As you know, the improvements to the endgame are a big focus of our next 0.4.0 content update for Path of Exile 2. However, we realised that it might be better to introduce some of the mechanical changes to the endgame sooner than that. Next week, we are planning to release Patch 0.3.1 with major changes and improvements to the endgame. Watch the video below!
The video covers the broad strokes of the changes coming to the Endgame in 0.3.1, but there are other changes and details that will be important. Below we are covering some of the additional changes included in this patch.
Alchemy Orbs
With the introduction of tiered currency in 0.3.0, Alchemy Orbs became less valuable and had fewer uses. To give them more function and to smooth out the process of crafting your Maps, Alchemy Orbs can now be used on magic items. This will upgrade the magic item into a rare with 4 new random modifiers.
Towers and Tablets
As your tablets are now directly applied to your Maps, this means that you can now apply the content you desire to every single Map you run (assuming you have the tablet supply). However, the ceiling for the amount of content you can apply to a single Map has been lowered. Overall this results in a more streamlined and consistent experience, but in order to not have the ceiling come down too far, we've buffed the modifiers on Tablets. Generally the modifiers are approximately two to three times as powerful. Here's a few examples:
Collector's now has a value of 10% to 30% increased Rarity of Items found in your Maps (from 7% to 10%)
Teeming now has a value of 25% to 70% increased Magic Monsters (from 15% to 25%)
of Strongboxes now has a value of 50% to 100% increased chance for your Maps to contain Strongboxes (from 30% to 50%)
We have also added a few new modifiers:
of the Devoted - Area contains an additional Shrine
of the Antiquarian - Area contains an additional Strongbox
Crystallised - Area contains an additional Essence
Exiled - Area is inhabited by 1 additional Rogue Exile
Azmeri's - Area contains 1 additional Azmeri Spirit
Summoner's - Area contains an additional Summoning Circle
of the Summoning - Area has 25 to 50% increased chance to contain a Summoning Circle
And here's some other pieces of information to know about Tablets:
Unique tablets have their own individual number of uses
When using Tablets in the reforging bench, the resultant item will have the sum of the input tablets as its remaining number of uses. However this value cannot exceed the original maximum value
When in an inventory like your personal one or a stash, the number of uses remaining on each Tablet can be seen on the bottom right of its icon
Existing Tablets that have been applied to your Atlas will remain and you will not lose any value due to these changes
Map Size
Some Maps took considerably longer than others to navigate or complete, so we've reduced the size of the following Maps:
Augury
Bastille
Blooming Field
Channel
Epitaph
Fortress
Grimhaven
Hidden Grotto
Oasis
Penitentiary
Rupture
Savannah
Slick
Vaal City
Wetlands
Atlas Trees
As a result of changes such as every Map now containing a Boss, we've had to make some modifications to the Atlas Tree. For example, the Crystal Realm notable on the Map Boss Tree, which previously added an additional Essence to areas containing a Map Boss, now only applies to areas with Powerful Map Bosses. Note this results in effectively no change; it is the same amount of Essences before and after.
In general the Map Boss Tree applies to all Map Bosses, with only a select few notables now specifically applying to Maps with Powerful Map Bosses. For example, the Fit for a King notable applies to all Map Bosses.
Additionally you'll notice a number of other nodes changing throughout the core Atlas Tree to account for mechanical changes around Towers. We've tried to make sure these are kept approximately the same before and afterwards, so your Atlas Trees will remain the same.
Citadels
Citadels have had their spawn rate increased by 66%.
Other Improvements
Modifiers that cause the area to be covered in Chilled/Shocking/Ignited Ground now cause much less ground to be covered. At least 66% of the ground effects currently covering the ground will be removed, this value is higher on lower tier Waystones.
We have fixed a few problems where Map Boss difficulty was not applying to many multi-form Bosses, so a few of the Maps with Deadly Map Bosses will now be more difficult as a result. It was always pretty odd that the second and third phases of some of these Bosses had ten-times less life than the first phase, this was an unintentional mistake.
Alongside the changes mentioned above, the patch contains various improvements and fixes to a plethora of issues. All the details will be covered in the full patch notes, which we'll post as soon as we can. Stay tuned!
Call recording app Neon was one of the top-ranked iPhone apps, but was pulled offline after a security bug allowed any logged-in user to access the call recordings and transcripts of any other user.
WASHINGTON (AP) — Defense Secretary Pete Hegseth has summoned the military’s top officers — hundreds of generals and admirals — to a base in northern Virginia for a sudden meeting next week, according to three people familiar with the matter.
The directive did not offer a reason for the gathering Tuesday of senior commanders of the one-star rank or higher and their top advisers at the Marine Corps base in Quantico. The people, who described the move as unusual, were not authorized to publicly discuss the sensitive plans and spoke on condition of anonymity.
The Pentagon’s top spokesman, Sean Parnell, confirmed that Hegseth “will be addressing his senior military leaders early next week.”
Across the military, there are 800 generals and admirals of all ranks. Many command thousands of service members and are stationed across the world in more than a dozen countries and time zones.
The meeting, first reported by The Washington Post, comes on the heels of several unusual and unexplained actions that Hegseth has taken involving military leaders.
I can't imagine how career military officers let alone enlisted feel when they have to answer to this buffoon. This alcoholic domestic abuser represents everything they hate yet they are forced to show respect to him.
Hi there, In my search to learn a bit more about Linux, i came across this website called "OverTheWire", which teaches basic and some advanced concepts over SSH. It seems like a fun and engaging way to learn.
However, as a bit of a paranoid beginner when it comes to Linux and networking, i find myself worrying about the potential dangers of connecting to an untrusted network.
So, my questions are:
Does anyone have any experience with the website?
In the hypothetical case that I open an SSH connection to a compromised network, could that expose me to attacks? (Aside from obvious risks like downloading malicious files myself.)
I do not personally have experience with this website
Connecting to an SSH server with an SSH client is much like connecting to a webserver with a webbrowser. It is theoretically possible for bad things to happen, but automatic ("zero click") attacks of any kind are difficult to pull off when the software is up to date. Most bad things that happen come from the user doing it themselves, like downloading and running untrusted programs, entering your password on a phishing site, etc.
This is not necessary, given your host system is up to date.
Note that my answer to 2 is heavily oversimplified, but applies in this scenario of SSH to "OverTheWire".
Thank you, even if its simplified, the browser example was really helpful. So in summary, having software up to date and being aware of what you do, should in most cases be safe. I was asking just in case there was some configuration i should do before connecting. With browsing i know that if i use something like firefox and ublock, i should be safe from most malware unless i screw up pretty bad. I will probably research ssh a bit more, as how it works, but you put some fears away. Thank you again.
