<![CDATA[DoTheNeedful Forums - All Forums]]> https://dotheneedful.online/forums/ Sun, 05 Apr 2026 09:00:10 +0000 MyBB <![CDATA[Native XFCE on android]]> https://dotheneedful.online/forums/showthread.php?tid=49 Mon, 26 May 2025 19:35:56 +0000 monr0e]]> https://dotheneedful.online/forums/showthread.php?tid=49
I haven't quite gotten it to work yet. I'm playing around with hardware acceleration, but Vulkan on Adreno is a bit hit&miss. I'll post an update if I get it working.]]>
I haven't quite gotten it to work yet. I'm playing around with hardware acceleration, but Vulkan on Adreno is a bit hit&miss. I'll post an update if I get it working.]]> <![CDATA[Tremors!]]> https://dotheneedful.online/forums/showthread.php?tid=48 Thu, 01 May 2025 15:33:10 +0000 sintax]]> https://dotheneedful.online/forums/showthread.php?tid=48
.png   Screenshot 2025-05-01 at 11.31.46 AM.png (Size: 165.2 KB / Downloads: 1) ]]>
.png   Screenshot 2025-05-01 at 11.31.46 AM.png (Size: 165.2 KB / Downloads: 1) ]]> <![CDATA[Gibby's Cybersecurity Roundup 4/4/2025]]> https://dotheneedful.online/forums/showthread.php?tid=42 Fri, 04 Apr 2025 18:26:55 +0000 gibby]]> https://dotheneedful.online/forums/showthread.php?tid=42
[Image: O0zT3Ar.png]

Hi everyone and welcome to the third edition of Gibby’s cybersecurity roundup. Each week, I’ll try to compile items I’ve found unique or interesting as I came across them in the cybersecurity world. I’ll try to keep things succinct and to the point, but if there is something I find particularly interesting I may deep dive into a topic a bit more.

I'm using some industry terminology here that might not be clear to everyone. If you have questions let me know but in the meantime here's my attempt to make it digestible for everyone:
  • TLP: Traffic Light Protocol - a method to classify information from no restrictions (CLEAR) to only shareable between certain people (RED). You can find more information about TLP, and its classification levels, here
  • Blue Team - The Security Team focused on Defense and Detection
  • Red team - The Security Team focused on Attacks and Evasion 

If you want to see something added here let me know!


[Image: plvm6YX.png]

Well, look at that! The usual suspects in the software world apparently took a collective "no new critical flaws this week" vacation. So, instead of our regularly scheduled panic, let's dive into the KEV list – the Hall of Shame for bugs already being used to cause trouble. And wouldn't you know it, this week's inductees are all bringing the high-stakes drama!

High Risk: Google Chrome Zero-day Vulnerability Exploited in the Wild (CVE-2025-2783)
https://threatprotect.qualys.com/2025/03...2025-2783/

High Risk: Cisco Smart Licensing Utility Vulnerabilities
https://sec.cloudapps.cisco.com/security...u-7gHMzWmw

High Risk: Apache Tomcat CVE-2025-24813
https://www.rapid7.com/blog/post/2025/03...d-to-know/

 
 
[Image: TVVm7lW.png]

Google's Kyle Chrzanowski says big companies need robot overlords for their digital who's-who, automating everything from birth (account creation) to death (access revocation) of employee identities. Apparently, tackling the messy middle of governance before a massive single sign-on migration is the smart way to avoid a chaotic digital identity crisis.
https://www.googlecloudcommunity.com/gc/...a-p/882952

Sophos detailed this week that evilnginx is still remarkably effective in grabbing credentials and MFA codes
https://news.sophos.com/en-us/2025/03/28...-evilginx/

Checkpoint reassures its customers that the bad guys are "totally lying" about what they were able to get into and steal and to trust them instead: 
https://support.checkpoint.com/results/sk/sk183307

China hackers are *still* exploiting buffer overflow flaw in Ivanti's Connect Secure, Policy Secure, and ZTA gateway products. CVE-2025-22457, released in February was originally marked as "low severity" and now that bad guys are kicking in the door reliably, they reconsidered and have classified the flaw as "critical." Idiots.
https://forums.ivanti.com/s/article/Apri...2025-22457

