Microsoft's newest open-source contribution to the Linux kernel being proposed is..www.phoronix.com
Removed: firefox-136.0.1-1.fc41.x86_64 firefox-langpacks-136.0.1-1.fc41.x86_64 freerdp-libs-2:3.12.0-1.fc41.x86_64 gnome-bluetooth-1:47.1-1.fc41.x86_64 gnome-browser-connector-42.1-8.fc41.x86_64 gnome-classic-session-47.4-2.fc41.noarch gnome-initial-setup-47.2-1.fc41.x86_64 gnome-remote-desktop-47.3-1.fc41.x86_64 gnome-shell-extension-apps-menu-47.4-2.fc41.noarch gnome-shell-extension-background-logo-47.0-1.fc41.noarch gnome-shell-extension-common-47.4-2.fc41.noarch gnome-shell-extension-launch-new-instance-47.4-2.fc41.noarch gnome-shell-extension-places-menu-47.4-2.fc41.noarch gnome-shell-extension-window-list-47.4-2.fc41.noarch gstreamer1-plugin-libav-1.24.11-1.fc41.x86_64 gstreamer1-plugins-bad-free-1.24.11-1.fc41.x86_64 pipewire-utils-1.2.7-7.fc41.x86_64 uresourced-0.5.4-2.fc41.x86_64
The latest build of u-blue:main has removed these packages. Is anybody also experiencing this? I could find no information regarding this on the discourse forum.
Edit : the issue has been resolved in the next build image. It was a small error that crowd in due to shifting to dnf5. Thanks for to maintainers for doing all the hardwark
Didn't know what uBlue was, so here: universal-blue.org/
"The Universal Blue project builds a diverse set of continuously delivered operating system images using bootc. That's nerdspeak for the ultimate Linux client: the reliability of a Chromebook, but with the flexibility and power of a traditional Linux desktop.
These images represent what's possible when a community focuses on sharing best practices via automation and collaboration. One common language between dev and ops, and it's finally come to the desktop.
We also provide tools for users to build their own image using our templates and processes, which can be used to ship custom configurations to all of your machines, or finally make the Linux distribution you've long wished for, but never had the tools to create.
At long last, we've ascended."
Universal Blue is a diverse set of images using bootc's OCI support as a delivery mechanism. That's nerdspeak for the ultimate Linux client!universal-blue.org
Nice post, ~~but your title is misleading~~: the blog post is actually titled "Supply Chain Attacks on Linux distributions - Overview" - the word "attacks" as used here is a synonym for "vulnerabilities". It is not completely clear from their title if this is going to be a post about vulnerabilities being discovered, or about them actually being exploited maliciously, but the latter is at least not strongly implied.
~~This lemmy post however is titled (currently, hopefully OP will retitle it after this comment) "Supply Chain Attack found in Fedora's Pagure and openSUSE's Open Build Service".~~ edit: @OP thanks for changing the title!
Adding the word "found" (and making "Attack" singular) changes the meaning: this title strongly implies that a malicious party has actually been detected performing a supply chain attack for real - which is not what this post is saying at all. (It does actually discuss some previous real-world attacks first, but it is not about finding those; the new findings in this post are vulnerabilities which were never attacked for real.)
~~I recommend using the original post title (minus its "Overview" suffix) or keeping your more verbose title but changing the word "Attack" to "Vulnerabilities" to make it clearer.~~
TLDR: These security researchers went looking for supply chain vulnerabilities, and found several bugs in two different systems. After responsibly disclosing them, they did these (very nice and accessible, btw - i recommend reading them) writeups about two of the bugs. The two they wrote up are similar in that they both involve going from being able to inject command line arguments, to being able to write to a file, to being able to execute arbitrary code (in a context which would allow attackers to perform supply chain attacks on any software distributed via the targeted infrastructure).
Sorry if this isn't the place for this, I couldn't find a forum for the program. I have 2 monitors and when I try to use a custom location it seems like XClicker doesn't understand how to handle that. When getting a location the coordinates behave as I'd expect, treating all of my screen space as one with the numbers increasing as you go right and down, the top left of my left monitor currently being 0,142. However when I activate to start clicking it seem as though it treats the top left corner of whichever monitor the cursor is on as though it were 0,0, meaning it doesn't actually click where I want.
For example, if I Get a location on the right monitor and position the mouse on the right monitor it'll actually click a location 1920 pixels to the right, since the left is 1080p, and I think 142 pixels down. With the same coordinates, if I position my mouse on the left monitor then activate It'll go close to where I want it to on the right monitor for the first click, then shift to the right again since it's now on the right monitor.