The main oversimplification is where browsers "just visit websites", SSH can be really powerful. You can send/receive files with scp, or even port forward with the right flags on ssh. If you stick to ssh user@host without extra flags, the only thing you're telling SSH to do is set up a text connection where your keyboard input gets sent, and some text is received (usually command output, like from a shell).
As long as you understand what you're asking SSH to do, there's little risk in connecting to a random server. If you scp a private document from your computer to another server, you've willingly sent it. If you ssh -R to port forward, you've initiated that. The server cannot simply tell your client to do anything it wants, you have to do this yourself.
Yes, it could expose you, if the remote side exploits your client. But that isn't really any different from connecting to their website with your browser client.
Hi. You could run your ssh-client on a virtual machine or find another solution to sandbox your client (e.g. firejail if you are on linux). Just for ssh, a very lightweight vm would cut it.
Microsoft has terminated the Israeli military’s access to technology it used to operate a powerful surveillance system that collected millions of Palestinian civilian phone calls made each day in Gaza and the West Bank, the Guardian can reveal.
Microsoft told Israeli officials late last week that Unit 8200, the military’s elite spy agency, had violated the company’s terms of service by storing the vast trove of surveillance data in its Azure cloud platform, sources familiar with the situation said.
The decision to cut off Unit 8200’s ability to use some of its technology results directly from an investigation published by the Guardian last month. It revealed how Azure was being used to store and process the trove of Palestinian communications in a mass surveillance programme.
In a joint investigation with the Israeli-Palestinian publication +972 Magazine and the Hebrew-language outlet Local Call, the Guardian revealed how Microsoft and Unit 8200 had worked together on a plan to move large volumes of sensitive intelligence material into Azure.
The project began after a meeting in 2021 between Microsoft’s chief executive, Satya Nadella, and the unit’s then commander, Yossi Sariel.
I do really think the smaller keyboards are cool, and i like that they wouldn't run into my mouse as much. But all my life I've had a numpad. I tried a keyboard without a numpad and lasted about 5 minutes before raging. How did you guys get used to it? Maybe I just need to get better at "top row numbering".
Then I've moved to a TKL (no numpad) keyboard: no pain at all, except (sometimes) when in need for Windows Alt-numpad sequences for special characters.
Then I've moved to a 68 keys split keyboard! And I love it, since I (almost perfectly) customised it for my needs.
And I'm now thinking to go to a 42-keys split keyboard... (see Piantor Pro)
It took me something like a month (whole August 2023) to get used to it, and I often change the layout (last time was past week) to adapt it to my needs. But it also took less than a month to see my (tiny, still) wrist pain disappear because of better hands positioning.
they're worried about that? It's a country in Europe. It's a war in Europe. These countries back Ukraine but to the minimum they believe they can do. Why wouldn't it at a minimum be a major failure of other European countries to fail the objective of Russia losing in Ukraine
NATO exists primarily to counter Russia and the Soviet Union. The European defense posture assumes America is an ally. Previously America has cut off intelligence sharing with Ukraine and that includes targeting data for missiles. America has also put restrictions on what Europe can do with weapons they've bought from America.
Then there's the fact that Biden willfully invited this invasion by suggesting Ukraine join NATO (with Biden himself previously saying publicly that that would be a red line for Putin) while also repeatedly stating America won't defend Ukraine if Russia does invade.
If Ukraine fails in it's defense, the one person I'd blame most would be Biden for being a scared timid old man slow walking aid. Trump would be number 2.
sure, there's the coup and some other things but my contention here is that without the nazis trying to start a civil war there wouldn't be separatists or an escalation.
Russian escalation came because Putin was feeling the pressure from Navalny's anti-corruption campaign and other domestic problems. His popularity was suffering and successful military operations had always improved his popularity in the past (as they do for most national leaders). Coupled that with his Imperialist ambitions and invading Ukraine seemed like a win/win to him. Domestic concerns influence Geopolitics more than geopolitical concerns do.
It's absolutely hilarious to me that people think that Navalny was ever some kind of a political force in Russia. The highest his party ever managed to reach was around 3% of the vote. He was a political nobody in Russia. Meanwhile, the fact that Ukrainian nationalists were committing atrocities against the people of Donbass actually did play a role in the decision of helping LPR and DPR liberate themselves. Funny how you trolls always screech about self determination, except when it goes against you narrative.
You say that like there was a serious risk of nuclear war. But the issue wasn't Ukraine, it was the rules based internation order that the US set up and benefitted from (despite also frequently breaking the rules)
The risk of nuclear war should never be dismissed. All it takes is one mistake or a single miscommunication and all bets are off. We are already in the most dangerous possible situation with Russia and the US having very little military dialogue, and the last non proliferation treaty expiring. The issue has of course always been the US hegemony, and the war in Ukraine is a proxy war that the west is fighting against Russia because it won't bend the knee.
The immediate issue is Russian Imperialism. US hegemony is only at play here in so far as it prevents Russian hegemony. That 2 Empires are having a pissing match should surprise no one.
Except that there is no immediate issue of Russian imperialism. The immediate issue is Russia responding to NATO encroaching on its borders. However, if you are afraid of being dominated by Russia, then you should know that Europeans are like the protagonist in a classic Greek tragedy enacting a self fulfilling prophecy. There is no realistic scenario where Russia can occupy Europe by military force. However, the destruction of European economy that's resulting from this war will absolutely ensure that Russia will be able to dominate Europe both politically and economically going forward. The Americans aren't there to protect you from Russian hegemony, they are actively cannibalizing Europe to prop up their own economy. The hollowed out husk will be discarded soon enough to fend for itself. Meanwhile, nationalist parties that have little qualms of patching relations up with Russia are already becoming the dominant political force in all major European countries. RN is the most popular party in France, AfD in Germany, and Reform in the UK. Europe is a geopolitical equivalent of captain Ahab.
Honestly, nations desperate to join an aggressive alliance that's responsible for death and destruction across the globe can get fucked. And they deserve everything that's coming to them.
An Alliance so aggressive that decades of peace lulled it into such deep complacency that they let their military capabilities atrophy? You're being a try-hard
An alliance that invaded Yugoslavia, and whose main sponsor has invaded Iraq, Libya, Syria, and Afghanistan, just to name a few victims. The fact that NATO was free to roam and pillage the world while ignoring Russia underlines the fact that Russia was not an actual threat. If it was, then NATO chuds would've been focusing on it rather than maundering around the globe.
Nice straw man, nobody said US bad, Russia good. What I said is that you made a false equivalence. The atrocities the US commits around the globe are unparalleled. Analyze the fact that China hasn't been at war since the 70s, and that it helps countries develop and improve their standard of living while the US bombs them and steals their resources. Analyze the fact that Russia has no problems having peaceful relations with all its neighbours in the east. Calling what you're doing here 'analysis' is the height of comedy.
