Tootfinder

Microsoft warns that Copilot Actions in Windows, now in beta and off by default, can infect devices and pilfer data, prompting concern from security researchers (Dan Goodin/Ars Technica)
https://arstechnica.com/security/2025/

Critics scoff after Microsoft warns AI feature can infect machines and pilfer data
Integration of Copilot Actions into Windows is off by default, but for how long?

#Homebrew 5.0.0
https://brew.sh/2025/11/12/homebrew-5.0.0/

The implications are interesting enough when we apply this to systems like capitalism or national governments, but there are other very interesting implications when applied to systems like race or gender.
Like, as a cis man the only way I can be free to express and explore my own masculinity is if the masculinity I participate in is one which allows anyone the freedom to leave. Then I have an obligation to recognize the validity of nom-masculine trans identity as a necessary component of my own. If I fail to do this, then I trap myself in masculinity and allow the system to control me rather than me to be a free participant in the system.
But if it's OK to escape but not enter, that's it's own restriction that constrains the freedom to leave. It creates a barrier that keeps people in by the fear that they cannot return. So in order for me to be free in my cis masculine identity, I must accept non-masculine trans identities as they are and accept detransitioning as also valid.
But I also need to accept trans-masc identities because restricting entry to my masculinity means non-consensually constraining other identities. If every group imposes an exclusion against others coming in, that, by default, makes it impossible to leave every other group. This is just a description of how national borders work to trap people within systems, even if a nation itself allows people to "freely" leave.
So then, a free masculinity is one which recognizes all configurations of trans identities as valid and welcomes, if not celebrates, people who transition as affirmations of the freedom of their own identity (even for those who never feel a reason to exercise that same freedom).
The most irritating type of white person may look at this and say, "oh, so then why can't I be <not white>?" Except that the critique of transratial identities has never been "that's not allowed" and has always been "this person didn't do the work." If that person did the work, they would understand that the question doesn't make sense based on how race is constructed. That person might understand that race, especially whiteness, is more fluid than they at first understood. They might realize that whiteness is often chosen at the exclusion of other racialized identities. They would, perhaps, realize that to actually align with any racialized identity, they would first have to understand the boot of whiteness on their neck, have to recognize the need to destroy this oppressive identity for their own future liberation. The best, perhaps only, way to do this would be to use the privilege afforded by that identity to destroy it, and in doing so would either destroy their own privilege or destroy the system of privilege. The must either become themselves completely ratialized or destroy the system of race itself such being "transracial" wouldn't really make sense anymore.
But that most annoying of white person would, of course, not do any such work. Nevertheless, one hopes that they may recognize the paradox that they are trapped by their white identity, forced forever by it to do the work of maintaining it. And such is true for all privileged identities, where privilege is only maintained through restrictions where these restrictions ultimately become walls that imprison both the privileged and the marginalized in a mutually reinforcing hell that can only be escaped by destroying the system of privilege itself.

I am looking forward to my next hardware upgrades so I could contain Windows to a single PC that I'd absolutely need for Windows dependent stuff. I mean, now I am literally signed-in by default in Notepad?? And when I click my profile pic in its toolbar, it has one cheeky "Sign out" option??? I give up coping with this enshittified OS. Microsoft should pay me to use me as a research subject.

TIL: Thorsten Kukuk works on no_new_privs/NoNewPrivs aka removing suid binaries from #openSUSE
Reading https://www.thkukuk.de/blog/no_new_privs/ I never realized how many such binaries exists.

While testing some new misp-modules, such as the OpenAPI interface, I discovered a strange behavior in Firefox when trying to reach TCP port 6666, which is the default port used by misp-modules.
It seems Firefox blocks access to a predefined list of TCP ports, and this has been in place for quite some time, as you can see in the commit log.
If you want to override the blocked port list, there is an obscure setting called network.security.ports.banned.override.
…

First time for everything. Ran into a hosting provider with a sshd_config that had PubkeyAuthentication set to no by default.