Don't use DMARC? Don't expect Outlook, Live, and Hotmail accounts to get your messages then. After May 5, DMARC is mandatory to get messages to inboxes. 
https://techcommunity.microsoft.com/blog...rs/4399730

After *WEEKS* of denying it, Oracle finally acknowledged a breach occurred, surprising absolutely no one
https://www.bloomberg.com/news/articles/...ata-stolen

 
 
[Image: EEG6FZS.png]

Stratus Red Team is a tool by Datadog that can “detonate” offensive attack techniques against a live cloud environment so you can validate that your detections work as expected. I’m highlighting here that the docs now provide coverage matrices of MITRE ATT&CK tactics and techniques currently covered for different cloud platforms: AWS, Azure, GCP, Kubernetes, Entra ID, and EKS.
https://stratus-red-team.cloud/attack-te...e-matrices

Wiz has launched a new site for security teams to track critical cloud vulnerabilities, offering handy filters like technology and exploit status. Now you can finally stop manually sifting through endless CVEs and let Wiz be your cloud's most wanted poster.
https://www.wiz.io/vulnerability-database


[Image: JkUpDIt.png]

By Thalium comes a Rust-powered digital bloodhound for Linux, sniffing out sneaky kernel-level rootkits with its fancy integrity checks. It's like giving your kernel a superhero sidekick, but instead of a cape, it wields the Linux Rust API.
https://github.com/thalium/rkchk

This tool sniffs out Google Workspace Domain-Wide Delegation slip-ups in Google Cloud, essentially showing you where you left the keys to the digital kingdom under the doormat. Consider it your auditor for those "oops, did I leave that open?" moments in your GCP setup.
https://github.com/n0tspam/delepwn

ServiceNow, the cloud platform that promised IT zen, turns out to have some hidden ninja stars, according to MDSec's Tim Carrington. Apparently, you can weaponize its own features like custom actions and discovery scripts to run rogue code and generally cause digital mayhem.
https://www.mdsec.co.uk/2025/03/red-team...servicenow
 
[Image: p227pSB.png]

Here is a spot where I’ll just generally soapbox when I want to.
 
I sure hope you have a wonderful rest of your week.



That's it for this week. Thanks for reading, y'all. See you next week.

]]>
[Image: O0zT3Ar.png]

Hi everyone and welcome to the third edition of Gibby’s cybersecurity roundup. Each week, I’ll try to compile items I’ve found unique or interesting as I came across them in the cybersecurity world. I’ll try to keep things succinct and to the point, but if there is something I find particularly interesting I may deep dive into a topic a bit more.

I'm using some industry terminology here that might not be clear to everyone. If you have questions let me know but in the meantime here's my attempt to make it digestible for everyone:
  • TLP: Traffic Light Protocol - a method to classify information from no restrictions (CLEAR) to only shareable between certain people (RED). You can find more information about TLP, and its classification levels, here
  • Blue Team - The Security Team focused on Defense and Detection
  • Red team - The Security Team focused on Attacks and Evasion 

If you want to see something added here let me know!


[Image: plvm6YX.png]

Well, look at that! The usual suspects in the software world apparently took a collective "no new critical flaws this week" vacation. So, instead of our regularly scheduled panic, let's dive into the KEV list – the Hall of Shame for bugs already being used to cause trouble. And wouldn't you know it, this week's inductees are all bringing the high-stakes drama!

High Risk: Google Chrome Zero-day Vulnerability Exploited in the Wild (CVE-2025-2783)
https://threatprotect.qualys.com/2025/03...2025-2783/

High Risk: Cisco Smart Licensing Utility Vulnerabilities
https://sec.cloudapps.cisco.com/security...u-7gHMzWmw

High Risk: Apache Tomcat CVE-2025-24813
https://www.rapid7.com/blog/post/2025/03...d-to-know/

 
 
[Image: TVVm7lW.png]

Google's Kyle Chrzanowski says big companies need robot overlords for their digital who's-who, automating everything from birth (account creation) to death (access revocation) of employee identities. Apparently, tackling the messy middle of governance before a massive single sign-on migration is the smart way to avoid a chaotic digital identity crisis.
https://www.googlecloudcommunity.com/gc/...a-p/882952

Sophos detailed this week that evilnginx is still remarkably effective in grabbing credentials and MFA codes
https://news.sophos.com/en-us/2025/03/28...-evilginx/

