It didn't get much attention when I posted it earlier this week, but I made an SSH movie player:

ssh ansi.rya.nc

(currently shows Sneakers, complete with subtitles)

Usually I get really annoyed with people who hijack a thread to post their own thing, but ok, yea, this is pretty amazing. The quality is superb.

I do also love itter.sh

I was about to say 'please do not hijack the thread' but read your comment and ssh'ed into it. This is amazing.

Agree. His Show HN post deserves the upvotes

https://news.ycombinator.com/item?id=43916333

HOLY FUCK, WOW. Can we have a call?

Just mplayer -vo caca myvideo.mp4

It's _way_ higher quality than that.

drop me an email

It looks completely garbled on my end

here's a screenshot with a terminal that works with it https://media.infosec.exchange/infosec.exchange/media_attach...

It needs a terminal with 24 bit color support, and at least 80x24. In particular, gnu screen doesn't work.

Did I inspire posting this?

https://infosec.exchange/@ryanc/114386921335051196

Yes!

Kinda curious what site this was - I assumed United Nuclear (which I have ordered non-radioactive items from), but they don't sell Pu.

“item now discontinued“

https://www.luciteria.com/element-cubes/plutonium-for-sale

of stands for obliterated file

and dd is data destroyer

This is the way!

He was a good friend of mine, and I joined his last company very early. I found out from the defcon twitter account. I miss talking to him.

As someone with a domain name on a ccTLD for a country most people have never heard of, I can only say "lolsob". It's managed by a guy who works for the post office, things take a few weeks to process, and there's a holding company involved.

As the other poster told you, they filter it out.

It’s still gonna cost them that click, if every site I go to will cost advertisers money I’m good.

Also if it doesn’t work why did Google go out of their way to make it hard to install? If it was truly harmless to advertisers Google would not have done anything.

You can turn on the referrer header for same site, however I suspect the author would argue that this would be contrary to GDPR. There is also the ping attribute on links, but again, if we accept the author's premise...

The user agent string by itself is not PII. The user agent string in context can be PII.

Here's an example you might be familiar with from a business setting: sometimes you can't disclose the identity of certain customers but you really want to talk about them as a reference when selling your product. So instead of "Microsoft" you might say "a big company from Redmond". You're not identifying which company you are talking about but you're providing enough context clues to narrow it down to the point where the most likely company you might be referring to is Microsoft. If you then go on to say something about "the big company from Redmond", that information will clearly be tied to Microsoft (or a very small group of companies where Microsoft is the most likely one) and you might be violating the non-disclosure agreement without ever having explicitly named the customer.

Back in the day, a user agent string would only tell you the OS and browser, with version numbers often only narrowing it down to maybe a year or so. But with browser and OS releases becoming so frequent, the exact version numbers alone will already often vary even between users using "the same" browser and OS and additionally it may sometimes contain information about plugins and other installed software. Alone this is unlikely to narrow it down enough to qualify as "personally identifiable" but that depends entirely on what else you store alongside it (and things like timestamps are definitely additional important context clues).

I do that, plus a little more (page being closed), with an identifier in session storage. If doNotTrack is turned on, the session storage is skipped.

I do not have a consent banner, and I do not believe that I need one.

Technically you need one, because you're using session storage for something that is not strictly necessary to make the page work. It's in the article.