Argentines dump the peso, betting US rescue is doomed to fail
Argentines are convinced that even a flood of cash from the United States won’t be able to stop another painful devaluation of the peso.
Archived version: archive.is/newest/batimes.com.…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Lifespan of AI Chips: The $300 Billion Question - CITP Blog
Lifespan of AI Chips: The $300 Billion Question - CITP Blog
There's no question that we are in the midst of making one of the largest industrial infrastructure bets in United States history.Mihir Kshirsagar (CITP Blog)
reshared this
Lifespan of AI Chips: The $300 Billion Question - CITP Blog
Lifespan of AI Chips: The $300 Billion Question - CITP Blog
There's no question that we are in the midst of making one of the largest industrial infrastructure bets in United States history.Mihir Kshirsagar (CITP Blog)
reshared this
Russia bombards Ukraine’s gas sites as Zelenskyy flies to US for Trump meeting
Strikes cause outages in eight regions before Washington talks to discuss US providing Kyiv with cruise missiles
Archived version: archive.is/20251016191642/theg…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Antiviruses?
like this
Madagascar's coup leader is sworn in as president after military takeover
Col. Michael Randrianirina has been sworn in as Madagascar's new leader after seizing power in a military coup.
Archived version: archive.is/newest/apnews.com/a…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
‘There will be pain’: Scientists warn billions face dangerous levels of heat this century
A new study finds poorer nations will bear the brunt of rising deadly heat days, despite contributing least to global emissions.
Archived version: archive.is/newest/euronews.com…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Uzbekistan’s President to visit Brussels for historic EU partnership deal
Uzbekistan’s President will visit Brussels on 24 October 2025 to sign the Enhanced Partnership and Cooperation Agreement (EPCA) with the EU. The deal marks a new phase in political, trade, and security cooperation, strengthening ties and supporting reforms and sustainable development.
Nella newsletter di oggi 17 ottobre de L'Unica-Genova Erica Manna tratta dell'occupazione dell'università
Foto di Roberto Orlando
È il collettivo “Cambiare rotta” a guidare la lotta, ma il movimento è composito e non accetta sigle ed etichette.
Alcuni studenti fanno parte di “Giovani contro la guerra”, altri di “Opposizione studentesca d’alternativa”: il gruppo è vasto ed eterogeneo e soprattutto è nato dal basso, composto da universitari e anche da alunni delle scuole superiori.
Leggi tutto:
lunica.email/studenti-occupazi…
YouTube is Broken: GN Gets Hit with More Copyright Claims
cross-posted from: piefed.ca/post/282211
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
One thing people need to understand is that YouTube copyright claim process is not a legal process. It can become a legal process if both sides dispute each others claims, but the actual claim system is not a legal process. As a result Google is always acting like all claims are valid even when they are most obviously bullshit simply to not piss of copyright holders and lead them to sueing YouTube for not enforcing DMCA. Once claim is disputed they will review the claim manually, but then it comes down to how much risk YouTube want to take on themselves. Most often they don't want any risk.
The whole YouTube site is built on trust that YouTube will enforce DMCA with their custom system and save everyone money by copyright holders not having to file legal claims for each DMCA case individually and them not suying YouTube in return. Without that "trust" YouTube wouldn't exist as it would have been klilled in the first years of its existance by legal fees.
like this
Lifespan of AI Chips: The $300 Billion Question - CITP Blog
cross-posted from: lemmy.world/post/37458697
Found this via a blog post by Cory Doctorow.Fascinating analysis on market structure, future scenarios and use of what is essentially accounting fraud my major players in the "AI" space.
Lifespan of AI Chips: The $300 Billion Question - CITP Blog
There's no question that we are in the midst of making one of the largest industrial infrastructure bets in United States history.Mihir Kshirsagar (CITP Blog)
‘Godfather of Silicon Valley’ Quits Board Over Benioff’s (Salesforce CEO) Backing of Trump
Ron Conway stepped down from the board of Salesforce’s philanthropic arm after the company’s chief executive, Marc Benioff, said he supported President Trump and wanted the National Guard to come to San Francisco.
https://www.nytimes.com/2025/10/16/us/salesforce-resign-benioff-ron-conway.html
Tempo (fork) v3.17.14 android subsonic client
cross-posted from: lemmy.world/post/37454125
Hi All,my first post over here on lemmy. Thought I'd share my forked tempo release.
Some new fixes for October. v3.17.14
What's Changed
fix: General build warning and playback issues fix: persist album sort preference Fix album parse empty date field fix: Include shuffle/repeat controls in f-droid build's media notific… fix: limits image size to prevent widget crash
note
app-tempo*<- The github release with all the android auto/chromecast features
app-notquitemy*<- The f-droid release that goes without any of the google stuff.Full Changelog: github.com/eddyizm/tempo/compa…
As usual, any dev contributions appreciated as I am not actually a java/mobile dev, so my progress is significantly slower than those who do this on the daily.
In particular, any android dev is familiar with changing the name/icon in order get this app published in app stores.