Checkpoint reassures its customers that the bad guys are "totally lying" about what they were able to get into and steal and to trust them instead: 
https://support.checkpoint.com/results/sk/sk183307

China hackers are *still* exploiting buffer overflow flaw in Ivanti's Connect Secure, Policy Secure, and ZTA gateway products. CVE-2025-22457, released in February was originally marked as "low severity" and now that bad guys are kicking in the door reliably, they reconsidered and have classified the flaw as "critical." Idiots.
https://forums.ivanti.com/s/article/Apri...2025-22457

Don't use DMARC? Don't expect Outlook, Live, and Hotmail accounts to get your messages then. After May 5, DMARC is mandatory to get messages to inboxes. 
https://techcommunity.microsoft.com/blog...rs/4399730

After *WEEKS* of denying it, Oracle finally acknowledged a breach occurred, surprising absolutely no one
https://www.bloomberg.com/news/articles/...ata-stolen

 
 
[Image: EEG6FZS.png]

Stratus Red Team is a tool by Datadog that can “detonate” offensive attack techniques against a live cloud environment so you can validate that your detections work as expected. I’m highlighting here that the docs now provide coverage matrices of MITRE ATT&CK tactics and techniques currently covered for different cloud platforms: AWS, Azure, GCP, Kubernetes, Entra ID, and EKS.
https://stratus-red-team.cloud/attack-te...e-matrices

Wiz has launched a new site for security teams to track critical cloud vulnerabilities, offering handy filters like technology and exploit status. Now you can finally stop manually sifting through endless CVEs and let Wiz be your cloud's most wanted poster.
https://www.wiz.io/vulnerability-database


[Image: JkUpDIt.png]

By Thalium comes a Rust-powered digital bloodhound for Linux, sniffing out sneaky kernel-level rootkits with its fancy integrity checks. It's like giving your kernel a superhero sidekick, but instead of a cape, it wields the Linux Rust API.
https://github.com/thalium/rkchk

This tool sniffs out Google Workspace Domain-Wide Delegation slip-ups in Google Cloud, essentially showing you where you left the keys to the digital kingdom under the doormat. Consider it your auditor for those "oops, did I leave that open?" moments in your GCP setup.
https://github.com/n0tspam/delepwn

ServiceNow, the cloud platform that promised IT zen, turns out to have some hidden ninja stars, according to MDSec's Tim Carrington. Apparently, you can weaponize its own features like custom actions and discovery scripts to run rogue code and generally cause digital mayhem.
https://www.mdsec.co.uk/2025/03/red-team...servicenow
 
[Image: p227pSB.png]

Here is a spot where I’ll just generally soapbox when I want to.
 
I sure hope you have a wonderful rest of your week.



That's it for this week. Thanks for reading, y'all. See you next week.

]]> <![CDATA[Quick lunchtime smashburger!]]> https://dotheneedful.online/forums/showthread.php?tid=41 Wed, 26 Mar 2025 17:00:03 +0000 mistiry]]> https://dotheneedful.online/forums/showthread.php?tid=41
.jpg   1.jpg (Size: 336.3 KB / Downloads: 5)

First smash the meat kinda stuck to the parchment paper I used:

.jpg   2.jpg (Size: 592.53 KB / Downloads: 4)

Second smash got it right:

.jpg   3.jpg (Size: 425.5 KB / Downloads: 4)

The flip:

.jpg   4.jpg (Size: 783.43 KB / Downloads: 7)

Cheese added. Didn't know we were out of American, had to use Provolone:

.jpg   5.jpg (Size: 134.11 KB / Downloads: 7)

Look at my buns:

.jpg   6.jpg (Size: 191.88 KB / Downloads: 4)

Burger sauce and lettuce on the left top bun, double-patty and pickles on the left:

.jpg   7.jpg (Size: 193.83 KB / Downloads: 4)

Pro Tip: Wrap your burgers up like they do in fast food. This also applies to most other sandwiches made at home. Trust. 

