this post was submitted on 03 Nov 2024
666 points (97.3% liked)

linuxmemes

21263 readers
1014 users here now

Hint: :q!


Sister communities:


Community rules (click to expand)

1. Follow the site-wide rules

2. Be civil
  • Understand the difference between a joke and an insult.
  • Do not harrass or attack members of the community for any reason.
  • Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
  • Bigotry will not be tolerated.
  • These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
  • 3. Post Linux-related content
  • Including Unix and BSD.
  • Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of sudo in Windows.
  • No porn. Even if you watch it on a Linux machine.
  • 4. No recent reposts
  • Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.

  • Please report posts and comments that break these rules!

    founded 1 year ago
    MODERATORS
     
    top 50 comments
    sorted by: hot top controversial new old
    [–] [email protected] 161 points 1 week ago (1 children)

    "Cash or credit?" "Arch, btw."

    [–] [email protected] 3 points 1 week ago

    Sir, this is a wendy's.

    [–] [email protected] 103 points 1 week ago (1 children)

    neofetch is deprecated. There are several alternatives like fastfetch.

    [–] [email protected] 26 points 1 week ago (1 children)

    For those who got used to type neofetch they probably just put an alias in for fastfetch

    [–] [email protected] 33 points 1 week ago (1 children)

    Wait, people type neofetch, as opposed to setting it to run with each time the shell is loaded?

    [–] [email protected] 13 points 1 week ago (1 children)

    That shit is so annoying especially when I am just using a small window size.

    [–] [email protected] 2 points 1 week ago

    Yeah, and besides I need to see the latest ad for esm support.

    [–] [email protected] 84 points 1 week ago (3 children)

    I wonder what distro they use

    [–] [email protected] 80 points 1 week ago

    Color suggests mint

    [–] [email protected] 48 points 1 week ago

    Papara Linux

    [–] [email protected] 34 points 1 week ago

    neofetch maybe?

    [–] [email protected] 73 points 1 week ago (1 children)
    [–] [email protected] 79 points 1 week ago* (last edited 1 week ago) (5 children)

    As entertaining as that is, it does raise the question - why do they put all of the details on the back now?

    I thought one of the main reasons that the CVV was on the signature strip was so if a card was photocopied, photographed, or carbon copied (literally on carbon paper), then it was still less possible to clone the card.

    Is "physical" cloning so small of a problem now that it's more beneficial to make fancy looking cards? Anyone in the industry able to shine a light?

    [–] [email protected] 52 points 1 week ago (3 children)

    This is an EMVCo chip card, and not an American one so it’s chip and pin most likely. Without getting too detailed, the chip generates a one time use code for each transaction, so just having the number wouldn’t help with cloning the card plus you also would need to know the PIN. Although skimmers still exist and physical card theft is a thing, it’s less common especially in markets that use chip and pin.

    [–] [email protected] 16 points 1 week ago (4 children)

    Absolutely spot on, thank you - always handy to know.

    I'm wondering what it does to mitigate the "card not present" fraud though, for online purchases or remote purchases?

    [–] [email protected] 10 points 1 week ago* (last edited 1 week ago)

    In my case, I have to verify online purchases on my bank's app. Which makes online banking impossible without an android or apple phone.

    [–] [email protected] 4 points 1 week ago (1 children)

    As far as I understand it the pin&chip system involves a challenge/response between the bank and the card. You can't just "clone" the chip, because the secret data it contains is essentially write-only.

    [–] [email protected] 6 points 1 week ago (3 children)

    Sorry, maybe I wasn't clear.

    I'm assuming the 16 digit card number, start and expiry dates, and CVV are printed on the reverse - whereas it used to only have the CVV on the reverse and the rest of the details on the front.

    What's stopping someone with a picture of the rear of the card visiting an online retailer and going wild with a picture of just one side of the card these days - aside from multi-factor authentication at the point of authorising the payment?

    [–] [email protected] 5 points 1 week ago

    The CVV should really be 2FA from your card issuer.

    [–] [email protected] 5 points 1 week ago

    Oh! In that case: absolutely nothing. Credit cards are terrifyingly insecure. Whether or not the info is on two sides or one. Any webshop you use your credit card at can just arbitrarily charge it from then on if they feel like it.

    load more comments (1 replies)
    [–] [email protected] 1 points 1 week ago

    There’s additional tools for e-commerce transactions like 3DSecure (step up authentication like an OTP) and passive identity verification tools.

    load more comments (1 replies)
    [–] [email protected] 7 points 1 week ago* (last edited 1 week ago) (1 children)

    Furthermore even if a card is skimmed these days, at least in the UK, it’s still unlikely transactions would be processed online.

