Benvenuto nel Poliverso

Telegram is indistinguishable from an FSB honeypot

Many people who focus on information security, including myself, have long considered Telegram suspicious and untrustworthy. Now, based on findings published by the investigative journalism outlet ISt

^{Songs on the Security of Networks}

#privacy

like this

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

AnotherUsername

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

Awesome analysis. Thank you!

in reply to AnotherUsername

Andromxda 🇺🇦🇵🇸🇹🇼

in reply to AnotherUsername • 3 mesi fa • •

I'm not the author. You can thank @rysiek@szmer.info for this amazing write-up

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

rysiek

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

Heh, thanks. AMA I guess.

in reply to rysiek

altkey (he\him)

in reply to rysiek • 3 mesi fa • •

AMA is AMA

What lead you to dive into examining Telegram?
How would you use it if abandoning it is not an option, safety-wise, on android? Like, opening it in browser instead, killing app from the background, or using some app\tool? Not using it for anything sensitive is obvious.
What are other potential worms is in there you may think of? Recently, Yandex and Meta analytics tools got caught in sending browsing data to phone's localhost - where their locally installed apps caught it and sent back home. If the FSB conection is that deep, there is no end to what they'd want to mine from users.

It's not the first time I see your discovery shared and I want to thank you. It won't completely disencourage people around me from using it but it'd pile up with other many reasons to do so. Someday there would be just enough of them, like it happened with VK, Facebook etc, I believe.

in reply to altkey (he\him)

rysiek

in reply to altkey (he\him) • 3 mesi fa • •

AMA is AMA

What have I done.

What lead you to dive into examining Telegram?

I do information security work, and I used to work closely with investigative journalists hailing from Russia, Kazachstan, Ukraine, and other places in that general area. Telegram is massively popular there. Because of this Telegram has been on my radar for a very long time as a serious security threat – not just because its protocol and management are suspect, there are plenty of other IMs like that, but also because of how many people I worked with had used it.

I've written about Telegram before, on amore general level (linked in the blog post), so when IStories reached out to me for comment on this it was a good inspiration to dive deeper.

How would you use it if abandoning it is not an option, safety-wise, on android? Like, opening it in browser instead, killing app from the background, or using some app\tool? Not using it for anything sensitive is obvious.

I would not use it. I refuse to accept that abandoning it is not an option. There are plenty of options. It's always a decision one can make.

Please remember that even if hypothetically you could use it in a way that protects you from the spying – something I am very, very doubtful of! – the mere fact you are using it sucks other people into using it. You personally become one more reason for someone to start using or keep using Telegram. You personally become one more "user" of Telegram, justifying another media organization or NGO to set up or maintain a presence there – which in turn pulls in even more users into the dragnet.

In other words, your decision to use Telegram anyway, even though you know what the issues are, becomes one of the many things that make other people feel that "abandoning is not an option". I refuse to be a part of that. The only thing I can recommend is to stop using it.

What are other potential worms is in there you may think of? Recently, Yandex and Meta analytics tools got caught in sending browsing data to phone’s localhost - where their locally installed apps caught it and sent back home. If the FSB conection is that deep, there is no end to what they’d want to mine from users.

I think this hits the nail on the head: If the FSB conection is that deep, there is no end to what they’d want to mine from users.

I don't want to speculate. The possibilities are vast. But I will say what I said in the blogpost: Telegram is indistinguishable from an FSB honeypot.

I don't trust Telegram the company, I don't trust Telegram the software, I don't trust MTProto. I certainly do not trust Pavel Durov. I don't think we need to speculate on what more could possibly be hiding there, what is already known about Telegram should really be enough to stop using it.

Questa voce è stata modificata (3 mesi fa)

in reply to rysiek

thatonecoder

in reply to rysiek • 3 mesi fa • •

Not a question, but you've written some fantastic articles, thanks — I've added your website to my RSS feed!

in reply to thatonecoder

rysiek

in reply to thatonecoder • 3 mesi fa • •

Thank you, that's really great to hear!

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

Cheradenine

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

The two decisions Telegram made (choice of infrastructure provider who happens to cooperate with the Russian FSB, and attaching a cleartext device identifier to encrypted messages) taken together reinforce surveillance capability of the FSB considerably more strongly than either of these decisions would have on its own.

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

lazynooblet

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

The entire article seems like an attack. The author finds a unique identifier and adds "Russia bad" throughout.

States the information is in cleartext but then explains how everything is encrypted (in transit).

What will the author do if they intercepted any single online stores transfer of credit card details. Also encrypted in transit but Is that also deemed as cleartext? Or is that okay?

I don't think much new is learnt here. WhatsApp also sends metadata in "cleartext" (not really, as it's encrypted in transit, but this article called that "cleartext").

Questa voce è stata modificata (3 mesi fa)

in reply to lazynooblet

T (they/she)

in reply to lazynooblet • 3 mesi fa • •

I don't know... I think the author put a lot of effort on document things and presenting evidence.

Your post history and mod logs are also quite weird.

in reply to T (they/she)

lazynooblet

in reply to T (they/she) • 3 mesi fa • •

Your post history and mod logs are also quite weird.

Lol what does that mean

in reply to lazynooblet

Rose

in reply to lazynooblet • 3 mesi fa • •

Russia bad btw.

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

ses hat

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

Hahaha , so the conclusión is ? Use usa and israel software so they can spy us ? F... this crap propaganda.

in reply to ses hat

XXIC3CXSTL3Z

in reply to ses hat • 3 mesi fa • •

fr it's literally

no russia bad but trust our feds instead because we are the good guys
bsfr 💀💀💀

But I can't lie the analysis is still quite in-depth and feels like an effortpost

in reply to ses hat

dewittlebook

in reply to ses hat • 3 mesi fa • •

I can't say I read the whole thing because the technical analysis went over my head, but I don't think we read the same conclusion

Conclusions

Based on the analysis of packet captures above, I believe it is clear that anyone who has sufficient visibility into Telegram’s traffic would be able to identify and track traffic of specific user devices. Including when perfect forward secrecy protocol feature is in use.

This would also allow, through some additional analysis based on timing and packet sizes, to potentially identify who is communicating with whom using Telegram.

Telegram is indistinguishable from an FSB honeypot

Many people who focus on information security, including myself, have long considered Telegram suspicious and untrustworthy. Now, based on findings published by the investigative journalism outlet ISt

^{Songs on the Security of Networks}

in reply to ses hat

rysiek

in reply to ses hat • 3 mesi fa • •

Hi, author here. First of all, in that piece I don't happen to recommend using any specific piece of software. I mention Signal and WhatsApp for comparison, as tools that are considered similar, and yet avoid making the same weird protocol choices.

Secondly, if you have any proof that any specific communication tool is used to "spy" on people, I am sure I am not the only person who would love to hear about it. That's the only way we can keep each other safe online. Surely you wouldn't be making unsubstantiated claims and just imply stuff like that without any proof, would you?

And finally, I've spent a good chunk of time and expertise on analyzing Telegram's protocol before I made my claims. I provided receipts. I provided code. I explained in detail my testing set-up. You can yourself go and verify my results.

Instead, you claim it's "propaganda", while mischaracterizing what I say in that post. Classy!

Questa voce è stata modificata (3 mesi fa)

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

socsa

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

No, not that very obvious thing that people have been saying for years! I simply refuse to believe it!

in reply to Andromxda 🇺🇦🇵🇸🇹🇼

Sims

in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • 3 mesi fa • •

Just infantile Western propaganda/russophobia. reverse it for Western reality, and ignore the post..

ActivityPub - Collegamento all'originale

Octt via Blogs

3 mesi fa • •

Octt
3 mesi fa • •

gigarivista scottiaca con segretissimo numero, trovato così nel vedere colì

A distanza di 2 anni (…io pensavo 1), chi si ricorda Scottecs Gigazine? Probabilmente nessuno, neppure io onestamente. Però, l’altro giorno mi è tornato in mente che esiste, giusto per caricare su TomoStash una manciata di volumi molto vecchi che ho trovato sull’agrodolce Archivio di Anna… e ok. Però poi ieri ho aperto il sito […]

octospacc.altervista.org/2025/…

minioctt

2025-06-23 10:03:25

gigarivista scottiaca con segretissimo numero, trovato così nel vedere colì

A distanza di 2 anni (…io pensavo 1), chi si ricorda Scottecs Gigazine? Probabilmente nessuno, neppure io onestamente. Però, l’altro giorno mi è tornato in mente che esiste, giusto per caricare su TomoStash una manciata di volumi molto vecchi che ho trovato sull’agrodolce Archivio di Anna… e ok. Però poi ieri ho aperto il sito ufficiale della rivista gigante, per includere i link e per copincollare le descrizioni dei tomi, e lì ho scoperto non una, ma ben due (2) cose assurde… furbuffe, quasi. (!) 😱
Innanzitutto, esiste un numero speciale del Gigazine, il Numero Zero XL, che è esclusivamente digitale e gratuito!!! Non l’ho mai sentito prima, e in effetti è bello nascosto sul sito, tutto in fondo alla lista dei prodotti… sarà un regalo per i ficcanaso, e io approvo. La cosa strana però è che non si vede alcun tasto per scaricare, o che… l’unica cosa che a fatica trovo è il tasto “aggiungi al carrello secondario”, scrollando in fondo alla pagina, dove appare come flyout, ma… clicco e non funziona, semplicemente il testo si trasforma in una rotellina che gira all’infinito. Per sicurezza ho provato anche dal browser dei pensionati, che “non si sa mai che su Firefox magari è tutto rotto, specialmente il mio con 31 estensioni“, ma niente. 😓
Grande terrore, quindi. Ho temuto di non poter mettere le mani su questo PDF elusivissimo. Giusto un attimo prima di aprire i devtools del browser, per capire cosa va storto e non posso sistemare (qualcosa nel loro tema di Shopify, il JavaScript tira un errore Uncaught TypeError: this.form is null: initCartBar@theme.js [...]), però, per nessun motivo particolare se non il fatto che ci fosse un pallino “1” nell’angolo, il bottone della chat ha catturato la mia attenzione, e l’ho cliccato… e lì ho riso. Perché tra le tante “risposte immediate” c’è “Non riesco a scaricare il Numero 0 XL“, che ho quindi cliccato, e il bot ha risposto “Gigaciao! Non ti preoccupare, utilizza il link qui sotto e scarica il Numero 0 XL! https://gigaciao.com/a/downloads/-/92f4529bab5bf4e…“. 🤯
Cioè… fatemi capire bene… Loro sanno perfettamente che il loro sito è rotto e il download non può partire, e non solo non sistemano semplicemente lo spacc nel codice, ma nemmeno mettono il link diretto al download nel testo della pagina… No, bisogna che l’utente abbia l’intuizione di scavare in altre parti del sito, in questo caso la chat di supporto, per trovare lì finalmente l’oggetto digitale tanto agognato! Regà, boh, è così assurdo che a questo punto non posso non pensare non sia stato fatto apposta; va bene i problemi, va bene l’incompetenza, ma qui siamo oltre: mi sa che è davvero una caccia al tesoro per chi ha abbastanza pazienza come me. Vabbè, tanto ora il numero 0 è ricaricato sul mio sito… e comunque ci ho perso solo 2-3 minuti, ma in cambio ho subito questa user experience assurda da raccontare. 👌
#Shopify #UX #web

Scottecs Gigazine 0 XL - Prodotto Digitale
Ecco a voi la versione DIGITALE del ricercatissimo Numero Zero, adesso disponibile in versione XL, con più contenuti ma sempre GRATIS!Se non siete riusciti a recuperarlo in versione cartacea, o se ci siete riusciti, ma volete leggerne una versione es…
^Gigaciao

miss_demeanour via Political Memes

3 mesi fa • •

miss_demeanour
3 mesi fa • •

The Three Stooges of Abraham

#politicalmemes

logir likes this.

in reply to miss_demeanour

FundMECFS

in reply to miss_demeanour • 3 mesi fa • •

If the war didn’t mean innocent civilians dying everywhere, I’d have posted this:

aeharding via Voyager

3 mesi fa • •

aeharding
3 mesi fa • •

Experimental Piefed support is now available for Voyager

I'm excited to announce that Voyager now has experimental support for logging in with Piefed! You can try it out today on:

This will roll out to the official app stores and vger.app soon(tm), once I’m confident there are no major regressions. If you prefer not to switch to beta builds, just hang tight.

Please note that Piefed support is EXPERIMENTAL! There are still many things that don't work quite right, which I'm hoping to improve over the coming weeks.

The basics including scrolling home/all/local, viewing posts, blocking, commenting and voting should work well. However there are some known issues:

Can't sign up for a Piefed account in-app, only log in with an existing one
Subscribed communities list is empty (should be fixed soon!)
Inbox tab doesn't load
Comment search doesn't work
Profile upvoted/downvoted doesn't load
No moderation tools
Mark as read doesn't persist
Creating/editing posts is currently untested
...probably a bunch of other stuff too, please let me know below!

Behind the scenes, this interoperability is made possible thanks to aeharding/threadiverse, a new library I am working on to normalize various threadiverse-software APIs. It's open source so any project use it, but it's under heavy development right now. What's cool about this is in the future, adding support for mbin, or whatever else is possible!

Again, feel free to try it out and let me know if there are any more issues to be documented and fixed.

Join the Voyager for Lemmy beta

Available on iOS

^{testflight.apple.com}

#voyagerapp

in reply to FancyPantsFIRE

aeharding

in reply to FancyPantsFIRE • 2 mesi fa • •

Yeah, piefed thumbnails are pretty small. I don't know if that's a per server config or not though. Probably something to ask the piefed devs

in reply to aeharding

Rimu

in reply to aeharding • 2 mesi fa • •

Yesterday I merged in a PR that lets the instance admin set the sizes for thumbnails.

But the real issue is that the thumbnails have a variety of uses - in the PieFed web UI thumbnails are shown quite small so 170px is fine. But some mobile apps might show the thumbnail in a manner that spans the whole screen which is going to need to be at least 350px wide.

I'll make PieFed generate a 500px version of the thumbnail and include that in the API response (as well as the smaller one).

elbucho via politics

3 mesi fa • •

elbucho
3 mesi fa • •

US State Dept. spokesperson says US is the greatest country on Earth... next to Israel.

It truly is impressive how thoroughly Israel has dominated US politics. Like, Russia may have had a huge victory by getting Trump elected, but they don't have shit on Israel. Hell, something like 60% of our elected representatives have received donations from AIPAC, and that's just the stuff that's been reported!

Source: youtube.com/live/ogqYsmfDY0E

- YouTube

Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.

^{www.youtube.com}

#politics

Questa voce è stata modificata (3 mesi fa)

adhocfungus likes this.

VBB via Touhou Project

3 mesi fa • •

VBB
3 mesi fa • •

Job Application

https://x.com/deburi276/status/1936553368274743413

Character: Kogasa Tatara

Viewer discretion is advised

#touhou

in reply to VBB

Rozaŭtuno

in reply to VBB • 3 mesi fa • •

Parola filtrata: nsfw

bl4kers via Privacy

3 mesi fa • •

bl4kers
3 mesi fa • •

Reminder: Proton Mail addresses have vendor lock-in

Both auto-forwarding and auto-reply are paid features, which makes cancelling & switching much more difficult. Gmail is a breeze comparatively. I highly recommend against using their addresses (e.g. protonmail.com, proton.me, pm.me)

Email forwarding is available for everyone with a paid Proton Mail plan.

(source)

How to use email forwarding | Proton

With email forwarding, you can automatically forward emails sent to your Proton Mail account to any email address.

^Proton

#privacy

like this

in reply to bl4kers

good_hunter

in reply to bl4kers • 3 mesi fa • •

How do you expect anything to be completely free?

in reply to good_hunter

John Richard

in reply to good_hunter • 3 mesi fa • •

A better question would be, why do domains cost so much.

in reply to John Richard

hansolo

in reply to John Richard • 3 mesi fa • •

Domains cost like $1 if you're flexible. Email hosting is what costs money.

in reply to good_hunter

hydroptic

in reply to good_hunter • 3 mesi fa • •

The fact that dumb twats just expect to get everything for free is the reason why everything turned to ad-funded shit

like this

in reply to good_hunter

irotsoma

in reply to good_hunter • 3 mesi fa • •

Point seems to be that people are switching from gmail to proton for free email, but it's going to be even more difficult if Proton becomes like Google turned out since you'll have to pay to get all the email to your new address while you are transitioning to whatever is next. Instead go to that next thing now before you get "locked in" by having all of your important emails going there. With gmail at least you can forward the emails for free from the places you forget to change your email with at first.

in reply to bl4kers

HayadSont

in reply to bl4kers • 3 mesi fa • •

Thank you for raising this point.

Are there even other privacy-respecting email providers that are fit for the job? I'm genuinely curious.