Every post you write is first read by a machine. Should the nature of writing change to accommodate that? I look at the pros and cons of adopting an AI-friendly grammar https://www.linkedin.com/posts/jonippolito_writing-journali…

⏰ Extended Lifecycle Support (ELS): Up to 5 additional years of security patches after end-of-life - continuous CVE fixes, updated SBOMs, and audit compliance
🎯 Goal: Secure software supply chain from first line of code to production - secure by default for all 26 million developers in the container ecosystem
🌐 https://w…

I should really get a new external hard drive that comes with a cable with faster transfer speeds by default:

RE: https://layer8.space/@killyourfm/115913414696603329
*installs Linux*
*no desktop icons by default*

Can someone tell my why, by default, when you share a document on #Teams on a private channel it shares it with your entire university??
(You can set it back to sharing with only people in the chat but you have to click to do that for each document.. 🤦)
#TeamsSucks

Well, Apple, making Safari 26.0.1 run like a dog’s breakfast on macOS Sequoia while also *not* providing a download for Safari 18.6¹ is definitely a choice.²
No way I’m breaking nearly half the apps I rely on daily by upgrading to Tahoe just to fix Safari so I guess I’ll be making Chromium my default (I use Orion a lot, especially since I pay for Kagi, but it has its issues like 1Password not working, etc.) And don’t get me started on Firefox³.
So, Apple, how about a little less …

In SwiftTerm, half of my throughput is sacrificed to the Swift Exclusive Access Check Gods.
https://github.com/migueldeicaza/SwiftTerm/issues/437

Cost of -enforce-exclusivity · Issue #437 · migueldeicaza/SwiftTerm
The cost is pretty high, by default the vtebench shows: VteBenchPerf: 767771.7424171193 throughput calls/s If I disable it with: -enforce-exclusivity=none I get: VteBenchPerf: 1181231.021211891 thr...

I gotta say, #cosmicdesktop gets many things right even in its alpha state. Using it right now. X11 apps and Electron garbage all work fine with fractional scaling. Can't say that about #gnome49. Oh, and quarter tiling by default! Optimistic for what the future brings for it.

OpenAI has made a decision to encourage its users to form a parasocial relationship with ChatGPT. It's gross and dangerous. Also just not useful for serious use. But it will make their users more loyal and encourage psychological dependency.
GPT‑5.1 Instant, ChatGPT’s most used model, is now warmer by default and more conversational. Based on early testing, it often surprises people with its playfulness while remaining clear and useful.
(I really like ChatGPT and use it all the time. But this change is the exact opposite of what I want.)

@…
A lot of empty words explaining absolutely nothing and also this:
> In Firefox, you’ll never be locked into one ecosystem or have AI forced into your browsing experience.
Did they not run the model to generare tab group names on everyone by default, draining the battery of people for un AI feature absolutely not forced on people?

Sources: the UK government wants Apple, Google, and others to block explicit images at the OS level by default to protect kids and have adults verify their ages (Financial Times)
https://www.ft.com/content/0ef79775-eadf-4cc9-b32c-e97b0eff816f

the sheer amount of bots that hit my poor one page server (#sysadmin #bots

I just realized the Vivaldi browser has a default sidebar button for Trending from their Mastodon instance.
Which means I've breached containment... :elmo_fire:

Vivaldi Social
Vivaldi Social is part of the Mastodon network and is hosted in Iceland by the makers of Vivaldi Browser. Everyone is welcome to join.

Anyone know of good lightweight Linux distros for #RaspberryPi?
Was trying to repurpose one of my Pies today...
The official Raspberry Pi OS runs some "cloud" services and has Raspberry Pi Connect installed by default.
Not enthusiastic to wait and see the next level of enshitiffication, so looked for an alternative.
Tried

The 247th meeting of the American Astronomical Society #AAS247 is underway, coming with 8 press conferences - https://aas.org/meetings/aas247/press-kit#briefings - streaming on https://www.youtube.com/@AASPressOffice. There were already two yesterday:
https://www.youtube.com/watch?v=2gAjRP1xLtQ about Galaxies Big and Small, covering e.g. https://public.nrao.edu/news/hidden-giants-of-the-early-universe/ / https://news.ucmerced.edu/news/2026/astronomers-reveal-hidden-activity-early-universe’s-most-massive-galaxies / https://keckobservatory.org/aas247-magaz3ne/ and https://iopscience.iop.org/article/10.3847/2041-8213/ae1584 (The First RELHIC? Cloud-9 is a Starless Gas Cloud) -> https://science.nasa.gov/missions/hubble/nasas-hubble-examines-cloud-9-first-of-new-type-of-object/ / https://www.esa.int/Science_Exploration/Space_Science/Cloud-9_a_new_celestial_object_found_by_Hubble / https://public.nrao.edu/news/starless-dark-matter-failed-galaxy-near-m94/.
And https://www.youtube.com/watch?v=xvpDVq-7h6E about Stars and Their Behavior, covering e.g. https://arxiv.org/abs/2601.00470 (Betelgeuse: Detection of the Expanding Wake of the Companion Star) -> https://www.cfa.harvard.edu/news/cfa-scientists-detect-wake-betelgeuses-elusive-companion-star / https://science.nasa.gov/missions/hubble/nasa-hubble-helps-detect-wake-of-betelgeuses-elusive-companion-star/ and https://aas.org/sites/default/files/2026-01/Steven and Tyler AAS Press Release.pdf and https://public.nrao.edu/news/alma-devours-cosmic-hamburger-reveals-potential-for-giant-planet-formation/

