Profile picture
The Hacker News
@TheHackersNews
, 3 tweets, 2 min read Read on Twitter
We all love your media player, but that’s really rude #VLC 🙄

VLC developers refused to consider #software "update-over-HTTP" as a threat.

Responded→ “no threat model. no proof. no #security bug"

It wouldn't hurt if you simply consider the suggestion.

trac.videolan.org/vlc/ticket/217…
Though VLC updates are "signed and authenticated with OpenPGP," as developers said, adding an inexpensive but an important extra later of security is a considerable suggestion.
Yes, absolutely. But Looking at your software' popularity and the user base, adding another "easy to implement" second-factor authentication is not a bad idea. Or is it?

Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to The Hacker News
Profile picture

Get real-time email alerts when new unrolls (>4 tweets) are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#VLC #software #security

Related threads

Profile picture
Cyrus Toulabi
@CyrusToulabi
#UPDATE: Trump announced he was withdrawing troops from Syria, on the same day that the Treasury Dept announced they were lifting sanctions off of Oleg Deripaska's companies.

We can be pretty sure BOTH were discussed in Helsinki.

#WhatHappenedInHelsinki?
#BREAKING: “Trump has gone to extraordinary lengths to conceal details of his conversations w/Putin, including...taking possession of his interpreter’s notes and instructing him not to discuss what had transpired w/other officials”

#WhatHappenedInHelsinki
washingtonpost.com/world/national…
#REDFLAG: "U.S. officials said there is NO DETAILED RECORD, even in classified files, of Trump's face-to-face interactions with Putin at FIVE locations over the past two years. Such a gap would be unusual in any presidency..."

#WhatHappenedInHelsinki?

Read 4 tweets
Profile picture
Ton Aarts
@ton_aarts
31. Terwijl Elon Musk eindelijk een uurtje slaapt zonder pillen (Of misschien wel een volle 1,5 uur slaapt) gaan wij ff snel door met #TeslaFamily dingetje 31.

Zolang Tesla nog bestaat kan het nog, mensuh!

Ja, een beetje regen. Blijft lastig, voor je nieuwe 70 mille Tesla 3 ..
Maarre, of jullie daar niet teveel aandacht aan willen besteden. Dat wij bij Tesla nog niet eens een f#cking deurrubber waterdicht kunnen maken nu. Na 6 jaar serieproductie.

Gewoon bestellen, die Model 3. Komt ammel goed. Denken we.
Over bestellen gesproken. Al die verhalen, dat je de afgekeurde Tesla Model 3 van iemand anders krijgt. Als "nieuwe auto"

Die 'm op zijn beurt weer afgekeurd kreeg van iemand anders. Als "nieuwe auto"

Niks van geloven hoor. Is allemaal echtheusniewaar ..
Read 154 tweets
Profile picture
I have no name and I must scream
@HostileUX
My app is Online!
It took me ~4 weeks, maybe 35 hours/week, to make. However! I spent 2 weeks just watching courses, so 2 weeks of solid work, I think is fair to say.

It's made with #angular, #ngrx, #express, #mongodb, #mongoose, & #love.
Here's the story. (cont'd) #programming
The goal was to make a recipe/grocery list app. We have a weekly menu, and I'd want to select recipes and just get a grocery list automatically.
Sketching things initially helped a lot. Layout was never a problem, because I love #materialdesign and I'm stuck in the 90's...
#ngrx was definitely the trickiest part. @DeborahKurata & @dunchunter's course on #pluralsight is amazing, and everyone should watch it (if they need to work with ngrx, obvs).

Did I need ngrx? No. This could have been solved with services. But, I wanted to learn.
Read 20 tweets
Profile picture
UCCat20
@UCC_Official
#UPDATE on Smile Communications service outage. At an arbitration meeting between Smile Communications & Eaton Towers held at UCC, the meeting resolved administrative issues that recently affected the delivery of communication services to Smile customers.
See details below...
In an arbitration meeting between the two Smile Communications and Eaton Towers (infrastructure provider), it was agreed to reconnect all Smile sites that had been previously switched off to the benefit of all stakeholders concerned & this was done even before the meeting ended.
The parties to the arbitration agreed to sign a temporary addendum to allow re-connection and service restoration pending conclusion of the ongoing negotiations for a new service provisioning agreement.
Read 5 tweets
Profile picture
vikram
@recapsio
0/ Really enjoyed @laurashin ’s recent podcast with @zcashco founder @zooko. They discussed $ZEC and his views on privacy (spoiler: it’s not all about dark web purchases). It was interesting discussion of technology and the philosophy of crypto / privacy. Here’s a recap thread:
1/ We hear a little bit on Wilcox’s history. Prior to starting Zcash, he worked on a distributed, cryptographically secure filesystem (Tahoe-LAFS bit.ly/2GRzgPJ). He got interested in digital money after reading the work of David Chaum (bit.ly/2pWqgiM)
2/ Wilcox’s interest in digital money is highlighted by his worldview: “humanity’s best resource [is everyone else] who can help you out.” We aren’t able to take advantage of this resource because of national borders and the like
Read 24 tweets
Profile picture
âpihtawikosisân
@apihtawikosisan
Can we talk a little about how white women so often see Black, Indigenous, and women of colour as threatening?

We also need to talk about how dangerous white women can be when they feel threatened.

White women, don't @ this thread at all, thanks.
For example, once I was very assertive with a white woman. I disagreed with her, and stuck to my guns, but I never called her names, swore, or belittled her in any way.

Nonetheless, she began crying.

Later, she complained about me, and I had to review the entire interaction.
What's wild is that even before she tried (succeeded) to get me in trouble, I was feeling guilty because she'd started crying. I had already reviewed that reaction over and over and over again in my mind because I began doubting myself.

Had I really been so brutish and scary?
Read 23 tweets

Trending hashtags

#ripoff #au #receipts #smarcities #politics #Media #GiletJaunes #Cryptography #opendara #masterplan #Unity4J #WHOIS #Kiwicon #chcon17 #VelocityConf #smartcitirs #bigdats #materialdesign #bigdata #Update #fishy #OccupyICE #democracy #PolicingInCollapse #dontwanttoforgetaboutthemuffins
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!