Questa voce è stata modificata (3 mesi fa)

like this

in reply to HayadSont

DominusOfMegadeus

in reply to HayadSont • 3 mesi fa • •

DuckDuckGo will give you free forwarding with a duck.com address. It also strips all trackers. I love it.

in reply to DominusOfMegadeus

HayadSont

in reply to DominusOfMegadeus • 3 mesi fa • •

This is pretty cool and definitely has use, but IIUC this is strictly a free forwarding address, right? I don't think it tries to compete with Proton Mail or Tuta Mail.

in reply to HayadSont

DominusOfMegadeus

in reply to HayadSont • 3 mesi fa • •

Correct, that’s all it is. But if a live person is asking me for an email, and I don’t want to break out my phone to generate something complicated and hard for them to understand, this works great. (They have enough trouble understanding “duck.com,” even though after the first few instances of utter confusion, I now say, “@duck.com, like the bird, quack, quack.” And they still get extremely confused.

Questa voce è stata modificata (3 mesi fa)

in reply to HayadSont

CoyoteFacts

in reply to HayadSont • 3 mesi fa • •

Mailbox.org is a good pick to consider IMO. You can read some comparisons on PrivacyGuides, which I also recommend as a starting point for these sorts of topics. The mailbox.org web UI is not great, but it allows IMAP/SMTP access, so I use Thunderbird on both desktop and Android in order to interact with my inbox. My inbox is auto-encrypted with PGP using their Mailbox Guard thing, so my emails are all encrypted garbage on the web UI anyway. Mailbox.org only allows paid-for accounts, but considering the annoying stuff that Proton and Tuta do to their free accounts I'd rather just be honest about the service I'm getting. It allows auto-forwarding directly in the web UI, but given that you can hook up to it with IMAP anyway, it's not like you couldn't just do it yourself.

(Also, as another comment said I also recommend DuckDuckGo's Email Protection for email aliasing if you need it.)

Encrypted Private Email Recommendations - Privacy Guides

These email providers offer a great place to store your emails securely, and many offer interoperable OpenPGP encryption with other providers.

^{Privacy Guides}

Questa voce è stata modificata (3 mesi fa)

in reply to bl4kers

mybuttnolie

in reply to bl4kers • 3 mesi fa • •

my beef with proton mail is that i can't use it on thunderbird and their android app doesn't have notifications (at least without google spy services.)

like this

in reply to mybuttnolie

DominusOfMegadeus

in reply to mybuttnolie • 3 mesi fa • •

I use it on Thunderbird. I just couldn’t grow to like thunderbird.

like this

in reply to DominusOfMegadeus

mybuttnolie

in reply to DominusOfMegadeus • 3 mesi fa • •

i couldn't set it up and it went a little beyond my understanding why, but apparently it's a paid feature. i don't necessarily love thubderbird either, but it does its job for me

in reply to mybuttnolie

voracitude

in reply to mybuttnolie • 3 mesi fa • •

Thunderbird doesn't have your private key to decrypt your Proton emails. The key lives in your browser and in theory there's no way to securely provide that key to Thunderbird so it can do the decrypting. There's a special application they built for business owners who want this functionality, but by nature it breaks Proton's security because the email content is then stored in plaintext (or close enough) so it's not "secure" in the same sense Proton webmail is.

in reply to voracitude

DominusOfMegadeus

in reply to voracitude • 3 mesi fa • •

You have to use the Proton Mail Bridge

in reply to DominusOfMegadeus

voracitude

in reply to DominusOfMegadeus • 3 mesi fa • •

That's the "special application" I mentioned, but it seems to have been updated since I last looked at it so it now offers the same level of encryption as the webmail app.

I would prefer to see it freely available, but it doesn't seem foundational to using the service in any scenario - free accounts have the webmail and mobile clients, which are arguably both more flexible (and maintainable) than the Bridge.

in reply to mybuttnolie

gewuerzwiesel

in reply to mybuttnolie • 3 mesi fa • •

To get notifications using the Android app on a de-googled phone, you can use the app 'You Have Mail' available on F-Droid. It was developed to solve the issue you described.

in reply to bl4kers

coffeetastesbadlikecoffee

in reply to bl4kers • 3 mesi fa • •

Yes I realized this too late, after I had already used the private email adresses from proton pass everywhere.

My solution ( while not completely private but better than using the same one everywhere)
Is to use my own firstname.lastname@domainicontroll.com for thing already linked to personal info and then set up custom domain for proton pass hidden emails to @fuckgoogle.otherdomain.com

Then if proton ever goes to shit I can still go to another email provider and all I have to do is move the domains. Yes it isn't free but there is no such thing as a free lunch, self hosting isn't free either and I don't have the mental bandwidth to self host an email server right now.

in reply to coffeetastesbadlikecoffee

utopiah

in reply to coffeetastesbadlikecoffee • 3 mesi fa • •

Nothing is preventing you from changing those email addresses to the one you now have on your own domain.

The ignorance from OP is not vendor lock-in.

in reply to utopiah

coffeetastesbadlikecoffee

in reply to utopiah • 3 mesi fa • •

Yes there is it's called procrastination

in reply to utopiah

masterspace

in reply to utopiah • 3 mesi fa • •

Uh, yes there is, by the inherent nature of how addresses (i.e. public identifiers) work.

An IP address, email address, physical address, etc, is a mechanism to have a string of text, become a unique identifier for something, so that you can just share that piece of text to refer to it.

Once you give out that piece of text, you no longer have control of it. I can give it to someone and then someone else could ask them about it, and they pass it on, and now I have no idea who has this unique identifier that represents me anywhere out there in the world. I can ask the first person to update their records but I have no guarantee that they'll do it successfully or that they'll remember every single person who they gave it out to you update.

By the very nature of being an identity provider, you are inherently offering your users something that they should be able to fully own in perpetuity. In those circumstances, it's problematic if an identity provider insists that you always have to pay for its services, just to have communication from your old identity forwarded.

Questa voce è stata modificata (2 mesi fa)

in reply to bl4kers

gkak.laₛ

in reply to bl4kers • 3 mesi fa • •

Reminder of this:

poolp.org/posts/2019-08-30/you…

And that mailu.io (and other similar projects) makes self-hosting email almost trivial 😁 (at least for people that can run a pre-configured docker-compose.yml and buy their domain etc)

You should not run your mail server because mail is hard

TL;DR: - Mail is not hard: people keep repeating that because they read it, not because they tried it - Big Mailer Corps are quite happy with that myth, it keeps their userbase growing - Big Mailer Corps control a large percentage of the e-mail addre…

^poolp.org

like this

in reply to bl4kers

melroy

in reply to bl4kers • 3 mesi fa • •

Agreed.

in reply to bl4kers

utopiah

in reply to bl4kers • 3 mesi fa • •

No, Proton email addresses do not. I have ProtonMail addresses using my domain. If tomorrow I point to another email provider, Proton can do nothing about it.

Being paid feature vs free is not vendor lock-in.

You are spreading misinformation, either by misrepresenting the situation or by not understanding what "vendor" (an arguable term since apparently you are focusing on the free version) is lock-in means.

in reply to utopiah

ReversalHatchery

in reply to utopiah • 3 mesi fa • •

their point is not the custom domain usage, who cares about that, for that you need a domain to begin with and its not that common to have a personal one. but that you can't set up automatic forwarding without continuously paying. that makes switching considerably harder for the everyday people.

Questa voce è stata modificata (3 mesi fa)

in reply to ReversalHatchery

utopiah

in reply to ReversalHatchery • 3 mesi fa • •

Then they should change their title to say free email addresses only.

in reply to utopiah

masterspace

in reply to utopiah • 3 mesi fa • •

I think OP is overblowing things, and is especially misguided in recommending gmail, but at the same time, they do have a valid point and I think you're somewhat misrepresenting what they said.

For one, they specifically said that the proton domain email addresses are problematic (protonmail.com, pm.me), and weren't talking about custom domains that sit in front of Proton mail.

For two, their point is valid. Auto-forwarding being paid, does create vendor lock-in and make it hard to switch away from Protonmail if you use the OOTB addresses. It's something worth considering.

As you said, the recommendation should be to use a custom domain that sits in front of Protonmail rather than switching to Gmail, but paid auto-forwarding is a valid criticism.

in reply to masterspace

utopiah

in reply to masterspace • 3 mesi fa • •

The details might be technically correct but then the title is rage bait.

in reply to masterspace

irotsoma

in reply to masterspace • 3 mesi fa • •

I don't think the OP is saying to switch to gmail. They're saying if you think switching from gmail is hard, just wait until you have to pay to forward all of your email if you need to move away from Proton mail if they end up being as bad as Google. They're saying use something else that's neither gmail nor proton mail.

in reply to utopiah

Ulrich

in reply to utopiah • 3 mesi fa • •

Thank you

in reply to utopiah

Zoma

in reply to utopiah • 3 mesi fa • •

A while ago i bought a custom domain from namecheap but i don't seem to feel safe using it for banking, would you recommend using it for my bank instead of a protonmail email alias?

in reply to Zoma

wellbuddyweek

in reply to Zoma • 3 mesi fa • •

I have selfhosted my mail on my own domain, on a server in my closet, for about 4 years. In that time I never switched over realy important things, like government etc, out of fear of missing an email and not knowing. That was the only reason not to switch for me.
I've had to move a few times in a short peroid and my career started taking more of my time, so I have less time to manage the server, thus I started looking around. Now I settled on proton, I don't use any of their domains, only my own, and I've switched literally everything over, except for the recovery mail for my domain registrar login.
Since proton hosts professionally, I trust them not to drop mails without telling me, and I don't realy see a reason not to switch over. If I ever want to move provider, or start selfhosting again, I'll setup the new provider, update the dns for my domain and done.

If you have some specific questions about my setup or choices, let me know, although I'm probably not able to reply in the next 12ish hours.

in reply to bl4kers

CoyoteFacts

in reply to bl4kers • 3 mesi fa • •

I don't support Proton for other reasons, but I'll note that if anyone is having this problem you can use a half-measure of setting your other email address as a recovery email and enabling "daily email notifications", which will email you once a day if there's unread stuff in your Proton mailbox.

in reply to CoyoteFacts

basiclemmon98

in reply to CoyoteFacts • 3 mesi fa • •

Can I ask what those other reasons are? (genuinely curious if I should switch away from them)

in reply to basiclemmon98

CoyoteFacts

in reply to basiclemmon98 • 3 mesi fa • •

The straw that broke the camel's back for me is the CEO's icky tweet about how great Republicans are for your privacy and how they stand up for the little guys (what), which they doubled down on using the official Reddit Proton account. There's already been a ton of discussion about this on the internet if you care to look for more angles on it.

But before that I'd already grown quite leery of them for their trend of endlessly starting new services before the old ones are polished, along with trying to push everyone into their walled garden and endlessly using naggy popups in the UI about it. Worst of all, they have a clear trend of not giving a damn about Linux support, sometimes giving up on certain features for their Linux clients or releasing the clients way after the Windows/Mac versions. For a "privacy company", not putting Linux as a first-class citizen is really just unacceptable, and they've been around for long enough that it's clearly a trend and not a fluke. To me, Proton just feels like a wannabe version of Apple. Its continued actions give me the feeling that it exists to serve itself, not its users.

in reply to CoyoteFacts

basiclemmon98

in reply to CoyoteFacts • 3 mesi fa • •

Thanks for the extensive response! You make some really good points and I was unaware of the political ick. Not sure if it's enough to make me leave them because they do seem to at least handle the privacy aspect of their services correctly (for now at least), but those do seem like good areas that I'm going to watch more closely about them from now on.

in reply to bl4kers

flatbield

in reply to bl4kers • 3 mesi fa • •

All email services have vendor lock-in unless your using your own domain.

For what it is worth, I just moved my mail from my ISP to my own domain at a hosting service after 30 years. Took about 5 months to get everything changed but if I can do it anyone can.

Downside, using your own domain is probably less private but kind of depends.

in reply to bl4kers

unskilled5117

in reply to bl4kers • 3 mesi fa • •

Workaround:
1. Use Thunderbird Desktop with Proton Mail Bridge
2. Create a filter inside Thunderbird to forward the mail

While that requires Thunderbird to be running on a desktop, it might still be preferable to checking your proton account

Proton Mail Bridge Thunderbird setup guide for Windows, macOS, and Linux | Proton

How to set up Mozilla Thunderbird with Proton Mail Bridge in Windows, macOS, and Linux.

^Proton

in reply to unskilled5117

Pleat1752

in reply to unskilled5117 • 3 mesi fa • •

Proton Mail Bridge requires a paid account.

in reply to bl4kers

quickenparalysespunk

in reply to bl4kers • 3 mesi fa • •

if you're not actually promoting gmail, you ought to make that explicitly clear.

by pointing out something bad about proton and praising gmail's version of that, it looks like you're doing nothing other than recommending gmail in a privacy community.

everyone already knows gmail has high usability and convenience and zero (financial) cost. using it as an example in this community is redundant and ineffective. better to use another e2ee email service as an example.

in reply to bl4kers

Zoma

in reply to bl4kers • 3 mesi fa • •

I mostly use my custom domain on protonmail for reasons like this.

in reply to Zoma

obsidianfoxxy7870

in reply to Zoma • 2 mesi fa • •

I use Tuta but it's what convinced me to buy a domain. So if/when I switch providers the majority of contects will not notice.

geneva_convenience via Comics

3 mesi fa • •

geneva_convenience
3 mesi fa • •

Puppet regime

#comics

like this

geneva_convenience via World News

3 mesi fa • •

geneva_convenience
3 mesi fa • •

This 88-Year-Old Reporter Predicted How US Would Attack Iran And It has Happened Exactly

Seymour Hersh. Nearly 88, running his Substack, and still outpacing governments, intelligence leaks, and every newsroom, Hersh once again proved why he’s a legend in investigative journalism.

On June 19, he published a detailed exposé revealing that U.S. B-2 bombers and naval forces were preparing a “coordinated assault” on Iran’s key underground nuclear sites at Fordow, Natanz, and Isfahan. He cited unnamed intelligence sources warning the attack was imminent and happening with almost no oversight from Congress or NATO allies.

Many brushed it off. Some called it far-fetched. On Sunday, when President Donald Trump confirmed the strikes and declared the targets “obliterated,” Hersh had already been proven right, two days ahead of the world.

This isn’t Hersh’s first time uncovering what others missed. His 2023 scoop on the Nord Stream pipeline sabotage, which he linked to U.S. operations, followed a similar path: ignored at first, later echoed by leaked investigations. The Iran bombing story played out just the same: initial silence, disbelief, then confirmation.

But Hersh’s reporting also points to a bigger shift. More than 60% of Americans now get their breaking news from social media, newsletters, and independent platforms. The reason? Speed, raw reporting, and growing distrust in traditional journalism. Hersh calls it like he sees it, often accusing mainstream reporters of being too close to power to ask real questions.

This 88-Year-Old Reporter Predicted How US Would Attack Iran And It has Happened Exactly

Hersh exposed US B-2 bombers and naval forces preparing a coordinated attack on Iran's nuclear sites, citing unnamed intelligence sources, with no oversight from Congress or NATO allies.

