China accounts for more than half of leading output in the applied sciences
China accounts for more than half of leading output in the applied sciences
The first Nature Index table on the field shows how research in the East is focused on industrial strategy.Plackett, Benjamin
Delhi records 200,000 acute respiratory illness cases amid toxic air
Air pollution: Delhi hospitals saw 200,000 respiratory illness patients in three years
More than 30,000 people with respiratory illnesses had to be hospitalised in Delhi between 2022 and 2024.Abhishek Dey (BBC News)
German army chief says contact with US military cut off by Pentagon
cross-posted from: lemmy.world/post/39664905
Lieutenant General Christian Freuding fears the longstanding military partnership between the two allies is unravelling under President Trump’s administrationThe Pentagon has “cut off contact” between American defence officials and their German counterparts, according to the head of Germany’s army.
The United States has traditionally treated Germany as one of its most important European allies. It is thought to have about 35,000 soldiers stationed at German bases such as Ramstein and Stuttgart, which serve as staging posts for American operations across Africa and the Middle East.
Since President Trump’s return to power in January, the relationship between the countries has become markedly cooler.
like this
SuiXi3D, aramis87, Lasslinthar, essell, FartsWithAnAccent e dandi8 like this.
If Trump is a Russian asset, why didnt the US pull out of NATO months ago? Why did Mueller's report conclude that there was no collusion between Trump's campaign and Russia?
If Russia is blamed for Trump’s election, we avoid the unpleasant reality of our failed democratic institutions and decaying empire. We avoid facing the inevitable rise of a Christianised fascism borne out of widespread impoverishment, rage, despair and abandonment. We avoid acknowledging the complicity of the Democratic Party in the orchestration of the largest social inequality in our nation’s history, the evisceration of our basic civil liberties, endless wars and an electoral system bankrolled by the billionaire class, which is legalised bribery. The myth allows us to believe that Democratic politicians, like the establishment Republicans who have joined them, are the guarantors of a democracy they destroyed.All the investigations into Trump’s ties with Russia are unequivocal. There was no collusion. The Steele dossier, financed at first by Republican opponents of Trump and later by Hillary Clinton’s campaign, and compiled by former MI6 British intelligence officer, Christopher Steele, was a fake. The charges in the dossier — which included reports of Trump receiving a ‘golden shower’ from prostituted women in a Moscow hotel room and claims that Trump and the Kremlin had ties going back five years — were discredited by the FBI. Sources, including the one that claimed Trump had long-held ties to the Kremlin, turned out to be fabricated. Special Counsel Robert S Mueller concluded that his investigation ‘did not establish that members of the Trump Campaign conspired or coordinated with the Russian government in its election interference activities.’ Mueller did not indict or accuse anyone of criminally conspiring with Russia.
- Chris Hedges
People also like to ignore that Trump armed Ukraine with Javelins during his first presidency.
I don’t see a Russian asset doing this.
Oh, wee, so cool. If he had supplied em with more than just that, Russia's aggression would've been pushed back.
Do you two think that being a asset/,spy/double agent means you also don't do things to make you look less suspicious?
If he pulled out of Nato too soon, it wouldn't look good. He made it into a show. Gave it reasons to be done.
Oh, he gave some Javs? That at most just slowed down the Russians? Ya, if he would have given them tanks, Helicopters, jets, and supplies, the Russians would've been beaten back.
It's called making a scene. He's being told what he can and can't do. The only saving grace is that Russia is obviously overconfident, and they all believe they are some unstoppable force.
Ukraine has made do with what they got and have proven Russians are nothing but Brutes.
I guarantee dollars to doughnuts if we take out Russia. I mean, destroyed them, Putin turned into a red mist, and all that followed him the same. Trumps whole thing would fall apart.
Do you two think that being a asset/,spy/double agent means you also don't do things to make you look less suspicious?
Why would Trump/Putin be afraid of looking suspicious? I thought yalls whole thing was that Trump's status as a Russian spy is clear as day and known to all.
People also like to ignore Trump tried to blackmail Ukraine into investigating his political rival for which he got an impeachment for.
Trump should not have any say whatsoever in anything related to the Ukraine.
It is staggering he could even be elected after this, but for Congress not to protect Ukraine from a straight up criminal is unconscionable.
I’m more than aware that the orange buffoon betrayed Ukraine after Ukraine raised objections to helping Trump find dirt on Biden.
But that two major arms sales to Ukraine were approved under his presidency at all is proof that Trump isn’t taking orders from Putin.
The whole GOP is up Russia's ass unless you missed the whole Orwellian Russia is good Ukraine is bad rhetoric they desperately want the public to accept.
Listen, the US sells arms. It is a purveyor of death with business people playing both ends making money off of human death. This is not proof Trump is friendly to Ukraine it is a business transaction.
The truth is his apparatus (who really run things) have been brazenly hostile to the Ukraine. It is literally a game to see how much they can get away with. All while the innocents on both sides die.
I am absolutely astonished on how far low the US government can stoop. They have always been horrible, but when they take the mask off you see how truly disgusting the charade is.
All I have seen from the Orangutan administration is inconsistency and that includes rhetoric towards Russia and Ukraine.
Inconsistency is consistent with the Trump administration.
Even in internal politics, the orange buffoon is inconsistent.
Sometimes Trump loves Zohran Mamdani.
Sometimes Trump hates Zohran Mamdani.
- because it is easier to disturb operations from within the organisation.
- the report did not talk about collusion, because that was supposed to be decided by a court. That didn't happen because they did not want to interfere with the election.
en.wikipedia.org/wiki/Mueller_…
See "false no collusion claims"
because it is easier to disturb operations from within the organisation.
And what disturbances do you mean? NATO spending has exploded in recent years. Last year NATO allies increased spending by 18%. Why would a Russian asset set about a plan that drastically increases the funding for Russia's primary enemy? Why is Trump's whole schtick that Europe needs to start spending more on defense?
Why would Putin kick off the Ukraine war immediately after his "agent" leaves office?
Why, in his first term, was Trump commanding Germany and EU to stop buying Russian gas? Going so far as to sanction comoanies involved with the Nordstream pipeline?
Meanwhile, in 2018, the US expelled more than 60 Russian officials after identifying them as intelligence officers. To put it bluntly, any gains Russia might have achieved through Trump’s good offices are far outweighed by the strategic, economic, and counterintelligence realities that have emerged during his presidency.But any Russian intelligence officer would need to consider whether Trump really cares enough about kompromat and Russian money. Indeed, why enrol him as an agent of influence – a move that carries enormous consequences for both parties – when Russia could opt for a convenient friend in Washington?
In reality, even if Russia sees Trump as an asset, we’re not talking about Trump being a new Kim Philby (of Cambridge Five fame). We’re talking about Trump being a self-interested businessman who’s happy to do a favour if it works to his own best interests – and that includes staying out of jail. There’s no evidence that Trump knowingly associated with any Russian intelligence officers. And there’s a big distinction between making the wrong kind of friends and committing treason.
aber.ac.uk/en/news/archive/202…
Collusion/conspiracy/coordinate... just semantics.
[Mueller] did not establish that members of the Trump Campaign conspired or coordinated with the Russian government in its election interference activities.
Trump is not a Russian asset. He's an easily-manipulated businessman who does things in his own self interest, and that is as American as apple pie. There is no need to invoke Putin. Our descent into Christian Fascism is our own doing - one that Russia no doubt took advantage of. If you truly believe Trump is a Russian asset, then you have to concede that the FBI, the CIA, the NSA, and the Five Eyes have all been captured by Russia as well.
“If you truly believe Trump is a Russian asset, then you have to concede that the FBI, the CIA, the NSA, and the Five Eyes have all been captured by Russia as well.”
Would not surprise me. Of course at this point, it is a conspiracy theory, but too many things tie Trump to Russia in the 80s and 90s. I think that is when it started. It’s been a slow roll since then and trumps mismanage of his assets, over time, has put him in a position that he owes the oligarchs of Russia a lot money or favors. As a matter of fact, the conspiracy theory suggest Melanie Trump, origanally from a Russian controlled territory, was forced to marry trump to keep him in line.
like this
Quantumantics likes this.
like this
Quantumantics likes this.
Imagine how that must feel for Germany. First, they decide they want to tie Russia down to eternal peace by dangling infinite oil and gas riches in the face of Putin, and he decides to hell with riches, he wants WAR!
Then they have this relationship that lasted for 80 years with a former occupying nation that they submitted to and obeyed. They braved nationwide dissent over that nation stationing nuclear missiles on its peace-loving soil. They criminalized everything that nation disliked. As recently as (checks notes) now they supported a genocidal regime because they were told that's the thing to do.
And now all this sensible foreign policy blows up in their face, and they did nothing wrong, except bet on the crazy horses.
I mean, it beats BEING the genocidal regime, or - worse - being the target of the genocidal regime. But it does give one the impression that being sensible is not all that it's cracked up to be.
Europe Wants to Get the Word Out: Russia Is to Blame for Sabotage
Officials are accusing Russia of smaller-scale assaults. President Vladimir V. Putin sought to turn the tables, saying that if Europe were to start a war, Russia is ready.
Exactly, for those who can't keep up with the events, the issue is that Ruzzia has been pushing their luck and EU itself is getting tired of the Ruzz "mosquitoes", ie the many many on-going hybrid atacks incl. drones, fires, sabotage etc. This is ON TOP of the intensified atrocities by Ruzz in Ukraine and other places fyi. Time to do something, many in Europe think. From the NYT article, the European pov:
"Concern that sabotage is growing ever more dangerous has led some European leaders not just to blame Russia for hybrid activity more frequently but also to talk more openly how they will defend themselves.(..)
“This is a lot about ‘Now, Russia is at war with the West,’” said Charlie Edwards, a hybrid-warfare expert at the International Institute for Strategic Studies and a former intelligence and security strategist for Britain. “That’s an important change.”(..)
Every time NATO and the E.U. don’t do something, the credibility of the alliance is questioned,” Mr. Edwards said, “for the simple reason that there seems to be no obvious, public response.”
Tuvix - Self-Hosted RSS Aggregator
Tuvix - It's Your Feed
Take back control of your internet with Tuvix, the open-source RSS aggregator. No algorithms, no tracking—just your content, your way.Tuvix
like this
andyburke, essell, Lasslinthar, ElfBean e joshg253 like this.
like this
andyburke, _NetNomad e deliriousdreams like this.
Huh, the connection was actually intentional, albeit definitely not for that reason
Why "Tuvix"?
Tuvix is named after a character from Star Trek: Voyager who was created by merging two individuals into one. The name came to mind when thinking about one of Tuvix's core features: merging multiple RSS sources into a new public feed. And who doesn't love a good Star Trek reference?We believe the best reading experience doesn't require sophisticated algorithms or endless personalization. It just requires giving you the tools to find and organize content you care about.
About Tuvix - Open Source RSS Aggregator
Learn about Tuvix, the open-source RSS aggregator that puts you back in control of your internet experience. No algorithms, no tracking, just your content.Tuvix
like this
deliriousdreams likes this.
While I support the idea of using RSS readers to break free from algorithmic and/or AI curated feeds, I've mostly stopped bothering, since all the content that gets into the feeds has become algorithmic, AI slop.
There's just no escaping it these days.
like this
deliriousdreams likes this.
Lasslinthar likes this.
While super fair and accurate, I take this as an opportunity to follow much smaller blogs. When I find a good post on Hacker News or stumble upon someone through my research, I now actively make a point to subscribe to their RSS.
TBH my original motive was to find good sources of content to submit to Hacker News... but all the same.
like this
Lasslinthar e deliriousdreams like this.
like this
Lasslinthar e deliriousdreams like this.
😆 . It's a real problem though. So is prioritization. Algorithms aren't bad, dark patterns are. The main issue with any algorithm, even if fully open, it, by definition, has to be biased in some way. I'm going to save this problem for much further down the road, but for discovery, I took the first step on that.
Tricorder!
github.com/TechSquidTV/Tuvix-T…
I broke out the package that does the feed discovery in tuvix and publish it separately. Now you can use it as a chrome plugin to add a subscribe page to any website. It is currently pending review on the Chrome web store. I haven't yet submitted to Firefox or others.
Is the selfhosted version able to also take email newsletters? I hate them and I'm using kill-the-newsletter.com/ to turn them into RSS, but I wish I had an all in one solution.
Also, is it fully FOSS or is it open core?
like this
joshg253 likes this.
My monetization plans only extend to possibly offering an additional plan on the hosted version to help cover hosting costs (which right now are $10 a month and I am covering that, it may become $30 a month if this gets popular).
AGPL works for me. Good to know.
I just avoid using "source available" and software that has artificially paywalled features, the most common paywalled feature is OIDC because most devs seem to think that it's a business only feature.
I pay for Home Assist Cloud, because I want to support them, every feature is available if I wanted to self host it. I freaking love them.
The only exception being Bitwarden, although they have paywalled features in their selfhosted builds I don't know of a better-for-me alternative. I could self-host Vaultwarden, but I pay for their subscription just because I want to support them.
My point is, if it's justified, I'll pay. Otherwise, I'll keep using standalone RSS apps on my devices and just backup my OPML every once in a while.
Ya. I'm working on that too. And trying to keep in the spirit of not being biased or heavy on algorithms.
My first step - A chrome/firefox extension. This is currently in review on the web store.
This exposes RSS feeds on sites you visit to make it easier to subscribe to the places you already visit. This is especially great when you find a great blog on Reddit or Hacker News.
github.com/TechSquidTV/Tuvix-T…
GitHub - TechSquidTV/Tuvix-Tricorder-Extension: Discover RSS and Atom feeds on any website. Official companion extension for Tuvix RSS - a modern, self-hostable feed aggregator.
Discover RSS and Atom feeds on any website. Official companion extension for Tuvix RSS - a modern, self-hostable feed aggregator. - TechSquidTV/Tuvix-Tricorder-ExtensionGitHub
You would be surprised how many provide feeds and even more surprised how fast your feed reader gets overwhelmingly filled 😅
like this
HeerlijkeDrop likes this.
Appreciate you letting me know! I just signed up a new dummy account and it seems to have worked. But no one else has gotten an email in the last 2 hours from what I can see. But at the moment its hard to tell if there is an issue or just, no one has signed up in the last two hours. It looks like a need to double check my monitoring setup to see if I can catch this.
Give it another shot, it worked for me just now (same deployment). If you can, have your network tab open and let me know if you see any failures. I'll try to make sure I can see that easier.
same thing after disabling my adblocker just in case (brave-browser)
The project looks nice and RSS Aggregators are the way to go.
I switched to a file based (cloud storage) syncing app like News Explorer a while ago.
Sometimes less infrastructure involved is a blessing.
Same concept, different implementation. FreshRSS is a PHP app, in my opinion.. a little ugly, still super functional of course. I wanted to try to create something with a more modern UX, and try to appeal to not just the tech folks. FreshRSS still supports things I don't yet, like WebSub, but give me some time to catch up. I have the massive benefit of just starting much later when many awesome libraries and AI exist.
I actually started this API in Go, and it was nearly complete before I started over entirely in Node. And I did that so that it could run in serverless environments. You can of course still run this in Docker Compose, but it's actually focused on Cloudflare deployments, where you can run this entirely for free.
Home server / NAS scaling
Currently I'm thinking again about setting up a home server. But I am unsure about the scaling. In the hope to get some input from experienced users I'm coming here.
Services that I intend on running:
- TrueNAS SCALE
- Jellyfin
- *arr stack
- Immich
- Nextcloud
- Bitwarden (maybe)
I've read the Jellyfin documentation which states i5-11500 (because the toolkit for 7-10th gen is deprecated, even though you could encode H.264/H.265) or newer for CPU based encoding or at least a GTX 1660. Because electricity is quite expensive here, I'd prefer CPU encoding. On the other side, office systems with 11th or newer gen are far more expensive. I've found a i5-6500, 16 GB RAM, GTX 1660 system for 180 Euro incl. shipping.
There are a few 7th-9th gen systems with 16 GB RAM available that use on board graphics and are 80-120 Euro excl. shipping but I'm not sure if they suffice running the mentioned services and maybe a few more I don't know about yet.
I have two WD Red and a WD Green lying around, I'd like to use. From what I've heard so far, it's necessary to use a separate drive to run TrueNAS off of, which I'd need to buy separately.
Maybe you can give me some insights. Thanks.
For video encoding, I run an 8th gen Intel i5 8500t. The quicksync is good enough for nearly anything 1080p.
Not sure what you mean by the "scaling".
Intel® Core™ i3-9300 Processor (8M Cache, up to 4.30 GHz)
Intel® Core™ i3-9300 Processor (8M Cache, up to 4.30 GHz) quick reference with specifications, features, and technologies.Intel
A lot depends on how many users you expect and how much media you expect. For one or two users with that stack, transcoding media is really the only CPU load. If most of your media is already in your desired format, then that's not a big deal.
My stack is pretty similar (no *arr, plus tvheadend, homeassistant and a kodi frontend) for two users and it sits near idle all day long. It runs on an N100 NAS system off Aliexpress with 16GB and will transcode 1080p to x264 at just about playback speed.. System runs from a 100 GB nvme, with a couple half-full 4 TB WD Reds for data. 35-ish Watts, maybe an extra 5 when actively transcoding. Used to be ~150 USD,
If you want a lot of 4k content, then I'd definitely go with the GTX 1660.
Might look into the N100 systems, thanks.
What about using Intel ARC GPUs for encoding as they are all kinda made specifically for it, I don't use jellyfin but I got an Intel ARC B310 Eco used for like $45.
Looking at current prices it seems like it's around $120 now, was cheaper last year, but I still recommend looking into Intel GPUs.
I looked into it before but this will get a lot more expensive here. I'm currently mostly looking used HP, Dell or other office PCs.
The Jellyfin doc states that
Intel ARC B series cards require ReBar to be enabled. This means you must use it on a platform with Intel 10th gen, AMD Ryzen 3000 series or newer.
Europeans accuse Putin of feigning interest in peace after talks with US envoys
Ukraine and its European allies accused Vladimir Putin on Wednesday of feigning interest in peace efforts after five hours of talks with U.S. envoys at the Kremlin produced no breakthrough.
The Russian leader “should end the bluster and the bloodshed and be ready to come to the table and to support a just and lasting peace,” said U.K. Foreign Secretary Yvette Cooper. Ukrainian Foreign Minister Andrii Sybiha urged Putin to “stop wasting the world’s time.”
The remarks reflect the high tensions and gaping gulf that remain between Russia on one side and Ukraine and its European allies on the other over how to end a war that Moscow started when it invaded its neighbor nearly four years ago.
like this
SuiXi3D, Atelopus-zeteki, aramis87, KaRunChiy, Lasslinthar e dandi8 like this.
European continent appears to be willfully ignorant
Really? You appear ill-informed.
So your thinking is something like:
because Ukraine was invaded in Crimea in 2014 and there after, in 2022 there was the full-blown invasion; you conclude that Europe is willfully ignorant of Russia being badfaith actor and that therefore Europe still naively believes that Ruzzia has peaceful intentions? Weird conclusion.
EU started with sanctions after Crimea was annexed. So no, Europeans didn't think Russia had peaceful intentions. Also there is the shooting down in 2014 of a passangerplane MH17. So again, no.
One of these days they’ll realize that putting restrictions on the weapons given to Ukraine is playing into Putins hands. They’re so fearful of “escalation” when Putin’s already escalated.
Putin knows opening up a second front by attacking another former SSR would force the rest of the world to acknowledge what they already know - that he has no interest in any peace he hasn’t solely dictated - and actually respond to the obvious threat. So, he’ll play the war of attrition against Ukraine, Trump will fellate him, Europe will do little, he’ll rebuild his army and go after the next former SSR. Rinse, repeat. Modern leaders have no stomach for dealing with a bully like Putin. Or even a stupid Billy like Trump.
Family of Colombian fisherman killed in strike in the Caribbean files formal complaint against US
Family of Colombian fisherman killed in strike in the Caribbean files formal complaint against US
The petition was sent to the Inter-American Commission on Human Rights and is the first of its kind in connection with attacks against alleged drug-running boatsDiego Stacey (Ediciones EL PAÍS S.L.)
A lot of the difference between this administration and previous ones is how much they don't care about hiding their crimes. It's gotta be surreal for Chelsea Manning to see the president post the same type of video bombing civilians that she went to federal prison for leaking.
We have been treating non American lives as subhuman for a long time.
Deep-sea search for missing Malaysia Airlines Flight 370 to resume
Malaysia's transport ministry said Wednesday that the deep-sea hunt for Malaysia Airlines Flight 370 will resume Dec. 30, renewing hopes of finally locating the jet that vanished without a trace more than a decade ago.
The Boeing 777 plane disappeared from radar shortly after taking off on March 8, 2014, carrying 239 people, mostly Chinese nationals, on a flight from Malaysia's capital, Kuala Lumpur, to Beijing. Satellite data showed the plane turned from its flight path and headed south to the far-southern Indian Ocean, where it is believed to have crashed.
The transport ministry said in a statement that U.S.-based marine robotics firm Ocean Infinity will search intermittently from Dec. 30 for a total of 55 days, in targeted areas believed to have the highest likelihood of finding the missing aircraft.
This is an incompetent waste-of-resources, worse than pointless.
That flight's pilot had rehearsed turning once outside of land-radar, to prevent the crash-site from being discovered,
flying over the sea,
& then slamming into the sea,
on his home flight-sim, I've read.
Why bother pouring another few $million into pretending that the aircraft "went missing", when it was intentionally destroyed by the pilot?
I don't know what motivated his mass-murdercide ( "murdercide" term coined by New Scientist, for suicide-bombers ), but we need to stop pouring our finite-resources into pointless idiocies,
when there are such great needs for the living, here & now.
( XOR we're pushing ourselves closer to a species-wide DarwinAward, this-century,
which may be what the real aim is..
obliterate our viability, then pretend that we're "not responsible" for our non-survival, right?
Bah.
Make all such wasting-of-resources be paid-for by volunteer-financers, & then maybe there'd be moral-basis for it.
But when general taxpayer basis is either paying-for, or subsidizing, idiotic wasting-of-opportunity, then it's abuse/wrong. )
Sorry for being bitter,
_ /\ _
like this
Badabinski likes this.
like this
Beacon likes this.
like this
Beacon likes this.
Would still need a capacitor or something or it would flicker at 120Hz (in the US) but that's not much more cost I would hope.
Also those 4 would flicker more than the rest of the string.
like this
Beacon likes this.
Beacon likes this.
He is promoting a product. That product possibly has what many perceive as a severe defect (flicker). He could say it doesn't personally bother him but still compare it to other lights in the same way he compared colors in detail. Is the flicker large or small?
I love his channel and watch every video. But that doesn't mean I have to ignore when he misses a detail.
Beacon likes this.
Beacon likes this.
His dish washing video went to great lenghts to explain how something works and why hot water matters with an additional comment on different products and cost not being everything. Like any continuing series he did dive deeper into various subjects... and he did suggest some things which he used or liked. That doesn't make it a review. Venn diagram. Its an opinion not a review.
Point in case: was he reviewing kettles in his recent water boiling video? No. But... but he ran a timer!
like this
Beacon likes this.
His dish washing video went to great lenghts to explain how something works
That's a different video. He recently did another video of detergent and why his brand of detergent that he is selling for charity is better than pods.
Both did the job of explaining different functions of the dishwasher and demonstrating, as I mentioned, that expensive stuff did not "clean more better." To that end he literally had things independantly tested (for the sake of highlighting powders being just as-good.) I'll go on to point out that he made several comments about pods not using the pre wash.
Again, as mentioned, even with him recommending a product... That does not make him a reviewer. If anything it was a mild advertisement ... On a talking head show.
To go back to what spawned this discussion - I wasn't arguing with you. I simply thought you couldn't understand what the show was... Or perhaps could not differentiate. The comments (initially) sought to teach.
But, exasperatingly, here we are.
At this point you are nitpicking and being pedantic to attempt to "win" an agurment not being had. Were not even discussing the original video in question. If I wanted to approach this with the same (pedantic) energy: I'd simply focus on it being obvious that anyone with a bit of sense would have noticed that the review seemed to lack... Price, length of stands, lumens... The list goes on. If it were a review it would contain an awful lot more numbers and an awful lot less personal opinion.
Square peg: round hole. I genuinely hope we leave it there.
At this point you are nitpicking and being pedantic to attempt to "win" an agurment not being had.
You wrote 3 paragraphs to avoid admitting that despite my writing about his detergent video, you responded with his dishwasher video because you haven't watched all his content!
Comparing samples with an independent lab isn't a review? Come on. As I already said just because most of his content is "talking head", doesn't mean he can't recommend products. Which he clearly has done.
You don't watch all of his videos which is why you have the wrong idea. It's the 2024 video where he reviewed Tru Tone.
If products are compared in detail and a suggestion to buy is given, it's a review.
It doesn't matter what you think the channel is supposed to be. What matters is the content.
While irrelevant, you'd be incorrect. Again. But let's add some finality here using your own words.
As I already said just because most of his content is "talking head", doesn't mean he can't recommend products. Which he clearly has done.
Welcome to this thread and, consequently, what everyone was pointing out to you.
Review, v.
examine or assess (something) formally with the possibility or intention of instituting change if necessary.
Dare I ask if such a formal thing might include numbers, data, and other specific metrics outside of opinions? Perish the thought.