.jpg   8.jpg (Size: 157.86 KB / Downloads: 7)

Yummy:

.jpg   9.jpg (Size: 280.61 KB / Downloads: 8)
.jpg   10.jpg (Size: 329.84 KB / Downloads: 8) ]]>
.jpg   1.jpg (Size: 336.3 KB / Downloads: 5)

First smash the meat kinda stuck to the parchment paper I used:

.jpg   2.jpg (Size: 592.53 KB / Downloads: 4)

Second smash got it right:

.jpg   3.jpg (Size: 425.5 KB / Downloads: 4)

The flip:

.jpg   4.jpg (Size: 783.43 KB / Downloads: 7)

Cheese added. Didn't know we were out of American, had to use Provolone:

.jpg   5.jpg (Size: 134.11 KB / Downloads: 7)

Look at my buns:

.jpg   6.jpg (Size: 191.88 KB / Downloads: 4)

Burger sauce and lettuce on the left top bun, double-patty and pickles on the left:

.jpg   7.jpg (Size: 193.83 KB / Downloads: 4)

Pro Tip: Wrap your burgers up like they do in fast food. This also applies to most other sandwiches made at home. Trust. 

.jpg   8.jpg (Size: 157.86 KB / Downloads: 7)

Yummy:

.jpg   9.jpg (Size: 280.61 KB / Downloads: 8)
.jpg   10.jpg (Size: 329.84 KB / Downloads: 8) ]]> <![CDATA[For those who have some kids (we salute you! FIRE!)]]> https://dotheneedful.online/forums/showthread.php?tid=40 Fri, 21 Mar 2025 17:22:16 +0000 JollyRgrs]]> https://dotheneedful.online/forums/showthread.php?tid=40
https://www.upworthy.com/90s-cartoons

Kids programming today, far and wide, is much more "dopamine" delivering hard hitting attention grabbing. great if you want to plop your kid down and use the screen as a babysitter, I guess (that's what they are doing now anyways, right?). But if you actually care about the development of the kids, it isn't the best thing for them. This is a pretty good article to read. Even if you don't plan on feeding your kid 90s kids shows all day, the real kicker here is understanding what the shows are doing to the kids and how it affects them.]]>
https://www.upworthy.com/90s-cartoons

Kids programming today, far and wide, is much more "dopamine" delivering hard hitting attention grabbing. great if you want to plop your kid down and use the screen as a babysitter, I guess (that's what they are doing now anyways, right?). But if you actually care about the development of the kids, it isn't the best thing for them. This is a pretty good article to read. Even if you don't plan on feeding your kid 90s kids shows all day, the real kicker here is understanding what the shows are doing to the kids and how it affects them.]]> <![CDATA[Gibby's Cybersecurity Roundup 3/21/25]]> https://dotheneedful.online/forums/showthread.php?tid=33 Thu, 20 Mar 2025 19:51:54 +0000 gibby]]> https://dotheneedful.online/forums/showthread.php?tid=33
[Image: O0zT3Ar.png]

Hi everyone and welcome to the second edition of Gibby’s cybersecurity roundup. Each week, I’ll try to compile items I’ve found unique or interesting as I came across them in the cybersecurity world. I’ll try to keep things succinct and to the point, but if there is something I find particularly interesting I may deep dive into a topic a bit more.

I'm using some industry terminology here that might not be clear to everyone. If you have questions let me know but in the meantime here's my attempt to make it digestible for everyone:
  • TLP: Traffic Light Protocol - a method to classify information from no restrictions (CLEAR) to only shareable between certain people (RED). You can find more information about TLP, and its classification levels, here
  • Blue Team - The Security Team focused on Defense and Detection
  • Red team - The Security Team focused on Attacks and Evasion 

If you want to see something added here let me know!


[Image: plvm6YX.png]

First, lets get started with this weeks new vulnerabilities. While this list is not exhaustive-- there were a touch more than 600 new CVEs assigned this week-- it does cover some of the more popular and higher-risk ones. 

High Risk: Apache Tomcat vulnerability exploited 30 hours after security bulletin released, confluence admins collectively groan in unison.  
Can't make this up-- just 30 hours after the release of the vuln, hackers had a extremely effective and really good exploit for the tomcat service. So, you might want to patch this if you haven't already!