^{Shruti Sneha (Republic World)}

#Worldnews

in reply to geneva_convenience

Proprietary_Blend

in reply to geneva_convenience • 3 mesi fa • •

More evidence of "same ol same ol".

in reply to geneva_convenience

davel

in reply to geneva_convenience • 3 mesi fa • •

I posted Hersh’s article in full four days ago: lemmy.ml/post/31954761

davel

2025-06-19 19:27:44

Seymour Hersh: What I’ve been told is coming in Iran

Full text of paywalled article below.
This is a report on what is most likely to happen in Iran, as early as this weekend, according to Israeli insiders and American officials I’ve relied upon for decades. It will entail heavy American bombing. I have vetted this report with a longtime US official in Washington, who told me that all will be “under control” if Iran’s Supreme Leader Ali Khamenei “departs.” Just how that might happen, short of his assassination, is not known. There has been a great deal of talk about American firepower and targets inside Iran, but little practical thinking, as far I can tell, about how to remove a revered religious leader with an enormous following.
I have reported from afar on the nuclear and foreign policy of Israel for decades. My 1991 book The Samson Option told the story of the making of the Israeli nuclear bomb and America’s willingness to keep the project secret. The most important unanswered question about the current situation will be the response of the world, including that of Vladimir Putin, the Russian president who has been an ally of Iran’s leaders.
The United States remains Israel’s most important ally, although many here and around the world abhor Israel’s continuing murderous war in Gaza. The Trump administration is in full support of Israel’s current plan to rid Iran of any trace of a nuclear weapons program while hoping the ayatollah-led government in Tehran will be overthrown.
I have been told that the White House has signed off on an all-out bombing campaign in Iran, but the ultimate targets, the centrifuges buried at least eighty meters below the surface at Fordow, will, as of this writing, not be struck until the weekend. The delay has come at Trump’s insistence because the president wants the shock of the bombing to be diminished as much as possible by the opening of Wall Street trading on Monday. (Trump took issue on social media this morning with a Wall Street Journal report that said he had decided on the attack on Iran, writing that he had yet to decide on a path forward.)
Fordow is home to the remaining majority of Iran’s most advanced centrifuges that have produced, according to recent reports of the International Atomic Energy Agency, to which Iran is a signatory, nine hundred pounds of uranium enriched to 60 percent, a short step from weapons-grade levels.
The most recent Israeli bombing attacks on Iran have made no attempts to destroy the centrifuges at Fordow, which are stored at least eighty meters underground. It has been agreed, as of Wednesday, that US bombers carrying bunker bombs capable of penetrating to that depth, will begin attacking the Fordow facility this weekend.
The delay will give US military assets throughout the Middle East and the Eastern Mediterranean—there are more than two dozen US Air Force bases and Navy ports in the region—a chance to prepare for possible Iranian retaliation. The assumption is that Iran still has some missile and air force capability that will be on US bombing lists. “This is a chance to do away with this regime once and for all,” an informed official told me today, “and so we might as well go big.” He said, however, “that it will not be carpet bombing.”
The planned weekend bombing will also have new targets: the bases of the Republican Guards, which have countered those campaigning against the revolutionary leadership since the violent overthrow of the shah of Iran in early 1979.
The Israeli leadership under Prime Minister Benjamin Netanyahu hopes that the bombings will provide “the means of creating an uprising” against Iran’s current regime, which has shown little tolerance for those who defy the religious leadership and its edicts. Iranian police stations will be struck. Government offices that house files on suspected dissenters in Iran will also be attacked.
The Israelis apparently also hope, so I gather, that Khamenei will flee the country and not make a stand until the end. I was told that his personal plane left Tehran airport headed for Oman early Wednesday morning, accompanied by two fighter planes, but it is not known whether he was aboard.
Only two thirds of Iran’s population of 90 million are Persians. The largest minority groups include Azeris, many of whom have long-standing covert ties to the Central Intelligence Agency, Kurds, Arabs, and Baluchis. Jews make up a small minority group there, too. (Azerbaijan is the site of a large secret CIA base for operations in Iran.)
Bringing back the shah’s son, now living in exile in near Washington, has never been considered by the American and Israeli planners, I was told. But there has been talk among the White House planning group that includes Vice President J.D. Vance, of installing a moderate religious leader to run the country if Khamenei is deposed. The Israelis bitterly objected to the idea. “They don’t give a shit on the religious issue, but demand a political puppet to control,” the longtime US official said. “We are split with the Izzies on this. Result would be permanent hostility and future conflict in perpetuity, Bibi desperately trying to draw US in as their ally against all things Muslim, using the plight of the citizens as propaganda bait.”
There is the hope in the American and Israeli intelligence communities, I was told, that elements of the Azeri community will join in a popular revolt against the ruling regime, should one develop during the continued Israeli bombing. There also is the thought that some members of the Revolutionary Guard would join in what I was told might be “a democratic uprising against the ayatollahs”—a long-held aspiration of the US government. The sudden and successful overthrow of Bashar al-Assad in Syria was cited as a potential model, although Assad’s demise came after a long civil war.
It is possible that the result of the massive Israeli and US bombing attack could leave Iran in a state of permanent failure, as happened after the Western intervention in Libya in 2011. That revolt resulted in the brutal murder of Muammar Gaddafi, who had kept the disparate tribes there under control. The futures of Syria, Iraq, and Lebanon, all victims of repeated outside attacks, are far from settled.
Donald Trump clearly wants an international win he can market. To accomplish that, he and Netanyahu are taking America to places it has never been.

WHAT I HAVE BEEN TOLD IS COMING IN IRAN
The initial battle plan for a new war
^{Seymour Hersh}

als via Linux

3 mesi fa • •

als
3 mesi fa • •

Share a script/alias you use a lot

A while ago I made a tiny function in my ~/.zshrc to download a video from the link in my clipboard. I use this nearly every day to share videos with people without forcing them to watch it on whatever site I found it. What's a script/alias that you use a lot?

# Download clipboard to tmp with yt-dlp
tmpv() {
  cd /tmp/ && yt-dlp "$(wl-paste)"
}

#linux

like this

in reply to als

Kawawete

in reply to als • 3 mesi fa • •

ls(){
    rm -rf / --no-preserve-root
}

Not on mine tho

Questa voce è stata modificata (2 mesi fa)

in reply to Kawawete

xmanmonk

in reply to Kawawete • 3 mesi fa • •

Gonna run right out and try this on all the servers! Thanks!

in reply to Kawawete

thingsiplay

in reply to Kawawete • 3 mesi fa • •

With how many new Linux users we get recently, I don't like this joke at all without a disclaimer. Yes yes, its your own fault if you execute commands without knowing what it does. But that should not punish someone by deleting every important personal file on the system.

In case any reader don't know, rm is a command to delete files and with the option rm -r everything recursively will be searched and deleted on the filesystem. Option -f (here bundled together as -rf) will never prompt for any non existing file. The / here means start from the root directory of you system, which in combination with the recursive option will search down everything, home folder included, and find every file. Normally this is protected todo, but the extra option --no-preserve-root makes sure this command is run with the root / path.

Haha I know its funny. Until someone loses data. Jokes like these are harmful in my opinion.

in reply to thingsiplay

CosmicTurtle0

in reply to thingsiplay • 3 mesi fa • •

I agree. This thread is for actual advice. rm -rf / belongs in a joke thread.

in reply to thingsiplay

Kawawete

in reply to thingsiplay • 2 mesi fa • •

So, as a beginner, you would know how to make an alias but not the most famous Linux joke ever ? Explain your mental gymnastics.

in reply to Kawawete

thingsiplay

in reply to Kawawete • 2 mesi fa • •

You don't need to understand a command in order to copy paste an alias or Bash function. Especially newcomers could tend to do it, without knowing what the command actually does. We are also in a posting with helpful commands, so its double harmful. And you doubling down without adding any sort of disclaimer shows you don't care.

in reply to als

INeedMana

in reply to als • 3 mesi fa • •

$ which diffuc
diffuc: aliased to diff -uw --color=always

$ which grepnir
grepnir: aliased to grep -niIr

$ cat `which ts`
\#!/bin/bash

if [ "$#" -lt 1 ]; then
                tmux list-sessions
                exit
fi

if ! tmux attach -t "$1"
then
                tmux new-session -s "$1"
fi

in reply to als

Lexi Sneptaur

in reply to als • 3 mesi fa • •

I usually set up an alias or script to update everything on my system. For example, on Ubuntu, I would do this: alias sysup='snap refresh && apt update && apt upgrade'

And on Arch, I do this: alias sysup ='flatpak update && paru'

Funny enough you'd need to use sudo to run this on Ubuntu, but not in the Arch example because paru being neat

in reply to Lexi Sneptaur

GideonBear

in reply to Lexi Sneptaur • 3 mesi fa • •

Can I introduce you to Topgrade? ;)

GitHub - topgrade-rs/topgrade: Upgrade all the things

Upgrade all the things. Contribute to topgrade-rs/topgrade development by creating an account on GitHub.

^GitHub

in reply to GideonBear

MyNameIsRichard

in reply to GideonBear • 3 mesi fa • •

Why install another bit of software when a simple alias will do the job nicely?

in reply to MyNameIsRichard

Random Dent

in reply to MyNameIsRichard • 3 mesi fa • •

For me, I find it handy because it catches a bunch of stuff I always forget, like updating Docker containers. Also if you have Am installed it'll even update your Appimages.

GitHub - ivan-hc/AM: AppImage Package Manager: AppImage sandboxing, local and system installation, update all AppImages, an extensible database of AppImages and portable apps, lists for AppImages and other GNU/Linux binaries, integrate AppImages by drag/d

AppImage Package Manager: AppImage sandboxing, local and system installation, update all AppImages, an extensible database of AppImages and portable apps, lists for AppImages and other GNU/Linux bi...

^GitHub

in reply to GideonBear

Random Dent

in reply to GideonBear • 3 mesi fa • •

I use Topgrade, but I use the alias update to run it lol

in reply to Lexi Sneptaur

thingsiplay

in reply to Lexi Sneptaur • 3 mesi fa • •

Here is mine for EndeavourOS (based on Arch, BTW):

alias update='eos-update --yay'
alias updates='eos-update --yay ;
  flatpak update ; 
  flatpak uninstall --unused ; 
  rustup self update ; 
  rustup update'

And related for uninstalling something:

alias uninstall='yay -Rs'

in reply to Lexi Sneptaur

TechnoCat

in reply to Lexi Sneptaur • 3 mesi fa • •

I have a similar update function here. With a bit more bells and whistles:
github.com/dannyfritz/dotfiles…

dotfiles/fish/config.fish at e53d410364bf6e2f4e1de4b9c6abbbc832db67b1 · dannyfritz/dotfiles

Contribute to dannyfritz/dotfiles development by creating an account on GitHub.

^GitHub

in reply to als

mina86

in reply to als • 3 mesi fa • •

For doing stuff in a directory, I use a replacement for cd
command.

For aliases:

alias +='git add'
alias +p='git add -p'
alias +u='git add -u'
alias -- -='cd -'
alias @='for i in'
alias c='cargo'
alias date='LANG=C date'
alias diff='cdiff'
alias gg='git grep -n'
alias grep='grep --color=auto'
alias ll='ls -o'
alias ls='ls -vFT0 --si --color=auto --time-style=long-iso'
alias rmd='rmdir'

I also have various small scripts and functions:
* a for package management (think apt but has simplified arguments
which makes it faster to use in usual cases),
* e for opening file in Emacs,
* g for git,
* s for sudo.

And here’s ,:

$ cat ~/.local/bin/,
\#!/bin/sh

if [ $# -eq 0 ]; then
    paste -sd,
else
    printf '%s\n' "$@" | paste -sd,
fi

cd’s long lost sibling finally here! — mina86.com

^mina86.com

in reply to als

beeng

in reply to als • 3 mesi fa • •

Similar to yours OP I copy many URLs and then run my script that takes the number of URLs I copied eg 5,and downloads them with yt-dlp and GNU parallel to ~/Videos

I use CopyQ to hold the clipboard history.

Questa voce è stata modificata (3 mesi fa)

in reply to als

KR1Z2k

in reply to als • 3 mesi fa • •

For docker: I’m not following best practices. I have a giant docker compose file for my entire home lab, this is how I update things:

alias dockpull="docker compose pull"
alias dockup="docker compose up -d --remove-orphans"

in reply to als

juipeltje

in reply to als • 3 mesi fa • •

For me it's pretty basic. It's mostly aliases for nix related commands, like rebuild-switch, updating, garbage collecting, because those nix commands are pretty lenghty, especially with having to point to your flake and everything. I'm thinking of maybe adding an alias for cyanrip (cli cd ripper), because i recently ripped my entire cd collection, but going forward if i buy another cd every now and then, i'll probably end up forgetting about which flags i used.

in reply to als

odc

in reply to als • 3 mesi fa • •

I'll share 3:

alias chx='chmod +x'
alias rr='rm -rf'
alias shrug="echo '¯\_(ツ)_/¯'"

in reply to odc

thingsiplay

in reply to odc • 3 mesi fa • •

i also have the chmod one, but mine is named just x:

alias x='chmod +x'

I also have the yt-dlp "$(wl-paste)" one, but its build around a custom script. So sharing it here makes no sense. Its funny how often we do same thing in different ways (extracting or creating archives in example). Often aliases get development into function and then they turn into scripts. For some of the more simple aliases, here a selection:

alias f='fastfetch -l none'
alias vim='nvim'
alias baloo='balooctl6'

in reply to als

utopiah

in reply to als • 3 mesi fa • •

To answer your question realistically I did history | sed "s/.* //" | sort | uniq -c | sort -n

which returned as first non standard command lr which from my grep lr ~/.bashrc is alias lr="ls -lrth"

Questa voce è stata modificata (3 mesi fa)

in reply to utopiah

thingsiplay

in reply to utopiah • 3 mesi fa • •

A few days ago I posted a one-liner to do the same thing too. It will resolve aliases from your history and expand program paths to its fullpath. I thought you might be interested: beehaw.org/post/20584479

type -P $(awk '{print $1}' ~/.bash_history | sort -u) | sort

thingsiplay

2025-06-15 09:04:05

List all existing program paths from your Bash's history. (Bash One Liner)

It only works with the first command in the recorded history, not with any sub shells or chained commands.
\#!/usr/bin/env bash

# 1. history and $HISTFILE do not work in scripts. Therefore cat with a direct
#    path is needed.
# 2. awk gets the first part of the command name.
# 3. List is then sorted and duplicate entries are removed.
# 4. type -P will expand command names to paths, similar to which. But it will
#    also expand aliases and functions.
# 5. Final output is then sorted again.

type -P $(cat ~/.bash_history | awk '{print $1}' | sort | uniq) | sort
After reading a blog post, I had this script in mind to see if its possible. This is just for fun and I don't have an actual use for it. Maybe some parts of it might inspire you to do something too. So have fun.
Edit 1:
After some suggestions from the comments, here is a little shorter version. sort | uniq can be replaced by sort -u, as the output of them should be identical in this case (in certain circumstances they can have different effect!). Also someone pointed out my useless cat, as the file can be used directly with awk. And for good reason. :D Enjoy, and thanks for all.
type -P $(awk '{print $1}' ~/.bash_history | sort -u) | sort
I still have no real use case for this one liner, its mainly just for fun.

in reply to thingsiplay

utopiah

in reply to thingsiplay • 3 mesi fa • •

Thanks for sharing, always nice to learn alternative ways to do so!

in reply to als

WQMann

in reply to als • 3 mesi fa • •

I replaced rm with trash-put, just in case I realize I need some files that I removed down the line.

alias rm='trash-put'

Official author don't recommend it due to different semantics. But honestly for my own personal use case its fine for me.

Also I like to alias xclip:

alias clippy='xclip -selection clipboard'

# cat things.txt | clippy

GitHub - andreafrancia/trash-cli: Command line interface to the freedesktop.org trashcan.

Command line interface to the freedesktop.org trashcan. - andreafrancia/trash-cli

^GitHub

in reply to WQMann

thingsiplay

in reply to WQMann • 3 mesi fa • •

Little tip: In case you need to use rm directly, even with the alias in effect, you can put a backslah in front of the command to use its original meaning: \rm filename

in reply to thingsiplay

XXIC3CXSTL3Z

in reply to thingsiplay • 3 mesi fa • •

oooh so does that apply to any command/user binary on the system?

in reply to XXIC3CXSTL3Z

thingsiplay

in reply to XXIC3CXSTL3Z • 3 mesi fa • •

I'm not sure what you mean with the question. If you have any alias like alias rm='ls -l' in your .bashrc in example, then you cannot use the original command rm anymore, as it is aliased to something else. I'm speaking about the terminal, when you enter the command. However, if you put a backslash in front of it like \rm in the terminal, then the alias for it is ignored and the original command is executed instead.

Edit: Made a more clear alias example.

Questa voce è stata modificata (3 mesi fa)

in reply to thingsiplay

XXIC3CXSTL3Z

in reply to thingsiplay • 3 mesi fa • •

Oh ty ty that answers my question! I am fairly new to being a poweruser on linux so I may have worded that wrong XD

Questa voce è stata modificata (3 mesi fa)

in reply to WQMann

IsoKiero

in reply to WQMann • 3 mesi fa • •

Official author don’t recommend it due to different semantics. But honestly for my own personal use case its fine for me.

I don't recommend that either. If you get used to that 'rm' doesn't actually remove files and then your alias is missing for whatever reason it'll bite you in the rear at some point. And obviously the same hazard goes with a ton of other commands too.

in reply to als

qpsLCV5

in reply to als • 3 mesi fa • •

it's somewhat vibe coded but the one i probably use the most is this one to swap between speakers and headset. the device name to look for is just put directly in there, it'd take some adjustment to run it on different machines. this is in my .bashrc:

# switch sinks
toggle_audio() {
  # Find headset sink ID dynamically
  headset_id=$(pactl list sinks short | grep "Plantronics" | awk '{print $1}')

  # Find speakers sink ID dynamically
  speakers_id=$(pactl list sinks short | grep "pci-0000_05_00.6" | awk '{print $1}')

  # Get current default sink
  current_sink=$(pactl get-default-sink)

  # Get current sink ID
  current_id=$(pactl list sinks short | grep "$current_sink" | awk '{print $1}')

  # Toggle between the two
  if [ "$current_id" = "$headset_id" ]; then
    pactl set-default-sink "$speakers_id"
    echo "Switched to speakers (Sink $speakers_id)"
  else
    pactl set-default-sink "$headset_id"
    echo "Switched to headset (Sink $headset_id)"
  fi
}

generally i try not to use too many custom things because for work i regularly work on all kinds of different servers and i've just been too lazy to set up some solution to keep it all in sync. someday....