Edit: Oh I figured it out and it's definitely newbie stuff. I was poking around and for shits tried to upgrade my OS. While I couldn't do that, it seems like it did upgrade a lot of other stuff and now the clicker works normally. I was hoping it'd be a miracle and fix another issue, too, but it didn't.
like this
Note: for readers who aren't aware, the notation ^X means hold down the ctrl key and type x (without shift).
ctrl-a though ctrl-z will send ASCII characters 1 through 26, which are called control characters (because they're for controling things, and also because you can type them by holding down the control key).
^D is the EOF character.
$ stty -a | grep eof intr = ^C; quit = ^\; erase = ^?; kill = ^U; eof = ^D; eol = <undef>; $ man stty |grep -A1 eof |head -n2 eof CHAR CHAR will send an end of file (terminate the input)
Nope, Chuck Testa: there is no EOF character. Or, one could also say there is an EOF character, but which character it is can be configured on a per-tty basis, and by default it is configured to be ^D - which (since "D" is the fourth letter of the alphabet) is ASCII character 4, which (as you can see in man ascii) is called EOT or "end of transmission".
What that stty output means is that ^D is the character specified to trigger eof. That means this character is intercepted (by the kernel's tty driver) and, instead of sending the character to the process reading standard input, the tty "will send an end of file (terminate the input)".
By default eof is ^D (EOT), a control character, but it can be set to any character.
For instance: run stty eof x and now, in that terminal, "x" (by itself, without the control key) will be the EOF character and will behave exactly as ^D did before. (The rest of this comment assumes you are still in a normal default terminal where you have not done that.)
But "send an end of file" does not mean sending EOT or any other character to the reading process: as the blog post explains, it actually (counterintuitively) means flushing the buffer - meaning, causing the read syscall to return with whatever is in the buffer currently.
It is confusing that this functionality is called eof, and the stty man page description of it is even more so, given that it (really!) does actually flush the contents of the buffer to read - even if the line buffer is not empty, in which case it is not actually indicating end-of-file!
You can confirm this is happening by running cat and typing a few characters and then hitting ^D, and then typing more, and hitting ^D again. (Each time you flush the buffer, cat will immediately echo the latest characters that had been buffered, even though you have not hit enter yet.)
Or, you can pipe cat into pv and see that ^D also causes pv to receive the buffer contents prior to hitting enter.
I guess unix calls this eof because this function is most often used to flush an empty buffer, which is how you "send an end of file" to the reader.
The empty-read-means-EOF semantics are documented, among other places, in the man page for the read() syscall (man read):
RETURN VALUE On success, the number of bytes read is returned (zero indicates end of file), and the file position is advanced by this number.
If you want to send an actual ^D (EOT) character through to the process reading standard input, you can escape it using the confusingly-named lnext function, which by default is bound to the ^V control character (aka SYN, "synchronous idle", ASCII character 22):
$ man stty|grep lnext -A1
* lnext CHAR
CHAR will enter the next character quoted
$ stty -a|grep lnext
werase = ^W; lnext = ^V; discard = ^O; min = 1; time = 0;echo " and then ctrl-V and ctrl-D and then "|xxd (and then enter) and you will see that this is sending ascii character 4.You can also send it with echo -e '\x04'. Note that the EOT character does not terminate bash:
$ echo -e '\x04\necho see?'|xxd
00000000: 040a 6563 686f 2073 6565 3f0a ..echo see?.
$ echo -e '\x04\necho see?'|bash
bash: line 1: $'\004': command not found
see?::: spoiler (Control characters are perfectly cromulent filenames btw...)
$ echo -e '#!/bin/bash\necho lmao' > ~/.local/bin/$(echo -en '\x04')
$ chmod +x ~/.local/bin/$(echo -en '\x04')
$ echo -e '\x04\necho see?'|bash
lmao
see?
Which is why I haven’t wrote ‘EOF character’, ‘EOT’ or ‘EOT character’. Neither have I claimed that \x4 character is interpreted by the shell as end of file.
Edit: Actually, I did say ‘EOF character’ originally (though I still haven’t claimed that it sends EOF character to the program). I’ve updated the comment to clear things up more.
System must be usable and fully native to the new distro (all old packages replaced with new ones).
No flatpaks, avoid snaps where physically possible, native packages only.
EDIT: Some clarification on some of the clever tools brought up here:
chroot, dd, debootstrap, and partition editors that allow you to install the new system in an empty container or blanket-overwrite the old system go against the spirit of this challenge.
These are very useful and valid tools under a normal context and I strongly recommend learning them.
You can use them if you prefer, but The ship of Theseus was replaced one board at a time. We are trying to avoid dropping a new ship in the harbor and tugging the old one out.
It may however be a good idea to use them to test out the target system in a safe environment as you perform the migration back in the real root, so you have a reference to go by.
Easy: pick two similar distros, such as Ubuntu and Debian or Manjaro and Arch and go from the base to the derivative.