We were talking about Europe so I apparently wasn't specific enough. Most countries in NATO let any capacity they had for large scale land wars wither after the cold war ended since they only saw conflict in small "police actions" in far away lands as being in their future. Things like Kosovo. And, to be fair, even the Russians (Putin aside) were confident that Europe was past large land wars too.
Rosatom and the Atomic Energy Organization of Iran have inked a new memorandum of understanding on the construction of a series of small nuclear power plants.
No, most of what OP posts is fine, like 99% of what is posted on Lemmy.ml. I'm a communist, I'm happy with communist perspectives. This, however, is something I had already seen circulating and had suspected it was false because it's out of character for the DPRK.
The DPRK can do nuclear war safely because afterwards they can just use Juche Necromancy on the whole world. So when you see the mushroom clouds just relax. You'll be waking up in Pyongyang soon.
Quite impressive choice of apps, usually when I look at screenshots of privacy enthusiasts they look more or less like my own phone, and with you I share 3, maybe 4 apps only
Accrescent: Store ~~run~~ (edit: advocated) by the GrapheneOS team for third-party apps
Aegis: 2FA TOTP code generator
AirGuard: Scans for persistent AirTags in the vicinity, notifies if I may be victim to AirTag tracking
AntennaPod: Podcast manager, also supports importing local folders of podcasts
AudioMonitor: Measure sound level
Binary Eye: Support for many types of 1D and 2D barcodes
ByeDPI: routes internet traffic through the DNS port to bypass certain types of filtering
Canvass: doodle app, useful for mid-conversation diagrams and clarifying things visually in the absence of pen and paper
ClassiCube: Minecraft Classic clone
Conversations: XMPP client
Editor: raw text editor
Elementary: periodic table
SimpleEmail: minimalist e-mail app that does not automatically fetch linked images. Refereshes in the background every 15 minutes and sends notifications without need for Play Services or equivalent
FakeStandby: for edge cases when I want something to keep running in the foreground, but don't want to keep the screen on
Feeder: RSS client
Fintunes: Jellyfin client optimized for music
FlorisBoard: customizable keyboard
Fruity Game: Suika but with MS-Paint art style
Graph 89: Graphing calculator emulator
Invizible: Tor and DNS client
Kiwix: Offline Wikipedia (you can download just the parts useful to you, e.g. medical articles without storage-hungry media files)
Lemuroid: GBA emulator
LocalSend: instant P2P filesharing over WLAN
Markor: notes app with markdown
Material Files: files app with SMB share support and various handy features
Molly: Alternative Signal client
Fossify Messages: I use it over the default messages app since it is easy to block numbers by pattern
Notally: notes app with nice checklists
Open Camera: as easy to use as the regular camera, but with a bunch more features below the surface
OpenContacts: saves contacts as individual .vcf files to a directory for easy backup and allows dropping unknown callers without bothering me with a notification
Organic Maps to be replaced with CoMaps later
OSS Document Scanner: best FOSS scanning app I've found so far. Includes auto-cropping (given enough contrast) and adjustable B&W filter to eliminate off-white background colors.
phyphox: view output of sensors like the barometer, magnetometer, accelerometer, etc.
PipePipe: NewPipe but better (except for the occasional memory leakage)
QDict & QuickDic: offline dictionaries and bilingual wordbooks
RadioDroid: IP radio client. Can tune in to international news, music, sports broadcasts
RHVoice: TTS app
RiMusic: NewPipe, but for ~~Spotify, etc.~~ YT Music
SecScanQR: QR scanner and generator with history, useful to save QR addresses for later use since I don't want to fill out forms or read documents on my phone
SuperTuxKart: the only [edit: other] game on my phone
Symphony: Music app with a slick UI
Trail Sense: Compass with various goodies useful for outdoor activities
Breezy Weather: weather app and homescreen widget with a slick UI
MicroMathematics: Math engine, but I never learned how to use it
Ahhh....I am of the generation that remembers when there were no calculators. When they started becoming available, yes they were quite expensive. All my teachers would say 'what do you think? You think you're just going to have a calculator in your pocket all the time?' Well, yes Mr Mizelle in engineering, I will be walking around with a calculator in my pocket that links to a satellite in outer fucking space.
Fossify Paint does the same thing without adding the IzzyOnDroid repo, I just happen to have Canvass since it was the first thing that showed up when I searched.
Honest question: I see a lot of people here use their mobile phones as a computer platform. I have a general uneasiness about doing so. Not throwing any shade whatsoever, I just feel there is too much out of my control on a mobile phone, for me to trust it more than I do. My general policy is not to use my phone as a mobile computing platform even tho I have a VPN installed and use Firefox as a browser.
My local network for instance. There is one pipe in and out. I can easily see what is coming in and what's going out and I can control that with the granularity of a gnat's ass. I know what my software is doing or not doing. I can allow or disallow anything I want. On a mobile phone, I feel that the control I have on my PC is not equal to the control I have on my phone.
How have you come to terms with what you can't control on your mobile phone?
On occasion, I do leave the compound, but it's usually to get staples I don't grow/produce on the farm. Rarely does that process need a mobile computing platform. (I guess that's what you're asking)
Touch grass? Not OP, but when I’m out of the house, it’s because I need to do something, so I’m barely on my phone except for navigation, the occasional text/call, and paying for stuff. Otherwise, I use my laptop most of the time (at home and at work).
I definitely agree with you on this. My pet theory is that phones have been getting uncomfortably big, at least from my perspective, since the average consumer is expecting it to serve as a computing and productivity platform, while all I want is a nice little digital Swiss army knife. I'm only logged into my messaging apps and personal email, and don't expect to do any sort of "productivity" on my phone. When my friends and colleagues assume I'm logged in to this-or-that on my phone, all I can think about is how afraid I would be if I were logged in to so many things on my personal phone. It's so much harder to inspect what's going on in the background of mobile devices.
One of the compromises I've had to accept is the closed, yet exploitable nature of the baseband and firmware. Also how much more spying it could do compared to any PC if an exploit were to get through. Compiling Coreboot and neutering the Intel ME taught me a lot about who's really in control - and how much control we all lose to smartphone manufacturers and telecom companies.
I run an older android version, no google apps, rooted, and use AFWall/AdAway. I'm sure it's not as secure with root and older software but I can mostly trust it to not send weird network packets etc.
Forgot to put that on my list earlier, it scans for nearby WiFi access points and returns the signal strength, band frequency, and various details about each.
Pixel 5, unfortunately a bit out of date since I'm putting off the repair of my 7a. Same app selection on the 7a though since I've maintained this as my backup.
That's how my GrapheneOS phone is zero proprietary apps in the main profile and then my own separate Google profile. Essentially get to carry two cell phones with one device.
