jokeyrhyme

joined 3 years ago
sorted by: new top controversial old
The Best Encrypted Messengers in 2024 in c/[email protected]
[–] [email protected] 4 points 2 weeks ago (1 children)

For disappearing messages to work, your conversation partner has to promise they won't take photos of their screen, and they have to promise to use an app that actually implements the feature instead of just pretending to, and the app developers have to promise to have implemented the code to delete a message when the service says it should

Is there actually a cryptographically-sound and physically-complete method for ensuring that a message is only legible for a temporary duration once it leaves your own device and is delivered to someone elses?

So let's say I wanna ping 1.1.1.1... every 5 seconds... forever. Alternatives? in c/[email protected]
[–] [email protected] 9 points 2 months ago* (last edited 2 months ago) (1 children)

Hmmm, is CloudFlare known for being a bad actor in terms of privacy?

Setting that aside, no matter what you pick, you'll be exposing your IP address, from which your ISP and/or general location may be derived

If you don't trust CloudFlare with that information then you basically cannot trust anyone else, so maybe you'd need to run your own service and ping that instead now that you're in a situation where you can only trust yourself 🤷

The other issue that comes to mind is that you're only testing reachability to one address, which means you could get a false negative where that address stops working but the rest of the internet is actually fine

What laptop do you use/recommend? in c/[email protected]
[–] [email protected] 5 points 3 months ago

Without being specific, I'd try to get something with firmware updates available on LVFS: https://fwupd.org/

And you might want to check for distribution specific notes on that model e.g.

If Wayland is more important to you than AI/ML/LLMs then you probably don't want anything with an nVidia GPU

X’s Premium users can no longer hide their blue checks in c/[email protected]
[–] [email protected] 24 points 4 months ago (1 children)

We need a verified check-mark for true wayland users :P

Wi-Fi connectivity issues resolved by dropping wpa_supplicant in favour of iwd in c/[email protected]
[–] [email protected] 1 points 4 months ago

I did actually do this already, separate from working on this issue, but can confirm the intermittent problems with the combination of wpa_supplicant and systemd-networkd

72
Wi-Fi connectivity issues resolved by dropping wpa_supplicant in favour of iwd (lemmy.ml)
 

My desktop PC is the only machine in the house having Wi-Fi connectivity issues (connects fine, but drops out randomly after a few minutes or sometimes a few hours)

I think wpa_supplicant is getting confused and thinks signal strength is poor (I have a Netgear mesh, but this seems increasingly common, so it's weird for that to be the issue)

I did pick up a TP-Link USB Wi-Fi adapter, but can reproduce the same connectivity issues

The fix was switching away from wpa_supplicant in favour of iwd, which seems rock solid in comparison

I'm sure there's a way to fix wpa_supplicant, but it's man pages only seem to list the options without actually describing what they do, which seems sort of poor considering how old the project is 🤷

Do you daily drive Wayland, if so since when, if not when will you? in c/[email protected]
[–] [email protected] 1 points 5 months ago (1 children)

I'm not an expert, but my understanding of the Global Shortcuts portal is that it's very much designed for the push-to-talk use case where an app is not focused but still receives button events for exactly the keys its interested in and no other keys: I think this would cause problems if an app requested every key (e.g. if the request was approved then no keys would work in every other app)

It'll be interesting to see how the remaining compatibility/accessibility issues are tackled, either in portals or in wayland protocols

Do you daily drive Wayland, if so since when, if not when will you? in c/[email protected]
[–] [email protected] 12 points 5 months ago (4 children)

There's a portal for Global Shortcuts: https://flatpak.github.io/xdg-desktop-portal/docs/doc-org.freedesktop.portal.GlobalShortcuts.html

KDE and Hyprland already implement it, and COSMIC seems likely to

On the app side, if we can get the major toolkits to adopt it, then hopefully that covers most actively-maintained apps (but it's unlikely to cover legacy apps): https://github.com/electron/electron/issues/38288