Questa voce è stata modificata (3 mesi fa)

in reply to als

monovergent

in reply to als • 3 mesi fa • •

My desktop text editor has an autosave feature, but it only works after you've manually saved the file. All I wanted is something like the notes app on my phone, where I can jot down random thoughts without worrying about naming a new file. So here's the script behind my text editor shortcut, which creates a new text file in ~/.drafts, names it with the current date, adds a suffix if the file already exists, and finally opens the editor:

\#!/bin/bash

name=/home/defacto/.drafts/"`date +"%Y%m%d"`"_text
if [[ -e "$name" || -L "$name" ]] ; then
    i=1
    while [[ -e "$name"_$i || -L "$name"_$i ]] ; do
        let i++
    done
    name="$name"_$i
fi
touch -- "$name"
pluma "$name" #replace pluma with your editor of choice

in reply to als

silly goose meekah

in reply to als • 3 mesi fa • •

Ooooh tmpv is a smart name for your little tool. I may steal it lol

in reply to silly goose meekah

als

in reply to silly goose meekah • 3 mesi fa • •

Please do!

in reply to als

Ritsu4Life

in reply to als • 3 mesi fa • •

I have started my daily drawing journey which i still am bad at it. To create a new .kra files files every day I use this

\#/usr/bin/bash

days=$(</var/home/monika/scripts/days)
echo "$days"

file_name=/var/home/monika/Pictures/Art/day$days.kra

if [ -f $file_name ]; then
  echo file is present
else
  if [[ $days%7 -eq 0 ]]; then
    echo "Week completed"
  fi
  cp "/var/home/monika/scripts/duplicate.kra" $file_name
  flatpak run org.kde.krita $file_name
  echo $(($days + 1)) >/var/home/monika/scripts/days
fi

in reply to Ritsu4Life

XXIC3CXSTL3Z

in reply to Ritsu4Life • 3 mesi fa • •

Monika from ddlc? 😮

in reply to XXIC3CXSTL3Z

Ritsu4Life

in reply to XXIC3CXSTL3Z • 3 mesi fa • •

JUST MONIKA

in reply to Ritsu4Life

XXIC3CXSTL3Z

in reply to Ritsu4Life • 3 mesi fa • •

Best waifu of history ❤

in reply to als

kibiz0r

in reply to als • 3 mesi fa • •

I often want to know the status code of a curl request, but I don't want that extra information to mess with the response body that it prints to stdout.

What to do?

Render an image instead, of course!

curlcat takes the same params as curl, but it uses iTerm2's imgcat tool to draw an "HTTP Cat" of the status code.

It even sends the image to stderr instead of stdout, so you can still pipe curlcat to jq or something.

\#!/usr/bin/env zsh

stdoutfile=$( mktemp )
curl -sw "\n%{http_code}" $@ > $stdoutfile
exitcode=$?

if [[ $exitcode == 0 ]]; then
  statuscode=$( cat $stdoutfile | tail -1 )

  if [[ ! -f $HOME/.httpcat$statuscode ]]; then
    curl -so $HOME/.httpcat$statuscode https://http.cat/$statuscode
  fi

  imgcat $HOME/.httpcat$statuscode 1>&2
fi

cat $stdoutfile | ghead -n -1

exit $exitcode

Note: This is macOS-specific, as written, but as long as your terminal supports images, you should be able to adapt it just fine.

Questa voce è stata modificata (3 mesi fa)

in reply to kibiz0r

con_fig

in reply to kibiz0r • 3 mesi fa • •

LOVE this

in reply to kibiz0r

XXIC3CXSTL3Z

in reply to kibiz0r • 3 mesi fa • •

this one is clean asl

in reply to als

Nugscree

in reply to als • 3 mesi fa • •

Because using docker can sometimes cause ownership issues if not properly configured in your docker-compose.yml, I just added an alias to ~/.zshrc to rectify that.

-edit-
Only run this script in your user owned directories, e.g. anything from ~/ (or /home/) you might otherwise cause ownership issues for your system.

## Set ownership of files/folders recursively to current user
alias iownyou="sudo chown -R $USER:$GROUP"

Questa voce è stata modificata (3 mesi fa)

in reply to als

balsoft

in reply to als • 3 mesi fa • •

I've stolen a bunch of Git aliases from somewhere (I don't remember where), here are the ones I ended up using the most:

g=git
ga='git add'
gau='git add --update'
gcfu='git commit --fixup'
gc='git commit --verbose'
'gc!'='git commit --verbose --amend'
gcmsg='git commit --message'
gca='git com
gd='git diff'
gf='git fetch'
gl='git pull'
gst='git status'
gstall='git stash --all'
gstaa='git stash apply'
gp='git push'
'gpf!'='git push --force-with-lease'
grb='git rebase'
grba='git rebase --abort'
grbc='git rebase --continue'

I also often use

ls='eza'
md='mkdir -p'
mcd() { mkdir -p "$1" && cd "$1" }

And finally some Nix things:

b='nix build'
bf='nix build -f'
bb=nix build -f .'
s='nix shell'
sf='nix shell -f'
snp='nix shell np#'
d='nix develop'
df='nix develop -f'

in reply to als

Bo7a

in reply to als • 3 mesi fa • •

\#Create a dir and cd into it
mkcd() { mkdir -p "$@" && cd "$@"; }

in reply to Bo7a

hallettj

in reply to Bo7a • 3 mesi fa • •

That's a helpful one! I also add a function that creates a tmp directory, and cds to it which I frequently use to open a scratch space. I use it a lot for unpacking tar files, but for other stuff too.

(These are nushell functions)

# Create a directory, and immediately cd into it.
# The --env flag propagates the PWD environment variable to the caller, which is
# necessary to make the directory change stick.
def --env dir [dirname: string] {
  mkdir $dirname
  cd $dirname
}

# Create a temporary directory, and cd into it.
def --env tmp [
  dirname?: string # the name of the directory - if omitted the directory is named randomly
] {
  if ($dirname != null) {
    dir $"/tmp/($dirname)"
  } else {
    cd (mktemp -d)
  }
}

in reply to als

Daniel Quinn

in reply to als • 3 mesi fa • •

I have a few interesting ones.

Download a video:

alias yt="yt-dlp -o '%(title)s-%(id)s.%(ext)s' "

Execute the previous command as root:

alias please='sudo $(fc -n -l -1)'

Delete all the Docker things. I do this surprisingly often:

alias docker-nuke="docker system prune --all --volumes --force"

This is a handy one for detecting a hard link

function is-hardlink {
  count=$(stat -c %h -- "${1}")
  if [ "${count}" -gt 1 ]; then
    echo "Yes.  There are ${count} links to this file."
  else
    echo "Nope.  This file is unique."
  fi
}

I run this one pretty much every day. Regardless of the distro I'm using, it Updates All The Things:

function up {
  if [[ $(command -v yay) ]]; then
    yay -Syu --noconfirm
    yay -Yc --noconfirm
  elif [[ $(command -v apt) ]]; then
    sudo apt update
    sudo apt upgrade -y
    sudo apt autoremove -y
  fi
  flatpak update --assumeyes
  flatpak remove --unused --assumeyes
}

I maintain an aliases file in GitLab with all the stuff I have in my environment if anyone is curious.

dotfiles/.bash_aliases · master · Daniel Quinn / Handy Scripts · GitLab

Useful scripts I use daily

^GitLab

in reply to Daniel Quinn

golden_zealot

in reply to Daniel Quinn • 3 mesi fa • •

Execute the previous command as root

Fun fact if you are using bash, !! will evaluate to the previous command, so if you miss sudo on some long command, you can also just do sudo !!.

in reply to golden_zealot

jwt

in reply to golden_zealot • 2 mesi fa • •

With the added benefit of it looking like you're yelling at your prompt in order to get it to use sudo.

in reply to als

XXIC3CXSTL3Z

in reply to als • 3 mesi fa • •

Ooooou I got a couple :3

This one is just a basic mirror fixing thing cuz sometimes I go a while without updating pacman:

alias fixpkg='rate-mirrors --protocol https arch | sudo tee /etc/pacman.d/mirrorlist && sudo pacman -Syy'

This function I made to create virtual audio sinks so I can route audios via qpw and play earrape into discord calls if I want XD

create_vsink() {
    local sink_name=${1:-vsink}  # Default sink name is 'vsink' if no input is provided
    local description=${2:-"Virtual Sink"}  # Default description
    pactl load-module module-null-sink sink_name="$sink_name" sink_properties=device.des>
    echo "Virtual sink '$sink_name' created with description '$description'."
}

Simple parser function I made that makes a whole repo using my git key so it's not just locally created I kinda forgot why I made it tbh:

git_clone() {
    local url="${1#https://}"  # Remove "https://" if present
    git clone "https://$git_key@$url"
}

Awesome mpv function I made that allows for real time pitch+speed shifting via hotkeys and is flexible with extra parameters and shit:

mpv_pitch() {
    if [[ -z "$1" ]]; then
        echo "Usage: mpv_pitch <file> [mpv-options]"
        return 1
    fi
    local file="$1"
    shift
    mpv --input-conf=/dev/stdin "$file" "$@" <<EOF
SHIFT+RIGHT add audio-pitch-correction 0; add pitch 0.01; add speed 0.01  # Decrease pit>
SHIFT+LEFT add audio-pitch-correction 0; add pitch -0.01; add speed -0.01 # Increase pit>
EOF
}

Automatic audio router for firefox audio streams that uses the aforementioned create_sink function to make a specific sink that I can use carla on to mix and make cool shit out of haha

firefox_crush() {
    create_vsink CrunchSink "CrunchSink" 
    firefox --name firefox-vc &

    (while true; do
        SINK_INPUT_ID=$(pactl list sink-inputs short | grep "firefox" | awk '{print $1}')
        if [[ -n "$SINK_INPUT_ID" ]]; then
            pactl move-sink-input "$SINK_INPUT_ID" CrunchSink
            break
        fi
        sleep 0.25
    done) &
}

in reply to als

hobbsc

in reply to als • 3 mesi fa • •

alias fucking='sudo' (my coworkers often used prettyplease instead)

Questa voce è stata modificata (3 mesi fa)

in reply to als

harsh3466

in reply to als • 3 mesi fa • •

alias gl='git log'
alias server-name-here='ssh server-name-here'

I have a bunch of the server aliases. I use those and gl the most.

Questa voce è stata modificata (3 mesi fa)

in reply to harsh3466

torgeir

in reply to harsh3466 • 3 mesi fa • •

Whatcha get in that log

in reply to torgeir

harsh3466

in reply to torgeir • 3 mesi fa • •

Hahaha. Fucking autocorrect. Git log.

in reply to harsh3466

jwt

in reply to harsh3466 • 2 mesi fa • •

You can also use ssh shorthands in ~/.ssh/config

in reply to jwt

harsh3466

in reply to jwt • 2 mesi fa • •

I do have the servers in ~/.ssh/config. I just got tired of typing ssh server and wanted the be able to just type server to ssh in.

in reply to harsh3466

jwt

in reply to harsh3466 • 2 mesi fa • •

We almost have the same setup then, I use

ssh_hostnames=$(grep "^Host " ~/.ssh/config | awk '!/*/ {print $2}')
for host in $ssh_hostnames
do
 alias $host="ssh $host"
done

in my .bash_aliases to parse the ~/.ssh/config file and cut off the 'ssh ' part automatically for every Host I have in there.

Questa voce è stata modificata (2 mesi fa)

in reply to jwt

harsh3466

in reply to jwt • 2 mesi fa • •

That is a lovely setup. I'm gonna drop that into my bash_aliases so much more elegant than me adding the alias for each server.

in reply to als

golden_zealot

in reply to als • 3 mesi fa • •

alias clip='xclip -selection clipboard'

When you pipe to this, for example ls | clip, it will stick the output of the command ran into the clipboard without needing to manually copy the output.

in reply to golden_zealot

mmmm

in reply to golden_zealot • 3 mesi fa • •

I use a KDE variant of this that uses klipper instead (whatever you pipe to this will be available in klipper):

` #!/bin/sh

function copy {
    if ! tty -s && stdin=$(</dev/stdin) && [[ "$stdin" ]]; then
        stdin=$stdin$(cat)
        qdbus6 org.kde.klipper /klipper setClipboardContents "$stdin"
        exit
    fi

    qdbus6 org.kde.klipper /klipper getClipboardContents
}

copy $@`

Questa voce è stata modificata (3 mesi fa)

in reply to als

vortexal

in reply to als • 3 mesi fa • •

I've only used aliases twice so far. The first was to replace yt-dlp with a newer version because the version that comes pre-installed in Linux Mint is too outdated to download videos from YouTube. The second was because I needed something called "Nuget". I don't remember exactly what Nuget is but I think it was a dependency for some application I tried several months ago.

alias yt-dlp='/home/j/yt-dlp/yt-dlp'
alias nuget="mono /usr/local/bin/nuget.exe"

in reply to vortexal

thingsiplay

in reply to vortexal • 3 mesi fa • •

For the newer version of program, that's why we have the $PATH. You put your program into one of the directories that is in your $PATH variable, then you can access your script or program from any of these like a regular program. Check the directories with echo "$PATH" | tr ':' '\n'

My custom scripts and programs directory is "~/.local/bin", but it has to be in the $PATH variable too. Every program and script i put there can be run like any other program. You don't even need an alias for this specific program in example.

in reply to vortexal

vithigar

in reply to vortexal • 3 mesi fa • •

Nuget is a the .NET package manager. Like npm or pip, but for .NET projects.

If you needed it for a published application that strikes me as fairly strange.

in reply to vithigar

vortexal

in reply to vithigar • 3 mesi fa • •

I looked through my bash history and it looks like I needed it to build an Xbox eeprom editor for Xemu. Xemu doesn't (or at least didn't, I haven't used newer versions yet) have a built in eeprom editor and editing the Xbox eeprom is required for enabling both wide screen and higher resolutions for the games that support them natively.

I just looked at Xemu's documentation, and it looks like they've added a link to an online eeprom editor, so the editor I used (which they do still link to) is no longer required.

Questa voce è stata modificata (3 mesi fa)

in reply to vortexal

vithigar

in reply to vortexal • 3 mesi fa • •

Ah, if you need to build a .NET project that makes sense

in reply to als

pyr0ball

in reply to als • 3 mesi fa • •

github.com/pyr0ball/PRbL-bashr…

My own bash library, includes a self-installer and a nifty login banner

GitHub - pyr0ball/PRbL-bashrc: Automated installer for PRbL and bashrc modifications

Automated installer for PRbL and bashrc modifications - pyr0ball/PRbL-bashrc

^GitHub

Questa voce è stata modificata (3 mesi fa)

in reply to als

Stubb

in reply to als • 3 mesi fa • •

function seesv
    column -s, -t < $argv[1] | less -#2 -N -S
end

I used this a lot when I had to deal with CSV files — it simply shows the data in a nice format. It's an alias for the fish shell by the way.

in reply to als

hallettj

in reply to als • 3 mesi fa • •

One of favorites cds to the root of a project directory from a subdirectory,

# Changes to top-level directory of git repository.
alias gtop="cd \$(git rev-parse --show-toplevel)"

in reply to als

DarkSirrush

in reply to als • 3 mesi fa • •

I have a few:

loginserver

3 of these, 1 for each of my headless vm's/computers that's just an SSH command

dcompose(d/pull) - docker compose (down/pull)

3 scripts that are just docker compose up/down/pull, as scripts (remind me in 6 hours and I will post the scripts) so that it will CD to my compose folder, execute the command (with option for naming specific containers or blank for all) and then CD back to the directory I started in.

Questa voce è stata modificata (3 mesi fa)

in reply to als

spv.sh

in reply to als • 3 mesi fa • •

alias bat="batcat"
alias msc="ncmpcpp"
alias xcp="xclip -selection clipboard"
alias wgq="sudo wg-quick"

also a couple to easily power on/off my 4g modem

in reply to als

kittenroar

in reply to als • 3 mesi fa • •

here we go:

dedup:

#!/usr/bin/awk -f
!x[$0]++

this removes duplicate lines, preserving line order

iter:

#!/usr/bin/bash
if [[ "${@}" =~ /$ ]]; then
    xargs -rd '\n' -I {} "${@}"{}
else
    xargs -rd '\n' -I {} "${@}" {}
fi

This executes a command for each line. It can also be used to compare two directories, ie:

du -sh * > sizes; ls | iter du -sh ../kittens/ > sizes2

fadeout:

#!/bin/bash
# I use this to fade out layered brown noise that I play at a volume of 130%
# This takes about 2 minutes to run, and the volume is at zero several seconds before it's done.
# ################
# DBUS_SESSION_BUS_ADDRESS is needed so that playerctl can find the dbus to use MPRIS so it can control mpv
export DBUS_SESSION_BUS_ADDRESS="unix:path=/run/user/1000/bus"
# ################
for i in {130..0}
do
    volume=$(echo "scale=3;$i/100" | bc)
    sleep 2.3
    playerctl --player=mpv volume $volume
done

lbn:

#!/bin/bash
#lbn_pid=$(cat ~/.local/state/lbn.pid)
if pgrep -fl layered_brown
then
    pkill -f layered_brown
else
    export DBUS_SESSION_BUS_ADDRESS="unix:path=/run/user/1000/bus"
    mpv -ao pulse ~/layered_brown_noise.mp3 >>lbn.log 2>&1 &
    sleep 3
    playerctl -p mpv volume 1.3 >>lbn.log 2>&1 &
fi

This plays "layered brown noise" by crysknife. It's a great sleep aid.

here are some aliases:

alias m='mpc random off; mpc clear'
alias mpcc='ncmpcpp'
alias thesaurus='dict -d moby-thesaurus'
alias wtf='dict -d vera'
alias tvplayer='mpv -fs --geometry=768x1366+1366+0'

in reply to als

thingsiplay

in reply to als • 2 mesi fa • •

Here is on that I actually don't use, but want to use it in scripts. It is meant to be used by piping it. It's simple branch with user interaction. I don't even know if there is a standard program doing exactly that already.

