sovietknuckles [they/them]

You could not live with your own OS. Where did that bring you?

Back to me

Concern trolling about the legality of discussing piracy is just a distraction. Their goal is to serve ads on their site, and removing all references to piracy is a step towards that.

“Hey, it’s totally cool that Microsoft GitHub blocked access to one of the repositories in the very center of the xz backdoor saga,” Michal Woźniak, a white hat hacker who was part of a team that discovered DRM in a Polish train earlier this year wrote on Mastodon. “It’s not like a bunch of people are scrambling to try to make sense of all the right now, or that specific commits got linked to directly from media and blogposts and the like. Cool, cool.”

Security teams that break stuff to mitigate risk and call it fixed is exactly what Linus's Do No Harm plea is about.

Edit: It's still disabled

Access to this repository has been disabled by GitHub Staff due to a violation of GitHub's terms of service.

They're paying for their own lawyer. Support them at https://www.patreon.com/yuzuteam]

Edit: They're not fighting it, don't donate

It used to be called chapo.chat until a poll came up to change the name. IMO keeping it named chapo.chat would be better for name recognition, since Hexbear began in 2020 as a lifeboat from r/ChapoTrapHouse when reddit banned it for supporting John Brown's violence against slave owners

They're not risking legal troubles unless they receive and don't comply with a DMCA takedown request. Like I said elsewhere, this is about making their site friendly to advertisers.

If I run apt install firefox, I expect a deb, not a snap

Besides having their community migrate to Lemmy, the thing moderators can do that impacts reddit the most is making their sub NSFW, because

1. Reddit gets no ad revenue from NSFW subs, and

2. NSFW subs will be excluded from their new $60m/year AI training deal.

Rocky Linux's latest response to RHEL shenanigans is particularly cool. Since RHEL made the source code unavailable for packages, Rocky Linux now bases their RPMs on source code scraped from RHEL container images where the source code is still included

alias untar='tar -xvf'

alias untargz='tar -xvzf'

alias untarxz='tar -xf'

Modern tar handles all of those with tar xf

Edit: Nvm, figured it out

Face unlock on the Pixel 8 doesn’t compromise on security.

Try saying that after a cop unlocks your phone by holding it up to your face (legal btw)

"Thanks, I'll add a note to make a schedule"

makes schedule never

I just SSH

The author seems to be upset that a Google accessory doesn't work with a non-Google phone, because they expect Android to just mean Android. If you don't want to be locked into Google hardware, buy an Android phone from literally anyone except Google

Is it wrong to pirate movies [...] and load onto my Plex server?

no

For anyone on Linux: teams-for-linux is an unofficial client that works way better than the official client. It's also in AUR

Yes Facebook is using your 2FA phone number to target you with ads (from 2018, back when phones were still sometimes used for 2FA)

Signal is much better than Telegram in terms of privacy. Do people find Telegram more convenient?

E.g. as an user there is absolutely no reason to use Chrome instead

What do you mean instead? Edge is a Chromium rebrand

Please try again.

Reported for being a bot

Sort of. 7z x on a .tar.gz (or .tar.xz) gives you a .tar. If you don't mind running 7z x again on that tar, it works

Stepping outside my bedroom would get me back to the office, since my living room is the office

Tying down my trash can

Climate change solved

Starting in Android 15, radio vendors will be able to add support for Android’s new location privacy HAL, which can tell the radio not to share location data for any non-emergency requests.

A request not to share it is not control, it's just a request. So any law enforcement seeking your location would receive it anyway

Rust is so brief it's not even listed I can't read

Startpage (has Google search results) or Google with private browsing haven't given me the new AI suggestions so far

Firefox Beta is for anyone who wants to use a version 1 month ahead of the latest stable Firefox version, and AFAIK it doesn't have more telemetry than stable Firefox versions.