Release v3.17.14 · eddyizm/tempo
What's Changed fix: General build warning and playback issues by @le-firehawk in #167 fix: persist album sort preference by @eddyizm in #168 Fix album parse empty date field by @eddyizm in #171 fi...GitHub
PipeWire 1.5.81 (1.6 RC1) released
1.5.81 (1.6 RC1) · PipeWire / pipewire · GitLab
PipeWire 1.5.81 (2025-10-16) This is the first 1.6 release candidate that is API and ABI compatible with previous 1.4.x, 1.2.x and...GitLab
like this
US ‘on a trajectory’ toward authoritarian rule, ex-officials warn
The United States is “on a trajectory” toward authoritarian rule, according to a sobering new intelligence-style assessment by former US intelligence and national security officials, who warn that democratic backsliding is accelerating under the Trump administration – and may soon become entrenched without organized resistance.The report, titled Accelerating Authoritarian Dynamics: Assessment of Democratic Decline, was released on Thursday by the Steady State, a network of more than 340 former officers of the CIA, the NSA, the state department and other national security agencies.
To conduct the assessment, the authors applied the same analytic methods used by US intelligence agencies to assess the fragility of democracies abroad but turned them inward for what the group called a “first-of-its-kind” analysis of domestic democratic decline.
“We wrote it because the same tools we once used to assess foreign risks now show unmistakable warning signs at home,” the group said in a statement upon its release.
It's one thing for the plebs to get bent out of shape. When you've got former spooks irritated the the ground is shifting so fast they eventually decided to just release the report while reserving the right to further updates, that's a far more serious situation.
US ‘on a trajectory’ toward authoritarian rule, ex-officials warn
A network of former intelligence and security officers says democratic decline is accelerating under Trump’s ruleLauren Gambino (The Guardian)
adhocfungus likes this.
Abuse victims still face 'disturbing' retaliation: Vatican commission
Vatican City (AFP) – Victims of clerical sex abuse still face "disturbing" retaliation from Catholic Church leaders for speaking out despite years of efforts to tackle the global scourge, a Vatican commission said Thursday.In its second annual report, the Pontifical Commission for the Protection of Minors set out how local Catholic churches can better help survivors, highlighting "cultural resistance" that hinders action in many countries.
The document was drawn up with the contributions of 40 victims, who shared their personal stories -- and who gave what the commission described as "disturbing accounts of retaliation" by Church leaders after they reported their abuse.
"My brother was a seminarian. The bishop told my family that my complaint could affect his ordination," one recalled.
Another described how a priest in the local church publicly declared their family excommunicated after they reported the abuse.
Yet another recounted that the local bishop said nothing for months after a case was reported, then sent representatives to persuade the victim it did not happen, "saying I was making trouble".
Others cited ongoing cases of abuse in their dioceses.
One person was "aware of other priests engaging in sexual relationships with young girls and nuns", while another said that "cases of forced abortions among religious sisters are ignored by Church authorities."
The co-director of victims' rights group BishopAccountability.org, Anne Barrett Doyle, called the victim testimony "especially sobering", adding that the Church was "still failing to prioritize" the safety of children.
"The commission is to be commended for depicting how little progress the church has made in ending abuse and cover-up," she said in a statement.
The late Pope Francis set up the commission near the beginning of his pontificate in 2014, as the Catholic Church was roiled by sexual abuse scandals around the world.
After years of criticism that it was toothless, Francis integrated the panel -- which includes religious and lay experts in the field of safeguarding -- into the government of the Holy See in 2022, and requested an annual progress report.
Thursday's report emphasised the importance of listening to survivors, offering psychological and financial support, and crucially, of acknowledging and taking public responsibility for what happened.
"The Church bears a moral and spiritual obligation to heal the deep wounds inflicted from sexual violence perpetrated, enabled, mishandled, or covered up by anyone holding a position of authority in the Church," read the 103-page report, which has been shared with Pope Leo XIV.
It added: "The damage to victims'/survivors' relationship to the Church cannot be healed without the Church taking responsibility and making reparations."
Commission President Thibault Verny told AFP that, faced with "persistent systemic shortcomings", the annual report was intended as a "tool" for use across the global Catholic Church, which counts some 1.4 billion followers.
It examined in detail almost 20 countries, and highlighted cultural resistance, taboos and silence over abuse from Malta to Ethiopia, Mozambique and Guinea.
In Italy, which has strong ties to the Vatican, the report noted a "substantial cultural resistance" in addressing abuse, while reproaching its bishops for a resistance to collaborate, as only 81 dioceses responded to the commission's survey out of a total of 226.
"It is a true cry that the victims raise: they do not feel listened to, not supported, sometimes there is no empathetic relationship, nor even respect," said Bishop Luis Manuel Ali Herrera, the commission secretary, during a press conference.
Francis, who was pope from 2013 until his death in April, took numerous measures to tackle abuse, from opening up internal documents to punishing high-ranking clergy, while making it compulsory to report suspicions of sexual assault to Church authorities.
But clergy are still not required to report abuse to civil authorities, unless a country's laws require it, while any revelations made in confession remain private.
Verny said Pope Leo "took up this issue very early on" after his election in May.
However, in an interview published in September, the US pope irritated victims' associations by insisting on the need to protect priests who were falsely accused of abuse, as well as listening to survivors.
"There may be false allegations. It must be said that they are a very, very small proportion," Verny said.