What does maintaining a separate profile for Google stuff buy you? I'm familiar with GrapheneOS, but haven't internalized the separate profile thing yet.
Then when it's locked down it shuts down play services and apps to complete non functionality.
Go into system and create a new user. Set up that user exactly like you would a standard smart phone. And any apps you have on your main profile completely open source. That way it's 100℅ Google free
Got that part, but what throws me is, in order to install a Google app on that secondary "google" profile, don't you have to first install the Google app on the main profile so that you can then push it to the secondary profile?
Oh, I see. I must've misread a tutorial at some point then. I did not realize one could install an app directly into profile #2, I thought root had all the apps and then specific apps had to be pushed to the other profiles. Thanks for clarifying that.
There is a guy in YouTube who does this. Side of Burritos? He has Google play on his main profile and then has a degoogled account for the second profile and transfers all the play store apps to the second profile. (Essentially making it his main).
Pull down your notification bar twice. In other words expand it all the way. There is a small person Inside of a circle icon. That is how you can select the other profile. It's super fast and easy.
Then when you are done inside the profile. Hold the power button and select "Lock Out" and this will completely close down the second profile and put you back in the Main profile with the other completely shut down.
Downside is you wont get notifications in one area or the other from the opposing profile when it's not in use.
An alternative that is pretty secure too instead of profiles is to do the same thing in Private Space. This is found in the settings under the Security tab. This WILL get notifications to your main profile and when you shut down Private Space all apps stop completely including Play Services. But it's not as isolated as profiles
Wow, this is impressive. I had heard about profiles but never got into the detail and never really understood the benefit. So, a cool way of using this it to have a FOSS only space under the main admin profile and the build up a second "big brother" profile where I stack some annoying apps that in a way or another I'm forced to use like banking app and what's app. When the "big brother" profile is shut down, nobody tracks you. Would that be correct? If this is true I'm here asking myself why on earth people are not harnessing this more.
Yes, when you google profile is shut down.... It is completely isolated. You could install an application that is 100℅ malware and it would be completely closed down the moment you lock down that profile.
If you need what's app, I would either check your side profile a few times a day for messages OR you can stick What's App on the Private Space area of your FOSS profile so that it's Super easy to check. Private space works the same way in that when it's shut down..... The apps are 100℅ turned off including Play Services.
It still can't be done 100% unless you make significant sacrifices to the usefulness of your smartphone...there's plenty of really useful (and sometimes necessary) things with no FOSS or open source alternatives.
Not to mention drivers... many driver blobs are proprietary and if you can find an open source one, there is a chance it works partially or not at all. I have a spare phone and I've been hesitating between flashing either PostmarketOS (all FOSS drivers but without the android ecosystem) or LineageOS, or maybe both if I can achieve that.
...your modem runs it's own firmware with a lot of extremely shady behavior, and you can't touch that regardless of which OS you install. Even your SIM card can arbitrarily execute Java applets and fetch from the network without your command, but at least it's somewhat contained. Your modem though, it can do a lot without your control and people like Qualcomm have been caught doing nasty stuff with it (plus, of course, giving the US the data whenever they ask for it).
This is why people like Stallman and Snowden often talk about teaching users how to use libre software on their computers, but rather than pushing for the same with smartphones, they tell you to not touch these at all instead. They're fundamentally anti-privacy devices, built this way.
Of course I carry one, it's fairly hard to live without a phone nowadays, but we must be aware of the impossibility of fully containing the data harvesting they do.
I agree with you on all your points. I just wanted to add that there's openWRT, a linux distro for routers and embedded systems (never used it before and the router I use is not mine), maybe that can solve the router part, I may be wrong though.
I just ran the two apps side-by-side and barely found any differences other than some subtle UI changes. How exactly is it different? And how is Organic Maps being enshittified?
I haven't been keeping up with Organic Maps updates to see if they differ but I'd assume they're basically functionally the same, except for potentially Kayak results.
Of course, I don't mean speed, I meant the search format. On Google I can search for an address with the usual format of 123 Street, City. If I search that way on Organic/Co, it doesn't pop up results the same way. I just never understood it besides being an offline map for my reference.
I don't know about other countries but here in germany I just type the street and the number of the house and it takes me to it. (as in Street 123, City)
To be fair, I only have a few of my friends and some of my family on XMPP. I'm also guilty of having WhatsApp on my work phone for colleagues and the rest of my friends.
Last I tried RHVoice is was very unnatural sounding.
Sherpa-onnx is a much much more natural option. I personally use vits-piper-en_GB-southern_english_female-medium because I thought it sounded the most natural. You can also use Glados from Portal
In May, Hegseth ordered that the military cut 20% of its four-star general officers, directed an additional 10% cut from all general and flag officers across the force, and told the National Guard to shed 20% of its top positions.
In February, Hegseth fired Adm. Lisa Franchetti, the Navy's top officer, and Gen. James Slife, the Air Force's second highest officer, without explanation. He also relieved the military's top lawyers.
Since then, Hegseth has fired other military leaders without saying why. Most recently it was a general who led a military intelligence agency whose initial assessment of U.S. damage to Iranian nuclear sites in American strikes angered President Donald Trump.
Defense Secretary Pete Hegseth has summoned the military's top officers to a base in northern Virginia for a sudden meeting next week, according to two people familiar with the matter.
TLDR: the paper introduces the use of a Repository Planning Graph to overcome the planning and consistency problems that have prevented LLMs from generating complete, complex software projects.
The graph allows reliably generating codebases 3.9x larger at 36K lines of code with far more correct pass rate at 69.7% compared to mere 33.9% before. Replacing ambiguous natural language with a structured graph allows the LLM to plan and execute long-horizon tasks reliably and at scale.
Large language models excel at function- and file-level code generation, yet generating complete repositories from scratch remains a fundamental challenge.
Uefa could decide as early as next week whether to suspend Israel from its competitions, with the governing body facing growing pressure from inside and outside the game.
Reports on Thursday, initially in the Times, suggested a vote that would determine Israel’s participation in World Cup qualifying and that of Maccabi Tel Aviv in the Europa League could be held by Uefa’s executive committee before the international break begins on 6 October.
When I moved to Coreboot, I also elected to encrypt my /boot partition, which is decrypted by the GRUB payload of Coreboot. I mostly worked on this by trial-and-error, which resulted in the workflow:
GRUB unlocks /boot
Keyfile in /boot opens /
Partition for /boot is listed in /etc/crypttab, with another keyfile to unlock /boot again from within Linux
/boot is mounted via /etc/fstab
Steps 3 and 4 always seemed inelegant to me, but after doing systemd-analyze, I realized how much those steps consume when booting (9 sec).
My questions:
After GRUB unlocks /boot and boots into Linux proper, is there any way to access /boot without unlocking again?
