We Desperately Need Maximum Wage Laws
Which 2FA physical key do you prefer?
I am thinking about buying a pair of physical 2FA keys to protect my password manager and sensitive accounts.
Which brand and model do you suggest?
If a model with open source firmware doesn't come with big drawbacks, I'd
prefer it, because I may learn from the source code and even contribute to it.
NFC is not necessary, and the keys should be USB-A. A fingerprint reader is welcome if the price doesn't increase too much.
Thank you all in advance.
like this
TVA likes this.
like this
TVA likes this.
like this
TVA likes this.
Do you mean TOTP? FIDO? Or what? FOSS ones exist but they might not do exactly the right thing. I've had some ideas for self-built too. What would you do on the host interface side? Wouldn't you want the host to not have the secret?
It's an interesting question.
I’m going to assume it’s the typical “Nobody ever get fired for buying from IBM” mindset
That's pretty much it exactly. Yubico has the required features, are widely supported, and are widely used. They have a track record of reliability.
Other viable alternatives definitely exist, but they don't have the same real-world penetration. The disadvantage with that is if you run into a platform-specific issue, finding someone who has had the same issue before and posted the solution somewhere becomes far less likely.
if you run into a platform-specific issue
Well that's of course possible but in theory (which is so different from practice, I get that) if it relies on protocols or specifications rather than vendor specific implementations, e.g. OTP, TOPT, HOTP, U2F, OpenPGP, WebAuthN, etc then it should be fine.
Your only “good” option is yubikey. They’ve been around comparatively forever, have all the problems worked out and make durable hardware. All that matters because you don’t want to get something from a company that goes under in a few years and leaves you high and dry and you don’t want the dongle to break because that’s your authentication, now you’re locked out of your shit.
I recommend against getting some doodad with a biometric reader. You’re adding complexity, attack vectors and not getting much out of it plus you’re locking yourself out of deniability and the possibility of handing a trusted person your dongle, telling them your password and having them act in your stead.
like this
TVA likes this.
I am fine with a cli, I use arch btw.
How long have you had your nitrokey? Others are concerned about their durability...
Have you ever had a yubikey?
I've only had the nitrokey for a few months, so can't comment on the durability yet.
I did have a yubikey before. My experience with them wasn't great, I often had to re-plug in the key because the touch to activate thing was pretty unreliable for me, often just not responding to touch at all.
Though ultimately the reason I chose nitrokey is because I was just looking for a European alternative.
I use Yubikey Bio and NitroKeys.
Edit : to expand a bit, for the YubiKey it's for the convenience of just pushing my thumb on. I use it on the Web and to su locally. For NitroKeys I've discovered them via nlnet.nl/project/Nitrokey-3/ and thus appreciate the OSHW side, e.g certification.oshwa.org/de0000… or certification.oshwa.org/de0000…
6 FIDO keys in one.
OnlyKey Hardware Password Manager | One PIN to remember
The only device that works everywhere to secure accounts, email, and communication online. Strong two-factor authentication and professional grade encryption. Use it to log into any device, application, or unlock encrypted drives.OnlyKey
Have you got one? Is it durable?
I got one years ago. Used it for quite a bit. Worked great, but I stopped using it when my daily computer didn't have a USB-A port any more.
You do have to remember what each numbered button is for.
i stopped using mine because i kept accidentally trigger it every single time i intended to type something.
i was a software engineer at the time, so it was particularly annoying to me.
Which 2FA physical keys do you prefer?
Which brand and model do you suggest?
If a model with open source firmware has not got big drawback, I'd prefer it, because I may learn from the source code and even contribute to it.
Ex-national security adviser John Bolton indicted in classified documents case
John Bolton, who served as national security adviser during President Trump's first term before becoming a vocal critic, was indicted on Thursday on 18 charges related to the mishandling of classified documents.
Details from the indictment filed in Maryland's district court charge Bolton with eight counts for the transmission of national defense information and 10 counts of unlawful retention of such information. Each count faces a maximum of 10 years in prison.
In a statement, the Justice Department said Bolton illegally transmitted classified information using a personal email and messaging applications, including U.S. "intelligence about future attacks, foreign adversaries, and foreign-policy relations."
adhocfungus likes this.
Rilasciato Liquorix Kernel 6.17
American visa
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
Liberals didn't do this, it was the working class organizing and banding together that forced their hand. Liberals opposed these measures until they were forced to implement them.
From the suffragettes, civil rights movement, abolitionists, Black Panther Party, trade unions, communists, socialists, and regular working people together, these measures were forced. Social Security was a reaction to revolutionary potential, fearing the working class would overthrow the capitalists like they did in Russia in creating the Soviet Union and implemented sweeping safety nets.
Liberals are not on the left, and trying to take credit for the measures they had to be forced into implementing is peak liberalism.
like this
TVA likes this.
like this
TVA e ZoDoneRightNow like this.
like this
ZoDoneRightNow likes this.
like this
TVA e ZoDoneRightNow like this.
like this
TVA likes this.
Haven't you heard? Shitting on liberals and not voting is all you need to do to defeat fascism. It's literally the most important thing.
It's too bad the Weimar Republic didn't think of that. I feel like if only the German Communists had been spending all their energy shitting on the center, they might have had a pretty good chance of stopping Hitler from coming to power. Well, at least now we have the chance to try again, with the benefit of hindsight, and make sure we do that known successful strategy...
I feel like we had this conversation before at some point lol... I will summarize my point of view on it and then probably dip from it:
- KPD in 1917: We're going to seize all the guns and overthrow you and make Communism because Communism
- German government + German people and unions + SPD: Fuck no you're not (gunfire)
- KPD in 1918: Wooooooowwwwwwwwww okay fuck you, I see how it is
- Germany: Hey KPD you still can have a seat in government, you have to get the votes though, no shooting your opposition, no seizing
- KPD: Woooooooowwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwww
- SPD in 1932: Hey we're going to make an alliance with you because this guy is dangerous, we don't care about the whole "trying to overthrow thing" that happened a generation ago
- KPD: Woooooooooooooooooooooooooooooooooooooooooooooowwwwwwwwwwwwwwwwwwwwwwwwwww
- Hitler: (wins)
And then much later:
- KPD (ones still alive): Hey we're going to need all the trade unions to do what we want instead of what the workers want, because that's leftism
- Germany: Lol fuck OFF
That is my summary. I realize you may have a different one but I don't think I really want to get in an extended argument about it today. But yes, Germany in the 30s is a relevant example on this topic, I absolutely think.
(Oh, also, the KPD was being murdered by the Nazis with the aid of Stalin. The KPD was coordinating with Stalin, and he was selling them out because of course he was. I have absolutely no idea where you got this idea that the SPD was involved in what Hitler was doing to his opposition.)
wsws.org/en/special/library/fo…
73 - The KPD had been established as a response to the betrayal of social democracy. But it proved just as unable as the SPD to weld together the working class and lead it into a struggle against the Nazis. A ten-year campaign against “Trotskyism” had politically corroded the party and transformed its leadership into a willing tool of Stalin. It repeated all the opportunist and ultra-left errors, against which Lenin and Trotsky had fought ten years before, and hid its paralysis and fatalism behind radical phrase-mongering. Until 1933, Trotsky tried relentlessly to correct the wrong course of the KPD. His writings on Germany from these years, which fill two thick volumes, prove his genius as a Marxist and political leader. Banished to a remote Turkish island, forced to rely on newspapers and reports from political friends, Trotsky demonstrated an understanding of German events and their internal dynamics that remains unparalleled to this day. He foresaw the events clearly and precisely and developed a convincing alternative to the devastating course of the KPD. The KPD responded not with arguments, but with slanders, violence and the entire weight of the Moscow apparatus.74 - At the heart of the policy of the KPD was the thesis of social fascism. From the fact that both fascism and bourgeois democracy were forms of capitalist rule, the Comintern drew the conclusion that there was no contradiction between them, not even a relative one. Fascism and social democracy were the same―in the words of Stalin: “not antipodes, but twins”―the social democrats therefore were “social fascists”. The KPD rejected any collaboration with the SPD against the rightwing danger and, in some cases, even went so far as to make common cause with the Nazis―for example, when it supported the referendum initiated by the Nazis in 1931 to bring down the SPD-led Prussian state government. Occasionally it called for “a united front from below”. But this was not an offer to collaborate, but an ultimatum to the SPD members to break with their party.
75 - Trotsky decisively opposed this form of vulgar radicalism. He recalled that Marx and Engels had protested fiercely when Lassalle had called feudal counterrevolution and the liberal bourgeoisie “one reactionary mass”. Now Stalin and the KPD were repeating the same error. “It is absolutely correct to place on the Social Democrats the responsibility for the emergency legislation of Brüning as well as for the impending danger of fascist savagery. It is absolute balderdash to identify Social Democracy with fascism”, he wrote. “The Social Democracy, which is today the chief representative of the parliamentary-bourgeois regime, derives its support from the workers. Fascism is supported by the petty bourgeoisie. The Social Democracy without the mass organizations of the workers can have no influence. Fascism cannot entrench itself in power without annihilating the workers’ organizations. Parliament is the main arena of the Social Democracy. The system of fascism is based upon the destruction of parliamentarianism. For the monopolistic bourgeoisie, the parliamentary and fascist regimes represent only different vehicles of dominion; it has recourse to one or the other, depending upon the historical conditions. But for both the Social Democracy and fascism, the choice of one or the other vehicle has an independent significance; more than that, for them it is a question of political life or death.”
[3] 76 - Trotsky fought untiringly for a policy of the united front. This would have made it possible for the KPD to use the contradiction between social democracy and fascism to unite the working class, win the confidence of the social democratic workers and expose the social democratic leaders. In an article written at the end of 1931, entitled “For a Workers’ United Front Against Fascism”, he explained: “Today the Social Democracy as a whole, with all its internal antagonisms, is forced into sharp conflict with the fascists. It is our task to take advantage of this conflict and not to unite the antagonists against us.” One must “show by deeds a complete readiness to make a bloc with the Social Democrats against the fascists” and “understand how to tear the workers away from their leaders in reality. But reality today is―the struggle against fascism.” It was necessary to “help the Social Democratic workers in action―in this new and extraordinary situation―to test the value of their organizations and leaders at this time, when it is a matter of life and death for the working class.”
[4] 77 - The refusal of the KPD to accept such a policy led to the German catastrophe.
I won't say I agree with 100% of the analysis on that page but a lot of that last part of analysis seems completely spot-on to me. And, of course, how Trotsky predicted is exactly how it played out.
Trotsky was a wrecker through and through in his later years. Any claims of wanting "unity" are laughable when contrasted with his own anti-unity wrecker behavior within the soviet union. Trotksy himself was no "Marxist genius," he believed the proletariat should attack the peasantry and hoped the developed countries would rebel and save the Russian proletariat from backlash. Social Democracy had sided with the fascists against the communists, and insodoing ruined Germany.
What Trotksy wanted happened: The SPD got what they wanted, and Hindenburg gave the seat to Hitler. Trotksy was wrong, just like the SPD was.
"The party cannot fail, it can only be failed."
Anyway, like I said I don't plan to have an extensive debate. I'll leave you with this:
jacobin.com/2021/08/hitler-sta…
Edit: Fun fact, I've actually visited Trotsky's house in exile in Mexico City.
Stalin Handed Hundreds of Communists Over to Hitler
During the 1930s, many communists and socialists from Germany and Austria sought refuge from the Nazis in the USSR. But in a shocking betrayal, the Soviet secret police handed over hundreds of them to Hitler's Gestapo.jacobin.com
So it's fair to say that the Democrats won't sue to keep other leftist parties off the ballot? They'll back leftist candidates even when it's not their "chosen" candidate? They'll actually oppose fascism rather than continue to pave the way for the facists? That they won't keep pushing more funding to facist policies and systems, and will actually dismantle the facists' tools?
Because I continuously see them do the opposite of those things.
Not really, dude. Civil rights absolutely, social security, kind of, the activists didn’t create the idea but they gave muscle to the labor movement to the point that FDR got elected in the first place and had the momentum so sure, clean air act and clean water act, you must be joking, those were just liberal government things. The things from the "clean air act" end of the spectrum are actually really good examples of why having a functioning government is a good thing even if it means “electoralism,” meaning it can’t all just be people in the streets fighting. You need both sides of the equation: The vigor and blood to push things forward, and then the paper and system to lock it in. Without either side of that, it doesn’t work.
More to the point, stop shitting on people who did good things. If you live in America, you benefit from all of the things on that list. Look for enemies elsewhere. This is the left’s favorite thing, to turn its guns exclusively on its own side, and it’s super good at it.
FDR only implemented the New Deal because social strife was intense, and the soviet union was showing an alternative. Environmental protections were only passed because the working class struggled for them, especially indigenous peoples. Policy that benefits the working class does not get handed down from benign rulers, but is something forced out of their hands.
Liberals are not on the side of leftists. Historically, for these measures, liberals have often opposed them, such as the civil rights movement. Liberalism itself has consistently been wielded in the name of countless atrocities and social injustice since its inception.
Policy that benefits the working class does not get handed down from benign rulers, but is something forced out of their hands.
Absolutely completely correct.
Historically, for these measures, liberals have often opposed them, such as the civil rights movement.
Also correct.
I still feel like someone throwing firebombs at FDR (along the lines of vandalizing AOC's office because she's "pro-genocide" if you ignore all the anti genocide she does), because he's a "liberal" and therefore an enemy and the labor movement were the ones that did all the progress, would be making an error. That is what I am saying.
Sure.
I still feel like someone throwing criticism at FDR (along the lines of vandalizing AOC’s office because she’s “pro-genocide” if you ignore all the anti genocide she does), because he’s a “liberal” and therefore an enemy and the labor movement were the ones that did all the progress, would be making an error. That is what I am saying.
like this
TVA likes this.
Yeah I think the wording needs work. Both Democrats and Republicans wanted segregation to continue, it was only after immense pressure domestically and internationally that Democrats changed their tune. The Soviets were pumping out "I thought y'all said all men are created equal in your founding documents" as part of the propaganda machine (which was a legitimate call out).
Its only after getting called out over and over again that these changes happened. That doesn't mean the people who allowed that progress to happen deserve no credit but I would give primary credit for woman's suffrage to women and the end of the American race based caste system known as segregation to African Americans. With some of them being liberals themselves and others being supporters who believed in a message of universal humanity.
TVA likes this.
like this
TVA likes this.
like this
TVA likes this.
There is a need to redefine the qord in the US. Liberals are just right winged politicians. Always have been. In the US they posed as "left", but the US doesn't have a left. You can only choose wether you get to use lube when they fuck you.
In europe the "liberals" are economically right and socially "not strongly defined". They don'tcare about people. They only care about money and free markets. They are capitalists, but they are not nazis. In the Netherlands we've had a liberal regime for 20 years. They killed most social institutions by which they've paved the road for the rise of the far right, but they are not nazis.
In europe there is no need to redefine the word. We know exactly what it means and we know the stereotypes who vote for them, they are not nazis. They are capitalists.
like this
TVA likes this.
BentoPDF - The Privacy First PDF Toolkit
I thought this would be relevant to Linux, since the options available to us Linux users are either unmaintained, hard to use, require a subscription, an account, or to upload your content to a server.
