I use NetNewsWire on macOS and iOS, using Feedly as the backend to sync my feeds and read statuses. The experience is so much nicer than scrolling through social media feeds.

The story here is that Project Zero found some fixes that they think Red Hat should have backported, but didn't.

Using bleeding edge is not the only way to get security patches, Red Hat backports fixes to RHEL: https://access.redhat.com/secu...

Iâ(TM)ve definitely seen tools breaking on later 3.x updates. Donâ(TM)t recall which ones exactly, but had to fiddle a bit with that in Docker images.

Python has 2to3: https://docs.python.org/3/libr...

I donâ(TM)t really write Python scripts myself, but found some tools that do work on for instance 3.8 and 3.9, but not on 3.10, like Google Cloud SDK. For the various Python-based tools on my system I generally need about 3-4 different Python versions to be able to use all of them.

Python even breaks backwards compatibility between some 3.x releases. If you care about backwards compatibility, Python is not the best choice.

Note that the blog post talks about JavaScript, not Java. Those are two quite different beasts.

Here in the Netherlands we have a capital gains tax. If you have more than â50K you pay tax over the money you would have gained because of owning the amount beyond the threshold. There is some debate about the rates used for this tax, because savings interest rates have dropped from about 4% to basically 0% in the past couple of years and the tax rates havenâ(TM)t caught up with this new reality yet. The threshold was raised from ~â30K last year to â50K this year, so more people stay under the threshold and donâ(TM)t need to pay any capital gains tax. But yeah, this capital gains tax is some form of a wealth tax. Still I donâ(TM)t see everyone moving to Australia.

This is about different from a regular port scan though, since in this case the port scanning software is run in the browser (JavaScript) on your machine.

How are they doing anything against Oracle's influence? It was Oracle's choice to no longer provide free OpenJDK updates for more than 6 months, so Oracle practically invited new OpenJDK build providers to step in. So now Amazon joined Red Hat, AdoptOpenJDK, Azul, etc. as an OpenJDK build provider. I don't really get what they add to the providers that were already there, but I guess if you really like Amazon you could prefer Coretto over other free OpenJDK builds.

Iâ(TM)d also take a look at the AdoptOpenJDK project.

Assuming you donâ(TM)t want do your own OpenJDK builds, where would you get this âplainâ(TM) OpenJDK build from? If you donâ(TM)t want to pay, then Oracleâ(TM)s builds wonâ(TM)t be an option since OpenJDK 11 if you want updates for more than 6 months. Amazon Coretto would be an option. Or my personal favorite: AdoptOpenJDK.

From the article:

Once started, the Popcorn Time ransomware will check to see if the ransomware has been run already by checking for various files such as %AppData%\been_here and %AppData%\server_step_one. If the been_here file exists, it means the computer has already been encrypted and the ransomware will terminate itself. Otherwise, it will either download various images to use as backgrounds or start the encryption process.

So, everyone should just make sure %AppData%\been_here and %AppData%\server_step_one exist? :)

Hm, sounds like agile to me.