High Risk: A Vulnerability in Veeam allows attackers to execute code remotely; because why not?
Veeam has had some doosies lately, but this one is pretty up there. Domain joined backup servers can pew pew code out making it easy for attackers to disto malware. There is a patch, but the race is on before this is added to the known exploited database, so get on it. https://www.veeam.com/kb4724

High Risk: tj-actions changed-files before 46 allows remote attackers to discover secrets by reading actions logs
tj-actions, a well known and used repo for automating CI/CD silliness had its source changed and hackers were able to get info they shouldn't have. https://www.cve.org/CVERecord?id=CVE-2025-30066

Medium Risk: Another Popular Wordpress Plugin used on 200,000+ sites has a major security flaw; no one is surprised. 
WP Ghost, a popular WordPress security plugin, has a critical remote code execution vulnerability, allowing server takeover by unauthenticated attackers. https://patchstack.com/articles/critical...00k-sites/

Medium Risk: Some Cisco Routers have a software flaw that allows attacker to DoS the BGP service. 
Looks like this flaw is contained within the BGP service on Cisco XR routers, but it is a pretty bad thing. Check out the security advisory here: https://sec.cloudapps.cisco.com/security...s-O7stePhX


 
 
[Image: TVVm7lW.png]

Here's a free web scanner that returns some really awesome information:
https://cyscan.io/

Into Threat Modeling? TRAIL, a threat modeling process by Trail of Bits, blends RRA and NIST approaches to analyze system architecture for design flaws. It models system components, maps threat actor paths, and documents scenarios, providing both immediate mitigations and strategic recommendations.
https://blog.trailofbits.com/2025/02/28/...f-bits-way

State Sponsored Hackers (and some red teams (shhhhh)) are leveraging a flaw that was discovered in 2017 and still not patched by Microsoft. 
https://www.zerodayinitiative.com/adviso...5-148/2017 

Sperm bank breach deposits data into hands of cybercriminals (I didn't want to edit this hilarious article title because its A+ on its own)
https://www.malwarebytes.com/blog/news/2...rcriminals

By Golly G Wizz... Google Buys Wiz (for a metric shittonne of money)
https://www.reuters.com/technology/cyber...025-03-18/

New kali version out! Now with less salt and more theme action! 
https://www.kali.org/blog/kali-linux-2025-1-release/

 
 
[Image: EEG6FZS.png]

Detection Studio is a browser tool that converts Sigma rules to SIEM languages (Splunk, Elasticsearch, Grafana) locally using pySigma. It features pipeline/filter support, persistent workspaces, and rule sharing.
https://detection.studio/

Purple Lab simplifies detection rule testing by deploying a lab for log simulation, malware/ATT&CK execution, and sandbox restoration.
https://github.com/Krook9d/PurpleLab


[Image: JkUpDIt.png]

shadow-rs is a rust-based Windows kernel rootkit showcases advanced kernel manipulation with Rust's safety and performance
https://github.com/joaoviictorti/shadow-rs

Adversary Simulation Success by the folks over at TrustedSec outlines measuring AdSim success via control testing, defensive enlightenment, and professional courtesy, providing metrics for each.
https://trustedsec.com/blog/measuring-th...imulations
 
[Image: p227pSB.png]

Here is a spot where I’ll just generally soapbox when I want to.
 
Keep an eye out on the clickfix campaigns I mentioned last week folks. That activity is really ramping up.



That's it for this week. Thanks for reading, y'all. See you next week.

]]>
[Image: O0zT3Ar.png]

Hi everyone and welcome to the second edition of Gibby’s cybersecurity roundup. Each week, I’ll try to compile items I’ve found unique or interesting as I came across them in the cybersecurity world. I’ll try to keep things succinct and to the point, but if there is something I find particularly interesting I may deep dive into a topic a bit more.

I'm using some industry terminology here that might not be clear to everyone. If you have questions let me know but in the meantime here's my attempt to make it digestible for everyone:
  • TLP: Traffic Light Protocol - a method to classify information from no restrictions (CLEAR) to only shareable between certain people (RED). You can find more information about TLP, and its classification levels, here
  • Blue Team - The Security Team focused on Defense and Detection
  • Red team - The Security Team focused on Attacks and Evasion 

If you want to see something added here let me know!


[Image: plvm6YX.png]

First, lets get started with this weeks new vulnerabilities. While this list is not exhaustive-- there were a touch more than 600 new CVEs assigned this week-- it does cover some of the more popular and higher-risk ones. 