Regardless, you can disable telemetry and studies by setting some preferences in about:config (or a user.js file):

::: spoiler Preferences to set Source: https://github.com/arkenfox/user.js/blob/fd72683abe15/user.js#L131-L175

datareporting.policy.dataSubmissionEnabled | false datareporting.healthreport.uploadEnabled | false toolkit.telemetry.unified | false toolkit.telemetry.enabled | false toolkit.telemetry.server | data:, toolkit.telemetry.archive.enabled | false toolkit.telemetry.newProfilePing.enabled | false toolkit.telemetry.shutdownPingSender.enabled | false toolkit.telemetry.updatePing.enabled | false toolkit.telemetry.bhrPing.enabled | false toolkit.telemetry.firstShutdownPing.enabled | false toolkit.telemetry.coverage.opt-out | true toolkit.coverage.opt-out | true toolkit.coverage.endpoint.base | browser.ping-centre.telemetry | false browser.newtabpage.activity-stream.feeds.telemetry | false browser.newtabpage.activity-stream.telemetry | false app.shield.optoutstudies.enabled | false app.normandy.enabled | false app.normandy.api_url | :::

How do they expect to serve ads to people with that abysmal uptime that they have.

The probably see it differently, that their uptime is limited by their funding, and additional revenue would help uptime.

Maybe it will maybe they'll be financially successful but I bet they're probably also going to get defederated and therefore not platform successful.

The current logic I've seen about why instances continue to federate with LemmyWorld is that they're "too big to fail", the same logic applied to Threads, and I don't see ads changing that. If Threads uses a more PR-friendly way of running ads when they inevitably do, maybe LemmyWorld will copy whatever ad-serving method that is.

[...] and that's probably just from one person from hexbear who's pissed at them, [...]

You probably saw someone else say this, rather than making it up yourself, but Hexbear does not DOS anyone, please don't repeat misinformation

[...] it sounds like you're arguing that the downtime is because of massive user registrations and not from an attack like they said themselves [...]

I have no idea where their downtime is from. If it is DOS-related, though, they would protect against it using a DDOS protection service like CloudFlare, which costs $$$

Lemmy.world hasn't done anything to suggest they would be a significant privacy and security risk to users, at least not yet

They have, though. The LemmyWorld admins doxxed a user who they believed (incorrectly) to be Hexbear admin CARCOSA@hexbear.net. Source: https://lemmy.dbzer0.com/comment/1754850

[...], pushing ads to federated servers or collecting and selling user data would absolutely change that I guarantee it.

We'll see, but the larger they grow, the more permanent they get, and ads only affects that so much.

I didn't and won't go as far to accuse the instance owners themselves of being behind the attack but I won't say it isn't a user from Hexbear because nether you or I can prove that it isn't.

Hexbear is not more suspect than other instances, and there is no reason to name-drop Hexbear, alone, in particular. If they're being DOSed, then whoever is responsible is most likely involved in a community that has a culture of DOSing in general, like a Chan, maybe the same one that has actively been responsible for vandalizing Lemmy instances.

Your employer might use MS Authenticator but still let you do call or SMS 2FA. If you use a VOIP number, it won't be vulnerable to SIM card swapping attacks.

Nitter Redirect because Twitter makes you log in if you're just trying to browse.

For example, if you have Nitter Redirect and go to https://twitter.com/DrLongissimus/status/1474279234239619087 , it will redirect you to https://nitter.net/DrLongissimus/status/1474279234239619087

_, _, _ = unused1, unused2, unused3

Aurora users unaffected

The writers and actors are on strike right now, and if you pay for media before their strike is over, it makes it easier for Hollywood to profit off existing media, ignore the writers and actors, and starve the writers and actors out.

If you want to support writers and actors while they are on strike, so that Hollywood folds first, consider donating to

• WGAE members' strike fund

• WGA Solidarity Assistance Fund (supports both East and West)

• Food and practical support for their picket lines

SMS auth is going away,

OP is looking for an alternative to MS Authenticator. If this works as an alternative temporarily, they may still consider it worth it.

[I]t is not considered secure in the last few environments I have worked in

Yes, SMS 2FA is usually not secure due being vulnerable to SIM card swapping attacks, that's why I explicitly recommended using a VOIP number, which would not be vulnerable to SIM card swapping attacks.

Manjaro is training wheels except when it's time to take them off you realize they're super-glued in place

Agreed

I dont block this instance bc of the number of c on it, for now,

Might as well unblock Threads for the same reason