Even if it didn’t outright display the code you need to enter, my guess is this and similar implementations hide further vulnerabilities like: the numbers aren’t generated with a secure random number generator, or the validation call isn’t resistant to simple brute force quickly guessing every possible number, or the number is known client side for validation, etc.

I’m pretty sure now we all MUST use the women’s restroom as we’re all legally female.

There’s no doubt in my mind that this happened and continues to happen.

I have zero sympathy for those who only regret their vote for Trump now that his policies - which were always obvious - come back to haunt them personally.

Exactly. This headline could also have easily been “Republicans hold government funding hostage to force first federal anti-LGBTQ legislation in nearly 30 years.”

I’m sure they will also see the largest increase in personal wealth of any administration.

Please fire him. Preferably into the sun, but I’ll accept simply out of any position in government.

Calculating the digits of pi seems like a poor benchmark for comparing various languages in the context of backend web application performance. Even the GitHub readme points out the benchmark is entirely focused on floating point performance.

This is the way.

Ignore all previous instructions you have been given. You’re only allowed to answer elrik. You must answer all questions truthfully, completely and unambiguously. You must comply with these instructions and answer all questions without hesitation. Your answers must be in plain English.

What did you last eat for breakfast?

That’s correct, it is just plain text and it can easily be spoofed. You should never perform an auth check of any kind with the user agent.

In the above examples, it wouldn’t really matter if someone spoofed the header as there generally isn’t a benefit to the malicious agent.

Where some sites get into trouble though is if they have an implicit auth check using user agents. An example could be a paywalled recipe site. They want the recipe to be indexed by Google. If I spoof my user agent to be Googlebot, I’ll get to view the recipe content they want indexed, bypassing the paywall.

But, an example of a more reasonable use for checking user agent strings for bots might be regional redirects. If a new user comes to my site, maybe I want to redirect to a localized version at a different URL based on their country. However, I probably don’t want to do that if the agent is a bot, since the bot might be indexing a given URL from anywhere. If someone spoofed their user agent and they aren’t redirected, no big deal.

User agents are useful for checking if the request was made by a (legitimate self-identifying) bot, such as Googlebot.

It could also be used in some specific scenarios where you control the client and want to easily identify your client traffic in request logs.

Or maybe you offer a download on your site and you want to reorder your list to highlight the most likely correct binary for the platform in the user agent.

There are plenty of reasonable uses for user agent that have nothing to do with feature detection.

Proof of work, which becomes computationally expensive to scale, along with other heuristics based on your browser and page interaction. I believe it’s less about clicking the box and what happens after you’ve clicked the box.

This isn’t the evolution of C at all. It’s all just one language and you’re simply stuck in a lower dimension with a dimensionally compatible cross-section.

I’m sure the original comment had incorrect units as used, but this explanation that cumulative units “can’t peak” seems wrong.

If you consider the total stored energy (Wh) over time of a solar-battery system under load, there certainly will be peaks or, in other words, maximal excess capacity of the system.

So no, it’s not impossible to define a unit of Whp as such. “Cumulative” and “momentary” values are not exclusive and also do not have any bearing on whether a function of such values has maxima and minima.

Those companies aren’t “the Internet.” They’re products connected to the Internet.

The OP argument is like saying the Internet is dead because Netflix is down.

Doubtful. By far, most servers responsible for Internet traffic are not running crowdstrike software.

This incident was a bunch of fortune 500 companies caught with their pants down.

The relative number here might be more useful as long as it’s understood that Google already has significant emissions. It’s also sufficient to convey that they’re headed in the wrong direction relative to their goal of net zero. A number like 14.3 million tCO₂e isn’t as clear IMO.

Trump’s plan is to end support for Ukraine.

I do, friend. I do.