High Risk: Apache Tomcat vulnerability exploited 30 hours after security bulletin released, confluence admins collectively groan in unison.  
Can't make this up-- just 30 hours after the release of the vuln, hackers had a extremely effective and really good exploit for the tomcat service. So, you might want to patch this if you haven't already!

High Risk: A Vulnerability in Veeam allows attackers to execute code remotely; because why not?
Veeam has had some doosies lately, but this one is pretty up there. Domain joined backup servers can pew pew code out making it easy for attackers to disto malware. There is a patch, but the race is on before this is added to the known exploited database, so get on it. https://www.veeam.com/kb4724

High Risk: tj-actions changed-files before 46 allows remote attackers to discover secrets by reading actions logs
tj-actions, a well known and used repo for automating CI/CD silliness had its source changed and hackers were able to get info they shouldn't have. https://www.cve.org/CVERecord?id=CVE-2025-30066

Medium Risk: Another Popular Wordpress Plugin used on 200,000+ sites has a major security flaw; no one is surprised. 
WP Ghost, a popular WordPress security plugin, has a critical remote code execution vulnerability, allowing server takeover by unauthenticated attackers. https://patchstack.com/articles/critical...00k-sites/

Medium Risk: Some Cisco Routers have a software flaw that allows attacker to DoS the BGP service. 
Looks like this flaw is contained within the BGP service on Cisco XR routers, but it is a pretty bad thing. Check out the security advisory here: https://sec.cloudapps.cisco.com/security...s-O7stePhX


 
 
[Image: TVVm7lW.png]

Here's a free web scanner that returns some really awesome information:
https://cyscan.io/

Into Threat Modeling? TRAIL, a threat modeling process by Trail of Bits, blends RRA and NIST approaches to analyze system architecture for design flaws. It models system components, maps threat actor paths, and documents scenarios, providing both immediate mitigations and strategic recommendations.
https://blog.trailofbits.com/2025/02/28/...f-bits-way

State Sponsored Hackers (and some red teams (shhhhh)) are leveraging a flaw that was discovered in 2017 and still not patched by Microsoft. 
https://www.zerodayinitiative.com/adviso...5-148/2017 

Sperm bank breach deposits data into hands of cybercriminals (I didn't want to edit this hilarious article title because its A+ on its own)
https://www.malwarebytes.com/blog/news/2...rcriminals

By Golly G Wizz... Google Buys Wiz (for a metric shittonne of money)
https://www.reuters.com/technology/cyber...025-03-18/

New kali version out! Now with less salt and more theme action! 
https://www.kali.org/blog/kali-linux-2025-1-release/

 
 
[Image: EEG6FZS.png]

Detection Studio is a browser tool that converts Sigma rules to SIEM languages (Splunk, Elasticsearch, Grafana) locally using pySigma. It features pipeline/filter support, persistent workspaces, and rule sharing.
https://detection.studio/

Purple Lab simplifies detection rule testing by deploying a lab for log simulation, malware/ATT&CK execution, and sandbox restoration.
https://github.com/Krook9d/PurpleLab


[Image: JkUpDIt.png]

shadow-rs is a rust-based Windows kernel rootkit showcases advanced kernel manipulation with Rust's safety and performance
https://github.com/joaoviictorti/shadow-rs

Adversary Simulation Success by the folks over at TrustedSec outlines measuring AdSim success via control testing, defensive enlightenment, and professional courtesy, providing metrics for each.
https://trustedsec.com/blog/measuring-th...imulations
 
[Image: p227pSB.png]

Here is a spot where I’ll just generally soapbox when I want to.
 
Keep an eye out on the clickfix campaigns I mentioned last week folks. That activity is really ramping up.



That's it for this week. Thanks for reading, y'all. See you next week.

