I once did a HackTheBox where the privilege escalation weakness was a cronjob running a script. I’m not sure if I correctly remember all the details, but I think it read some parameters from a file and fed them to some other script. Since it had something to do with the webserver the user was administrating, they needed write access to the file, granted via ACL. That took me a while to spot, actually. Not sure why, but ACL is a constant blind spot for me. As for passing the parameters, you can just append the contents of the file to the command and pipe it to bash.

I don’t recall what the normal script did, but it needed writing permissions for something. The proper way to do this would be ACL, but I guess I’m not the only one with a blind spot. The easy way to ensure the script can do whatever it needs to is to sudo the whole thing.

So what do you do if you have a script running every ten minutes, reading the first line of a file you can edit, then executing it with superuser privileges?

Whatever the fuck you want.

Ah, I did misunderstand you. I thought you meant compromise with the bastards.

Lemmy (and the internet in general) has a tendency for replies to be diametrically opposed, so I don’t blame you for mistaking my comment as contrarian. It’s an unfortunate extension of the hostile discussion culture.

If anything, I’d disagree on details, but not on the general sentiment: Being scared to make a move is human. Refusing to make a move because you value principle over intention is hypocrisy. Convincing others not to make a move is sabotage.

And saboteurs are at least as bad as open enemies, if not worse for their insidious pretense. In short: They’re bastards.

I don’t want to see firefights in the streets

I question the sanity of anyone who does. Fighting is a destructive activity. The best war is one that is never fought.

But as the saying goes: If you fight, you might lose…

but as ICE ratchets up the violence against regular folks I just can’t see us not having to fight them.

…but if you don’t fight (back), you’ve already lost. And this is a fight we really don’t want to lose.

Disguwusting

For one, it shouldn’t matter whether the other person who’s bad at the game is a kid, a senior, impaired, a noob, a busy adult or just someone who enjoys that game without putting in the effort to become really good at it: If you’re insulting someone over a game, you should sort out your priorities. I used to do that, because I was a miserable knobhead, but it really doesn’t make the game more enjoyable and made me even more miserable.

But secondly, it’s particularly bad with kids. Yes, life can be unpleasant, and learning to deal with other people’s disapproval is important, but there has to be a better way to ease them into that.

(Beating down on the impaired is also fucked up, obviously. Life has dealt them a shit hand already, so how about making an effort to include them instead? I promise, it’s more mutually enjoyable. Few good things are as infectious as the joy of someone used to being shut out with superficial pity. That’s not relevant to the topic, but I felt it’s worth mentioning.)

Without having looked at your link, because I’m on the train without headphones and don’t want to be that guy:

You can compensate for a lot by paying people a good, stable salary. Light knows I’m tolerating some bullshit just because a permanent full-time job in a stable industry with alright pay and a strong union and workers’ council is a welcome reprieve in an unstable time. Sure, I can’t be as flexible with HO as I’d like, but at least I can make a living and support my wife without stressing out about suddenly getting a lot of time at home without office.

But even money can only do so much. Working conditions, realistic expectations, getting and heeding feedback from the people doing the actual work also matter. It’s perpetually confusing to see top management be so neglectful in their treatment of “human resources”, because even that dehumanising phrasing implies they’re resources that ought to be maintained.

Allegedly, they also said it was worth it.

You got me wrong: Better to compromise on pacifism than steadfastly refuse to defend ourselves

Naive pacifism is. I’m a pacifist too, but it doesn’t take much reading to understand the reasoning behind “If you want peace, prepare for war” and acknowledge that, regrettably, violence sometimes is the only option not amounting to reckless neglect.

Better to compromise and achieve something than to smugly die an idealist and achieve nothing.

I don’t think anything in war is ever 100% sure. But familiarity with terrain and conditions does go a long way.

I also wonder about the US troops’ morale and conviction in that fight. I’d be wary of making any definitive statements here either way. I know we like to paint the US as fundamentally morally corrupt, but I’m not sure how far following orders and justifying them to themselves will actually go. It’s far easier to tell yourself you’re doing the right thing when abducting a corrupt dictator than when seizing previously allied territory.

I hope we never have to find out.

Warframe has a roguelike gamemode where one upgrade you can get gives +100% mag size per stack and +1 shock damage per reloaded bullet. If you have two stacks of that with a weapon with a base mag of 30 shots, that’s a damage bonus of up to 90 if you fully empty it before reloading.

I got two stacks of it with a weapon with base mag size 200 and base damage 40. I don’t remember what the weapon mods pushed that base damage to, but I do know that the 600 bonus damage was very much felt… when I did the reflex reload after firing ten bullets and suddenly my DPS were abysmal.

The underlying mechanic is always the same: You might be able to deny ground from the air to some extent, but you can’t hold it without boots on the ground. Morale bombing has been tried aplenty and has yet to show convincing effect. And both aircraft and grunts are vulnerable to all kinds of unpleasantness from the ground.

For a defender, the primary objective is making it so costly to sustain the attack that the attacker either can’t afford to or decides it’s not worth it. Asymmetric warfare has shown potential to be quite efficient at that task. The Taliban are one example, the Vietcong another and I really hope we don’t have to find out if Denmark belongs on that list.

Nobody said they’re high quality sausages. From a superficial DDG, I found a jar at Edeka for 3,29€. I suspect cheaper grocers will have cheaper options too.

Defensive wars don’t work quite the same way as offensive ones, and history has extensively shown that air control isn’t the only factor. It certainly can make a difference, but reducing the complexity of war into a simple comparison of two arbitrary measures is ignorant at best, deceptive at worst.

I’m a layperson that has read a few articles, but it doesn’t take an expert to understand that you wouldn’t need War Colleges if primary school math was all it takes to win.

Palpatine: I will make it legal

I’d call it a race to the bottom, personally, but it certainly is a strong contender in intellectual impotence.

That fix has a lot of side effects that might break something. Unless you’re intimately familiar with their setup and use case, destructive solutions aren’t a safe recommendation.

Remember: Peaceful protests are like barking - annoying, but by itself harmless. It’s the fear of the bite that makes the barking scary.

You don’t have to jump straight to violence, and I believe that it’s more effective to start with non-violent demands. Once you escalate, there’s nowhere left to go. But the threat of it is what makes the peaceful option less destructive.

As the saying goes: Nothing will meaningfully change until the rich fear for their lives.

IDK, there have been a lot of dumb wars. I don’t think that’s a competition worth grading though.

That, or wearing conspicuous amounts of fabric such as a toga in a time when producing it was very time-intensive and accordingly expensive, particularly white fabric since keeping things white without modern detergent was a little harder and even more so when dyed in colors only attainable with exotic materials such as purple. Either you had the leisure to do these things yourself (because you don’t have to work for a living), or you had the wealth to pay someone else for it.

I can see why people would attempt to abuse a bug bounty program for easy price money, but that’s just another case of greedy people fucking over everyone else by pissing on whatever trust and assumptions of good faith people might still extend to one another.