0daystolive | @[email protected]

Opinions are those of my employer.
Computer Hacker.
Work @ https://sorcery.ie
Blog @ https://0daysto.live

Whilst I like the idea of the ‘2 pizza team’ as originated by Amazon, at some point we are going to need more than just me on this.

the torment nexus is now carbon neutral

@augieray I'm not going to dive into the long covid research but I will say that a lot of things have long term effects, the solution isn't that everyone locks themselves away in a protective bubble. That has a very high opportunity cost.

@augieray That Walgreens positive rate tracking doesn't show what you think it does and is more misleading than looking at confirmed case data.
Currently it shows a 26% positive rate on ~12,000 tests but the trend on the graph makes it seem like cases are way up - they're not. The high 2022 datapoint is from 450,000 tests with a 36% positive rate - a significantly worse situation. The 2023 peak datapoint of 44% positivity is only from 3000 tests. With a lot less testing happening the results are significantly skewed by selection bias.

We also can't make any comment on outcomes from the positivity results data but I'd wager more recent positive results are less likely to result in hospitalization or death (due to vaccines or natural immunity).

Another reason that COVID is less fatal now is that hospitals have more resources available (less hospitalizations) than they did during peak pandemic and thus can actually treat patients. Source: https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8025594/

@augieray I'm sorry but when someone *DIES* the cause of death is recorded. This is not a newfangled COVID thing. Death statistics are probably one of the more accurate things to look at although there is a lag sometimes before they get compiled. Even if hospitals opted to not attribute deaths to covid you'd be able to see it in excess mortality rates if it was significant.

Thanks for the wastewater link, thats an interesting data source. Not sure why you think asking for a source is "sniping" you're the one who made a claim and I was interested in the basis and wastewater data isn't really in the top results of searches...

@augieray Do you have a source for COVID19 transmission being higher? Any graph I can find shows hospitalizations are way down, confirmed cases are way down, deaths are way down. What do you think we all did the whole vaccination thing for? Do you not think that maybe you need to update your worldview from the one you had during peak pandemic? It is absolutely not the same level of risk now and it seems to me you haven't adjusted.

@chrismarkevich that same book is part of the Christian Bible. People make defences like "oh don't take it literally", "old testament doesn't matter" but this is a good example of modern day usage of it to justify genocide (albeit from Jews rather than Christians) .

I love looking up any major brand's Wikipedia page

Sara Lee owned...
Successfully lobbied the US State Department (along with
Levi's) to prevent the minimum wage of Haiti from going up in 2011

Hanes only had 3200 employees there btw

It started when Haiti passed a law two years ago raising its minimum wage to 61 cents an hour. According to an embassy cable:

This infuriated American corporations like Hanes and Levi Strauss that pay Haitians slave wages to sew their clothes. They said they would only fork over a seven-cent-an-hour increase, and they got the State Department involved. The U.S. ambassador put pressure on Haiti’s president, who duly carved out a $3 a day minimum wage for textile companies (the U.S. minimum wage, which itself is very low, works out to $58 a day).

Haiti has about 25,000 garment workers. If you paid each of them $2 a day more, it would cost their employers $50,000 per working day, or about $12.5 million a year ... As of last year Hanes had 3,200 Haitians making t-shirts for it. Paying each of them two bucks a day more would cost it about $1.6 million a year. Hanesbrands Incorporated made $211 million on $4.3 billion in sales last year.

Thanks to U.S. intervention, the minimum was raised only to 31 cents.

These papers have come to light thanks to Haiti Liberte, a small Haitian newspaper with offices in Port-au-Prince and New York City.

Darn tootin'

ars technica: we don't know how they did it but google chrome now extracts a pint of blood every time you log on

chrome user, dizzy from blood loss: I swear to god I am like this close to switching to firefox

another chrome user, on the verge of fainting from severe blood loss: no need to resort to that, just switch to [insert today's trendy chrome fork here] and be smart like meeee

@athenamedia This article does not explain why we need hate speech legislation. A lot of what is described in the article is already covered in legislation under the "Non-Fatal Offences Against The Person Act, 1997". I think using death threats and intimidation as a reason to introduce restrictions on speech is very deceptive.

Tim Cook laid it out for his investors as to why the company will always be against users repairing gheir devices. When people can repair their devices, they don't buy new ones. When people don't buy new devices, Apple doesn't sell them new devices. It's that's simple.

Making cringe inducing skits about how much they care about the environment while doing everything they can to make iPhones disposable is the kind of corporate duplicity that’d make oil companies blush


@todb @neurovagrant @iagox86 Make a folder called attachments. Settings > Files and Links > Attachments folder path and set it to the attachments folder you just made. Also set the "Default location for new attachments" setting to "In the folder specified below". This will work for new images but you will have to move already existing images.

@sinabhfuil His math assumes energy prices are going to stay the same for the next 88 years but any graph would tell you otherwise

MyBB RCE in Admin Panel using ReDoS https://blog.sorcery.ie/posts/mybb_acp_rce/ CVE-2023-41362 #redos #rce #php #mybb

SQLi in SimpleImportProduct Prestashop Module CVE-2023-39675 https://blog.sorcery.ie/posts/simpleimportproduct_sqli/

XSS in FieldPopupNewsletter Prestashop Module CVE-2023-39676 https://blog.sorcery.ie/posts/fieldpopupnewsletter_xss/ #prestashop #xss

Up to 0$! Wow, amazing. I'll get right on that...


we're running out of room
there's too much memory pressure
it's gonna cause some errors

I made a small patch to CPython, and it was 100% worth it

(SyntaxError -> SkillIssue)
Terminal screenshot showing a python repl: SkillIssue: closing parenthesis ']' does not match opening parenthesis '('