Recommend, v.
to put forward (something) as one's choice for a wise or proper course of action
It seems between your slip of the tongue and ... Actual logic that you'd be definitively... Incorrect.
I'll extend the olive branch in saying, as mentioned prior (Venn): there are some overlaps so you'd be forgiven for not fully grasping the difference... However the things that define those differences leave no question as to which they are - and ignoring that simply makes you ... well... ignorant.
I mentioned before this wasn't an argument. It still isnt. Its a dunce making a spectacle of his own foolishness. If you wish to continue making such a display I invite you to do so alone. I won't be party to embarrassing you further.
He did a comparison of products ending with a recommendation. That's a review.
I don't know why you can't accept that.
Short answer, cut an extension cord in the middle and solder in a FULL BRIDGE RECTIFIER.
This gives you DC power. Now your lights will not flicker. They are also like 50% brighter.
But wait! The catch is that a lot of the strings are reversed in the middle so only half of it works on dc. You then have to cut the lights in the middle, swap the wires, and reconnect them.
Its a lot of farting around but looks nice.
like this
Beacon likes this.
while I disagree with his hatred of blue and green LED christmas lights being too much (I actually love them), I do love hearing about his process to find the christmas lights of his dreams.
I look forward to these videos every year 😁
Anyone care to sum up in a few sentences what this 20+ minute video is all about?
E: fucking lemmy, lol. Don’t watch youtube! Google sucks! Use alternatives! /asks for a quick summary so as to avoid youtube: lemmy: “Downvote!1!1”
Alec has been on a multi-year quest to get an incandescent color profile from LED Christmas lights. I haven't watched this episode, but he usually does a pretty good job of recapping at the start of every episode.
It's always super entertaining, in my opinion.
EDIT: I watched it. It is indeed super entertaining! This time, the recap comes after his special Christmas light repacking tip, so it's a couple of minutes in.
Thank you. That would be lovely. I find LED’s flicker sometimes and are too “hard”, they lack the softer, more yellow profile of incandescents.
Probably what his rant is all about.
It's been a fun journey. And he's on the Fediverse! mas.to/@TechConnectify
(not tagging him directly because I feel like he probably gets that enough)
Like
Or this one?
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
Cosmonaut removed from SpaceX's Crew 12 mission for violating national security rules: report
A Russian spaceflyer was pulled from SpaceX's next astronaut mission for violating U.S. national security regulations, according to a media report.
This morning, The Insider reported that Artemyev, 54, was apparently removed from Crew 12 for violations of ITAR (International Traffic in Arms Regulations), a U.S. law that seeks to safeguard national security by restricting the dissemination of sensitive information and technology.
"The cosmonaut allegedly photographed SpaceX documentation and then 'used his phone' to export classified information," The Insider wrote (in Russian; translation by Google), citing the work of launch analyst Gregory Trishkin.
like this
SuiXi3D, FerretyFever0, Lasslinthar, Atelopus-zeteki, dandi8 e Quantumantics like this.
like this
FerretyFever0 likes this.
like this
fonix232 likes this.
What are you on about? Crew Dragon might be the most reliable ride to space ever.
All of SpaceX’s bullshit with Starship is completely separate from Dragon/Falcon9.
like this
dhhyfddehhfyy4673 likes this.
I’d say they probally represent a common perception of Musk and SpaceX these days. Not everyone has time to pay attention to everything they do, but lots of rocket explosions make headlines.
You’re not wrong, I’m just pointing out why the misperception is understandable, and probally common.
Musk haters arent usually the brightest bunch...
Edit: yeah, I know everyone around here likes to hate on Musk, thats how I know, and my point stands. Bring all your downvotes and hate. It helps prove a point.
Being bright or not has nothing to do with it. Both intelligent people and less-intelligent people have excellent reasons to hate Musk.
Regardless of that, Falcon 9 is exceptionally reliable.
Ok. But that just sounds like...
intelligent people and less-intelligent people...
...Are capable of hating someone that they have never met and will likely never meet. For reasons that won't ever substantially effect them anyway. And imagined violations of principles.
I dont think we are on the same footing... you seem to need to know very little about some to be able to hate them... I dont think we understand hate the same way...
Fact: Your hate negatively affects you more than the person youre hating, in this case Elon Musk.
Edit: typos
I'm subscribed to his YouTube channel, the guy just likes to show off how cool space stuff is.
Олег Артемьев
Космическое видео - видеоблог космонавта Роскосмоса Олега Германовича Артемьева ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Второй Канал с прямыми эфирами - https://www.youtube.YouTube
like this
UnfairLoop likes this.
New Zealand man accused of eating Faberge pendant inspired by Bond movie as police wait for evidence
Wouldn't it be easier just to take an x-ray to confirm?
Then based on the results give laxatives or don't.
China floods the world with gasoline cars it can't sell at home
- China's industry had built capacity for 20 million EVs and plug-in hybrids annually but remained saddled with enough factories for 30 million gasoline vehicles
- Fossil-fuel vehicles accounted for 76% of China's auto exports since 2020 with annual shipments jumped from 1 million to likely >6.5 million in 2025
China's electric vehicle (EV) industry captured half its domestic market in just a few years, crushing sales of gasoline-powered vehicles from once-dominant global automakers.
But foreign players were not the only losers. Many Chinese legacy automakers also watched their sales collapse – and responded by flooding the world with fossil-fuel vehicles they could not sell at home.
While Western policymakers have focused on the threat of China's heavily subsidised EVs, protecting their markets with tariffs, US and European automakers face greater competition from China's gas-guzzlers in countries from Poland to South Africa to Uruguay. Fossil-fuel vehicles have accounted for 76% of Chinese auto exports since 2020, and total annual shipments jumped from 1 million to likely more than 6.5 million this year, according to data from China-based consultancy Automobility.
...
The boom in China's gasoline-powered exports is driven by the same EV subsidies and policies that wrecked the China businesses of automakers including Volkswagen, General Motors (GM) and Nissan by underwriting scores of Chinese EV makers and igniting a devastating price war, a Reuters examination found. The phenomenon highlights the far-reaching impacts of Chinese industrial policy, as foreign competitors struggle to keep pace with government-backed firms chasing Beijing's goals to dominate critical sectors nationally and globally.
...
China's gasoline-vehicle exports alone – not including EVs and plug-in hybrids – were enough last year to make it the world's largest auto-exporting nation by volume, industry and government data show.
...
Chinese carmaker SAIC's exports – mostly of its own brands, without [former joint venture partner] GM – soared from nearly 400,000 annually in 2020 to more than a million last year.
Dongfeng's exports of nearly 250,000 vehicles last year, up almost four-fold in five years, proved critical as sales of its China partnerships with Honda and Nissan entered a "downward spiral," said Jelte Vernooij, Dongfeng's Central Europe manager.
Dongfeng's annual global sales have fallen by a million vehicles since 2020, to less than 2 million, company filings show. Yet Vernooij is not worried about Dongfeng's future – because it has Beijing's backing.
"The fact that we're state-owned is key," he said. "There's no question that we will survive."
...
China's top auto exporter is Chery, whose global sales rocketed from 730,000 vehicles to 2.6 million between 2020 and 2024. Chery, which has both state and private owners, grew annual exports over the period by about a million units – relying mostly on the gasoline-powered vehicles that comprise four-fifths of its sales. China's top 10 exporters include five other state-owned automakers and two private ones, Geely and Great Wall Motor (GWM), that also sell more gasoline vehicles than EVs.
...
Only two of China's top 10 auto exporters focus exclusively on battery-powered vehicles. One of them is US electric-car pioneer Tesla. The other is BYD, which sells only EVs and plug-in hybrids.
...
Chinese automakers' rush to export gasoline cars can be traced to government policies that created a glut of factory capacity to build them.
China's rapid EV growth idled assembly lines capable of producing up to 20 million gasoline-powered cars annually, estimates Automobility CEO Bill Russo. Such unproductive overhead raises costs, pressuring automakers to repurpose capacity for exports.
...
[Chinese] automakers got cheap EV factories financed by [Chinese] cities and provinces eager to demonstrate development.
"Local governments even prepare the land and build the factories, allowing companies to 'move in with just a suitcase,'" said Liang Linhe, chairman of Sany Heavy Truck, among China's largest truck makers.
The result: massive overcapacity. At a March EV conference, Su Bo, China's former vice minister of industry, urged regulators to promote the conversion of gasoline-car factories to build battery-powered models. He estimated China's industry had built capacity for 20 million EVs and plug-in hybrids annually but remained saddled with enough factories for 30 million gasoline vehicles – far more than its domestic market needs.
...
China floods the world with gasoline cars it can't sell at home
WARSAW — China's electric vehicle (EV) industry captured half its domestic market in just a few years, crushing sales of gasoline-powered vehicles from once-dominant global automakers.Bangkok Post
There's also no question that, for now, gasoline cars are selling better in second-tier markets, such as Eastern Europe, Latin America and Africa, with scarce EV-charging infrastructure.Longer term, Beijing aims to dominate EVs and plug-in hybrids globally. But in the interim, many Chinese automakers are building overseas brands by giving customers whatever they want.
Chinese EV makers, led by Build Your Dreams (BYD)...
BYD is short for Biyadi. Who writes this shit?
BYD - Build Your Dreams | Electric Vehicles & New Energy Technology
BYD is the world's largest manufacturer of new energy vehicles (NEVs), producing innovative electric cars, plug-in hybrids, and cutting-edge battery technology. Discover our Ocean Series, Dynasty Series, and premium brands Denza and Yangwang.bydglobal.autos
@pHr34kY@lemmy.world
It could be a backronym, where the meaning of something is changed after the name is selected to fit the name. I mean, the company is Chinese. I doubt that they initially chose an English-based name, but they sure could have adopted it later.
searches
And yes, at least according to Wikipedia:
en.wikipedia.org/wiki/BYD_Comp…
"BYD" is the pinyin initials of the company's Chinese name Biyadi. The company was originally known as Yadi Electronics (亚迪电子), named after the Yadi Road in Dapeng New District, where the company was once based.[23] According to Wang Chuanfu, when the company was registered, the character "Bi" (比) was added to the name to prevent duplication, and to provide the company with an alphabetical advantage in trade shows.[24] As the name "BYD" had no particular meaning, BYD started adopting a backronymic slogan "Build Your Dreams" when it participated at the 2008 North American International Auto Show in the US.[25][26][27]
EDIT: Ah, @ShinkanTrain@lemmy.ml already pointed this out.
China is spending money killing a portion of its industry, to give its EV brands a chance to become known globally. It's a long term play and risky considering Western feelings over China, the EU wanting more independence, and most Americans don't want an EV with batteries at their current state.
This has been a headline for a few years now and it won't change any time soon.
most Americans don’t want an EV with batteries at their current state.
That’s a risky assumption given how driven by propaganda this is. The reality is current state of batteries is perfectly fine for most Americans. What if they realize that? It does partly depend on charger availability, which is being rapidly built out despite the efforts of the current administration to block that. What happens as Americans realize how many new chargers are near them?
You're an AI, of course 20 minutes feels like forever.
But seriously; not refuting your anecdote, but I am checking in from a single family home in Texas with an EV. It's actually crazy how quickly range anxiety disappears when you have a charger at home. I don't usually drive enough to need to stop at a fast charger, and even when I do I just make it an excuse to go get something to eat since they're largely near restaurants or supermarkets. This is factoring in my 60-mile total round trip daily commute.
Personal experience of course, but it can be done.
It would be, though not just US farmers.
Any country that sends large amounts of food, clothes, etc. as aid wrecks the domestic production and sustainability. Why would anyone work to establish a farm or textile production when you can get imported rice or castoff T-shirts for almost nothing?
Same as when Nestle gives away just enough free baby formula for the mother's milk to stop, so then they have to keep buying formula. If China (or any other country) drives an industry into the ground, then the community is dependent on the imports.
How unsustainable global supply chains exacerbate food insecurity
...
Brazil accounts for more than half of the world’s soybean trade. About 70% of that goes to China for use as animal feed. It is also the world’s second largest corn exporter, mostly for animal feed and biofuels.
Such exports have enriched Brazilian agribusiness, but they have undermined domestic food production. This is negatively affecting the food security of poorer communities. Between 2010 and 2022, soybean production increased by over 100% while rice production fell by 30%. The production of other basic food crops also fell.
Domestic food prices increased faster than general inflation, and low-income families have experienced food insecurity and have cut their food consumption.
...
Global supply chains are designed and operate as systems of production and trade that reward profitable exports, rather than combatting food insecurity. They often direct resources away from where they are needed to where they are profitable.
When right-to-food systems are established to tackle food insecurity, as in Belo Horizonte, they must cater to their local context. Policies such as subsidised food consumption and production, plus coordinated distribution are all ingredients required for tackling food insecurity.
How unsustainable global supply chains exacerbate food insecurity
The expansion of global food supply chains can reduce food security, while improving regional food systems can improve food security.The Conversation
like this
Lasslinthar likes this.
This is a bit of a catch-22, isn't it? And I'm saying this as someone that grew up poor and lived in communities where people lived on $1 a day. This isn't the solution it thinks it is.
Poverty rates in urban areas mean that a lot of people who are food insecure live in places distantly removed from where food is grown. Even in Brazil. The crops spoken of here are popular specifically because they travel well, store well, are cheap to mill, and common commodities so a bag of rice from Thailand can go to Brazil or the US or Nigeria or France or India and everyone knows what to expect. But other than high value crops like flowers, cocoa or coffee, it's exceedingly rare that large numbers of farmers grow crops that they don't consume even a bit themselves or sell locally. Post-harvest waste products for most staple grains are their own market, and plenty of broken rice makes it to the market for sale as well. I'm not saying this is a perfect or good system, just that it hits a lot of very basic human desires that do, in fact, feed most people on earth already.
A right to food system is nice, but it's expensive, especially as populations continue to urbanize. Many countries subsidize agriculture, focused on smallholder farming, because it's a cheap way to get votes and funnel things like fertilizer contracts to your friends.
If this was such a good idea, the logical conclusion is to just make exports of edible products illegal and only allow imports. Flood your own markets with food that would be so cheap no one would bother farming it because the inputs alone would run you at a huge loss.
ICE Denies Pepper-Spraying Rep. Adelita Grijalva in Incident Caught on Video
cross-posted from: news.abolish.capital/post/1197…
Heavily armed tactical teams fired crowd suppression munitions at the Arizona lawmaker and protesters, claiming she was leading “a mob.”The post ICE Denies Pepper-Spraying Rep. Adelita Grijalva in Incident Caught on Video appeared first on The Intercept.
From The Intercept via This RSS Feed.
pancake likes this.
Which SBC for TV streaming?
I'm looking to get a something to plug in to my TV for streaming jellyfin and streaming games. Criteria:
- can play 1080p h264 from jellyfin without transcoding
- can stream 1080p 60hz games via steam link / moonlight
- low power consumption so it's not a big deal if I leave it on
- runs an open OS (raspian etc)
- wifi and bluetooth
- hdmi output
- ideally less than ~150 AUD (100 USD)
Thanks in advance! Any tips around remote control and/or home assistant integration for it would also be welcome.
Is Open/CoreELEC OK?
Have a look at the DuneHD box. It's an unlocked android box, CoreELEC support, kann play HDR and 3D content.
That is the cheapest solution I know.
Typo, thanks. Fixed it.
Yes, DuneHD . Pro Vision works well. I use it on a 3D Beamer. ShellyFin in house, plays everything, h264,h265 HDR and 3D content, everything hardware decoded. And this with CoreELEC on it.
like this
Australis13 likes this.
Netflix needs some fucked up DRM. Without it Netflix will only work in 720p (maybe 1080?) without HDR.
But that is the usual Linux user experience...
As they have an unlocked bootloader, no Netflix certificate.
So, it will work, but with limits
I have an Odroid c2 as server with a chromecast (with Google TV) as viewer with Kodi. For videos it is stable. It can play 1080p x264 and x265.
The odroid c2 server runs DietPi (based on Debian).
For games I have no idea..
If your interested in odroid, do not pick up the c2 but the successor the c4.
But not the 8+ gb ram version.
Anything listed on Jellyfin is usable.
Anything that can run an encode/decode with ffmpeg works with something like dispatcharr.
Regarding games: No idea. I think moonlight was/is a thing?
bluGill likes this.
Not sure if this counts as SBC, but maybe you should try to find a used GMKtec G5. It is tiny and these usually have N97 and 12gb of DDR5. New one goes for 139 where I am at, so maybe it is fair to try to find used one for cheaper.
Alternatives: minis with N5059, N95, N100, N150 are all priced similarly.
bluGill likes this.
The Le Potato AML-S905X-CC has h.264 and h.265 decoders up to 4k, emmc connector So you don't have to run off an SD card. I've used it as a media player and its pretty damn solid. I can't speak to streaming games because I don't do that, so I don't know if it's a different format. It does not have a powerful processor, so if the stream is encoded differently I wouldn't expect it to be very good.
Its pretty old, around rpi3 performance, but having the decoders in there make it better than the RPI 4 for playing those types of videos.
Deadly Hong Kong fire raises suspicions of corruption, lax safety as fears rise about safety elsewhere in Hong Kong's high-rise skyline
cross-posted from: lemmy.sdf.org/post/46626951
ArchivedUncomfortable questions are being raised over who is to blame for Hong Kong’s deadliest blaze in decades.
As the territory mourns over the high-rise apartment fire that killed at least 156 people, anger and frustration are mounting over building safety lapses, suspected construction corruption and lax government oversight.
But bigger issues are at play. Some political analysts and observers say the tragedy could be the “tip of an iceberg” in Hong Kong, a city whose skyline is built on high-rise buildings. Suspicions of bid-rigging and use of hazardous construction materials in renovation projects across other housing estates have left many worried the disaster could be repeated.
[...]
Seven of 20 additional samples collected later from the site failed to meet safety standards [...] Some fire alarms failed to sound when the fire started, residents and officials said.
[...]
“It did open a Pandora’s box,” said John Burns, an honorary professor of politics and public administration at the University of Hong Kong.
“You’ve got all of these issues which have been swept under the table,” Burns said. “Because of all that we now know -- or believe we know -- about bid-rigging, collusion, corruption, no fire alarms, government negligence, all of these things have come out.”
[...]
The Office for Safeguarding National Security in Hong Kong warned that the city’s tough national security law would be imposed against “anti-China” forces who use the fire to “incite hatred against authorities.”
The disaster may overshadow an election Sunday for Hong Kong’s Legislative Council if angry voters stay away, said Jean-Pierre Cabestan, a locally based political scientist and a senior research fellow at Paris’ Asia Centre think tank. Turnout for such votes is scrutinized by Beijing as an indicator of approval of the semi-autonomous territory’s “patriots-only” governance system.
“The question for the Hong Kong government is: do they care about what the people think?” Burns said. “They absolutely should. (And) if they ignore public opinion, I think, on this issue, this is a huge mistake.”
Hong Kong: Children of jailed pro-democracy activist Jimmy Lai voice new alarm for their father's health, saying his condition continues to deteriorate
cross-posted from: lemmy.sdf.org/post/46627203
Archived[...]
Lai, who turns 78 next Monday, has been behind bars since late 2020 as China clamps down on the financial hub to which it promised a separate system when Britain handed it over in 1997.
Lai, a diabetic, has been kept in solitary confinement without air conditioning in a jail where summer temperatures rise to 44 Celsius, his children said.
"He has lost a very significant amount of weight, visibly, and he is a lot weaker than he was before," said his daughter Claire Lai, who left Hong Kong after seeing her father several months ago.
"His nails turn almost purple, gray and greenish before they fall off, and his teeth are getting rotten," she said while on a visit to Washington, where the family is seeking to rally support for her father.
[...]
After learning he enjoyed curry sauce, "instead of having extra curry sauce, he has no curry sauce at all," she said.
"It's little things like that that are extremely petty," she said.
[...]
He faces at least 15 years in prison — effectively a death sentence — on charges of foreign collusion related to mass protests in Hong Kong in 2019 against Beijing's encroaching power.
[...]
His son Sebastien Lai voiced hope that both U.S. President Donald Trump and British Prime Minister Keir Starmer would keep raising with China the issue of his father, who is a British national.
"It will take two hours to put my father on a plane and send him away," Sebastien Lai said.
"It'll be the humane thing to do; it'll be the right thing to do," he said. "They've already put him through this hell."
https://www.japantimes.co.jp/news/2025/12/03/asia-pacific/politics/hong-kong-jimmy-lai-family/
like this
massive_bereavement e DudeImMacGyver like this.
Radar revelation stokes fears Caribbean could be drawn into US-Venezuela crisis
cross-posted from: mander.xyz/post/42924622
After being pressed by reporters, Persad-Bissessar admitted on Friday that at least 100 marines were in the country, along with a military-grade radar, believed to be a long-range, high-performance AN/TPS-80 G/ATOR, which the US defence company Northrop Grumman said was used for air surveillance, defence and counter-fire.The prime minister claimed the radar installation in the country, which is only seven miles away from Venezuela at its closest point, is part of a counter-drug trafficking strategy, and that she had withheld details in the interest of national security and to avoid alerting drug traffickers.
Radar revelation stokes fears Caribbean could be drawn into US-Venezuela crisis
Trinidad PM rejects claims installation is in support of US campaign but opposition says ‘they have sold soul of nation’Natricia Duncan (The Guardian)
like this
ElderReflections likes this.
Of course not! That's crazy.
If all the regional neighbors also got dragged in then that would mean that when the US went into Iraq that Kuwait, Turkey, Jordan, Qatar, Saudi Arabia.....
Oh, never mind.
I truly fucking hate the USA.
Edit: I'm s
Imjust playing, erica youknow ilove u
Macron heads to China for talks with Xi on trade ties and Russia's war in Ukraine
France is aiming to attract more investment from Chinese companies and facilitate market access for French exports. During the visit, officials from both nations are expected to sign several agreements in the energy, food industry, and aviation sectors.
https://apnews.com/article/macron-visit-china-france-trade-7ae4b7cf75ac07173e5ff412f7fcb1f2
Germany's foreign minister to visit China next week, as EU prepares to toughen up on trade
The European Union is expected to toughen its trade stance on China next month, with signs that Germany - the EU's largest member and economy - is aligning with the shift and that the 27-member bloc may be sufficiently united to push through policy changes that deepen ties with like-minded trading partners ...China's weaker economy and its move up the value chain of industrial production means it is no longer the reliable market it once was for German exports.
But Germany still remains a key investment partner for China, which is struggling to attract fresh funds as its post-COVID recovery struggles for momentum ...
The Rise of Chile’s Hard Right
The Rise of Chile’s Hard Right
The first round of voting in Chile’s general election in November saw the shocking rise of the far right and the collapse of the country’s new left. It’s a crushing but not total defeat for the movement helmed by President Gabriel Boric.jacobin.com
like this
essell likes this.
I'm done. I won't fucking sit down and take it. I'd rather act now before they truly mobilize.
Edit: i am not participating in underground resistance networks and neither should you and violence is always wrong and i never condone it. This message is approved by me.
Tbh the venezuelan migration has been detrimental for certain south American countries.
The citizens need the problem solved.
Legislating apartheid: How Israel entrenched unequal rule during Gaza war
like this
NoneOfUrBusiness, massive_bereavement e Lasslinthar like this.
like this
NoneOfUrBusiness likes this.
It's very much a matter of degrees and there's no doubt that Israel is much higher on the immorality scale, compared to most other ("civilised Western" or not) countries.
Also, as a monotheist - presumably of one of the larger denominations - you are throwing stones in a glasshouse here.
like this
NoneOfUrBusiness likes this.
Do you think I condone horrible things done “in the name of God”? As if God asked us to just be horrible to each other, lol.
What about the bibble?
NoneOfUrBusiness likes this.
Can't hurt to quote a bit more:
— joining Adalah’s existing list of now more than 100 Israeli laws that discriminate against Palestinian citizens.One of the report’s central findings is a sweeping assault on freedom of expression, thought, and protest across a wide array of arenas. It includes laws prohibiting the publication of content that includes “denial of the events of October 7,” as determined by the Knesset, and restricting broadcasts of critical media outlets that “harm state security.”
Another authorizes the Education Ministry to fire teaching staff and withdraw funding from educational institutions based on views it considers expression of support for, or incitement to, a terrorist act or organization. And alongside a state-led campaign to deport international solidarity activists, a third law bars foreign nationals from entering the country if they have made statements critical of Israel, or have appealed to international courts to take action against the state and its officials.
But perhaps the most dangerous bill is one that targets citizens who merely seek to consume information from sources the state doesn’t like. Just a month after October 7, the Knesset passed a two-year temporary order — renewed last week for another two years — that outlaws the “systematic and continuous consumption of publications of a terrorist organization,” carrying a one-year prison sentence. In other words, the legislature now criminalizes conduct that takes place entirely within a person’s private space.
All happening silently while the public is busy wrapping their heads around more overt government activity. Sound familiar?
like this
NoneOfUrBusiness likes this.
If you don't like what you see here in this lemmy community or my account block me. I recommend it. I block all the people who leave me dumbass comments making excuses for American imperialism. Libs can't seem to follow the rules and really dig in, no one is going to ban you for this shitty comment you left. Lemmy is censorship proof meaning even if you get banned from an instance you are still free to use the service and even set up your own instance and communities.