BentoPDF is the opposite of all that.
I just hope they add a dumb-proof way to install it (PWA? Flatpak?) for easy access.
Russia/Trump demands continue to degrade to 'current frozen lines'.
https://www.newsweek.com/russia-ukraine-war-kremlin-putin-trump-10905942
like this
Rozaŭtuno, TVA, adhocfungus e ☆ Yσɠƚԋσʂ ☆ like this.
don't like this
Kami doesn't like this.
Windows 10 died a few days ago, leaving users with three options: stick with the OS, upgrade to Windows 11, or switch to an entirely different platform like macOS or GNU/Linux. But months before Microsoft dropped support for the OS, Linux-focused companies were already campaigning to poach Microsoft customers and convert them into Linux users.
The Document Foundation, the folks behind LibreOffice, started its push as far back as June this year, criticizing Microsoft's decision to end support, which would render millions of perfectly functional PCs obsolete, and presented Linux as a cost-effective and secure alternative. We have also seen initiatives like The "End of 10" Campaign by KDE, making the case for Linux and providing guides and info on how to switch.
Of all the projects trying to poach Windows users, Zorin Group might be the most aggressive, launching its biggest OS upgrade, Zorin OS 18, on the very day Windows 10 died.
In a recent post on X, Zorin Group celebrated the launch of version 18, claiming that it hit 100,000 downloads in "a little over 2 days". The company called it its "biggest launch ever" and claimed that over 72% of those downloads came from Windows.
Zorin OS 18 just reached 100,000 downloads in a little over 2 days 🎉️Over 72% of these downloads came from Windows, reflecting our mission to provide a better alternative to the incumbent operating systems from Big Tech.
Thank you for making this our biggest launch ever! pic.twitter.com/6U4h3EQ3dq
— Zorin OS (@ZorinOS) October 16, 2025
So what's the big deal with Zorin OS 18? The new version comes with a redesigned desktop that feels a lot more modern. It uses a lighter color palette and a taskbar that has a floating, rounded style by default. The developers also introduced a much better window tiling system. If you drag a window to the top of the screen, a layout manager pops up, similar to Windows 11's Snap Layouts. The main difference here is that Zorin allows you to create your own custom tiling layouts.
As for Windows app compatibility, Zorin OS 18 now includes an updated version of WINE 10 for better support of Windows software. On top of that, there's also an expanded database that helps when it detects a Windows installer. The system checks the file and suggests the best way to run over 170 popular apps, whether that means installing a native Linux version, using the web-based alternative, or firing it up through WINE.
Windows 10 didn’t “die”
Microsoft isn’t offering support for it, but their help was barely useful to begin with.
There’s a few small hoops to jump through to enroll in the Extended Security Updates program, after which Windows 10 devices will continue to be functional and secure for at least another year.
Ultimately, I’m all for folks going out and dabbling in Linux. Unfortunately, most consumers are interpreting this situation as a requirement to rush out and buy a new Windows 11 PC and that’s bad.
I'm not all too familiar with mass grave, but it does seem like a similar loophole to the win11 updates without TPM 2.0, in that it works but ms doesn't want it to, so you may run into the issue of your system bricking or ms holding your data hostage. Also as far as I can decipher ltsc only fixes the security issue, as far as I am aware the one drive push is still there regardless of version.
All in all, I believe that there are workarounds, but if ms is so keen on making it this hard to stay on win 10 I would rather just take the adjustment period to a Linux distro.
"Zorin Group" never heard of that. Seems to be a shop that just wants to lift along with the Windows 10 discontinuation tbh.
And if their selling point is running windows apps then they have no chance. You can't get better at being windows than windows already is. You'll always be one step behind the real thing.
And really you don't need to, most linux apps are much better now that windows apps are more and more dumbed down. Look at the "new outlook" for example. It doesn't even do local storage anymore, you must import all your email into the microsoft cloud overlord.
I guess it is the year of the Linux desktop for at least some people.
I've used Linux desktop in various forms for just over two decades, this has to be the fourth time it felt like Linux was having its chance to seize marketshare. Each time it ends up not being the mass adoption that people hope for but it feels like the community grows each time so I think it is neat nonetheless.
Often, when it grows past that, it can become.. unsavory.
Exactly! Like the Internet, Linux is for anybody! . . .but not necessarily everybody.
I'm all for Linux adoption. However, seeing less tech-literate people feel as if they have to choose between an unsecured device and spending money they don't have on a new Windows 11 machine really makes me angry.
Most won't understand what no more security updates mean, and some overreact and get really worried.
like this
TVA likes this.
don't like this
Kami doesn't like this.
This.
For Years, you had the Option to use Linux. Since the release of the win 11 beta, Linux has not made any relevant big steps. The leopards have simply decided to eat your face this time.
A refugee would be someone losing their home in a bombing. A windows 10 turned Linux user is more like a Trump voter turned no kings protestor because he though sending the government emails will sure stop the anti trans laws.
And no, sOmE uSeRs hAvE tO uSe WinDoWs is not an argument. If everyone who was still on windows until now was reliant on it, why are they installing and switching to Linux? Every new Linux user is someone who was simply too ignorant to install it.
I mean I switched my work computer to Linux and risked being reprimanded/ losing my job because I'm never using windows ever again in any capacity.
I feel like that's a little bit closer to a refugee lol.
Luckily so far no one has seemed to notice or care.
I worked for almost 2 years at a company with my Linux PC, until one day I requested a laptop for travel and they were shocked that I didn't had one, I asked for one with Linux but was told that that's not possible, that they only had windows laptops. I thought, okays this is temporary, as soon as I'm back from traveling I'll return the laptop and things will be back to normal... when I came back and wanted to return the laptop they said that that was my work computer that I should use for everything, I was like, "you do realize our work runs on a Linux server, right?". But nope, I had to use the Windows laptop until I quit a few months later. I knew of at least a couple other devs who were running Linux, but didn't say anything because then they would be forced to switch too, but at my exit interview I remarked that forcing me to use Windows was part of the reason I had left.
I guess my point is maybe don't make a big fuss and don't try to convince HR people about it, they just don't understand.
I work in IT (security). The reason they are so adamant on Windows at least in our place, is because it offers so many opportunities to go BOFH and lock everything down so much so the user can hardly do their job 😀 No other OS offers that, even Mac.
They think they need this to be secure. I beg to differ but unfortunately Microsoft is constantly feeding them with 'best practices' and other BS.
For Years, you had the Option to use Linux. Since the release of the win 11 beta, Linux has not made any relevant big steps.
I would argue it doesn't need to. It's pretty perfect these days as it is, especially with KDE (and the great thing about it having so much control over how your computer works and feels, Windows can never offer that).
Thats what I mean, in the last few weeks/months, there was no big thing that win users needed to be able to switch.
Linux in a vacuum is a great OS, and what it cant do in the context of Windows is more a „Proprietary formats and software being Industry standard” problem than a Linux problem.
I'm not saying that everyone should just abandon the standards , but that if you need to have these standards, nothing is going to change in a production envoirment that magically makes Linux work for you (in home you can argue about VMs and proton, but that's not a valid tactic for companies), and you need to keep using windows.
And the other way around, if you don't need any of these standards, you don't have any reason to still use Windows, except that you don't want to change.
So we're bashing the people who installed Linux now if they used something else first? What, if they've ever used windows we should send them to the Gulag? Wtf is this take? Like hey you dumb fucking person who finally figured out how to get away from the corporate software you were taught to use in high school, you are FuCkInG iGnOrAnT for putting yourself in this position in the first place!!1!
Let's not talk about the multi billion dollar industry spent locking people into an ecosystem from day 1, because blaming high schoolers and teenagers for not switching to an OS best know for running web servers is an awesome use of our time.
Speaking from experience: no one thinks about operating systems as much as we do. We are not the norm. Most people don't want to use the computer to begin with, but conceded its faster than hand writing everything. The guy who paved my driveway will never install Arch, because he only uses the computer to get paid. My office's cleaner doesn't understand how computers can even be unsafe.
When I went to primary school we had windows computers. Same thing in high school. In uni, because I did comp sci, I used Linux and found it was better for me. 350 people went through first year with me. Most of them continued using Windows, although a good chunk used Mac too. Like 10 of us used Linux. It is easier not to switch and that's not going to change. So can we stop having a go at people for not having the same interests as us, because that's the only difference.
many people will go back, but of these, i’m sure many will also come back eventually
i’ve tried a bunch of distros in my last 2 years with windows. many didn’t satisfy my needs at the time, so i stayed on windows.
but now, it’s been over a year since I definitely switched to linux, and over 6 months since i nuked (accidentally, but shhh) my windows partition. and i don’t plan on going back anytime soon.
this was so surprising to me; my favorite game (tropico) didn't have blinking tiles/polygons on my linux rig than it did on windows.
it was super strange because i put linux on my old windows laptop and it also got the blinking; but the game got better when i bought a linux-only laptop with zero proprietary stuff on it (not even the bios). go figure.
Linux is a lot better than the last few times.
It might just be 'good enough' at this point.
I agree. This time, it's actually different. Big name streamers and YouTubers are showing their support. Not just people in the tech industry, but random channels like EmKay and PewDiePie.
Linux is better than ever. Steam is a breeze. Wine support has never been better.
Meanwhile, Windows has more nasty surprises, underhanded backstabs, and security nightmares than ever before.
And updates that break hardware.
Yes, I find Linux terribly unusable on my laptop, way too many driver issues, hard to get into a secure state, and I miss apps like signal (no official build) mpc-hc (the replacements are all trash) and a functional version of thunderbird (lol at the tray icon third party implementation that just doesn't work). Etc, etc. I don't have a ton of unique needs but I do want theto work
^and this is of course with KDE, gnome is all that but with just a trash user interface. How many gestures do I need to use to make my computer treat me like an adult ffs.
It's still of course on my server (an old laptop which ironically can't be used as a laptop because at some point after some random update the login service broke and won't accept input from the keyboard lol) and other headless devices I don't have to actually use, thank god.
And you also need to trust your OS not taking screenshots of your apps or recording the text displayed onto your screen
There's plenty of links in this chain, there's a lot you need to be aware of if you're going to those lengths. Pick your battles
My os does not do that
I don't consider "wanting a secure app to be installed through first party means" to be particularly unusual. I know in Linux it's standard to just install random stuff from the internet with root. I've obviously done that myself, but for secure stuff I want first party. Making a flatpak wouldn't be hard (they probably just need to review someone else's work -- it's like an intern project)
So I went and looked it up, and signal-desktop is listed as a reproducible build, so theoretically you should be able to go and check that it conforms to the source
But this isn't anything I've looked into myself, so feel free to look into it
- Ads all over the place (and a start menu full of crapware)
- Telemetry you can't completely turn off anymore (the only thing I'd respect is a license check)
- Constantly putting edge back
- Forced MS account and removing ways to bypass it
- Cloud upsells
- Forced updates "do this within the next 2 days or else..."
- "Copilot copilot copilot"
-we heard you like search bars so we added a search bar next to the menu containing a search bar.
-open wide because here comes the unwanted update train.
-you want to do thing with file?
No, bad user. Play candycrush instead.
-that’s an impressive machine you have there. Would be too bad if someone were to slow it down with tons of bloat.
-Telemetry? At good ol MS? Never.
-oh but all the W10 menus you love are still there, it just takes a rainforest expedition to get there.
-Just buy a one drive subscription and walk away.
So, to really be sure i get it: adding two search bars is an underhanded backstab?
Now I see why I didn't get it, the definition being used is literally insane.
Please make sure all your drivers are up to date and your screen is set to the correct resolution because it seems to be that you’re missing the bigger picture.
“Underhanded backstab” being the correct expression or not aside=> W11 sucks ass imo, get mad if you want to. (Something tells me this isn’t about proper word choice for you though, but feel free to correct me on that if that is a thing you care about)
I mean your point may have been windows sucks ass but I'm aware of where I am and that's a completely uninteresting claim here. Why not rant about water being wet -- it's just as unique or interesting as your take on windows.
What I specifically asked about is underhanded backstabs, because that's a unique and interesting claim I haven't read 464335735 times before on lemmy.
Well, you’ll have to ask the person making that claim to begin with. I just added my take on the list of annoyances about W11.
I find your interest in the expression itself rather uninteresting. I do hope it goes without saying people say these things without meaning them literally.
All in all the step from W10 to W11 is such a letdown one might compare it to a backstab, underhanded or otherwise.
And with that I’m done defending an expression I didn’t use to begin with. Good day.
Well, you’ll have to ask the person making that claim to begin with.
That implies I want to argue with somebody who is sealioning.
I think a lot of people expect Linux to work like Windows, and that's why they go back to Windows, even if some stuff is easier on Linux.
Many of us probably remember times when we tried to download random applications through a web browser, because that's what Windows expects you to do. People will try that, and be confused, why stuff breaks or not work at all.
Desktops only frankly became remotely useable to normal people with recent revisions of things like kde...
Between that and software actually finally started becoming remotely reliable in like 2022-2023 for your avg windows user.
Comparing the past to now is not reliable fair.
More progress towards making things normal user friendly have happened in the last 3-5 years then the last 20.
I was one of those nomadic users, every year, since 1998 with Mandrake Linux.
I have always been in love with the idea of an open source OS, but if I couldn't game and work on it, it wasn't ready. Every year, until Valve made it easy to game on Linux.
I made the switch when Proton was released and never looked back.
My point is, every time users go back to Windows, they have their own personal reasons, but those will some day not be the truth anymore.
Gaming for me is the only thing I don't use Windows for. But for gaming I still do. Because I mainly game in VR and that's still so far behind on LInux 🙁
But I have 20 odd computers in the house so it's easy to have one with windows around (two in fact, another old one with Win 10 LTSC for programming some old radios).
I love KDE for all the options it gives 🫶 I don't like Gnome, Systemd and all the other redhat influences but they are easy to avoid these days.
Because I mainly game in VR and that's still so far behind on LInux 🙁
This is a major sticking point for me too. I've got a dusty Win10 partition I haven't booted in ages, and I was keeping it around mainly for VR, but then Microsoft had to go and just extinguish that too.
Monado is making impressive progress but it's a huge pain because they have to reverse engineer stuff with zero help from the manufacturers, instead of simply interfacing with the hardware.
I refuse to let Meta have any of my money though. I hope a good affordable VR kit comes out that isn't another hyper-proprietary blackbox.
I've been trying to switch to Linux for at least 5 years.
I wouldn't say it's any better now than it was then.
I desperately want to love Linux, but it fights me at every step of the way.
As a media pc...
I have had zero success using it as a media pc. My one requirement is an on screen keyboard, but it doesn't come with one, and all the offerings I've found are shit. They won't work in some windows, or at all.
As a laptop...
This has been the most successful. I've not had any real issues with Linux on various laptops, other than finding replacements for certain windows software, but that's not really a Linux problem.
As my main pc...
Gaming has been fine. Hdr has only really recently become a thing, and it seems fine.
However, I'm constantly coming across stupid things are ARE a Linux problem.
Downloading and installing software has too many methods. I understand downloading a file to install something. I understand downloading a script to install something. I even understand why you'd need to make that script executable before it'll work.