But clergy are still not required to report abuse to civil authorities, unless a country's laws require it, while any revelations made in confession remain private.
Pedophiles protect other pedophiles.
In the doghouse: flying canines count as cargo, EU court rules
Madrid (AFP) – The European Union's top court ruled Thursday that a dog travelling in an aeroplane's cargo hold counts as baggage, meaning airlines are not required to pay higher compensation if the animal is lost.The ruling stems from a dispute between Spanish airline Iberia and a passenger whose dog, Mona, went missing before a flight from Buenos Aires to Barcelona in October 2019.
The dog, which had to travel in a pet carrier in the aircraft's hold due to its size and weight, escaped while being taken to the plane and was never seen again.
Mona ran across the airport runway while being chased by three vans, according to her owner, Grisel Ortiz, who said her mother watched the scene from inside the plane.
"Many people laugh because they don't understand what Mona means to me," Ortiz added during an interview published in Argentine daily Clarin in January 2020.
"Since she went missing, all I do is cry and stay glued to my phone, waiting for a miracle."
Ortiz created a Facebook page seeking information on Mona's whereabouts and offered a cash reward for the dog's return, but her efforts yielded no credible leads.
She also sought 5,000 euros ($5,400) in damages from Iberia.
The company accepted responsibility but argued that compensation should be limited to the lower amount set for checked baggage under the Montreal Convention, an international agreement that covers airline liability.
The Spanish court handling the claim referred the question to the European Union Court of Justice, which sided with the airline.
"Even though the ordinary meaning of the word 'baggage' refers to objects, this alone does not lead to the conclusion that pets fall outside that concept," the Luxembourg-based court ruled.
An animal can be considered "baggage" for liability purposes "upon the condition that full regard is paid to animal welfare requirements while they are transported", the court added.
The court noted the passenger had not made a "special declaration of interest" at check-in, an option allowing higher compensation for an additional fee with carrier approval.
Ortiz's lawyer, Carlos Villacorta Salis, told AFP this is a "false argument", saying "no airline in the world" would agree to such a declaration for a pet transported in a plane's hold.
He said he was "very disappointed" with the ruling, calling it a "missed opportunity to give visibility to the rights of animals and the people who care for them".
The judgement is advisory and leaves the final ruling to the Spanish court handling the compensation claim.
A GIMP Guide, but from a Photoshop User
This should be helpful for people that learned Photoshop in the past (for work or in school). From what I understand, a lot of the friction with GIMP is the workflow differences, and potentially unintuitive UI/UX choices.
tldr: recovering Adobe Photoshop user shows you features in the very free and very open source gnu image manipulation program 😁my relevant GIMP config files: github.com/BreadOnPenguins/dot…
GIMP documentation: gimp.org/docs/
dots/.config/GIMP/3.0 at master · BreadOnPenguins/dots
configs and things. Contribute to BreadOnPenguins/dots development by creating an account on GitHub.GitHub
Good idea for a video.
It definitely took me some time getting used to GIMP after nearly 20 years as a photoshop user but I'm very glad I did.
Italy plans levy on Chinese fast fashion to protect local industry
cross-posted from: lemmy.sdf.org/post/44169383
Italy plans to apply an extra levy on Chinese fast fashion products to help shield its fashion industry from low-cost foreign imports, government sources told Reuters on Wednesday.The move is aimed at avoiding unfair competition in the market for what is one of Italy's key industries, the people said, adding Rome would likely impose the charge on online retailers Temu and Shein, among others.
[...]
There is growing alarm in European capitals that China is progressively diverting goods at lower prices to EU markets as a way of making up for its lost U.S. trade, following the tariff policies adopted by President Donald Trump.
[...]
Rome plans to intervene by adopting a scheme envisaged in a European Union directive on the so-called Extended Producer Responsibility (EPR), the sources said.
The charge will force manufacturers to cover the costs of collecting, sorting and recycling their products once they become waste.
[...]
[Industry Minister Adolfo] Urso also underlined that measures were being introduced to help ensure that workers' rights were not abused in the supply chain in Italy after a series of high-profile cases involving leading brands.
"We are very pleased with the speed at which Minister Urso and his team are working, responding to the needs of our industry and, above all, defending 'Made in Italy'," said Luca Sburlati, head of the Confindustria Moda industry lobby.
[...]
The charge will force manufacturers to cover the costs of collecting, sorting and recycling their products once they become waste.
Fair. While this likely to lead to some price increase for consumers, it's at least smart approach and some companies will still undercut the local competiton resulting in a win for consumer.
US Treasury chief: Beijing's rare earths move is 'China vs world'
Washington (AFP) – US Treasury Secretary Scott Bessent slammed Beijing's rare earth export curbs Wednesday as "China versus the world," vowing that Washington and its allies would "neither be commanded nor controlled.""This should be a clear sign to our allies that we must work together, and work together we will," Bessent told reporters at a press conference. "We are not going to let a group of bureaucrats in Beijing try to manage the global supply chains."
His comments came as global economic leaders gather in Washington this week for the International Monetary Fund and World Bank's fall meetings.
"We should work together to de-risk and diversify our supply chains away from China as quickly as possible," Bessent urged.