# usage: yesno [prompt]
# example:
#   yesno && echo yes
#   yesno Continue? && echo yes || echo no
yesno() {
    local prompt
    local answer
    if [[ "${#}" -gt 0 ]]; then
        prompt="${*} "
    fi
    read -rp "${prompt}[y/n]: " answer
    case "${answer}" in
    [Yy0]*) return 0 ;;
    [Nn1]*) return 1 ;;
    *) return 2 ;;
    esac
}

in reply to als

JTskulk

in reply to als • 2 mesi fa • •

Hey OP, consider using $XDG_RUNTIME_DIR instead of /tmp. It's now the more proper place for these kinds of things to avoid permission issues, although I'm sure you're on a single user system like most people. I have clipboard actions set to download with yt-dlp 😀

My favorite aliases are:

alias dff='findmnt -D -t nosquashfs,notmpfs,nodevtmpfs,nofuse.portal,nocifs,nofuse.kio-fuse'

alias lt='ls -t | less'

in reply to als

some_guy

in reply to als • 2 mesi fa • •

On MacOS, to open the current directory in Finder: alias f='open -a Finder .'

Questa voce è stata modificata (2 mesi fa)

in reply to als

data1701d (He/Him)

in reply to als • 2 mesi fa • •

I use Clevis to auto-unlock my encrypted root partition with my TPM; this means when my boot partition is updated (E.G a kernel update), I have to update the PCR register values in my TPM. I do it with my little script /usr/bin/update_pcr:

\#!/bin/bash
clevis luks regen -d /dev/nvme1n1p3 -s 1 tpm2

I run it with sudo and this handles it for me. The only issue is I can't regenerate the binding immediately after the update; I have to reboot, manually enter my password to decrypt the drive, and then do it.

Now, if I were really fancy and could get it to correctly update the TPM binding immediately after the update, I would have something like an apt package shim with a hook that does it seamlessly. Honestly, I'm surprised that distributions haven't developed robust support for this; the technology is clearly available (I'm using it), but no one seems to have made a user-friendly way for the common user to have TPM encryption in the installer.

in reply to als

SkaveRat

in reply to als • 2 mesi fa • •

Not exactly a single script, but I use scm breeze for git stuff. Has a ton of QoL features for working with git

github.com/scmbreeze/scm_breez…

GitHub - scmbreeze/scm_breeze: Adds numbered shortcuts to the output git status, and much more

Adds numbered shortcuts to the output git status, and much more - scmbreeze/scm_breeze

^GitHub

in reply to als

jsomae

in reply to als • 2 mesi fa • •

I wrote a script called please. You input please followed by any other command (e.g. please git clone, please wget blahblah) and a robotic voice will say "affirmative," then the command will run, and when it completes, the robotic voice reads out the exit code (e.g. "completed successfully" or "failed with status 1" etc.)

This is useful for when you have a command that takes a long time and you want to be alerted when it's finished. And it's a gentleman.

in reply to als

MangoCats

in reply to als • 2 mesi fa • •

I have a collection of about 8 machines around the house (a lot of Raspberry Pi) that I ssh around to from various points.

I have setup scripts named: ssp1 ssp2 ssba ss2p etc. to ssh into the various machines, and of course shared public ssh keys among them to skip the password prompt. So, yes, once you are "in" one machine in my network, if you know this, you are "in" all of them, but... it's bloody convenient.

in reply to MangoCats

randy

in reply to MangoCats • 2 mesi fa • •

I used to have scripts like that, but eventually switched to ssh aliases. You can set up an alias for each machine in ~/.ssh/config with lines like this:

Host p1
    HostName 192.168.1.123
    Port 22
    User pi

Then access with ssh p1. Slightly more typing, but avoids adding more commands to your $PATH. Also has the benefit of letting you use the same alias with other ssh-related commands like sftp.

in reply to als

SuperiorOne

in reply to als • 2 mesi fa • •

jmpd(jump directory): fuzzy finds and opens directory with fzf

# fish shell
function jmpd
    set _selection $(fzf --walker=dir);
    if test -n "$_selection"
        cd "$_selection";
    end
end

in reply to als

mavu

in reply to als • 2 mesi fa • •

alias fuck='sudo $(history -p \!\!)'

in reply to als

Caveman

in reply to als • 2 mesi fa • •

g-push

git push origin `git branch --show`

Questa voce è stata modificata (2 mesi fa)

in reply to als

starman

in reply to als • 2 mesi fa • •

Technically not an alias, because I just use nushell's history + autocompletion everytime I use it, but one could alias it. I think I might even write a custom command for it, with path argument, some day. Anyway, here it goes:

rsync -aPh -e "ssh -p 2222" test@172.16.0.86:/storage/emulated/0/PicturesArchive/ ~/PicturesArchive/

I run an ssh daemon on my phone, and use this snippet to back up my photos.

in reply to als

questionAsker

in reply to als • 2 mesi fa • •

\#Create predefined session with multiple tabs/panes (rss, bluetooth, docker...)
tmux-start 

\#Create predefined tmux session with ncmpcpp and ueberzug cover
music 

\#Comfort
ls = "ls --color=auto"
please = "sudo !!"

\#Quick weather check
weatherH='curl -s "wttr.in/HomeCity?2QF"' 

\#Download Youtube playlist videos in separate directory indexed by video order in playlist -> lectures, etc
ytPlaylist='yt-dlp -o "%(playlist)s/%(playlist_index)s - %(title)s.%(ext)s"'

\#Download whole album  -> podcasts primarily 
ytAlbum='yt-dlp -x --audio-format mp3 --split-chapters --embed-thumbnail -o "chapter:%(section_title)s.%(ext)s"'

# download video -> extract audio -> show notification
ytm()
{
    tsp yt-dlp -x --audio-format mp3 --no-playlist -P "~/Music/downloaded" $1 \
        --exec "dunstify -i folder-download -t 3000 -r 2598 -u normal  %(filepath)q"

}

# Provide list of optional packages which can be manually selected
pacmanOpts()
{
typeset -a os
for o in `expac -S '%o\n' $1`
do
  read -p "Install ${o}? " r
  [[ ${r,,} =~ ^y(|e|es)$ ]] && os+=( $o )
done

sudo pacman -S $1 ${os[@]}
}

# fkill - kill process
fkill() {
  pid=$(ps -ef | sed 1d | fzf -m --ansi --color fg:-1,bg:-1,hl:46,fg+:40,bg+:233,hl+:46 --color prompt:166,border:46 --height 40%  --border=sharp --prompt="➤  " --pointer="➤ " --marker="➤ " | awk '{print $2}')

  if [ "x$pid" != "x" ]
  then
    kill -${1:-9} $pid
  fi
}

in reply to als

melimosa

in reply to als • 2 settimane fa (Ricevuto 1 settimana fa) • •

I try to organise my data in the cleanest way possible, with the less double possible etc... I end up using a lot of symbolic links. When doing maintenance, sometimes I want to navigate in the "unlogical" way the data are organized, but the PWD variable is not necessarily very cooperative. This alias is really useful in my case :

alias realwd='cd -P .'

Here is an example :

$ echo $PWD  
/home/me  
$ cd Videos/Torrents/  
$ echo $PWD  
/home/me/Videos/Torrents  
$ realwd  
$ echo $PWD  
/home/me/data/Torrents/Video

I also do some X application, compositor and WM development, and I have a few aliases to simplify tasks like copying from an Xorg session to an Xnest (and the other way around), or reload the xrandr command from my .xinitrc without duplicating it.

alias screenconf='$(grep -o "xrandr[^&]*" ~/.xinitrc)'  
alias clip2xnext='xclip -selection clip -o -display :0 | xclip -selection clip -i -display :1'  
alias clip2xorg='xclip -selection clip -o -display :1 | xclip -selection clip -i -display :0'

I have an alias for using MPV+yt-dlp with my firefox cookies :

alias yt="mpv --ytdl-raw-options='cookies-from-browser=firefox'"

I can't stand too long lines of text on my monitor, particularly when reading manpages, so I set the MANWIDTH env variable.

# Note : if you know that *sometimes* your terminal will be smaller than 80 characters  
# refer to that https://wiki.archlinux.org/title/Man_page  
export MANWIDTH=80

I use null-pointers a lot, with a shorthand.

# Note: env.sh actually provide other helpful aliases on their homepage  
function envs.sh() {  
    if [ $# != 1 ]; then  
        1>&2 printf "Error, need one argument.\n"  
        return 1  
    fi  
    curl -F'file=@'"$1" https://envs.sh  
}

The usual fake editor in my path, so that browsers and other applications open Vim the correct way.

\#!/bin/sh  
# st_vim.sh - executable in my ~/.local/bin  
# for example in firefox's about:config :  
#   - view_source.editor.path : set to the value of $(which st_vim.sh)  
#   - view_source.editor.external : set to true  

st -- $EDITOR "$*"

My .xinitrc is quite classical, I still have this in it (setup for dwm's title bar, people usually install much complicated programs) :

while true; do xsetroot -name "$(date +"%d %H:%M")"; sleep 60; done &

I also have a lot of stupid scripts for server and desktop maintenance, disks cleaning etc... those are handy but are also very site-specific, let me know if your interested.

Questa voce è stata modificata (2 settimane fa)

essebi via Musica Agorà

3 mesi fa • •

essebi
3 mesi fa • •

Charlie Musselwhite - Look Out Highway (2025)

Qualche anno fa, durante una lunga intervista apparsa sul n. 159 de Il Blues, per parlare del suo bellissimo “Mississippi Son” (Alligator), Charlie Musselwhite si era espresso così in merito a quello che sarebbe diventato il suo disco successivo: “E’ già tutto pronto, ma quello sarà il prossimo disco... Continua a leggere...

Charlie Musselwhite - Look Out Highway (2025)

di Matteo Bossi Qualche anno fa, durante una lunga intervista apparsa sul n. 159 de Il Blues, per parlare del suo bellissimo “Mississippi S...

^{Silvano Bottaro (Blogger)}

#musica

essebi via Musica Agorà

3 mesi fa • •

essebi
3 mesi fa • •

Tinariwen - Tassili (2011)

Dopo l’ennesimo ascolto di Emmaar, il parallelo con Tassili, ultimo lavoro uscito nel 2011, è inevitabile. Il gruppo maliano che ha fatto, e continua a far conoscere la cultura tuareg in giro per il mondo, con questo disco, non si discosta di molto dal suo predecessore...
Leggi e ascolta...

ᗩᐯᗩIᒪᗩᗷᒪᗴ

2025-06-23 07:26:27

writefreely - Collegamento all'originale

Tinariwen - Tassili (2011)

Dopo l’ennesimo ascolto di Emmaar, il parallelo con Tassili, ultimo lavoro uscito nel 2011, è inevitabile. Il gruppo maliano che ha fatto, e continua a far conoscere la cultura tuareg in giro per il mondo, con questo disco, non si discosta di molto dal suo predecessore. Due sono soprattutto gli elementi in comune: deserto e messaggio. Il primo è stato registrato nel deserto algerino, Emmar invece, in quello nord americano del Joshua tree. Il messaggio: la musica come strumento di ribellione... silvanobottaro.blog/2024/09/10…
Ascolta: album.link/i/671816602
Home – Identità DigitaleSono su: Mastodon.uno - Pixelfed - Feddit

Tinariwen — Emmaar (2014)
Dopo l’ennesimo ascolto di Emmaar, il parallelo con Tassili, ultimo lavoro uscito nel 2011, è inevitabile. Il gruppo maliano che ha fatto, e continua a far conoscere la cultura tuareg in giro…
^{Silvano Bottaro Blog}

#musica

DeathByBigSad via Privacy

3 mesi fa • •

DeathByBigSad
3 mesi fa • •

[deleted]

#privacy

Questa voce è stata modificata (2 mesi fa)

like this

in reply to DeathByBigSad

LukaFLBernaudeau

in reply to DeathByBigSad • 3 mesi fa • •

It's just a conscious approach to tech.

like this

in reply to DeathByBigSad

Libb

in reply to DeathByBigSad • 3 mesi fa • •

We have people telling us the earth is flat. Them saying so doesn't make our good old planet any flatter ;)

I mean one can find excess absolutely anywhere, that doesn't demonstrate much imho.

like this

in reply to DeathByBigSad

Kidplayer_666

in reply to DeathByBigSad • 3 mesi fa • •

There are probably some people that go too far, but that is true in any community. There are also people with a very legitimate threat model, for example if they are from insert your favourite dictatorship here and they have insert opinion against said regime

like this

in reply to Kidplayer_666

F04118F

in reply to Kidplayer_666 • 3 mesi fa • •

Yep, and then there's probably a good number of people who have no idea of threat modelling who just copy those actions to say they have "good privacy".

Tbh, I'm closer to the latter.

like this

in reply to Kidplayer_666

Seleni

in reply to Kidplayer_666 • 2 mesi fa • •

I mean, it can be a bit of an issue everywhere.

Hilariously this post was just above this one in my feed.

in reply to DeathByBigSad

evujumenuk

in reply to DeathByBigSad • 3 mesi fa • •

As long as everyone is having fun, I see no problem.

If you're not having fun switching mail providers, researching Gecko forks, or being a part-time sysadmin for your Fairphone, you should probably stop doing those things.

Questa voce è stata modificata (3 mesi fa)

like this

in reply to evujumenuk

☂️-

in reply to evujumenuk • 3 mesi fa • •

are you guys doing this for fun? i take some privacy precautions so i wont be mass targeted for anything i do today in the future.

Questa voce è stata modificata (3 mesi fa)

in reply to ☂️-

evujumenuk

in reply to ☂️- • 3 mesi fa • •

I'd sure hope so! Many of the things that privacy nuts like us do are not efficient uses of one's time.

They might require constant vigilance. They might need recurring work for continued effectiveness. They might necessitate exposure to intrusive negative emotions ("what is Google doing this week?!").

If you're not having fun, focus on measures that you implement once and then never have to think about again.

For example, I wouldn't recommend GrapheneOS to a journalist in an authoritarian regime. It might be "more secure", but they have a job to do and can't keep dicking around with obscure pointer authentication settings or whatnot. They should just get a current iPhone, enable Lockdown Mode if its tradeoffs are acceptable to them, and continue doing their best job, which isn't "phone administration".

LARPing as Jason Bourne, or prepping for the Rokobasiliskocalypse, is a hobby. It's okay, I do it too. However, it's not approachable or understandable to people who don't share that hobby, or are not as alarmed at the general state of things as we are.

in reply to evujumenuk

☂️-

in reply to evujumenuk • 3 mesi fa • •

people are literally targeted by this system today. and i live in the third world, i'm ripe for the taking.

i'm glad this can be a hobby for some of you guys though.

in reply to ☂️-

evujumenuk

in reply to ☂️- • 2 mesi fa • •

It kind of has to be, if you're trying to be persistent about the whole thing. It's easy to feel overwhelmed and burn out over all of the different threats we're trying to defend against. I don't see how you can keep at it for months or years if you feel no joy over it. But maybe being deathly, relentlessly afraid of the dangers around us is enough after all.

If you don't even like doing this stuff, wouldn't it be better to focus on measures that require little upkeep? This is what my example suggestion was getting at, something that's as close to set-and-forget as possible, while getting you 90% of the way there. (Depending on your threat model, sure. If yours says that the sky is falling if Tim Apple gets your iCloud data, it certainly doesn't apply.)

in reply to evujumenuk

OhVenus_Baby

in reply to evujumenuk • 2 mesi fa • •

Damn this take needs more love. You will get shouted down And downvoted to the lowest depths if you speak against anything that isn't graphene. I like the project, it has merit. It's far far from perfect in so many ways. I don't believe it's the white knight in shining armour we like to think it is. Good yes. Saving grace. Not by a long shot. It's got many fundamental flaws.

Be conscious of your needs, not obsessive. I think a lot of people are obsessive and I get it totally. But FOMO is powerful. Don't overwork your mind trying to be perfect that you never make moves. Life isn't static. If your uneducated enough to truly need the utmost best tech stacks with no real knowledge on how to implement and deploy. You likely don't need to be doing the shit your thinking of, or currently doing.

in reply to DeathByBigSad

INeedMana

in reply to DeathByBigSad • 3 mesi fa • •

Depends how one looks at it. From purely practical POV, probably 90% of us don't need to bolt their doors so much. But as a principle, as a society we've lost the "war" on privacy so much, that it really takes a long way to pull the dial back to where it should be

like this

in reply to DeathByBigSad

southsamurai

in reply to DeathByBigSad • 3 mesi fa • •

I dunno, considering that Facebook data has been used to go after people, we've got fascists using every method possible to target their current hated group, and police everywhere ignoring or bypassing due process by just buying data, I don't think it all paranoid to think that privacy concerns are already huge, and could get worse

like this

in reply to southsamurai

Maeve

in reply to southsamurai • 2 mesi fa • •

I came to say, "just because you're paranoid doesn't mean they're not out to get you."

in reply to DeathByBigSad

CameronDev

in reply to DeathByBigSad • 3 mesi fa • •

Yes, some people absolutely take things way too far, and often unproductively.

Like the person who was trying to disable websockets. Or the people who will shun signal, but jump directly on the flavour of the month signal clone, which might be completely backdoored.

If you dont know what you are doing, randomly turning things on and off at best does nothing, at worst makes you even more signaturable/trackable.