I don't understand what to do with a bunch of random files that claim to be an installer but don't seem to have an install script or a .deb package.
I don't understand why once I map/mount a network drive, it fucking disappears after a reboot and needs to have the mount process be automated at every reboot.
Linux is just hostile to users. And while it is, it'll never massively succeed.
LTSC is a much better option.
Same. I loathe Linux. I've been trying to use it since I was 19, periodically installing one distro or another, and I hate it. I absolutely hate it. I'm not saying it is bad or anything but I do not have the patience to fight with an OS over every tiny thing or having to look up a guide for every installation or having to double check what will work and won't because you're going to need a container.
Linux, I'm sure, is great but it's also one of the least user friendly operating systems out there, regardless of Distro. I keep trying to use Linux Mint and it keeps driving me up the fucking wall. Either Linux supports nothing without a battle or nothing supports Linux without a battle and I'm not remotely interested in fighting with my PC to do something simple. The second that that shit gets sorted is the second I'll be fine.
Each person knows what it feels more comfortable with.
Linux is not inherently hostile, it just has a very different way of doing things that what you're accustomed, so you perceive it as hostile. It is sometimes easier for someone who never touched a computer to learn Linux that someone who grew with Windows to unlearn the habits.
There's nothing wrong with feeling comfortable in Windows, it's the system you grew up with and know how to work with and maintain.
Windows, starting with 8, is inherently hostile to its users in ways that are very difficult or impossible to mitigate. It's a black box of complicated machinery, a lot of which is trying to spy on you, steal your data, show you ads, upsell you on their stupid cloud services so that they can steal more of your data, etc. At this point, disabling all of this is really difficult and unreliable.
Linux on the other hand is like a box of spare parts that you can build whatever you want from. You really do need to read the manual, or else whatever you build will look and work like shit. However, if you do build something good, it's yours now in a way that a proprietary OS never will be.
Thanks for the opinion Bill.
For anyone wondering, linux offers over a dozen virtual keyboards and btw they aren't called on screen keyboards. All of them work great. And lots of distros come with one included.
You are the exact personification of why Linux won't catch on, and Linux users are seen as mlady neckbeards.
On screen keyboard is a descriptive term. You're nitpicking to sound superior.
I have tried a number of on screen keyboards and can assure you, that on my system, they do not work.
Go fuck yourself.
I understand downloading a file to install something.
That's a terrible start.
Software installation sources by priority:
1. Package Manager
2. Flatpak
(Graphical utilities like Discover unite these two)
3. AppImages downloaded from the browser
4. Rpm/Deb packages downloaded from the browser, but really should be avoided
5. ONLY IF YOU REALLY KNOW YOUR SHIT YOU CAN RUN SCRIPTS TO INSTALL STUFF
You can add other stuff like toolbox after n.2 once you've got more experience.
Your reply seems to insinuate that all the software I could ever need will be included in the package manager. That's just stupid.
I agree with your order of preference, but when I start having to scrape the bottom of the barrel to find what I need, it becomes hostile.
Your reply seems to insinuate that all the software I could ever need will be included in the package manager.
Why would I make it a list if that was true? It would be just "1. Package Manager"
That's just stupid.
If you smell shit everywhere you go....
If it's on the distros, don't fret it too much. They all do everything, it's just an initial configuration.
I have been recommending Mint specifically, as it targets the average user with a 'it just works' mentality.
Home - Linux Mint
Linux Mint is an elegant, easy to use, up to date and comfortable desktop operating system.www.linuxmint.com
Third'd
Mint or any other ubuntu-derivative distro is 10000% the move. I've been running ubuntu as my os for a while now, and I've spent nearly the last decade on linux (makes me feel old saying that lol).
The other distros have a lot of strength, but at the end of the day i want to spend my time messing with things i want to mess with. I don't want random weird issues that I have to constantly debug, and everyone can agree that stability is debian's (and therefore ubuntu's) undisputed strength
If you are new I suggest bazzite, and get lutris to install windows apps outside of steam. It takes care of most of the stuff and to install software, on bazzite you use "sudo rpm-ostree install " and then reboot because bazzite uses an ostree system, or just get it in a flatpak if available. Between bazzite and knowing how to install packages outside of the flatpak repository, that should cover most of your bases for a few years and you can learn other stuff when you have the inclination. ChatGPT is really knowledgeable about Linux since it's open source. It's often much faster than digging through forums just be specific when you speak to it.
Also if you get your setup in a decent shape, you can shrink the partition and image it with dd with a single command, and then compress it to have a full system backup, which is basically your own image. Then you just write it back with a program like etcher later if you screw up your system and then just reexpand the partition to the full drive. If you get bazzite though you won't have much need to use the terminal or install anything outside flathub which will keep you from breaking the system. Also update the system occasionally, to get security fixes once a week or two is probably fine if you don't have open ports to run a server and aren't running random software.
Is this satire?
Seriously, if I was new to Linux, coming from Windows, asking for a cheat sheet or Linux for dummies manual, everything you wrote would sound like absolute gibberish to me.
If this was someone's response to me when asking for advice I'd immediately reinstall windows where at least (from the perspective of a typical end user) they speak words that make sense.
It's the easiest way to get into Linux if you need good GPU support and I assume most people play video games. Bazzite is what finally got me into Linux because it mostly just worked out of the box which is something most Linux distros I tried before that never did. I would always end up breaking them in a day or two trying to get the GPU driver installed or something. Bazzite is really good for beginning users. Not the greatest for mid tier when you are trying to gain a deeper understanding because it replies heavily on containers and file system overlays.
Also you have to remember that for people who aren't ultra Linux nerds. It's an incredible amount of work to get Linux to work. It's often days of painful configuration and research per machine. This, and a lack of gaming support is the main reason I think most people avoid Linux, which is why I suggest bazzite, as the shit just works distro.
You shouldn't ever use rpm-ostree to install stuff with, as it can cause issues with future system updates.
First port of call should be flatpaks in the bazaar.
Second, look for flatpaks or appimages online.
Third, use distrobox to install something via a different distro and export it as a shortcut to bazzite. I use arch in a distrobox, btw.
I dont think it matters really for installing little programs. You probably shouldn't change your kernel or something. When you update the system it's just using rpm-ostree and doing a standard update through the repos, then it updates flatpaks. On the steamdeck since it's arch it will break pretty easily if you update the wrong thing, but bazzite is built in fedora.
The rpm-ostree systems is also good for anything that breaks because it's basically a snapshot system. Everytime you install something or update it creates a snapshot of your old working install which you can easily roll back to if anything breaks. You could use containers for stuff but that's not really necessary. It does probably make the system more stable in ways but then you have to deal with the headaches of using containers and having everything isolated from each other. For web services though containers are worth it as it greatly increases the security of the system.
Just ask people here, people just love anyone who switches over to Linux and want to learn about it. Because we actually love this operating system. Its so good.
When my kid started using Linux, once he knew how to start programs and install things, we went through where the files are on the file system and how to get there in a terminal. I think thats a good starting point so you understand the foundation of the system.
And then go though a basic Linux command line tutorial to learn about the common tools for listing files, filtering results, renaming and deleting files etc.
You can do that stuff in a graphical file manager too but you dont really get that understanding of how things work until you do it in the command line.
Depends on what you feel lost about, if it is the basics in general then I would suggest you start of and read about the basics here labex.io/linuxjourney they write about the very basics in a very simple way. I think they did a good job, they start of with what Linux is, what distros are to commands from the most basics as how to navigate in the terminal to more advanced combinations. They also have vms where you can try out the commands if you haven't switched yet.
If it is a cheat sheet as in commands then i would say it is better to make your own of the commands you care about but you can start of by using other ppls list like this one geeksforgeeks.org/linux-unix/l… but it can be overwhelming for you so use the linuxjouney first. Also it is very important to learn how to look up how to use the arguments in the terminal with man or -h to make it faster and less painful to use.
If you are lost about programs then there are a lot of good GitHub pages that links to useful programs and cli tools, you just need to search for awesome Linux list
Examples:
github.com/luong-komorebi/Awes…
You can use their web pages version too luong-komorebi.github.io/Aweso…
githublists.com/lists/awesome-…
Here is one for distros
github.com/kolioaris/awesome-l…
Here is an example for customizing github.com/fosslife/awesome-ri…
When looking for programs is it very important that you know what distro you are on, what desktop environment (like kde, gnome, xfce) and what window composition you use (usually Wayland or x11, x11 is older and is more compatible).
So in short start of at labex.io/linuxjourney
Then look up distros here
github.com/kolioaris/awesome-l…
For new ppl do I think Ubuntu based is best because almost everything has a Ubuntu version, when you feel ready can you test out other distros. I haven't tried bazzite, I started of many years ago on debian (a few random ones like arch and mint) and then pop os for many years and now cachyos, I liked my journey but that doesn't mean it is correct for others.
I would suggest to have all of your data you care about on a separate disk or have automatic backup of it so you can break your os without care. And if you start customizing would I suggest setting up a GitHub repo and commit your changes everytime you like what you see so it is easy to go back if you regret something.
I hoped this helped on your journey, I didn't want to overwhelm you so I hope I kept it simple enough 😁
Linux Commands Cheat Sheet
Linux, often associated with being a complex operating system primarily used by developers, may not necessarily fit that description entirely.GeeksforGeeks
If it is a cheat sheet as in commands
With most modern distros, I would say that most typical users shouldn't have to go to the command line any more than they had to in windows (which is to say very seldom).
Yet there is that lingering reputation that you have to be some sort of command line guru to even think about using Linux- and that simply isn't true. Hasn't been true for decades.
This is true, but I think it is good to know the basics because sometimes is it easier just like it can be easier in Mac and windows.
I think it is good to know about the tools you have so you can do the best decisions for your use case.
But like you said the terminal is not a must (for most) so if you feel uncomfortable about it then the terminal is not a reason to not switch to Linux.
For all their faults, LLMs are pretty damn good at basic trouble shooting of Linux. Ideally prepare context for them with installation details. Use CLI client, recommend opencode CLI, plan agent is good to inspect the commands it will plan to run and let's you inspect and think through what it is doing. Can also ask for clarifications along the way.
It's not perfect but very good.
Good luck. I jumped ship 10 years ago, you get used to it to the point Windows starts feeling weird.
Don't hesistate to reach out when you're stuck
I miss Windows 95.
That ui was so damn clean. There was basically zero bloat and everything had a place.
A computer was a tool and only did what you wanted it to. Nothing more, nothing less.
I miss Windows 95.That ui was so damn clean. There was basically zero bloat and everything had a place
You might be interested in serenity.
I remember someone on Discord server I used to be on kept telling people to "use Linux" which back then, I thought it was some scary OS for people who's tech savvy and wrote him off to be annoying. It was few years when I have my own laptop as early birthday present that I find Windows 10 annoying and remembered Linux exist so I run up a virtual machine and watch so many videos on YouTube about it. Then, I made USB-Boot and installed Linux Mint.
Far from perfect but I feel so much more comfortable using Linux over Windows, feels so much more smoother
back then, I thought it was some scary OS for people who's tech savvy
That "too hard, too scary" reputation is a big part of what has held back linux adoption.
But when people actually give it a try, most realize that reputation isn't really true.
As a Linux Noob, Linux was lot easier than I expect it to be. Think it was me having the "This isn't Windows so I might as well as research about anything Linux related" mindset which it paid off for me. It got to point where Windows is now my secondary OS (Mainly to use it to use Tomb Editor to make custom Tomb Raider levels which is annoying to get it running with Wine which I don't know how to troubleshoot at all.)
It's ironic how it's now my main OS and if you told me several years ago that I would be mostly using Linux, I would think you're talking total nonsense.
Home - Tomb Engine 1.9
Welcome to our home! The official website for TombEngine: A new, open-source game engine for building adventures for Lara Croft.TombEngine
I think installing Linux exposes you to higher severity issues, like "now it won't boot". Once you get over that initial setup, it's not much different than windows or apple.
If more computers came with it pre installed, it would be even easier for folks.
I think about half the time I've installed Linux it was fine. The other half were problems with esoteric solutions.
Still glad I made the switch.
I'm using it on my laptop as a teacher. My gaming PC with steam is linux. I see improvements in performance every half year.
Had a student want to use it. I told him he needs to dual boot. Keep his options open. Then time will tell whether he will make the great leap.
Being simple to use out of the box is NOT a bad thing on its own. We are simply used to seeing the proprietary profit-driven version, which is the path to enshittification. When something works great out of the box but you still own your machine and have access to any damn thing you want that's hidden from view by default, that is just a good product.
I've been an engineer in electronics and software for over 20 years. I have a masters in software engineering. I currently work on C and C++ code every day for embedded systems, including one that's embedded linux. The terminal is my comfort zone. Screens full of super-legible monospaced text please my eyes.
I run Linux Mint Cinnamon (btw) on every computer of mine, even my work machine, and I don't care who knows it!
I recommend it to anybody of any skill level who will listen.
It doesn't have to. KDE is a great example here. Out of the box, it's extremely simple to use, as well as familiar in look and feel to Windows. But if you want to - it gives you a lot of customization options. So it doesn't seem to lose out on anything due to being simplified by default.
And frankly, a lot of Unix software could use a similar approach. I know it's not that simple, but it helps the users greatly - particularly new ones, but experienced ones too. Perhaps this wave of Windows refugees will in some way lead to progress in this area.
That's the beauty of Linux- there are so many distros to choose from.
Something for everyone.
And if enough people don't like the existing options, you are always free to fork what exists and make something that fits your needs better.
Linux doesn't really have the profit motives that lead to enshittification.
I guess a bigger entity could try to start charging for... something... Support, maybe, but that seems unlikely to take off.
My biggest concern is the whole "removing powerful features = user friendliness!" mentality that these big tech companies have been pushing for years.
Why make users smarter when you can make software worse and charge more for it?
The dummies don't get the bigger picture, they just see "nobody needs powerful features that make things too confusing for me!" My hope is that they don't flood Linux with this drivel - profit margin or not, it's a toxic cultre that has already been created in commercial software.
Song Lyrics... Does any app (preferably FOSS) actually work on Android?
like this
Cătă, Fitik e adhocfungus like this.
like this
Fitik likes this.
apt.izzysoft.de/packages/com.d…
„OuterTune“ – IzzyOnDroid F-Droid Repository
Material 3 Music Player with local file & YouTube Music supportIzzyOnDroid Repo Browser
Fitik likes this.
oh yeah this is a fantastic language learning tool
(although it can bring up problems with tonal languages like Vietnamese, Thai, Mandarin, Cantonese, etc where the lyrics often abandon the words' inherent tones and follow the song melody instead. )
I saw this post yesterday, but haven't checked it out:
piefed.social/c/opensource@lem…
I have lrcget run on my library to grab missing lyrics each night and use Symfonium for listening and displaying the lyrics. If I need to, I go out to Genius.
like this
Fitik likes this.
GitHub - OuterTune/OuterTune: A Material 3 Music Player for Android with local file & YouTube Music support. Forked from InnerTune
A Material 3 Music Player for Android with local file & YouTube Music support. Forked from InnerTune - OuterTune/OuterTuneGitHub
GitHub - Lambada10/SongSync: Android app to download lyrics for songs in your music library.
