I can personally vouch for how toxic the Discord server and its moderators/admins are. Went there for support (Hyprland was crashing on startup on AMD, sway worked fine), and was told something along the lines of "if you can't figure this out you're stupid and you should stop using Linux". Figured out the issue on my own and stopped using and recommending Hyprland after that.
As if iMessage, the platform that requires hardware from a specific company, is much better.
Since the EFI partition is unencrypted, physical access would do the trick here too, even with every firmware/software security measure.
You’ve read your last complimentary article this month.
I haven't even read a wire article this year.
Your iPhone 13 syncs slower over USB because Apple decided to stay on Lightning connectors, which use USB 2.0 on the other end. Although FireWire was faster back when it co-existed with USB, the USB standard has surpassed it a long time ago with more power, faster speeds, and better physical connectors.
o7
This is a very rushed update. SteamVR on Windows will be lacking some features a lot of people got used to, but it runs. (Main one I ran into so far is screenshot management, but a lot of the big picture mode UI is not accessible due to a controller being required to push buttons)
SteamVR on Linux however, is a complete mess. It was also a mess on SteamVR 1.x, but 2.0 broke so many things. Launching any of the included apps such as room setup, changing settings, taking screenshots. I really hope they add the last 1.x version as an update branch for compatibility reasons, 2.0 is simply not ready on Linux.
Also, good luck everyone on the keyboard. It's supposed to have support for using multiple controllers, but it has been dropping and duplicating keypresses for me.
KDE Connect, and if needed, ntfy.sh.
Ah yes, because it's that difficult to spoof a new PC. You can run a tool similar to a kernel level anti cheat "ban bypass", run the game, and cost the developer up to 20 cents. With a relatively simple script, this can be done many times per hour on a single PC, easily racking up cost for the developers.
This is a bad idea, no matter how you implement it. If it goes through, it will be abused.
NordPass is completely incorrect on the "it makes a password easier to "crack" thing.
I absolutely don't recommend using emojis in your password, as it is far too easy to get locked out. However, a password containing an emoji is significantly harder to crack.
Hashing is a process used to calculate a large number based on some input data. If the input is the same, the output is the same. If the input differs just slightly, the output is completely different. This process is mathematically irreversible. Since this (and other techniques) is often used for passwords, to "crack"/bruteforce a password, the attacker has to go through every possible combination of input data, calculate the hash, and check if the hash is the same as the password hash.
To make the process of bruteforcing a hash quicker, an attacker often makes assumptions about the input data. If they know a password contains 8 characters, and only lowercase letters, this massively narrows down the amount of passwords that need to be hashed and checked. If they know the password contains someones birth year, that too reduces the time to bruteforce a password.
The more possible characters you have per position in your password, the longer it will take to bruteforce. An 8 character password with just lowercase letters has 208.827.064.576 possible combinations. This sounds like a lot, but it's often bruteforced rather quickly. Adding uppercase letters and numbers to that, we're already at 218.340.105.584.896 possible combinations. That's ~1000x more combinations, and that's for 8 characters. It's the difference between bruteforcing taking a day, and taking 1000 days. (Do note an 8 characters lowercase password probably only takes like a few seconds to minutes, not a full day.)
According to https://emojipedia.org/stats there are 3664 different emojis. Lets say we create an 8 emoji password. (some emojis aren't one character internally, the same principle still applies.) Just 8 completely randomly chosen emojis. That password would have 32.482.071.647.592.311.234.920.185.856 different possible combinations. That is about 148.768.232.755.857 times more combinations than an 8 character uppercase+lowercase+numbers password. That is the difference between bruteforcing taking a day or taking 407584199331 years.
The same things as non-emoji passwords still apply, you can make assumptions about which emojis are used. People aren't entirely random, so chances are higher they used some of the more common emojis. However, that is similar to prioritizing the letter "e" because it is more common. Yes, it'll probably reduce the time taken to bruteforce a bunch of passwords, but it's not set in stone that every password will even contain the letter "e".
Again, due to the potential of breaking things, locking yourself out, etc. I DO NOT recommend using emojis. Use a password manager with longer passwords.
However, including an emoji in your password makes it significantly more difficult to bruteforce. As the assumption that the characters in your password are letters, numbers, and symbols no longer holds, which drastically increases the possible number of combinations.
iirc NPxSP was getting messy internally, the author went and rewrote a lot of things
(Not so) fun fact, a lot of Windows viruses work under Wine on Linux. If you have ransomware bundled with your pirated media, it will likely also encrypt your Linux files.