#Immich's search functionality is so dang powerful. It can search file metadata, OCR'd text, face recognition, and even by textual descriptions (”black cat on green grass”).
BUT you have to manually select the search mode. It is apparently not possible to "just search via every way". I think this should even be the default.

Very strange thing happened with my files on the tab.digital @…… I noticed today they have been spontaneously encrypted; apparently not by some cryptoransomer, but a known bug that has plagued random users for at least two years. All the text files, regardless of file type, now start with the header HBEGIN:oc_encryption_module:OC_DEFAULT_MODULE:cipher:AES-256-CT…

Scrolling through #FOSSGIS2026 talks: #QGIS as the default GIS in the Bavarian environmental agency 🤩
"Einführung von QGIS als Standard-Desktop-GIS der Bayerischen Umweltverwaltung" by Carolin von Groote-Bidlingmaier

X now lets any user AI-edit other users’ images without consent, and there is no opt out
A few days ago X introduced a new AI Image Editing button that lets any user modify images posted by others, even without the original uploader’s consent. Image owners are not notified when edits are made, and the feature is enabled by default with no opt-out option (at least not so far) […]
🙄

Interestingly, CachyOS was restrcting by default the power draw of my GPU. Once I enabled the maximum allowed wattage and set the KDE power preferences to Performance, this game matched its FPS/Upscaler results in Windows and Linux 🕺 👾 🎮 (It's a 3 min video of me, running like a madman on an alien planet.)
The Alters - Windows vs. Linux - FSR 4.0.2 INT8 vs. FSR 4.0.0 FP8 (EMU)

Aite folks, point me in the direction of good resources on creating bug bounty programs, given that they're by default a minefield.

PSA: Use the "accounturi" feature of Let's Encrypt CAA!
If you're hosting a safety/security-critical service, there's a way too unknown feature called "accounturi", that allows you to restrict TLS certificate issuance to a single Let's Encrypt account (and account private key).
You simply create a CAA record on your domain and put your LE account ID into it.
This means that attackers cannot issue TLS certificates and pull man-in-the-middle…

Certificate Authority Authorization (CAA)
CAA is a type of DNS record that allows site owners to specify which Certificate Authorities (CAs) are allowed to issue certificates containing their domain names. It was first standardized in 2013, and the version we use today was standardized in 2019 by RFC 8659 and RFC 8657. By default, every public CA is allowed to issue certificates for any domain name in the public DNS, provided they validate control of that domain name. That means that if there’s a bug in any one of the many public CAs…

#Privacy (or lack thereof): #Lyft has added a setting in the app that allows them to monetise your data for targeted ads. It is *on* by default and has to be turned off manually.

Playing changing the number of 'experts' on an LLM - it's kind of interesting; Qwen3-next runs 10 by default, I can make it run a bit faster on my cpu by turning down to 4 and it's still OK.

... why?
"State file encryption and hardware attestation keys are no longer enabled by default."
#TailScale

I use middle-click-to-paste in #Gnome a lot.
I nevertheless think it's wise that developers want to turn it off by default.

I was trying to run the Portracker container so I could get a quick overview of the ports currently in use on my server. I couldn't do it because the default port for this container is currently being used by another one. What a paradox!
#docker

Happy #FreeCADFriday! This week I've been working on re-modelling the case for the Morserino M32 Pocket. At least four different people had worked on the case. It was initially made in FreeCAD, but then was modified with other software, and the current case that QRP Labs is shipping was edited in s…

I know some people are iffy about @…, but I've had a great experience with them. I'm not a huge fan of the AI-related stuff they're doing, but it's turned off by default and you can ignore it (like I do) if you're not a fan.
I'm a paid customer because I use a custom domain with catch-all addresses and it's been amazi…

Enjoy two weeks of Proton for free
Experience true online privacy. Protect your data with Proton for free for the next 14 days.