Are the keys discarded when initramfs hands off to the main Linux system?
If GRUB supports encrypted /boot, was there a 'correct' way to set it up?
Or am I left with mounting /boot manually for kernel updates if I want to avoid steps 3 and 4?
After GRUB unlocks /boot and boots into Linux proper, is there any way to access /boot without unlocking again?
No. The "unlocking" of an encrypted partition is nothing more than setting up decryption. GRUB performs this for itself, loads the files it needs, and then runs the kernel. Since GRUB is not Linux, the decryption process is implemented differently, and there is no way to "hand over" the "unlocked" partition.
Are the keys discarded when initramfs hands off to the main Linux system?
As the fs in initramfs suggests, it is a separate filesystem, loaded in ram when initializing the system. This might contain key files, which can be used by the kernel to decrypt partitions during boot. After booting (pivoting root), the keyfiles are unloaded, like the rest of initramfs (afaik, though I can't directly find a source on this rn). (Simplified explanation) The actual keys are actively used by the kernel for decryption, and are not unloaded or "discarded", these are kept in memory.
If GRUB supports encrypted /boot, was there a 'correct' way to set it up?
Besides where you source your rootfs key from (in your case a file in /boot), the process you described is effectively how encrypted /boot setups work with GRUB.
Encryption is only as strong as the weakest link in the chain. If you want to encrypt your drive solely so a stolen laptop doesn't leak any data, the setup you have is perfectly acceptable (though for that, encrypted /boot is not necessary). For other threat models, having your rootfs key (presumably LUKS2) inside your encrypted /boot could significantly decrease security, as GRUB (afaik) only supports LUKS1.
Or am I left with mounting /boot manually for kernel updates if I want to avoid steps 3 and 4?
Yes, although you could create a hook for your package manager to mount /boot on kernel or initramfs regeneration. Generally, this is less reliable than automounting on startup, as that ensures any change to /boot is always made to the boot partition, not accidentally to a directory om your rootfs, even outside the package manager.
If you require it, there are "more secure" ways of booting than GRUB with encrypted /boot, like UKIs with secure boot (custom keys). If you only want to ensure a stolen laptop doesn't leak data, encrypted /boot is a hassle not worth setting up (besides the learning process itself).
Thanks for the explanation. And you're right - it's was a nice learning exercise and a "satisfying" stopgap while I figure out how to compile either Libreboot, which has a variant of GRUB patched with proper LUKS2 and Argon2 support, or TianoCore, which is rather involved and scantily documented for the old X230 hardware.
Senza nulla togliere ai farmaci, se vogliamo diminuirne l'uso, se ne prendiamo troppi e non vogliamo aggiungerne altri, due sostanze naturali, piacevoli, buone e, anzi, irresistibili potrebbero aiutarti moltissimo. Provare per credere
TLDR: the paper introduces the use of a Repository Planning Graph to overcome the planning and consistency problems that have prevented LLMs from generating complete, complex software projects.
The graph allows reliably generating codebases 3.9x larger at 36K lines of code with far more correct pass rate at 69.7% compared to mere 33.9% before. Replacing ambiguous natural language with a structured graph allows the LLM to plan and execute long-horizon tasks reliably and at scale.
Large language models excel at function- and file-level code generation, yet generating complete repositories from scratch remains a fundamental challenge.
g isn't the unit of weight, it's the unit of mass, the unit of weight is N(ewton) and depends on the gravity, only the mass of an object is always the same, not the weight. Your weight on sea level is higher than on the Mount Everest. This is one of the biggest fail in the imperial system, there isn't a difference of weight and mass and the cause of even deathly accidents.
Yeah. I'm over 40 years into the metric system and I keep making this mistake intuitively. I don't make it when doing calculations bit just when quick guessing.
Brits need to stop implementing inferior (though accessible) standards, then after abandoning them when realizing their mistake, make fun of others using the previous standard. Don't let anyone find out you used to call association football "soccer" to be distinct from rugby football or still measure some things in imperial stones.
Non-brits, this isn't directed at you lol. I know imperial measurements suck
Yes, but even those had changed to the SI system decades ago. Apart the US don't use even the same Imperial system of the british pirates, the units are different.
Imperial system not even make difference between weight and mass, it is the most outdated system worldwide and the cause of a lot of desastres with even victims, because due to calculation errors, inherent in this system.
For day to day life, weight and mass might as well be the same. I love science and astronomy but I'm not buying a pound of lunch meat at the deli counter to take into space.
Well, when I buy a pound of lunch meat in the EU, they give me 500 g of lunch meat, because this is what for us is a pound. The SI system are round clear and related numbers which make it easy to calculate, the Imperial system isn't, nothing to do with going in space or building a quantum computer, but simply calculating the amount of plants with a distance of 2 inches in a garden with 20 feets.
I grew up with metric and moved to an imperial country as an adult. I now have a different view of the systems and honestly prefer imperial. Hear me out.
Imperial organically evolved over centuries to better match the lived human experience. The major units used now are more useful to the average person. The fact they are not base 10 is due to the fact that the main uses for each aren't related in that way.
For temperature, 1 degree Fahrenheit is the minimum I can feel. 50 F is a middle temperature outdoors for many temperate climates: 0 F is very cold and 100 F is very hot. The temperature at which water boils or freezes at sea level is not as useful to my daily experience and the difference in a degree Celsius is too large.
I like inches, yards, and miles. I prefer ounces and pounds. Pints, quarts, and gallons now make more sense to me. I am not a scientist or engineer (who absolitely should use metric), but a guy trying to deal with weather, get places, and buy things to eat/drink.
Of course, if I learned an aircraft type was designed in imperial only, I wouldn't get on it. Metric has its purpose. It's just not as good for daily life.
You just used to use imperial system and thats why its convenient to you. If you used metric the whole life you would also feel it suits you. Its just the matter of remembering key temperatures and have a feeling of it. The key difference in metric is, you can do the conversion easily if you ever have to, but in the normal use its no different than imperial. If you feel (have memories related to) the unit, like 1kg - 1L of water, 0 celsius - water frozen, 1000L - 1m3. I tell you, if you used to use metric and have a feeling of it, you would never ever want to go back to imperial
To me, kilometers and miles are in a similar class; I don't have a reason to prefer one over the other. Same with kilos/pounds. Even though a kilo is more than double a pound, it's used to measure the same kinds of things. As with Centimeters/inches, quarts/liters, yards/meters.
Metric seems to do better at measuring very small things, or very precise things, but lacks middle measures that help with day to day life like Ounces and Feet. If there was a metric foot, like a quarter or third of a meter, it would be more useful. Same if there was a metric ounce, lets say 25 grams (an actual ounce is slightly over 28 grams).
