I agree with this. I understand that the majority of users also don't read release notes and some don't even install add-ons, with this being enabled by default this would provide them with a more anonymous ad experience.
mouse
joined 1 year ago
As a small homelabber I agree with this. I started with a baremetal and using Docker, and switched to Proxmox, and now over to Incus, actually currently I am using Debian with cockpit + cockpit-machines. I do like Incus, I keep hopping back and forth between cockpit, I need to settle on one.
That's interesting! I wonder if they are locking down factory installations.
About a month ago I was able to do it with a fresh install of Pro in a VM, I'll do a quick test and see if it works on Home...and it works too. I had to disconnect the network and then run the OOBE\BYPASSNRO command, it rebooted and gave me the continue without network and limited setup options.
Unless I missed something, the article states as follows
Another method of bypassing the account lockdown still exists. You simply have to enter OOBE\BYPASSNRO in the command prompt during the Windows 11 setup process, which allows you to skip the connection to the Internet and thus also the link to a Microsoft account.
I agree. I am someone who values their privacy and often does not like opt-out style analytics however I also know opt-in skews analytics. The way the searches are only categorized, and they are using Oblivious HTTP keeping IP addresses private makes me A-OK with this.
It's a relatively low performance hit and it benefits me when having to replace a failing/old disk. I can just toss the drive without having to erase the data first, that is as long as the key is a secure length.
Quickly skimming the readme, it states:
- OAuth token spoofing: To circumvent rate limits imposed by Reddit, OAuth token spoofing is used to mimick the most common iOS and Android clients. While spoofing both iOS and Android clients was explored, only the Android client was chosen due to content restrictions when using an anonymous iOS client.
- Token refreshing: The authentication token is refreshed every 24 hours, emulating the behavior of the official Android app.
- HTTP header mimicking: Efforts are made to send along as many of the official app's headers as possible to reduce the likelihood of Reddit's crackdown on Redlib's requests.
You can block instances. Go to settings, blocks, in block instance section search for the instance that you want to block.
Not that it helps but the CEO claims they forgive for this type of attack/event. https://news.ycombinator.com/item?id=39521986
Netlify CEO here.
Our support team has reached out to the user from the thread to let them know they're not getting charged for this.
It's currently our policy to not shut down free sites during traffic spikes that doesn't match attack patterns, but instead forgiving any bills from legitimate mistakes after the fact.
Apologies that this didn't come through in the initial support reply.
And later they were asked if they would have responded if it didn't go viral. https://news.ycombinator.com/item?id=39522029
Question:
There are only two questions everyone have:
Would Netlify forgive the bill if this didn't go viral?
How do you plan to address this issue so that it never happens again?
Everyone here knew someone from Netlify would come and say OP wouldn't have to pay. That was a given. Now we want to know the important answers.
Answer by CEO:
Yes. We've forgiven lots and lots of bills over the last 9 years and they haven't gone viral
While I've always favored erring towards keeping people's sites up we are currently working on changing the default behavior to never let free sites incur overages
view more: next ›
Is it https://tosdr.org/ ?
There's also https://privacyspy.org/