Android app to download lyrics for songs in your music library. - Lambada10/SongSyncGitHub
Servo 0.0.1 Release
Servo 0.0.1 Release - Servo aims to empower developers with a lightweight, high-performance alternative for embedding web technologies in applications.
A brief update on the goals and plans behind the new Servo releases on GitHub.Servo
Fitik likes this.
ELI5: Is browsing on 4g/5g networks less secure than on your own wifi?
like this
Rozaŭtuno likes this.
About the same.
Mobile networks have their own security problems that wifi doesn't, but wifi has security problems that mobile networks don't.
Using a VPN does help secure your "last mile" connection but then you need to trust the VPN provider.
I would argue is less secure because there's more potential for signals to be intercepted, and you are only in control of a portion of the network (the other half being in control of your service provider)
When you're on you're own Wi-Fi you're usually much closer to your access point and in your home where you control the network (which has less range) and the space around it.
Either way the difference is minimal as both can be intercepted and attacked
Decrypting the 4g/5g network will require a key from the telecommunications company. I argue it's insignificantly less secure because a malicious actor can intercept it and decrypt it if they manage to steal the key from the company.
Practically, only your government would be able to get a copy of the key. But they'd also be able to watch your actual cable internet as well. And when your government gets interested in you then you fucked all the way up.
That depends where your VPN is.
Say you access a VPN located over seas from your phone while on mobile data. Then your traffic is encrypted and your mobile data provider (for your phone) should only see traffic to one IP address.
Say you access the same VPN while at home connect to wifi or Ethernet on a PC (or on your phone), then your ISP should only see traffic to the one IP address (that's located over seas).
Now let's say your are tech savvy enough to run a Wireguard setup and or Tailscale setup at home and make your own VPN. Then you access that from work or from overseas with a mobile phone or laptop. All your traffic should now show as connecting to your homes IP address directly, but keep in mind your home ISP provider then sees you connecting to sites like Google, Facebook, or Lemmy.
It's going to depend on what types of data you are looking to protect, how you have your wifi configured, what type of sites you are accessing and whom you are willing to trust.
To start with, if you are accessing unencypted websites (HTTP) at least part of the communications will be in the clear and open to inspection. You can mitigate this somewhat with a VPN. However, this means that you need to implicitly trust the VPN provider with a lot of data. Your communications to the VPN provider would be encrypted, though anyone observing your connection (e.g. your ISP) would be able to see that you are communicating with that VPN provider. And any communications from the VPN provider to/from the unencrypted website would also be in the clear and could be read by someone sniffing the VPN exit node's traffic (e.g. the ISP used by the VPN exit node) Lastly, the VPN provider would have a very clear view of the traffic and be able to associate it with you.
For encrypted websites (HTTPS), the data portion of the communications will usually be well encrypted and safe from spying (more on this in a sec). However, it may be possible for someone (e.g. your ISP) to snoop on what domains you are visiting. There are two common ways to do this. The first is via DNS requests. Any time you visit a website, your browser will need to translate the domain name to an IP address. This is what DNS does and it is not encrypted by default. Also, unless you have taken steps to avoid it, it likely your ISP is providing DNS for you. This means that they can just log all your requests, giving them a good view of the domains you are visiting. You can use something like DNS Over Https (DOH), which does encrypt DNS requests and goes to specific servers; but, this usually requires extra setup and will work regardless of using your local WiFi or a 5g/4g network. The second way to track HTTPS connections is via a process called Server Name Identification (SNI). In short, when you first connect to a web server your browser needs to tell that server which domain it wants to connect to, so that the server can send back the correct TLS certificate. This is all unencrypted and anyone inbetween (e.g. your ISP) can simply read that SNI request to know what domains you are connecting to. There are mitigations for this, specifically Encrypted Server Name Identification (ESNI), but that requires the web server to implement it, and it's not widely used. This is also where a VPN can be useful, as the SNI request is encrypted between your system and the VPN exit node. Though again, it puts a lot of trust in the VPN provider and the VPN provider's ISP could still see the SNI request as it leaves the VPN network. Though, associating it with you specifically might be hard.
As for the encrypted data of an HTTPS connection, it is generally safe. So, someone might know you are visiting lemmy.ml, but they wouldn't be able to see what communities you are reading or what you are posting. That is, unless either your device or the server are compromised. This is why mobile device malware is a common attack vector for the State level threat actors. If they have malware on your device, then all the encryption in the world ain't helping you. There are also some attacks around forcing your browser to use weaker encryption or even the attacker compromising the server's certificate. Though these are likely in the realm of targeted attacks and unlikely to be used on a mass scale.
So ya, not exactly an ELI5 answer, as there isn't a simple answer. To try and simplify, if you are visiting encrypted websites (HTTPS) and you don't mind your mobile carrier knowing what domains you are visiting, and your device isn't compromised, then mobile data is fine. If you would prefer your home ISP being the one tracking you, then use your home wifi. If you don't like either of them tracking you, then you'll need to pick a VPN provider you feel comfortable with knowing what sites you are visiting and use their software on your device. And if your device is compromised, well you're fucked anyway and it doesn't matter what network you are using.
like this
olorin99 likes this.
Secure against whom?
If it's from a random thief, both are about equality secure, they rely on proven cryptographic methods.
If it's from somebody powerful enough to make an ISP bend the knee, then they are equally insecure because those cryptographic methods assume you trust the underlying infrastructure. If you do not though, then yes using a VPN will help as you are adding your own level of encryption on top.
Windows privacy: AtlasOS vs Amelabs Privacy+?
- AtlasOS: atlasos.net/
- Amelabs Privacy+: docs.amelabs.net/privacy/_plus…
I use a Windows VM for apps not available on Linux and just want to cut out all the telemetry possible.
AtlasOS is installed as a Ameliorated Playbook and makes a ton of opinionated changes that aren’t privacy or necessarily performance related. Disabling the Windows 11 right click menus in favor of the legacy one, disabling window shadows, changing the wallpaper, etc. Privacy+ looks appealing, I wanna know if anyone has tried both and can tell me differences, like if one or the other improves privacy more.
Privacy+ Playbook
Completely transform your computer in minutes. Simply download a verified Playbook, or use your own, and run it in AME Wizard.Ameliorated Documentation
Oh sorry, I had heard that was fixed awhile ago but apparently not.
What I don't like about lemmy crossposts is having the whole post text inside block quotes, and sometimes isn't formatted properly. I think that and showing a link to the original post is bad design, like why would it matter if a post is a crosspost or not?
La tecnologia nel solarpunk è fatta dalle decisioni di una comunità che codifica i suoi strumenti.
Technology as crystallized community
"Ice Crystals" photo CC-BY spurekar For a few years now, I've been analyzing how technology is represented in fiction and popular culture.alxd - solarpunk hacker
Giacomo Tesio likes this.
Hamas EXECUTES Collaborators as "Israel" Violates All Terms of Ceasefire
Sensitive content
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
like this
cfgaussian, nathanboleshevik, stink, psycocan, TheTux, Cat_Daddy [any, any], Packet [none/use name], Cowbee [he/they], BassedWarrior, atomkarinca, rain_0521, FuckBigTech347, Malkhodr, PeeOnYou [he/him] e malak [he/him, comrade/them] like this.
rain_0521 doesn't like this.
I found a YouTube link in your post. Here are links to the same video on alternative frontends that protect your privacy:
BassedWarrior likes this.
[Video] Father of released captive Omri Miran says Hamas took him to the beach for fun days
Stubsack: weekly thread for sneers not worth an entire post, week ending 26th October 2025
Want to wade into the sandy surf of the abyss? Have a sneer percolating in your system but not enough time/energy to make a whole post about it? Go forth and be mid: Welcome to the Stubsack, your first port of call for learning fresh Awful you’ll near-instantly regret.
Any awful.systems sub may be subsneered in this subthread, techtakes or no.
If your sneer seems higher quality than you thought, feel free to cut’n’paste it into its own post — there’s no quota for posting and the bar really isn’t that high.
The post Xitter web has spawned soo many “esoteric” right wing freaks, but there’s no appropriate sneer-space for them. I’m talking redscare-ish, reality challenged “culture critics” who write about everything but understand nothing. I’m talking about reply-guys who make the same 6 tweets about the same 3 subjects. They’re inescapable at this point, yet I don’t see them mocked (as much as they should be)Like, there was one dude a while back who insisted that women couldn’t be surgeons because they didn’t believe in the moon or in stars? I think each and every one of these guys is uniquely fucked up and if I can’t escape them, I would love to sneer at them.
(Credit and/or blame to David Gerard for starting this.)
Stubsack: weekly thread for sneers not worth an entire post, week ending 19th October 2025
Want to wade into the sandy surf of the abyss? Have a sneer percolating in your system but not enough time/energy to make a whole post about it? Go forth and be mid: Welcome to the Stubsack, your first port of call for learning fresh Awful you’ll near-instantly regret.Any awful.systems sub may be subsneered in this subthread, techtakes or no.
If your sneer seems higher quality than you thought, feel free to cut’n’paste it into its own post — there’s no quota for posting and the bar really isn’t that high.
The post Xitter web has spawned soo many “esoteric” right wing freaks, but there’s no appropriate sneer-space for them. I’m talking redscare-ish, reality challenged “culture critics” who write about everything but understand nothing. I’m talking about reply-guys who make the same 6 tweets about the same 3 subjects. They’re inescapable at this point, yet I don’t see them mocked (as much as they should be)Like, there was one dude a while back who insisted that women couldn’t be surgeons because they didn’t believe in the moon or in stars? I think each and every one of these guys is uniquely fucked up and if I can’t escape them, I would love to sneer at them.
(Credit and/or blame to David Gerard for starting this.)
Simon Willison writes a fawning blog post about the new "Claude skills" (which are basically files with additional instructions for specific tasks for the bot to use)
How does he decide to demonstrate these awesome new capabilities?
By making a completely trash, seizure inducing GIF...
simonwillison.net/2025/Oct/16/…
He even admits it's garbage. How do you even get to the point that you think that's something you want to advertise? Even the big slop monger companies manage to cherry pick their demos.
Just felt like I got an aneurysm there.
(in unrelated things, first)
Claude Skills are awesome, maybe a bigger deal than MCP
Anthropic this morning introduced Claude Skills, a new pattern for making new abilities available to their models: Claude can now use Skills to improve how it performs specific tasks. Skills …Simon Willison’s Weblog
The idea that AI will be a boon for searching the mathematical literature is undermined somewhat by how it shits the bed there too.
In March 2016, someone conjectured on math stackexchange, in a 1-point question, that “Any entire function without zero is constant”. People quickly responded with the obvious counterexample of the exponential function, and explained why the OP’s argument failed.But in October 2025, if you do a Google search for “non-zero complex function” its AI nonsense tells you, based on that obscure math stackexchange page, that:
“... a key theorem states that any entire (differentiable everywhere) function that is never zero must be constant, often written as f(z) = e^g(z) for some other entire function g(z), notes MathOverflow and Mathematics Stack Exchange.”
FFS Google, turn off this garbage generator and just link to entire pages people can read and assess for themselves, and which (if you put some effort into making your ranking algorithms work *against* the SEO spam and the AI slop) might have a decent chance of being accurate.
Closely related is a thought I had after responding to yet another paper that says hallucinations can be fixed:
I'm starting to suspect that mathematics is not an emergent skill of language models. Formally, given a fixed set of hard mathematical questions, it doesn't appear that increasing training data necessarily improves the model's ability to generate valid proofs answering those questions. There could be a sharp divide between memetically-trained models which only know cultural concepts and models like Gödel machines or genetic evolution which easily generate proofs but have no cultural awareness whatsoever.
Kind of a ramble: So, I’ve been out in the wild recently. I use discord and have noticed that in most of the servers I’m in, either they have an explicit no-genAI policy or quarantined sections where genAI content is allowed. On one podcast’s server, I posted a complaint about some genAI content that was posted to the podcast’s socials, and the embed was removed because it showed the genAI content- 10/10, love to see it. On another server, I figured out that the channel was created specifically because they had a sealion problem but didn’t want to ban their sealion (it appeared to be just one).
An interesting (read: stupid) thing about this sealion was that they are a self-styled leftist that was pro-AI. I won’t try to replicate any of their nonsense here, because A) it was nonsense stemming from a refusal to believe any anti-AI data and a lack of understanding of how LLMs work, and B) I don’t want to look like I’m posting about some kind of argument I had elsewhere here in order to score internet points, as I’m self aware/anxious enough to know that I sound exactly like that right now.
They posted this recent article
 written by Peter Coffin. There isn’t much about this guy on the internet. All I can gather is that they are some kind of breadtuber or in the breadtube orbit. It’s funny (read: farcical) to see a person posing as leftist say they are “pro-AI” but “anti-AI industry”. Either they don’t understand how the technology works (i.e. ignorant) or are accelerationist, wanting both the destruction of the environment and art (i.e. wilfully stupid)
Anyway, this exploration has shown me that some leftists don’t support copyright protections. I understand that from a couple different perspectives: 1. The main beneficiaries of copyright protections are large media corporations, and 2. it can be interpreted as trying to capitalistically extract fictional value, much like a landlord charging rent. I’m not trying to debunk this (I don’t think I’m representing this well enough). My thought is that I don’t give a shit about corporations losing money, what I care about is the work of individual artists being under/de-valued. Copyrights are an imperfect method that artists use to try seek justice, so it’s a grey area for me. Coffin in the article linked paints the situation as black and white: anyone who tries to stop someone “stealing” is actually rent seeking, whether or not they are a megacorp or a starving artist. (edit) I think this comes from Coffin's "extremely pro-AI" agenda, i.e., being anti-AI is enough to be reductively lumped together under some conspiratorial pro-capitalist agenda.
End of ramble, sorry that there wasn’t much of a point or structure here. Would love to hear any thoughts that come out from reading this.
E: note that is posted as a common criticism of Coffin.
E2:
::: spoiler re: video above:
I really didn't know about this before writing that edit. I did some more reading. Coffin is something of a pick-me internet guy, his entire personality crystallised by that video. He's moved from internet trend to internet trend, one of note being gamergate, formerly anti, now pro (yes, as of 2024). He also did rap parodies? Anyway this isn't about him.
:::
Spotify’s War on “AI Theft” Is the Real Heist
When the thieves start preaching about theftPeter Coffin (P on Stuff)
[Copyright i]s not for you who love to make art and prize it for its cultural impact and expressive power, but for folks who want to trade art for money.
Quoting Anarchism Triumphant, an extended sneer against copyright:
I wanted to point out something else: that our world consists increasingly of nothing but large numbers (also known as bitstreams), and that - for reasons having nothing to do with emergent properties of the numbers themselves - the legal system is presently committed to treating similar numbers radically differently. No one can tell, simply by looking at a number that is 100 million digits long, whether that number is subject to patent, copyright, or trade secret protection, or indeed whether it is "owned" by anyone at all. So the legal system we have - blessed as we are by its consequences if we are copyright teachers, Congressmen, Gucci-gulchers or Big Rupert himself - is compelled to treat indistinguishable things in unlike ways.