I have a growing sense of optimism about the political situation in the United States. But it’s not necessarily because I’m more confident about the outcomes…
Mastodon has a concept called "featured statuses", which is a special collection attached to a Person actor.
[url=https://docs.joinmastodon.org/spec/activitypub/#featured]https://docs.joinmastodon.org/spec/activitypub/#featured[/url]
It wasn't readily k
Mastodon has a concept called "featured statuses", which is a special collection attached to a Person actor.
It wasn't readily know how this collection is updated and federated (not without code achaeology), but claire@social.sitedethib.com recently shared some additional info :smiley:
The actor itself will issue an Add activity targeting the collection with the status in object.
This activity is sent to all followers of the actor.
No activity is sent if the actor has no remote followers.
Every single browser sync solution requires some sort of storage at the company, something to keep in mind when it comes to privacy.
Yes, FF fanbois, even self-hosted Firefox sync server needs the Mozilla account verification server and it's ridiculously difficult to set it up compared to just self-hosting the data storage component.
But people in China certainly seem to think this is an example of AI. China Digital Times reports that it wasn’t just the same-sex image that was altered, but the distributor did also cut out some straight sex scenes from the film... As one user implies, the AI is a more sophisticated and “terrifying” form of censorship because smart viewers have figured out ways to get around obvious censorship or can tell the difference, but that’s much harder with AI. Here’s a smattering of some of the comments, sarcasm implied on the last one:
...in the future, we won’t even be able to tell if we’re watching the original film or not.
...This is nauseating because it not only interferes with the integrity of the plot, it disrespects the sexual orientation of the actors....
...Awesome! Next, let’s use one-click AI to re-release “Brokeback Mountain,” “God’s Own Country,” “Lan Yu,” and “Happy Together” as “restored” hetero romances...
Microsoft has terminated the Israeli military’s access to technology it used to operate a powerful surveillance system that collected millions of Palestinian civilian phone calls made each day in Gaza and the West Bank, the Guardian can reveal.
Microsoft told Israeli officials late last week that Unit 8200, the military’s elite spy agency, had violated the company’s terms of service by storing the vast trove of surveillance data in its Azure cloud platform, sources familiar with the situation said.
The decision to cut off Unit 8200’s ability to use some of its technology results directly from an investigation published by the Guardian last month. It revealed how Azure was being used to store and process the trove of Palestinian communications in a mass surveillance programme.
Ryan Walters, the state’s superintendent of public instruction, released a video address on Tuesday saying that “every Oklahoma high school will have a Turning Point USA chapter.”
“For far too long we have seen radical leftists with the teachers unions dominate classrooms and push woke indoctrination on our kids,” Walters said in the video posted to social media.
The state-mandated chapters of “Club America,” Turning Point’s high school program, will ensure students “understand American greatness” while enabling them to “engage in civic dialogue and have that open discussion,” said Walters.
State school superintendent Ryan Walters said public high schools across the state must partner with late activist Charlie Kirk's organization to counter "woke indoctrination."
I meant that this is the Achilles heels. A lot of us have it. It has the meta AI on it that we can't deactivated. It is EEE and GOS does a good job isolating it but still a non privacy app.
I mean bro, they aren't really defending Proton here but rather they are calling out childish behaviour. Since why should I be downvoted for using an app? I didn't even know Proton was so controversial up until now
Just because you don't agree to something doesn't mean you should try to make it unpleasant for the other person, you could of just called out Proton without encouraging people to grief me
Great, hating on people because they don't know something is surely the right thing to do. Just like how people beat children for making mistakes, they need to learn the hard way right?
Ah so now I'm orchestrating downvote bots at you? Let me tell you something, just because you would do something doesn't mean others will do the same thing. I am not you bro. Really it's hilarious how a minute ago you said I'm acting like a victim but now somehow everything is purely my fault
If you were to take a look you would see that in another comment here I was already considering switching to Tuta. And guess what that person didn't try to grief me
Also I don't have time to list every time everything wrong with Proton or other crappy company. It's all over the internet, use the search button as I already told you.
Never said it was, you don't need to. You are yet again missing the point. Hate on Proton all you like but why hate on me for the simple reason I was using an app that might be controversial. This setup is leagues ahead of a normal consumer setup
My take is that Proton CEO Andy Yen's pro-Trump comments were born out of naïvety, not the same mindset that plagues tech CEOs in the US. Combining that with Proton's benign actions since then, I think it's a good time to diversify, become familiar with alternatives like Tuta as you say, and make a backup plan should they enshittify, but don't rush to jump ship now.
What you mean? You do realise most of us degoogle to get away from American grasp on technology, what's the purpose of switching to Proton if there's services even more independent?
The problem is I have been using proton for years and I have 385 entries so switching to say Tuta would be a drag (unless there is an option to migrate, I haven't checked) Proton IIRC is also the cheaper of the two. Or would you say I should suck it up and make the switch?
I'm not sure, does managing two email accounts would be difficult for you? It wouldn't be too bad having one extra, having some accounts on a different mail might work for you, if one gets hacked you don't lose access to everything right away. Also you don't have to migrate all the entries right away, you can always just make new accounts on a new email provider, and if you do use password expiry in your pw manager you can migrate emails right then
I didn't say anything about the Trump tweet. I only mentioned the journalist comment, which there is more information an nuance to it than you allow for.
But you assume because I say one thing I must be your enemy. You call me names. You refer to me as a group instead of a person.
So clearly you are an island to yourself. I hope your relationships in real life are far more fruitful.
NanoGPT is more "no-logs" from what I understand buttt you can pay in XMR and have a dedicated "account" (you get a sign in link to keep safe) and run it under tor
In NanoGPT You also got TEE (Trusted Execution Environment) models which are more private/secure from my understanding. From GPT-OSS 120B TEE:
"TEE‑based AI models run their inference or training inside a Trusted Execution Environment (TEE), a hardware‑secured enclave that isolates code and data from the rest of the system. This provides data confidentiality, protects the model’s IP, enables cryptographic attestation of the exact model version, and satisfies regulatory privacy requirements, making AI services trustworthy and suitable for secure multi‑party or decentralized applications." One downside is that they are usually pretty expensive to run
KeePassDX, nice choice! I really wish I could have DX or XC on both phone and desktop. Love both but would prefer to donate to one. Wallet is unhappy but I really try to donate to all FOSS apps I use...
I do back it up with the rest of my stuff to an external hard drive, but that's... Like once in a year so could be better.
I have my keepass database file in my cloud that i use to sync it between phone and PC. I create a backup of all of my files on my PC + cloud folder once a year to an external hard drive. Better than nothing but probably would be better to do this more frequently 😄
I also empty my phone from time to time and move everything I want to keep to my PC (like photos).