He later told a press roundtable that Washington was "already in talks" with partners on potential ways to push back.
Bessent spoke days after Beijing announced fresh controls on the export of rare earth technologies and items.
China is the world's leading producer of the minerals used to make magnets crucial to the auto, electronic and defense industries.
Bessent told a forum hosted by CNBC earlier Wednesday that he planned to speak with European allies, Australia, Canada, India and other Asian democracies, signaling a push for broader support beyond the Group of Seven advanced economies.
"We're going to have a fulsome group response to this," he added.
But he maintained that Washington would rather not take substantial actions to retaliate against China, expecting that more talks with Beijing will be forthcoming this week.
A trade war between Washington and Beijing has reignited in US President Donald Trump's second term, with tit-for-tat duties reaching triple-digit levels at one point, snarling supply chains.
Both sides have de-escalated tariff levels but their truce remains shaky and is set to expire in early November.
With the latest controls surrounding rare earths, Trump has threatened an additional 100-percent tariff on goods from China starting November 1.
US Trade Representative Jamieson Greer warned at Wednesday's press briefing that US plans for a tariff hike or other export controls are in the works.
But he expressed hope that China would back off its rare earth curbs.
Bessent said an extension of the pause in steep tariffs was possible -- in return for a delay in rare earth controls.
"Is it possible that we could go to a longer roll in return for a delay? Perhaps," Bessent said. "But all that is going to be negotiated in the coming weeks, before the leaders meet in (South) Korea."
The leaders of the world's two biggest economies are expected to hold talks at the Asia-Pacific Economic Cooperation (APEC) summit starting later this month.
Bessent earlier told CNBC that Trump still planned to meet Chinese President Xi Jinping at the summit.
Greer said Wednesday that "this is not just about the United States."
"China's announcement is nothing more than a global supply chain power grab," he said. "This move is not proportional retaliation. It is an exercise in economic coercion on every country in the world."
Fuck around and find out. You broke the past truce and now are crying that the bully is being bullied.
China went on the attack, but they for sure don't want to keep the restrictions. They are happy to use it in the negotiations, but end goal is to maintain the status quo as their refineries generates them a lot of cash and give them leverage as seen here.
And the rest of the world can't do shit here really, even if they wanted to ditch China, they need 10+ years to build up the expertise and factories. Longer if they refuse to use Chinese experts to train the new workforce.
Mamdani Vows to Make NYC a “Sanctuary City” for Trans People in New Campaign Ad
cross-posted from: lemmy.zip/post/51123788
cross-posted from: hexbear.net/post/6440713
New York City mayoral candidate Zohran Mamdani released a campaign ad this week honoring transgender trailblazers in the city and vowing to make New York City a sanctuary for trans people.The ad marks a notable departure from the Democratic Party’s current tone on trans rights. Since the party’s 2024 presidential loss to Donald Trump, strategists have increasingly peddled the myth that support for transgender people is a liability for candidates — a notion that Mamdani appears to reject.
In the campaign ad, Mamdani sits behind a large desk near the Christopher Street Pier, where many Black and Latinx unhoused LGBTQ people sought refuge in the 1970s after being pushed to the margins of the city. In the background of the ad is the song “It’s Okay to Cry” by legendary transgender artist SOPHIE.
Mamdani tells the story of Sylvia Rivera and Marsha P. Johnson, trans activists who led the Stonewall Inn uprisings of 1969 and laid the foundation for the city’s first Pride celebration. The Christopher Street pier is “a place of immense contradictions,” he says— just like New York City itself.
“It’s where outsiders found belonging, and it’s also where Marsha P. Johnson’s body was found, the victim of a suspected murder no one was ever prosecuted for,” he says.
As a result of the “cruelty” Rivera faced, Mamadani says, she developed a substance use problem and often faced homelessness. But despite these challenges, Rivera continued her fight for trans liberation, even when many in the mainstream gay rights movement at the time sought to exclude trans people.
Citing Rivera and Johnson’s struggle for equality and recognition, Mamdani says, “We can chart a clear path forward that makes our city inclusive.”
Mamdani Vows to Make NYC a “Sanctuary City” for Trans People in New Campaign Ad
“New York will not sit idly by while trans people are attacked,” Mamdani said in his new campaign ad.Chris Walker (Truthout)
Rozaŭtuno likes this.
Colombian President Petro Says U.S. Must Be Taken To The UN Security Council After Latest Strike Against Alleged Drug Boat
Colombian President Petro Says U.S. Must Be Taken To The UN Security Council After Latest Strike Against Alleged Drug Boat
Colombian President Gustavo Petro again criticized U.S. strikes against alleged drug boats in the Caribbean, saying the country "must be taken to the UN Security Council and the UN General Assembly"Demian Bio (Latin Times)
like this
Trump officials go all out to block carbon tax on shipping
Trump officials go all out to block carbon tax on shipping - E&E News by POLITICO
The U.S. tried to strong-arm nations into rejecting the measure. Now, the administration is pushing to make adoption harder.Sara Schonhardt (E&E News by POLITICO)
Vance’s Telling Defense of a Racist Group Chat | How a trove of bigoted and violent texts among young Republicans indicates the future of the party.