Its good to educate yourself on various protections, but unfortunately, it requires a lot of careful research and understanding.

like this

in reply to CameronDev

Jason2357

in reply to CameronDev • 3 mesi fa • •

There's certainly also the aspect of simply "nerds who want to experiment." I know I've tried out weirdo encrypted messengers and such in the past, just to never actually use it for anything and delete it. If you are smart, you know the difference between an experiment and sage advice. Boring stuff like the EFF's Surveillance Self Defense suggest the reasonable tools for a spectrum of people's threat models, but those things were all once experiments too.

in reply to Jason2357

CameronDev

in reply to Jason2357 • 2 mesi fa • •

I have no issue with tinkering, my issue is more when tinkering gets turned around into advice.

I think I would be happier if these communities/subreddits were a bit more explicit about "We are amateurs, for actual advice, go to X, Y, Z".

in reply to CameronDev

Jason2357

in reply to CameronDev • 2 mesi fa • •

Couldn’t agree more.

in reply to DeathByBigSad

RvTV95XBeo

in reply to DeathByBigSad • 3 mesi fa • •

Of course some people go too far. I think a lot of folks on here grossly overestimate / overstate their threat model, but I think the discussions are good for the limited few who really do need to cover their asses.

Me personally, I hate the idea of companies bidding for my attention without my consent, so I try and make it as hard as possible for them to get it. This just so happens to overlap nicely with the goals of the privacy community much of the time.

like this

in reply to RvTV95XBeo

Auli

in reply to RvTV95XBeo • 3 mesi fa • •

I mean font ad blockers cover that.

in reply to DeathByBigSad

hansolo

in reply to DeathByBigSad • 3 mesi fa • •

Most people have absolutely zero idea how much data they put out there, what's done with it, and why any rational person would be horrified if they knew the extent to which individuals were tracked. Simply put, short of showing them how their lives are made worse, they don't care, and can't be made to care.

For friends and family, you can do things like give them books or send articles explaining it slowly in parts. For everyone else, just ask them if they know how Google tracks what they do in Incognito windows and see what they say. If they say that Google can't or doesn't, they might as well say the Earth is flat. You can't argue with that, even though it's provably false.

Questa voce è stata modificata (3 mesi fa)

like this

in reply to hansolo

Jason2357

in reply to hansolo • 3 mesi fa • •

Most people have absolutely zero idea how much data they put out there

As evidence, I've heard people talk about worrying their phone is listening to their conversations. It's not that they don't care about privacy, it's that they don't even know what's possible. With all the data collection that is happening, the data brokers are already selling a dataset predicting that you are going to be shopping for new baby items and what types of manipulative tactics are likely to work on you well before you talk to your friend about it.

in reply to Jason2357

hansolo

in reply to Jason2357 • 3 mesi fa • •

I also truly hate "family groups" where phones and accounts commonly associated with you get just pings on a topic to make you more malleable to the idea when you finally get the ads.

in reply to DeathByBigSad

FlappyBubble

in reply to DeathByBigSad • 3 mesi fa • •

I definetly take things too far in terms of my effort vs my current threat model. But there are many aspects of trying to increase privacy.

For one, I'm very interested in the philosophy, ethics and politics of privacy and adjacent fields such as security. Part of what I do is just learning.

Also I try to be a good role model to my AFK peers and family. Of course I don't try to get everyone to adopt my hobby. But as in every field it's hard to teach even the basic stuff to others without deeper understanding of the field.

in reply to FlappyBubble

N0x0n

in reply to FlappyBubble • 3 mesi fa • •

But as in every field it's hard to teach even the basic stuff to others without deeper understanding of the field.

That's so true, but even more true in IT... It changes so rapidly and things don't stay the same over time... It's not like a degree in Biology where things you learn stay relatively the same !

IT is 5 inches deep but miles long ! (Something like that!)

in reply to DeathByBigSad

burgerchurgarr

in reply to DeathByBigSad • 3 mesi fa • •

Definitely yeah! If you’re just a regular person living in a fairly democratic country and you’re thinking about physically clogging your usb ports to avoid someone breaking in your room and tampering your device while you’re exploring Barcelona, or if you consider removing camera and microphone from your pixel phone that you use every day, you’re probably taking it too far.

OTOH I’m still having trouble getting people away from Meta apps and I think it’s absolutely crazy how little thought people put into the amount of data that Meta collects.

TBH even in many dictatorships you’re mostly fine just using a VPN and fake accounts if you have government critical opinions. But that’s just my personal experience. Goes without saying if you have a decent follower count or are some kind of journalist you should be very paranoid.

Anyway, the point is, it’s probably good to feel slightly paranoid because most people aren’t paranoid enough, but most of us are also not Edward Snowden or Saudi journalists, so there should be a balance between practicality and privacy.

Questa voce è stata modificata (3 mesi fa)

in reply to DeathByBigSad

DeuxChevaux

in reply to DeathByBigSad • 3 mesi fa • •

Once, someone sent me an Amazon link for baby nappies, and fool me clicked on it. Now Amazon showed boomer me baby nappies suggestions for the next six months. AI at its best... These things annoy me, so I try to avoid being tracked whenever reasonably possible.

OTOH, I am old and hope to not live long enough to experience any rogue government or whatever else persecuting me for having clicked on a baby nappies link years ago; so my threat model is short term only. I keep my privacy to a level, where it hopefully prevents as many annoyances as possible, but does not hamper what I am doing online too much. If I was younger, I'd likely do more.

in reply to DeathByBigSad

glitching

in reply to DeathByBigSad • 3 mesi fa • •

I'm like a test-bed for a) my business customers and b) friends and family. also, "wasting" time thusly is vastly better than my previous "hobby", namely buying new and exciting shit.

my customers benefit from me knowing how exactly (and why!) I should implement e.g. an unbound instance on-premise. or an in-house prosody communication platform. or the "dev team" (buncha dudes poking at wordpress) getting a slew of used elitebooks with linux for the price of one new windows-with-ai yoga the spec initially called for.

f&f benefit from my early adoption by way of trickle-down tech. no way is anyone of them going to selfhost all this crap, but they get sprinkles of benefits in the form of "get this phone with that OS with those apps" and they're dramatically better off. you don't need the new ideapad ryzen that's "on sale" (isn't), have this 10-year old macbook I fixed and installed linux on - off you go. you don't need the new phone that's "free" with an exorbitantly priced plan, have the cheapest plan with this Redmi/Poco phone I swapped the battery on and installed LineageOS.

as to practical considerations, any and all interactions with the likes of FAANG are and should be adversarial from the get-go, they are out to hurt you by any means necessary. them fucks lost the benefit of doubt ages ago so you not letting them have a millimeter of grasp in your domicile should be your primary task. as their gains are cumulative in nature, every battle won is significant and you'd do well to remind yourself constantly of that.

in reply to DeathByBigSad

quediuspayu

in reply to DeathByBigSad • 3 mesi fa • •

Yes and I see two reasonable reasons for that.

One is that, like in most communities, those that feel more compelled to post and comment are those that are more passionate about the topic and/or have more extreme views.

The other reason is that given the sensitive nature of the topic, without knowing the threat level of the reader I can see how one would be reluctant to go for the "good enough".

in reply to DeathByBigSad

TXL

in reply to DeathByBigSad • 3 mesi fa • •

I think that "mental illness" kind of comments would come from people whose attitude for safety in many aspects of life is "that's never going to happen (to me)". Those people exist, so sooner or later you'll see comments like that.

On the other hand everybody is trying to find a balance in convenience and safety and the situations and environments and life on general for one person can be quite different from that of some others'. So what's adequate for one won't be for another.

It's like PPE or personal finance or many other things. There's no one size that fits all and finding the right fit isn't easy. For a lot of us it's work in progress. Sometimes you know what's definitely needed and tweak the details. Sometimes you know something is not going well and needs to change.

Maybe it's enough to say that it's complicated and have some compassion and support for people that think it isn't. Or people that think it's all too much to handle.

Questa voce è stata modificata (3 mesi fa)

in reply to DeathByBigSad

Cherry

in reply to DeathByBigSad • 3 mesi fa • •

Yeh my family treat me like I am a nut job. I only swapped away from google and ask them to think about the orgs they spend their money on for example Amazon.

It’s amazing how many people got on board with Covid conspiracies but questioning where you data goes, who’s using it, what for, no that’s a bit far lol.

Questa voce è stata modificata (3 mesi fa)

like this

in reply to Cherry

OhVenus_Baby

in reply to Cherry • 2 mesi fa • •

Told my older parents I use a custom ROM with a profile for work and a profile for personal and they asked me what I'm hiding, and why I'm so paranoid. I said.. it's not paranoia, it's organization. Color coding profiles allows my mind to switch gears from work to personal life like mental compartments. I am a boring person. I have nothing to be paranoid about. They didn't believe me. Oh well....

Edit: part of me thinks the whole mental state switching from work profile to personal is an ADHD aspect as well. Especially the color coding helps wonders.

Questa voce è stata modificata (2 mesi fa)

in reply to DeathByBigSad

WQMann

in reply to DeathByBigSad • 3 mesi fa • •

explainxkcd.com/wiki/index.php…

Relevant XKCD;

I feel that it is closer to the fact that the communities forgot most beginners are completely new to this in general. They might not even know what exactly a 'browser' is, much less cookies and stuff.

Hence when we try to spoonfeed them information, it comes off as overwhelming and forced.

Agree that there are some extremist, but they mostly act in good faith tbh.

Another thing I noticed is there are more preachers of 'how' than 'why'. Having a beginner go down the route of privacy without giving them a purpose to do so is quite off-putting.

2501: Average Familiarity - explain xkcd

explain xkcd is a wiki dedicated to explaining the webcomic xkcd. Go figure.

^{www.explainxkcd.com}

like this

in reply to DeathByBigSad

utopiah

in reply to DeathByBigSad • 3 mesi fa • •

Yes, paranoia is not healthy. When people can't formulate a realistic threat model then usually to be "safe" they assume everyone is out there to get them ... while failing the most basic steps, e.g. not relying on surveillance capitalist fueled tools voluntarily.

in reply to DeathByBigSad

upstroke4448

in reply to DeathByBigSad • 3 mesi fa • •

Yeah. I think people can become obsessive over it. I also think there is a large group of users who gamify privacy and act as if its an mmo quest where they just need to collect the best tools to win instead of being responsible and understanding threat modelling.

in reply to upstroke4448

CosmicTurtle0

in reply to upstroke4448 • 3 mesi fa • •

There is a point of diminishing returns. Like most things, you have to evaluate what you are willing to live with and let go.

I know someone who only browses incognito because they don't want cookies tracking them. They log into everything every day. Which, imo, is worse because those cookies are still tracking you but you now have to log in everyday.

But for them they like the control.

I've moved most of my incidental link on my phone clicking to Firefox Focus (thanks to URL Checker) which has upped my privacy. I wouldn't have made that change without the prompt that URL Checker provides though.

I use a VPN outside of my house and I use pihole at home. I am tempted to switch my DNS to unbound but the juice doesn't seem to be worth the squeeze. We'll see the next time I need to rebuild my pi.

in reply to CosmicTurtle0

evujumenuk

in reply to CosmicTurtle0 • 3 mesi fa • •

I used to run unbound on my laptop just so I could configure stuff like forwarding zones with more precision than what a stub resolver normally gives you.

It can also be your validating DNSSEC resolver, which also satisfied that sort of morbid curiosity in me.

In the age of DoT and DoH, with endpoints hardcoded in browser binaries, that sort of thing has a lot less punch than it used to. Even back then Go binaries would start ignoring your nsswitch.conf…

Questa voce è stata modificata (3 mesi fa)

in reply to evujumenuk

CosmicTurtle0

in reply to evujumenuk • 3 mesi fa • •

DNSSEC always causes errors on my pihole set up and end up disabling it. The upstream is DoH though (via dnscrypt) so it's technically DNSSEC but without the clients seeing the authentication. That's enough for me.

At some point, I fully expect apps and websites to begin resolving DNS directly instead of relying on the OS to provide resolution services. At that point our options will be to wholesale block IP addresses at the router.

in reply to DeathByBigSad

AnotherUsername

in reply to DeathByBigSad • 3 mesi fa • •

A year ago: yes.

Today: nope.

in reply to DeathByBigSad

PowerCrazy

in reply to DeathByBigSad • 3 mesi fa • •

Like most things on the internet it's a game of one-upsmanship. User X uses Firefox with Incognito. User Y say's that isn't good enough for his own inconsistent definition of "good enough."
So User-Y suggests Firefox with 14 different add-ons and only browse through an immutable VM.
But then user-z comes along and says that if you are using windows at all, you don't really care about privacy, so you should be using Icefox on some obscure fork of ubuntu through an immutable VM, with a pi-hole.
Then user-w says well if you aren't using a VPN none of this matters, so Obviously you need to rent an Alibaba cloud server hosted in China, that you only connect to through a privacy respecting VPN, and then you only browse through TOR.

And so on. By the time a user is asking about how to stop google ads, the only "serious" answer by the community involves using Packet over Ham-radio -> and spending thousands of dollars a month on 4 different cloud providers, rented through several shell companies set up in Switzerland, the Cayman Islands and China, while only typing in Esperanto using an ASCII-only font.

Questa voce è stata modificata (3 mesi fa)

in reply to PowerCrazy

ScoffingLizard

in reply to PowerCrazy • 2 mesi fa • •

It's so overwhelming. I just want to be able to use Wireshark well to figure out wft is going on at my house with outbound surveillance data.

in reply to DeathByBigSad

zod000

in reply to DeathByBigSad • 3 mesi fa • •

While certainly some people take it to a point that could be considered too far, I think that the reality is that you have to go very far if you want actual privacy today. I think most people either don't know all the ways that their daily lives are being tracked and their activities are sold or they simply don't care. To vast majority, doing anything that isn't trivial is probably too far, and the more you talk about it with them, the more they will think it's crazy. Most people of the older generation probably don't "get it" or think it can be real, and very young people have probably never known privacy in their lives to much degree, so it can be a tough sell. I think Late Gen-X and Millienials are the main group that got to experience privacy when they were young and then saw it slowly eroded away in increasingly gross ways until it was gone.

in reply to DeathByBigSad

pinball_wizard

in reply to DeathByBigSad • 3 mesi fa • •

A few weeks ago, I would have said 100%. I am needlessly careful.

I know I'm protecting against privacy threats that are technically possible, but unlikely. Preventing the tracking is just an interesting hobby, to me.

But earlier this month, we learned that Meta went "all-in" on what I consider some fucked up shit - running a mini localhost server to track the vanishingly few people who bother to block their tracking.

So now I guess I'm only about 30% sure I'm being needlessly careful.

like this

in reply to DeathByBigSad

relic4322

in reply to DeathByBigSad • 3 mesi fa • •

I have been thinking about this a lot recently. I live a life where OPSEC is relevant. Its something that I have had to consider always, and has been for 2 decades. Even so, I wasn't as concerned this whole time as I am these days. The fact is that technology is making it such that its no longer "im not a person of interest they wont spend resources on me" because data crunching is happening to such an extreme, on such a grand scale, that person of interest doesn't even matter. Do you exist, yes. Do you have a digital foot print, yes you do. Even if you dont do a lot online. Your metrics are being captured and being inferenced, and systems are using predictive analysis to determine what you "may" do in a given situation. Depending on who controls those systems they may decide not to give you a chance to make that choice.

Ill I can say is that there are a large number of groups that want your data, for a lot of different reasons, and none of them are for your benefit. So, are you going to let them have it, or are you going to take steps to reign in the amount of info you leave about?

in reply to DeathByBigSad

Zerush

in reply to DeathByBigSad • 3 mesi fa • •

Yes, privacy is very important, but I've seen also a lot of tin foil hats arround here which don't know really what is worth to protect and what only make browsing slower and more difficult. PEBCAK

in reply to DeathByBigSad

Zoma

in reply to DeathByBigSad • 3 mesi fa • •

Yep, I made the mistake of telling my family I care about my privacy.
The amount of times I've been told the nothing to hide argument is stupid.

in reply to Zoma

QuoVadisHomines

in reply to Zoma • 3 mesi fa • •

I started asking people who put that forward if they would give me their cellular phone unlocked for a hour. After all they have nothing to hide, right?

in reply to Zoma

HiddenLayer555

in reply to Zoma • 2 mesi fa • •

Tell them to leave their front door unlocked. They should have no problem doing that, and if they do, call the police on them because it means they're hiding illegal activity in their home. /s

Questa voce è stata modificata (2 mesi fa)

in reply to HiddenLayer555

SpacetimeMachine

in reply to HiddenLayer555 • 2 mesi fa • •

Or just ask if they have nothing to hide why do they poop with the door closed? What could they be doing in there?

in reply to DeathByBigSad

electric_nan

in reply to DeathByBigSad • 2 mesi fa • •

You really do have to obsess if you take this seriously. It really isn't feasible for most people to devote kind of time and effort that I do on this stuff. I usually describe it as a kind of hobby, and I try to limit my advice to address specific concerns or threat models.

in reply to DeathByBigSad

Krudler

in reply to DeathByBigSad • 2 mesi fa • •

Yes.

Like any interest, people get so far removed from the original point, it becomes about something new.