Firefox "tabs" in a tiling WM in c/[email protected]
[–] [email protected] 5 points 5 months ago

Gosh, I'm so fascinated by the concept of removing/hiding the tabs implementation from every app and relying 100% on the window manager to provide this

A response to the "Boycott Wayland" article in c/[email protected]
[–] [email protected] 12 points 9 months ago

Wayland breaks global hotkeys: I present to you: Hyprland (where you can get global hotkeys). Now, it is normally not allowed by design, as a security measure

Not disagreeing at all, but I'd like to add some information here to support your correction

There's a GlobalShortcuts portal ( https://flatpak.github.io/xdg-desktop-portal/docs/#gdbus-org.freedesktop.impl.portal.GlobalShortcuts ), and this is implemented for hyprland in xdg-desktop-portal-hyprland ( https://github.com/hyprwm/xdg-desktop-portal-hyprland/blob/b2fc1110963fa583ad5348a9dc0101bd58ceac7a/hyprland.portal#L3 )

So, technically, there is nothing in the wayland collection of protocols that supports global keyboard shortcuts, but (along with lots of other supporting functionality), this is addressed via the collection of portal APIs

As it happens, KDE already supports the GlobalShortcuts portal: https://invent.kde.org/plasma/xdg-desktop-portal-kde/-/blob/master/data/kde.portal#L3

Any desktop can provide an implementation of the GlobalShortcuts portal, and any app can adopt it as required (although if it's implemented within popular toolkits/frameworks, then app developers won't have to even think about it)

Here are related tracking issues:

*Permanently Deleted* in c/[email protected]
[–] [email protected] 9 points 10 months ago (2 children)

Proton emails are stored in an encrypted form that goes beyond the simple authentication that is part of the POP/IMAP specifications

Proton does have open-source bridges/proxies, so they aren't hiding these details from us

Perhaps Thunderbird could be enhanced to support the Proton features directly?

Most of us hate Microsoft, and yet many of us use VSCode in c/[email protected]
Quantum Resistance and the Signal Protocol in c/[email protected]
[–] [email protected] 2 points 11 months ago

EFF still recommend Signal (and others) for people fitting various risk profiles: https://ssd.eff.org/

162
Quantum Resistance and the Signal Protocol (signal.org)
submitted 11 months ago* (last edited 11 months ago) by [email protected] to c/[email protected]
20 comments fedilink
 

We believe that the key encapsulation mechanism we have selected, CRYSTALS-Kyber, is built on solid foundations, but to be safe we do not want to simply replace our existing elliptic curve cryptography foundations with a post-quantum public key cryptosystem. Instead, we are augmenting our existing cryptosystems such that an attacker must break both systems in order to compute the keys protecting people’s communications.

...

Our new protocol is already supported in the latest versions of Signal’s client applications and is in use for chats initiated after both sides of the chat are using the latest Signal software. In the coming months (after sufficient time has passed for everyone using Signal to update), we will disable X3DH for new chats and require PQXDH for all new chats. In parallel, we will roll out software updates to upgrade existing chats to this new protocol.

94
Migrating Arch Linux's packaging infrastructure to GitLab (about.gitlab.com)
302
Montana loses fight against youth climate activists in landmark ruling (arstechnica.com)
22
Rust fact vs. fiction: 5 Insights from Google's Rust journey in 2022 (opensource.googleblog.com)
 

Rumor 1: Rust takes more than 6 months to learn – Debunked !

...

Rumor 2: The Rust compiler is not as fast as people would like – Confirmed !

...

Rumor 3: Unsafe code and interop are always the biggest challenges – Debunked !

...

Rumor 4: Rust has amazing compiler error messages – Confirmed !

...

Rumor 5: Rust code is high quality – Confirmed! ...