Vance’s Telling Defense of a Racist Group Chat
How a trove of bigoted and violent texts among young Republicans indicates the future of the party.Jonathan Chait (The Atlantic)
like this
Hate when this happens
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
Nation-state hackers deliver malware from “bulletproof” blockchains
cross-posted from: infosec.pub/post/36262288
Malicious payloads stored on Ethereum and BNB blockchains are immune to takedowns.
I think theres a point where you have to realize the topic of discussion is about LLMs like ChatGPT, and that point was around the time we compared it to Web 3.0, something that people hate and associate with tech bros and evil corporations.
The meaning of words change based on context.
“LEGGENDE POKEMON Z-A: GIOCATO SU SWITCH 2 ED È PESSIMO ANCHE LÌ”
Spero di non fare le palle troppo quadrate a tutti con questo nuovo gioco dei Pochemo, e vedrò di non esagerare con il postaggio a riguardo, perché so che magari ad alcuni può non fregare… probabilmente io sarei la prima a cui non fregherebbe, se non mi fosse venuta l’idea stavolta di dare una chance […]
21 states, DC sue over EPA’s $7B ‘Solar for All’ cancellation
21 states, DC sue over EPA’s $7B ‘Solar for All’ cancellation - E&E News by POLITICO
Grant recipients have also filed a separate lawsuit to recoup their funds.Pamela King (E&E News by POLITICO)
Il magico sistema anti-caduta in Leggende Pokémon: Z-A
Leggende Pokémon: Z-A, con la sua freschissima ambientazione urbana, che vede una Luminopoli ora esplorabile fino all'estremo, ha evidentemente presentato diverse nuove sfide ai game designer...
Artificial Neurons Communicate Directly With Living Cells
Artificial neurons that mimic the brain's efficiency are here, using 1/10th the voltage and 1/100th the power of others.
These neurons can, for the first time, process information from living cells without an intermediary device amplifying or modulating the signals, the researchers say.While some artificial neurons already exist, they require electronic amplification to sense the signals our bodies produce, explains Jun Yao, who works on bioelectronics and nanoelectronics at UMass Amherst. The amplification inflates both power usage and circuit complexity, and so counters efficiencies found in the brain.
The neuron created by Yao’s team can understand the body’s signals at their natural amplitude of around 0.1 volts. This is “highly novel,” says Bozhi Tian, a biophysicist who studies living bioelectronics at the University of Chicago and was not involved in the work. This work “bridges the long-standing gap between electronic and biological signaling” and demonstrates interaction between artificial neurons and living cells that Tian calls “unprecedented.”
Are there any alternatives to DriveDroid for non rooted phones?
I've downloaded EtchDroid, but only a few minutes ago.
I see straight away that I can't download different distros from within the app like I could in DriveDroid.
I'm also not sure I can boot from my phone using EtchDroid, but I will look into that a bit more as it does often seem to be mentioned as a (good) alternative to DriveDroid.
Any others? Mainly that I can download distros inside app, boot from phone in live usb mode, and without root.
like this
 
					
Eugenia
in reply to ssillyssadass • • •How To Install ClamAV on Linux Mint 22
r00t (idroot)Tenderizer78
in reply to Eugenia • • •Zak
in reply to Tenderizer78 • • •No. ClamAV can, for example scan Linux ELF executables and its database contains signatures for malware that could affect desktop Linux. The most common use case is servers that are distributing files, but it can be used to scan local files.
The local use case is fairly rare because malware targeting desktop Linux is rare. That's partly because Linux users tend to have a better understanding of computers on average than Windows users, and partly because the sort of attack vectors that work well against Windows users don't align with Linux workflows (e.g. if you want to execute a file sent as an email attachment, you'll have to save it and set it executable first).
Multiplexer
in reply to ssillyssadass • • •So I installed one to comply. But that's it...
Multiplexer
in reply to Multiplexer • • •So I am also interested in alternatives to still be able to appease my bank.
Eugenia
in reply to Multiplexer • • •Multiplexer
in reply to Eugenia • • •And as I am only interested in installing, and not actually using, CLI-only is also fine!
monovergent
in reply to Multiplexer • • •How would they know?
Multiplexer
in reply to monovergent • • •And I would be able to answer "yes" without lying.
machiavellian
in reply to ssillyssadass • • •DISCLAIMER
I am not a computer security expert, merely a hobbyist having read some blogs from people who sounded smart. It is more than probable that I am mistaken in one or more parts of this post.
Linux is not more secure than Windows. By default, it's actually considerably more vulnerable than Windows. Source
In my opinion an antivirus doesn't really solve your problem. What you actually want is sandboxing, which means restricting user and program privileges. I recommend getting familiar with SELinux (or alternatively AppArmor, although it isn't nearly as effective) and bubblewrap (or alernatively Firejail, which requires root privileges to run and is thus a bigger threat vector than bubblewrap).
Aside from that just disable any service you aren't using (like ssh), use a deny-all-allow-some firewall, and verify what you download. If the link says "100% REAL 1 MILLION FREE ROBUX DOWNLOAD CLICK HERE NOW", then maybe don't click there.