Or more politely, previously, on Lobsters:
Another big problem is that it's not at all clear whether information, in the information-theoretic sense, is a medium through which expressive works can be created; that is, it's not clear whether bits qualify for copyright. Certainly, all around the world, legal systems have assumed that bits are a medium. But perhaps bits have no color. Perhaps homomorphic encryption implies that color is unmeasurable. It is well-accepted even to legal scholars that abstract systems and mathematics aren't patentable, although the application of this to computers clearly shows that the legal folks involved don't understand information theory well enough.
Were we anti-copyright leftists really so invisible before, or have you been assuming that No True Leftist would be anti-copyright?
New research coordinated by the European Broadcasting Union (EBU) and led by the BBC has found that AI assistants – already a daily information gateway for millions of people – routinely misrepresent news content no matter which language, territory, or AI platform is tested. [...] 45% of all AI answers had at least one significant issue.
- 31% of responses showed serious sourcing problems – missing, misleading, or incorrect attributions.
- 20% contained major accuracy issues, including hallucinated details and outdated information.
- Gemini performed worst with significant issues in 76% of responses, more than double the other assistants, largely due to its poor sourcing performance.
bbc.co.uk/mediacentre/2025/new…
And yet the BBC still has a Programme Director for "Generative AI" who gets trotted out to say "We want these tools to succeed". No, we don't, you blithering bellend.
Largest study of its kind shows AI assistants misrepresent news content 45% of the time – regardless of language or territory
An intensive international study was coordinated by the European Broadcasting Union (EBU) and led by the BBCwww.bbc.co.uk
App e servizi in down per malfunzionamenti AWS: interessate Canva, Alexa, Fortnite, Prime Video e altri
Lunedì 20 ottobre 2025 un maxi-down ha colpito numerose piattaforme globali a causa di problemi ai server di Amazon Web Services (AWS). Il disservizio, partito dal cloud di Amazon, ha generato interruzioni e rallentamenti a catena su applicazioni consumer e strumenti professionali in tutto il mondo, con oltre duemila segnalazioni registrate negli Stati Uniti e problemi di navigazione segnalati anche in Italia.
TUTTI I DETTAGLI: App e servizi in down per malfunzionamenti AWS: interessate Canva, Alexa, Fortnite, Prime Video e altri
AWS down 20 ottobre 2025: disservizio globale, app e giochi in tilt (Canva, Alexa, Fortnite)
Down AWS 20 ottobre 2025: problemi ai server anche per Canva, Alexa, Fortnite, Prime Video, Venmo e altri. Stato, impatti e cosa fare.Redazione (Atom Heart Magazine)
reshared this
Tecnologia Etica e Sostenibile: IA, Mobility,Smartphone, App, Gadget, Tablet reshared this.
Scheduled posts won't let me post images, idk why?
Are they working now? There was a AWS issue yesterday, maybe that was the cause?
@ada@piefed.blahaj.zone
Hm, sorry to hear, let's see if Ada can help
@ada@lemmy.blahaj.zone
Aggiornamento a NodeBB 4.6.1
Stamattina siamo passati a NodeBB 4.6.1, è una release principalmente di bug fixes tra cui uno particolarmente fastidioso che metteva un carattere strano 'n' nell'oggetto perdendo della formattazione dai post che arrivavano da Mastodon e da Friendica.
In realtà avevo già sistemato questo bug qualche giorno fa perché avevo aggiornato prima del rilascio della 4.6.1 e non appena avevo visto che questo bug era stato risolto ma ora ne ho approfittato per allinearci con la release stabile.
Questo il changelog:
- do not include image or icon props if they are falsy values (ecf95d1)
- #13705, don't cover link if preview is opening up (499c50a)
- logic error in image mime type checking (623cec9)
- omg what. (ec39989)
Amazon cloud platform and other websites experiencing outages
Multiple online platforms including Amazon's cloud unit AWS, Robinhood, Snapchat and Perplexity are all experiencing outages, according to the Downdetector website monitor.
ABC News
ABC News provides the latest news and headlines in Australia and around the world.ABC News (Australian Broadcasting Corporation)
copymyjalopy likes this.
Google Fonts alternative
I wish to use all those cool fancy HTML/CSS fonts without going to Google
Tip #759
iOS 版 Vivaldi でリーダービューを有効にして、快適に記事を読もう
iOS 版 Vivaldi のリーダービューは、ウェブページ上の気が散る要素をすべて取り除き、記事の内容に集中して落ち着いて読むことができるようにします。
リーダービューに切り替えるには:
- リーダービューに対応した内容のウェブページを開く
- アドレスバーの「リーダービュー」ボタンをタップする
リーダービューを終了するには、同じボタンをタップする
#iOS #vivaldi #VivaldiBrowser #ウェブページ #リーダービュー
vivaldi.com/ja/blog/tips/ios-t…
Tip #759 - iOS 版 Vivaldi | Vivaldi Browser
iOS 版 Vivaldi でリーダービューを有効にするには? Vivaldi でできることを発見してみましょう!Vivaldi Tips (Vivaldi Technologies)
today i will troll le tankies ebin style
China == Pissrael
let the downvotes roll
heh nothin personnel kid
I found the easiest way to transfer files to and from my Linux PC - and it's so fast [ZDNET]
I found the easiest way to transfer files to and from my Linux PC - and it's so fast
Once you start using QuickDAV, you'll find this simple app indispensable for easy file transfers from any OS to Linux.Jack Wallen (ZDNET)
like this
Rozaŭtuno likes this.
Þe article reads like an ad, and setting up þe server side takes a lot of steps so þe claim þat it's "quick and easy" is silly.
Distributions nowadays come with wiþ sshd disabled by default. It's, like, þe first þing an experienced user enables, but I'll bet a ton of newbs never do it, and may not know how. I've even come across distributions which don't install OpenSSH by default! Insanity.
þe article implies configuring NFS or samba is harder... and I'd agree. Home LANs are often not enterprise-grade, wiþ nodes connected over unreliable and relatively slow WiFi, and NFS has several moving parts and is chatty. Samba/CIFS is better for reliability, but requires a fair bit of knowledge to configure. And when it does fail, you can be left wiþ zombie processes and hung network connections. Scp is better for straight for transfers.
Not all users are aware þat þere are Android clients which understand sftp, and not all newbs are aware þat you get free sftp wiþ sshd, or þat sshfs exists.
People keep inventing more LAN filesharing apps when ssh/scp/sftp already exist, so þere's a need ssh isn't filling. Maybe it just needs a custom app, alþough I'm fond of apps like Material Files + sftp remotes for Android, and sshfs for Linux.
However, by far þe easiest is þat I set up SyncThing ages ago and haven't had to manually copy a file since. Þe exception is music, because I don't want my entire library on my phone; I now use Subsonic + Tempo and a "mobile" playlist which Tempo syncs, but getting music onto þe server requires sftp, and just getting a directory listing is painfully slow. If Subsonic had a file upload API, bidirectional playlist syncing would provide iTunes-like music library maintenance, which was darn near perfect design.
Anyway, I agree: solutions like QuickDAV keep popping up probably because people don't know about better options.
So its basically syncthing?
But that its not able to decide who gets whick file as there is only one option to log in in QuickDAV?
But maybe more intuitive?
kdeconnect-cli with e.g. kdeconnect-cli --share myfile.txt so don't think you are stuck with a GUI to use KDEConnect.
You can send entire folders from Android/iOS just fine with a normal file browser.
Downloads for all platforms: kdeconnect.kde.org/download.ht…
Download
KDE Connect: A project that enables all your devices to communicate with each other.KDE Connect
for one time transfers (e.g. friends phone) I use warpinator.
if I own the device I use scp/rsync.
to keep files in sync I use syncthing
I just install openssh server, because I need it anyways, and use an SFTP client to transfer files. Seems to be fast, secure, and easy. No new ports to open up.
I've transferred many terabytes of data this way, no complaints. Rsync is nice for syncing huge folders, and walking away, so I'll also use that when the need arises.
SSH Pilot - SSH Connection Manager
User-friendly SSH connection manager with integrated terminal and SFTP clientsshpilot.app
You’re strawmanning their comment— I’d imagine they’d have the same, if not more, issues with snap.
Flatpak doesn’t integrate well with all systems. For me personally, on Arch, I have to update and store Flatpak versions of some dependencies, like proprietary Nvidia drivers, separately from the rest of my system and its package management system. And it does take up some space to store the runtime too.
Also Flatpaks may require some extra set up and/or workarounds due to their sandboxed environment. That’s not inherently bad and has some big security upsides, but it’s a consideration.
Also I don’t know how well it plays with immutable distros, but I’d imagine there may be similar integration issues there, too.
It’s still probably a lot easier for devs to have a consistent distribution format though, and they are typically more secure, so I’m not saying there’s not merits to only providing a Flatpak. Just pointing out that your reply here was misguided, imo.
Printers leave a watermark on each page indicating the exact printer that it came from. Are there any other examples of these privacy violations that aren't common knowledge?
like this
eierschaukeln, TVA e adhocfungus like this.
Banks can track each banknotes serial number when you receive them from the ATM and when they are returned from the store you spent them at. This data could then be used to create a complete profile of your spending habits.
heise.de/en/news/Bill-tracking…
Bill tracking: Increasing cash tracking worries data protectionists
If the serial numbers of banknotes are stored together with time and place of issue and this data is recorded steadily, the anonymity of cash is lost.Stefan Krempl (heise online)
like this
TVA likes this.
like this
TVA likes this.
That’s completely made up. Most bills are given out to other customers once used in a store, the amount of bills that are used once and returned to the bank would be well under 5%.
Fantastic fabricated story though. Money laundering which has been done for decades would defeat this, it’s a scary story to share that has zero basis on reality.
Bargeld-Tracking: Du hast Überwachungsinstrumente im Portemonnaie
Bargeld gilt als anonymes Zahlungsmittel. Dabei ist anhand der Seriennummer durchaus ersichtlich, welche Routen Geldscheine nehmen. Die Infrastruktur zum Bargeld-Tracking wird immer weiter ausgebaut.netzpolitik.org
Without some type of visual confirmation, it’s all noise.
On my way home from work, I grab $600 from the atm, $300 for my wife’s tattoo, $200 for me, and $100 for wife spending money.
After the appt the tattoos artists wife takes $200 and flys across country that night. I spend my $200 at the peelers, all those go to a dozen different girls and servers. My wife the next day goes shopping at an outlet mall and spends her $100 at 4 stores. The tattoo artist spends his $100 on beer.
We live on the same block and I pulled the money out across town. Who’s is the original takers purchases….?
It’s 95% noise, it’s useless unless you’re an investigator and have boots on the ground.
Again, it’s a fun story to share around the campfire though. Is it possible, yes, can it be done in actual practice, absolutely not. Not without some other information.
I ONLY give other people cash, all my other purchases are debit/credit. Like MOST people and stores since Covid
The only time this works, is if it’s targeted, and that means an investigator is doing it. An automated system wouldn’t know what to do with any of the data. You’re severely overestimating how much people spend cash around them, that’s usually when it’s plastic. People use cash in “sketchier” places.
Again, zero basis on reality, it gets “destroyed” at every step without some manual intervention.
I ONLY give other people cash, all my other purchases are debit/credit.
If you always use card payments whenever it's possible, it obviously isn't necessary to analyze your cash transactions to learn where you are because you are already disclosing it 😀
Like MOST people and stores since Covid
There are close to 2 billion unbanked people in the world. In the US, it's less than 6% nationally, but over 10% in some states.
Many people who are not unbanked also often avoid electronic payments for privacy/security and other reasons.
The cash serial number tracking being described in this thread is useful for locating the neighborhoods frequented by someone who (a) avoids using electronic payments, and (b) maybe obtains cash from an ATM (or perhaps check-cashing service, in the case of an unbanked person) in places other than the neighborhoods they live in or frequent.
There are close to 2 billion unbanked people in the world. In the US, it's less than 6% nationally, but over 10% in some states.
……
If they don’t use a bank, how are they pulling money out for it to be tracked?
See, none of it makes any sense lmfao.
The cash serial number tracking being described in this thread is useful for locating the neighborhoods frequented by someone who (a) avoids using electronic payments, and (b) maybe obtains cash from an ATM (or perhaps check-cashing service, in the case of an unbanked person) in places other than the neighborhoods they live in or frequent.
Which is useful to who…? The only time that information is useful, would be for an investigator, so… again… someone, boots on the ground, and doing visual verification. And an investigator and plenty of other useful metrics with less noise.
It
Makes
Zero
Sense
In
Reality!
The person originally started talking about spending habits, and shifted to finding criminals. Those are two whole-fully different situations that need different information points, and are also gathered in significantly different methods.
If they don’t use a bank, how are they pulling money out for it to be tracked?
One example I mentioned in my comment you're replying to is check cashing services. Millions of people in the US receive money via things like check or money order and need to change it to cash despite not having a bank account to deposit it in; this usually involves identifying themselves.
See also payday loans, etc.
See, none of it makes any sense lmfao.
I assume you didn't click (and translate) the link in the comment prior to mine which you replied to?
If you do, from there you can find some industry news about Serial Number Reading (SNR) technology.
I don't know how widely deployed that technology is, but there is clear evidence that it does exist and is used for various purposes.
Serial Number Reading (SNR) Series of Projects: Providing Cash Visibility for more Efficiencies - International Association of Currency Affairs
Submitting Organziation Name and role, if any, in the Project Glory Ltd Project owner and provider of all the software and devices/pheripherals used under the experiment.sbaxter@currencyaffairs.org (International Association of Currency Affairs)
One example I mentioned in my comment you're replying to is check cashing services. Millions of people in the US receive money via things like check or money order and need to change it to cash despite not having a bank account to deposit it in; this usually involves identifying themselves.
…
Those are done at a teller, not an ATM. An ATM requires a bank card, cashing a cheque at a teller does not. The post and everything that’s being discussed is about ATM tracking…
It doesn’t make sense when you actually understand how the system works… but of course people that don’t quite understand the system can be fooled by how it’s possible. But it isn’t, and not for the reasons you’ve suggested, as I’ve countered. It just doesn’t make sense because of all the NOISE.
Except most people use multiple cards, multiple banks etc. there will absolutely need to some visual verification to be able to ever establish a starting point. It just doesn’t work.
It’s a neat proof of concept, but in reality, that would never hold up in court.
Give your head a shake, I’ve got a bridge to sell you if you actually believe this is being used or can be used for what you claim.
Most places don't do cash back, and the ones that do tend to have a limit of like $40. Wal Mart is a bit of an exception, as they'll do $100, but you aren't getting a $100 bill from them through their self checkout. You'll only get 20's.
So if you go to Wal Mart, and you go to one of the few real people to check you out, and you ask for it back in a $100 bill, and the teller happens to have gotten a $100 in since they had started that day, and the front lead hadn't already cashed out the register since they received that $100 bill, then yes. In that case you'll get a $100 bill and will slightly fuzz up the tracking metrics they could theoretically do.
I would expect a couple hundreds back if I use a thousand dollar bill.
Still legal tender, still required to be accepted.
There’s Noise everywhere, it’s a neat proof of concept, but it’s not gonna be used for what the user claimed.
They give out $100's if you aren't a poor people.
But seriously though. A lot of ATM's will do 100's, anymore.
~~Ive never noticed this or heard that printers do that.~~
~~Is this maybe specific to the USA?~~
Edit: TIL, thank you!