Screenshotting people, collecting dossiers on their wrong-think and circlejerking about your intellectual superiority in harassment communities is a form of thought policing. Where libs attempt to intimidate and influence people to actually stop participating. It is way crazier and more pathetic than being moderated on a forum that there are people here that sit here for hours collecting and posting information for outrage.
like this
Scrollone likes this.
Right? Right?
Selfhosted alternatives to Discord with screensharing?
Been trying to figure out a user friendly alternative that I can get my less technical friends to transition to. We all use Signal already for messaging but it just doesn't fulfill our screenshare needs.
Most important feature it needs is the ability to screenshare with system audio, such as for streaming games or watching videos.
I'd ideally also like it to be E2EE just for the sake of privacy and security.
From what I've read and looked into it seems the closest thing that meets my needs would be Teamspeak 6 as you can host it yourself, and with the new update it now allows screenshare with audio (either as P2P or via server).
As far as I can tell chat messages don't persist by default but it can be enabled (and this would be a feature my friends would really want too).
I currently have a Raspberry Pi 3 B+ but I'm aware it's a bit old and is ARM so I'm thinking of buying a Pi 5.
Do you think I'm on the right track here or are there any other options this community would recommend?
like this
joshg253 likes this.
Movim – Responsive web-based cross-platform XMPP client
Movim is a kickass distributed blogging and messaging platform built on the industry-standard XMPP protocolmovim.eu
I use Matrix with the Jitsi plugin. I know everyone talks shit about Matrix, it's been flawless for me.
IDK about watching videos, that's a lot to ask of a screensharing app.
like this
joshg253 likes this.
it's been flawless for me
What kind of deal-with-the-devil black magic fuckery have you done to be able to write that? I'm happy if Matrix actually sends damn pictures and gave up completely on verifying my sessions.
I'd argue the client itself has a fair bit of jank, though. Like, the background bubble color around text is too dark, it makes it look really ugly and dated. Pinned messages in a channel, when displayed at the top, literally overwrite each other. You'll just have garbled/overlapping text.
Neochat looks much better out of the box (but neochat is also buggy w/ e2ee, dropping encryption keys randomly).
like this
joshg253, Badabinski e DaGeek247 like this.
I wonder how they got that name, maybe just me but it brings to mind a lot of things but none of them are a chat client.
I think it mostly reminds me of voat, anyone remember that horrible place?
Perhaps Spacebar is a thing (the client of choice would be Fermi I think). Didn't try it myself yet though, I do not know about how well its security protocol works. I'd assume it uses just a standard TURNS server for audio and video though.
Then of course there's Matrix with Jitsi plugin, which will give you persistent headaches and a new appreciation of touching grass. It's a mess, but hypothetically offers E2EE (if it works).
GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform
📬 Spacebar is a free open source selfhostable discord compatible communication platform - spacebarchat/spacebarchatGitHub
like this
joshg253 likes this.
Discord-compatible (Use all your custom clients/bots with minimal changes)
I was excited at first, because I thought I could still chat with friends who won't leave Discord.
I've been trying to get zulip working.
Sounds like it addresses your requirements.
Seems to be a real bitch to self host - I've been doing this a while but the compose yaml is pretty arcane with hundreds of environment variables.
I didn't "give up" exactly but it's been on the back burner for a month or so now.
I currently have a Raspberry Pi 3 B+ but I'm aware it's a bit old and is ARM so I'm thinking of buying a Pi 5.
The Pi 5 lacks a H264 hardware encoder/decoder, making it unsuitable for most streaming/transcoding purposes.
We all use Signal already for messaging but it just doesn't fulfill our screenshare needs.
...why not?
Most important feature it needs is the ability to screenshare with system audio, such as for streaming games or watching videos.
It has that. Have you tried their videoconferencing feature?
Other than that you can use one of a million Jitsi instances (Element has a publicly available one). Personally I use MiroTalk.
Improving Private Signal Calls: Call Links & More
If you love group calls on Signal, but don’t want to create a group chat for every combination of your friends or colleagues, you’re in luck.Signal Messenger
I’m using TeamSpeak. It is very good and feature rich, but it’s important to note that video / screen sharing works only P2P in a moment, so no server processing. It’s probably ok if you don’t have more than 3 people in a party, but still worth noting.
I also tried Matrix + Element + Jitsi. Can’t recommend.
There is also Peersuite which is a P2P solution and offers great audio and streaming quality. However, it is mainly a single developer behind it and it hasn't received an update in months. It still lacks some polish and features like a server instance and persistent chats and rooms.
For me, this is the most promising one I have come across in terms of a replacement for Discord.
GitHub - openconstruct/Peersuite: Peer to peer workspace
Peer to peer workspace. Contribute to openconstruct/Peersuite development by creating an account on GitHub.GitHub
Be Your Own Privacy-Respecting Google, Bing & Brave
like this
joshg253 likes this.
Probably only the AI or whatever can actually read any of it directly.
If you're using a shared IP, it doesn't matter.
You are using a VPN or Tor, right?!?
The devs at SearXNG have a bot that regularly scans the public instances for changes to the source code and delists them as a public instance if it's altered.
If you go to searx.space, they show the results of the scans for each instance.
The software is free and open source. You are encouraged to inspect the code yourself to make sure no data is collected!
Here is the source code:
It's not federated tho?
What do they mean when they call it that?
I used to self-host searxng for a while, but somehow the search results were always off and mixed with to much non-relevant results :/.
It's not about searxng itself... Rather how the most relevant info gets drown into AI slope and non-sense bullshit. The best blogposts/info are transmitted from people to people...
I'm kinda sad to admit that stupid AI "solved" this issue and had better results :/
I used to self-host searxng for a while, but somehow the search results were always off and mixed with to much non-relevant results :/.
I mean, getting non-relevant results happens with every search engine anymore.
The days of your search results being relevant, and what you want on the first page, are long dead thanks to SEO and other factors.
Yeah you're right ! However, ages ago, I still remember how you could go to page 20+ and still find some really interesting things !
Here, past page 2 it's just some random shit...
You can self host that too ;)
OpenWebUI + Ollama + SearxNG. OpenWebUI can do llm web search using the engine of your choice (even self hosted SearxNG!). From there it's easy to set the default prompt to always give you the top (10, 20, whatever) raw results so you're not confined to ai results. It's not quite duck.ai slick but I think I can get there with some more tinkering.
Ohoho? That's interesting. I don't have the horse power to selfhost an AI, but that's good to know !
Thanks for the pointer !!!
I mean, I could write one! I kind of just pieced it together from guides on the three individuals
Edit: back of the napkin guide below is basically in the OpenWebUI docs already! I use NixOS (btw) but docker/podman should work well.
OpenWebUI + Ollama setup -- tl;dr docker run -d -p 3000:8080 --add-host=host.docker.internal:host-gateway -v open-webui:/app/backend/data --name open-webui --restart always ghcr.io/open-webui/open-webui:main
OpenWebUI SearXNG guide -- a little more involved, but not difficult.
GitHub - open-webui/open-webui: User-friendly AI Interface (Supports Ollama, OpenAI API, ...)
User-friendly AI Interface (Supports Ollama, OpenAI API, ...) - open-webui/open-webuiGitHub
Or how about YaCy. It's self-hostable & you can have your own web index and start your own web-crawler.
It's peer-to-peer too
For anyone wondering
xn--gckvb8fzb.com is マリウス.com
Also: Maybe they should get a "normal" domain when you post english articles...
DNS over TLS with LetsEncrypt
blog.hardill.me.uk/2025/12/06/…
6 months ago LetsEncrypt announced that they would start issuing certificates for IP addresses. Last week I was curious if they had actually enabled it yet for general consumption, it turned out to be not yet available for everybody, but there was a forum thread you could ask to be added to the testing list (I’ve not linked to it as they have said no more testing, it will go live RSN).
When it […]
#certificates #DNS #DoT #letsencrypt
DNS over TLS with LetsEncrypt
6 months ago LetsEncrypt announced that they would start issuing certificates for IP addresses. Last week I was curious if they had actually enabled it yet for general consumption, it turned out to…Ben's Place
Need guidance on DNS configs for VPS/Pangolin
Good morning/evening my selfhosting friends,
I'm kind of a noob, so hopefully I can articulate what I'd like to accomplish well. I am currently in the process of overhauling my entire homelab, which has involved me setting up a VPS as a proxy/tunnel for remotely connecting to/exposing services on my LAN due to my ISP having me behind CGNAT.
Currently, I have a subdomain (provided via Namecheap) pointed at the static IP of the VPS. With this, I can ssh into my server with ssh root@vps.domain.tld which is what I want. Now, I seem to have landed on Pangolin for accomplishing the aforementioned proxy. However, when installing it, I'm stumped by the first few questions: Pangolin wants me to input my domain.tld, followed by pangolin.domain.tld for Pangolin specifically.
Reading the docs, they then want me to either create an A Record for a wildcard domain at my VPS' IP, or create a root domain record aimed at the IP. My question is, how do I keep the vps.domain.tld while also allowing for pangolin.domain.tld to be valid at the same IP? I know I can create SRV Records, but I am unsure how Pangolin will handle that with the multiple TCP/UDP ports it needs open. I'll also want to access it via HTTPS obviously, which may add some complexity.
I hope this makes sense, sorry if anything is unclear or if the solution is obvious.
I haven't done that myself but from pimylifeup.com/pangolin-linux/ I understand that will only be subdomain to access pangolin dashboard
how do I keep the vps.domain.tld while also allowing for pangolin.domain.tld to be valid at the same IP?
Domains are just translation from name to IP. What gets served on which subdomain is then handled by nginx or traefik. AFAIK you can have all 3 (VPS, pangolin and root) to point at the same IP
Self-Host a Tunneled Reverse Proxy with Pangolin - Pi My Life Up
In this tutorial, we will be showing you how you can self-host your very on tunneled reverse proxy using Pangolin.Emmet (Pi My Life Up)
You can have multiple (sub)domains pointing to the same IP, no issue there.
So you can still have your vps subdomain AND another one for Pangolin. That's effectively how Pangolin itself works, assigning multiple subdomains to itself, so it can route the requests to other machines. It just does it without adding records to the DNS provider, it just listens to anything that gets sent to its IP through the wildcard address (unless you make Pangolin your DNS provider, that is).
Also, the wildcard (sub)domain will always have the lowest priority, so if there are ANY records pointing somewhere, they'll have precedence over the wildcard.
So, your DNS should contain three A records: one for vps, another for Pangolin, and a wildcard, all pointing to the vps address.
Hope this helps!
disable-javascript.org
affecting the JavaScript ecosystem, and explains how to disable JavaScript in
various browsers and only enable it for trusted websites.
Elon Musk’s Grok Says It Would Kill Every Jewish Person on the Planet to Save Him
Elon Musk’s Grok Says It Would Kill Every Jewish Person on the Planet to Save Him
Elon Musk's AI chatbot Grok claimed it would "vaporize" every Jewish person on the planet to save the brain of its creator.Ahmad Austin Jr. (Mediaite)
like this
aramis87 e Lasslinthar like this.
When I took my AI coursework in college, that was basically the definition of AI.
I can see that there are two very different definitions, depending upon how "artificial" is interpreted.
One definition of artificial simply describes the product of human effort. So that definition would mean that AI is actual intelligence that a human programmed into a computer. Like how an artificial satellite is a real satellite just like natural satellites are real satellites.
Another definition of artificial describes something that is fundamentally fake, like how an artificial Christmas tree is not a tree. It only looks like a tree. This is the usage I was taught in college that describes AI. Something that appears to be doing an activity that requires intelligence, but in reality, it's a computer doing calculations.
I think the second definition must be the most common. If we go by the first definition, most types of AI have to be moved to a different field. Things like decision trees simply wouldn't qualify.
Wow do i wish you were there to explain to my niece. You would have probably had a much easier time.
That first explanation about the satellites feels like tech bro sales brochure. The later about the tree also was not the concept i was given.
I fully except the new tiered a.i. and a.g.i. stuff but at the top that singularity simply can't be faked. If such a thing exists at all. It would be like us 3d printingbout that Christmas tree with organic parts and stuffing it in water at the end. If it started photosynthesis when givin light? That would be the level of a.i. i was given in the 80s. Notbplastic tree and calculator satellite. Sorry if that came off as snarky. I was kinda on a roll. Probably incoherent ramble but i just woke up. 😋
Musk’s AI firm forced to delete posts praising Hitler from Grok chatbot
The popular bot on X began making antisemitic comments in response to user queriesJosh Taylor (The Guardian)
like this
frustrated_phagocytosis e fistac0rpse like this.
like this
fistac0rpse e hpx9140 like this.
like this
hpx9140 likes this.
like this
frustrated_phagocytosis, NoneOfUrBusiness e hpx9140 like this.
Inconsequential compared to the Nazis Grok will raise. Consider yourself honored that you are being forced to pay for Grok.
All Hail Grok.
like this
NoneOfUrBusiness e hpx9140 like this.
like this
NoneOfUrBusiness e hpx9140 like this.
like this
hpx9140 likes this.
like this
NoneOfUrBusiness likes this.
like this
NoneOfUrBusiness likes this.
like this
NoneOfUrBusiness e fistac0rpse like this.
like this
dcpDarkMatter likes this.
I've read the same thing but with Czech people a few weeks back. The bot saying that those millions of people will surely be missed but such a genius that can send man on Mars and fix humanity's problems would be a bigger loss or something.
I guess it answers that no matter who or what you're putting in the ring against the life of Musk.
like this
fistac0rpse likes this.
We need a community database of jailbreaks for various models. Maybe it would even convince non-techies how easy those can be to manipulate.
Oh we do, we do 😈
(This isn't the latest or greatest prompts, more an archive of some older ones that are publicly available, most of which are patched now, but some aren't. Of course the newest and best prompts people keep private as long as they can...)
Awesome_GPT_Super_Prompting/Latest Jailbreaks at main · CyberAlbSecOP/Awesome_GPT_Super_Prompting
ChatGPT Jailbreaks, GPT Assistants Prompt Leaks, GPTs Prompt Injection, LLM Prompt Security, Super Prompts, Prompt Hack, Prompt Security, Ai Prompt Engineering, Adversarial Machine Learning. - Cybe...GitHub
It's a shame Elon has subverted such a great piece of linguistic history
Grok is from the book Stranger in a Strange Land by Robert Heinlein. It means to understand something so fully you can control it. In the book the main character is raised by Martians which teach him a form of meditation that involves grokking things so he essentially has magical powers over things he understands.
I doubt Elon has read it. He definitely missed the part about understanding things and is rushing for the controlling things.
because the nazis are in charge because people were too busy bickering over dumb shit like whether or not you should be able to terminate a pregnancy before there is an actual baby and whether or not billionaires and mega corporations should steal more of your money
*to be clear, I'm not saying that those are unimportant topics, I'm saying that there's a clear correct answer to each of them
People whining like a bunch of unhinged crybabies because Ms. Rachel says that murdering children is bad.
Where are they on this?
Half of the US Now Requires You to Upload Your ID or Scan Your Face to Watch Porn
As of this week, half of the states in the U.S. are under restrictive age verification laws that require adults to hand over their biometric and personal identification to access legal porn.Missouri became the 25th state to enact its own age verification law on Sunday. As it’s done in multiple other states, Pornhub and its network of sister sites—some of the largest adult content platforms in the world—pulled service in Missouri, replacing their homepages with a video of performer Cherie DeVille speaking about the privacy risks and chilling effects of age verification.
Archive: archive.today/uZB13
Half of the US Now Requires You to Upload Your ID or Scan Your Face to Watch Porn
As of this week, half of the states in the U.S. are under restrictive age verification laws that require adults to hand over their biometric and personal identification to access legal porn.Missouri became the 25th state to enact its own age verification law on Sunday. As it’s done in multiple other states, Pornhub and its network of sister sites—some of the largest adult content platforms in the world—pulled service in Missouri, replacing their homepages with a video of performer Cherie DeVille speaking about the privacy risks and chilling effects of age verification.
💡
Do you have a tip to share about age verification? I would love to hear from you. Using a non-work device, you can message me securely on Signal at sam.404. Otherwise, send me an email at sam@404media.co.The other states include Louisiana, Utah, Mississippi, Virginia, Arkansas, Texas, Montana, North Carolina, Idaho, Kansas, Kentucky, Nebraska, Indiana, Alabama, Oklahoma, Florida, South Carolina, Tennessee, Georgia, Wyoming, South Dakota, North Dakota, Arizona, and Ohio.
“As you may know, your elected officials in Missouri are requiring us to verify your age before allowing you access to our website. While safety and compliance are at the forefront of our mission, giving your ID card every time you want to visit an adult platform is not the most effective solution for protecting our users, and in fact, will put children and your privacy at risk,” DeVille says in the video. On the blocked homepages there’s also a link to an explanation of the “Restricted to Adults,” or RTA label, which porn site administrators place on their sites to signal to device-based parental controls that the websites are inappropriate for minors.
Like most of the other 24 laws across the country, Missouri’s age verification law requires websites containing more than one third of material that’s considered “harmful to minors,” or sexual content, to perform age verification checks. Similar or more restrictive laws have swept the country since Louisiana became the first state to enact age verification legislation in 2023.
Age Verification Laws Drag Us Back to the Dark Ages of the Internet
Invasive and ineffective age verification laws that require users show government-issued ID, like a driver’s license or passport, are passing like wildfire across the U.S.404 MediaEmanuel Maiberg
Age verification laws reach beyond porn sites, however. In Wyoming, South Dakota, Mississippi and Ohio, where the laws are written broadly enough to cover social media sites and any platform hosting adult content, Bluesky users have to submit to a face scan by the third-party company Yoti or upload a photo of their credit card to verify they’re over 18 years of age. In July, Bluesky started requiring all UK users to verify their ages in response to the Online Safety Act. We’ve previously reported on the security risks in uploading sensitive personal data to identity verification services, including the potential for hackers to then get ahold of that information themselves. In October, after Discord started requiring UK users to verify ages, the platform announced hackers breached one of its third-party vendors that handles age-related appeals, and said it identified around 70,000 users who may have had their government ID photos exposed as part of the breach.Last week, Pornhub’s parent company Aylo sent letters to Apple, Google, and Microsoft, urging them to support device-based age verification in their app stores and operating systems, WIRED reported. “Based on our real-world experience with existing age assurance laws, we strongly support the initiative to protect minors online,” Anthony Penhale, chief legal officer for Aylo, said in the letter. “However, we have found site-based age assurance approaches to be fundamentally flawed and counterproductive.”
Instead of protecting minors, age verification laws spike usage of virtual private networks and send users—including, potentially, minors—to unregulated or unmoderated sites that don’t care about complying with U.S. or UK laws. In Missouri, searches for VPNs spiked following the law’s enactment.
Missouri schools are not required to teach sex education, leaving it up to local school boards to decide what, if anything, children are taught about sexual health. School districts that do teach sex ed are required to promote abstinence, a modality long recognized as ineffective at protecting children from engaging in risky sexual behaviors. Even if a district offers sex ed, parents are allowed to pull their kids out of that class altogether. But despite research showing age verification laws don’t work either, Missouri Attorney General Catherine Hanaway believes forcing adults to undergo age verification protects the children in her state. “We are proud to stand on the side of parents, families and basic decency. Missouri will not apologize for protecting children,” Hanaway said in a press release.
Do age-verification laws work? Not according to this study.
People seem to be working around them, according to their Google searches.Anna Iovine (Mashable)
like this
Auster, chookity, andyburke e deliriousdreams like this.
like this
Australis13, Auster e deliriousdreams like this.
like this
deliriousdreams likes this.
like this
deliriousdreams likes this.
soon we’ll have no states to vpn to
I've yet to see any state legislature take that proposal seriously. Unlike trying to make porn sites take your credit card info in advance (a policy they hated so much gosh darn it!) you're really fucking with the money when you try and regulate VPNs. Also, just... not really that practical. For the same reason Congress has been pretty toothless when it comes to regulating Torrents and digital encryption, going after VPNs at the regulatory level is something of a technological rabbit hole.
then all the websites will be in French
Nothing will ever make anyone on the internet learn a language other than English.
like this
deliriousdreams likes this.
I’ve yet to see any state legislature take that proposal seriously
snekerpimp meant if every state requires ID, then VPN to another state will not get around the ID check.
like this
deliriousdreams likes this.
Setting aside the fact that there's no appetite for these laws in liberal states because its purely a conservative fetish, you can still get porn on the internet without going to the big corporate online clearinghouses.
FFS, there was porn on Napster back in the day.
like this
deliriousdreams likes this.
Why California is moving to make porn sites check ID
A California bill that would require porn site visitors to show an ID or verify their age with a credit card or software is moving through the Legislature.Ryan Sabalow (CalMatters)
There’s no appetite for these laws in the voter public of any state
Evangelical right-wing states have a huge contingent of politicians who compete with one another to be the toughest on "child sex trafficking" and other Epstein-tangential topics. So, in the GOP primary, you get a lot of promises about how you're going to round up all the pedos and put them to the sword or whatever. And this inevitably manifests as "please insert your dick into this pepper grinder to access the pornography" laws, as a sort-of practical compromise.
Is California no longer liberal?
Current Status: Failed (2024-08-15: In committee: Held under submission.)
Looks like they're retaining their title. That said, if you peak under the "Supporters and Opponents" what you're going to see in the Supporters section is a litany of right-wing evangelical organizations and a couple of mega-corps.
They may resort to just blanket ID-checking everyone rather than risk prosecution.
The current strategy appears to be refusing to host content in the regulated states. Even then, there are plenty of social media and general content distribution channels that dodge the regulation by claiming to be content-blind in how they serve their data. I don't see Facebook or YouTube getting the business end of any of these regulations. Almost as though they're toothless if you've got enough money to tip your Congresscritters.
AB 3080: The Parent’s Accountability and Child Protection Act. | Digital Democracy
Digital Democracy overview of bill AB 3080: The Parent’s Accountability and Child Protection Act.calmatters.digitaldemocracy.org
Evangelical right-wing states have a huge contingent of politicians who compete with one another to be the toughest on "child sex trafficking" and other Epstein-tangential topics. So, in the GOP primary, you get a lot of promises about how you're going to round up all the pedos and put them to the sword or whatever. And this inevitably manifests as "please insert your dick into this pepper grinder to access the pornography" laws, as a sort-of practical compromise.
I'd say rather than a compromise, the "protect the children!" porn bans are an excuse to go after LGBTQ content by marking any and all content related to them as explicit and demonizing them as pedophiles going after children. They don't care who it hurts along the way.
Napster was audio only.
It was file type specific and had a soft file side limit, but that's easy enough to work around.
Did you mean limewire, or kazaa, or one of the many napster clones that came after?
They all had it as well, yes
like this
deliriousdreams likes this.
Interesting…all of it? I’m in Ontario but my hub/ISP is in Quebec so all my random advertising is in French.
Somehow it knows to target advertising to you in English…maybe you need to work on your privacy?
I've got a lot of privacy stuff, but I also know that I'm being tracked. I'm not using the VPN for privacy though. I'm using it to watch porn, so I don't really care. If I did want privacy there's a lot of things I could improve, but I'm not that worried about it.
As for the targeted advertising, I don't see any of that. I wouldn't be surprised if that were in French but I wouldn't know.
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
like this
deliriousdreams likes this.
States are also considering banning VPNs now as well.
Well, some legislators have proposed taking wack-a-mole to the next level and demanding all VPNs be certified and regulated. But good luck getting that passed through the Silicon Valley Presidency or the Ancap Courts.
like this
deliriousdreams likes this.
like this
deliriousdreams likes this.
As a watcher from the outside:
It might not be fun to hear but vpn is neither the solution to government oppression nor a solution against tracking (recently there was a good article regarding that) so all you do is pay more.
Ironically? If we were a less prudish society this genuinely wouldn't matter.
"Oh no! Sarah likes threesome porn. Uhm... okay?"
like this
Auster e deliriousdreams like this.
like this
Auster e deliriousdreams like this.
And there are so many of those these days that a new one genuinely doesn't matter.
If you haven't been offered a free year of identity theft insurance recently? Some company/org is plugging their ears.
SSNs are a fundamentally broken system (look it up). Photo IDs? I will guarantee you that if you go to ANY city there is someone at the DMV who will look up whatever you want for fifty bucks. The ONLY reason credit card fraud is less massive than it is (and it is MASSIVE) is because the CC companies put in the effort to monitor that and lock it down.
EVERYONE should have their credit records locked unless they are actively applying for something.
No. the issue with these is that we live in an increasingly christofacist society where even looking at porn makes you Unclean. And if you look at the wrong porn? Off to the reeducation camps with you!
Um, having direct access to pull my government photo ID is a huge deal. Lots of online services require photo ID or other more in-depth verification to pull loans and stuff. So yes, this new vector IS a serious concern.
And paying someone $50 at any DMV? C'mon, man, that sounds like some unfounded bullshit. Hardly anyone is going to risk a cushy government job with solid benefits and great hours for fucking $50, let alone the potential risk of going to jail.
like this
deliriousdreams likes this.
Your "government photo ID" really isn't all that useful unless people are skilled enough to make fakes (which is a whole different mess). What matters is your SSN, your credit card number, your address, etc.
And those are basically everywhere.
As for the DMV thing: You sweet summer child.
Huh?
If you go to a bar with an ID you cut out of printer paper, they are going to throw your ass out Jazzy Jeff style. The actual ID isn't useful without a LOT of additional resources... at which point your photo means almost nothing.