Because even an antivirus won't help you if you download malware, which isn't compiled by skids who lifted the code from some darknet hacker forum. Antivirus isn't some magical tool which makes your computer inherently more secure. Meaning you can't offload your responsibilty to a program running with kernel level privileges. Your computer, your responsibilty.
P.S: If you want a more secure computer, I'd recommend a minimal and/or rolling release distro (openSUSE, Arch, Void, Debian) or FreeBSD/OpenBSD (BSD variants mitigate many of Linux's inherent flaws).
Linux | Madaidan's Insecurities
madaidans-insecurities.github.ioEk-Hou-Van-Braai
in reply to machiavellian • • •The best security is to limit your risk vector.
Like you said Anti-viruses aren't some magic bullet, in university a bunch of us wrote Malware and wrecked each other's lab computers or did things like having the whole Lab's computers CD trays open at 10am every morning.
The AV didn't pick up any of them and we barely knew what we were doing.
Afik, AV's mostly scan for known threats
frongt
in reply to Ek-Hou-Van-Braai • • •Ek-Hou-Van-Braai
in reply to frongt • • •I'd be curious to rewrite some of the malware we made in class and see if AVs would pick it up now.
Most of them didn't make any network calls etc. they would just mess with your files and system
Things like Set background to Justin-Bieber, play Justin-Bieber randomly, we were very mature
utopiah
in reply to Ek-Hou-Van-Braai • • •DeuxChevaux
in reply to ssillyssadass • • •I run ClamAV regularly, and it has not found anything on my several systems in the last 20 years. Good to know we're safe, or are we?
I'm more concerned about rogue browser extensions that may be innocent when you install them, but then change owners, and after an update that you don't even notice are going to do bad things.
monovergent
in reply to DeuxChevaux • • •Exactly why the only extensions on my browser are uBlock Origin and LibRedirect. Was a victim of one user agent switcher extension that went rogue back in the day.
hendrik
in reply to ssillyssadass • • •Linux Antivirus is a very specific niche. It's mostly there to scan for Windows viruses and malware. So your Linux mailserver for example (or storage system) filters those out before they appear on your employee's computers.
What you'd instead do in Linux is harden your webserver and services, keep the webservices you host up to date and have some monitoring so you detect known rootkits or if your DNS server gets abused for a DDoS attack. And keep an eye on supply chain attacks if you're a developer. Because that's how attacks against Linux work. I've been scolded for saying this on Lemmy, but to this date, desktop computer malware isn't really a thing with Linux. Attacks almost exclusively target webservers and Internet of Things devices, routers and so on.
So an Antivirus on a desktop computer isn't going to do much, due to the lack of malware which works that way. And you'd still be vulnerable if someone hands you a malicious bash script to delete your home directory. It could however do something if you run Proton or Wine and run Windows programs in Linux.
If you want to do something for security, learn not to copy-paste stuff into the command line. Don't run executables from random places of the internet. Try to rely on your distribution's package repository. Do automatic updates, and generally do timely updates, especially with the webbrowser and stuff that's reachable from outside. Set strong passwords. And don't neglect your backups. Your harddisk is bound to fail anyway, eventually. I think that's going to get you 99% of the way. Installing an antivirus is only the next 0.2%.
SOULFLY98
in reply to ssillyssadass • • •Install the apparmor profiles and extra profiles packages from the apt repository. They are sensible restrictions on common apps (web browsers) to prevent anything malicious from happening if they are ever hijacked. Make sure apparmor is enabled. This will do more to keep you secure than an antivirus.
If you insist on an AV, install ClamAV and have it scan weekly. It's libre software and works well with Linux.
Günther Unlustig 🍄
in reply to ssillyssadass • • •None at all tbh, at least if you use the PC alone and don't share a lot of stuff with Windows devices. If you do, then maybe scan .exe or other files (e-mail attatchments, etc.) with ClamAV or similar to prevent spreading stuff.
You usually don't need AV software because you install stuff differently than on Windows. You don't hunt .exe-files from random internet sites, thats irresponsible even for Windows.
You install your apps directly from your software center (a frontend for Flatpaks and repo software), where they usually are pretty safe.
Also, sandboxing is a thing. The prefered way for most people (and often default) is via Flatpak, where apps are restricted on what they can access and do. You can lock them down even further if you want.
There are more ways of sandboxing, but those are not so relevant here right now.
Also:
- If you run a script, check it first. I have zero clue in regards of coding, but even I can usually guess what each line is supposed to do.
- Don't add 3rd party repos if you can, use containers instead
- Go for the easiest route, guides for "Linux" aren't noob friendly. In your case, search for "Mint" instead, most stuff is pretty easy there.
Ⓜ3️⃣3️⃣ 🌌
in reply to ssillyssadass • • •PearOfJudes
in reply to ssillyssadass • • •sylver_dragon
in reply to ssillyssadass • • •Ultimately, it's going to be down to your risk profile. What do you have on your machine which would wouldn't want to lose or have released publicly? For many folks, we have things like pictures and personal documents which we would be rather upset about if they ended up ransomed. And sadly, ransomware exists for Linux. Lockbit, for example is known to have a Linux variant. And this is something which does not require root access to do damage. Most of the stuff you care about as a user exists in user space and is therefore susceptible to malware running in a user context.