It's not specific to USA... They do it everywhere - with color-printers. Don't know if they do it with B/W printers.
They claim it's to track people who try to print money, but if it were, then they wouldn't really do it on laser printers too...
If you print a photo on a regular paper, and then shine an UV-light on it, you can see it. It's mostly small yellow dots.
like this
TVA likes this.
Isn't it common knowledge? I've known about it for at least two decades...
BTW - you can easily work around it. Get someone else to buy your printer for you, or trade with someone who has the same printer... Now, they will still be able to match it to the printer, if they find it at your home, but other that that, you are free...
PS. Don't use your printer to blackmail FBI or CIA. 😉
like this
TVA likes this.
like this
TVA likes this.
Well just recently learned that some printers exfiltrate data from air gapped networks through ink cartridges.
like this
TVA likes this.
like this
TVA likes this.
like this
TVA likes this.
Cameras generally have barely noticeable, but uniquely identifiable, defects that will consistently affect pictures. So if you post a photo on your personal Social Media, and then you post a photo from the same camera on Hexbear, those two things could be connected. Just because it can happen doesn't mean it's practical, though.
I have no idea if this is what's been used with the Harry Potter thing.
The Harry Potter thing was EXIF eff.org/deeplinks/2007/07/harr…
But pictures can also be traced back to a camera based on irregularities in the camera sensor scientificamerican.com/article…
Unlike with the printers, there is probably no database of the CMOS sensor irregularities of all cameras ever made. But if you upload pictures under your government name and the take pictures with the same camera and share them anonymously, this could be traced back to you in theory.
Tracing Photos Back to the Camera That Snapped Them
A unique camera “signature” to identify online criminalsWendy M. Grossman (Scientific American)
sensor pattern noise is recognizable to an extent with pros, but usually its paired with highlight rolloff and other similar qualities. For instance, when I watch a movie, I can figure, okay, this was probably one of the arri's rather than a RED, etc. Sometimes, especially with a bit of knowledge on how/where they shot this, you can get an even better idea, close to a specific model. Of course if you're watching an actual movie, this is all after color correction so its more obvious if you have the raw files.
anyway, my point is, people who work with the cameras and files can definitely have at least a good idea of what camera something was shot with, but you'd really need a huge database and computers to do the work to match it exactly. I have colleagues that will show me something they worked on, with cameras they don't own and between the group of us, someone can immediately spot what camera it was shot on. but! like you said, if you post pictures on the internet, and then more pictures/videos with the same camera elsewhere, yeah it should be theoretically possible to match them with sensor noise pattern. they could at least prove its the same model. i'm not sure how much it differentiates between same camera models, but i can recognize my camera models dnp easy peasy. i have not had any caffeine yet so this is likely a jumbled mess of a thought and i apologize.
And they can do that based on the way your write text posts too, so probably not worth worrying about camera sensor fingerprinting too much.
Just don't post about your insurrection plans on public forums in general, with or without photos.
That's the obvious one. But you can also add data to images by adding tiny values to the pixels, it'll still look the same to us (same as printer tiny dots).
I don't know if phones actually do this. Just saying it's possible.
But many uploading sites optimize the images, so it'll be gone on reshare, but they could get it on first upload.
Even without EXIF data I would bet the actual encoding of the image will be identifiable to a specific instance of the camera software.
Similar to how websites fingerprint your browser by rendering something in the canvas or webgl and sending back the rendered image. The exact same rendering procedure will produce slightly different images for each browser instance. I suspect browsers are fully aware and complicit in this because why the actual fuck would they not make the rendering engines deterministic to their inputs?!
In that case, looks like they didn't remove the EXIF data.
Apparently! Just looked it up and reports presently say that the Serial Number of device was found to be 560151117 from EXIF data. Camera make : Canon Rebel 350 (also known as the Canon EOS 350D or Canon Digital Rebel XT);
To be clear, this is not about EXIF data (which is its own problem).
Digital cameras can be fingerprinted from the images they produce, due to variations between pixels in any given sensor. If you're concerned about an image being traced back to your camera, you might consider some post-processing before distributing it.
No... But i've thought about how easy it would be to implement in ebooks and pdfs (e.g. my daily newspaper i can download as pdf). I've thought about this when sailing the high seas.
Is it a thing?
No where does it state that customer data is being sent to Amazon. And neither that the technology is implemented in Amazon TVs.
Thanks for giving false info or inaccurate source.
At launch (in 2021) the FireTV was not on the list of Sidewalk-enabled products, but given the fact that Sidewalk was enabled without user consent on many existing devices (and has been found to re-enable itself after being disabled) combined with the fact that FireTV devices all have at least the necessary bluetooth radio (even if not the LoRA part, Sidewalk can use both/either) and thus could become sidewalk-enabled by a software update in the future... I would still say that Sidewalk is a reason (among many) to boycott FireTV along with the rest of Amazon's products.
The takeaway that Amazon built their own mesh network so that their products in neighboring homes can exfiltrate data via eachother whenever any one of them can get online is not false.
Amazon Sidewalk, going live today, affects Echos but not Fire TVs — What you need to know and how to turn it off
Amazon Sidewalk is a new system that is being activated today across millions of Echo smart speakers and a few Ring devices. It allows those devices to actAFTVnews
I hate this.
I'm still driving a '99 vehicle and the most advanced thing about it are the power windows. I dread upgrading to a vehicle that can break in so many new ways. I hate that everything has touch screens and the software on many is awful and if it breaks, surprise, you have no music in your car now.
You’ll be surprised, they take snapshots at certain points. In a collision all vehicles will store last 5 or so seconds of data, speed, see if brakes are engaged, stuff like that, it’s all used in collision investigations. There’s not a single car I think that’s doesn’t do this. As I said, it’s in some form, but your vehicle does know if you’ve sped if it has an obd on it.
What do you think basic OBD stuff is? It’s all that information and that’s used to see if anything’s wrong with the vehicle.
No, even ODB from the 70s records you max reached speed, if you’ve hit the governer/rev limiter and how many times.
It’s nothing modern, modern just does it more frequent, more situations, more information, more data points, and mandatory black boxes.
And many vehicles from 2000 onwards have dedicated EDR boxes, what make and model and trim is your 2012?
So sounds like you don’t quite know what’s going on under your hood there ;)
Earlier this year during the CCC security conference it was revealed that the tracking info of 800k Volkswagen cars was publicly accessible...
The talk is available in English as well I believe: media.ccc.de/v/38c3-wir-wissen…
Wir wissen wo dein Auto steht
Bewegungsdaten von 800.000 E-Autos sowie Kontaktinformationen zu den Besitzern standen ungeschützt im Netz. Sichtbar war, wer wann zu Hau...media.ccc.de
A lot of stores track your movement through the store with the WiFi or bluetooth your phone sends out, unless you have that turned off. Since it's "anonymous" not even stuff like the GDPR requires to notify anyone of this.
Also that's going to get way worse
Scientists Can Now Use WiFi to See Through People's Walls
Researchers at Carnegie Mellon University can now map human bodies through walls using WiFi signals. This won’t get creepy.Tim Newcomb (Popular Mechanics)
Though, they do annoy me when they say I should have left it outside. They do annoy me a lot.
Not really. It doesn't really rely on MAC adresses, it relies on your phone to constantly blast out "IS ANYONE HERE $HOME_NETWORK_NAME?" (or bluetoothely named "DYPROSIUMS AIRPODS!???") and it just catches that and then uses classic triangulating to see where you are. They all do that to quickly connect to WiFi without you having to actually type in the SSID because that shits for nerds.
Would or is also a really good way to sniff WiFi passwords. If anybody says "Well yes, I am indeed $HOME_NETWORK_NAME" your phone just hands them the password. It's probably wrong for THAT network but it does mean you can just collect a whole ass batch of home wifi passwords.
Especially given how many people don't change shit about their ISP-provided network if you just cyle $common_standard_wifi_names you're off to a good start to be able to easily infilitrate half your cities WiFi.
Tons of websites record your mouse, keyboard, and scroll activity, and can play back exactly what you saw on your browser window from its backend dashboard as a video. This is called session replay. There are pre-made libraries for this you can import so it's super common, I believe Mouseflow is one of the biggest providers.
When a mobile app, Windows app, or even website crashes nowadays, it automatically sends the crash dump to the app developer/OS vendor (the OS often does this whether the app requests it or not because the OS developer themselves are interested in what apps crash and in what ways). We're talking full memory dump, so whatever private data was in the app's memory when it crashed gets uploaded to a server somewhere without your consent, and almost certainly kept forever. God help you if the OS itself crashes because your entire computer's state is getting reported to the devs.
Your phone's gyroscope can record what you say by sensing vibrations in the air. It may or may not be something humans will recognize as speech if played back because the frequency range is too limited, but it's been shown that there's enough information for a speech recognition AI to decode. Good chance the accelerometer and other sensors can be used in the same way, and using them together will increase the fidelity making it easier to decode. Oh did I mention no device has ever implemented permission controls for sensors so any app or even website can access them without your consent or knowledge?
Though iirc a system crash report can include a kernel dump, which can contain things like private keys.
Though realistically, Microsoft controls your OS. They could easily add code to allow them to grab whatever they want from your system without any logging (by your system anyways).
That actually makes me wonder if there are any apps that run on both a system and the router that system is connected to to determine if the internet traffic as reported by the system (to the user) is the same as what the router sees as a way to detect anything using network resources but bypassing the normal network stack.
Though realistically, Microsoft controls your OS
They most certainly do not.
Yeah, sorry, I meant for anyone worried about windows crash reports.
Microsoft controls your windows OS.
Correction: GrapheneOS has implemented permission controls for sensors. It also has sandboxing and permission scopes to prevent many of those leaks.
However, Graphene is not available to everyone, and it's still problematic due to bystanders/passerby.
I've wondered for a while if something like this is why Google allowed their bootloaders to be unlocked, because they can get at everything anyways.
And I bet that if that was the case, they've backed off that for future phones because of those stories about law enforcement seeing having those phones as suspicious, which could hurt sales, since I bet the majority of pixel users don't switch operating systems.
They run a mini Linux distro and you can ssh or tyy into them if you have a serial port. They have access to much of the hardware but usually over something like a serial interface but still can inject code and stuff. They are a completely secret self-contained computer and I don't even think they get updated for security. They could easily be hacked by anyone probably mostly government regimes. There is only a few companies that make them and they are ultra secretive and protective over them. This is the main reason it's nearly impossible to get an open source phone. Arm is proprietary, modems are proprietary. They run blobs. I have probably the one phone in existence that can run an open source modem firmware, and interestingly I have figured out that there is basically no security whatsoever on the cell networks. (Monopolies gonna monopoly) So that might be one reason they are so secretive about it, another reason is because they don't want citizens being able to just have open source radios that they can't easily hack or sell to drug cartels or something.
It does have complete access to your mic and Bluetooth and other stuff since they share buses, it has access to all your data being sent. It can record phone calls. It can triangulate your position. It can even imitate other modems to pick up people's messages and calls, which means not only can it spy on you but also it can spy on other people around you. I don't think it's really possible to disable these things completely outside of physically cutting power. They boot up with the phone and can probably run even when the phone is powered off since it's a self contained system, often with a direct connection to the battery.
Between Bluetooth, and cellular modems, they have basically complete access to many bands around you, as well as sensor data and sound and video, and with satellites recording the entire planet, they can trace anyone who doesn't have a device back in time anyways. Cell towers can triangulate you as well and do. It's part of location services in all phones now. The modems can connect to almost any towers at least for "emergency purposes".
Basically the only place that's safe now is inside your own head but even that's becoming unsafe because of AI that can read your facial expressions and infer your mental state.
The ways they get around the legalities is originally with the eyes programs, where countries would spy on their allies citizens to escape domestic laws like those pesky constitutions, but nowadays they just literally sell everyone's personal data to the highest bidder, international or domestic. The CCP can buy this I do just as easily as Black Rock can, not that Black Rock is or every was an American company. These are international corporations that exist outside of the idea of a state.
It's also not the CIA or NSA spying on you, but private companies. Even the people in the CIA and NSA aren't allowed to know about the extent of the true intelligence apparatus which is completely secret, outside the law, and contained entirely in international corporations. The entire Internet has been saturated with bots since 2001 or something probably. The internet is just a massive psyop and propaganda program. The average person in the 90s would be horrified at the opinions of common people today. Nukes are also probably not real. Just a way to scare people into believing Russia and America and China are actually enemies while they partial up and nationalist culture that doesn't want to give all its resources up to the international secret world management and finance corporation. Fiat currency too is a giant scam to make sure the working person never acquires wealth, and has to work forever, and corporations and wealthy humans who's names will never be spoken publicly, can own anything and have unlimited leverage and I finite money without ever having to work or produce anything of value. The text books in nearly every school in America are made by a company in Israel who was co-founded by glisten Maxwell's father. The left in U.S politics is fake, and the whole social justice warrior movement was a clever psyop to push all the countries further right wing run by internationalist corporations btw. 25% of Americans are addicted to legal amphetamines, more on other drugs like weed which reduces people's ability to understand what's real, Md nearly half of working age people in America cannot or won't find work. Wages have been dropping for decades and now IQs are dropping. Most of human genetics have been completely ruined, as we as humanity has destroyed nearly every honest, principled and empathetic human on the planet for profit.
I sometimes wonder if they are even actually real but all the hysteria around them is definitely manufactured. I do think all these countries get together like the U.S, Russia, and China to pretend to hate each other so they can justify having huge national security states and surveillance networks and trillions of dollars in defense spending. I think once you get into their club there is no such thing as borders or nations, just psyops to keep the common people controlled and on the plantations of capitalism or authoritarianism. It's not just me by the way but this used to be the common opinion of nearly everyone, even people like Dwhite D. Eisenhower, who was the supreme commander of the entire allied forces during WW2. Not that you will really find any of that information today. They have been scrubbing the internet of any and all references to real history and expanding copyright every year so they can carefully control what kind of information is available to the public.
Yes it sounds crazy but it is also much closer to the truth then what you believe. This is why people in the news media started wearing brightly colored ties now. They are clowns. They are actors. The president doesn't have any power, he is just a clown to distract the masses. The state has no power. It's just a police force for the rich to steal all of our labor and keep us from overthrowing them. Why would the CIA do anything when they have to comply with all the regulatory and transparency laws, when private companies can do it better without a need to keep records? That would be stupid at this point. I don't buy any of it and I know enough real history to realize what's going on. Yes nukes are fake, maybe they actually exist in some rusted pieces of crap somewhere built 60 years ago, but no the rich can't nuke the whole world just because you don't want to worship them.
Yes the pinephone has an open modem firmware you can install, but in order to make the pinephone slightly usable you need to have phosh, because KDE is way to slow. It's not a device that's easy to use unless you are comfortable with tweaking, and are tech savvy. It also has some issues, like a small battery and heavy energy use. Mobian with phosh helps a bit here, but it's just not really a good replacement for android phones rn. The hardware is slow because there isnt really any open hardware with documentation that exists.
There is a few android phones that you can install Linux onto that are better but you have to deal with the headache if googles bullshit and Qualcomm and mediateks bullshit in terms of bootloaders and stuff.