    That’s because it’s become so commonplace now for transactions to pop-up in the banks app on the owners phone and they must confirm the transaction and / or receive a code via SMS. Some just use SMS as a means to confirm a transaction.

    I guess one vector for attack still remains and that is SIM swapping, but even that is more difficult these days due to widespread awareness from carriers.

    [–] [email protected] 2 points 1 week ago

    I mean, if they knew where you usually shop online, probably not. I generally get the popup when either:

    1: Shopping somewhere for the first time
    2: Certain businesses (presumably those that are more often targeted for fraud I guess?)

    I bet if they tried to use a different delivery address (and the shop passed that on) it should (I think at least) trigger a security check.

    In shops especially with contactless it's very unlikely to be stopped though. But I think the bank needs to eat the contactless losses if I remember right. I do recall there's a maximum number of contactless payments you can make in a given time before it forces chip and pin though.

    [–] [email protected] 1 points 1 week ago (2 children)

    I'm in the US, and all of my cards have the numbers on the back now, and they're not raised. I'm pretty sure we transitioned to chip and pin like a decade ago.

    [–] [email protected] 3 points 1 week ago (1 children)

    The US uses chip and signature, no joke, because the banks didn’t think people could remember another PIN.

    [–] [email protected] 2 points 1 week ago (1 children)

    Even though the you already have to use the PIN at an ATM.

    No idea why there’s such a big functional difference between “credit” and “debit” cards.

    [–] [email protected] 2 points 1 week ago (1 children)

    I don't think there is in terms of process, I think payment handlers just add a higher charge for processing credit card payments, which is why stingy retailers dislike them.

    I'm happy to be corrected though.

    load more comments (1 replies)
    [–] [email protected] 2 points 1 week ago* (last edited 1 week ago) (1 children)

    The transition to contactless (where you tap your card or phone instead of inserting the card) took so long in the USA though. It only really became popular during COVID and with Apple Pay. Home Depot finally enabled contactless payments recently. In Australia, we were using contactless payment 15 years ago!

    US banking is behind in a few other ways too. Apps like Venmo and Zelle just don't exist in some other countries since you can easily do an instant transfer through your bank to anyone else for free. Some US banks still use SMS for two factor auth, which is insecure.

    [–] [email protected] 1 points 1 week ago

    So home Depot actually had contactless payment for a while like a decade ago but when they switched to new card terminals they got rid of it. No clue why it disappeared but probably a money thing.

    [–] [email protected] 24 points 1 week ago

    It’s literally because vain idiots kept posting pictures of their credit card online and getting defrauded.

    load more comments (3 replies)
    [–] [email protected] 54 points 1 week ago (1 children)

    Does this get you a discount on Arch Premium?

    [–] [email protected] 7 points 1 week ago

    It’s how I got my office an amazing deal on Arch Enterprise

    [–] [email protected] 44 points 1 week ago* (last edited 1 week ago) (1 children)

    Never leave the home directory without it!

    [–] velvetThunder 3 points 1 week ago (1 children)
    [–] [email protected] 2 points 1 week ago

    Ah, thanks.

    [–] [email protected] 43 points 1 week ago (1 children)
    [–] [email protected] 24 points 1 week ago
    [–] [email protected] 20 points 1 week ago

    "Hey, wanna check out my credit card?"

    [–] [email protected] 18 points 1 week ago (4 children)

    This is what happens when you think manually partitioning disks and chrooting makes you leet.

    [–] [email protected] 5 points 1 week ago

    No fun allowed!

    [–] [email protected] 5 points 1 week ago

    Funny thing is, I did neither of those things the last time I had need to install; the script handled it for me.

    [–] [email protected] 4 points 1 week ago

    Not so glum, chum

    [–] [email protected] 3 points 1 week ago (1 children)

    When I made a new linux install I chose Arch. I think for me the reasoning is thus. While I have a LOT of experience with unborking server linux installs, with desktop it's just a pain to deal with. I previously used Manjaro which, while very easy to install, does obfuscate a lot of what happens behind the scenes. When it goes wrong, personally I found it harder to fix.

    With Arch, beyond enough to give me a terminal and basic gnu tools, I've chosen what I install from then on. I think that means when things go wrong there's a much higher chance I'll know what it is and how to solve it.

    Time will tell if this plan works out or not though :P

    load more comments (1 replies)
    [–] [email protected] 14 points 1 week ago

    ASCII art is the best art

    [–] [email protected] 9 points 1 week ago

    Wondering if on the receipt it’ll say you’re running Java.

    [–] [email protected] 9 points 1 week ago* (last edited 1 week ago) (1 children)
    [–] [email protected] 1 points 1 week ago

    Σκεφτόμουν ακριβώς το ίδιο.

    [–] [email protected] 5 points 1 week ago

    This is really lame lol.

    load more comments
    view more: next ›