]]> <![CDATA[A certain Russian's cookbook]]> https://dotheneedful.online/forums/showthread.php?tid=39 Thu, 20 Mar 2025 17:48:58 +0000 teh_f4ll3n]]> https://dotheneedful.online/forums/showthread.php?tid=39 <![CDATA[MARCH MADNESS]]> https://dotheneedful.online/forums/showthread.php?tid=38 Thu, 20 Mar 2025 16:39:19 +0000 gibby]]> https://dotheneedful.online/forums/showthread.php?tid=38
Find a fillable bracket yourself, or download/edit one here: https://www.cbssports.com/college-basket...table-men/


Here is mine! [Image: UC8edYu.png]]]>
Find a fillable bracket yourself, or download/edit one here: https://www.cbssports.com/college-basket...table-men/


Here is mine! [Image: UC8edYu.png]]]> <![CDATA[AI scrapers causing big issues]]> https://dotheneedful.online/forums/showthread.php?tid=37 Thu, 20 Mar 2025 14:58:36 +0000 JollyRgrs]]> https://dotheneedful.online/forums/showthread.php?tid=37 https://thelibre.news/foss-infrastructur...companies/

Pretty good article and seems like an issue that will only be growing in problems in the future Sad

tl;dr the scrapers are hammering websites (especially code repository ones) using different IPs and masking their UAs for each page request causing real performance issues (aside from the fact the data is being scraped against the robots.txt request)]]> https://thelibre.news/foss-infrastructur...companies/

Pretty good article and seems like an issue that will only be growing in problems in the future Sad

tl;dr the scrapers are hammering websites (especially code repository ones) using different IPs and masking their UAs for each page request causing real performance issues (aside from the fact the data is being scraped against the robots.txt request)]]> <![CDATA[MLB Opening Day!!!]]> https://dotheneedful.online/forums/showthread.php?tid=36 Thu, 20 Mar 2025 13:59:56 +0000 JollyRgrs]]> https://dotheneedful.online/forums/showthread.php?tid=36
Who's excited? What team are you rooting for?

I'm a lifetime Cincinnati Reds fan. I'm actually excited for this year.]]>
Who's excited? What team are you rooting for?

I'm a lifetime Cincinnati Reds fan. I'm actually excited for this year.]]> <![CDATA[Plex price hikes and new free feature limitations]]> https://dotheneedful.online/forums/showthread.php?tid=35 Thu, 20 Mar 2025 00:31:11 +0000 mistiry]]> https://dotheneedful.online/forums/showthread.php?tid=35 https://www.pcworld.com/article/2642674/...-hike.html

Quote:Once the new Plex Pass prices kick in, remote streaming of content in personal Plex media libraries won’t be free anymore. That means if you want to stream your Plex Media Server content outside your home—or, crucially, if you want to stream media from another Plex Media Server user who doesn’t have a Plex Pass—you’ll need to pay up. 

So, if you are a free-tier user you will no longer be able to access your own library remotely. Nor will you be able to watch other's libraries. And, if you're a paid user, you will not be able to remotely access a non-paid users' library.

Price is going up to $250USD for the lifetime pass. Monthly rates also going up, if you use the Plex Pass subscription.]]> https://www.pcworld.com/article/2642674/...-hike.html

Quote:Once the new Plex Pass prices kick in, remote streaming of content in personal Plex media libraries won’t be free anymore. That means if you want to stream your Plex Media Server content outside your home—or, crucially, if you want to stream media from another Plex Media Server user who doesn’t have a Plex Pass—you’ll need to pay up. 

So, if you are a free-tier user you will no longer be able to access your own library remotely. Nor will you be able to watch other's libraries. And, if you're a paid user, you will not be able to remotely access a non-paid users' library.

Price is going up to $250USD for the lifetime pass. Monthly rates also going up, if you use the Plex Pass subscription.]]> <![CDATA[Bassmaster Classic 2025]]> https://dotheneedful.online/forums/showthread.php?tid=34 Wed, 19 Mar 2025 13:22:50 +0000 sintax]]> https://dotheneedful.online/forums/showthread.php?tid=34
Link to watch]]>
Link to watch]]> <![CDATA[Who plays an instrument?]]> https://dotheneedful.online/forums/showthread.php?tid=32 Tue, 18 Mar 2025 03:07:56 +0000 mistiry]]> https://dotheneedful.online/forums/showthread.php?tid=32
Who else plays an instrument?]]>
Who else plays an instrument?]]> <![CDATA[Some new features!]]> https://dotheneedful.online/forums/showthread.php?tid=31 Sat, 15 Mar 2025 03:46:42 +0000 mistiry]]> https://dotheneedful.online/forums/showthread.php?tid=31
We've made some updates to the forums and added some new features!


