- cross-posted to:
- linux@lemmy.world
- privacy@programming.dev
- cross-posted to:
- linux@lemmy.world
- privacy@programming.dev
You must log in or register to comment.
The package maintainer appears to be out of his mind, but now that there’s a CVE I hope it will get some attention from someone who can fix it.
Once triggered, StarDict sends the selected text in plaintext over HTTP to third-party servers in China, namely dict.youdao.com and dict.cn. And to make matters worse, these requests are made over unencrypted HTTP, making the data visible to anyone monitoring the network—whether on a local LAN or through a compromised router.
…
Finally, to wrap things up, it’s worth pointing out that this StarDict behavior can only happen in an X session. If you’re running Debian 13 with Wayland, then you’re safe, thanks to the protocol’s sandboxed design. And at this point, I guess folks who think Wayland is some kind of big tech conspiracy being forced on users without good reason might want to rethink that stance.
And at this point, I guess folks who think Wayland is some kind of big tech conspiracy being forced on users without good reason might want to rethink that stance.
Unfortunately, Wayland still lacks some functionality that Xorg has, so switching would be a step backward for some people. Snarkily dismissing them as conspiracy theorists is wrong in several ways.
Unfortunately, Wayland still lacks some things that Xorg offers, so switching would be a step backward for some people. Snarkily dismissing them as conspiracy theorists is wrong in several ways.
I think the intersection between those who have valid reasons to use X11, e.g. missing features of Wayland, and those wo think Wayland is a ‘big tech conspiracy’ is small.
Does the latter group exist?
Iirc, this was recently claimed in the initial release statement of the Xlibre fork of Xorg that wants to ‘make X great again’
Do we need the internet for word definitions. How big is a dictionary. Could you not just download the dictionary?