1
Passkeys may not be for you, but they are safe and easy—here’s why (arstechnica.com)
 

cross-posted from: https://lemmy.ml/post/1073275

Great explainer / FAQ

I'll probably still use my Precursor and Yubikeys for the most part, but I'll definitely enable Passkeys wherever they are an option

1
Passkeys may not be for you, but they are safe and easy—here’s why (arstechnica.com)
 

Great explainer / FAQ

I'll probably still use my Precursor and Yubikeys for the most part, but I'll definitely enable Passkeys wherever they are an option

5
Google is activating their own Bluetooth-based tracking network (blog.google)
 

That’s why later this summer, we're launching a refreshed Find My Device experience that makes it easier than ever to locate your devices and belongings quickly and securely by ringing compatible devices or viewing their location on a map in the app – even when they’re offline. The new Find My Device network will harness over a billion Android devices across the world to help you locate your missing belongings like headphones, tracker tags, or even your phone via Bluetooth proximity.

This earlier announcement about a joint effort with Apple to work out how stop stalkers and other criminals from abusing these networks now makes a bit more sense: https://security.googleblog.com/2023/05/google-and-apple-lead-initiative-for.html

7
Bloatware pushes the Galaxy S23 Android OS to an incredible 60GB (arstechnica.com)
 

We can take a few guesses as to why things are so big. First, Samsung is notorious for having a shoddy software division that pumps out low-quality code. The company tends to change everything in Android just for change's sake, and it's hard to imagine those changes are very good.

...

Unlike the clean OSes you'd get from Google or Apple, Samsung sells space in its devices to the highest bidder via pre-installed crapware. A company like Facebook will buy a spot on Samsung's system partition, where it can get more intrusive system permissions that aren't granted to app store apps, letting it more effectively spy on users.

Urgh, it's so frustrating that Samsung is the leading Android manufacturer, the market is rewarding greed and incompetence

2
Google plans AirTag clone, will track devices with 3 billion Android phones (arstechnica.com)
 

Huh, I have mixed feeling about Google doing this

Yay that Apple isn't the only game in town for this functionality

But then it's this functionality in particular with all the horrible stalking that it facilitates

1
I'm very happy with the completion plugin that is part of mini.nvim (github.com)
 

I switched over to the completion plugin that is part of https://github.com/echasnovski/mini.nvim and I'm impressed with how suitable it is for my use case without any configuration

Sure, it's not as extensible, but it's so set-and-forget and still gives suggestions from LSP

4
How sustainable are fake meats? (Spoiler: much better than real meat/dairy) (arstechnica.com)
 

Indeed, when independent researchers at Johns Hopkins University decided to get the best estimates they could by combing through the published literature, they found that in the 11 life cycle analyses they turned up, the average greenhouse gas footprint from plant-based meats was just 7 percent of beef for an equivalent amount of protein. The plant-based products were also more climate-friendly than pork or chicken — although less strikingly so, with greenhouse gas emissions just 57 percent and 37 percent, respectively, of those for the actual meats.

Similarly, the Hopkins team found that producing plant-based meats used less water: 23 percent that of beef, 11 percent that of pork, and 24 percent that of chicken for the same amount of protein. There were big savings, too, for land, with the plant-based products using 2 percent that of beef, 18 percent that of pork, and 23 percent that of chicken for a given amount of protein. The saving of land is important because, if plant-based meats end up claiming a significant market share, the surplus land could be allowed to revert to forest or other natural vegetation; these store carbon dioxide from the atmosphere and contribute to biodiversity conservation. Other studies show that plant-based milks offer similar environmental benefits over cow’s milk.

...

Soy milk, for example, requires just 7 percent as much land and 4 percent as much water as real milk, while emitting only 31 percent as much greenhouse gas. Oat milk needs 8 percent of the land and 8 percent of the water, while releasing just 29 percent as much greenhouse gas. Even almond milk often regarded as a poor choice because almond orchards guzzle so much fresh water—uses just 59 percent as much water as real milk.

But not all plant-based milks deliver the same nutrient punch. While soy milk provides almost the same amount of protein as cow’s milk, almond milk provides only about 20 percent as much—an important consideration for some. On a per-unit-protein basis, therefore, almond milk actually generates more greenhouse gas and uses more water than cow’s milk.

view more: next ›