The upshot is that due care can prevent a lot of malware. Don't download pirated software, don't run random scripts/binaries you find on the internet, watch for scam sites trying to convince you to paste random bash commands into the console (Clickfix is after Linux now). But, people make mistakes and it's entirely possible you'll make one and get nailed. If you feel the need to pull stuff down from the internet regularly, you might want to have something running as a last line of defense.
That said, ClamAV is probably sufficient. It has a real-time scanning daemon and you can run regular, scheduled scans. For most home users, that's enough. It won't catch anything truly novel, but most people don't get hit by the truly novel stuff. It's more likely you'll be browsing for porn/pirated movies and either get served a Clickfix/Fake AV page or you'll get tricked into running a binary you thought was a movie. Most of these will be known attacks and should be caught by A/V. Of course, nothing is perfect. So, have good backups as well.
utopiah
in reply to ssillyssadass • • •Nothing needs an antivirus if you backup your data properly.
PS: I'm getting downvoted for this so I'll explain a bit more : if you backup properly, you can restore your data. Sure your system is fucked... but who cares? In fact if you care for your OS installation then right away it shows you are NOT in a reliable state. You install another OS and start from there. Maybe it's not even due to a virus, maybe your hardware burns in fire, same situation so IMHO a working backup (and by working I mean rolling, like TODAY it's done without your intervention) then you restore. Also please don't tell me about ransomware because even though it is a real threat, if you do your backups properly (as in not overwritting the old ones with the new ones) then you are still safe. It can be as basic as using
rdiff-backup. It's fundamental to understand the difference between what's digital and what is not digital.ssillyssadass
in reply to utopiah • • •utopiah
in reply to ssillyssadass • • •golden_zealot
in reply to utopiah • • •utopiah
in reply to golden_zealot • • •That doesn't make much sense to me, one backup data, not executables or system. Even if they were to be saved in the backup then they wouldn't get executed back.
Anyway, that's still conceptually interesting but it's so very niche I'd be curious to hear where it's being used, any reference to read on where those exist in the wild?
golden_zealot
in reply to utopiah • • •They usually embed themselves in within the system files and have some scheduled job that basically checks for the criteria - if you are only backing up and restoring user data then it's a non-issue, but if you do a full recovery including the system files/the system scheduler etc, then it can happen, and it is often necessary to backup executable and system files for production environments (true, not so much for individual users and their systems).
When I was working in an IT shop, one of our clients was ransomwared with this method. The saving grace for us in that instance is that our backups were going to a product that allowed you to easily break open and dissect the compressed backups pre-recovery, so we were able to determine where the malicious files were and kill them before pushing the backups. Of course we only noticed that it was in the backups after we had tried to push the backups once already, so it was quite the timely process - I think I worked for something like 18 hours that day.
You can read about such malware if you search for "timebomb malware" or "malware does not execute until date" etc.
The attack is not super common anymore, but still happens.
For example, here is an article discussing time bomb methods on linkedin.
linkedin.com/pulse/time-bombs-…
Another on the knowbe4 blog:
blog.knowbe4.com/ransomware-ca…
Ransomware Can Destroy Backups In Four Ways
Stu Sjouwerman (KnowBe4, Inc.)utopiah
in reply to golden_zealot • • •golden_zealot
in reply to utopiah • • •Oh for sure - I think that this method has more efficacy in production environments ran by small businesses anyway, since best practices are rarely followed in many of them (until something happens that changes their mind on what they budget for haha), and even at that it is still a rare attack to see.
I am unaware of this type of attack ever occurring on a persons personal network, most likely because so few end users make backups, there is no need to go through the trouble of doing this, making this method useful only in highly targeted attacks.
We are definitely in agreement on proper backups still being the best method to recover from the vast majority of problems - even this one, depending on the backup solution.
Majestic
in reply to ssillyssadass • • •I would say there are not any worth recommending and that best practices are avoiding running random scripts you don't understand, keeping software up to date with package managers, and using virtualization tools. Also look into Portmaster perhaps which is an interactive firewall.
::: spoiler Meta rant on this subject
What frustrates me about the answers these questions get is no one ever offers tools comparable to Windows tools, perhaps I think increasingly because they simply don't exist outside of very expensive subscription enterprise offerings that require plunking down no less than a thousand dollars a year. (Certainly none of the major AV vendors offers consumer Linux versions of their software though most offer enterprise endpoint Linux that comes with the caveat of minimum spends of several hundred dollars if not several thousand a year)
ClamAV is primarily a definition AV, the very weakest and most useless kind. Sure it's kind of useful to make sure your file server isn't passing around year old malware but it's basically useless for real time prevention of emerging and unknown threats. For that you needs HIPS, behavior control, conditional/mandatory access control, heuristics, etc. ClamAV has one of the worst detection rates in the industry. It's just laughably bad (often under 60%) so it's really not a front line contender at all.
Compare clam to consumer offerings with complex behavioral control like ESET, Kaspersky, etc that offered "suite" software that featured the aforementioned HIPS, behavioral control, complex heuristics to detect and in real time block malware-like behavior (for example accessing and then seeking to upload your keepass database files or starting to surreptitiously encrypt all your user files using RSA4096) and it just isn't in the same ballpark as anything competently done in the last 20 years.