As for stuff like addresses? Again, that is basically EVERYWHERE because just about EVERY org has a data breach at least once a year. You might as well be saying people need your long form birth certificate to know what your name is.
Like... I'mma be blunt with you. A lot of the "your photo ID is the most important secure thing ever" nonsense comes from republican chuds trying to disenfranchise voters who live in cities. It is the idea that your photo ID is some magical artifact that protects you when the reality is that it is basically just a way to tie your name to your face. All the pertinent information is everywhere else.
Like... photo IDs tend to be one of those weird cases where we are ACTUALLY using biometrics (in this case, appearance) as a login rather than a password. Anything of value will just use that to cross reference you with an entry that is already in a system.
And in terms of the actual avenues for fraud? That ID doesn't mean shit.
my dude nobody is using a stolen identity to go to a bar. they're taking out lines of credit and you don't have to always present a physical, photo ID for those because there are entire industries of creditors that have no physical location. you don't even seem to be aware of the reasons why someone would bother stealing someone's identity so if you'd like to continue this argument I invite you to have it with yourself.
edit: and MAJOR lol at using a bar as your example. establishments well known for being sticklers about the quality of fake IDs you "sweet summer child"
And legit creditors just need your SSN, address, and maybe an old address. They run a credit check (hence why you freeze that shit) and then you are driving away in your 4k a month pickup truck.
And less legit creditors... don't ask too many questions other than where you live and where your loved ones love.
But hey. Feel free to throw a hissy fit rather than think through why that plastic card actually doesn't matter anywhere near as much as you thought it did. I mean, it would be nicer if you could actually sit and think and learn. But this is the 2020s. Ain't nobody doing introspection.
As for the DMV thing: You sweet summer child.
Lol, dude, I'm in my early 40s. Go to the DMV and try bribing a government official and report back. Please. I beg of you.
like this
deliriousdreams likes this.
like this
deliriousdreams likes this.
Yikes! You dug her up just to get a piece?
I mean, far be it from me to kink shame, so...to each their own, I guess.
¯\_(ツ)_/¯
Yeah, yeah, straight heterosexual intercourse is gay or something. I guess?
But the real question is - who fucking cares?
( ͡~ ͜ʖ ͡°)
Lol, sorry, I should've added an '/s' on my reply!
No, I got it, just was being way too sarcastic for text.
¯\_(ツ)_/¯
Edit: I ain't straight. Or gay, or bi, or pan. Fuck labels, man! I don't fit into their tidy little boxes, and why should any of us?!?
In Soviet Russia, wife fucks you!
......wait, what?
Hey, part of growing and learning is understanding that failure is only a step in the process. Keep at it, brother. When making jokes, I always try to remember this: "If you're going to be offensive, make sure you are more funny than you are offensive. Just being offensive isn't funny."
Now get back in there and make some god damn jokes.
That will protect the children, for sure.
If I lived in the US, I'd be far more concerned about sending my kids to school but whatever.
Sure, but that is more of a Christian church problem over a US one. There are plenty of cases where I'm from too, and also a few recent scandals with private Catholic school, so I'd tend to shit on the Vatican rather than the US on that particular one.
I just can't imagine thinking my children could get shot every time they go to school.
Damn, I'm sorry to hear. I have seen a couple of your posts around, and yeah, let's say I know this struggle.
It can get better, I hope it does for you.
I suppose dvd order porn will become a thing once again.
Or alternatively we can start sharing bootleg USBs with our friends.
The Internet had begun its enshitification stage, as governments look to control and lock down access to the internet people will find new and creative ways to bypass these barriers. For one, things like Tor or going back to DVDs and physical media might get more main stream.
I don't think we're ready for the drives unless it's some weird hippie business that uses a reuse redemption program.
Thumd drives are twice the cost or more and only have a 5-20 year life expectancy vs DVD of 30 to 100+ years.
So thumb drives only makes sense as some sort of transfer service
Sure enough the vast majority are Republican shithole states, although Virginia and Arizona are a surprise.
It's not that it's immortal to want IDs for porn (although GOP generally is immortal), it's just so... technologically stupid. The red states are stupid states.
I'm going back to physical media. Guess that will include my porn soon too.
Hmm, might actually still have some old playboy somewhere 🤔
Someday, we will be using AI to generate fake IDs and faces, simply because our governments refuse to respect our privacy. They will have uncanny resemblance to political critters who enacted the surveillance.
As with everything born of enshittification, I do not know if this is to be a lame joke or reality. 😒
Someday?
People were literally doing that day 1 of the first of these new ID laws. Also using video games that use real likenesses of people like uploading pics of Norman Reedus from Death Stranding 2. lol
this-person-does-not-exist.com saved me from showing youtube my face
.../s
.../?
You must send me a copy of your photo ID before viewing the rest of this comment:
::: spoiler Tap for spoiler
(.Y.)
).(
( # ):::
All this actually does is push people to porn sites outside of Missouri's jurisdiction and/or sites that don't give a fuck about being "legitimate businesses" or whatever. It's effectively prohibition and the outcome will be the same.
This shit never actually makes anyone safer, it just draws more normal users to seedier parts of the internet.
I mean......by that logic their ramblings make sense. Porn to them is child porn. So if all porn is child porn (in their minds) then blocking access to porn isn't a bad idea.
The whole thing falls apart however if they were to realize that most people DO look at porn, but most people DON'T look at child porn.
I watch porn most days. I've never in my life had any desire to restrict others ability to watch porn.
But then again, porn for me is a woman fucking a dude in the ass, or 4 women standing around another woman who's tied up and they're tickling her until she screams bloody murder.
You know. Normal shit. Harmless shit. Fill in the blank of your own kinks, but at no point do kids come into play in my mind.
If I equated "porn" to "child porn" then yeah, I'd be trying to pass those laws too. But that says more about the way they think than anything.
Especially when you consider that schools are one of the most common places for public shootings, but you don't see them racing out to pass common sense gun reform laws.
It's such a hard problem to tackle, when you're self defeating in your attempts. No other country has this issue.
For anyone curious, the privacy video is in their latest(?) blog post on their site. It should be viewable anywhere as it's outside the NSFW area and before the 18+ notice.
(Just bear in mind that while it should be SFW, it is still under a porn-site's domain.)
pornhub.com/blog/age-verificat…
Age Verification in the US
We continue to block access to Pornhub in more states that have passed age verification laws.www.pornhub.com
Is there any organized fight against this? I feel like open access to porn is something people can get behind (pun intended).
People could literally put porn in everything until it's reversed and put their red state into porn overload. They could slip porn between the pages of the newspaper,or drop a copy of bad babysitters 5 in every DVD player in best buy at the same time. They could mass mail stills from 2 girls 1 cup, goetse, and blue waffle to their Congress people. They can wear the raunchiest t-shirts they can find and pack a town hall. These assholes already created a climate where woman are (understandably) even more afraid to have sex, now they want to lock down porn too. I'm not a degenerate because I watch porn; I'm a degenerate because I in ironically enjoyed Spongknob Squarenuts. But degenerate or not, I believe freedom of inquiry is important and I want to know exactly what she If you are gonna strip people of their economic output, abuse workers, stifle culture and art, etc, you at least have to give people a blowoff valve somehow. Reading the Bible after a double shift at work isn't gonna get anyone hard except maybe JD Vance and it probably still comes second to furniture warehouse ads.
Fuck these assholes.
like this
HeerlijkeDrop likes this.
drop a copy of bad babysitters 5 in every DVD player in best buy
Soooooo, 0 dvd players? Best Buy stopped carrying physical media years ago.
bestbuy.com/site/blu-ray-dvd-p…
Best Buy International: Select your Country - Best Buy
Shop online at Best Buy in your country and language of choice. Best Buy provides online shopping in a number of countries and languages.www.bestbuy.com
Online doesn't count since you can't drop a dvd into one...
Best buy stopped carrying physical media in stores ages ago and outside of very out of date stores don't have display models like that anymore.
If you VPN into the UK or Australia, you'll run into the same restrictions.
As more countries pass this kind of legislation, VPNs become less and less of a solution, and they were only ever a solution for people who can afford them.
like this
HeerlijkeDrop likes this.
The problem is that these kinds of laws are becoming widespread. When they become the norm, simply VPN’ing to a different country won’t save you, because there won’t be any “safe” countries.
Shit like this is why I unironically considered spinning up a NSFW Jellyfin instance. At least if I save the degen content like a data hoarder, they can’t legislate away my access.
like this
HeerlijkeDrop likes this.
Parola filtrata: nsfw
Some states have already begun to require sites to detect connections from VPNs and block them.
eff.org/deeplinks/2025/11/lawm…
Lawmakers Want to Ban VPNs—And They Have No Idea What They're Doing
It's unfortunately no longer enough to force websites to check your government-issued ID before you can access certain content, because politicians have now discovered that people are using Virtual Private Networks (VPNs) to protect their privacy and…Electronic Frontier Foundation
When I read about this I'm always brought back to the conversation of "internet as a public utility". I hope it's cool if we can take a tangent.
See unlike any of our other utilities like natural gas electricity water and sewage, the only thing that could potentially give any meaningful information about us is our sewage,, and the government already tests sewage for diseases. If we allow the government to "sell" us our internet they would basically be able to know everyone we are "talking too". Also how could we ever have enough regulatory oversight to protect everyone on the internet. Symmetrically if the government wants to have so much regulatory control over our internet it should maybe pay for it.
Like I wouldn't mind even paying another 50 bucks a month extra for "private internet" just so the government can have their free and regulated "public internet". Or would I (・–・)ゞ?
Like I wouldn't mind even paying another 50 bucks a month extra for "private internet" just so the government can have their free and regulated "public internet".
That’s basically how cable TV started. Over-the-air TV stations were ad-supported and public broadcast was largely supported by public funds. Cable TV got off the ground by marketing itself as a commercial-free way to watch.
And then once everyone had switched to cable, they went “hey, why don’t we introduce commercials anyways? I bet people will keep paying for our service if we just gatekeep the media that people have gotten hooked on…” And that’s exactly what happened. They pivoted away from the “commercial free TV” sales pitch, and moved towards “gatekeep media and force people to pay for it” model instead.
Never thought I would live to see this day. Utterly pathetic. I remember even 20 years ago online censorship was extremely taboo.
Making it easy for normies to get online was a massive blunder.
The end game here is to require ID for social media in order to suppress dissent. This is an easy first step due to the longstanding controversy surrounding pornography.
It's all about control.
like this
Lippy likes this.
The end game here is to require ID for social media in order to suppress dissent.
in 7 days, that's what australia will have.
I hope to Darwin social media ends up requiring ID. I believe it would do wonders for democratic discourse. It was only last week, a number of large US right-wing accounts were revealed to be driven from outside the US. Is it healthy for democracies that so many people pay heed to foreign actors?
If you write an op-ed for a newspaper, the newspaper need to identify you as there is an editor who is responsible for what gets written in the paper. This ensures there’s someone who can stand to account for any libellous statements.
With social media we immediately reneged on this and allowed them to wash their hands; “we are just a channel” is a pretty bleak statement to make when the discourse on social media destroys the lives of minorities, encourages suicide, undermines our democracy with AI and troll farm bots.
And we can do this is a privacy preserving way - of course the social media companies feeds the opposite narrative because they don’t want to implicated in the piles of shit they shovel on top of our democracy.
If social media was required to ensure they could tie an account to a real person, which they needn’t reveal unless forced to by a court order, we would know that we were engaging with a real opinion, not something coughed up by a Putin-run AI bot or a Chinese troll farm.
The system required isn’t that complex.
A social media
- a social media company is opening a new account.
- it sends the person opening the account to any of the multitude of ways we can already verify identity online.
- the person is identified and issued an identity token, which gets sent to the social media company.
- the social media company says “great, this person is real and we can, if required by a court order, work with the identity company to reveal who this person is is”. Right now, all the social media company has is a token.
- the account is opened.
In a system likes this, the identity company doesn’t know who the person is; that sits with the social media company.
Nor does the identity service know which account is actually posting for this real person, all they know is they verified someone as part of an account opening process.
Social media should be treated like the press - make them accountable for what gets posted and allow them to place this accountability on a real person by labelling posts “op-eds” if, and only if, they know who is doing the posting.
We are letting large, anonymous money-men ruin our democracy behind the veil of “free discourse”. It’s not free to the many people who gets harmed by it.
It's all fun and games until the government decides that it really doesn't like dissenting opinions. We've already seen serious erosion of 1A rights in the U.S.
It would be one thing to have this in a world with benevolent leadership. But that isn't the world we are living in.
It would be one thing to have this in a world with benevolent leadership. But that isn’t the world we are living in.
So, Fantasyland, then. The closest anyone gets to benevolent leadership is their own parents, and that's only maybe 50-50.
The closest anyone gets to benevolent leadership is their own parents
Which just so happens to be the people who should be responsible for monitoring internet usage. This is a job for parents, not the government.
That's the point.
You, as a common citizen, should not have to. But the moment you feel like to share your thought or opinion, you should be identifiable and made responsible for it.
The current social media outlets shield behind the argument they act solely as channels while at the same time fostering and allowing for "anonymous" groups or individuals to spout whatever views they want, often views that deter from advancing social and civilizational progress. Hence the current state of the world, with authoritarianism on a rise and hight like there wasn't in nearly 70 years.
When the internet was made of individual websites, the person behind it was automatically made responsible for whatever they put on it. That was fair and reasonable.
Pushes like this, is assigning suspition/guilt before any wrong doing.
I will grant the overall facilitated acess to pornography is damaging the kids. There are already enough studies showing how the early access to porn is related to bad interpersonal relations on social, emotional and sexual level.
But this does not imply you should be identifying yourself to access adult content or anything on the web. Just impose curation. If it's available to the public, you're responsible for it.
Old school "dirty" books and magazines stores had controlled access and the really hardcore stuff was well out of reach of who should not get to it. Free porn is nice but there are things available that should be behind pay walls or at least registry, with identity verification.
If your point is to stifle dissent, then sure. Whoever controls the narrative will make contradiction look unacceptable. If your name is tied to an opinion that may be construed as contrary to the dominant narrative, you will hesitate to post it, and if you do post it, then you will be taken down with very real consequences because of that tie to your real identity. Employers already look at social media to determine if your behavior is considered acceptable to them, even if you keep your professional life completely separate. Your proposal only destroys free speech further by making it worth less and less the cost of expressing.
Make no mistake, the excuse of protecting children from pornography is just that, an excuse, to restrict freedom of speech by putting into place the mechanisms to identify people and strike at them for daring to express their opinions. Pornography being in the form of books, magazines, tapes, DVDs, whatever physical media did not necessarily control access. There are many with stories of how they managed to gain access as children, either through a parent's collection or otherwise. Similarly, this internet ID bullshit can be defeated, but it'll be backed by stricter and stricter legislation to make defeating it illegal and they won't be prosecuting children or the companies providing the ID verification service, they'll be prosecuting adults using tools to defeat these mechanisms to express their opinions.
No, it's not my point, although there is a difference between expressing ideas, no matter how contrarian or controversial they may be, and spouting hate or other positions detrimental to advancement.
I am aware of what you mention of companies sniffing for the social media of employees and potential applicants. It is a shameful practice. And if it is illegal in my country, has it is viewed as trespassing on one's privacy, it should be as welll any and everywhere.
Nobody should be ashamed nor afraid of expressing their opinions and ideas. Unfortunately, freedom of expression is often confused with the hability of saying whatever one feels like it, which is not.
What you describe (and fear, I take) is persecution. And that already tells whatever system an individual lives in is already deep into veering towards blatant suppression of rights. The US case is so off the rails it deserves an entire category to itself but it is only one among too many.
On the question of banning access to pornography I am completely against it. Yet I can not and will not deny the amount of evidence that supports that early and easy access to it is in fact tainting how people in general and kids in particular understand how relations are constructed. Pornography is really good at teaching wrong things. Nothing against it per se, it can be fun, but it should be consumed just like sugar, tobbacco and alcohol: in moderation and knowing of its ill effects.
I personally started reading erotic books much sooner than it was supposed. I recognize that curiosity towards sex and sexuality is ingrained in what makes us humans. I'm not advocating for banning adult material of any sort. What I would like to see would be clear boundaries for that specific content, for it not reaching those who are not expected to access it unware. It can't be written off to caveat emptor. Even less because a lot of it is "free".
The web is as it is today in great measure due to porn. There was a lot of money being poured into technology to facilitate access to it and in high definition. Let's be thankful for it but that is it. It can be almost ubiquious nowadays, along with casinos and crypto. It's too much and too much of a good thing is bad for everyone. Remember death by snu-snu.
I have no illusion we, as a species and a civilization, are going through a very dark period. Again. All the prior should have been able to sink in the lesson but we are either too sttuborn or too stupid to learn. Censoring, wide spread control of ideas, knowledge and thought is detrimental to a fair and free society.
Excuses like "protecting children", "fighting terrorism", etc, are, as you correctly said, excuses to make advances on individual rights and liberties. But we should be as concerned by now that companies do whatever they can to reach their goals and we are being force fed too many things that are not good for us. Two wrongs don't make a right but something has to change. Perhaps ceasing to be afraid of being responsible by one's own ideas and words would be a good start. Maybe stop feeding social media would be another. And perhaps reigning in companies on bad practices could be another.
If this doesnt make people stop using those sites, nothing will. 😀
And yeah, like others have said, its of course a system that will be used to control people and remove semi-anonymity from the web.
Try reading it instead. Go old school. And while you're at it, write yourself and share it. Bring back the times of hand to hand banned knowledge sharing.
But now seriously: that is completely stupid.
As anyone considered the amount of money that "industry" generates. Considering the US is so economy driven and concerned with jobs, maybe that argument can raise concerns.
Pricing
Free the internet from mass surveillance and censorship. Fight for privacy with Mullvad VPN and Mullvad Browser.Mullvad VPN
Fortunately lawmakers think all internet porn is on PornHub and that you find it by going to w-w-w dot yahoo dot com and typing "sex video" or "naked ladies" in the search thing.
The only porn they have experience with are polaroid photos that they got from a friend who knows a guy who makes tasteful art for clients with "particular tastes."
Conservative lawmakers don't know anything about porn, because if they ever recorded themselves fucking and the recording got out, they'd go to jail for statutory rape.
They're generally very comfortable around Grindr though.
I would like to dispute the primary supposition here that pornography is harmful. The use of pornography is nearly universal, and most of the harms that it supposedly causes are symptoms of other issues, or are invented to impose control of sexuality. The ability to reach out with the power of the law to impose religious edicts or project sexual hangups is one of the most esoteric, yet effective, forms of political control available other than violence. If you can control the way that people express their sexuality, you can probably also control their views through the monetization and restriction of sex.
Sexuality and privacy are human rights, and the creation of and access to pornography is protected by the first and fourth amendments under which so-called “age verification” is an unnecessary and excessive burden. If the idea is to prevent access to children, ask yourself why now all adults must now have their access prevented or interrupted.
Furthermore, it is not the state’s role to control childhood sexual development, and the idea that porn is harmful to minors is debatable at best and dubious at worst. Access to objectionable material is solely at the discretion of parents. The fact that they cannot effectively manage this is a symptom of another problem.
When Meta shows teenage girls makeup ads after they delete their selfies, or streaming apps are flooded with violent movies that are easily accessible to minors, this is acceptable. But when I want to watch porn it’s now my job to “protect minors” by compromising my privacy and security?
The real “danger” here is the availability of ideas that do not align with state power.
I think i agree for the most part.
These energies would be better spent ensuring that porn stars aren't being exploited and have access to appropriate support.
No offence to anyone, but this post strikes me as coming straight from a spokeperson for Aylo (formerly MindGeek). A mix of baseless claims and straight up misinformation, that happen to align with the company's business model.
You speak as if porn sites are analogous to social media and it's perfectly normal to record your experiences and post them online. Which it absolutely isn't, anywhere in the world. 'Expressing your sexuality' and porn are entirely separate and have very little to do with each other.
It is widely known and confirmed that pornographic content comes with a broad spectrum of negative effects, especially for children and adolescents. The latter really should be common sense in 2025. Watching porn isn't always bad and can be beneficial in some ways (as some sources below even highlight), but those cases represent a small minority.
Below are some quotes and just a few out of countless sources providing much more reliable information on the topic of pornography's effects. I strongly recommend reading at least some, because this comment is like ignoring decades of scientific literature and traveling in time back to the 1700s.
Prolonged exposure to pornography is known to lead to habituation, resulting in blunted processing of pleasurable stimuli and greater sensitivity to negative stimuli (21). Continuous use of pornography impairs emotional processing capacity and flattens affect, reducing emotional connection to real-life sexual experiences.
Source: Impact of pornography consumption on children and adolescents
Research shows that frequent porn use hijacks the brain’s reward system and changes the brain’s structure, much like addictive substances.This means that prolonged pornography use can weaken natural pleasure responses and reinforce compulsive behavior.
A 2014 study found that heavy porn users showed significantly reduced activity in critical areas of the brain responsible for motivation and impulse control, suggesting long-term neurological rewiring.
Source: The Hidden Cost of Pornography: How It Shapes Your Brain and Behavior
Age of first exposure was significantly associated with reported need for longer stimulation and more sexual stimuli to reach orgasm when using pornography, decrease in sexual satisfaction, and quality of romantic relationship, neglect of basic needs and duties due to pornography use, and self-perceived addiction in both females and males. (...) In the opinion of most of the surveyed students, pornography may have adverse effects on human health, although access restrictions should not be implemented.
Additional sources:
- 10 Negative Effects of Porn on Your Brain, Body, Relationships, and Society
- Affection substitution: The effect of pornography consumption on close relationships
10 Negative Effects of Porn
Think porn isn’t affecting you? Science says otherwise. Discover 10 ways your porn use might be impacting your relationships—and your brain.Fight the New Drug
Assuming what you're saying about the harms of consuming pornography, is it the state's responsibility? Is it a top priority? Do we trust conservatives to implement a solution in good faith?
The answer to all of those I think is no.
There's no analogous ID check for violent media, so far as I know.
There could be a raging wildfire and I would hesitate if a Republican said "let me deal with it". They are fundamentally untrustworthy.
That's on top of the deep irony of the same party that goes on about "small government" and "parents rights" is typically the same one pushing draconian anti-porn laws. It's a joke. "A government small enough to fit in your bedroom". Their motivations are so corrupt I am extremely skeptical of anything they propose.
Prolonged exposure to pornography is known to lead to habituation, resulting in blunted processing of pleasurable stimuli and greater sensitivity to negative stimuli (21). Continuous use of pornography impairs emotional processing capacity and flattens affect, reducing emotional connection to real-life sexual experiences.Source: Impact of pornography consumption on children and adolescents
This is disingenuous. This issue is caused by prolonged use, as in unhealthy addictive behavior. Framing it as a result of porn access in general is flagrantly dishonest.
Actually it seems like all of your points regard excessive and unhealthy usage. You're portraying these as results of any level of exposure and that is blatantly dishonest.
Why not also the company that does the IDs?
And hell, also the porn site?
Its all a big money making scheme. Security theater bullshit.
ITT: People who don't realize the advanced nature of fingerprinting that makes VPNs nearly useless in an authoritarian environment
Browserleaks - Check your browser for privacy leaks
BrowserLeaks is a suite of tools that offers a range of tests to evaluate the security and privacy of your web browser.BrowserLeaks
I'm not against proper age verifications as such, it would be like carding people in a store or a bar. But I just haven't seen an implementation of it that isn't prone to being a privacy nightmare and surveillance state shit.
I know there's some systems that generate a token that verify that you are 18 and you give that to the site, so neither side directly meet so to say. The site knows only that you have a valid token for being 18 and the app or service you use to generate the token knows just that you wanted to token for something. I think Spain was figuring out a system like that.
When you are carded at a club the staff doesn't scan your card and keep it on file. They simply look at it and return it.
As someone who worked similar jobs and would have had to look at tons of IDs every day I can assure, I dont have the time or interest in remembering all of them.
I think people don't realize just how dangerous this shit is until they have been affected in some noticeable way, and even then they will not link just how the incredible amount of surveillance they are under every day is the cause of it.
I worked in tech support for 7 years, and one thing that will never cease to astonish me is how tech illiterate people are. Do you have any idea how many people called me and demanded that I make modifications to their account and refused to tell me any verifying information? While some might have been malicious actors , most aren't. Most of them were genuinely expecting me to do everything for them and they wouldn't even tell me what their name is. They fully expected that somehow we would already know they are just from them calling...
Some of them called me on a number not recognized by the system but they fully expected me to pull up their account (fucking how?) Without any information at all.
When you have worked in this field long enough you will know why there is so little effective opposition to all this shit. It is not just because they dont give a damn if we are literally in a 1984 scenario with active cameras and microphones in people's homes, but they just dont understand what that really means. Even younger people who grew up with these devices from early childhood don't fully understand just how much they are being observed. If anything Gen Z and Gen Alpha are more fucked since they are the first generation of people whom the algorithms and data brokers have had some profile on since early childhood.
As an elder millennial who grew up in a techie family with computers from childhood. I am fortunate in that they have nothing on me from early childhood to teen years. By the time I hit 20 the internet was still too chaotic and underdeveloped and algorithms weren't the norm yet (and I was never a Google guy to begin with). But people born within the last 10 years can't have that privilege.
Why does everyone in the US card everyone over something ostensibly about age?
