0915\u093e\u0930\u094d\u0924\u093f\u0915 \U0001f1ee\U0001f1f3\U0001f1ee\U0001f1f3\U0001f1ee\U0001f1f3 | Sanatani
kārthik கார்த்திக் कार...
@almightykarthik
Hello Dear Tweeples!

It’s Siddhars time of the week! Last week I shared story of Guru (Machamuni or Yogi Matsyendranath), this week I bring you information on his Shishya.

#Thread on Gorakanathar Siddhar.

@LostTemple7


His origin story is interesting, though I couldn’t verify it’s authenticity, so not sharing the story here. He’s shishya of Machamuni Siddhar and also learnt from Agasthiya Siddhar.

@HelloNNewman @RajiIndustani @Kishoreciyer1

Unlike other Siddhars, he is depicted as either with a Tiger or seated & wearing Tiger skin. While I couldn’t find any explanation for this. My interpretation is as follows:

Tiger is a predator that lurks around and attacks unexpectedly.


Our 5 indriyas and 5 vikitis also similar to Tiger, they lurk around and attacks our thoughts when we’re least expecting. Gorakkar is said to have mastered these aspects, thus to denote this, he shown with Tiger.

@Itishree001 @VarierSangitha @jananisampath

Gorakanathar or Gorakshnath (as he’s known in the Nath Sampraday) is celebrated Guru in both Northern and Southern part of India. He’s one of the NavNath in Nath Sampraday and also 18 Siddhars of Tamil tradition. During his life, he’s travelled Indian subcontinent extensively +
RELIGION , ALL
Anshul Pandey
Anshul Pandey
@Anshulspiritual
RISHI ASHTAVAKRA(DEVAL)

Those who are well versed in our ancient scriptures must definitely have come across the name of Ashtavakra Muni. Who was he and what is the story behind his body getting crooked from all sides.

Muni Asit was the son of Pracheta Rishi.


He was childless and this caused a lot of worry to him. But an Akashvani assured him that he should go to Shivji to get all his
worries nullified.

So he along with his wife go to Shivji and after paying him obeisance start singing Shivji's praises.

He describes Shiv as the one who is beyond any other thing, whose glory has no words to describe. After this the couple stands with folded hands in front of Rudradev. The strotras sung in praise of Shiv possess magical qualities even today.

Shiv gets satisfied by them soon and is ready to grant a boon.

Shiva told him that, he very well knew what the Muni desired. He then gives him the "Sansaar Vijay' mantra and asks him to keep reciting it. The Isht devi would come at an appropriate time and fulfill his wish.

Asit Muni kept reciting this mantra for hundred years. The Devi appeared and granted him the boon of a son as a Shivansh. A son was born and was named as Deval. He grew upto be a great scholar well versed and a handsome young man. Asit Muni got him married to Ratnamalavati.
RELIGION
Advertisement
Pat Walls
Pat Walls
@thepatwalls
And here they are...

THE WINNERS OF THE 24 HOUR STARTUP CHALLENGE

Remember, this money is just fun. If you launched a product (or even attempted a launch) - you did something worth MUCH more than $1,000.

#24hrstartup

The winners 👇

#10

Lattes For Change - Skip a latte and save a life.

https://t.co/M75RAirZzs

@frantzfries built a platform where you can see how skipping your morning latte could do for the world.

A great product for a great cause.

Congrats Chris on winning $250!


#9

Instaland - Create amazing landing pages for your followers.

https://t.co/5KkveJTAsy

A team project! @bpmct and @BaileyPumfleet built a tool for social media influencers to create simple "swipe up" landing pages for followers.

Really impressive for 24 hours. Congrats!


#8

SayHenlo - Chat without distractions

https://t.co/og0B7gmkW6

Built by @DaltonEdwards, it's a platform for combatting conversation overload. This product was also coded exclusively from an iPad 😲

Dalton is a beast. I'm so excited he placed in the top 10.


#7

CoderStory - Learn to code from developers across the globe!

https://t.co/86Ay6nF4AY

Built by @jesswallaceuk, the project is focused on highlighting the experience of developers and people learning to code.

I wish this existed when I learned to code! Congrats on $250!!
MAKERS
Dr Catherine Pemble is #SocialDistancing
Dr Catherine Pemble is...
@CatherinePemble
Right, screw it. Here's a thread on *that* FBLive by Alex Cairnie about #Govanhill. Lets do a watch-through shall we? (Mind, I'm a resident of Govanhill, and a sociologist. I'm also 5'3, and a visibly queer woman so if half his claims are true I should be living in terror)

00:30: Welcomes viewers and uses points out that his videos are only getting attention b/c they're 'horrific'. Directs folk to his Youtube page. So already clout hunting.

1:08: "I've been warned to stay out of Govanhill. I'm a marked man" (proceeds to use a beanie as a disguise)

1:30 "Laughing and joking aside, here's somebodys front garden." Proceeds to show litter and claim its thrown from windows and this is 'common'. I know a handful of streets with litter issues like this, but its neither common nor unique to #govanhill and other deprived areas.

2:10 "Don't be under any illusion I'm only showing you the bad bits" - only shows you the bad bits.

3:45: He's had offers of help, but hes said no because hes not responsible for 'anybody elses safety' Good lord.

5:01: "Its not that bad. But its not all good either" -Correct

6:00: TW: child abuse - He starts claiming to have been contacted by a health professional and told about child abuse 'in the area'. Huge ethical issues here as the 'professional' who has 'been in the game a long time' is reporting to Facebook Dude and not authorities.
HEALTH
Anu Satheesh \U0001f1ee\U0001f1f3
Anu Satheesh 🇮🇳...
@AnuSatheesh5
Thuravoor Narasimha Swamy Temple
Alappuzha, Kerala
#KeralaTemples 🚩

Thuravoor Narasimha Swamy or Thuravoor Mahakshetram is situated in Alappuzha with Narasimha Swamy and Sudharshana Moorthy as main Prathishta.
Temple has separate Sannidhi for Vadakkanappan ( Narasimha) and 👇


Tekkanappan ( Sudarshana).

Sthala puranam says that Vigraham of Narasimha was brought from Varanasi. Swami Padmapadar, shishya of Adi Sankaracharya, had worshipped the same Vigraham at Kashi.
A Namboodiri, on his way to Kashi saw a powerful light which disappeared here 👇


Namboodiri dug the place and he found a beautiful beautiful Vigraham made of Anjanasila. It is said that the vigraham occupied a site, which was the place of Durga Devi
Sudarshana Moorthy is about 6 Ft, Chaturbahu. Deepavali is famous festival here.
Om Narasimha Swamine Namah
🕉
ALL