I haven't used or relied on a traditional AV for definition detections for years. They're worthless, it's impossible to keep up. The AV's I've deployed are for their heuristics, behavior control, HIPS, etc which actually stops new and emerging and unknown threats or at least puts real obstacles in their way. So what Linux needs, what users need is software like that, forget the traditional virus definitions, something with behavior control, HIPS, and some basic heuristics for "gee this sure looks like malware behavior, better ask the user whether they want and intend this".
"Just be smart about what you run" isn't a realistic solution when people say Linux is for everyone including their tech illiterate relatives. Yes, Linux is a lot safer if you just install things from package managers but that isn't bulletproof either as we've seen a number of spectacular impact upstream malware insertions into build repos for huge software projects in recent years.
Just maintain back-ups isn't helpful with smart cryptolocker software which may hide itself for weeks or months and encrypt your files as you back them up. Nor does it protect against account compromise from all your passwords being stolen or a keylogger. Nor does it defend you against persecution after being hit by mercenary/government police-ware and spyware from overreaching governments and makes the bar for them getting evidence you're an illegal gay person or whatever that much lower technically in terms of capabilities.
Back-ups are disaster recovery. Everyone should have them but part of a layered defense is preventing the disaster and inconvenience and invasion of privacy and so on before it happens. Having your identity stolen or accounts taken over isn't as simple as reverting to a back-up, it can result in hours, days of phone calls, emails, stress, hassle, etc that can drag on for weeks or months.
Portmaster is a start for this type of system control and protection as it's a very effective interactive firewall but as far as I know there aren't any consumer available comprehensive behavior control + HIPS type Linux desktop security solutions. There are several vendors of default deny mandatory access control with interactive mode for Windows but none offer solutions for Linux that aren't part of enterprise sized contracts beyond affordability and reason. If anyone knows otherwise I would love to know of these solutions as I want to implement them on my Linux machines as I am not comfortable with just my network IPS and firewall solutions by themselves without comprehensive end-point security.
:::
corsicanguppy
in reply to Majestic • • •When you're not on the car lot, the word is "budgets".
Quazatron
in reply to ssillyssadass • • •I just want to add that you that you can also setup multiple user accounts for different uses. One for banking, one for gaming, one for downloading random crap. It will not protect against privilege escalation attacks but will help against random scripts exfiltrating your personal documents.
Another nice layer is containers and containerized applications (flatpaks, bubblewrap, etc). Each app will be somewhat limited in what damage it can do.
Running pi-hole as your DNS or using some other filtered DNS provider (Mulvad or others) will also protect you from some shady sites.
rozodru
in reply to Quazatron • • •woodsb02
in reply to ssillyssadass • • •Install Lenspect on Linux | Flathub
Flathubnotarobot
in reply to ssillyssadass • • •☂️-
in reply to notarobot • • •TeddE
in reply to ☂️- • • •☂️-
in reply to TeddE • • •CrackedLinuxISO
in reply to ☂️- • • •Wine is not an emulator. It's not sandboxed either. If you can do it as a user, a program running in wine can do it too.
There's nothing stopping a piece of malware from crawling your disk for sensitive information, or encrypting your files for ransom.
JustEnoughDucks
in reply to CrackedLinuxISO • • •CrackedLinuxISO
in reply to JustEnoughDucks • • •I wouldn't think so. Isn't bottles just an easier way to manage wine prefixes? If so, it doesn't do anything to hide your Linux system from the executable.
Wine prefixes are not sandboxes. They are a way to separate the windows-level configuration for different programs (eg env vars, or drivers, etc).
Wine is a translation layer between a compiled windows binary and your Linux syscalls/libraries/device drivers/etc, nothing more.
JustEnoughDucks
in reply to CrackedLinuxISO • • •notarobot
in reply to ☂️- • • •☂️-
in reply to notarobot • • •balance8873
in reply to ☂️- • • •☂️-
in reply to balance8873 • • •agreed. increased linux market share will come with some disadvantages.
nothing we won't be able to surmount, we have already been building solutions.
Krudler
in reply to notarobot • • •TMP_NKcYUEoM7kXg4qYe
in reply to notarobot • • •Brodie Robertson made a video about malware which pretends to be a pdf but is actually just an executable with a
.pdffile extension. So if you double click it, you get pwnd. I think some desktop environments ask you for confirmation before running such thing but I would not count on it.So we even have an example of Linux specific malware.
KaninchenSpeed
in reply to TMP_NKcYUEoM7kXg4qYe • • •TMP_NKcYUEoM7kXg4qYe
in reply to KaninchenSpeed • • •balance8873
in reply to ssillyssadass • • •I think the security thing is very arguable at this point. Windows and macos are both extremely secure (from threats external to the companies that made them).
Linux still has heavy reliance on running install scripts as root. Flatpak avoids that but has its own issues. Docker has its own suite of issues. Snap is just issues.
redhilsha
in reply to ssillyssadass • • •tiny
in reply to ssillyssadass • • •foremanguy
in reply to ssillyssadass • • •No antivirus is needed if you know what you're doing.
If you don't, don't do it or document yourself on.
Communist
in reply to ssillyssadass • • •Matt
in reply to ssillyssadass • • •