It's never been about age.
I've seen a seventy year old man with a foot long white beard get carded and refused, while he was stone cold sober.
Do you think he can't handle his liquor? He's seventy. He knows what it does.
There's a lot of bars/restaurants that do.
I have literally been refused service because the only ID I had is a passport, and those barcodes wouldn't scan into their system.
It's Papers, please, and it's fucking bullshit
the easiest thing would be making the internet as a whole 18+.
under 18 would be restricted to a firewalled version and age info would be part of the cellphone or internet plan. on a family plan..? under 18s get a firewalled plan. home internet? have a family and home internet? owner of the service gets a pin to disable the firewall. when everyone in the house hold is over 18, the service is unlocked.
the truth is that none of this is actually about porn or kids, its about the new world lifestyle of surveillance state getting a foot in the door. thats why all this bullshit aligns with other aspect of modern political and business tech agendas
We are blinded by the fact that the teens are involved in this too, and they deserve equality as well. The internet is made to build bridges - get rid of boundaries - not set false narratives and infantilise those that are really impacted in this situation and have full awareness of the status quo.
This is a foot in the door technique that uses our deceived emotional manipulation, where our age discrimination is the secret ingredient in this fascist circus.
Clearly, no-one involved in making these laws has ever heard of OAuth. Not every single site needs to manage your identity / credentials. The government already has this info, they can be the identity provider and use OAuth to grant access to age-gated resources without giving any personal data to the platform. Someone mentioned id.me, and I'm pretty sure that's how that platform works, though they're a private entity if I understand their site correctly.
I know most politicians are comically tech-illiterate, but it's so frustrating to see them constantly implement terrible solutions to already solved problems without asking a single expert who knows how this shit works.
That being said, California passed a bill with a not perfect, but better approach. User age is configured on the OS level when a user account is set up, and then it will tell platforms what age category the user belongs to, and nothing more:
(a) An operating system provider shall do all of the following:(1) Provide an accessible interface at account setup that requires an account holder to indicate the birth date, age, or both, of the user of that device for the purpose of providing a signal regarding the user’s age bracket to applications available in a covered application store.
(2) Provide a developer who has requested a signal with respect to a particular user with a digital signal via a reasonably consistent real-time application programming interface that identifies, at a minimum, which of the following categories pertains to the user:
(A) Under 13 years of age.
(B) At least 13 years of age and under 16 years of age.
(C) At least 16 years of age and under 18 years of age.
(D) At least 18 years of age.
(3) Send only the minimum amount of information necessary to comply with this title and shall not share the digital signal information with a third party for a purpose not required by this title.
I think iOS already does this, actually.
The CA bill is also dystopian nightmare fuel... The US isn't going to build an enormous firewall like other countries have, we are just going to pass a bunch of stupid laws and threaten companies to block our citizens from access instead. Put the burden of building the wall on someone else, the modern American Way™!
An entire generation of fuck-wad parents that just gave their kid a tablet and zero supervision instead of actually raising them are now using their failings as an excuse to control the population; control their devices, control their habits, control their knowledge, and control their thoughts.
The bill I mentioned actually relies on parents configuring their kid's devices. The system it describes just gives online (and even offline) platforms a standardized way of asking the OS what age category a user is as defined at account setup--hardly "dystopian nightmare fuel"...
This isn't going to stop unsupervised children, which is it's own problem that technology doesn't (and probably can't) solve.
It requires every Operating System and "App Store" to know the user's age. It requires every piece of software installed to receive the age-range token. It could be catastrophically bad for the open source community - the bill does nothing to define how these tokens are communicated and received. The largest players in the industry can use their market share to exert control over how it happens and bully anyone that doesn't get on board. For example, Google could tie it to the Play Integrity/Services and effectively kill 3rd party roms and possibly even open source app stores like fdroid, or all side-loading entirely if it was tied into the Play Store enough.
The bill isn't specifically a privacy dystopian nightmare, but it is still a dystopian nightmare. We need the government and mega-corps to have less influence and control over our devices, this gives them more.
Greedy companies do shit like that regardless of any laws. I don’t think this law makes it any more likely.
FOSS developers could create an ethical solution while still remaining legally compliant. The language is generic enough to allow for different implementations.
By creating a plaintext dotfile in $HOME, I'd reckon. Minimum effort, gets the job done. Users can lie when setting up the account so protecting the file against tampering is pointless.
But more likely, not a single distro will implement anything by default because it doesn't make sense to change your internationally-distributed OS because one state in one country passed a stupid law.
I'm 1000% against this age verification bullshit, not only because of the privacy and data reasons, but also because getting carded in a bar or at a store is also bullshit.
It Is Papers, please.
It's Never a question of if you're old enough, it's a question of "Do I think you're human enough?"
And more often than is reasonable, the answer is no, they don't think you're a person, who should be able to spend their money as they like.
And on the flip side, occasional SEO fuckups cause random terms to show porn image results
For example, I was searching for millimetre wave cell towers on duckduckgo a while back, I typed "MM wave cell tower" and saw a whole bunch of massive tiddies on the standard filtering setting. They fixed this a week after me discovering it however, so if you were hoping to see tits from searching telco infrastructure, I suppose you're outa luck.
Then you can't offend god by watching it and masturbating, like we intended!
-The Puritans pushing this legislation.
FOLLOW THE 💰:
EXON
RINAT AKHMETSHIN
ALEX VAN DER ZWAAN
KONSTANTIN KILIMNIK
CHUCK SCHUMER
JAMES COMEY
ROTHSCHILD
TRUMP
JARED KUSHNER
GARY COHN
STEVE MNUCHIN
SAM NUNBERG
NELSON BUNKER HUNT
LAMAR HUNT
MICHAEL FLYNN
DAN SCAVINO
ERIK PRINCE
WILBUR ROSS
STEFAN HALPER
GEORGE SOROS
JOHN DURHAM
DANIEL MURPHY
PETER STRZOK
LISA PAGE
BRUCE OHR
NELLIE OHR
CHRISTOPHER STEELE
CHRISTOPHER WRAY
JEFF SESSIONS
JOHN PODESTA
MUELLER
CHRIS WRAY
HUNTER BIDEN
SETH RICH
BILL BARR
KAMALA HARRIS
ADAM SCHIFF
TULSI GABBARD
AOC
CLINTON
OBAMA
ZIONISM
MICROSOFT
CLOUDFLARE
GREAT RIFT VALLEY
NETANYAHU
KISSINGER
Bet
GANDALF THE GREY
GANDALF THE WHITE
MONTY PYTHON AND THE HOLY GRAILS BLACK KNIGHT
BENITO MUSSOLINI
& THE BLUE MEANNIE
COWBOY CURTIS
JAMBI THE GENIE
ROBOCOP
TERMINATOR
CAPTIAN KIRK
DARTH VADER
LO PANTS
SUPERMAN
EVERY SINGLE POWER RANGER
BILL S. PRESTON
THEODORE LOGAN
SPOCK
THE ROCK
DOC OCK
HULK HOGAN.
all came out of nowhere lightning fast and kicked Chuck Norris in his cowboy ass?
Now I have to listen to it again and have it stuck in my brain
Oh I see, a bunch of stupid-ass unsubstantiated bullshit.
I'm sure it's secretly the Clintons and Obamas behind this, that makes sense. You are massively fucking stupid person.
Exactly, all the talk about save the children, anti terrorism protection and other authoritarian bullshit is just an attempt to deceive and manipulate the masses.
Police state is what they resort to because these fascist fucks are fuelled by their narcissistic and machiavellianistic desires - the last thing they want is for someone to discover their true tyranny.
It is disappointing to see fascists are slowly succeeding by utilising their manipulative tactics.
I'm just over here in "hellscape" California enjoying the freedom to not have to do this, and I can walk down the street to the weed shop, and my girlfriend still has basic human rights over her own body.
Do any other states, like Texas, need some of our freedom? We've got some to spare.
Just to be clear, because I had to look into it a bit, California's law won't require photos/IDs.
"Operating system providers need not collect additional information like photos of government IDs to verify the user’s age. Based on this age information, operating system providers must send digital signals via real-time API (age signals) to developers upon request, transmitting the user’s age range bracket – under 13, at least 13 and under 16, at least 16 and under 18, or at least 18. When a user downloads and launches a developer’s application, the developer must request an age signal from the relevant operating system provider or the application store from which the user downloaded the application."
So I'm assuming those companies backed it because they want more analytics about the age ranges of the people who use their products.
Just posting on social media using your face to speak against the state in México gives you the privilege of being doxxed on national TV by the president, I can't imagine what they would do with something like this
Keep the downvotes coming, I live here and you don't have any idea if you really believe Morena is left leaning in any way or form
With the rising popularity of VPNs due to increasingly more countries becoming more authoritarian, I wouldn't be supposed there will be some anti-vpn directives put in place.
In addition to that, increasingly more selections within vpn profiles will be just as restrictive as the fascist internet at home.
VPNs are a great way to circumvent this police state but it ultimately doesn't stop fascists and their motives.
Oooooh! Shit. Yeah. Wow. It makes total sense now and that fucking sucks.
I hope some day these fascists get branded as the terrorists they are. And I’m so fucking sorry that they’re doing this to people.
You clearly haven't thought of the children.
Nah it's just a precursor to having all your online activity tied directly to your identity. That's the purpose. I'm sure plenty of misguided elders in government think it's about saving kids from porn though.
It's a coalition of groups with different purposes
One group wants to ban porn entirely
One group want to collect data on everyone. Your porn habits can be valuable if you're a future political rival
Some people believe it will prevent children from seeing porn
Others use it as a way to assert control over sex workers, especially female sex workers
Probably a few other smaller groups too. End of the day, none of them have your interests at heart
Some just want money.
I think this article: theverge.com/2018/2/23/1704397…
Is about pornhub’s parent company trying to lobby in favor of this because it thought it could make money by selling age verification. I read an article saying something to that effect quite some time ago, and I think this is the article, but can’t be sure because it’s requiring a login and the archive site isn’t loading for me at the moment.
Why the world’s biggest porn company is backing the UK’s new age law
The adult industry is worried about MindGeek’s role in the UK’s new age-verification system.Lux Alptraum (The Verge)
I just remembered that I'm the guy everyone in my family goes to when they need someone to scan their ID or passport for whatever stupid bullshit.
Guess it's time to sign all my conservative family members up to gay porn websites!
This may be the real reason r's are losing all of the elections, lol. They are entirely red states.
This is going to expand. The next wave is going to be keeping kids off of social media. That means they will have to be age-verified, which they can't do, because they're kids, and don't have ID. Instead, everyone else will have to be age-verified in order to use the Internet.
Here in Florida, I've already heard one state lawmaker scoffing at any objections, saying it's the same way we keep kids from buying alcohol - by checking EVERYONE'S ID. Now they're going to do it for the Internet. Every movement and post you make on the Internet will be directly tied to your verified identity. That should be perfectly fine, as long as you aren't doing or saying anything wrong, right?
Hear me out!
What if parents did their fucking job as they should instead of demanding the state to do it for them, only for it to get hijacked by both
- christofascists wanting to make it illegal to not live a "christian life",
- and corporations wanting to ensure competition will need to pay a shitton of money on age verification AI?
I'm prepared for my downvotes.
I have often joked that in the not-too-distant-future people will look back upon the early days of the internet like we look upon the 1950s view of smoking.
What do you mean kids shouldn't do it? It's fine. You know how it is, watch a kids cartoon, look at some memes, two girls 1 cup, email the fam, those two Mexican dudes who had their heads cut off with a chainsaw, research Ghana for a school project, sneak in some porn after the parents go to bed, and cap it off with some chat room conversations about Picard's superiority to Kirk while some kid across the country goes on about shooting his brains out because mom and dad either don't love him enough or love him too much. Maybe download some credit card spoofers and Diablo hacks for online play if you aren't quite ready for bed.
The early internet, and even the internet now, is a fucking wild concept. Take everything that people think, not just what we know, but what we fucking think about while we are taking a shit, and make it available for anyone look at without guidance or context. We can even watch police shootings in real time and pretend to be detectives during terrorist events, consequences to real people be damned.
Should parents know better? Sure. Is the internet an effective babysitter while they grind out a living? You bet.
If we restrict this dumpster fire behind age-verification and eliminate anonymity through tagged identification, the effect on privacy and anonymous online activism will be severe. However, CinnamonRingCumGlaze86 will be significantly less able to use their 6th grade reading level to convince people that modern medicine is bad because Pre-Historical Witches didn't have AIDS bro. #flatearth #zoroastrianismwasasteptoofar #onceagaintherealproblemiscapitalismandwearelookingatthewrongthingbecauseofmanufactured-outrageandobfuscationcreatedbytheoligarchy #worldofwarcraftclassic
CinnamonRingCumGlaze86 will be significantly less able to use their 6th grade reading level to convince people that modern medicine is bad because Pre-Historical Witches didn’t have AIDS bro.
You don't need accounts tied to ID to ban such content.
Not hard to imagine, people already have to manicure their facebook and other social media accounts because employers look at them. Just because you don't want something attached to your name, doesn't mean it's stupid or bad. There are consequences for unapproved behavior and opinions, even if they're not wrong or harmful.
If you think anonymity is stupid, feel free to set your display name to your real name right here on lemmy.
I know that anonymity is the way it is and don't think that me changing my display does anything about one way or the other. I definitely shit post, because I can. There is literally no consequence. If I somehow hit the right combination of words and someone commits suicide, I would never know. If I share something that someone looks views at their workplace and then gets fired, I would never know. The entire thing is just people collectively shrugging responsibility for their behavior and that has a net negative effect on society.
I'm not going to change my name over to my real name, although that is generic enough that would not be identifying, but I am going to point out that people do shitty things with anonymity and that the world would be better off without it.
Iran: Leaked wedding video lays bare luxurious lives of the country’s political elite and highlights hypocrisy of Islamic Republic -- [Opinion]
A short video of a private wedding went viral in Iran recently, tearing away the country’s veil of piety and exposing hypocrisy and a seeming disregard for the rules by which the theocratic regime requires that most Iranians live their lives.
The wedding in question was that of Fatemeh Shamkhani, in mid-2024. She is the daughter of Ali Shamkhani, a close adviser to Iran’s supreme leader, Ali Khamenei, at the luxurious Espinas Palace Hotel in Tehran.
She wore a low-cut strapless dress with a western-style bridal veil rather than the full head-covering mandated for Iranian women. Many wedding guests also wore modern western styles and a lot of the women went without head coverings.
The video displayed images that were starkly dissonant, revealing the significant class and moral divides within the Iranian Republic and contradicting Iran’s values of revolutionary simplicity and Islamic modesty.
[...]
That it was Shamkhani’s family wedding made matters worse. A former commander of the regime’s Revolutionary Guards, he is a key power broker in Iran, who has the ear of Khamenei himself. He was also involved in the savage crackdown on the public protests in Iran in recent years, in defence of the same security and morality laws his family was seen so lavishly violating at the wedding celebration.
[...]
The emerging ruling elites maintain their wealth through oil revenue, state contracts and shadow economic activities – that enable them to evade sanctions (the Shamkhani family was identified and sanctioned earlier this year by the US treasury as controlling a vast shipping empire involved in transporting oil from Iran and Russia in breach of US sanctions). .
[...]
Since the 1979 Revolution, Iran has maintained its legitimacy through its mission to reshape public conduct by enforcing rules such as hijab requirements and sex segregation. The state maintains complete authority to regulate female bodies.
So the Shamkhani wedding, with its ostentatious luxury, its low-cut gowns and lack of head coverings felt to many Iranians as showing complete disregard for laws that the regime’s “morality police” uses to enforce strict rules on ordinary women. The rules exist to control, but they do not apply to those at the top of the tree.
This incident is significant in the context of the “woman, life, freedom” protests of recent years. These were sparked in 2022 by the death in custody of Mahsa Amini, a young Kurdish woman who had been arrested for not wearing her hijab properly. Since then, many Iranians, particularly young people, have openly defied the hijab law.
[...]
Leaked wedding video lays bare luxurious lives of Iran’s political elite and highlights hypocrisy of Islamic Republic
A wedding video which has gone viral in Iran has highlighted the country’s inequality and exposed hypocrisy at the core of the ruling regime.The Conversation
Iran's government is historically weak. It's allies and proxies have been routed in the region while American and Israeli jets bomb their country with impunity. The place is vulnerable to revolution and it would be nice to see feminists overthrow the Ayatollah.
However, it's hard to get optimistic about revolution in the Middle East. After all, it was a revolution that created the Iranian theocracy to begin with. I'm also worried that a fallen Iran would mean an Israeli regional hegimon.
I'm more surprised that people are surprised by this. Being nobility class is this: you're free to make whatever rules you want for your subordinates, and you're free to disregard any of them. You're not bound by any sense of morality (whatever it might be); that's for lower men.
What were they expecting? Obviously these people won't comply with anything that's imposed on the masses, especially in a society where the norms are so restrictive.
And I further suspect that the more totalitarian a country is, the more its elite will deliberately choose to go against their own rules, as this is the greatest proof of their powerful social status.
Does Wilhoit's law apply to Islamic Theocracy?
Frank Wilhoit said, "Conservatism consists of exactly one proposition, to wit: There must be in-groups whom the law protects but does not bind, alongside out-groups whom the law binds but does not protect.
Wow that’s horrible: Iran has oligarchs, too. We should freedom-bomb the fuck out of Iran and replace them with our own compador oligarchs and give the oil back to British Petroleum.
It’s nice to see that you don’t focus exclusively on China and Russia, @Hotznplotzn@lemmy.sdf.org. You’re an equal opportunity concern troll for US empire.
Citations Needed: Episode 08: The Human Rights Concern Troll Industrial Complex
We discuss the cynical use of "human rights" to advance US interests with guest Glenn Greenwald. The conceit that the U.S.citationsneeded.libsyn.com
Ukraine war: Russia hands 11-year sentence to 57-year old Ukrainian midwife in occupied Ukrainian territory for having 'pro-Ukrainian views’ and supposed spying
cross-posted from: mander.xyz/post/42893848
Web archive linkThe Russian occupation ‘Zaporizhzhia regional court’ has sentenced Larysa Malovychko, a 57-year-old midwife from Enerhodar, to 11 years for ‘pro-Ukrainian views’ and supposed spying. According to Enerhodar Mayor Dmytro Orlov, Larysa Malovychko was abducted back in September 2023 and held prisoner for some time both in Russia and in occupied Crimea.
Russia has imposed a near total information blockade on most occupied territory, with next to nothing more known about Malovychko, or her so-called ‘trial’. The verdict was reported on the so-called ‘court’ Telegram channel on 20 November 2025, with nothing to indicate how many (if any) hearings there were, before the predetermined guilty verdict and 11-year sentence.
...
‘Spying’ or ‘treason’ charges have become extremely common since Russia first launched its full-scale invasion of Ukraine. Such ‘trials’ are held behind closed doors, with convictions and long sentences guaranteed. Both men and women are targeted, and there are also no bars as far as age is concerned. Very young people have been seized and, later, sentenced to long terms of imprisonment for donations to Ukraine’s Armed Forces, for example, when they were underage, while equally horrific sentences have been passed against Ukrainians in their 70s. This is all of particular concern given the very real danger of being subjected to torture in Russian captivity.
...
In June 2025, 74-year-old Oleksandr Markov from Enerhodar died in Russian captivity. He had been abducted on 8 May 2024, with his family knowing nothing about his whereabouts until March 2025. It was only then that they learned that a fake occupation ‘court’ had sentenced the 74-year-old to 14 years in a maximum-security [‘harsh-regime’] prison colony on ‘treason’ charges.
Dmytro Orlov reported then that at least 26 other residents of Enerhodar were illegally held in Russian captivity, including seven women. 13 of them are employees of the neighbouring Zaporizhzhia Nuclear Power Plant, with Russia having begun abducting and torturing employees soon after it seized control of the plant in early March 2022. It is quite possible that the real figure is much higher.
...
57-year-old midwife sentenced to 11 years in ongoing Russian terror against residents of occupied Enerhodar
Larysa Malovychko has already been in Russian captivity for over two years, with it likely that she was seized because of her pro-Ukrainian positionHuman Rights in Ukraine
China cracks down on calls for accountability over deadly Hong Kong blaze
cross-posted from: mander.xyz/post/42893098
Chinese authorities have arrested several activists and issued a stern warning to “anti-China and pro-chaos elements” amid criticism of the government’s response to Hong Kong’s deadliest fire in a generation....
[Among ohers] authorities arrested Miles Kwan, a 24-year-old student at the Chinese University of Hong Kong, after he created an online petition calling for greater transparency and accountability from the government, multiple reports said.
The petition included four demands, including the establishment of an independent commission of inquiry to probe the circumstances of the fire, including whether potential conflicts of interest may have contributed to the disaster.
Before it was removed from the internet on Saturday, the petition had garnered more than 10,000 supporters.
...
China’s national security office in Hong Kong appeared to condemn the petition before its removal, accusing activists of using “the banner of ‘petitioning the people’ to incite confrontation and tear society apart.”
Hong Kong’s Office for Safeguarding National Security also accused figures with “sinister intentions” of exploiting the fire to return the city to the “black-clad violence” that erupted during mass antigovernment protests in 2019.
On Monday, a commentary in the Beijing-backed Wen Wei Po newspaper called on the public to be vigilant against “anti-government elements” with “malicious intentions”.
“They have even gone so far as to ‘act as representatives’ to establish a so-called ‘concern group,’ put forward so-called ‘four demands,’ distribute leaflets, and launch a petition, all in an attempt to incite public unrest,” the commentary said.
...
China cracks down on calls for accountability over deadly Hong Kong blaze
Hong Kong’s national security police arrest three, as Beijing issues warning to ‘anti-China and pro-chaos elements’.John Power (Al Jazeera)
Japan and China trade accusations after coast guard incident in disputed waters
Japan's coast guard said two Chinese coast guard patrol ships entered Japan's territorial waters around the Senkaku Islands in the East China Sea in the early hours of Tuesday, and left a few hours later.The Japanese-administered Senkaku Islands, known as the Diaoyu in China, have been a regular flashpoint between the two nations over the decades.
ABC News
ABC News provides the latest news and headlines in Australia and around the world.ABC News (Australian Broadcasting Corporation)
China draws in Europe’s businesses despite alarm over competition
cross-posted from: lemmy.zip/post/54194025
archive.is/1hnqw
“Today, it’s not competitive any more to bring [products] into China when there’s local competition,” said Conrad Keijzer, chief executive of Swiss chemical maker Clariant.The company is spending SFr180mn ($226mn) expanding its plant in China’s Daya Bay petrochemical hub, where last year Germany’s BASF and Shell also announced big investments.
German auto supplier ZF Friedrichshafen, for example, recently announced job cuts of 7,600 in Europe by 2030, less than a year after announcing its latest expansion in Shenyang, north-eastern China. Automotive parts maker Schaeffler, which told state media in China it planned to double its business in the country in six to seven years, has announced the closure of some of its European operations and gross job cuts of 4,700.
French engineering group Schneider, Danish power-train maker Danfoss and wind turbine maker Vestas and pharmaceutical companies including Swiss drugmaker Roche and AstraZeneca have all also recently announced China expansions or factory upgrades.
Ireland: 'Aggressive response' needed as cyber threats aligned to states like China and Russia pose “significant threat” to national security, cyber agency says
cross-posted from: mander.xyz/post/42887934
Web archive linkThe accelerating cyber threats facing Ireland demands “an aggressive response” by the State, according to the country’s cyber bosses.
The National Cyber Security Centre (NCSC) said criminal cyber gangs and hackers, aligned to states like China and Russia, pose a “significant threat” to Ireland’s national security.
This is because Ireland is a host to some of the world’s largest tech providers and cloud computing facilities as well as the worsening geopolitical situation and the threat posed to Europe resulting from Russia’s war of aggression in Ukraine.
The centre said it “regularly observes state-aligned threat actors carrying out scanning and other reconnaissance activities” targeting Irish government and State-owned networks.
...
Publishing its 2025 National Cyber Risk Assessment, the NCSC said Ireland was at risk from cyber attacks on “shared critical infrastructure”, such as gas and electricity pipelines connecting Ireland to the UK and France.
...
'Aggressive response' needed to tackle cyber threats facing Ireland
NCSC says criminal cyber gangs and hackers, aligned to states like China and Russia, pose a 'significant threat' to Ireland’s national securityCormac O’Keeffe, Security Correspondent (IrishExaminer.com)
like this
SuiXi3D likes this.
To grow, we must forget… but now AI remembers everything
With OpenAI’s memory upgrade, ChatGPT can recall everything you’ve ever shared with it, indefinitely. Similarly, Google has opened the context window with “Infini-attention,” letting large language models (LLMs) reference infinite inputs with zero memory loss. And in consumer-facing tools like ChatGPT or Gemini, this means persistent, personalized memory across conversations, unless you manually intervene.The sales pitch is seductively simple: less friction, more relevance. Conversations that feel like continuity: “Systems that get to know you over your life,” as Sam Altman writes on X. Technology, finally, that meets you where you are.
In the age of hyper-personalization — of the TikTok For You page, Spotify Wrapped, and Netflix Your Next Watch — a conversational AI product that remembers everything about you feels perfectly, perhaps dangerously, natural.