MyAlerts
This plugin adds "Alerts" to your user profile (hover over your name in the top-right). If you click on the Alerts, even if you have none, and then click "View Alerts", it should take you to this page. From there you should be able to navigate to the Alert Settings to adjust the settings to your liking!

DVZ Shoutbox
On the right-hand side you will see a new Shoutbox. In theory, alerts can/will also appear here. This one is going live as a beta feature - if we ultimately don't like how it integrates with the flow of the forums, we may remove it. You can collapse the Shoutbox by clicking on the title bar of the box. 

DVZ Mentions
This allows you to "mention" a user by typing "@" and then their username. It's not great, as it doesn't autofill or search usernames, so you have to know the username you want to tag. But it does work, and will supposedly will alert in the Shoutbox.


Please report any issues you have with any of these new features or any other part of the forums!]]>
We've made some updates to the forums and added some new features!


MyAlerts
This plugin adds "Alerts" to your user profile (hover over your name in the top-right). If you click on the Alerts, even if you have none, and then click "View Alerts", it should take you to this page. From there you should be able to navigate to the Alert Settings to adjust the settings to your liking!

DVZ Shoutbox
On the right-hand side you will see a new Shoutbox. In theory, alerts can/will also appear here. This one is going live as a beta feature - if we ultimately don't like how it integrates with the flow of the forums, we may remove it. You can collapse the Shoutbox by clicking on the title bar of the box. 

DVZ Mentions
This allows you to "mention" a user by typing "@" and then their username. It's not great, as it doesn't autofill or search usernames, so you have to know the username you want to tag. But it does work, and will supposedly will alert in the Shoutbox.


Please report any issues you have with any of these new features or any other part of the forums!]]> <![CDATA[Referral Links & Coupon/Discount Codes]]> https://dotheneedful.online/forums/showthread.php?tid=29 Fri, 14 Mar 2025 04:21:54 +0000 mistiry]]> https://dotheneedful.online/forums/showthread.php?tid=29 Referral Links
Many services offer an incentive if you refer someone else to sign up. Usually, this benefits both parties and just requires a referral link to redeem it. As long as you disclose what each party receives, feel free to share any referral links to services you use - it might help someone else, and helps you at the same time!

Coupon/Discount Codes
Similar to referral links, some services sometimes publish coupons or discount codes to offer additional benefits for purchases. This might be in the form of money off, additional length of subscription, additional features, or other bonuses and incentives that help the vendor drive their business.

This is not a place to advertise your own business. Do not create referral links, coupons, or discount codes for businesses with which you are affiliated in a manner other than that of a customer. We are not a place to advertise to.


My Referral Links
Vultr.com - VPS Hosting - https://www.vultr.com/?ref=9712766-9J
You will get:
  • $300 Credit
  • Expires in 30 days
I will get:
  • $100 Credit
  • You must be active for more than 30 days and use at least $100 in payments.
Why I use it:
I have used Vultr for almost 10 years. It runs the DoTheNeedful bot, the website, these forums, a few other things. It's cheap, it's fast, and I have only ever opened one support ticket, not related to the infrastructure or the service itself, my entire account lifetime.]]> Referral Links
Many services offer an incentive if you refer someone else to sign up. Usually, this benefits both parties and just requires a referral link to redeem it. As long as you disclose what each party receives, feel free to share any referral links to services you use - it might help someone else, and helps you at the same time!

Coupon/Discount Codes
Similar to referral links, some services sometimes publish coupons or discount codes to offer additional benefits for purchases. This might be in the form of money off, additional length of subscription, additional features, or other bonuses and incentives that help the vendor drive their business.

This is not a place to advertise your own business. Do not create referral links, coupons, or discount codes for businesses with which you are affiliated in a manner other than that of a customer. We are not a place to advertise to.


My Referral Links
Vultr.com - VPS Hosting - https://www.vultr.com/?ref=9712766-9J
You will get:
  • $300 Credit
  • Expires in 30 days
I will get:
  • $100 Credit
  • You must be active for more than 30 days and use at least $100 in payments.
Why I use it:
I have used Vultr for almost 10 years. It runs the DoTheNeedful bot, the website, these forums, a few other things. It's cheap, it's fast, and I have only ever opened one support ticket, not related to the infrastructure or the service itself, my entire account lifetime.]]>