Yes, targeted attacks like that definitely exist, most famously maybe the most recent social pressure to merge a vulnerability to the xz library by actor “Jia Tan”:

https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/

This started a whole discussion about relying on (often unpaid) volunteer work for critical systems and the pressure and negativity these people face, which is a discussion that was absolutely needed, and which we are still lightyears away from fixing.

Currently, open source is still treated like this: https://trac.ffmpeg.org/ticket/10341

(I can only recommend reading the whole story around this issue, which boils down to Microsoft admitting they rely on an open source project for something they consider critical to their customers, but not willing to pay the maintainer a bounty for fixing the issue)

That’s why there is a huge market for 0-day exploits.

Preliminary evidence for one-trial social learning of vervet monkey alarm calling

I watched a few videos before I realized Bobby Fingers is Mr. Chrome, and it made me unreasonably happy.

I am on my 4th personal TUXEDO laptop, never had any issues. I actually started giving them to the devs at my company, no complaints so far.

They don’t offer my choice of OS, and I wouldn’t use a preinstalled OS anyway, so I can’t comment on that.

Oh look, its Fabio.

So you created a spreadsheet in order to determine the THC/cost ratio as a factor, but then you did not sort your rows based on that factor?

Multiplying by the percentage shifts the calculation to determine the price of THC, not the price of the weed overall.

Example: You have a jar with 100g of weed you bought for $900 (bulk discounts ignored). You know the weed has a THC content of 22%, which equals a factor of 0.22. Multiply the 100g in your jar by 0.22 and you get 22g of pure THC in that jar. 900/22 means around $41 per gram of THC.

That way, you can easily compare price to THC ratio, that is, you will know how much you paid for a gram of THC, not for a gram of weed.

Put that new value (cost of THC per gram) into a new column and then start sorting all of your rows by that value in ascending order. Thay way, you can instantly look at the optimal entry (the top one), but also determine similar products, for example if your source is out of the best product, or it’s generally unavailable for someone without re-scanning the whole table (making it pretty useless).

Couldn’t watch, so I got a summary. Maybe it’s helpful for someone else:

• Bluefin is introducing a new “Stable” tag for their Fedora distribution, in addition to the existing “GTS” (Grand Touring Support) and “Latest” tags.

• The Stable tag will provide a middle ground between the aggressively updated Latest Fedora and the more conservative GTS version.

• Stable will use the latest Fedora release, but with a slightly older kernel that has been more thoroughly tested and vetted by the Bluefin team.

• This is intended to cater to enthusiasts who want the latest Fedora features, but with a bit more stability and reliability.

• Bluefin will be publishing weekly updates for the Stable images, rather than waiting 2 weeks between updates like the Fedora CoreOS team.

• The Stable images will also use zstd chunked compression to reduce the amount of bandwidth needed for updates.

• Bluefin is unsure whether the Stable configuration (latest Fedora, slightly older kernel) or the GTS configuration (older Fedora, latest kernel) will ultimately feel more stable in practice

• The Stable tag is a response to user feedback requesting access to the latest Fedora releases, rather than having to wait for the GTS version.

• Nvidia driver updates for the Stable images will also be provided on a regular basis.

• Bluefin is interested in exploring this middle ground between aggressively updated and conservatively updated Fedora distributions.

Yes, absolutely. Not all hinges are adjustable, unfortunately. In fact, I’d argue that most are not. Just have a look at the hinges at your place (doors, cabinets, toilet seat etc.), most will be very simple mechanisms with no inbuilt adjustment.

You can adjust the play mechanically, of course - that is, through application of a certain amount of force via deformation, which can be a destructive process if not done carefully.

There are hinges that expose an axial screw that allows for precise adjustment of hinge friction, but I have not seen those used for laptop display lids (nor did I personally encounter those in the small dimensions you would find on a laptop) . You’ll find examples of those at Misumi or McMaster - Carr.

