it follows that a malicious wifi modem, knowing all devices’ mac addresses, could, perhaps, feign being the phone, mac-wise. And issue its own commands, which the phone wouldn’t tell aren’t its own.

I just tested some scenarios:

• I start Shizuku in one wifi network (prompt to trust the network, then I had to enter the pairing code since I hadn’t used it before)
• Then switch wifi networks
  • Shizuku was immediately disconnected
• When I press “Start” again in Shizuku, I get prompted to trust the network
• Then I switch back
  • Shizuku stays running
• Then I disabled Wifi
  • Shizuku stays running
• Then I disabled mobile data
  • Shizuku stays running
• Then I stop Shizuku & press “Start” again
  • It asks me to enable wireless debugging, and that enables wifi

So you’re safe as long as you don’t start Shizuku & trust the network while connected to a potentially malicious network.

In any case, I just wish Android provided networkless self-debugging.

I agree 100%! It’s definitely possible to add a better API that would allow Android users to trust specific apps with ADB debugging connections. Unfortunately Google is hell-bent on restricting the platform instead of opening it up :(

Alles klar, ich berichte wenn er wieder verfügbar ist & ich es probiert hab! Danke nochmal!

Ah, sorry, seems like I was wrong on the whole “no network connection needed”, but the reason is the explanation for your question!

The only way for your phone to recognize/authenticate the source of an incoming ADB connection is the MAC address. Basically every device that sends/receives ethernet packets has to have a unique “fingerprint”, so everyone knows it’s still the same device if it disconnects & reconnects etc. Everything else (IP address etc.) can change at any time, so the MAC address is the only fingerprint available.

But devices can spoof (change) their MAC address. That’s a really useful feature in many cases, e.g. phones these days use a random MAC for every new network, so a network provider can’t track you moving through multiple different networks. Also there’s no way to prevent it with our current network design. But this means that a malicious actor could wait for your trusted device to disconnect, then change their MAC to the one from your trusted device, and thus send malicious ADB commands.

Androids solution is to make you trust both the network and the device. So as long as you don’t have malicious actors in your trusted network, you’re safe - even if you connect to a different network with malicious actors, they can’t send ADB commands.

Sure, that’s fair, but 1) you’re just one user out of many thousands, and 2) stuff like “multiple 4 minute ads in a video” is usually rolled out through A/B testing, so many users probably never saw it.

Und der ist so richtig intensiv, und schmeckt nicht wirklich nach Tee? Da setz ich mich gern auf die Warteliste, vielen Dank für den Tipp!

1. You don’t need to be connected to a network to set Shizuku up. Even while you’re not connected to an external network (through Wifi or mobile data), your phone has a “loopback” network that allows applications on your phone to talk to other applications as if they were connected through an external network. So if you’re scared of giving access to the wrong thing, just turn off wifi & data.
2. When Android asks you to approve an external debugging connection, it’s approved for the specific device that’s connecting. Other devices on the network are not allowed to connect. If I use my computer to connect wirelessly to ADB, only my computer can execute commands, not other devices on my network (they’d show another popup).

Hope this helps!

Hm… It’s suspicious you haven’t mentioned any money going to Bavaria. Are you one of them dirty Greens?

Apps and video games have been thoroughly enshittified, at least on mobile, but also partially on desktop. Amazon Prime is also still very successful and people have not stopped watching Amazon shows entirely.

Als Kind hab ich mal türkischen Apfeltee getrunken, der mega intensiv und lecker war. Der einzige Tee, den ich je mochte.

Ich hab sowas aber nie wieder finden können. Kann es sein, dass ich hintergangen wurde, und das damals nur heißer Apfelsaft war?

The clouds are held in the air by data (since data is lighter than air). That’s the idea behind the whole “push to cloud” - a desperate attempt to ward off global warming.

Do you see the major difference? In audio streaming, most providers have most content. In video streaming, single providers have most content. That means video streaming will get enshittified much more quickly.

It would most likely still mean less engagement overall. YouTube recommendations are strongly based on interactions and momentum. If part of your core fanbase watches & interacts on other platforms, you’re recommended to fewer people outside your fanbase, so over time your viewership shrinks.

Ah, that’s a bummer. Thanks for checking!

VPN providers don’t have unlimited IPs. At some point, you’ve blocked all the VPN IPs, and suddenly it gets much harder to abuse the site.

If this doesn’t solve anything in your eyes, what exactly should a provider do when they’re getting hammered by VPN IPs? Should they tell their customers “sorry our service is offline, but there might be people legitimately attempting to access it through the IPs that are DDoSing us”?

I don’t know, can you? Do many TVs support VRR through HDMI <-> HDMI connections, but not DP <-> HDMI?

I thought you can connect DP to HDMI with a simple cable, no adapters needed?

Nein, ich habe nicht meinen gesamten Besitz verkauft und mir eine Tanzmatte leisten zu können, wie kommst du darauf?

They usually do it because of prior abuse by other VPN customers.

Weirdly I always see Occam going into the bathroom with a full head of hair, and leave with just as much…

Usually there’s a temperature knob you can adjust.