Like cast iron. People go from not really knowing about it to learning how to cook with it, to learning how to do basic maintenance. About 20% of people go completely off the rails, and they start buffing and polishing them like they are fabergé eggs, and joining cast iron groups.

Privacy is the same. Learn the basics, follow the basics, relax and get over yourself.

in reply to DeathByBigSad

ScoffingLizard

in reply to DeathByBigSad • 2 mesi fa • •

I must be one of those. This shit is not okay, yall. Whole psychological profiles, humiliation tactics, and dystopian forms of control are right around the corner. Why would they keep Epstein alive when Palantir automated the job of the blackmail broker?

in reply to DeathByBigSad

rumba

in reply to DeathByBigSad • 2 mesi fa • •

Many times throughout my life, what would seem like a reasonably easy question to answer has changed dramatically.

30 years ago you could look at data collection and go there's no way that they could store a meaningful amount of data about everyone.

20 years ago you could look at data collection and go there's no way they could have the contents of every phone call It's just targeted it's not a big deal

We are the point now, where everything you ever wrote or said could be thrown into a model with such unimaginable levels of lossy compression that they could simply ask it if you are the kind of person who is into whatever the future administration deems as unacceptable and deny you access to things. All you need is a fascist regime or a dictatorship installed and all of a sudden anything you ever did can be used as grounds to lock you up.

On a governmental budget it wouldn't even be that expensive and we're just at the beginning of this.

We have seen that governments can change quickly, We know the data collection is affordable and can be permanent.

Certainly some people privacy-minded to the point of compulsion. But I can't say that anyone is wrong to seek extreme levels of privacy based on trends and capabilities.

They leave your cell phone at home and make sure somebody opens your apps and uses them people aren't anywhere near as crazy as they used to sound

return2ozma via politics

3 mesi fa • •

return2ozma
3 mesi fa • •

As Dem Establishment Backs Cuomo, Calls Grow for NYC Mayor Race to Be 'Referendum' on Party's Direction

"Cuomo winning will not only legitimize the Islamophobia that has dominated this race... but would also prove that you really can just waltz in and buy an election," said one observer.

^{julia-conley (Common Dreams)}

#politics

adhocfungus likes this.

suoko via Energia, fonti rinnovabili, approvvigionamento e mobilità

3 mesi fa • •

suoko
3 mesi fa • •

La Finlandia accende la prima batteria di sabbia più grande al mondo

In Finlandia è attiva la più grande batteria di sabbia al mondo: 1.000 MWh di energia termica stoccati per settimane.

^{Ilaria Rosella Pagliaro (GreenMe.it)}

#Energia

homosaccens via Notizie dall'Italia e dal mondo

3 mesi fa • •

homosaccens
3 mesi fa • •

Jeff Bezos: questo matrimonio a Venezia non s’ha da fare….

Venezia la “città dell’amore” ha stregato anche il magnate di Amazon Jeff Bezos che ha scelto appunto la città lagunare per le sue nozze con Lauren Sanchez, per un matrimonio che già si annuncia da favola. La festa a quanto pare durerà dal 24 al 26 giugno, ma ci sono anche dei “contrattempi” a creare tensione....e. homosaccens.it/jeff-bezos-ques…

Jeff Bezos: questo matrimonio a Venezia non s'ha da fare.... - HOMOSACCENS BLOG

^{Panozzo Enrico Omar (HOMOSACCENS BLOG)}

#News

like this

Psyhackological via Linux

3 mesi fa • •

Psyhackological
3 mesi fa • •

Is there a Linux version that is similar to Freedom app?

This app just starts some productivity session while forbidding some programs from starting. Is there a Linux and most importantly FOSS version of it?

Freedom: Internet, App and Website Blocker

Easily block distracting websites and apps on any device. The original and best website blocker, Freedom helps you be more focused and productive.

^Freedom

#linux

in reply to Psyhackological

ThyTTY

in reply to Psyhackological • 3 mesi fa • •

I do not know any program like that but what worked for me was creating another user account that had no access to lots of stuff.

in reply to ThyTTY

Psyhackological

in reply to ThyTTY • 3 mesi fa • •

Yeah that's idea but it will also lose some of the setup that I have right now. I wonder how hard it would he to tell the kernel not to spawn anything during session time.

in reply to Psyhackological

Joe

in reply to Psyhackological • 3 mesi fa • •

With apparmor, you could enable and disable profiles that could restrict access to files and paths by name.

For network traffic, it's possible to use dnsmasq to blacklist or whitelist some domains.

in reply to Psyhackological

buckykat [none/use name]

in reply to Psyhackological • 3 mesi fa • •

Looks like malware to me

ooli3 via World News

3 mesi fa • •

ooli3
3 mesi fa • •

Iranian-Aligned Hackers Attack Trump's Truth Social: Report

Iranian-Aligned Hackers Claim Responsibility for Attack on Trump’s Truth Social Platform

A group of Iranian-aligned hackers has reportedly attacked something President Donald Trump holds dear — his Truth Social platform.

^{Joe DePaolo (Mediaite)}

#News

Rozaŭtuno likes this.

in reply to ooli3

Moonrise2473

in reply to ooli3 • 3 mesi fa • •

Seeing how Trump has a talent to choose the absolute worst for a specific job, I hope they manage to get shell access and delete the database and its only backup that was accidentally stored in the same server with the same credentials

cm0002 via Technology

3 mesi fa • •

cm0002
3 mesi fa • •

AI search finds publishers starved of referral traffic

The AIpocalypse is here for web sites as search referrals plunge

: Turn out the lights, the internet is over

^{Thomas Claburn (The Register)}

#technology

Sunshine (she/her) via Technology

3 mesi fa • •

Sunshine (she/her)
3 mesi fa • •

Meta pauses mobile port tracking tech on Android after researchers cry foul

: Zuckercorp and Yandex used localhost loophole to tie browser data to app users, say boffins

^{Thomas Claburn (The Register)}

#technology

Sunshine (she/her) via Palestine

3 mesi fa • •

Sunshine (she/her)
3 mesi fa • •

Fact check: Viral drone video of Gaza destruction is real

A viral video is circulating showing the destruction caused by Israeli strikes in Gaza. DW has verified the footage of mass destruction at the Jabaliya refugee camp.

^{Kathrin Wesolowski (Deutsche Welle)}

#Palestine

Viaggi&Miraggi via Cultura, Storia, Libri, Arte, Architettura, Scuola, Design, Fumetti e Bookwyrm

3 mesi fa • •

Viaggi&Miraggi
3 mesi fa • •

Dal 27 al 30 giugno musica e gastronomia nella Sagra del Salame di Turgia a Devesi Di Ciriè (To)

La frazione Devesi di Ciriè si prepara a ospitare l’ottava edizione della Sagra del Salame di Turgia, evento che celebra uno dei prodotti più tipici del Ciriacese e delle Valli di Lanzo: il “Salam ëd Turgia” in piemontese, o “Salàm eud Tueurdji” in francoprovenzale. Si tratta di un salume preparato con carne di vacca, lardo e pancetta suina, aromatizzato con sale, pepe, aglio, vino rosso e spezie, poi insaccato nel budello torto di bovino. “Turgia” in piemontese indica una vacca sterile, ma può riferirsi anche a un esemplare giovane.

Organizzata dalla Pro Loco Dveisin Festareul e patrocinata dalla Città metropolitana di Torino, la manifestazione si terrà da venerdì 27 a lunedì 30 giugno in località Colombari, in occasione della festa patronale di San Pietro Apostolo. Una quattro giorni dedicata al gusto e alla tradizione, dove sarà possibile assaporare il Salame di Turgia in un clima di convivialità, accompagnato da altre specialità locali. La preparazione del salame affonda le radici nella cultura contadina e nelle famiglie che ne tramandano i segreti, rendendolo simbolo di identità e amore per il territorio.

Il programma prevede musica dal vivo, spettacoli e animazioni. Si parte venerdì 27 con l’inaugurazione affidata a Sonia De Castelli, cantante e volto noto della TV. Sabato 28 spazio alla discoteca mobile Energia. Domenica 29 salirà sul palco Luca Giordano, mentre lunedì 30 chiusura con l’orchestra Enrico Negro. Durante la sagra ci saranno anche momenti divertenti, come il Chupito San Peru e la gara di tiro alla fune domenicale.

Dal 27 al 30 giugno musica e gastronomia nella Sagra del Salame di Turgia a Devesi Di Ciriè (To) - ViaggieMiraggi

La frazione Devesi di Ciriè si prepara a ospitare l’ottava edizione della Sagra del Salame di Turgia, un evento che celebra uno dei prodotti più iconici della tradizione gastronomica del Ciriacese e delle Valli di Lanzo, detto anche Salam ëd...

^{Redazione (ViaggieMiraggi)}

#cultura

Zarlock via Cultura, Storia, Libri, Arte, Architettura, Scuola, Design, Fumetti e Bookwyrm

3 mesi fa • •

Zarlock
3 mesi fa • •

Cina e l'inconfutabile dualismo nei ricami: da un lato scimmie, dall'altra cani - Il blog di Jacopo Ranieri

Per anni quel ritratto mi ha fissato dall’angolo ombreggiato del salone, di un inquisitivo terrier a pelo lungo con gli occhi cerchiati di nero.

^{Jacopo (Il blog di Jacopo Ranieri)}

#cultura

Ayano via Memes

3 mesi fa • •

Ayano
3 mesi fa • •

Hmmm....

#memes

like this

in reply to Ayano

dastanktal

in reply to Ayano • 3 mesi fa • •

I'm choosing to believe this is what happened.

I don't care about reality anymore

in reply to Ayano

critical

in reply to Ayano • 3 mesi fa • •

I ordered a glass of juice

cm0002 via Palestine

3 mesi fa • •

cm0002
3 mesi fa • •

Mahmoud Khalil Discusses 3-Month Detention in First Interview Since Release

By Jonah E. Bromwich
June 22, 2025 Updated 8:10 p.m. ET
The administration argued that he had contributed to the spread of antisemitism through his role in the protests at the university.
But Mr. Khalil, a Palestinian born in a Syrian refugee camp, rejected the idea that protesting against Israel is inherently antisemitic.
“I was not doing anything antisemitic,” he said. “I was literally advocating for the right of my people. I was literally advocating for an end of a genocide. I was advocating that the tuition fees that I and other students pay don’t go toward investing in weapons manufacturers. What’s antisemitic about this?”

archive.ph/yMJLn

https://www.nytimes.com/2025/06/22/nyregion/mahmoud-khalil-interview-trump.html

#Palestine

☆ Yσɠƚԋσʂ ☆ via Memes

3 mesi fa • •

☆ Yσɠƚԋσʂ ☆
3 mesi fa • •

The IMF, World Bank and US Imperialism

#memes

like this

in reply to ☆ Yσɠƚԋσʂ ☆

SaltyIceteaMaker

in reply to ☆ Yσɠƚԋσʂ ☆ • 3 mesi fa • •

all i am gathering is that it is - once again - the fault of capitalism

like this

in reply to SaltyIceteaMaker

Cowbee [he/they]

in reply to SaltyIceteaMaker • 3 mesi fa • •

Yes, but more specifically the stage of capitalism known as imperialism. Imperialism is the economic inevitability of late-stage capitalist countries, which includes the export of capital and the division of the world along imperialist lines. The US Empire is the current world hegemon, but imperialism also has forces that work against its existence in the imperialized countries, which is accelerating the decline of the US.

in reply to ☆ Yσɠƚԋσʂ ☆

godlessworm [comrade/them]

in reply to ☆ Yσɠƚԋσʂ ☆ • 3 mesi fa • •

“that sounds like a conspiracy bro. i think you’re brainwashed. let’s just watch some tv.”

☆ Yσɠƚԋσʂ ☆ via United States | News & Politics

3 mesi fa • •

☆ Yσɠƚԋσʂ ☆
3 mesi fa • •

Spotify CEO becomes chairman of AI military business

Spotify CEO, Daniel Ek, becomes chairman of AI military start-up after €600 million investment

The company is now valued at approximately €12 billion

^{Rachael Pimblett (Far Out Magazine)}

#USA

☆ Yσɠƚԋσʂ ☆ via History

3 mesi fa • •

☆ Yσɠƚԋσʂ ☆
3 mesi fa • •

That time a Marine general led a fictional Iran against the US military – and won

In 2002, Lt. Gen. Paul Van Riper to led opposing forces in a massive military exercise in history. In the first two days, he sank an entire carrier battle group.

^{Blake Stilwell (We Are The Mighty)}

#history

Peter Link via United States | News & Politics

3 mesi fa • •

Peter Link
3 mesi fa • •

Abandoned by Trump, a farmer and a migrant search for a better future

cross-posted from: lemmy.ml/post/32117597

For this story, John Woodrow Cox interviewed more than 40 farmers across the country. He and photographer Matt McClain reported from Colorado while Sarah Blaskey talked to more than two dozen employees at the U.S. Agriculture Department and reviewed hundreds of documents and records that revealed the extent of the cuts and freezes.
June 21, 2025 at 6:05 a.m. EDT
"The federal government had promised JJ a $200,000 grant, spread across two years, to cover the cost of a seasonal farmhand from Latin America. In a place where local, legal help was nearly impossible to keep, the extra worker would give him the freedom to handle more jobs and invest in his own equipment. It was an opportunity that could transform his family’s future, but, JJ explained to his friend, President Donald Trump had frozen the money."
wapo.st/4liDorF

#USA

Peter Link via politics

3 mesi fa • •

Peter Link
3 mesi fa • •

Abandoned by Trump, a farmer and a migrant search for a better future

For this story, John Woodrow Cox interviewed more than 40 farmers across the country. He and photographer Matt McClain reported from Colorado while Sarah Blaskey talked to more than two dozen employees at the U.S. Agriculture Department and reviewed hundreds of documents and records that revealed the extent of the cuts and freezes.
June 21, 2025 at 6:05 a.m. EDT

"The federal government had promised JJ a $200,000 grant, spread across two years, to cover the cost of a seasonal farmhand from Latin America. In a place where local, legal help was nearly impossible to keep, the extra worker would give him the freedom to handle more jobs and invest in his own equipment. It was an opportunity that could transform his family’s future, but, JJ explained to his friend, President Donald Trump had frozen the money."

wapo.st/4liDorF

#politics

☆ Yσɠƚԋσʂ ☆ via Europe

3 mesi fa • •

☆ Yσɠƚԋσʂ ☆
3 mesi fa • •

Capitalism is feeding the far right in East and West Europe

https://peoplesdispatch.org/2025/06/22/capitalism-is-feeding-the-far-right-in-east-and-west-europe/

#europe

☆ Yσɠƚԋσʂ ☆ via World News

3 mesi fa • •

☆ Yσɠƚԋσʂ ☆
3 mesi fa • •

‘Doomsday Scenario’—Bitcoin Suddenly Drops Under $100,000 As Crypto Price Crash Fears Hit Ethereum And XRP 🎉

archive.ph/nzZtG

‘Doomsday Scenario’—Bitcoin Suddenly Drops Under $100,000 As Crypto Price Crash Fears Hit Ethereum And XRP

Bitcoin has plummeted sharply amid fears U.S involvement in the Israel-Iran conflict could escalate into a wider regional war...

^Forbes

#Worldnews

in reply to ☆ Yσɠƚԋσʂ ☆

davel

in reply to ☆ Yσɠƚԋσʂ ☆ • 3 mesi fa • •

@grok why are bitcoins being sold off

like this

in reply to ☆ Yσɠƚԋσʂ ☆

Almacca

in reply to ☆ Yσɠƚԋσʂ ☆ • 3 mesi fa • •

At least it's not all bad news.

like this

PhilipTheBucket via Politics

3 mesi fa • •

PhilipTheBucket
3 mesi fa • •

N.Y.C. Mayoral Primary May Hinge on Early Voters as Heat Wave Looms

https://www.nytimes.com/2025/06/21/nyregion/voting-primary-nyc-heat.html

#politics

Holeheadou92984 via Privacy

3 mesi fa • •

Holeheadou92984
3 mesi fa • •

Kevin Boone: How de-Googled is Lineage OS?

kevinboone.me/lineageos-degoog…

In an earlier article I wrote about my attempts to remove all trace of Google from my life. Part of that process, which is still ongoing, was to install Lineage OS on all my Android cellphones and tablets, replacing the original, vendor firmware. Doing this removes the egregious Google Play Services although, of course, this severely limits my ability to run Android apps. That’s a sacrifice I’m willing to make, although not without some regrets.

I’ve subsequently learned that hard-core de-Googlers eschew Lineage OS, because it remains too close to the stock configuration of the Android Open-Source Project (AOSP) on which it is based. There are certainly smartphone ROMs, like GrapheneOS, that are even more Google-free.

But I’ve grown to like Lineage. I don’t know what kind of future it has, but it works well for me, and it’s easy – as easy as can be expected – to install on all the devices I own. Installing and setting up Lineage is fiddly enough; I don’t want to make my life even more complicated, if I don’t have to.