Use Bottles as a Flatpak, isolate all your applications from each other and from your host system.
WireMin is a scam, unable to deliver on their promises. I already explained this on one of the previous ads that was posted: https://lemmy.deadca.de/comment/599111
Please use FOSS decentralized software, such as Matrix.
WireMin, as far as I can tell, is not open source. There's no way to prove that any of their claims are actually true. Plenty of messaging apps have claimed to be "decentralized" and "end to end encrypted", but those have been false claims a lot of the time.
I would suggest you look into Matrix and XMPP, which are actually decentralized protocols rather than a single closed source app. Since they're open protocols, there's actual proof of them being decentralized and end-to-end-encrypted.
Reading through the WireMin privacy policy and ToS, they are making several impossible claims, such as:
"No user information will be provided to us, not a single bit."
As a somewhat tech-savy Matrix user, I can already tell you there's literally no way for them to not receive user information, simply by having an app on the app or play store, user information gets sent to them for each download. Many functions in the app also cannot work without a publicly accessible server. Things like notifications, or even receiving any messages at all while the client device is behind NAT.
They even back down on their own statements in that same privacy policy:
"WireMin collects minimum device information, such as version number, platform, etc."
And they clearly say a push notification token is obtained, which requires server infrastructure to use:
"Occasionally for WireMin App on mobile devices, an additional device notification token (e.g. iOS devices) may be collected, to enable push notifications. Again, that information is collected without exposing user identity or the device's IP which eliminates the possibility of user tracking."
While also claiming it is collected "without exposing user identity or the device's IP", which is impossible to do. (iirc) The IP protocol requires source and destination IP addresses to be known on both sides (even if I'm misremembering and it's not the IP protocol, TCP still does).
Although I have not dug through the app, to figure out how it works internally, I can assure you it is not "decentralized", and will go down or at the very least lack basic features as soon as their servers are shut off. Them lying about such a "large" aspect of their platform also makes me heavily question the "E2EE" claim.
Platforms such as Matrix or XMPP solve most of the issues I noted here by having decentralized servers, but ""centralized"" clients (clients only connect to one server). If any one server goes down, the clients under that server are affected, but the rest of the servers (and thus the rest of the network) is not affected.
They tried that, it's called UWP. A lot of programs don't want to be distributed through the microsoft store though, forcing them to use "old" .exe's
The only build is an aab file. This is a Play Store bundle file, not an APK, so not directly installable in Android without the Google Play Store.
The only build being a Google Play release also indicates that non-foss libraries were likely included, such as the FCM libraries, as is common for GPlay releases of otherwise FOSS projects.
As far as I'm concerned, Element X for Android is not available yet, unless either building from source (with modifications to included libraries), or by using a non-FOSS version from GPlay.
Most malware is written for Windows, especially when it's distributed as a Windows executable. (Almost) no Windows malware targets Wine specifically. However, Wine on its own is not a sandboxing tool, and Windows ransomware will ruin your day.
Bottles does two things for security:
By separating wineprefixes, as long as the host filesystem is not directly exposed (which iirc is default for bottles), any malware not written with Wine in mind will only affect its own "bottle".
By being a flatpak, even if some Windows malware specifically targets Wine, it would still have to escape the flatpak sandbox for elevated permissions. If the bottles flatpak has no access to personal files, "Wine-aware" malware won't either.
Although malware can still do damage, even in its own sandbox. For example, botnet type malware would still function. The host system is "safe", but the damage can still be done externally. Usually application-defined "autostarting" of applications is broken under Wine (iirc), which means all non "Wine-aware" malware will only start when an infected windows application is started in bottles.
Any sandbox will eventually be escaped, and malware sophisticated enough will be able to get access to everything on the host system. The chances of running into malware like this in the wild are extremely small.
For somewhat more realistic numbers:
According to minerstat.com, an NVidia RTX 4090 has a hashrate of 118.07MH/s. This is 118.07 Megahashes per second, or 118.070.000 hashes per second. For a password with only 8 lowercase letters (208.827.064.576 combinations), it would take an RTX 4090 approximately 1769 seconds (or ~30 minutes) to go through all possible combinations. For an 8 character upper+lower+numbers password (218340105584896 combinations) it would take 1849243 seconds, or 21.4 days.
For an 8 emoji password (32482071647592311234920185856 combinations), it would take 275.108.593.610.504.896.512 seconds, or 8.723.636.276.335 years.
Lets say a magic prediction algorithm reduces the number of possible combinations in each password to 1 out of every 1 million previously possible combinations. 8 lowercase letters would be cracked instantly, while an 8 emoji password would still take 8.723.636 years.