There's a video going around social media today showing an individual in Minneapolis being killed by American "ICE" personnel. In many cases, there's no content warning, and it (and other videos) will automatically play in most apps and browsers by default.
If you happen across it, or other traumatic videos, and it causes intrusive thoughts, I've seen credible sources saying that real and good advice to counter them is to play Tetris.

⚙️ Print mode runs by default for non-interactive execution, interactive mode enabled via .i. filename marker (task.i.claude .md), _interactive frontmatter key, or -_i CLI flag
🌐 Remote URL imports cached at ~/.mdflow/cache/ with 1-hour TTL, use --no-cache to force fresh fetch, automatic .env file loading from markdown file directory with support for .env.local, .env.development, .env.production

Still thinking about this on the way home...
"maybe we should just give up entirely on optimism or pessimism—we have to do this work no matter how we feel about it. So by force of will or the sheer default of emergency we make ourselves have utopian thoughts and ideas. "
#NCKF25 with an astoundingly profound talk by @mikkelkfrantzen.bsky.social who reminds us of Kim Stanley Robinson's essay dystopias now. The work starts here.
  https://communemag.com/dystopias-now/

RE: https://mementomori.social/@rolle/115830860141268596
I've implemented this design on datasci.social now via Custom CSS. Looks much better than the default - great work by @…

The #WordPress List View isn’t very useful by default with complex blocks. This experiment defaults to expanding 20 items more evenly across block levels, with options to change that number.

An analysis of 47,000 publicly shared ChatGPT conversations: ~10% related to emotional or mental health, ChatGPT exhibits a "default to yes" behavior, and more (Washington Post)
https://www.washingtonpost.com/technology/2025/11/12/how-people-use-ch…

We analyzed 47,000 ChatGPT conversations. Here’s what people really use it for.
What do people ask the popular chatbot? We analyzed thousands of chats to identify common topics discussed by users and patterns in ChatGPT’s responses.

Do you need better performance than what the standard #tidyverse functions have? {collapse} might be worth a look: https://sebkrantz.github.io/collapse/

So it's been pointed out that steve, the #jobserver, doesn't have a #logo. Here's a first approximation. Made in #Inkscape, using lines and fonts (the apples are from Noto Sans, I think). I also have an SVG version but browsers mess it up by substituting the apples for some colorful emojis with incompatible metrics. I've added a bright background, since the actual transparent background doesn't work on black (which seems to be Mastodon default).

hmm, our crappy access point has terrible bufferbloat when the offspring is downloading stuff on the pc
the pc is now running linux mint, which has fq_codel by default, but evidently that’s ineffective for an edge device
so i fettled it to use bbr instead of reno congestion control, while giving a lecture on why this might help with buffer bloat
we shall see if it actually helps…

Russia pressures Apple to make Russian search engines default on locally-sold iPhones https://therecord.media/russia-apple-search-engine-default

@… And Typst produces Tagged PDF by default: https://typst.app/docs/reference/pdf/

@… And Typst produces Tagged PDF by default: https://typst.app/docs/reference/pdf/

playing whack-a-mole with app notifications that get enabled by default when you get a new phone. geez, how do people get anything done if they just keep the defaults!

Huh. This is kinda cool.
"Windows Media Player Legacy" - the version that does CD rips and plays MIDI files - is hidden but available for Windows 11.
✅ Install or Uninstall Windows Media Player Legacy app in Windows 11 | Windows 11 Forum
https://www.

Install or Uninstall Windows Media Player Legacy app in Windows 11
This tutorial will show you how to install or uninstall the "Windows Media Player Legacy" app for all users in Windows 11. Windows 11 includes the new Windows Media Player app from the Microsoft Store by default. Windows 11 also includes the old Windows Media Player Legacy desktop app if you...

Why is it that companies make you opt out or turn off features that they enable by default? How about asking us first, get our permission. Also, STOP NAGGING WHEN WE TELL YOU NO!

