Every time I see this pop up it reminds me of this part of an epsiode of This American Life [0]. At parts its quite difficult to listen to, however it seems like an important thing to be aware of. If they're willing to do this to children, what are they fine with doing to adults? It's beyond words how someone can imagine that this is moral behavior in the pursuit of justice. I don't see how anyone can harass a child like that - already distraught by the death of his sister - and to treat some kid like a murderer for hours on end.
From what I've read the Fedora project has an interest in providing solely open source and non patent encumbered software like codecs. Which sounds like something OBS may infringe on
Sounds like if the want to provide their own forked and less functional versions of software, they should rebrand the software like distros used to do with Firefox. Rather than cripple it and leave people blaming OBS.
Well, for one, Flatpak is a stupid design where the downloaded software gets to tell the system what if any sandboxing is applied. The way to have it be a security boundary is by enforcing the packaging :-(
You as a user can decide to install (or not) flatpaks based on their sandboxing settings, or even edit them with a tool like Flatseal. Which is a huge advancement compared to just allowing any binary to do any change in your system (with enough permissions of course).
Also, distributions can also provide their flatpak repos (or even another third party) and vet the packages with their own set of rules (such as "no packages with full filesystem access").
They load in the background. Look at the second video attempting to attack Slack. Look closely at the first tab in the top left corner, you can see that it is loading and eventually settles on Slack before the victim clicks the button. The attacker website has a delay on the click button to allow it to finish.
The exploit requires pages to load instantly. The first person was saying it usually takes a few hundred ms to load a page (at least). The second person points out that you can load the page in the background so it is in the local browser cache already, in which case loading is near instant.
I understood the first comment as tongue in cheek, because the web has become very slow. It's a legitimate argument, too, but I read it as at least a bit tongue in cheek.
How so? The page with the double-click prompt immediately changes the parent page behind it to the target location, and it can easily show a loading indicator for a couple seconds to wait for the target page to render before prompting the user to double-click.
Wikipedia states that OSU's endowment is $829.9 million (2023).[0]
[0] https://en.wikipedia.org/wiki/Oregon_State_University