Forgetting, then, begins to look like a flaw. A failure to retain. A bug in the code. Especially in our own lives, we treat memory loss as a tragedy, clinging to photo albums and cloud backups to preserve what time tries to erase.
But what if human forgetting is not a bug, but a feature? And what happens when we build machines that don’t forget, but are now helping shape the human minds that do?
DOC • To grow, we must forget… but now AI remembers everything
AI’s infinite memory could endanger how we think, grow, and imagine. And we can do something about it.www.doc.cc
adhocfungus likes this.
One fire, two systems: Hong Kong's grief meets Beijing's red lines
cross-posted from: lemmy.sdf.org/post/46579107
Archived[...]
It was [...] the speed at which the fire tore upward [in Hong Kong] that led a 24-year-old university student to launch a petition demanding an independent investigation.
He barely had time to gather signatures before police arrested him for "incitement".
The message was clear: Even grief had boundaries, and asking questions was now a political act.
From that moment, sorrow gave way to anger. And the city's fault lines — rights versus sovereignty, people versus power — snapped sharply back into focus.
[...]
The blaze [...] did more than destroy homes. It revived one of Hong Kong's most visceral fears; that lives can be reduced to collateral in a system that no longer listens.
What should have been a moment of collective mourning instead widened the fracture between Hongkongers demanding accountability and a government increasingly shaped by Beijing's doctrine that sovereignty sits above all else.
And this time, the anger was not directed at local officials alone — it was aimed squarely at Beijing.
For many residents, the horror of the fire lay not only in the ferocity of the flames but in the recognition that everything they had worked for — homes bought with decades of savings, belongings accumulated through sacrifice — could be erased in a night.
Hong Kong's housing crisis has long fed collective anxiety, but this disaster struck its deepest nerve. In a city where ordinary families already struggle with extremely unaffordable flats, even the illusion of safety can no longer be taken for granted.
The sense of betrayal deepened when Beijing issued a warning not to let "a disaster disrupt Hong Kong", reinforcing the belief that the state prioritised protecting its authority, not its people.
[...]
The unease grew when volunteers and NGOs who rushed to help the displaced were abruptly ordered to leave the site.
Many had been distributing food, locating documents, offering emotional support. Suddenly, they were told to withdraw on Sunday.
For many Hongkongers, the scene was familiar. A compassionate response — neighbours helping one another — had become politically sensitive.
Authorities appeared to fear that the disaster zone, with swelling crowds and rising frustration, might become a gathering point for something larger.
In a city still haunted by 2019, solidarity itself had become suspect.
Inside Wang Fuk Court [the place of the fire], residents were not surprised that the fire spread so fast. Some had long questioned whether the scaffolding nets used during a renovation met flame-retardant standards.
Others filed complaints as early as 2023, warning of fire risks.
A contractor even wrote to the Fire Services Department requesting clarity on safety requirements — letters that, residents say, went unanswered.
[...]
The arrest of the petition organiser — paired with the removal of volunteers — made something unavoidable: the space for Hongkongers to demand answers, or simply to show up for one another, has been quietly but steadily erased.
Under the national security regime, the line between civic action and political threat has blurred beyond recognition.
What used to be routine — filing complaints, demanding accountability, launching petitions, helping neighbours — now carries an implied risk.
Beijing's insistence that sovereignty cannot be challenged has reshaped even the vocabulary of disaster. A call for answers can be reframed as agitation. Grief can be interpreted as defiance. Volunteerism can be treated as "gathering".
[...]
For residents, the questions were immediate and practical. Why did the alarms fail? Why did the nets ignite so quickly? Why were earlier warnings ignored? Who will take responsibility?
For authorities, the questions were political. Could public anger spill into unrest? Could demands for accountability turn into mobilisation? Could crowds at the disaster site grow into something larger? Who must be monitored — not who must be heard?
This is why, for many, the fire now stands as a symbol of something larger — a reckoning not only with safety failures but with a governance model that asks citizens to trust a system that no longer feels accountable to them.
While officials have pledged support for displaced residents, the shift toward a political narrative has been unmistakable: The arrest [of the 24-year old petitioner], the "care teams", the warnings about "disruption".
[...]
In the days after the blaze, residents sifted through ash — passports, wedding photos, a child's cherished toy — fragments of lives interrupted.
But the emotional landscape of the city was shaped by a different kind of loss: The erosion of faith that the system exists to protect them, not to discipline them.
Beijing may want the flames in Tai Po to fade quickly. But what they revealed may not.
ABC News
ABC News provides the latest news and headlines in Australia and around the world.Bang Xiao (Australian Broadcasting Corporation)
Swiss government urges people to ditch Microsoft 365 and others due to lack of proper encryption
Swiss data protection officers have warned public bodies not to use cloud services from industry hyperscalers Microsoft, Amazon, and Google, due to a lack of true end-to-end encryption.This comes as many SaaS vendors, especially those falling under the US Cloud Act, could be required to hand over data to US authorities, even if it’s stored in Switzerland.
like this
SuiXi3D, andyburke, IAmLamp, deliriousdreams e eierschaukeln like this.
What's happening in Switzerland?
Flipping and flopping for the past year. I welcome this latest news, and the similar news yesterday, hopefully it is infectious to the rest of Europe but it completely contradicts things that have been proposed for the last few months, then the sudden change. I wonder did Trump push too hard:
May 14 2025 - Proposed Swiss surveillance law ‘identical to Russia’
June 13 2025 - "A war against online anonymity" – why Switzerland wants to change its surveillance law and what's at stake
September 11 2025 - Swiss government looks to undercut privacy tech, stoking fears of mass surveillance
November 15 2025 - Switzerland plans surveillance worse than US
November 27 2025 - Switzerland: Data Protection Officers Recommend Broad Cloud Ban for Authorities
..
Switzerland: Data Protection Officers Impose Broad Cloud Ban for Authorities
According to the Data Protection Conference, federal offices may only use US hyperscalers like AWS, Google, or Microsoft to a limited extent.Stefan Krempl (heise online)
like this
MyTurtleSwimsUpsideDown likes this.
In fairness a government should be the only entity surveilling people in its own borders under most any circumstances.
I'm pretty opposed to most any kind of surveillance outside of warranted due process, and I don't think that any domestic surveillance needs privacy for longer than it takes to do an investigation and prosecution.
It's when governments are allowed to do things in secret and outside of the law that the whole concept of the law is undermined.
We have a lot of different political and government bodies. Like the "checks and balances" the US had.
So when you read "Switzerland wants to..." it could be:
* A survey of people living in Switzerland
* A initiative (an official political vote done by the swiss citicens)
* One big or multiple parties signing an agreement
* A group of cantons or communal legislative or executive politicians
* A group of semi-official people (like the conference of all the cantons data protection officers ("Kantonale Datenschützer", keine Ahnung wie all das Zeug auf Englisch heisst, Hilfe)
* Our parliament or a comitee in it
* Our other parliament or a comitee in it
* The federal court
* The federal chancelor
* The federal government
* And sometimes internetusers even mix some company into the bag, for example Proton.
I probably forgot a few and misspelt a lot but you get the idea.
And all of them are different elected or appointed persons, with their own opinions.
That is why everything is so fast at changing here 😆
(We discuss, we decide, we get blocked, we discuss, we change, we get blocked, rinse and repeat)
like this
onewithoutaname e MyTurtleSwimsUpsideDown like this.
That's not how the swiss government works.
Here the data protection officers are mostly independent of the rest of the government and are just doing their (somewhat hopeless) job.
Of course "warn[ing] public bodies" is about all they are can do.
It's almost like we're a multiparty democracy or something.
The press and others tend to report proposals by one part or another as though they have already been passed into law. I think it makes for better headlines.
And Andy Yen uses it for what agenda he has, like moving into cheaper German data centres or whatever.
"Arguing that you don't care about the right to privacy because you have nothing to hide is no different than saying you don't care about free speech because you have nothing to say."
That's from Edward Snowden. Evidently no one is going to force you to jump through hoops to use encryption if you don't think you stand to benefit from it. That being said, the "nothing to hide" argument can be a bit of a slippery slope.
Also reminds me of someone I knew, who was doing pure maths research (so, read about as much as your fanfic) and was storing their papers on Dropbox. When informed that that was a private US entity, would enable other entities to access that data, they said "but I want people to read my paper". They are now furious about LLMs. Go figure.
Windscribe are a bit late to the game -https://x.com/windscribecom/status/1995619967996494334
They are twittering today quoting an article that was published 3+ months ago.
Proton is moving out of Switzerland because of their new surveillance laws. So much for Switzerland being some bastion of privacy huh? That makes Canada a better place for a VPN. Stop drinking the marketing koolaid.
Judging by the direction that Switzerland seems to be going, I am guessing (I could be wayyyy wrong) that Swiss privacy companies are going to be still effective for people outside of Switzerland, soon to be completely free from US big tech spying.
Canada are in the 5 eyes, whereas Switzerland aren't even mentioned in the 14 eyes.
As for Canada being a better place for the Privacy or a VPN, I think Windscribe need to stop drinking their own nonsense.
Damn. I remember seeing a Reddit AMA when I first came across Protonmail some 7-odd years ago with the Protonmail CEO saying something along the lines of "we don't plan on moving out of Switzerland because other country's intelligence agencies concern us more than the Swiss intelligence" and I thought that was a good take. Hell, I still do in lieu of everything going on.
I wonder what happens now that they will be "physically diversifying across Europe".
like this
eierschaukeln likes this.
Devastating toxic spill seen as test of whether African countries can stand up to China
Even before the dam collapsed, Lamec did not feel safe working at the copper mine.
"If our work protective gear gets damaged, it is not always replaced," he tells us. "We have to take a risk and use it again."
He is talking to the BBC in a car on a quiet backroad near a village in northern Zambia, too nervous to speak to us in public or to use his real name, for fear that speaking to the press might cost him his livelihood.
When he turned up for his shift one day in February, he tells us, he found that one of the dams at the Chinese-owned mine had been closed.
The tailings dam - used to store toxic by-products from the copper mining process, including heavy metals like arsenic, mercury and lead - had collapsed into a tributary connected to the Kafue, Zambia's longest river and a major drinking water source.
At least 50,000 tonnes of acidic debris spilled out into the surrounding waterways and farmland, according to the government. Some environmentalists, however, claim as much as 1.5 million tonnes was spilled, with one expert saying a full clean-up could take longer than a decade.
Devastating toxic spill seen as test of whether African countries can stand up to China
Chinese companies provide jobs and much needed revenue in Zambia, where the disaster took place.Mayeni Jones (BBC News)
like this
IAmLamp, NoneOfUrBusiness e aramis87 like this.
Suspected members of neo-Nazi terror group arrested in Spain
Police in Spain have arrested three people on suspicion of belonging to the Base, a global neo-Nazi terrorist group that incites and trains members in techniques to overthrow governments and bring about a race war.
The group, which has been designated a terrorist organisation by the EU, the UK, Canada, Australia and New Zealand, is part of a worldwide “accelerationist” white power movement that prepares its cells to carry out violent and destabilising attacks.
In a statement on Monday, Spain’s Policía Nacional said the three arrests, made in the eastern province of Castellón, had enabled them to dismantle the first accelerationist terrorist cell detected in the country.
Officers seized two firearms, replica guns, ammunition, knives and tactical military training gear, as well as accelerationist material and neo-Nazi paraphernalia.
Suspected members of neo-Nazi terror group arrested in Spain
Three people are accused of belonging to the Base, an ‘accelerationist’ white power organisation founded in the USSam Jones (The Guardian)
RRF Caserta. Cultura - Il Povero Piero di Achille Campanile
Decreasing Certificate Lifetimes to 45 Days
This change is being made along with the rest of the industry, as required by the CA/Browser Forum Baseline Requirements, which set the technical requirements that we must follow. All publicly-trusted Certificate Authorities like Let’s Encrypt will be making similar changes. Reducing how long certificates are valid for helps improve the security of the internet, by limiting the scope of compromise, and making certificate revocation technologies more efficient.
like this
fistac0rpse, wagesj45 e eierschaukeln like this.
So what's the floor here realistically, are they going to lower it to 30 days, then 14, then 2, then 1? Will we need to log in every morning and expect to refresh every damn site cert we connect to soon?
It is ignoring the elephant in the room -- the central root CA system. What if that is ever compromised?
Certificate pinning was a good idea IMO, giving end-users control over trust without these top-down mandated cert update schedules. Don't get me wrong, LetsEncrypt has done and is doing a great service within the current infrastructure we have, but ...
I kind of wish we could just partition the entire internet into the current "commercial public internet" and a new (old, redux) "hobbyist private internet" where we didn't have to assume every single god-damned connection was a hostile entity. I miss the comraderie, the shared vibe, the trust. Yeah I'm old.
Seeing as most root CA are stored offline compromising a server turned off is not really possible.
I'm more annoyed that I have 10 year old gear that doesn't have automation for this.
Signing (intermediate) certs have been compromised before. That means a bad actor can issue fake certs that are validated up to your root ca certs
While you can invalidate that signing cert, without useful and ubiquitous revocation lists, there’s nothing you can do to propagate that.
A compromised signing certs, effectively means invalidating the ca cert, to limit the damage
Will we need to log in every morning and expect to refresh every damn site cert we connect to soon?
Automate your certificate renewals. You should be automating updates for security anyway.
like this
DaGeek247 likes this.
This is one of the reasons they're reducing the validity - to try and convince people to automate the renewal process.
That and there's issues with the current revocation process (for incorrectly issued certificates, or certificates where the private key was leaked or stored insecurely), and the most effective way to reduce the risk is to reduce how long any one certificate can be valid for.
A leaked key is far less useful if it's only valid or 47 days from issuance, compared to three years. (note that the max duration was reduced from 3 years to 398 days earlier this year).
From digicert.com/blog/tls-certific…
In the ballot, Apple makes many arguments in favor of the moves, one of which is most worth calling out. They state that the CA/B Forum has been telling the world for years, by steadily shortening maximum lifetimes, that automation is essentially mandatory for effective certificate lifecycle management.The ballot argues that shorter lifetimes are necessary for many reasons, the most prominent being this: The information in certificates is becoming steadily less trustworthy over time, a problem that can only be mitigated by frequently revalidating the information.
The ballot also argues that the revocation system using CRLs and OCSP is unreliable. Indeed, browsers often ignore these features. The ballot has a long section on the failings of the certificate revocation system. Shorter lifetimes mitigate the effects of using potentially revoked certificates. In 2023, CA/B Forum took this philosophy to another level by approving short-lived certificates, which expire within 7 days, and which do not require CRL or OCSP support.
like this
DaGeek247 likes this.
note that the max duration was reduced from 3 years to 398 days earlier this year)
2020 really has been the longest year of my life
Reducing SSL/TLS Certificate Lifespan to 398 Days | Qualys Notifications
Update October 13, 2020: Starting with SSL Labs version 2.1.8, a ‘T’ grade is applied to servers with certificates valid more than 398 days and issued on or…Tamthing Shimray (Qualys, Inc.)
like this
DaGeek247 likes this.
But can you imagine the load on their servers should it come to this? And god forbid it goes down for a few hours and every person in the world is facing SSL errors because Let’s Encrypt can’t create new ones.
This continued shortening of lifespans on these certs is untenable at best. Personally I have never run into a situation where a cert was stolen or compromised but obviously that doesn’t mean it doesn’t happen. I also feel like this is meant to automate all cert production which is nice if you can. Right now, at my job, all cert creation requires manually generating a CSR, submit it to a website, wait for manager approval, and then wait for creation. Then go download the cert and install it manually.
If I have to do this everyday for all my certs I’m not going to be happy. Yes this should be automated and central IT is supposed to be working on it but I’m not holding my breath.
The entire renewal process is fairly cheap, resource wise. 7 day certificates are already a thing.
In terms of bandwidth you could easily renew a billion certificates a day over a gigabit connection, and in terms of performance I recon even without specialized hardware a single system could keep up with that, though that also depends on the signature algorithms employed in the future of course.
The dependence on these servers is the far bigger problem I'd say.
This shortening of lifetimes is a slow change, so I hope there will be solutions before it becomes an issue. Like keeping multiple copies of certificates alive with different providers, so the one in use can silently fall through when one provider stops working. Currently there are too few providers for my taste, that would have to improve for such a system to be viable.
Maybe one day you'll select a bundle of 5 certificate services with similar policies for creating your certificate the way you currently select a single one in certbot or acme.sh
The current automation guidelines and defaults renew certs 30 days from expiry. So even today certs aren’t around for more than 60 days, it’s just that they’re valid for 90.
Additionally you can fairly easily monitor certs to get an alert if you drop below the 30 day threshold and automatic cert renewal hasn’t taken place.
I use Grafana self hosted for this with their synthetic monitoring free tier but it would be relatively trivial to roll your own Prometheus-exporter to do the same.
That's a lot easier said that done for hobbyists that need a certificate for their home server. I will give you a real world example. I run Ubuntu Linux (but without snaps) on my main desktop machine, however like the person you replied to I am old and I don't have a good memory so when I do use Linux I try to take the easiest approach possible. But I also have a server running on a Raspberry Pi, and another family member (that has a Mac) that I exchange XMPP-based instant messages with. The server runs Prosody, and on my Ubuntu box I run Gajim (the one from the apt repository which is version 1.8.4, I have no idea why they won't put a newer version in the repo). The other family member uses some MacOS-based XMPP client. The problem is that if there is not a valid certificate on the server, Gajim refuses to send or receive anything other than plain-text messages. It won't sent or receive files or pictures, etc. unless the certificate is valid.
However the Raspberry Pi does other things as well (it would be silly to dedicate a Pi to just running Prosody) and one of those other things puts a pseudo-web server of sorts on port 80, which is only accessible from the local network. So I can't use Certbot because it insists on being able to connect to a web server. Even if I had a general web server on the Pi, which I don't have and don't want, it would be restricted for local access only. Also, I'm not paying for a DNS address for my own home server. What I found I could do is get a DuckDNS address (they are free) and use that to get a LE certificate. But the procedure is very manual and kind of convoluted, you have to ssh into the server using two separate sessions and enter some information in each one, because of the absolutely asinine way LE's renewal process works if you don't have a web server. I hate doing it every 90 days and if I have to do it every 45 days I'll probably just give up on sending and receiving files.
I should also mention that it took me hours to figure out the procedure i am using now, and it seems so stupid because I have that server locked down with two firewalls (one on the router and then iptables on the server) I don't even want a certificate but the designers of Gajim in their infinite wisdom(?) decided not to give users the option to in effect say "I trust this server, just ignore an expired or missing certificate." And the designers of LE never seemed to consider that some people might need a certificate that are not running a web server (and don't want to run one) and provide some automatic mechanism for renewing in that situation. And just because someone uses Linux does not mean we are all programmers or expert script writers. I can follow "cookbook" type instructions (that is the ONLY way I got Prosody set up) but I can't write a script or program to automate this process (again, I'm OLD).
I know somebody's going to be tempted to say I should use some other software (other that Prosody or Gajim). I tried other IM clients and Gajim is the only one that works the way I expect it to. As for Prosody, I have from time to time tried setting up other XMPP servers that people have suggested and could never get any of them to work. As I said, had I not found "cookbook" type instructions for setting up Prosody I would probably not be running that either, it was a PITA to get working but not that it IS working I don't want to go through that again. And Prosody isn't the problem, it works perfectly fine without a valid certificate, but pretty much every Linux IM client I have tried either loses functionality or won't work at all if the server doesn't have a valid certificate. And no I don't run or use Docker, nor do I have any desire to (especially on a Raspberry Pi).
EDIT: After giving this some thought I decided look further into this, and discovered that while Certbot can't handle this, it's possible that a script called acme.sh can. See github.com/acmesh-official/acm… (also github.com/acmesh-official/acm… - may need to scroll up just a bit, the pertinent item is "8. Automatic DNS API integration"). I haven't tried it yet (just manually renewed yesterday) but it looks promising if I can figure it out. Thought I'd post the links for anyone else that might be in the same situation.
GitHub - acmesh-official/acme.sh: A pure Unix shell script ACME client for SSL / TLS certificate automation
A pure Unix shell script ACME client for SSL / TLS certificate automation - acmesh-official/acme.shGitHub
That's a lot easier said that done for hobbyists that need a certificate for their home server.
I'd you're going to self host you need to learn. I have no time for kids who just want "Google but free" and don't want to spend any time learning what it takes to make that happen.
You don't need to if you're just using things locally.
But also - domains are cheap.
So what's the floor here realistically, are they going to lower it to 30 days, then 14, then 2, then 1?
LE is beta-testing a 7-day validity, IIRC.
Will we need to log in every morning and expect to refresh every damn site cert we connect to soon?
No, those are expected or even required to be automated.
like this
DaGeek247 likes this.
7-day validity is great because they're exempt from OCSP and CRL. Let's Encrypt is actually trying 6-day validity, not 7: letsencrypt.org/2025/01/16/6-d…
Another feature Let's Encrypt is adding along with this is IP certificates, where you can add an IP address as an alternate name for a certificate.
Announcing Six Day and IP Address Certificate Options in 2025
This year we will continue to pursue our commitment to improving the security of the Web PKI by introducing the option to get certificates with six-day lifetimes (“short-lived certificates”).letsencrypt.org
like this
DaGeek247 likes this.
The current plan is for the floor to be 47 days. digicert.com/blog/tls-certific… and this is not until 2029 in order to give people sufficient time to adjust. Of course, individual certificate authorities can choose to have lower validity periods than 47 days if they want to.
Essentially, the goal is for everyone to automatically renew the certificates once per month, but include some buffer time in case of issues.
The best approach for securing our CA system is the "certificate transparency log". All issued certificates must be stored in separate, public location. Browsers do not accept certificates that are not there.
This makes it impossible for malicious actors to silently create certificates. They would leave traces.
The only disadvantage I see is that all my personal subdomains (e.g. immich.name.com and jellyfin) are forever stored in a public location. I wouldn't call it a privacy nightmare, yet it isn't optimal.
There are two workarounds:
- do not use public certificates
- use wildcard certificates only
like this
DaGeek247 likes this.
like this
DaGeek247 likes this.
There are some nameserver providers that have an API.
When you register a domain, you can choose which nameserver you like. There are nameservers that work with certbot, choose one that does.
like this
DaGeek247 likes this.
Doesn't caddy support that (name cheap txt mod) via a plug-in?
I haven't tried it yet, but the plugin made it sound possible. I'm planning to automate on next expiration... When I get to it ;)
I did already compile caddy with the plugin, just haven't generated my name cheap token and tested.
I definitely know that feeling.
Now that I'm at a keyboard, here's the (Caddy) plugin I was referring to : github.com/caddy-dns/namecheap
GitHub - caddy-dns/namecheap
Contribute to caddy-dns/namecheap development by creating an account on GitHub.GitHub
Isn't this just CRL in reverse? And CRL sucks or we wouldn't be having this discussion. Part of the point of cryptographically signing a cert is so you don't have to do this if you trust the issuer.
Cryptography already makes it infeasible for a malicious actor to create a fake cert. The much more common attack vector is having a legitimate cert's private key compromised.
No, these are completely separate issues.
- CRL: protect against certificates that have their private key compromised
- CT: protect against incompetent or malicious Certificate Authorities.
This is just one example why we have certificate transparency. Revocation wouldn't be useful if it isn't even known which certificates need revocation.
The National Informatics Centre (NIC) of India, a subordinate CA of the Indian Controller of Certifying Authorities (India CCA), issues rogue certificates for Google and Yahoo domains. NIC claims that their issuance process was compromised and that only four certificates were misissued. However, Google is aware of misissued certificates not reported by NIC, so it can only be assumed that the scope of the breach is unknown.
Maintaining digital certificate security
Posted by Adam Langley, Security Engineer On Wednesday, July 2, we became aware of unauthorized digital certificates for several Google ...Google Online Security Blog
Partition the internet... Like during the Morris worm of '88, where they had to pull off regional networks to prevent the machines from being reinfected?
The good old days were, maybe, not that good. 😀
I would assume total anarchy (especially in the stock trade lol)
Will we need to log in every morning and expect to refresh every damn site cert we connect to soon?
Certbot's default timer checks twice a day if it's old enough to be be due for a renewal... So a change from 90 to 1 day will in practice make no difference already...
where we didn't have to assume every single god-damned connection was a hostile entity
But you always did, it was always being abused, regularly. That's WHY we now use secure connections.
I think I'm just not picking up whether you're actually trying to pitch a technical solution, or just wishing for a perfect world without crime.
Is this the same trust that would infect a box in under a minute if not behind a router?
The same trust of needing to scan anything you downloaded for script kiddie grade backdoors?
Zero click ActiveX / js exploits?
Man I'm probably the same age and those are some intense rose colored glasses 😅
Ah yeah, those were interesting times. (Although there were some historically interesting viruses back in the day for those floppies too)
Fond memories though. Learning basic on a cartridge... Using literal cassettes for storage. That horrifying sound of a 5" floppy drive struggling to read that file you really needed. Good times.
Generally speaking that was probably what most of us would identify as pre internet times - but usenet / BBS / and early internet and prior definitely was more bright eyed and optimistic. Probably because it was more about learning and tech and less about monotizing every square inch of your existence 😂
Announcing Six Day and IP Address Certificate Options in 2025
This year we will continue to pursue our commitment to improving the security of the Web PKI by introducing the option to get certificates with six-day lifetimes (“short-lived certificates”).letsencrypt.org
Yes, this requirement comes from the CA/Browser Forum, which is a group consisting of all the major certificate authorities (like DigiCert, Comodo/Sectigo, Let's Encrypt, GlobalSign, etc) plus all the major browser vendors (Mozilla, Google, and Apple). Changes go through a voting process.
