(Thinking) outside the box

@flashfictionfridayofficial

"What we're you thinking?" He almost shouts.

The young pilot -the idiot hasn't even got his Wings yet- tips his head, but meets his eyes fairly steadily

“I wanted to see if it could be done, Sir. Low flying would be a good way to scare off Bandit, if they can't follow."

He's not wrong, admittedly, but he's not considering the other side of the scale. And the entire thing smacks of the kind of confidence which can go too far, too stupid

He raps out the words "At the danger of pitching yourself into the ground in the process, which would have wrecked the plane and killed you. We can’t afford to lose either. You know what happened in France, now they're coming over the channel, Junkers, Meschersmits." He locks his eyes on the younger dark ones, spots a slight flicker there. "We need Pilots Foyle! Brave ones yes, canny ones yes, not over-reaching cocks of the walks who do stupid things on a dare, and get themselves killed for no reason." He shakes his head with a snort, "You'll get enough of that when you're in a Squadron, it looks like. don't push your credit. Dismiss."

The boy salutes crisply and turns, walks out of the room.

Young idiot. Bloody Fool. He looks back to the folders on his desk, flicks the next one open. Requests for pilots to be assigned.

Good Plane Handling, Low-level flying, Test duties. Special Posting

He glances up at the closed door, picks up a slip, and writes the name. If Foyle wants to take risks, he can be useful while doing so.

Cybercriminals are abusing Google’s infrastructure, creating emails that appear to come from Google in order to persuade people into handing over their Google account credentials. This attack, first flagged by Nick Johnson, the lead developer of the Ethereum Name Service (ENS), a blockchain equivalent of the popular internet naming convention known as the Domain Name System (DNS). Nick received a very official looking security alert about a subpoena allegedly issued to Google by law enforcement to information contained in Nick’s Google account. A URL in the email pointed Nick to a sites.google.com page that looked like an exact copy of the official Google support portal.

As a computer savvy person, Nick spotted that the official site should have been hosted on accounts.google.com and not sites.google.com. The difference is that anyone with a Google account can create a website on sites.google.com. And that is exactly what the cybercriminals did. Attackers increasingly use Google Sites to host phishing pages because the domain appears trustworthy to most users and can bypass many security filters. One of those filters is DKIM (DomainKeys Identified Mail), an email authentication protocol that allows the sending server to attach a digital signature to an email. If the target clicked either “Upload additional documents” or “View case”, they were redirected to an exact copy of the Google sign-in page designed to steal their login credentials. Your Google credentials are coveted prey, because they give access to core Google services like Gmail, Google Drive, Google Photos, Google Calendar, Google Contacts, Google Maps, Google Play, and YouTube, but also any third-party apps and services you have chosen to log in with your Google account. The signs to recognize this scam are the pages hosted at sites.google.com which should have been support.google.com and accounts.google.com and the sender address in the email header. Although it was signed by accounts.google.com, it was emailed by another address. If a person had all these accounts compromised in one go, this could easily lead to identity theft.

How to avoid scams like this

Don’t follow links in unsolicited emails or on unexpected websites.

Carefully look at the email headers when you receive an unexpected mail.

Verify the legitimacy of such emails through another, independent method.

Don’t use your Google account (or Facebook for that matter) to log in at other sites and services. Instead create an account on the service itself.

Technical details Analyzing the URL used in the attack on Nick, (https://sites.google.com[/]u/17918456/d/1W4M_jFajsC8YKeRJn6tt_b1Ja9Puh6_v/edit) where /u/17918456/ is a user or account identifier and /d/1W4M_jFajsC8YKeRJn6tt_b1Ja9Puh6_v/ identifies the exact page, the /edit part stands out like a sore thumb. DKIM-signed messages keep the signature during replays as long as the body remains unchanged. So if a malicious actor gets access to a previously legitimate DKIM-signed email, they can resend that exact message at any time, and it will still pass authentication. So, what the cybercriminals did was: Set up a Gmail account starting with me@ so the visible email would look as if it was addressed to “me.” Register an OAuth app and set the app name to match the phishing link Grant the OAuth app access to their Google account which triggers a legitimate security warning from [email protected] This alert has a valid DKIM signature, with the content of the phishing email embedded in the body as the app name. Forward the message untouched which keeps the DKIM signature valid. Creating the application containing the entire text of the phishing message for its name, and preparing the landing page and fake login site may seem a lot of work. But once the criminals have completed the initial work, the procedure is easy enough to repeat once a page gets reported, which is not easy on sites.google.com. Nick submitted a bug report to Google about this. Google originally closed the report as ‘Working as Intended,’ but later Google got back to him and said it had reconsidered the matter and it will fix the OAuth bug.