I'm working on my own fork of mobian for the pinephone specifically that will hopefully make it more usable as an everyday device, but it's 4g only so it only really has a year or two left of life. In a few years we will hopefully see better open phones since there is a real market opening up for them, with the desolation of android by Google.
For audio recordings, there is usually a trace of electric hum in the background that has enough randomness to yield info on when (and sometimes where) the recording took place.
It's not as much of a privacy violation as a privacy vulnerability, but it's still relevant.
technologyreview.com/2024/02/2…
WiFi-based human motion detection through barriers
How Wi-Fi sensing became usable tech
After a decade of obscurity, the technology is being used to track people’s movements.Meg Duff (MIT Technology Review)
tanto programming con poi il malo svegling causa la quasi gran morte dell’octt… (stavo per svenire alzandomi troppo veloce stamattina)
A causa del mio terribile ma solito infognamento di fine settimana, stavo per scherzare sul fatto che troppo programming, con poco gaming e soprattutto niente reading e writing, fa male alla salute… Perché si sta ore fissi davanti al PC, a fare i conti con testi bizzarri in linguaggi decisamente poco umani, per poi andare […]
 octospacc.altervista.org/2025/…
tanto programming con poi il malo svegling causa la quasi gran morte dell’octt… (stavo per svenire alzandomi troppo veloce stamattina)
A causa del mio terribile ma solito infognamento di fine settimana, stavo per scherzare sul fatto che troppo programming, con poco gaming e soprattutto niente reading e writing, fa male alla salute… Perché si sta ore fissi davanti al PC, a fare i conti con testi bizzarri in linguaggi decisamente poco umani, per poi andare a dormire incazzati pensando ancora a quella roba (o meglio, quello che non si è fatto), e poi la mattina dopo, ancora prima di riprendere conoscenza (!!!), si pensa automaticamente a quello, e quindi ci si sveglia subito con un bel mal di testa, solo per poi (dopo colazione eh, ma comunque) andare ad incollarsi di nuovo davanti al PC per continuare l’effettivo programming… 😭Tuttavia, ecco, non immaginavo affatto che il lievissimo mal di testa di 1 o 2 minuti ieri fosse solo il tutorial, mentre l’effettivo momento non epico fosse un ben più lungo (5 minuti???) calo di energia vitale (di pressione, probabilmente, dato che all’effettivo la sensazione è simile a se mi rubano il sangue… tanto sangue) che boh, non mi spiego!!! O meglio, me lo spiego nel fatto che è colpa del programming, per cui scrivere tutti quegli incantesimi così forte assorbe una quantità assurda di energia magica, e quindi succede questo… anche perché, sennò, davvero non si capisce come mai io abbia percepito questo genere di scherzetti solo in queste ultime due mattine, quando guarda caso solo in questo fine settimana ho fatto granché programming, i giorni prima no. Ho già pure dimenticato metà dei sintomi, ma è veramente una cosa assurda, ad un certo punto mi si sono pure ammosciati i 5 sensi, mentre stavo sul divano sperando di non cadere all’aldilà proprio oggi… 🤢
A parte gli scherzi, probabilmente è solo che mi sono alzata troppo di botto dal letto, senza nemmeno accorgermene, e dunque sarà accaduto appunto un calo di pressione… ma il punto è che non me lo spiego così forte, al punto che stavo quasi per cadere per terra ad ogni passo, ad un certo punto dal bagno al divano. Vero è che stanotte ho dormito solo 4 ore circa, perché come ho detto il programming fa male anche solo nella misura in cui offusca la mente di pensieri — riguardo la cosa stessa, o che portano la mente a vagare su altre cose, spesso non buone, come il dolore esistenziale di sottofondo — impedendo di addormentarsi serenamente ed efficientemente, e quando mi sono alzata è stato avendo notato che avevo ignorato la sveglia per 20 minuti e quindi ero in ritardo, però insomma… 😵💫
A me comunque pare di non essermi alzata in modo fisicamente meno calmo di altre mattine, ma a questo punto mi viene il dubbio… E se normalmente io mi alzassi con abbastanza calma, ma proprio ieri matttina il programming mind virus mi ha fatta uscire dal letto di fretta per via delle cose da continuare (e non ho avvertito gravi effetti solo perché avevo dormito 9 ore buone), mentre stamattina ci si è messo il tempo tiranno a mettermi fretta? Però, mannaggia a quel gran zio delle pere fritte… se il mio corpo è in uno stato tale che poco mi manca per svenire se mi alzo troppo velocemente, per quale cazzo di motivo le mie gambe me lo permettono??? Con lo stato mentale in cui sto la mattina presto, io certamente non mi posso ricordare di alzarmi piano piano sennò muoio, quindi preferirei che ci fosse un meccanismo di sicurezza automatico… (Anche se, qualora ci fosse, probabilmente pure me ne lamenterei, perché “come è possibile che non riesco a muovere le gambe? e se arrivano le bombe israeliane anche nella mia città e devo scappare come faccio???“… vabbuò.) 🐥
pignio.octt.eu.org/item/105934…
#mattina
State of the Bird September 2025
State of the Bird September 2025
The State of the Bird is a recap of what has been happening in the project.
You can find the previous posts via the #state-of-the-bird tag.
Retrospective
Our last State of the Bird was September 16th 2025 and can be found here.
This State of the Bird is a bit late due to a number of reasons, the biggest of which is that Gary kept forgetting to finish it. Also the Charts plugin in Discourse got broken so we started looking at alternatives but luckily the plugin got fixed and we now have some code to automatically gather some of the metrics.
Metrics
We have a number of metrics we keep an eye on which you can see below.
Contributors
The number of contributors continues to fluctuate a bit, but that's expected for a volunteer project.
If you're interested in contributing you can find some documentation here including ways that don't require knowing how to program.
[chart type="bar" backgroundColors="#db3a83,#e76a2a,#4cdc8b" title="Contibutors" xAxisTitle="Time Frame" ]2025-04 | 2025-05 | 2025-06 | 2025-07 | 2025-08 | 2025-09Developers | 2 | 2 | 2 | 2 | 1 | 2 |Crazy Patch Writers | 0 | 1 | 0 | 0 | 1 | 1 |Casual | 0 | 1 | 1 | 0 | 1 | 0[/chart]
Review Requests
Review requests are what we call our code reviews and is the way that all code is accepted into our code bases. This is a look at how many were open and closed each month.
[chart type="bar" backgroundColors="#db3a83,#e76a2a" title="Review Requests" xAxisTitle="Time Frame" ]2025-04 | 2025-05 | 2025-06 | 2025-07 | 2025-08 | 2025-09Open | 44 | 26 | 20 | 42 | 61 | 48 |Closed | 43 | 22 | 25 | 39 | 57 | 56 |[/chart]
Issues
This is a look at the number of issues that were opened in our issue tracker as well as how many were closed by month. We don't create issues for everything we do, this is still good to look at as it will include bugs and other issues users have brought to our attention.
[chart type="bar" backgroundColors="#db3a83,#e76a2a" title="Issues" xAxisTitle="Time Frame" ]2025-04 | 2025-05 | 2025-06 | 2025-07 | 2025-08 | 2025-09Open | 16 | 6 | 11 | 11 | 16 | 6 |Closed | 6 | 5 | 10 | 3 | 11 | 7 |[/chart]
Commits
This is a break down of commits to each project per month. In most cases a review request is just a single commit, but this chart helps to see what projects are being worked on.
As you can see, Pidgin 3 activity continues to dominate everything else.
[chart type="bar" backgroundColors="#ed207b,#9eb83b,#e5bb13,#0088cc,#b3b5b4,#8c6238,#231f20,#f1592a,#ffea61,#bf1e2e,#0088cc,#57e389,#7f007f" title="Commits" xAxisTitle="Time Frame" ]2025-04 | 2025-05 | 2025-06 | 2025-07 | 2025-08 | 2025-09 |Pidgin 3 | 28 | 15 | 10 | 25 | 51 | 46 |Pidgin 2 | 0 | 0 | 4 | 0 | 2 | 0 |Gaim 3 | 0 | 0 | 0 | 0 | 0 | 0 |GPlugin | 0 | 2 | 0 | 4 | 0 | 1 |HASL | 0 | 1 | 4 | 2 | 0 | 0 |Birb | 0 | 5 | 0 | 1 | 0 | 7 |Xeme | 0 | 0 | 0 | 1 | 0 | 0 |Ibis | 11 | 0 | 0 | 0 | 0 | 2 |Hiya | 2 | 0 | 0 | 0 | 0 | 0 |Myna | 0 | 0 | 0 | 2 | 0 | 0 |Seagull | 0 | 0 | 13 | 3 | 0 | 1 |Traversity | 0 | 0 | 0 | 0 | 0 | 0 |retro-purple | 0 | 38 | 48 | 0 | 3 | 0 |[/chart]
Infrastructure
No new updates here.
#pidgin3
Pidgin 3 is our next generation universal chat client whose goal is to give you the best experience possible when using modern chat networks.
Retrospective
Lots of work on Pidgin 3 this month including a new application icon! Feel free to discuss it at discourse.imfreedom.org/t/new-….
The big work this month that we were trying to get into the release was that we're completely overhauling the account setting and user splits APIs. However, this had some dependencies we didn't expect related to the credential providers using the account username to keep track of accounts. Needless to say, this wasn't finished for the 2.93.0 release, but we're going to keep chipping away at it.
Another huge thing we finished this month is the start of the migration guide for developers. This was a huge undertaking and still needs to have all the user interface stuff added to it, but it's still a huge milestone. It can be viewed here. We need to finish the architecture documentation too which will help fill in some of the finer points that aren't covered in the migration guide.
Also as previously mentioned in the Experimental 4 release announcement, we now have a setting for toggling light/dark mode!
Highlights
- Add a Pidgin.Badges widget to contacts in the contact list
- Import our new application icon from the one and only Hylke Bons
- Create Purple.AccountSetting
- Add Purple.AccountSettings
- Add Purple.Protocol.get_default_account_settings
- Create Purple.AccountSettingStringList
- Update the default account settings handler to include user splits
- Port IRCv3 to the new account settings
- Add Purple.Account:disconnected to complement Purple.Account:connected
- Fix settings initialization in network prefs
- Fix parenting of Account Manager window on initial startup
- A first pass at documenting how to migrate from purple 2
- macOS: fix some issues with the macOS native files
- macOS: hide duplicate menu items
- Stop setting XDG_RUNTIME_DIR in devenv
- Add a dark/light color scheme setting
- Add remove all and update methods to Purple.AccountSettings
- Make sure accounts have names when saving and loading
- Add the account name to the account editor
- Update Pidgin.AccountDisplay to use the Purple.Account:name property
- Update libpurple to use Purple.Account:name when referring to accounts
- Update pidgin to use Purple.Account:name when referring to accounts
- A few cleanups in the account api
- Create Purple.ConversationManagerBackend
- Update Purple.ConversationManager to use a Purple.ConversationManagerBackend
- Create Purple.ConversationManagerSeagullBackend
- IRCv3: Only send WHO on our own joins
Releases
- Experimental 4 (2.93.0) was released on 2025-09-30 Release Announcement
Future Plans
- The account options API is in the process of being replaced by a new AccountSetting API.
The following items are still in the works from the last state of the bird.
- Add persistence to the scheduler.
- Add persistence to the contact manager, this needs to be done so we can fix some issues with direct messages being restored correctly.
- Gary has started an out of tree protocol plugin to help figure out how the voice and video API will work.
As always, you can view the burn down chart for our next release here.
#pidgin2
Pidgin 2 is our stable "production" release of a universal chat client. Meaning that you can use it as a single interface to many chat networks!
Retrospective
We're still planning on doing a 2.15.0 release, but we haven't moved forward on this at all this month.
Highlights
- Cleaned up the app data file.
- Removed the auto package spec file.
Retrospective
We still need to finish up the build environment packages so we can upgrade GTK on windows and get that all into the installer. We also need to remember to update the spell checking dictionaries as we haven't done that in awhile.
Releases
None
Future Plans
Just the same as what was mentioned above.
#gaim 3
As announced in the last State of the Bird, we've started an additional user interface to keep the look and feel of Pidgin 2 and Gaim before it in GTK4 and we've chosen to name it Gaim.
Retrospective
No new work this month. We've put things on pause until the account settings rewrite is finished. We need to be able to create accounts to move forward and don't want to write a bunch of code just to rewrite it very soon afterwards.
Highlights
None
Releases
None
Future Plans
Once the account settings API is finished up we're going to start moving pretty quickly here.
#gplugin
GPlugin is our GObject based plugin library that is used in Pidgin 3.
Retrospective
Nothing much this month, everything is working well enough for now.
Highlights
- Fix detection of Lua 5.4 on Gentoo
Releases
None
Future Plans
We're going to continue moving forward with the GLib.List -> Gio.ListModel changes and eventually have GPlugin.Manager implement Gio.ListModel.
#hasl
HASL is the Hassle-free Authentication and Security Layer library. It implements SASL in a modern and easy use way compared to the existing libraries.
Retrospective
No activity this month.
Highlights
None
Releases
None
Future Plans
We have been in the progress of implementing the SCRAM Mechanisms which will be included in the next release.
#birb
Birb is a library of GLib utilities that we use across all of our projects.
Retrospective
We created Birb.LocalizedString to be used with the new Account Settings in purple as well as a few maintenance things. After the release we pull in the check license header script from the pidgin repo so that other projects can use it.
Highlights
- Create Birb.LocalizedString
- Fix some issues with the queued output stream error
- Add the check license header script and make it installable
Releases
- 0.5.0 was released on 2025-09-09 Release Announcement
#xeme
Xeme is our XMPP integration library. It is the basis for both the Link Local Messaging (Bonjour) and XMPP protocols in Pidgin 3. It is still early in development and has not yet had a release.
Retrospective
No activity this month.
Highlights
None
Releases
None
Future Plans
Everything! Seriously though, we're looking to get back to this in the near future.
Ibis
#ircv3-library is our IRCv3 integration library. It has seen a lot of active development as it is used in the IRCv3 protocol plugin in Pidgin 3.
We are nearing known feature completion on it and expect to do a 1.0 release in the near future.
Retrospective
Fixed some issues with the unit tests on windows by using stroul instead of atoi. We also renamed the nick projects by renaming nick to primary-nick, alt-nick to secondary-nick and added tertiary-nick. The old properties are still there but have been deprecated.
Highlights
- Use strtoulinstead ofatoiwhen parsing hosts
- Rework the nick properties
Releases
None
Future Plans
Continue working through the open issues and watching new IRCv3 specifications for things we should be including.
#hiya
Hiya is a new client abstraction library for mDNS. It was created to help make implementation of the Link Local Messaging protocol easier as we would have to abstract out the different platform implementations and by putting it in a library that abstraction can be used by other projects.
Hiya has not yet had a release.
#myna
Myna is a new integration library for Matrix. It is still extremely early in development.
#sqlite3-helper-library
Seagull is a new library we created to make working with SQLite feel more like a GLIB/GNOME library and force usage of prepared statements with named parameters and other similar things.
Retrospective
Just some minor maintenance this month, but we've got some more stuff coming as we're using Seagull to serialize more stuff in Purple 3.
Highlights
None
Releases
None
Future Plans
We have a few features to fill out yet and a few ideas that need a bit more time in the oven.