This is sick, evil, and a very intentional infliction of pain.
Especially so when it is noted that that El Cheato's mass pardons and commutations have cheated many victims (and the government) who are owed restitution by criminals.
https://www.npr.org/2025/12/23/nx-s1-5653…

I wonder if it is just an effect of old hardware, but boy, the new @… OS release is a crashfest on my 2011 Mac Mini. The App Center crashed on me at least 7 times before I had enough and downloaded Zorin (because I’ve also wanted to give that a spin). It looked very nice, though, and it’s nice that Flatpaks show up now by default.
BTW: Elementary is …

Here's another new #hosting provider experience I wasn't expecting to see. Forky installed by default. I selected Debian 10, because that was the latest version in config form. Maybe they thought they were doing me a favor? The hardware isn't that new. If I wanted Ubuntu I would have chosen that.
Trixie aka Debian 13 just came out in August, Forky is the current"testin…

@… I really don't understand why everyone on big instances like mastodon.social don't just silence/limit mastodon.social by default.

German has a unique problem: the default noun for any job is male. Every effort to include the female or neutral form is fought tooth and nail by conservative parties. So when a mayor was forced to remove the mention of both genders in the statute for firefighters.... he kept just the female form of every job title 😈
"That's not what we meant!" the city council is now crying. "Not every person is female, after all!" they lament without noticing the irony.
…

Ugh.. Just noticed some new #Copilot settings appearing in #Github, and one of them was giving it access to all repositories 😡 just like.. by default
This is in Settings > Copilot > coding agent
I have already set copilot "visibility" as "Disabled" but is that f…

The C switch decision to do fallthrough by default is a clever idea at face value, but quite useless and often harmful.
I find it useless because it expands what you can do only before, not after. You can't have a case that adds extra statements after. A "break with condition" if you will.
Actually I think I can put a break inside an if statement....but I've never seen anyone doing it. Also it's very cluttery and unreadable.
And I hope everone knows why …

It's not a bug, it's a feature! 🫩
#microsoft #windows #enshittification

@… ariska pojkar har alltid god vandel by default, alltid

#neovim

GitHub - gbprod/yanky.nvim: Improved Yank and Put functionalities for Neovim
Improved Yank and Put functionalities for Neovim. Contribute to gbprod/yanky.nvim development by creating an account on GitHub.

""One year from now, with the release of #Chrome 154 in October 2026, […] Chrome will ask for the user's permission before the first access to any public site without HTTPS.""
https://s…

OpenAI merges ChatGPT's voice mode directly into the main text chat interface by default; users can still switch back to the original, separate voice mode (Zac Hall/9to5Mac)
https://9to5mac.com/2025/11/25/chatgpt-merges-chat-and-v…

ChatGPT just made voice mode even more capable - 9to5Mac
ChatGPT has an impressive voice mode that offers a very natural, conversational flow. The latest update to ChatGPT now combines...

Where's the fun in using a mid to high [and at that, an AMD] GPU for Linux gaming? 🙂 Even now, most gamers are broke by default, so I am using my second budget build that I had set aside for Win11 to do my Windows chores, but have completely migrated to Linux now, to showcase how real™ men™ overcome difficulties and optimise settings even on garbage PCs 😃
Linux Budget Gaming - Detroit: Become Human - GTX 1650 GDDR6 4GB ( i5-13400F)

Google says it needs more time to upgrade Assistant to Gemini on most Android devices; Google previously planned to complete the transition by the end of 2025 (Mariella Moon/Engadget)
https://www.engadget.com/ai/google-assista

Google Assistant will stick around a bit longer than expected for some Android users
Google has announced that it needs a bit more time to make Gemini the new default digital helper for most of its users.

Don't miss this keynote by @… and @…!
> #SocialMedia: We Can Change the Defaults
📅 Th. 27 Nov. 2025 at 8 pm
online and #Amsterdam
> @…, … co-author of #ActivityPub, … will speak about the crisis technologists face. Why must we revise the default assumptions of the web 2.0 era? She will introduce the work @… is doing to make a positive future possible.
#SPUI25 #SaveSocial #Fediverse #OpenSource #FOSS #sovereignty #EuSummit25

🤚 Free Saturday
👉 Saturday spent working on Free Software
Highlights from #Gentoo:
• #Gemato is now compatible with #FreePG and mostly compatible with #SequoiaPGP chameleon.
• Prepared patches to support FreePG and SequoiaPGP chameleon as "gpg" symlink providers.
• #FlexiBLAS is now enabled by default on ~arch.
• Finally finished working on #PkgCheck check for missing #PyPI provenance checks.
• gpy-list-pkg-impls now includes "does this package have tests?" state, can optionally include PythonCompatUpdate results from PkgCheck and output mIRC colors. In other words, our IRC bot will now tell us when dependencies let us port new packages to #Python 3.14, and whether these packages have tests.