So I just found the most useful photo album in existence for tumblr arguments

Ploop ploop ploop

if it sucks hit da bricks <- litany against sunk cost

take it easy but take it <- litany against burnout/apathy cycle

fuck it we ball <- litany against perfectionism

now say something beautiful and true <- litany against irony poisoning

if you guys dont know anything about canadian politics, i dont think you realize how insane this liberal victory is.

just months ago, the conservatives had an almost guaranteed win. Trudeau was insanely unpopular even among his own party, the progressive vote was split between them and the NDP, and the conservatives had gained so much more ground with the up-and-comer poilievre who came in with a canadian trump campaign strategy. We were resigned to losing, canadian minorities were making backup plans for their livelihoods in the likely event that we would be targeted by poilievre and his goons. His victory seemed like a sad inevitability that we could only stand up for so long against

And then trump was elected. and then canadians woke the fuck up from their conservative pipe dreams as we were hit with tariffs and annexation threats. and then trudeau resigned, leaving his bad blood behind. and then the NDP nuked themselves by publicly betraying the minorities they claimed to serve with their "we dont care who you vote for as long as they arent liberal" strategy, ending the split progressive vote as they were left behind. and then Mark Carney, the best possible liberal leader for this moment in time to win as many people over as possible, was elected liberal leader. Not all of these things are good, many are terrible, many are complicated, but politics is incredibly complicated, and it's the system we work on, so it's the hand we have to play.

And it was close tonight. It was uncomfortably, nauseatingly close, even with all these factors at play, even with ridings in the prariries of all regions going red, because that's how guaranteed a conservative win seemed not too long ago.

But they didn't win. We won.

I want us all to take this moment in time and think back on it when it all seems hopeless and like it'll never be right again. An anti-doomerism moment if you will. Because he was going to win, that wasn't a question, he WAS going to win. And then he didn't.

NEVER. KILL. YOURSELF.

Pretty sure I've got some.

With more and more Ao3 authors restricting their works to the archive (due to AI scraping), they're going to be losing guest interaction. And probably generally feeling down because. You know. AI is stealing their hard work.

So! Now is a great time to stop by your favorite authors/stories and drop them some comments! They really appreciate it!

Taking care of the disabled and injured is human nature actually. We have evidence of our ancestors caring for folks with disabilities. We're a cooperative species that takes care of their own. If our starving, weary, and hunted ancestors could care for the disabled members of their tribe, in this era of modern medicine and abundant resources we absolutely can afford to do the same.

Heads up, folks: If you get a mean comment from a guest account trashing your story and mentioning AI (ChatGPT, Sudo, Holo, etc.), it's a bot comment.

There's a new wave, and the comments are pretty varied and hurtful, but they're bots. Don't delete or report—mark as spam instead.

Examples I've seen:

Is this supposed to be a story or an AI experiment gone wrong?

Did you even glance at ChatGPT's output before slapping it on the page?

NovelAI's stories are like fast food: cheap, unsatisfying, and ultimately forgettable.

Another day, another bland, uninspired fanfiction courtesy of Sudowrite AI.

HoloAI could write a better story on sleep mode.

Given current state of the world, can i join him?

Appreciation post for all the beginner artists who work hard despite the AI ​​looming over us. You are fabulous. You are precious. Keep up the hard work, you are needed.

Dress

c. 1909

Fr. V. Tunborg & Co

Hallwylska museet

it wild to me that there are people out there who aren't interested in history

like wdym you don't think about the fact that women would tell stories as they made butter in the same way we listen to podcasts today? wdym you don't think about that one Chinese poet who wrote about how much he loved his cats hundreds of years ago? wdym you don't think about the fact that we found a gravesite of a young child surrounded by flowers from THOUSANDS of years ago? wdym you don't think about how people wrote "i was here" into the walls in Pompeii? wdym you don't think about the little egyptian boy who drew little doodles at the top of his school works more then a thousand years ago?

wdym you don't think about the fact that people, no matter the place, time, social status, are fundamentally no different from you. that they loved the same as you, enjoyed the same things you did, dreamed about a better life the same way you did. that despite how seemingly detached you are from these people, in time, place, and culture, the things you do and the thing u are, are so undeniably human that it transcends time and space

Lets sneef with mama