• 0 Posts
  • 64 Comments
Joined 4Y ago
cake
Cake day: May 26, 2021

help-circle
rss

Websites usually use transport encryption but the password itself isn’t encrypted. There are authentication schemes that won’t send plaintext passwords (by involving some kind of challenge) but they won’t work without javascript (except http digest access authentication but thats no good) and you shouldn’t ask web-developers to implement them since they will find a way to fuck it up.



tldr: Buying plastic crap from private company that forces cuts out of peoples sales by making independent shops invisible is cool, but only if they are from “communist” country.



Want to use a modern web browser…

Proceeds to show image of palemoon…


Press [F12], that should bring up the developer tools, and select the console tab. Then do the action that fails and see if something gets logged in the mean time.



Idk what you want to stream, so this is pretty general:

Use a fresh install you only use for streaming or at least use a new user account. Don’t log into anything you don’t absolutely need. Make streaming-only accounts, login to them before the stream. If you need to log into something that should be private do it on another machine. (Or at least another X-Session, with another account on another screen)

Privacy tips for streaming?

Balaclava, TOR, don’t


Some tools are easier to learn than others, because of the nature of their design.

Yep, and modern computers are incredibly hard to understand tools, by nature of their design. By trying to hide this complexity from users you are creating more (unnessecary) complexity and through that make it even harder for users to understand how the system works all the while potentially limiting its usefulness. Free software is about enabling users to fully utilize their hardware, not about making them slaves to a software. Linux is the most practical FOSS OS we have and it works on 40 year old principles, like all other major operating systems. We should focus on making the most of it, not on hiding its age.

If you feel something could be solved in a better way you are free to do so or at least find someone to do so. If you are unable to find or comprehend existing documentation, for whatever reason, I’m certain you will find someone willing to help you in no time and free of charge. But don’t complain if your only problem is that you want to stay ignorant.

If a tool was over-engineered and its alternative was perceived as more straightforward by the average user

The problem was that Linux installers are less over-engineered than some people feel they should be.

An English speaking American could very well enrich their life by learning Spanish

The point was, that if they don’t want to learn spanish, then they have no business complaining about being unable to communicate when in spain.


two times, three times…

When reposting to other communities, it creates a new post, comments between them aren’t linked. They look very similiar in lemmur, esp. if there is no community icon.


People do know how to learn, they just have different priorities

Then that’s their fault, and not the installers. Tools require at least some knowledge to use them. If someone doesn’t acquire this knowledge they will at best break their tools (which is pretty difficult with computers) or at worst hurt others. The comparison isn’t with “would you learn useless language x” but “would you learn language x if you plan to move to a country where it is the official language”.



Sure it is, you use what you like, developers develop what they like, Businesses build what they think their users like etc. It just boils down to different tastes and visions.



I have three domains with catchall. One personal, one thats not easily associated with me that is forwarded to my personal that I use for sites that don’t have to know who I am and one that is under a nick-name for FOSS stuff. The latter is only for special stuff and my own projects since I prefer to stay anonymous.

Plus I have a special webmaster box for all the sites I host. (They can be reached under different domains, but they all forward to an account@my personal domain)


It’s about time, attackers can extract quite a bit of data about the local network via the browser. It’s pretty easy to identify appliances and home routers given someone stays on a site long enough.


Because some podcasters death doesn’t really qualify for worldnews.


GRUB told me I had to wait 120s when I was so drunk I entered the wrong LUKS password 3 times in a row. Even in that state of mind I figured I could just restart it :D


It is not really a rant rather than a Benchmark Review

Ah, I must have overlooked that because the benchmark only makes up a small part of the text and because of the title.


Imagine spending your time writing online rants about how terrible FOSS is instead of helping to improve it. Idk where this entitlement comes from.


there are cameras within the bank + the ATM itself has a cam

The footage is gone within days, but I’m pretty sure they have to log the serial numbers in connection with your bank account when you make a withdrawal :/


Afaik HarmonyOS is mostly the name for some userland tools. It can run on different kernels but uses Linux for more advanced chips.


It always took ages to start on my phone, which really sucks for a note taking app. Now I use the nextcloud notes app, which also takes a bit to start, but not nearly as long.


Now they just need to let actions to follow their words and dismantle their fucking bombs.


I reside in one.

Where is that supposed to be?

Yes, but the speech is incidental to the crime there.

So you aren’t free to speak what you think‽

The trouble being that these cosplayers soon morph into actual neo-nazis.

I think you’re have the causality the wrong way around here.


nor does avoidance of Javascript really have anything to do with Tor.

Tor browser uses LTS firefox, is sometimes late with updates for bugs that don’t seem critical and is mostly the same on every (OS, platform) pair. Disabling javascript makes successfully exploiting any existing bugs many magnitudes harder. (which is already quite hard at this point tbh)


Molly has a feature, which prevents screenshots.

Again, if you can see it on the screen it’s possible to steal it. (How easy it is depends on the driver)

Molly (or any app) won’t help you if your phone is compromised, unless you set a pin to lock your messages and never unlock it after being compromised. (which is unlikely)



Are you fascinated when someone using linux writes something positive about Windows? no? because it NEVER happens.

I wonder why :D

Get away from Microsoft? Nope - Proton can never do that, these games still use and depend on DirectX, and if Microsoft wanted to be dicks, they could shut down Proton in a day. Just as they considered with Wine itself years ago, which they still could.

Google vs Oracle?!

Multiple German states failed to upend Windows Os

Umh what? Munich (a single city, not a state) used linux for some time (allegedly) pretty successfully, they switched back to windows because of corruption and microsoft moving their german headquarters to munich.


But you can view the messages on your phone, so they are decrypted at some point. Then an attacker can steal the key and read them whenever they want. Or they just take screenshots when you use the app if they are lazy.


mobile payments are HUGE in Asia and is probably coming to the US too.

But there is no need to have it in the messenger. That just sounds like a stupid idea: make your payment system connected to the internet, addressable by name and make it parse and load all kinds of media. Mobile OS have per-app sandboxing so why not take advantage of it?


anticheat […] needs to work

Anticheat is like DRM, it can’t work by design if you own the machine it runs on. It’s just wastes power for nothing, why should anyone spend the effort to get it running?

You spend hours looking for a way to make the game run when on Windows all you’d need to do is hit “play”;

Is this a Linux bug or a shortcoming of the publisher?




Ah ok, I thought you were talking about the link.


It’s LGPL?! (But it needs QT -.-)


So, at worst, you are running insecure software for a week?


So what you’re saying is that you have no evidence to support your claim‽



Is this a good place to start learning Linux at a finer level?

Sure but take it with a grain of salt, it’s from 2009. (Disclaimer: I didn’t read the whole thing, but patterns probably haven’t changed completely since then) Kernel.org has documentation, that should be the go-to. Try to setup a test-environment with minimal kernel, read the source code where it interests you and hack around a bit.

Is a CS degree kind of required for that kind of thing?

No, just knowledge of C, operating systems and a bit of how your hardware works, or the desire to learn all of those. I know people with CS degrees that have no clue, I know people without a degree that submit patches. But it probably won’t hurt, unless you get some bullshit business-focused degree.