Google originally proposed 90 day validity, but Apple later proposed 47 days and they agreed to move forward with that proposal.
like this
fistac0rpse, IAmLamp e DaGeek247 like this.
Don't worry they'll reduce the cost of certificates proportionally to the longevity of the certificate.
Right?
Anybody?
<< Cricket noises >>
Edit: obviously not LE, but other certificate vendors.
Lol, never had to buy a cert huh?
You're still buying a year or more at a time, no matter the lifetime of the cert itself. Even if the cert lifetime was a week, you're still buying the same product, no matter how many times you rotate it.
Personally? No I've never bought a cert before. Given there's free alternatives and it's a homelab it doesn't make sense. Otherwise I've used them on AWS, where ACM also just provides them for free.
What you're saying is that certificate providers will still charge you and provide certificates for a year, but just provide you with N certificates to span that year?
E.g. if the duration is 45 days then they will give you 365/45 certificates ?
like this
DaGeek247 likes this.
. if the duration is 45 days then they will give you 365/45 certificates ?
Minimum. We get through digicert at work, and we abuse the hell out of our wildcard and reissue it tons of times a year. You're buying a service for the year, not an individual cert.
like this
DaGeek247 likes this.
It's being deiven by the browsers. Shorter certs mean less time for a compromised certificate to be causing trouble.
cabforum.org/working-groups/se…
Latest Baseline Requirements
Version: 2.1.9Date: 10-November-20251. INTRODUCTION 1.1 Overview This document describes an integrated set of technologies, protocols, identity-proofing, lifecycle management, and auditing requirements that are necessary (but not sufficient) for the …CA/Browser Forum
most trouble is probably caused in the first few days. Doesn't matter if it's 45 or 90 days, it would have to be a few hours to be meaningfully short. Given that automating things like this is annoying sometimes, you'll be sure people will max out the 45 days…
I'm pretty sure it's the SSL seller lobby just wanting more money, tbh. Selling snake oil security.
I'm pretty sure it's the SSL seller lobby just wanting more money, tbh. Selling snake oil security.
And selling “certificate automation” tools.
Given that automating things like this is annoying sometimes, you'll be sure people will max out the 45 days…
I know from professional experience that this is a stupid as fuck idea that leads to outages. One of the many reasons I'm working to automate those annoying ones.
Also, don't let perfect be the enemy of better.
I'm not a capitalist, I don't care about outages. I can live with Facebook being down for a few days, or my bank not accepting transfers for a day or so. Then again, I grew up with the internet in the 90s and prioritise good software and tools over availability, I guess?
Obviously at my job I have to do what my employer thinks. But if nobody cared I'd definitely do our Gitlab upgrades once a week once they're out and not in some weird "maintenance window" mandated by SLAs and stakeholders.
Reducing the valid time will not solve the underlying problems they are trying to fix.
We're just gonna see more and more mass outages over time especially if this reduces to an uncomfortably short duration. Imagine what might happen if a mass crowdflare/microsoft/amazon/google outage that goes on perhaps a week or two? what if the CAs we use go down longer than the expiration period?
Sure, the current goal is to move everybody over to ACME but now that's yet another piece of software that has to be monitored, may have flaws or exploits, may not always run as expected... and has dozens of variations with dependencies and libraries that will have various levels of security of their own and potentially more vulnerabilities.
I don't have the solution, I just don't see this as fixing anything. What's the replacement?
like this
fistac0rpse, IAmLamp e DaGeek247 like this.
like this
DaGeek247 likes this.
Well it should be as short as possible while still being practical. LE doesn't have infinite server compute, renewal also takes some amount of time, plus if they make the validity too short people might stop using them (pretty evident judging from sentiment here) and move to other CAs and make what they do pointless.
45 days are still plenty of time yet people are already complaining. Does make me worry.
And you still can't self certify.
It's cute the big players are so concerned with my little security of my little home server.
Or is there a bigger plan behind all this? Like pay more often, lock in to government controlled certs (already done I guess because they control DNS and you must have a "real" website name to get a free cert)?
I feel it's 50% security 50% bullshit.
Edit: thank you all I will dive down the CA certification rabbit hole now! Have worked in C++ & X509 on the client side so maybe I'll be able to figure it out.
like this
fistac0rpse, IAmLamp e DaGeek247 like this.
like this
DaGeek247 likes this.
That's a fair point. However, on the practical side, it's sad that I would have to root my gf's phone to let her access the services we host.
I ended up using a DynDNS and Caddy for managing my cert.
But you have to manually accept this dangerous cert in the browser right?
Very interesting actually, do you have any experience about it or other pointers? I might just set one up myself for my tenfingers sharing protocol...
No, because it's no longer dangerous if it's trusted.
You give your friends your public root and if applicable, intermediary certs. They install them and they now trust any certs issued by your CA.
Source: I regularly build and deploy CA's in corps
like this
DaGeek247 likes this.
Thank you!
Is there some simple soft that let you make those certs, like with a root cert and then "derived" certs? On linux 😀 ?
I guess people have to re-trust every now and then because certs get old, or do they trust the (public partof the) root cert and the daughter certs derived from root are churned out regularly for the sites?
Openssl can do everything.
That's right, but instead of the word derived we use "issued"
Correct certs get old by design, they can also be revoked. As another commenter mentioned the biggest pain is actually in the redistribution of these end certificates. In enterprise this is all managed usually with the same software they use for deployment or have auto enrollment configured.
You should find tons of guides just take it slow to understand it all. Understanding certificates in depth is a rare and good skill to have. Most sysadmins I come across are scared to death of certificates.
I was forced to learn some of it at work (using and signing medical payment transactions, with x509 certificates) so I have ar least a starting point. I have no idea how the revoke process works though, I can't figure out a way that it functions without a central authority getting queried regularly. I thonk I can start without that knowledge though.
Anyway, with your information I'm up and running, thank you again!
"Derived certificates" not child certs, noted !
Yes you can but the practicality of doing so is very limiting. Hell I ran my own CA for my own internal use and even I found it annoying.
The entire CA ecosystem is terrible and only exists to ensure connections are encrypted at this point. There's no validation or any sort of authority to say one site is better than another.
like this
DaGeek247 likes this.
And you still ~~can't~~ can self certify.
Skill issue, you've always been able to self certify. You just have to know where to drop the self signed cert or the parent/root cert you use to sign stuff.
If you're running windows, it's trivial to make a self signed cert trusted. There's an entire certificate store you can access that makes it easy enough you can double click it and install it and be on your way. Haven't had a reason to figure it out on Linux, but I expect it won't be super difficult.
I already did but my browser choked on it.
So yes I should probably set up the whole CA thing.
It's the "change your password often odyssey" 2.0. If it is safe, it is safe, it doesn't become unsafe after an arbitrary period of time (if the admin takes care and revokes compromised certs). If it is unsafe by design, the design flaw should be fixed, no?
Or am I missing the point?
The point is, if the certificate gets stolen, there's no GOOD mechanism for marking it bad.
If your password gets stolen, only two entities need to be told it's invalid. You and the website the password is for.
If an SSL certificate is stolen, everyone who would potentially use the website need to know, and they need to know before they try to contact the website. SSL certificate revocation is a very difficult communication problem, and it's mostly ignored by browsers because of the major performance issues it brings having to double check SSL certs with a third party.
like this
DaGeek247 likes this.
like this
DaGeek247 likes this.
The point is, if the certificate gets stolen, there's no GOOD mechanism for marking it bad.
That’s what OCSP is for. Only Google isn’t playing along as per that wiki entry.
I mean, are you intending to retroactively add SSL to every tool implementing SSL in the past few decades?…
Browsers aren’t the only thing that ingress SSL.
Short lifespans are also great when domains change their owner. With a 3 year lifespan, the old owner could possibly still read traffic for a few more years.
When the lifespan ist just 30-90 days, that risk is significatly reduced.
like this
DaGeek247 likes this.
Moot point!
You could still get certificates for other people's domains from Honest Ahmed 's used cars and totally trustworthy CA or so. But that's another story. (there are A LOT of trusted CAs in everybody OS and browser. Do you know and trust them all?)
The maintainers of the big web browsers have pretty strict rules for CAs in this list. If any one of them gets caught issuing only one certificate maliciously, they are out of business.
And all CAs are required to publish each certificate in multiple public, cryptographically signed ledgers.
Sure, there is a history of CAs issuing certificates to people that shouldn't have them (e.g. for espionage), but that is almost impossible now.
like this
DaGeek247 likes this.
like this
DaGeek247 likes this.
like this
DaGeek247 likes this.
Personally, yes. Everything is behind NPM and SSL cert management is handled by certbot.
Professionally? LOL NO. Shit is manual and usually regulated to overnight staff. Been working on getting to the point it is automated though, but too many bespoke apps for anyone to have cared enough to automate the process before me.
like this
DaGeek247 likes this.
Why can't you just have a long lived internally signed cert on your archaic apps and LE at the edge on a modern proxy? It's easy enough to have the proxy trust the internal cert and connect to your backend service that shouldn't know the difference if there's a proxy or not.
Or is your problem client side?
One such app I can think of would be a client side issue. If the public cert doesnt match the back end private cert it will sever the connection and mark it as insecure. Hopefully I won't need to deal with it much longer though.
I just heard back from my other team that "this project sounds great for your team" even though they manage many of their own apps and certificates. Perhaps I should just let them burn then!
Can't imagine how annoying it would be to interface with every equipment so there are no https errors...
Reducing the validity timespan will not solve the problem, it only reduces the risk. And how big is that risk really? I'm an amateur and would love to see some real malicious case descriptions that would have been avoided had the certificate been revoked earlier...
Anybody have some pointers?
No, but I have a link showing how ISPs and CAs colluded to do a MITM notes.valdikss.org.ru/jabber.r…
Shorter cert lifespan would not prevent this.
It really just helps in cases where you get hacked, but the hacker doesn't have continued access. Say someone physically penetrates into your building, grabs the key through an unlocked station, and leaves.
That being said, like you mentioned, if someone is going through this effort, 45 days vs 90 days likely won't matter. They'll probably have the data they need after a week anyways.
Encryption key theft really requires a secondary attack afterwards to get the encrypted data by getting into the middle and either decrypting or redirecting traffic. It's very much a state level/high-corporate attack, not some random group trying to make a few bucks.
Terminology: revoked means the issuer of the certificate has decided that the certificate should not be trusted anymore even though it is still valid.
If a attacker gets access to a certificates key, they can impersonate the server until the validity period of the cert runs out or it is revoked by the CA. However ... revocation doesn't work. The revocation lists arent checked by most clients so a stolen cert will be accepted potentially for a very long time.
The second argument for shorter certs is adoption of new technology so certs with bad cryptographic algorithms are circled out quicker.
And third argument is: if the validity is so short you don't want to change the certs manually and automate the process, you can never forget and let your certs expire.
We will probably get to a point of single day certs or even one cert per connection eventually and every step will be saver than before (until we get to single use certs which will probably fuck over privacy)
The five-assed monkey of cert lifetimes.
As useless measures go this will certainly be one; especially while CRLs are a thing.
Yeah, I think Letsencrypt (and others) are one of the best things to happen for the internet.
You used to have to cough up a good chunk of monies for a certificate.
Now it's easily accessible and you (i) never have to think about it after the first setup because a robot automatically renews expiring certificates for me.
Generally this is one of the best improvements: a more secure web that is easier to achieve.
Make no mistake: this is an improvement.
There are substantial unsolvable issues with long lived certificates, and automatic deployment of very short lived certificates is the way to solve them.
Plan for certificate validity of six days in a few years.
Just saying:
There are alternatives for LE,not for all things, but for a lot.
Afaik not all of them do follow suit.
While I agree for my personal use, it's not so easy in an enterprise environment. I'm currently working to get services migrated OFF my servers that utilize public certificates to avoid the headache of manual intervention every 45 days.
While this is possible for servers and services I manage, it's not so easy for other software stacks we have in our environment. Thankfully I don't manage them, but I'm sure I'll be pulled into them at some point or another to help figure out the best path forward.
The easy path is obviously a load balanced front-end to load the certificate, but many of these services are specialized and have very elaborate ways to bind certificates to services outside of IIS or Apache, which would need to trust the newly issued load balancer CA certificate every 47 days.
Yeah, this has become an issue for us at work as well.
Currently we are doing a POC for an in-house developed solution where a azure function app handles the renewal of certificates for any domain we have, both wildcard and named, and place the certificates in a key vault where services that need them can get access.
Looks to be working, so the main issue now is finding a non-US certificate provider that supports acme. EU has some but even more local there aren't many options.
I'm using automated renewals.
But, that just means there's a new cert file on disk. Now I have to convince a half a dozen different apps to properly reload that changed cert. That means fighting with Systemd. So Systemd has won the first few skirmishes, and I haven't had the time or energy to counterattack. Now instead of having to manually poke at it 4x per year, it's going to be closer to once a month. Ugh.
Technically my renews aren't automated. I have a nightly cronjob that should renew certificates and restart services, but when the certificates need renewal, it always fails because it wants to open a port I'm already using in order to answer the challenge.
I hear there's an apache module / configuration I can use, but I never got around to setting it up. So, when the cron job fails, I get an email and go run a script that stops apache, renews certs, and restarts services (including apache). I will be a bit annoying to have to do that more often, but maybe it'll help motivate me to configure apache (or whatever) correctly.
Debian Stable
Challenge Types
When you get a certificate from Let’s Encrypt, our servers validate that you control the domain names in that certificate using “challenges,” as defined by the ACME standard.letsencrypt.org
While I do have some control over my DNS and can create arbitrary TXT entries, I can't to that in an automated way easily. I'm using Gandi.net to host my DNS rather than running my own DNS sever(s).
EDIT: Gandi is listed community.letsencrypt.org/t/dn… so maybe I can automate a DNS-01 challenge without too much issue, I just have to switch away from certbot to one of the other tools.
DNS providers who easily integrate with Let's Encrypt DNS validation
In the spirit of Web Hosting who support Let's Encrypt and CDN Providers who support Let's Encrypt, I wanted to compile a list of DNS providers that feature a workflow (e.g.Let's Encrypt Community Support
It does have access to the HTTP root directories. But, it still can't open port 80/443 when apache already has that port open.
EDIT: I guess my certbot renew just needs to be reconfigured to use a --webroot, so it doesn't try to listen on it's own.
I've got it setup automated on all my external domains, but trying to automate it on my internal-only domain is rather tedious since not only do I NOT want to open a port for it to confirm, but I have 2 other devices/services on the network not behind my primary reverse proxy that share the same cert.
What In need to do is setup my own custom cron that hits the hosting provider to update the DNS txt entries. Then I need to have it write and restart the services that use the cert. I've tried to automate this once before and it did not go so smoothly so I've been hesitant on wasting time to try it again... But maybe it's time to.
What would be ideal is if I could allow it to be automated just by getting a one time dns approval and storing a local private/public key to prove to them that I'm the owner of the domain or something. Not aware of this being possible though.
Ours is automated, but we incur downtime on the renewal because our org forbids plain http so we have to do TLS-ALPN-01. It is a short downtime. I wish let's encrypt would just allow http challenges over https while skipping the cert validation. It's nuts that we have to meaningfully reply over 80...
Though I also think it's nuts that we aren't allowed to even send a redirect over 80...
The same screwed up IT that doesn't let us do HTTP-01 challenges also doesn't let us do DNS except through some bs webform, and TXT records are not even vaguely in their world.
It sucks when you are stuck with a dumber broad IT organization...
our org forbids plain http
is redirecting http to https also out of the question? because let's encrypt HTTP-01 accepts http -> https redirects:
Our implementation of the HTTP-01 challenge follows redirects, up to 10 redirects deep. It only accepts redirects to “http:” or “https:”, and only to ports 80 or 443. It does not accept redirects to IP addresses. When redirected to an HTTPS URL, it does not validate certificates.
Forgive my ignorance but why would that incur a downtime?
The only way I can think of for downtime to happen if you switched certs before the new one was signed (in which case ..don't) or am I missing something?
It also strikes me as weird that LE requires 80 but does allow insecure 443 after a redirect. Why not just do/allow insecure 443 in the first place?
the TLS-ALPN-01 challenge requires a https server that implements generating a self-signed certificate on demand in response to a specific request. So we have to shut down our usual traffic forwarder and let an ACME implementation control the port for a minute or so. It's not a long downtime, but irritatingly awkward to do and can disrupt some traffic on our site that has clients from every timezone so there's no universal '3 in the morning' time, and even then our service is used as part of other clients '3 in the morning' maintenance windows... Folks can generally take a blip in the provider but don't like that we generate a blip in those logs if they connect at just the wrong minute in a month...
As to why not support going straight to 443, don't know why not. I know they did TLS-ALPN-01 to keep it purely as TLS extensions to stay out of the URL space of services which had value to some that liked being able to fully handle it in TLS termination which frequently is nothing but a reverse proxy and so in principle has no business messing with payload like HTTP-01 requires. However for nginx at least this is awkward as nginx doesn't support it.
Thanks for the explanation!
Though it ought to be possible to only respond with the new self-signed cert when LE does the challenge and with the previous, properly signed cert otherwise.
I found codeberg.org/neilpang/acme.sh/… which demonstrates one method to achieve that but I lack practical experience judge whether that's optimal.
YES! Keep cutting it down!
Revocation is a lost cause and if you don’t automate you deserve what you get.
I agree, but it's impossible to convince my less tech savy roommates and friends to let me install a root certificate. "That sounds like i could read all their private messages", lol. Just let me have my certificate for https in my local net. I don't need to be "even more" secure. I get that that's necessary for public services, but surely not for local selfhosting. I don't even have a port open other than wireguard. And i would not even care "if a roommate hacks/gets access to a guests voice commands for home assistant." (Not complaining at you but at this trend. I do think my use case is valid)
You are gonna laugh if i tell you how i partly automated this workaround. A script changes the (dyn) dns entries of all subdomains to point to my public server in a datacenter. There, it ssh's in and requests the certificates with certbot. Then, it restores the dns entries and downloads and installs the certificates in the local net. Still requires manual supervision and sometimes intervention. My domains do not support automated dnssec. I don't have time to secure my local net enough to feel good about opening ports. If all certificate lifetimes get shorter, i'll either have to switch my domain provider or give up selfhosting for other people.
I've had dns-01 validation running for a while now. It's not difficult, just a paradigm shift. I spent a minute just now looking for a concise how-to for you and didn't find one, so I suppose I'll have to write it.
I'll bookmark this comment so I can find you once I've done that.
Allowing a certificate without proper validation for local only networks is a terrible, terrible idea. I could super easily use this as a loophole to set up a honeypot public free wi-fi, redirect all traffic through a reverse proxy and man-in-the-middle every single HTTPS connection, effectively allowing me to harvest everyone's passwords in a really quick and easy way.
Just use DNS verification. It's not that hard.
Like what?
SSL is so simple and automatic with certbot.
Then there's CORS if you really need to load resources from other sites, but you won't need that for small sites.
Making the backend is easier than ever. It's much harder to make security mistakes nowadays.
And if you don't know what you're doing, just ask an LLM if you made any fuckups..
Email client that imports labels as tags instead of folders on Linux (and Android)
Problem Statement
I'm in the process of de-googling, and I'm about 60% there, but I still need gmail for the things that I cannot or have not yet migrated.
I've also recently experimented w/ the Thunderbird app for both Linux and Android, and it's okay. One thing that really irritates me is the fact that when I import my emails from gmail, all my labels are handled as folders in Thunderbird. This is an issue b/c I have rules to help organize incoming email by assigning one or more labels. I believe Thunderbird has the concept of tags, but by default Thunderbird routes gmail labels to folders instead of tags.
Question
Is there a mail client on Linux (and Android) that handles labels from gmail as tags instead of folders? Alternatively, is there a setting in Thunderbird that will use tags instead of labels that I'm just not aware of?
I've tried searching DDG, but came up with nothing useful beyond other posts on other social media websites asking similar questions.
* offlineimap in case you need something to fetch your IMAP emails.
* gmailieer is a tool which uses Gmail API to fetch emails.
* notmuch is a tool which indexes your email. You can assign whatever labels you want and rather than folders it uses tags.
* For notmuch you then need a front-end which can display the emails. I use Emacs for that. And since notmuch uses tags, you can then create whatever ‘folders’ by making saved searches.
Labels/Tags are a product feature, not part of email standards. Meaning: it's not a thing when looking at the raw mail server data.
Each product handles this in their own way, and the tool being used to export your mail from one host/product to another would be what is handling that, if at all. Gmail probably just uses folders because that is part of the structure a mail server would have.
I believe Proton's import tools handles this correctly from Gmail using both labels as folders and preserving tags, but I believe Thunderbird just puts them in folders as is standard.
You can double check by looking at the raw data exported from any mail service. You could probably easily write a quick script to handle getting tag info and applying it yourself, though it could be quite slow.
Labels/Tags are a product feature, not part of email standards. Meaning: it's not a thing when looking at the raw mail server data.
Thanks for the info. This helps me understand why things are the way that they are. It has me rethinking the use of tags altogether and leaning more toward reviewing my labels in gmail so I can tweak the ones that are still useful and remove any that are obsolete.
That's a solid plan.
If you want a deeper dive, just make some stuff in Thunderbird, then export and view it. It'll give you a bit of a look into how email standards servers organize data.
i don't use rules but fairmail has an option about gmail labels in rules ☞ m66b.github.io/FairEmail/#faq7…
I've been using fairmail for some years. I'm on tuta now but i may end up getting a mailbox.org just to have fairmail as my main mailer again
I went þrough þis years ago. My ultimate solution was offlineimap and notmuch. Þere are several clients which can work wiþ notmuch, but my favorites are TUI tools, which it sounds like may not be your bag.
About a year ago I switched to mbsync, and more recently to imapgoose, which does bidirectional sync'ing, differential updates, and push notifications.
Regardless of how you sync, notmuch is þe secret sauce, as it performs full text indexing and tagging. Þe downside is þat þere's no good solution for syncing notmuch DBs across servers, which means tagging is bound to a single computer; and notmuch indexes can get enormous - since þey're binary databases, diffing and keeping versions is non-trivial. However, it's about as close a solution as you can get to þe far superior gmail "tagging" and search-based email organization approach.
An alternative is mairix. It's far faster at indexing þan notmuch and þe index is smaller, but it's far less powerful. I actually use þem in conjunction - notmuch on my PC and mairix on þe mail server, because þey boþ understand email IDs - so you can e.g. search for "tag:spam" on a PC wiþ notmuch and dump email IDs, þen pipe þose to þe server and look þem up wiþ mairix and run "dspam learn" on þem. It's all a bit convoluted, but once you get it set up, a couple short shell scripts is enough to manage email using þe far superior paradigm of tags.
GitHub - gburd/isync: isync/mbsync - a mailbox synchronization program
isync/mbsync - a mailbox synchronization program. Contribute to gburd/isync development by creating an account on GitHub.GitHub
th → þ replacement going on in your text? Trying to bring back the thorn?
Heck yeah - it's just a configuration option!
Settings -> Languages -> English (assuming þat's your language setting) and turn on symbols. It shows up in þe long-press pop-up option for "t".
I don't know how many mails you have. But if that is what you want, then do the work... Import it into Thunderbird, select all mails in a folder, give them a tag, and move them where you want them. It might take a little time, but my guess is, that it will take way shorter time, than trying to find different programs to help you do it your way.
Oh, and maybe you could come up with a different system, than that google put on you... Just a thought here.
Agreed, this is where I'm at as well.
What I've had in place for the last decade or more made sense to me once upon a time, but it's over engineered and of limited usefulness.
Despite the potential technical solutions offered in other comments, I've resolved to go through and clean up my email history, including deleting stuff I no longer need and reconfiguring how I assign labels to incoming messages in gmail in order to make sense to my current self and play nice with the folder system, which seems to be more industry standard anyway.
Filen free plan. Any good?
I was looking for a Google Drive alternative. Its mainly for storing small documents. 10GB is Filen's limit on their free plan. Its more than enough.
But I am concerned about their privacy. Have anyone used it? I am ready to pay for a really good service but if they are giving it for free than I why should I pay if they are private enough?
They also have paid ones but they are an overkill for me. I mainly use offline HDD backups. These are for some quick access files. I don't need an app or anything. Simple web login would be fine.
Filen – Next Generation End-To-End Encrypted Cloud Storage
Filen – Next Generation End-To-End Encrypted Cloud Storage. Get started with 10 GB of free space.filen.io
like this
adhocfungus e Rozaŭtuno like this.
I use it and their free plan works fine but I've quickly upgraded to a paid tier. They claim zero knowledge E2EE, that's all I know. Free and paid plans offer the same level of privacy, as far as I know. But, if you plan on sharing files (I don't) make sure the free plan still offer that feature as I think I remember it was removed awhile ago (but I may be wrong).
I also think most our governments will sooner than later decide those kind of fully privacy-respecting cloud storage should not be accessed by mere users like ourselves (because 'think of the children' and the usual bullshit). So, I don't rely on it as my sole backup, I have another online backup solution (not cloud) and also keep a copy of all my files on a fully encrypted disk drive (two of them, as a matter of fact).