Wait isn't that defeating the purpose of KeePass? I strictly use it as a local password manager (no cloud backups and such), since I thought that was the main spelling point
Or is the database file encrypted with a password? If not you might want to use something like VeraCrypt to encrypt and password protect the database files on the cloud
Didn't see this comment but: I trust enough my cloud provider + the database file is encrypted with the masterpassword you set for your keepass.
I also use this cloud to host my Joplin notes, which are also E2EE (joplin supports it) so even if my cloud provider would take a peek it's all encrypted.
You can of course. I think the selling point is that you control it and it's a single file that you can decide where you'll keep it, how you access it, and what app you use to interact with it.
I can copy, delete, move it all without needing a service for it. Can modify it offline and everything!
I don't host the file on a password manager dedicated cloud, it's my own cloud space with other files I have there as well. So the file is just in my cloud space, with other files, and i have a synced folder on my phone + pc and just access that cloud folder with the file from keepassXC on my PC and keepassDX on my phone 😀
For me keepass offered a single databae file that I can decide where and how I keep it. Also works offline because the cloud syncs folders and even without internet a version exists on my phones cloud folder (until it gets synced again with internet).
I had not heard of ubicloud, that's pretty cool! Thanks for the tip!
And sure:
I don't self host it, I got managed owncloud space from a domain and web host provider.
I manage my own VPS that I got from them but the cloudspace came extra with buying the domain + email services (I've managed email server at my job and no way in hell will I do that for myself, too much headache).
So basically, in short, I have a managed email + owncloud space (just 5gb, don't honestly need more) from a commercial provider and just use owncloud app on my phone and PC to sync folders on both. I keep my encrypted joplin notes and (encrypted by default) keepass database on this cloud. Owncloud takes care of syncing and I just use Joplin and KeePass on both devices and set them to use the files in owncloud folder. Never had an issue in 2 years with anything.
Technically my provider could scan my stuff, but they won't get anything out of joplin notes or keepass.
Your idea for a setup sounds way more private, but i think for my usecase I've been happy since it's so low effort and still does what I want it to do.
I have seen on lemmy people recommend syncthing (syncthing.net/) for keepass, which directly synchronizes a folder between devices without a middleman if you wanr. But everytime you want to sync you need to have both devices on for that as there is no automatic middleman that is always available. Maybe that could be done with a raspberry pi?
Anyway: you can easily set this up with proton if you already have proton cloud no?
BTW I find SimpleX is great for syncing between your phone and PC. I used it with multiple computers/profiles on GOS and just created an incognito group without history and with disappearing message and that's how I moved stuff like addresses and passwords to my PC. The app is also great for communication ofc
It's AMAZING, so many settings, and I use Orbot proxy (doesn't take VPN slot) and configure SimpleX to use it for that extra extra protection (and concurrently I use mullvadVPN for that extra extra extra protection)
Are those green mini icons an indication of a PWA shortcut?
I use the app Hermit to run isolated websites, usually as PWAs. It's replaced quite a few apps, but I've noticed that many companies are intentionally making their web experience shit so they force you to use invasive apps.
Anyway, it can create home icons for those sites, and they run separately (i.e. in your task switcher), so it works better than browser shortcuts.
I mean currently I only have protonpass and whatsapp from aurora so I'm chilling, everything else is from obtainium. But I'll try it out (last time I didn't understand how it works, idk If it's bugged for me but the apps I put in the private space stayed on my "desktop")
Some apps that you use are not safe. Aurora store doesnt send too much data to google but it doesnt verify app signatures which can lead to installing malicious apps, use normal play store instead which verifies app signatures (its also suggested to use by grapheneos devs). Whatsapp, collects data about you. Cromite, uses adblock plus which is really bad. Also here is another reason why cromite is bad:
“Cromite has very problematic changes included which substantially reduce privacy and security. It reduces security more than it improves it. For example, it includes the highly problematic Eyeo filtering engine from the company behind Acceptable Ads, Adblock Plus, etc. which took over the forked uBlock extension misleading people with the name pretending to be the uBlock Origin project among other extensions. Eyeo’s C++ code is low quality and has memory corruption issues… Cromite including the incredibly sketchy Eyeo content filtering engine and stuff like additional codecs goes against what we’re trying to achieve. We also don’t think the randomization-based anti-fingerprinting approach works, among other issues”.
Ah fuck, I use Cromite because I find vanadium PWA for the stuff I use are buggy and slow. I used to use brave for this purpose, should I go back? Damn I guess I will need to link this phone to my throwaway gmail account (which still has private data) WhatsApp I can't ditch due to family and Signalphobic friends
On grapheneos you should be using vanadium since its most secure browser on phone. On other android devices, use brave instead. Also if family and friends dont want to use signal but want to use whatsapp then uninstall whatsapp, one way or another they would have to either end up using sms or other form of contact
Hmm I might do that actually, I've been wanting to get rid of WhatsApp for a while now, I think I'm still gonna use a second browser (Brave now) for my PWAs, my threat model allows it
On the contrary if in the end everyone moves to SMS and normal calls wouldn't that actually be pretty bad? Since WhatsApp is E2EE (with the major flaw of default unencrypted backups which are shoved down your throat). But maybe it's not that big a deal since I assume most if not all of the people I'm talking to likely have unencrypted backups
"Casually reminds you thatIronfoxexists & it's a lot more "private" than most chromium-based browsers, & has ublock origin. (slow by default tho)
also while aurora store doesn't verifies signatures, is has Exodus integrated which dynamically analyses & warns about spyware, tracks and telemetry so you more caucious about the littered "free" apps...
Yes, ironfox is good too (i forgot to mention it) but on grapheneos you will want to end up using their browser
Avoid Gecko-based browsers like Firefox as they're currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn't have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android. This is despite the fact that Chromium semantic sandbox layer on Android is implemented via the OS isolatedProcess feature, which is a very easy to use boolean property for app service processes to provide strong isolation with only the ability to communicate with the app running them via the standard service API. Even in the desktop version, Firefox's sandbox is still substantially weaker (especially on Linux) and lacks full support for isolating sites from each other rather than only containing content as a whole. The sandbox has been gradually improving on the desktop but it isn't happening for their Android browser yet.
Also, having exodus integration in app downloader is good but not worth it for exchange of no signature verification, so it's better to just check it in browser instead or use their app to check trackers
I'm thinking if I need to use WhatsApp again I'll try to download it, connect to WhatsApp web on my laptop and then delete it from my phone. Idk if it'll work but it's worth a shot
I am, it's just that for some of my PWAs, they are unusable/buggy/slow on Vanadium. And lol I'm going around in circles. Do I reinstall Cromite now haha?
Don't! Your whatsapp session will expire over time & you gonna need to reinstall it on your phone. Ether install whatsapp on private space or, if you feel adventurous, selfhost a Matrix-Whatsapp bridge.