The linux binary is being used.
Try Proton. Currently, Proton is much more developed than the Linux support for many game engines.
That's, very odd. Just watched the bit about TP2 in the video, and I'm getting nowhere near that on my Steam Deck (non-oled).
Setting everything to low, and FSR performance, it looks awful. There's very obvious upscaling artifacting, especially during motion. Performance is playable at about 30-40 fps, except in the "starting hub" of the game, where performance can dip to 10fps at times (although no real gameplay occurs there).
With everything being set so low, LODs are clearly visible, even on the small screen. Gaps in signs, thin walls, and stairs are visible from ~5 in game meters away.
On the settings they show in the video, with a fresh save, I get similar numbers in the first couple minutes of the game, but FPS tanks after that. On a save further into the game, I'm getting maybe 20fps (50 when staring at the floor).
The game is still very playable on the lowest settings, and if you're into puzzle games like The Talos Principle, it's still a good experience. I'm not normally one to stream my games from my PC, but The Talos Principle 2 is just a better experience with more powerful hardware.
Please, don't recommend Ubuntu. It actively gets in your way, even as a new user. Something like https://distrochooser.de/ could help OP figure out what distro works best for them.
Android is a dead end for FOSS in the future, but moving from one corporate owned semi-proprietary OS to another doesn't solve anything.
Do NOT click the link. Instead, go to google.com yourself, go to your account settings, and "check activity". If there's anything suspicious (like an attempted login from another country), reset password and ensure 2FA is enabled. Otherwise, you can safely ignore/delete the email. (But still enable 2FA for better protection)
Most "standard" messaging apps (that includes signal, telegram) use the "OS provided" push service. On Android, they use firebase cloud messaging, a component of google play services.
Degoogled Android means not having any notifications, unless the app supports UnifiedPush, runs in the background 24/7 (which drains battery), or runs in the background occasionally (which delays notifications).
If the app runs in the background occasionaly, you can "burden" the people on the other side by being slow to respond.
Currently on Phosh on postamarketOS. Would've loved to use Plasma mobile but it is very unstable.
What difference does it make updating the screen 75 times per second if you're only getting 25 different images per second? The OLED screen (iirc) doesn't visually change during every screen refresh (if the displayed frame is the same). Limiting to 25/50/75hz would have zero visual difference at 25fps, but would draw more power at higher refresh rates.
Depends on how it's implemented. Anyone using a "media proxy" will see their discord bridged media probably fail to load (outside of possible caches) after a day. Anyone who has their bridge configured to reupload discord media to their homeserver should see no change.
As a 3-month user of WireMin, I am quite familiar with the ‘Spaces’ feature; it is definitely their standout feature. Here are a couple of things you can do in the WireMin Space: *proceeds to list off features*
This is not a review of WireMin, this is blatant advertising. Advertising of a service that is a scam.
Steam Link doesn't work on Linux. SteamVR, ALVR, WiVRN, and Monado work under Linux.There's more headsets than the Quest.
It really depends how the release turns out. Eye tracking is often used in social VR games like VRChat, and it can help increase peformance, but that often requires setup. The other "features" are not standard or completely lacking in PC VR, like "headset feedback" or adaptive triggers. These wouldn't be used in any games even if the hardware/software was capable of it.
Compared to the Valve Index, the PSVR2 has a higher screen resolution, OLED, no finger tracking (different controllers), and inside-out tracking instead of base station tracking. It looks like a really good option, at a really good price (compared to other "consumer" PC VR headets like the Index). From what I can tell, you're not really "missing" any major hardware features when using PSVR2 on a PC compared to an Index (depends on implementation, will be obvious at release). Although the lack of eye tracking when the hardware is capable is kind of a bummer.
Wait this one out for initial reviews, but if those are good, the PSVR2 seems like a very good option for PC VR (Although only "casual", like playing games, social vr, etc. compared to "competitive" like very high level play at Beat Saber, shooters, etc).
Do note that this is just looking at PC VR exclusive headsets. "Standalone" headsets like the Meta Quest lineup offer similar VR hardware specs at a similar or lower cost. These come with the downside of having to "stream" from a PC rather than using raw display output (for games not natively supported on the headset). The privacy aspect of standalone headsets needs to be considered too. Most run a version of Android, which comes with just as much (or more) telemetry as an average Android smartphone.
As for being tethered, you get used to it pretty quickly. The main problem is that the cable is being used, and will break after some time. They are often expensive to replace, like on the Index. With standalone headsets, the cable is often USB-C and a lot cheaper to replace. I don't know how replacement cables for the PSVR2 are handled.