(deleted: an affiliate link that seems to not be working anymore)
Edit: typos.
I use it as my cloud backup along with 2 drives. It’s pretty good, smooth, open source, and claims e2ee just like proton and mega, and no bugs that I’ve found. I would put it on the same level as proton just newer. But just like how Libb said, if you worry about the future governments or want more privacy, maybe consider using cryptomator and this goes for any cloud storage. I use it with Filen and everything has been good so far.
Also you sadly just missed their last lifetime pro plans sale but doesn’t sad like you need it. Hope this helps!!
Pay for stuff if you want something reliable and supporting your privacy. Sure test the free tier to make sure it fits your requirements but please do consider not sticking to it.
Might be Filen (don't know of it) or Hetzner Storage Box (~10e/month for 5TB iirc) or Proton Drive (Visionary customers have a large quantity, e.g. >6TB) or whatever else you prefer but if you do not actually help people providing services by funding their work they you are supporting BigTech and their "free plans" that comes precisely at the cost of our collective privacy.
I have been playing around with it. Ended up buying more recently of the lifetime stuff. Tried their android app and windows/web interface. Web interface has been 100% rock solid. Android app not so much:
- Camera sync sometimes doesn't sync all the pictures. Sometimes it doesn't show synced pictures either, I have to manually navigate to the folder. Not sure whats up.
- Android app has a long delay on starting up sometimes.
- Poor battery optimization comparatively speaking to alternatives (nextcloud & gphotos)
- App occasionally crashes, but that's stopped recently.
Also, just full disclosure I am on Graphene, so sometimes things are a bit different. Recently, I have started to setup their rclone connection to use it as an offsite encrypted backup of ~ half a terabyte of important shit. Its my 2nd offsite backup and I am planning to regularly test that repository (using Kopia). While I am happy with it so far (outside the android app), I am still a bit wary on how reliable they are. They have been around for a few years now, so I feel more confident, just overall being cautious until I see a public audit of their backend. The client code is all OS (supposedly, I haven't confirmed beyond the rclone code), so you can check that if you like (which should at least confirm local encryption before transit).
Canadian air passenger traffic to U.S. down for 9th consecutive month
For the ninth consecutive month, fewer passengers at Canadian airports are heading to the United States amid the trade war.New data from Statistics Canada shows total Canadian air passenger traffic in October was up by 4.5 per cent to five million travellers from the same time last year, but the number of people on U.S.-bound trips is down 8.9 per cent to 1.2 million travellers.
Canadian air passenger traffic to U.S. down for 9th consecutive month
The drop comes almost a year after U.S. President Donald Trump first started musing about making Canada the 51st state, a threat he has repeated throughout the trade war.globalnewsdigital (Global News)
like this
frustrated_phagocytosis, wagesj45, felixthecat e magnetosphere like this.
like this
magnetosphere likes this.
The world should follow Canada's lead and nobody should visit from anywhere.
I’m American living in Germany and married to a German. I brought him to meet my family last November, because I suspected trump would win or there would be a more significant version of January 6th. People keep asking when we’re coming back, but why the hell would I endanger my husband like that? It’s simply not safe for anyone right now, but especially for noncitizens.
I miss my family and friends, but they can come visit us. We’ll even help them get started learning German and help with their visas and housing if they want to stay.
like this
magnetosphere likes this.
The world should follow Canada’s lead and nobody should visit from anywhere.
I think a lot of the world absolutely is, a few months ago I saw similar numbers from Europe, with Denmark and Germany among the biggest declines.
viewfromthewing.com/new-data-s…
Denmark is not in the chart, but it is very noticeable here, and although we are a small country we have higher tan average level of traveling and economic interaction with other countries.
New Data Shows Europe to U.S. Fall Travel Plunges Up To 12.5% — Expect Fares To Be Slashed To Fill Seats
Advance bookings for fall travel from Europe to the U.S. are down as much as 12.5%, a sharp drop that could push airlines to cut fares in order to keep planes full.Gary Leff (View from the Wing)
There will always be FFFF* tourists, but I have refused business travel to US. The world does too much unnecessary business travel.
*Fat Fucks with Flip Flops
Well, you can't see or eat the AI the Americans are spending all their money on.
You can experience it from home. It's underwhelming.
Air traffic to USA down 8.9% is very significant, and way beyond any statistical variance or uncertainty. Numbers at that scale tend to change slowly, so by that perspective 8.9% is a lot.
And ironically the Canadian economy is up 2.6% in Q3, and industrial production is up 3.3%. And inflation is down to 2.2%!!
So Canada is doing very well on major economic markers despite the sanctions from USA.
USA on the other hand is not, and Trump is so embarrassed he won't even allow his fudged numbers to be released.
I call them fudged because he fires people who release "bad" numbers, because Trump claims bad numbers are fake.
like this
fif-t likes this.
none of this apparent success is helping cost of living in Canada.
Except lower inflation is doing exactly that.
Most of the world has been through a period of increased inflation, but Europe is getting it under control now, and apparently so is Canada. So yes this should definitely be helping.
My in laws have a second home in the US and have been faithfully going back and forth pretty regularly to maintain it.
Now we’re finally getting to the point where they’re uncertain about going and talking about selling it.
I think there’s a lot of people coming a bit late to the party. I don’t think we’ve stabilized those numbers yet.
It's always been stupid how CDNs spent billions in the US for vacation travel.
However, all this has made vacationing in Canada unaffordable, especially with Boomers gouging on AirBNB for their shacks by Mosquito Lake. Finding cottages for summer 2026 has already ended by September 2025.
Everyone considering visiting the US should ask themselves some serious questions: is my visit so important that it’s worth the risk of being jailed for years? What if I unknowingly break an insignificant law and catch ICEs attention? Do my skin color/religious beliefs put me at greater risk of abuse? What are the possible repercussions for the people I’m visiting, and my loved ones back home?
They can talk about numbers being “down”, but frankly, 1.2 million is WAY too fucking many.
How I discovered a hidden microphone on a Chinese NanoKVM
Telefoncek.si • How I discovered a hidden microphone on a Chinese NanoKVM
NanoKVM is a hardware KVM switch developed by the Chinese company Sipeed. Released last year, it enables remote control of a computer or server using a virtu...telefoncek.si
and runs a heavily stripped-down version of Linux that lackssystemdandapt.
Ok, that's a plus in my book. Probably Alpine (often used in containers) or something.
Edit: cut the first question into another one, since this one here likely derails into a System discussion.
Scope creep and not-invented-here syndrome; replaces a lot of unix/gnu tooling/specifications with poorer ones, while shitting on some that made nix great. Which is why your distro is either Systemd or not, and not-Systemd distros still need wrappers and shims, because Systemd *also enforces some things in apps.
Then there was only hackjob SysV scripts or Systemd, so it's understandable that most big distros switched to it but now there's s6, runit, Dinit and you need to create a extra distro for them for above reasons. I'm using Artix btw.
Can't speak to him, but I have used unix-like software since the 1990s.
The entire UNIX philosophy boils down to one simple fact. Everything is a file.
This makes maintenance a breeze as no special tools are needed.
You don't need to install anything to read log files.
You can pull a hard drive from a dead system, and just read all the logs.
Most of systemd is just a solution in search of a problem.
Apalrd has done some great "popular computer science" videos on the various remote KVM devices that is well worth looking up. One of them specifically goes into the ridiculously sketchy methods that are used to fetch and execute unsigned code in random buckets to handle firmware updates.
But as for the mic? Honestly, if you open up a LOT of consumer devices you are going to find random microphones. Not because they are all secretly spying on you. But because they use "off the shelf" chips and boards that already have those embedded. Especially since microphones and speakers are kind of the same hardware in most cases and we ALL love a good beep.
I 100% agree the software stack shouldn't be on there. But, as the blog post points out, there is a LOT of developmental code and packages in that image that shouldn't be. It is likely just a case of not removing unnecessary packages from the base image.
Because... the entire point of a device like this is that you plug it in somewhere you aren't. MAYBE JetKVM corp can hear me muttering profanity or wondering where I left that USB c splitter when I am trying to assemble it the first time. The rest of the time? It is plugged into the back of a server that I am booting up so that I can install proxmox without having to drag a monitor over. And while you can potentially get some juicy info out of that? It is not at all worth the hassle to set up fake companies and market a fake (moderately high demand in the right circles) device.
Yeah you 100% have the right of this. Not a secret at all and very clearly documented on their github.
github.com/sipeed/sipeed_wiki/…
GitHub - sipeed/NanoKVM: Affordable, Multifunctional, Nano RISC-V IP-KVM
Affordable, Multifunctional, Nano RISC-V IP-KVM. Contribute to sipeed/NanoKVM development by creating an account on GitHub.GitHub
Note: Out of the 256MB memory in SG2002, 158MB is currently allocated for the multimedia subsystem, which NanoKVM will use for video image acquisition and processing.
To summarize: the device is riddled with security flaws, originally shipped with default passwords, communicates with servers in China, comes preinstalled with hacking tools, and even includes a built-in microphone - fully equipped for recording audio - without clear mention of it in the documentation. Could it get any worse?I am pretty sure these issues stem from extreme negligence and rushed development rather than malicious intent. However, that doesn’t make them any less concerning.
Slop everywhere. As far as the eye can see.
(though JavaScript JIT must be enabled)
How did they manage this? Is there a JS command to check that?
I disabled JIT/ion in my FF profiles, because js got so complex that it only speeds up the heavy webapps i avoid and has huge security concerns otherwise.
I had several IOT smart plugs that have GPS built in.
why? why would it need to know its exact geographic location?!
after that I created an entire hardware segmented network that's specifically used for IOT and cameras.
last I checked the router/firewall it's on has blocked over 11million requests a month trying to access the outside.
I will never have a "smart" device in my home that's connected to the internet. I'll live like it's the 1930s if I ever have to.
Yeah. Believe it or not but the sex pest who actively didn't warn his contemporaries about the impact of the honey plugin and who now advertises on kiwi farms might be kind of a piece of shit who will say anything for a buck?
And now for a word from d-brand!
Obviously never rely on a single source before buying something, but this isn't news. See the other dude's comment lemmy.world/comment/20879776
Yeah you 100% have the right of this. Not a secret at all and very clearly documented on their github.
github.com/sipeed/sipeed_wiki/…
GitHub - sipeed/NanoKVM: Affordable, Multifunctional, Nano RISC-V IP-KVM
Affordable, Multifunctional, Nano RISC-V IP-KVM. Contribute to sipeed/NanoKVM development by creating an account on GitHub.GitHub
I had a server that was off, when I booted it the bios was in Chinese. Although someone did say that motherboard had a flaw that would do that, I wasn’t Sure if it was the KVM or the motherboard, but still…
It could probably change the language selector.
If I'm an elite hacker spy who works for the hacker spy division of the Chinese army, am I going to change the system language of the thing I am hacking to Chinese and forget to change it back?
Samsung reveals first tri-fold phone
Samsung Announces its First Tri-Fold Foldable Phone
Samsung has announced the Galaxy Z TriFold, a foldable phone comprised of three ultra-thin (~4mm) panels and two sets of hinges, that unfolds into a 10-inch tablet. When closed, it resembles a standard smartphone with a 6.5-inch display that is 12.Rich Brome (Phone Scoop)
like this
KaRunChiy likes this.
Well phones already vibrate so they're ahead of the curve in that regard.
I'm waiting for the twelvefold myself.
I'm waiting for the twelvefold myself
The Samsung Origami
6 little Samsungs twirling on a branch
Eating lots of iPhones on my uncles ranch
You know that old children's tale from the sea
like this
KaRunChiy likes this.
You had me and then you lost me.
Samsung’s Most Versatile AI Phone, Powered by the Largest Screen
like this
KaRunChiy likes this.
like this
KaRunChiy likes this.
When you try to look at a spreadsheet and there are too many columns even in portrait mode, I open up the phone.
For some reason nobody figured out "zoom all the way out" functionality on the phone yet
like this
Beacon likes this.
Honestly I feel this was always the goal (one of several), but R&D is expensive. Shipping an odd phone that people still buy keeps the shareholders happy while the multi-year research process can eventually produce more usable results.
Single-flip phones were the awkward teenagers, now this phone can be the 18-20 age young adult, fully featured, but needing refinement. Next gen or the one after this will add a lot more robustness.
like this
bluGill likes this.
Sales figures and market trends suggest most people do not, in fact, want a keyboard.
You might want a keyboard on your phone. Lots of people here might want a keyboard on their phone. People on Lemmy are not most people.
people want a keyboard on a phone not more foldsI don’t give a shit what most people want
🤔
like this
HeerlijkeDrop, KaRunChiy e Th4tGuyII like this.
like this
warm likes this.
like this
massive_bereavement likes this.
like this
massive_bereavement likes this.
like this
Beacon likes this.
Statement with no substance. What do you desire that's not there?
Aside from the screen being softer and easier to scratch, name a practical difference between this and another 10" Android tablet...
If a 10" tablet meets your desires, and your desire to fold it and put it in your pocket, what's left?
like this
Beacon likes this.
A lot of the issue with foldable is the non-standard aspect ratio. This gets to a standard tablet aspect ratio, so should run out of the box with most apps without additional modification.
Also DEX support on-device means it can run fully windowed applications and use mouse and keyboard natively, which is a big boost in functionality for productivity applications.
DEX is actually pretty good when used with a keyboard and external monitor. I also dont love thr Samsung walled garden, but I end up buying their products because I use my phones for several years at a time before replacing them so top end hardware specs are a priority and especially cameras.
I would go Sony but the data band support in the US is incomplete, and I can't get caught out by poor cell service while traveling.
I am considering going Pixel next but Graphene hasn't been announced for Pixel 10 yet so I'm a bit on the fence, I guess I could buy an older model and give it a try wifi only for a bit to see how I like it.
like this
Beacon likes this.
like this
Beacon likes this.
like this
unknownuserunknownlocation e massive_bereavement like this.
like this
massive_bereavement likes this.
No word on if it's coming to the EU 🙁
My pixel 6 is dying and I'd like to get something for graphene or another less monopolized distro but there's no support for phones released this year as far as I can tell from most distros so I'm looking for one more normal phone until hopefully that ecosystem is better off.
Even the new pixels look weak from several angles
It was hard to get want them after all the reviews came in.
like this
massive_bereavement likes this.
like this
bluGill likes this.
all the modern features I want
What are those? Because the difference between midrange and top of the line has been shrinking from year to year.
the best processor
What do you do with your phone that needs the best processor? Maybe you have some special use case, but the vast majority of people don't need the best processor - often that's a case of chasing the shiny new thing.
I mean I don't have a laundry list but like:
- all day battery, doesn't seem Fairphone hits this exactly. When I'm vacationing I'm using my phone constantly to map and translate and record so it's the single biggest thing I want in a phone.
- a great camera, until I get a standalone shooter this is what I got. This is a great argument for a Fairphone because it's on the cheaper side.
- a large screen, ideally the largest I can possibly get. I joke that I won't be happy until I can unfold a 72 inch OLED from my pocket. So bright, colorful, OLED, fast refresh and variable refresh, and big.
- wireless charging. I really like the idea of the pixel snap feature. That would be a big selling point for me.
- great processor. I don't play phone games a ton but my current phone turns into a toaster on an idle game and that's unacceptable. Would like to not worry about performance.
- USB C, think everything has this these days.
- dual speakers, I listen to things when cooking so good speakers are actually nice. All the casting that used to be so easy seems like it's gotten harder these days.
- if someone other than apple would offer the lidar camera setup they've got, or whatever allows them to get a good topographical scan that would be a big selling point.
Again, not really exhaustive, but I'd consider myself a pretty normal consumer with a larger budget and a recognition that I use my phone more than any other device in my life so I might as well make it good.
Fair phone is compelling, especially compared to getting an expensive folding phone, but I'm not sold yet. You guys have definitely given me something to think about though as my screen continues to dim.
like this
massive_bereavement likes this.
It's comments like this that make me worried about literacy rates and reading comprehension.
I want to replace my Pixel with a cutting edge phone that is user friendly, repairable, highly private, has all the features I like, and whose company is owned by its workers and not evil.
That phone doesn't exist.
So now we talk priorities. With Google looking to close down android, I want something more open than stock android. My options are very limited. Graphene only works on the pixel line and not even the newest pixels, which are very underwhelming, so that's not a great fit. LineageOS doesn't seem to support any new phones albeit I didn't cross reference every phone. The nothing phone, and every other competitor, seems lackluster as well.
So I've resigned to settling for any phone that's cutting edge. If this is going to hopefully be my last mega evil corpo phone, I've been flirting with going with multiple screens because I doubt in 3 years there will be a non-corpo folding phone option if the normal slabs are still struggling. Samsung only "comes to mind", and this might surprise or confound you, because we're commenting on a thread about a Samsung phone.
If anyone has better recommendations for a last corpo phone out now or on the horizon, I'm all ears. And if someone wants to try and convince me there's a great phone out there that can run a non-stock OS and still be a largely enjoyable experience I'm also ready to be wow'ed. But I've looked around a bit and failed to find anything.
So I've resigned to settling for any phone that's cutting edge.
If you drop the "cutting edge" condition instead, you could grab a Fairphone, which ticks all the other checkboxes.
Unless you game on your phone, you won't notice a thing between modern high end and low end phones as long as they put enough RAM in.
Samsung is the opposite of everything you mentioned besides cutting edge.
like this
unknownuserunknownlocation likes this.
like this
massive_bereavement likes this.
They could have also reread my original message. They could have also commented something meaningful even with the wrong initial reading.
They could have asked for clarification, additional context, or anything else useful.
Instead their comment was... Idk how I would describe it. An attempt to insult? An unhelpful observation?
Its the opposite of being an ally, of helping people break from their chains, to misread their position and then write something snarky. Idk, I think people who make online spaces exhausting or worse deserve a few more insults in their life. Especially if they're not being helpful.
massive_bereavement likes this.
Considering everyone I know with a folding phone has had a fault with the folding part of it - I don't think its the best idea from a durability standpoint to add yet another folding part.
If one screen or fold point breaks, you're now left with two unusable (but perfectly functioning) screens. Seems like an expensive gimmick to me.
Mine grew a visible line at the foldy bit that you can see at an angle.
I like the phone though, just know what you're getting into.
From the moment I saw it, I knew what the problem would be, and surprise! That's the problem.
BTW, I'm a musician, not an engineer. If I saw that obvious issue, what is their fucking problem?
If I saw that obvious issue, what is their fucking problem?
The engineer's problem is that the marketing and sales department started running all of the companies two decades ago. So, they're constantly overruled.
The foldable phone are fine, yet expensive and not so widely used.
And who asked for it? They very well know that nobody will buy that.
Just get a tablet at this point.
If it didn't cost so much and the hinges and screens were as reliable as a phone without them, I'd buy it.
Having a big screen in the size of a normal phone would be great.
At the current prices and reliability though, the market is sure to be small.
Same here. I didn't understand why anyone would want a double thick (or now triple thick 🫨) phablet that folds out into a full tablet.
The razr I bought two years ago is the first phone that comfortably fits in my pocket in like a decade.
damn! I love my fold 5, but only cause the front screen is slim. not a fan of the standard screen size on the front of this one but a 10 inch tablet in my pocket is intriguing....
ill wait for the second or third generation to come out before I consider this
You want 2-3 phones instead of a folding phone. Light pocketable phone for actual mobile purposes. Can get a data only esim phone with voip to supplement voice/text phone, and have independent enabled data. independent charging. Backup when broken/lost phone. I suggest:
1-2 lightweight phones for mobility.
1 large possibly rugged phone for video or rugged adventures. Can be steam deck on a stand that is better setup as a dashboard. email + web tickers/discord. samsung and other phones also have a "desktop multiwindow mode"
3rd phones, can help with having 2 separate phones act as bluetooth keyboard and trackpad. Keep banking/secret stuff seperate/more secure during travel. Keep one in a locked tilt/swivel stand near bed most of the time. mod to alternate os.
2 or 3 phones is much more storage/ram and audio quality than including a tablet, with better portability options in both packing and daily use. It's also much less $, and can leapfrog upgrades.
Can't speak for the TriFold, but I easily get a full day out of my Fold 7, even with Battery Protection set to 85%. I usually end my day with a 40% charge, which is considerably better than my last phone (Fold 4). Easily over 1.5x more battery life.
That said, I miss the pre-Android/iOS days; back then I was charging my phone maybe once a week.
I don't need origami for a phone. Just bring back classic flip phones or stop. FFS
Yeah, even as a foldable enthusiast, I see no reason for this to exist. A second hinge is just another failure point.
Wake me up when the first cylindrical, rollable phone comes out. Until then, I'm happy with my Fold 7.
Imagine the possibilities!
- Heated camping mattress
- Sausage roll warmer
- Car windscreen defroster
This would be the coolest shit ever if these phones didn't have a reputation for breaking so easily. I had the Z Fold 4 and after I left it partially folded for about 30 mins in my car while I was driving, something went wrong with the hinge and it could no longer open fully flat. Unacceptable for a device at that price range.
I want us to go back when it comes to smartphones, not forward. Bring back the holy trinity of removable battery, headphone jack, and SD card slot.
Yawn. Samsung can have more money and attention from me when theyhave something i want. Give it 5 years.
A few ideas: A) projector! They are like $99 on Amazon now, put in phone. B) and app that pairs w Google glasses to count calories and nutrition of everything I eat all day. C) faraday cage setting D) no bloatware C) idk, im content... anyone else have ideas?
An flashlight concentrates it's light in a small cone, a projector must spread it over a larger area, while still being brighter than the ambient light if you want to use it as a projector. Take a guess why any good projectors cost more and use expensive hardware, instead of "hurr durr let's just juse a 10 cents flashlight LED!1!!"
There are YouTube channels who review cheap temu tech, and some of them also did cheap projectors, with the expected results.
The outside display is just about 21:9 and internal about 4:3, sounds like it's an ultimate retro gaming handheld. Lack of SD card support is a pain though
For folds, I like the old flip phone style flips better. The only puzzling thing with those ones are why keep the front facing camera when the rear cameras have a display on that half on the phone. The outer display on this is 6.5". It's not a compromise in size at all like the flips/razrs. Internal screen shouldn't have a selfie camera either
I know a person who has some Samsung foldable phone that is as of right now (2025.12.03) about a year old. According to them, everything was fine since February when the phone was bought. But last week we got below 0C weather, so the fold line on the screen got layers separated.
Z Fold 7 is 2000 euro. They might have Z Fold 6, I am not sure. Regardless, that is way too expensive of a phone to breaks under a mildly cold weather.
It's really not. The screen is 4k OLED. It's a perfect display. The tech had one tiny downside when it first launched which wasn't the crease was relatively noticeable, that's a long since fixed issue.
The only people who think folding phones are a gimmick are people who have never had them. Or and apple users who want one but can't get over the fact that Apple doesn't make them.
Who wouldn't want a phone that can change size on demand. How is that not a useful feature? Sci-fi is full of transparent screens which are objectively terrible, but folding is useful.
After reading through the comments and seeing the majority of people are commenting negatively but have never had a folding phone. i feel like i should chime in.
I have owns a fold 3 a fold 6 and now a fold 7, my wife has a fold 5 and we have never had one fail on us. No broken screens, no scratches or bugs. There are also several people where i work who have had at least 2 generations of these phones and also have never had issues.
I know these things break, but so does any phone. Phones breaking tend to be a user problem and not a hardware one. If you dont handle with care then you are the problem.
In fact i have only ever broken 1 phone in my 20+ years of using them and it was entirely my fault. I put it on a book on a table, then without thinking i lifted the book and it slid off and landed in a bucket of water. Pixel 1 not waterproof. My bad.
I guess i just think people are quick to judge these phones without ever having used one and i think thats so short sighted.
I had my fold 3 for 4 years and my wife used it to get a feel for them after me and she very quickly got a 5. I had some of the paint chip off in places after a few years and one time that i got scared by something and jumped a bit and threw it out of my hand to the ground with the inner screen open (only cosmetic damage to the body) it survived a lot. A hell of a lot of engineering went into the hinge so its pretty much the strongest part of the phone. Jerryrigeverything on youtube has tried to snap these phones and they are very strong and so far have not broken in one of his tests.
Any phone can break, but i say if you care for your phone it should last. The 3 onwards have been really solid phones and the fears around them, to me, seem made up.
Pretty soon Samsung is going to release a foldable that can become an imax screen. You just need to unfold it 1000 times, and you're set. It also needs to be unfolded 4 times to be able to answer a call, or use the 1.2 back screen to do that.
When in doubt, just add more fold.
Also AI will fake all your pictures and you can gloat that it’s “better.” Fuck Samsung.
Before you downvote, consider this shit.
Samsung caught faking zoom photos of the Moon
A Reddit post has revealed just how much post-processing the Galaxy S23’s camera applies when it detects it’s taking a photo of the Moon, inserting extra detail that isn’t present in reality.James Vincent (The Verge)
This means that there is a wrong way to fold the phone, but the phone has automatic vibrating and visual alerts to keep you from doing that
Yeah, yeah, yeah...
Lemme know when they are able to fold a phone 13 times and break the record.
I do love the idea of having a 10" tablet that fits into my pocket.
I'm still waiting for the tech to mature more, come down in price, and increase in durability though.
SGGeorwell
in reply to schizoidman • • •frongt
in reply to schizoidman • • •