sovietknuckles [they/them]

@sovietknuckles [they/them]@hexbear.net
0 Post – 79 Comments
Joined 4 years ago

You could not live with your own OS. Where did that bring you?

tux-shining Back to me

Concern trolling about the legality of discussing piracy is just a distraction. Their goal is to serve ads on their site, and removing all references to piracy is a step towards that.

10 more...

“Hey, it’s totally cool that Microsoft GitHub blocked access to one of the repositories in the very center of the xz backdoor saga,” Michal Woźniak, a white hat hacker who was part of a team that discovered DRM in a Polish train earlier this year wrote on Mastodon. “It’s not like a bunch of people are scrambling to try to make sense of all the right now, or that specific commits got linked to directly from media and blogposts and the like. Cool, cool.”

Security teams that break stuff to mitigate risk and call it fixed is exactly what Linus's Do No Harm plea is about.

Edit: It's still disabled

Access to this repository has been disabled by GitHub Staff due to a violation of GitHub's terms of service.

3 more...

They're paying for their own lawyer. Support them at https://www.patreon.com/yuzuteam]

Edit: They're not fighting it, don't donate

1 more...

Wayland does not work with screen readers like Odilia or Orca. Because Wayland leaves blind users behind, it's a total non-starter.

7 more...

It used to be called chapo.chat until a poll came up to change the name. IMO keeping it named chapo.chat would be better for name recognition, since Hexbear began in 2020 as a lifeboat from r/ChapoTrapHouse when reddit banned it for supporting John Brown's violence against slave owners

They're not risking legal troubles unless they receive and don't comply with a DMCA takedown request. Like I said elsewhere, this is about making their site friendly to advertisers.

4 more...

If I run apt install firefox, I expect a deb, not a snap

Besides having their community migrate to Lemmy, the thing moderators can do that impacts reddit the most is making their sub NSFW, because

  1. Reddit gets no ad revenue from NSFW subs, and

  2. NSFW subs will be excluded from their new $60m/year AI training deal.

2 more...

alias untar='tar -xvf'

alias untargz='tar -xvzf'

alias untarxz='tar -xf'

Modern tar handles all of those with tar xf

2 more...

Rocky Linux's latest response to RHEL shenanigans is particularly cool. Since RHEL made the source code unavailable for packages, Rocky Linux now bases their RPMs on source code scraped from RHEL container images where the source code is still included

Edit: Nvm, figured it out

Face unlock on the Pixel 8 doesn’t compromise on security.

Try saying that after a cop unlocks your phone by holding it up to your face (legal btw)

5 more...

I just SSH

"Thanks, I'll add a note to make a schedule"

makes schedule never

NVIDIA's user-space components remain the same and are closed-source, but great to see the NVIDIA open-source kernel driver bits being mature enough to now be preferred over the proprietary ones on supported GPUs.

How is it open source? In the history of the whole repository, there were 11 merged PRs in 2022 (when the project began), and no merged PRs after, even though lots of PRs have been submitted since then. There has never been an issue-fixing PR merged, and no issues or PRs are submitted by the maintainers of the project.

All of their commits are tagged versions, none of which tell you in words what they did or what changed, it's clear that they still do their actual development internally, and the GitHub repository does not contain that incremental work. Because the commits are releases only, there are only 65 commits on the main branch from May 2022 to the latest commit/release 4 days ago.

:::spoiler so NVIDIA, torvalds-nvidia :::

The author seems to be upset that a Google accessory doesn't work with a non-Google phone, because they expect Android to just mean Android. If you don't want to be locked into Google hardware, buy an Android phone from literally anyone except Google

Is it wrong to pirate movies [...] and load onto my Plex server?

no

4 more...

For anyone on Linux: teams-for-linux is an unofficial client that works way better than the official client. It's also in AUR

duck-dance

Signal is much better than Telegram in terms of privacy. Do people find Telegram more convenient?

3 more...

Yes Facebook is using your 2FA phone number to target you with ads (from 2018, back when phones were still sometimes used for 2FA)

Stepping outside my bedroom would get me back to the office, since my living room is the office

Please try again.

Reported for being a bot

E.g. as an user there is absolutely no reason to use Chrome instead

What do you mean instead? Edge is a Chromium rebrand

1 more...

Sort of. 7z x on a .tar.gz (or .tar.xz) gives you a .tar. If you don't mind running 7z x again on that tar, it works

This is the plot to Golden Wind

Tying down my trash can

Climate change solved tofu-cool

Starting in Android 15, radio vendors will be able to add support for Android’s new location privacy HAL, which can tell the radio not to share location data for any non-emergency requests.

A request not to share it is not control, it's just a request. So any law enforcement seeking your location would receive it anyway

1 more...

Nope, drivers are platform-specific.

12 more...

Startpage (has Google search results) or Google with private browsing haven't given me the new AI suggestions so far

Rust is so brief it's not even listed I can't read

Manjaro is training wheels except when it's time to take them off you realize they're super-glued in place

Your employer might use MS Authenticator but still let you do call or SMS 2FA. If you use a VOIP number, it won't be vulnerable to SIM card swapping attacks.

1 more...

Agreed

Aurora users unaffected penguin-dance

1 more...

SMS auth is going away,

OP is looking for an alternative to MS Authenticator. If this works as an alternative temporarily, they may still consider it worth it.

[I]t is not considered secure in the last few environments I have worked in

Yes, SMS 2FA is usually not secure due being vulnerable to SIM card swapping attacks, that's why I explicitly recommended using a VOIP number, which would not be vulnerable to SIM card swapping attacks.

[...] it sounds like you're arguing that the downtime is because of massive user registrations and not from an attack like they said themselves [...]

I have no idea where their downtime is from. If it is DOS-related, though, they would protect against it using a DDOS protection service like CloudFlare, which costs $$$

Lemmy.world hasn't done anything to suggest they would be a significant privacy and security risk to users, at least not yet

They have, though. The LemmyWorld admins doxxed a user who they believed (incorrectly) to be Hexbear admin CARCOSA@hexbear.net. Source: https://lemmy.dbzer0.com/comment/1754850

[...], pushing ads to federated servers or collecting and selling user data would absolutely change that I guarantee it.

We'll see, but the larger they grow, the more permanent they get, and ads only affects that so much.

I didn't and won't go as far to accuse the instance owners themselves of being behind the attack but I won't say it isn't a user from Hexbear because nether you or I can prove that it isn't.

Hexbear is not more suspect than other instances, and there is no reason to name-drop Hexbear, alone, in particular. If they're being DOSed, then whoever is responsible is most likely involved in a community that has a culture of DOSing in general, like a Chan, maybe the same one that has actively been responsible for vandalizing Lemmy instances.

How do they expect to serve ads to people with that abysmal uptime that they have.

The probably see it differently, that their uptime is limited by their funding, and additional revenue would help uptime.

Maybe it will maybe they'll be financially successful but I bet they're probably also going to get defederated and therefore not platform successful.

The current logic I've seen about why instances continue to federate with LemmyWorld is that they're "too big to fail", the same logic applied to Threads, and I don't see ads changing that. If Threads uses a more PR-friendly way of running ads when they inevitably do, maybe LemmyWorld will copy whatever ad-serving method that is.

[...] and that's probably just from one person from hexbear who's pissed at them, [...]

You probably saw someone else say this, rather than making it up yourself, but Hexbear does not DOS anyone, please don't repeat misinformation

2 more...
_, _, _ = unused1, unused2, unused3