Not so fast, Sherlock.

xargs doesn't handle shell functions, only external binaries.

Whether there's someone sitting on your line and grabbing your traffic or tampering with it is completely irrelevant because that problem exists in any case. By running your own resolver, you don't publish your queries directly to a third party on top of that and that's a good thing.

That's what you get when offering VPN access must include proper client configs because users are clueless and want to be "secure" by hitting a button.

I guarantee you that I could take the credentials of each and every one of these VPN offers, put them into my router and tunnel all my clients properly(!) without any leaks.

It's not the VPN that is flawed, it's the CLIENT SETUP. For people with a clue, that's a distinction.

If you alias rm to rm -i, what do you think rm -fr gets expanded to?

Could it be rm -i -fr in which case the -f overrides the -i anyway? Oh great sysadmin, can you clarify?

You mean in an amateurish way that can overload shell buffers?

Try

while read i; do ...; done < ips.txt

or

xargs ... < ips.txt

What are you even doing on the Internet without an ad blocker? Don't complain about things which are in your own responsibility, fool.

This is about queued TRIM vs. just TRIM, not TRIM vs. no TRIM at all.

When it comes to IT, I'll gladly let the hipsters deal with the pain and the data loss for a 0.5% speedup and use whatever they came up with - and is still relevant - after 10 years. Thank you very much.

From http://www.openbsd.org/errata5... (emphasis mine)

009: SECURITY FIX: June 11, 2015 All architectures
Fix several defects from OpenSSL:

        CVE-2015-1788 - Malformed ECParameters causes infinite loop
        CVE-2015-1789 - Exploitable out-of-bounds read in X509_cmp_time
        CVE-2015-1792 - CMS verify infinite loop with unknown hash function

Note that CMS was already disabled in LibreSSL. Several other issues did not apply or were already fixed and one is under review.
For more information, see the OpenSSL advisory.
A source code patch exists which remedies this problem.

Though I'm really curious how "has security benefits" has nothing to do with security. That's a strange one.

NAT has nothing to do with security. What people confuse as security is the fact that NAT is always implemented in the form of NAT+filter, never as just NAT alone. So they think the security comes from the NAT part when in reality, it's the filter part that does the job of keeping the network secure. You can remove NAT and keep the filter and have exactly the same security with IPv6.

If there was such a thing as NAT _without_ a filter, your ISP could simply set a route to your private address space via your external router - since he's the next hop - and access your internal network freely.

If you think NAT has anything to do with security you're just an amateur who knows nothing other than his plastic blackbox "consumer" router, and draw conclusions from what he sees in the user interface of that thing.

Let me guess: Good American Christian?

But it is possible to freeload on... publicly served data? You're not making any sense.

I request, they serve. I can do whatever I want with their data on my machine. There's not even a contract here.

"Unspoken understanding" in the context of a multi-million dollar faceless corporation. That actually made me chuckle. They're the first ones to break the unspoken understanding of paying proper taxes for example and I'm supposed to let them infest my machine with bullshit? GTFO.

Go and make me sign a contract or don't serve your shit freely. Easy.

Encoding targeted ads in real-time into every video? Yeah, that'll work.