Afaik the bug was never present in a release. The developer who quit had to jump through a bunch of hoops, and treat it as a security issue, when it only affected people running the latest git commit.
Crackers often only patch out the DRM to redistribute a pirated copy of a game. If it is a game from a small studio, something like Goldberg is enough to "crack" the game, and it wouldn't remove any of the Unity telemetry.
The websocket API is being deprecated in 0.18.0 (next major release)
Although Unity and Epic are not related (other than both being companies that make a game engine), and Epic is not related to these Unity pricing changes, Epic has still done a lot of things "wrong". Especially for gaming on Linux. A lot of games that are currently unplayable under Linux is due to kernel-level (rootkit) anti-cheats. Being the creators of EAC, Epic has actively been harming the compatibility of games on Linux. Developers "can enable Proton support", but even Epic themselves in many of their own titles don't enable this.
They haven't pissed off the larger gaming industry to the point where everybody is moving off their platform/products, but they are still a greedy corporation. Remember the whole exclusives thing on the epic games store?
"Android" phones can sometimes have "close to mainline" Linux distributions flashed onto them. You can get some of those, used, for less than 100$.
A custom Android rom would provide you with a decent chunk of the freedom you want in a mobile device.
A phone specifically built for Linux, with as much as possible FLOSS firmware, will cost a lot more. The cheapest is probably the PinePhone.
(I can't believe I'm replying to a spam account) In case you can't read my linked comment:
It's not open source. There's no way to actually verify any of their claims.
As others pointed out: "Contact Us" with gmail, facebook, twitter, or instagram. Any company (or individual) remotely advocating for privacy would be using (semi-)private services, even when advertising their own alternative.
The terms of service / privacy policy includes:
WireMin establishes a self-organizing network only by a number of active instances of WireMin apps. WireMin, as a protocol, utilizes advanced security and time-tested cryptography to provide a private messaging tool and social network. All of those are achieved in a democratized network without relying on a cloud service or back-end server.
No single bit of user data will be collected. WireMin is not even capable of doing that.
No user information will be provided to us, not a single bit.
however, it also contains
WireMin collects minimum device information
and
Occasionally for WireMin App on mobile devices, an additional device notification token (e.g. iOS devices) may be collected, to enable push notifications. Again, that information is collected without exposing user identity or the device's IP which eliminates the possibility of user tracking.
It is impossible to not receive user information, and impossible to receive such notification token without knowing the device IP. User/device info gets provided to the app developers when someone downloads their app from the app store or play store. To actually use the push notification token, it requires server infrastructure. A push notification token is useless without having a centralized server to use it. Not having any servers means you can't use the token, and having the token spread across different servers to remain decentralized would be dangerous, as the token could be used to fake notifications from the app.
Added to that, the blatant spam and advertising that's happening in posts like these or comments under other posts related to chat applications. Your post is part quoted "update log" and part advertisement written as if it's a review.
And the reason you mentioned Ubuntu is "finicky" was explained above. It is not a good "just works" distro, there's much better options than Ubuntu.
It used to be (one of) the best "just works" distros, but is somehow one of the worst now. Outdated blogposts still recommend it, and Canonical still calls themselves the "most used" desktop distro. The alternatives are just better.
Although with most games, the accessibility options need to be there (even when they sometimes aren't), some games incorporate their movement mechanics into gameplay heavily. Take BONELAB for example. Great game, but simply impossible to play for some people due to the movement. Adding teleporting (or really any accessibility movement option) would simply ruin it though, as the entire game is based around physics based interactions, walking, running, jumping, climbing, etc.
The same "rumors" exist about Matrix. According to some, "a lot of metadata is unencrypted". While somewhat true, there's literally no way to be able to deliver a message from person A to person B without knowing who the message is from and who it's going to, especially on a decentralized platform. Most of the (not E2EE) metadata sent with an event in Matrix needs to be read by the homeserver, and thus can't be E2EE.
This person uses an 8GB mac, and tried to defend Apple in the debate, going as far as to say that Apple hardware is "not that expensive", and within 2 months regrets buying the 8gb mac.
They think Open Source is "overrated", insecure, and not important. They think Linux users are "normies" and fakers, Linux is not a desktop OS, and have explicitly stated "F*** LINUX".
That's a lot of terrible opinions in just 4 months, especially for someone who calls the internet "stupid", and supposedly doesn't have any education.
This is either a troll account, or someone with less than zero credibility considering their opinions and statements.