More specific details can be found in our open issues.
#traversity
Traversity is a new library for traversing NATs. There are many different ways to traverse a NAT and the goal of Traversity is to hide that from developers who just need to traverse a NAT.
It is still early in development and has not yet had an official release.
#retro-prpl
retro-prpl is a new repository we've created on GitHub. This repository contains all of the abandoned protocols that have ever lived in our code base and is meant to make them easier to study and for people to use with services like Retro AIM Server, escargot, and NINA.
Retrospective
Nothing to report on this month.
Highlights
None
Releases
None
Future Plans
Right now we didn't add any support for protocol specific emojis because we completely forgot about them. Anyways we're looking at creating a custom emoji theme that will include everything for these retro protocols.
We're also trying to make sure that you can actually use this to connect to the self hosted clones, but we haven't gotten through verifying that and fixing what doesn't work.
Closing
We have a lot to do going forward but we're still striving hoping that the Experimental 5 release which is due 2025-12-31 will actually be Alpha 1. The distinction is whether not not we think the protocol specific APIs are stable enough for third party protocol developers.
We don't have this well defined yet, and it's more of a feel than anything, but we've had a few people tinkering with third party protocols with moderate success which is absolutely amazing!! So as they continue working on their protocols we're getting good feedback on basically everything which is extremely helpful!
We hope you all are enjoying the new format and if you have any questions of comments please leave them below!
Site equivalent?
For anime I am watching via Animekai thanks to its front page putting focus on current show schedule and an easy to use book mark system.
I am wondering is there any Stream site for Westren Movies and shows? So far most I can find seem to use a front page that focuses on what’s supposedly trending rather then current showings
like this
TVA likes this.
My Recent Experience Getting Back Into Linux
Over the past several days, I have been trying to install Linux on my surface pro 2 because Windows is having issues with hogging memory, which is preventing me from finishing a drawing.
First I tried Linux Mint. After several freezes of the Bluetooth program, I was able to get my 8bitdo controller to connect, however i learned that neither using it as a wireless keyboard nor as dinput works. Mint was not detecting input from either mode, but it could detect xinput. Krita, however did not recognize the inputs because they were not keyboard keys, so i had to install a program to convert xinput signals to key presses.
Additionally, the on-screen keyboard on Mint has two options: always on when enabled, or on when a text box prompts. The former sucks to use because you have to toggle the keyboard in accessibility settings every time you want to turn it off or on, and the latter never detected a single text box in my experience. So the on-screen keyboard simply doesn't work on Mint.
I tried installing Kubuntu. I installed the Linux surface drivers recommended on r/SurfaceLinux. This resolved an issue where the pen and eraser were seen as the same.
My controller also worked Flawlessly in keyboard mode right out of the gate. The Bluetooth program didn't freeze once. The on-screen keyboard is also acceptable.
By all accounts the experience was a significant improvement.
Then I tried calibrating my pen. This did not work. The cursor was consistently 2-3 mm up and to the left of where i was holding my pen. KDE with wayland also does not support non-linear digitizer calibration. This is a problem because the errors in my tablet's digitizer are non linear. On windows I had created a script to add extra calibration points to rectify this. I can't do this in KDE with wayland. I could switch to X11, but then all the QoL improvements for touch screen/tablet use would be gone.
So I've been fiddling for hours trying to make a script in krita that will allow me to correct my pen inputs with an error matrix. Krita is refusing to even recognize the script is even there. Probably a Krita problem, not Linux, but blegh. I wouldn't have to do this if the system pen calibration worked.
But of course, my 5 year old experience with how troublesome Linux was is invalid today, and Linux has gotten so much better and Just Works™ now /s
The Microsoft Surface is known to be especially difficult to get working with non-Microsoft software.
The stylus pen for my Thinkpad X1 Yoga gen 4 works perfectly out of the box in PopOS.
Sounds like it is working pretty well to me.
I understand the frustration, but Linux only works because the community works on it together. You sound like someone who has some technical knowledge, maybe you can help the kubuntu team make the calibration a feature?
"Sounds like it is working pretty well to me" when I spend multiple days trying to get Linux working for one purpose (to draw) and am unsuccessful.
This is why "current year is the year of the Linux desktop" is hilarious to anyone who doesn't use Linux.
I get it, it's frustrating and it doesn't feel like your needs are being met.
It's just important to see the larger picture. Windows and iOS suck more every day. Linux gains more and more traction, more and more users as the competition becomes less and less attractive.
I hope that the next time you try, that it just works.
How to remove 'anti-piracy' footers from complex PDFs?
I have some sewing patterns that I would like to share (and hopefully swap) but all of the PDFs have a
"This was purchased by John Doe john.doe@email.com #ordernumber - if you are not John Doe, please dob in the person you got this from to company@example.com so we can sick our lawyers on them"
sorta footer on every single page.
Obviously for privacy reasons (and because I don't actually want lawyers sicked onto me), I need to remove this footer.
These are often complex PDFs with more than a hundred pages and multiple layers.
I managed to successfully remove the editing password (not user/viewing password, just can't edit without password) with qpdf --decrypt. But removing that footer has left me at a dead end. I have even tried manually removing every single instance of those footers using Master PDF Editor but saving the file flattened it and you are no longer able to show/hide layers which is essential for correct printing. (Please don't ask me how many different PDF editors I have tried because it has been so so SO many I have lost count).
Not that I really want to have to manually edit this out on what could amount to over a thousand pages but searching for a command to remove a certain phrase has come up empty. Even Master PDF Editor doesn't seem to have a bulk remove or search and replace function (just search).
I use Linux btw.
Two replies there that came to my attention, while I'm unable to get back to sleep at 5am. An old one mentioning github.com/kanzure/pdfparanoia which seems to be an old tool that removes watermarks, hasn't been updated in 5 years, but neither has the PDF spec?
The other is this paste of text:
if it helps anyone, here's what I do to prepare a pattern for uploading to make sure it is 'clean':
Check over the PDF files for any reference to my name/email address (usually this is in a footer on each page, and not every pattern company does this)
If my personal details are present, I unlock the files using a site like ILovePDF - There are other sites but this one has no daily limits
Open the unlocked PDF in Adobe Professional or another PDF editor of your choice and delete the footer box. You can just delete the box on the first page it appears, or the first page it is a standalone box, then save the pdf, close and reopen it - usually it will now be gone from all pages.
Repeat for any other PDF files (obviously)
Run PDF and jpeg files through an exif cleaner
Double check and upload.GitHub - kanzure/pdfparanoia: pdf watermark removal library for academic papers
pdf watermark removal library for academic papers. Contribute to kanzure/pdfparanoia development by creating an account on GitHub.GitHub
qpdf --decrypt. Most of the PDF editors I used, changed the PDF too much (e.g. added margins/padding) which ruined the very specific layout needed for the patterns to work. There has to be no changes to the PDFs apart from removing the 'footer' text :/
Can you just drop a white box over it?
Edit: if you're sharing the PDF I suppose not
You could do this with a PDF editor, then print to PDF so it's a new file.
Or use a PDF to Word converter (or similar), which would enable removing such things. Though that can be tricky
My best answer at this point would be that you need to make your own program to find and remove by content. Because no other manual pdf editor would reasonably have such a feature since it's so niche.
Also vibe coding with AI tends to be very good for singular tasks like this.
I wouldn't recommend converting the pdf to anything else since that would remove the layer info unless it's to more complicated formats like EPS, illustrator, etc.
remove the locked pdf with ilovepdf.com/unlock_pdf or any other program.
Than edit the pdf with full version of adobe acrobate
Unlock PDF files. Remove PDF password
Remove PDF password online. Remove security from password protected PDF files.iLovePDF - Online tools for PDF
GitHub - pymupdf/PyMuPDF: PyMuPDF is a high performance Python library for data extraction, analysis, conversion & manipulation of PDF (and other) documents.
PyMuPDF is a high performance Python library for data extraction, analysis, conversion & manipulation of PDF (and other) documents. - pymupdf/PyMuPDFGitHub
Iirc, tested it out quite a few years ago, and I had to use a software that would both decompile and recompile the PDF, and while it was decompiled, I had to remove the repeating pattern I didn't want with something like Notepad++. File got recompiled a bit over 50% bigger iirc, maybe different compression methods, but the pages themselves didn't seem affected.
Sadly can't remember the name of the program I used for compiling and recompiling, only that it'd do both and that I looked for how to remove watermarks from PDFs. Also the program was certainly offline.
Found a few candidate tools though can test neither now, mutool (part of the mupdf tools), PDFtk, qpdf, pdf2txt (name sounds familiar though it might be memory playing tricks).
If any of those could be found as a single portable exe around 2020, chances are it is the tool I used for it.
like this
DaGeek247 likes this.
Auster likes this.
like this
DaGeek247 likes this.
Perhaps just blocking it with a white box and then converting it into an image-only pdf. This makes the file much bigger but will keep the exact same layout while also removing the text blocked by the white box.
Or does it have any interactive elements? What do you mean by "layers"?
Just because the visible footer gets removed doesn't mean there isn't other unique tracking information hidden deep in the PDF that could still get the lawyers sicced on you. Depending on how valuable this information is to the company, and how litigious they are, you have to judge how far they might've gone and might yet go to protect it.
Unfortunately, that's why this kind of copy protection can an actually be an effective tactic to prevent individuals from sharing their copies. While there might be ways to strip this kind of hidden data on simpler PDFs... even resorting to methods like screenshotting or printing and scanning, still cannot give you absolute confidence that there isn't some subtle unique identifier invisibly hidden in the layout or through subtle inconspicuous variations, especially if you're doing this regularly and they start targeting you and your account for identification. And on complex PDFs there are so many more ways they could hide this information digitally if they know where to look for it and you don't. 99% of the time it's going to be pretty obvious to strip out, but are you willing to take that risk even if you do find a technical method of removing the visible footers? If it's a one-off, maybe you can get away with it, but in the long term this strategy is not viable and is a trap for rookies.
The only truly safe way to share digitally watermarked content like this is to buy it with a burner account and full opsec in the first place. Nobody to sic lawyers on if it's a hacked paypal or a stolen/prepaid credit card or an untraceable email and IP, or in a jurisdiction with no enforcement. Smash and grab, get the data anonymously and get out. Don't share stuff from your personal account that's literally got your name and banking information attached to it unless you can confirm it's bit-for-bit indistinguishable from other innocent copies with something like a checksum.
like this
TheFederatedPipe e toothpaste_sandwich like this.
hacked paypal or a stolen/prepaid credit card
How do you do this? Asking for a friend.
/joke
like this
toothpaste_sandwich likes this.
You can just buy a prepaid gift card from a convenience store and pay cash for it.
Then do online purchase with it and download the contents through tor.
like this
toothpaste_sandwich likes this.
Honestly there are so many ways pdfs can hold unique information that retaining the same format is probably not going to work.
The 2 options I suggest are . . .
- Use a tool to extra the text into a plain text fromat then paste it into word along with screen shots of any images you need.
- You could try converting each page to a JPG image using something like Gimp. You could then desaturate it or convert it to pure black and white so it reveals any hidden text which you can paint over. If you want the images in colour just crop them out from the original file and paste into the new b&w copy. This is a crap description but hopefully it makes the point.
When trying to see communities, *filtered*, the "next page" doesn't include the filters, so one CAN'T see the next filtered-page results.
the search communities page, with local/other as 1 filter, & subscribed/not-subscribed as the other filter ( other options, don't remember 'em )..
IF one searches for other/remote sites, & not-subscribed, e.g. & goes through that page..
then at the bottom of the page is a Next Page button, .. which gives one a page of bullshit, because it discarded the filtering.
( it certainly discards the subscribed/unsubscribed filtering, it may have kept the local-vs-remote sites status ).
Also, if one searches for local + unsubscribed, the 2nd page isn't filtered.
This renders the 2nd-page & all other pages .. garbage.
I'm only identifying this, not complaining: the fact that PieFed exists is awesome, & work is work, so I'm grateful for what there is, that works properly, so this is only a heads-up.
Perhaps a special-page checklist for the programmers would prevent oversights ( Atul Gawande's book "The Checklist Manifesto" identified that there are 2 categories of checklists: these-people-need-to-connect, & this-task-need-get-done.
Perhaps checklists should be considered as foundational in programming as code-review, pair-programming ( near-view/in-the-trench & far-view/how-does-this-fit-in-with-everything-else ), continuous-integration-testing, etc..
Salut, Namaste, Kaizen, & Gratitude for the wonderful contribution to our world..
_ /\ _
PS; I just created this post, & now I see to the top-right, that it says, in green, "Solved".
??
On The Gaza "Mass Executions" and "Civil War" - Minis
On The Gaza "Mass Executions" and "Civil War" - Minis
A new rising Narrative based on Deception.Green Rose (The GreenRose)
like this
Maeve, Ildsaye [they/them], Ayache Benbraham ☭🪬, atomkarinca, ComradZoid, mufasio, stink, Jacobo_Villa_Lobos [he/him], cornishon, cfgaussian, Maeve, TheTux, PeeOnYou [he/him] e Malkhodr like this.
La Dame d'Azur doesn't like this.
The UN says entire families are buried beneath the rubble in Gaza
While Israel continues to break the ceasefire, many Palestinians' loved ones are still buried under the rubble, as the UN points out
Archived version: archive.is/newest/thecanary.co…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Twitter is launching a marketplace for inactive handles
X is launching a Handle Marketplace where Premium subscribers will be able to search and request usernames that have been unavailable.
Israel accused of 80 Gaza ceasefire violations killing 97 people
A Palestinian government office says Israeli forces have carried out 80 ceasefire violations since October 10, killing 97 people and wounding 230 more.
Archived version: archive.is/newest/middleeastey…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Marco Rubio betrayed drug gang informants to seal El Salvador prison deal, report says
Trump administration allegedly agreed to abandon confidential informants protected by US government in an effort to ink CECOT deal
North Korean soldier defects to South Korea across the rivals' heavily fortified border
cross-posted from: lemmy.world/post/37580499
A North Korean soldier defected to South Korea across the rivals' heavily fortified border on Sunday, South Korea's military said.The military took custody of the soldier who crossed the central portion of the land border, South Korea's Joint Chiefs of Staff said in a statement. It said the soldier expressed a desire to resettle in South Korea.
It was the first reported defection by a North Korean soldier since a North Korean staff sergeant fled to South Korea via the border's eastern section in August 2024.
North Korean soldier defects to South Korea across the rivals' heavily fortified border
A North Korean soldier defected to South Korea across the heavily fortified Demilitarized Zone on Sunday, South Korea's military said.CBS News
like this
adhocfungus likes this.
She Despised Charlie Kirk. He Resolved to Make People Like Her Pay.
[Two year old music video] Where are you Oh humanity | one of the most beautiful works by Saleh al-Jafarawi (with english subs)
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
like this
Malkhodr, atomkarinca, Commiejones, Maeve, mufasio, Arachno_Stalinist, cfgaussian, stink e malak [he/him, comrade/them] like this.
I found a YouTube link in your post. Here are links to the same video on alternative frontends that protect your privacy:
 
					
eldavi
in reply to geneva_convenience • • •geneva_convenience
in reply to eldavi • • •