If your goal is to increase the friction in your laptop’s display lid hinges, you might find that simply tightening all screws of and around the hinge often does the trick. Even though the main axial screw is not meant to be user accessible, it serves basically the same function and can tighten up the hinge. Tightening the screws used for mounting will ensure the lid doesn’t wobble. You will have to (partially) take your laptop apart for that, naturally.

If your hinge doesn’t have an axial screw at all and uses, let’s say a pin, you might have to employ another method, but that would really depend on the actual mechanism being used.

Absolutely, if there is enough plastic left, melting is one of the best options. That also enables mending plastic by melting in metal pins or strips via a cheap plastic welder for 10 bucks (success can be great, but it’s highly dependent on the geometry and how things broke).

Edit: no, as I said, that’s absolutely fine if there is a chunk of sturdy plastic to accept the insert. I just wanted to present another plastic repair technique for the sake of completeness, if somebody stumbles into this comment section.

This is correct and good advice. I’d like to add that it’s also an option to glue in a threaded metal insert in case a self - tapping plastic screw was used and the original thread is stripped.

by loosening the screws of the hinge.

Generally all correct, here is a resource with a lot of in-depth information and additional links:

https://batteryuniversity.com/article/bu-808-how-to-prolong-lithium-based-batteries

It’s not true that precision measurements are impossible with low value resistors, a lot of measurement equipment works exactly like that - it might just be more expensive than what the manufacturer is willing to budget for.

Tuxedo also offers products with an aluminum body, and while they do import the hardware from China, you get the local service and warranty guarantees any company in the EU must provide, so that’s fine by me.

Also, honest question: what do you think a unique laptop is, in particular when buying from a mass consumer brand like Lenovo? I really can’t figure out what that’s supposed to mean.

lspci will read the vendor and device id via PCI and use that to determine what the device is. You might want to make the output a bit more digestable / useful via lspci -s 03:00.0 -k -nn, but I’d assume the ids that match an 2070 will show up.

Could you please take the card out and provide us with a few pictures from different angles, maybe getting a good look at the actual chips?

I’d like to rule that out before chasing rabbits here.

Also, you could always run nvidia-settings, which will show information about an NVIDIA card using a different access method.

I’d still like to see the pictures of the card though ;)

Honestly, that just seems like you’re treating dd as some kind of arcanum. dd works just fine and I’ve been doing 1:1, full system backups for decades with it, no issues. Honorary mention for ddrescue / dd_rescue for recovery options, i. e. re-trying bad sector reads etc.

In fact, when Clonezilla doesn’t know your filesystem, it will simply employ dd to copy the data sector by sector.

I’d argue that Clonezilla (due to its use of partclone) is actually a less complete form of backup, since it will only copy used blocks, you don’t really end up with a clone of your devices, just a copy of what partclone believes to be your data. Don’t get me wrong, that is fine in most use cases, but there are some cases where this doesn’t cut it, e. g. wanting to backup / restore a storage device from a PLC where the vendor had the glorious idea to store licensing data in unused sectors, or when you want to create a forensic disk image, might want it look into d3dd then, although it absolutely works using regular old dd as well, d3dd just adds some amenities.

All I want to say is: dd is an absolutely reliable tool and can be a one stop solution for device backups. Also, I have absolutely no quarrels with Clonezilla, if it fits what you’re trying to do and it works, great.

Yikes. If the second sentence of your ad reads So instead of blaming him […] she should question herself, we’re in for a good time. And that’s not even touching the idea that his many neglects can be explained away by what exactly, pussy odor?

Not a doctor here, but I’m being told applying a disinfectant might not be the best idea, although the medical details are by far not the bleakest thing about this ad.

To be fair, before it was promoted like this, it was actually used in Germany to combat Cholera. This dystopian marketing we see here is a US invention.

Fun fact: early Lysol was really poisonous and was used as the suicide poison in the beginning of the 20th century, readily available and all. It was also used for homemade abortions.

It’s actually a lot worse than ASM, there are far more ambiguities in C++. And yet here I am, still developing with it some 30+ years later.

Don’t worry, I’m using Rust were it makes sense.

I would be honestly upset at the tragic death of the Tim the pencil.