Alternatively, convince your socials to use smh foss & more reliable, Maybe telegram if they insist on mainstream, It got a foss client but telegram doesn't enable E2EE by default (Secret Chat).
Signal would be better for a mainstream secure communication as Telegram has its flaws, and E2EE is not enabled by default. It's also not available in channels.
WARNING: this reply have 2 ounces of opinion-like ""facts"", a pinch of logic that make 0 sense & a whole bottle of chunky post, Read, at your own warrenty...
Of course, signal, molly&unipush or even threema or anything more practical / security-audited is more worthy of your phone number and storing your data in an encrypted form, I'd recommend conversation or matrix even more so they don't require a phone number(but for some reason, they're more scarce in usage)
Since messaging apps have to do with, well, messaging people & socializing, going to a person that doesn't have your app & genteelly asks them to install an app is an inconvenience that people want to avoid...
Don't get me wrong, I'd spend an hour talking messaging apps their differencies & cons but, as far as I'm aware, most non-tech invested ppl would consider this "dead-time" and would rather already text on the "avaliable app"
So, instead, you'd preinstall "mainstream" apps to not even mention it and start texting instandly since you're usually expected to have it (pre)installed. (i remember whatsapp and fb-messanger being preinstalled on some vendors)
This or use imessage & make them question their existence 😀 Even on android
To the best of my knowledge, the top "mainstream" apps out there are: whatsapp, telegram, discord (yes, DiScOaRd), imessage and sadly, facebook messanger.
(I know signal is getting recognised in "mainstream" & getting more adoption, but for some reason, I don't see ppl installing it because it's not "that" viral to have enough contacts or it would go unoticed by them because "muh FBI and privacy controversies are too creepy" )
most ppl are aware of these apps and their mass adoptions so they wouldn't even bother and just get it done with or install the app already.
Out of these options only 2 are actually viable for secure & private messaging especially for Floss: Telegram, for being "transparent" & having it's source avaliable for security auditing. imessage: for being E2EE encrypted by default with The Manufactureᵀᴹ showing some dedication about the anonimity & security of the product.
Telegram don't E2EE by default, but you can just start a secret chat that would be private, at least they allowed for foss, third-party clients & made their own "proxy" while encoraging VPNs,
imessage can't be really called floss because the offical client isn't & is also gate-limited by The Manufactureᵀᴹ , but at least it has a foss unoffical client that still faily usable (with the compromise of needing MacOS "installed & certified" or paying for an access token.
Outside of this, there's really no scope for consideration, most messaging apps that made it to "mainstream" ether doesn't care about their users securities & would actively report anything big bros for " the general safety of the userbase" or be a hidden honeypot that collect dats & sell it to advertisers while lying about it. (even whatsapp that & think we're dumbies),
When one starts to pick for messaging applications, there's no "choice", "consideration" or even the qualities to think if it genually a good platform, you're left with only dedication to utilize a messaging app for what it offers & push your circle of people to join you there...
You may convince your friends, but you can't convince your coworker, team, boss, partner of a project, your online fellas or even your family memebers depending on their tech literacy.
OP didn't consider ditching whatsapp, instead, they considered methods to hinder whatsapp's privacy violations & telemetry, I'm not OP but, that's seemingly the case;
Even if they run whatsapp on an sandboxed, private space & use a 20 yr-old trash phone, running whatsapp at all on android is a risk since android has lots of APIs that provides device metadata that can be used to uniquely profile users & fingerprint them.
I can be wrong, but I see only 2 actions OP can do: 1) Utilize whatsapp web (& android vm to scan) to setup a bridging server / service (like matrix-bridge or beeper & make devices connect to it (port forward, local "vpn" or beeper) or, 2) Push their circule of people to use an another "mainstream" platform OP can trust...
Sometimes, having online conversation can be totally inconvenient or tiresome, not only because of whom, but how, this is one of them...
I don't like telegram at all, especially so with the latest policy change but, it's easier.
I see, But at this rate, you gonna always make sure whatsapp runs on a VPN AND behind a kill switch so it doesn't leak,
also maybe you're interested in using tailscale or netbird to skip the port forwarding / domain hassle so you can connect to your matrix server and use the bridge in minutes.
Securely connect to anything on the internet with Tailscale. Deploy a WireGuard®-based VPN to achieve point-to-point connectivity that enforces least privilege.
If you don't mind hardening firefox on android. You can try Firefox with uBlock. It give some small advantage compared to Brave like more filters list from uBlock, the element picker thing, and no brave, etc. The performance can be questionable though.
If you are keen on personal privacy, you might have come across Brave Browser. Brave is a Chromium-based browser that promises to deliver privacy with built-in ad-blocking and content-blocking protection.
Yes it is true. It have insecure sandbox but in your case it seem like you still use vanadium, if you only use Firefox for known website for the webapp. The insecure sandbox is not that big of a deal anymore. Still from a pure security point, Firefox is not great.
I think overall I have an edge with Brave, since I use it for NanoGPT webapp which I need to be fast or I'll kys because it was already slow AF on Vanadium so I assume on FF it will be a lot worse
Cromite, but I have switched to brave since, it has better fingerprinting protection, more updates, better security and better sandboxing and isolation. At least that's what Deepseek R1 with websearch has to say
I mean Gecko based browsers are actively recommended against on mobile. Chromium based browsers are recommended. Also I use mullvadVPN DNS based ad blocking, and I also have Brave that has built in ad blocking. Do yourself a favor and ditch adblock in favor of Ublock origin
People in the comments already have "Avoid Gecko-based browsers like Firefox as they’re currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn’t have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android."
I'm on the go right now. This is a quote for an old privacy guides snapshot, but when I was looking for it, I saw some articles from April saying that this was no longer true, so further searching needed when I get home
On Android, Firefox is still less secure than Chromium-based alternatives: Mozilla's engine, GeckoView, has yet to support site isolation or enable isolatedProcess.
Pro tip. If you go to an apps notification settings, then set a category to silenced and option called "minimize" should show up which allows the notification to be hidden from the notification bar, but shown in the drawer
Oh that's very cool, I didn't know that. Although I think it isn't the most useful for me since I don't have lockscreen notifications and I have all my apps on the home screen
Un terremoto politico-giudiziario scuote la Francia: Nicolas Sarkozy, ex presidente della Repubblica, è stato condannato a cinque anni di reclusione per associazione a delinquere nell’ambito del processo sui presunti finanziamenti libici alla campagna elettorale del 2007. Si tratta di una sentenza senza precedenti nella storia della Quinta Repubblica, che pone per la prima volta un ex capo di Stato francese a rischio di una lunga detenzione.
BrikoX
in reply to nearhat • • •