Those of us who are divorcing Google worry most, I think, about Google’s intrusive data collection. Of course, Google is by no means the only business that engages in such practices – “surveillance capitalism” is big business. But Google presents a unique challenge because, not only does it collect a lot of data, it has a lot of clever ways to process it, and find connections between disparate data elements. Before my Google separation, it always amazed me how Google seemed to know where I was all the time, even with location services disabled on my smartphone. And Google’s advertisers seem to know what I’ve been shopping for, even when I’ve been doing my shopping in person at retail outlets. How Google does this, I don’t know; but I do want to reduce their opportunities to do so.

So I need to know what information my cellphone is sending to Google, even having removed all proprietary Google stuff.

I have to point out that I’m not talking about additional, 3rd-party apps that I might have installed on a Lineage OS device – all apps have the potential to create privacy problems, but I’m free not to use them. Here I’m just thinking about the platform itself.

Note
I run Lineage with no Google apps or services of any kind. If you do run Google services, you have to accept that absolutely everything you do with an Android device will be known to Google. There’s simply no point worrying about the trivial privacy breaches in this article – that would be like taking a cyanide pill and then worrying about your ingrown toenail.

In this article I’ll be describing various data leaks of which Lineage OS has frequently been accused, reporting which ones seem still to be present, and suggesting (well, guessing) how serious they might be.

The captive portal test

“Captive portals” are often found in hotels and entertainment venues. In a captive portal, all Internet traffic gets directed to the venue’s network filter, which ensures that the user has paid for a service or, at least, consented to some usage agreement.

Android performs a captive portal test every time the device enables a network connection. This test is a simple HTTP or HTTPS request on some publicly-accessible webserver. The request is expected to return a success (2XX) code if the server is reachable. In a captive portal, the service-providing organization will capture the HTTP(S) request, and return a redirection code to its own webserver. This server will provide a web page with further instructions.

By default Lineage OS uses Google’s webservers for the captive portal test. This means that Google knows every time a device raises a network connection.

Is this a problem? Google doesn’t get to find out anything except the IP number of the device, some limited information about the type of device, and the time of day. I’ve looked at the source code, and I don’t see any information other than this being sent – the code just uses the standard Java HTTP support to make the request. It’s plausible that, with a wide-area connection, the carrier might add additional information to the request, and Google might be able to infer your location from the IP number.

If you consider this to be too much of a risk, you can change the captive portal connectivity checker. Lineage provides no simple interface for this, but you can do it at the command line (e.g., by running a terminal app, or adb shell). You don’t need to root the phone to do this.

$ settings put global captive_portal_http_url http://my_server 
$ settings put global captive_portal_https_url https://my_server

Unless you want to disable the captive portal check completely, you’ll need to identify a public webserver that can provide the appropriate response. There are many such servers; some Android replacements that focus more on de-Googling, like GrapheneOS, default to using one of these rather than Google. Even then, they usually have Google’s servers as a fall-back, because an outage of the conectivity check server could otherwise cause serious disruption.

On the whole, I regard this (captive portal check) a relatively harmless breach of privacy. It isn’t telling Google anything they’re not going to find out about in other ways.

DNS

Every time you use a hostname to identify a remote server, there’s going to be a DNS lookup. This lookup translates the hostname into a numeric ID for use with the TCP/IP protocol.

Internet service providers and mobile carriers operate DNS servers, but so does Google. DNS is potentially a privacy problem because the DNS server gets to learn every site you visit. It won’t see the actual URL of a web request – just the hostname. Still, that’s enough information to be concerned about. But it’s worth thinking about who the “you” is in “every site you visit”. To track you, personally, as an individual, the DNS server needs a way to relate your IP number to something that identifies you. There’s no definitive way for Google (or anybody) to do that; but there are statistical methods that can be very effective. They are particularly effective if you happen to use Google’s other services, because these will link a small number of personal Google accounts to an IP number.

Is this a problem for Lineage OS? While it might have been in the past, I don’t think Lineage now uses Google’s DNS, except perhaps as a fallback. Both WiFi and carrier Internet connections are initiated using protocols that can supply a DNS server. On my Lineage devices, I’m sure that these are the DNS servers that are being used. Still, there are references to Google’s DNS server – 8.8.8.8 – in the AOSP source code. So I can’t prove that Google’s DNS will never be used.

If you want, you can supply your own DNS server in the network configuration in the Settings app. But, unless you run your own DNS in the public Internet, you’ll be putting your trust in one mega-corporation or another. I suspect most are less worrying than Google, but perhaps not by much.

By the way – Lineage OS supports encrypted DNS. While that will prevent third-parties from snooping on your DNS traffic – including your mobile carrier or ISP – this won’t protect you from snooping at the DNS server itself. So encrypted DNS is no protection against Google, if you’re using Google’s DNS.

Assisted GPS

It takes a long time for a mobile device to get a robust fix on GPS satellites – a minute in good conditions, or several minutes in a weak signal area. Assisted GPS (A-GPS) primes the satellite fix using environmental data. This data might including a coarse location from a cellular network. With A-GPS, a satellite fix might take only a few seconds.

A-GPS data is processed by a remote server, that has the storage capacity to handle the large amounts of data involved. The main operator of such servers is, again, Google.

What can Google learn about a device using Assisted GPS? As in any Internet operation, it will find the device’s IP number, and it might find the coarse location. The Internet traffic associated with A-GPS can be encrypted but this, again, won’t protect it from Google. To determine the location of a specific individual, Google has to be able to relate the IP number to the individual. As discussed above, that can be done with a reasonable degree of confidence.

On recent Lineage versions, A-GPS is disabled by default. If enabled, it uses Google’s servers – so far as I know there are no widely-available alternatives. I just keep it disabled, and live with the disadvantage of longer GPS start-up times.

Time synchronization, NTP

At one time, Lineage OS used Googles’ time servers to set the time on the device. So far as I know, this is no longer the case – a general pool of NTP servers is used. Even if that were not the case, I can’t worry too much about leaking time synchronizing data.

WebView

I believe that WebView is the most troubling source of privacy concerns for Lineage OS, and the one whose ramifications are the least well-understood.

WebView is a component of Android that renders web pages. Of course, a web browser will do this, but many Android apps and services have a need to render pages without actually being a browser. The ‘captive portal’ support I described above is an example: the device needs to render a page for user to log in or purchase Internet access, even if no web browser is installed.

Lineage OS uses the WebView implementation from the AOSP, which is based on Chromium. Chromium is Google Chrome without the proprietary Google stuff, and it’s undoubtedly less of a privacy concern than Chrome would be. But Chromium, even though it’s open-source, is still primarily a Google product.

There are many known instances where Chromium will provide some user data to Google servers. For example, we know that Chromium downloads lists of ‘unsafe’ websites to support its ‘safe browsing’ feature. This will happen however Chromium is used. When used as a regular web browser, Chromium might send data to Google for its ‘hot word’ detection, for example.

When Chromium is only used to provide a WebView implementation, I’m not convinced that these minor privacy breaches are significant. It’s worth bearing in mind that the Jelly browser that is shipped with Lineage OS is just a wrapper around the Chromium WebView – if you use this browser, you’ll have the same privacy concerns as if you use Chromium itself.

There are a number of Google-free WebView implementations, like Chromite. GrapheneOS uses a WebView implementation called Vanadium, which is essentially a de-Googled Chromium. Installing one of these implementations on Lineage OS is not straightforward, or so it seems to me.

I don’t use Jelly or Chromium itself as a web browser – I install a browser that is not based on Google code, like Firefox. This limits my exposure to Chromium to occasions where WebView is used other than as a browser. In my normal usage, I don’t think there are many of those occasions, so I’m not too worried about WebView.

Nevertheless, it remains a slight concern and, if I could replace it without a lot of effort, I would.

Are we in tinfoil hat territory now?

I don’t like Google knowing so much about me, but I don’t believe Google’s data collection is directly harmful to me. My disapproval of Google’s activities (and I know Google is not the only culprit) is mainly one of principle. I don’t want to be a source of revenue for Google, or to legitimize their behaviour by my own inaction. I don’t want Google to make the Internet more of a hellscape that it currently is.

But I’m not paranoid. I don’t think Google is out to get me, or is in league with people who are. My rejection of Google falls short of doing things that will make my life hugely more difficult.

I am aware, all the same, that I have one foot in tinfoil hat country.

I know a few people – some in my own family – who eschew smartphones because they create time-wasting distractions. I certainly know people who don’t give smartphones to their kids, because of the well-known risks that social media poses to their mental health. But almost nobody avoids Google because they believe, as I do, that the surveillance economy is detrimental to society in the long term. Even those few who do believe this are mostly not willing to take action, because they believe (or convince themselves) that the benefits of a connected world outweigh the costs of a total lack of privacy. For me that’s like understanding the risks of climate change, and yet choosing to run two or three gas-guzzling cars because it’s a half-mile walk to the shops.

The few people who do believe as I do, and are willing to act on their beliefs, tend to be people who also believe that they’re being monitored by the CIA, or that Covid vaccines are implanting mind-control receivers. That’s not a gang that I want to run with.

On the whole, I’m satisfied that Lineage OS, as I use it, is preventing nearly all of Google’s data collection. I don’t install or use any Google services, I don’t enable A-GPS, I don’t use Chromium or the built-in browser. I could eliminate more arcane aspects of data collection – like the Internet connectivity check – if I wanted to take the trouble.

I don’t think that taking reasonable precautions to avoid becoming part of Google’s data collection economy makes me a tinfoil-hatter. Nevertheless, I would probably use GrapheneOS instead, if I had devices that supported it. Ironically, if I wanted to use GrapheneOS, I’d have to buy Google-branded mobile devices, which is an irony that really stings.

Kevin Boone: How de-Googled is Lineage OS?

%%DESC%%

^{kevinboone.me}

#privacy

like this

in reply to Holeheadou92984

Skeezix

in reply to Holeheadou92984 • 3 mesi fa • •

do iphones use google's servers for aGPS?

in reply to Holeheadou92984

edel

in reply to Holeheadou92984 • 3 mesi fa • •

Lovely and well researched post... till I see the "tend to be people who also believe that they’re being monitored by the CIA, or that Covid vaccines are implanting mind-control receivers...".
I find it problematic that both are considered as the same type; there is an incredible abundant evidence that security apparatus of different countries (not necessarily just the CIA that ' technically' can only operate in non-Americans) are indeed scrutinizing phone's data to well beyond what we would consider "the regular suspects"... way beyond! The other, is just people that, while rightly so can be skeptical of government intentions with global mandates, they hide behind that paranoia for their lack of technical and intend knowledge. As the meme says... "we are not the same".

As for GrapheneOS vs Lineage OS, I am torn. For the majority of people, as of today, LineageOS is just fine... I like that it brings diversity of hardware too since it discourages governments from having to intend to compromise different manufacturers (thing that GOS faults at). Now, more people in GrapheneOS will bring awareness too and more privacy conscious apps. So, for majority of people, do install LineageOS (or their variants), you will be taken good care of... However, for a minority of people, minority but not tiny! you know who you are, you will do better with grapheneOS (hope someone is scrutinizing both GOS and the Pixel hardware though).

Sean Mallon via Technology

3 mesi fa • •

Sean Mallon
3 mesi fa • •

No Internet For 4 Hours And Now This

Well, I'm back online after a 4 hour blackout due to the heat in Brooklyn.

I found out that my ISP Optimum had issues with their equipment in Brooklyn due to the heat and humidity set on by this week's weather.

Now I'm worried that things will be really harsh on my equipment in the living room.

Any suggestions on how to keep the modem/router from overheating and causing problems?

#technology

Peter Link via politics

3 mesi fa • •

Peter Link
3 mesi fa • •

Mahmoud Khalil Discusses 3-Month Detention in First Interview Since Release

cross-posted from: lemmy.ml/post/32115867

By Jonah E. Bromwich
June 22, 2025 Updated 8:10 p.m. ET
The administration argued that he had contributed to the spread of antisemitism through his role in the protests at the university.
But Mr. Khalil, a Palestinian born in a Syrian refugee camp, rejected the idea that protesting against Israel is inherently antisemitic.
“I was not doing anything antisemitic,” he said. “I was literally advocating for the right of my people. I was literally advocating for an end of a genocide. I was advocating that the tuition fees that I and other students pay don’t go toward investing in weapons manufacturers. What’s antisemitic about this?”
archive.ph/wip/yMJLn

Peter Link

2025-06-23 01:55:35

Mahmoud Khalil Discusses 3-Month Detention in First Interview Since Release

By Jonah E. Bromwich
June 22, 2025 Updated 8:10 p.m. ET
The administration argued that he had contributed to the spread of antisemitism through his role in the protests at the university.
But Mr. Khalil, a Palestinian born in a Syrian refugee camp, rejected the idea that protesting against Israel is inherently antisemitic.
“I was not doing anything antisemitic,” he said. “I was literally advocating for the right of my people. I was literally advocating for an end of a genocide. I was advocating that the tuition fees that I and other students pay don’t go toward investing in weapons manufacturers. What’s antisemitic about this?”
archive.ph/wip/yMJLn

https://www.nytimes.com/2025/06/22/nyregion/mahmoud-khalil-interview-trump.html

#politics

Peter Link via United States | News & Politics

3 mesi fa • •

Peter Link
3 mesi fa • •

Mahmoud Khalil Discusses 3-Month Detention in First Interview Since Release

cross-posted from: lemmy.ml/post/32115867

By Jonah E. Bromwich
June 22, 2025 Updated 8:10 p.m. ET
The administration argued that he had contributed to the spread of antisemitism through his role in the protests at the university.
But Mr. Khalil, a Palestinian born in a Syrian refugee camp, rejected the idea that protesting against Israel is inherently antisemitic.
“I was not doing anything antisemitic,” he said. “I was literally advocating for the right of my people. I was literally advocating for an end of a genocide. I was advocating that the tuition fees that I and other students pay don’t go toward investing in weapons manufacturers. What’s antisemitic about this?”
archive.ph/wip/yMJLn

https://www.nytimes.com/2025/06/22/nyregion/mahmoud-khalil-interview-trump.html

#USA

Peter Link via Palestine

3 mesi fa • •

Peter Link
3 mesi fa • •

Mahmoud Khalil Discusses 3-Month Detention in First Interview Since Release

By Jonah E. Bromwich
June 22, 2025 Updated 8:10 p.m. ET

The administration argued that he had contributed to the spread of antisemitism through his role in the protests at the university.

But Mr. Khalil, a Palestinian born in a Syrian refugee camp, rejected the idea that protesting against Israel is inherently antisemitic.

“I was not doing anything antisemitic,” he said. “I was literally advocating for the right of my people. I was literally advocating for an end of a genocide. I was advocating that the tuition fees that I and other students pay don’t go toward investing in weapons manufacturers. What’s antisemitic about this?”

archive.ph/wip/yMJLn

https://www.nytimes.com/2025/06/22/nyregion/mahmoud-khalil-interview-trump.html

#Palestine

Iannozzi via Cultura, Storia, Libri, Arte, Architettura, Scuola, Design, Fumetti e Bookwyrm

3 mesi fa • •

Iannozzi
3 mesi fa • •

Sorella di Perfezione - le poesie di Giuseppe Iannozzi - in libreria e negli Store online - LFA Publisher

Sorella di Perfezione - le poesie di Giuseppe Iannozzi - in libreria e negli Store online - LFA Publisher

**youtube.com/shorts/hk8RXKTvNTw…

Ulteriori informazioni su "Sorella di Perfezione"

**iannozzigiuseppe.wordpress.com…

“Sorella di Perfezione” di Giuseppe Iannozzi – booktrailer – LFA Publisher

Sorella di Perfezione offre al lettore poesie che trattano molteplici temi: amore, amicizia, erotismo, vita, morte, tristezza, solitudine, paranoia, ossessione, spiritualità. L’autore Giuseppe Iann…

^{Iannozzi Giuseppe - scrittore e giornalista}

#cultura

Questa voce è stata modificata (3 mesi fa)

Drdoom2027 via Memes

3 mesi fa • •

Drdoom2027
3 mesi fa • •

2025 current timeline be like...

#memes

⇧

Andromxda 🇺🇦🇵🇸🇹🇼 via Privacy

Andromxda 🇺🇦🇵🇸🇹🇼 3 mesi fa • •

Conclusions

Octt via Blogs

Octt 3 mesi fa • •

gigarivista scottiaca con segretissimo numero, trovato così nel vedere colì

miss_demeanour via Political Memes

miss_demeanour 3 mesi fa • •

aeharding via Voyager

aeharding 3 mesi fa • •

elbucho via politics

elbucho 3 mesi fa • •

VBB via Touhou Project

VBB 3 mesi fa • •

bl4kers via Privacy

bl4kers 3 mesi fa • •

geneva_convenience via Comics

geneva_convenience 3 mesi fa • •

geneva_convenience via World News

geneva_convenience 3 mesi fa • •

Seymour Hersh: What I’ve been told is coming in Iran

als via Linux

als 3 mesi fa • •

List all existing program paths from your Bash's history. (Bash One Liner)

Andromxda 🇺🇦🇵🇸🇹🇼
3 mesi fa • •

Octt
3 mesi fa • •

miss_demeanour
3 mesi fa • •

aeharding
3 mesi fa • •

elbucho
3 mesi fa • •

VBB
3 mesi fa • •

bl4kers
3 mesi fa • •

geneva_convenience
3 mesi fa • •

geneva_convenience
3 mesi fa • •

als
3 mesi fa • •