Medium: Same as easy but go from the derivative to the base.
Hard: Pick two disparate distros like Debian and Artix and go from one to the other.
Nightmare: Make a self-compiled distro your target.
Honestly, at this point I’m so done with window’s bullshit. Their operating system is damn near unusable. All the convenient stuff is hidden in weird places. The constant whining about having to buy their crap. Or worse trying to get me to use the horrible software that comes with the new versions.
My excuse used to be, but I can’t play games on it. This is no longer the case for the games I love. So Windows can suck it. At this point I’m switching away from a lot of stuff I used to use. (x-box became Steam-deck, twitter became blue-sky and reddit is becoming Lemmy) As a kind of computer illiterate person, this has been a worth while transition but a difficult one. Let’s just say I had to learn a lot of new stuff.
So I’m a total Linux newbie but thanks to my Steam deck I’ve become somewhat used to using it. Not like an expert, but I have run wine to create separate environments for running pokémon fangames. And have taken a look around the Linux environment. I like it and think I’ll be able to get used to it with practice. It reminds me weirdly of windows XP in how easily I can get everything to work the way I want. It takes a bit of doing and some research, but it works. Which is all I want in an operating system.
I am looking for tips as to where to start searching, because I am converting my windows computer to Linux. I just don’t know what version.
Any user experience is welcome, I have no idea where to begin. I mostly use the computer I’m installing this on as a glorified typewriter, that I play movies, music and retro-games on.
A user friendly version is preferred, I find it hard to parse out from the various versions I have seen so far how easy they actually are to use. Extra points if a large amount of the information has easy to find tutorials on the internet. I don’t always know where to start looking and as I learned while getting wine to work, some of the names/terms are completely different. (And kind of a lot at once if you are just getting started).
Any resources you might think are useful for a newbie are also highly appreciated.
tl;dr: I (a Linux noob) am looking for a recommendation for what version of Linux to use for my needs. And any tips tricks or other info that I might need to know before I switch. Because windows sucks.
I’m sorry if this has already been asked and answered. I did try to find an answer through searching, but as I already mentioned. My lack of terms and knowledge is holding me back.
I have been looking for an email client on Linux after being tired of Gmail and Outlook web clients.
I had Thunderbird installed on my system and thought I'd give it a spin. I set up POP for my email accounts and it worked fantastic... For a total of 2 hours, after which I realised that searching in Thunderbird is simply not going to work for me. I need to search by attachment name and sometimes even by text inside attachment and unfortunately Thunderbird can't do that (I think I tried an extension too but it made the UI super clunky to the point that I couldn't even understand how to navigate it anymore).
Does Betterbird or any other email client fix this problem? I'm willing to try other options if they are FOSS.
Thanks
I've always liked Thunderbird. Geary is also nice. Not sure if it can attachment search.
You can filter messages with attachment on Thunderbird btw
Content-Type field at the very least and I don't think it can do that without an extension
Yes but I can’t search by the name of the attachment.
I just searched for text thats in an attachment filename and it worked - with a caveat. I have a filename called "PMASUP236 - Operate Vehicles In The Field.pdf" on an email. There is no reference to the PMASUP236 in any other part of any email.
If I search "PMASUP236", it returns the email as a result.
If I search "SUP236" it does not.
If I search "Operate Vehicles" it returns that email (along with a heap of others containing the word "Operate" and "Vehicles" in any order).
Admittedly this is on Windows at work, though I do run Thunderbird on Linux at home. Will have to try it there to confirm.
I just checked on Linux (Thunderbird 128.5.2esr, Opensuse Tumbleweed) and the behaviour is the same.
If I search “PMASUP236”, it returns the email as a result.
If I search “SUP236” it does not.
This is using the normal search function (top of screen in current version). Quick Filter does not look at attachments at all by the looks. The "Attachments" toggle is only a has / does not have attachment filter.
Yes; the command prefix that you're looking for is
shutdown now ; (followed by your sudo command if you wish)
It will provide the appropriate delay before using the root command via sudo or having logged again as root (sigh)!
Please don't desecrate my Linux with (what I assume is) Windows talk.
Bleugh! I need a shower!
[The worst Linux users are ex Windows users; 2004 vintage here]
sure. first, configure sudo to be passwordless, or perhaps just to stay unlocked for longer (it's easy to find instructions for how to do that).
then, put this in your ~/.bashrc:
alias sudo='echo -n "are you sure? "; for i in $(seq 5); do echo -n "$((6 - $i)) "; sleep 1; done && echo && /usr/bin/sudo '
Now "sudo" will give you a 5 second countdown (during which you can hit ctrl-c if you change your mind) before running whatever command you ask it to.
Any distro would do, but for my case, it is Arch because I have more control over the partitions. I would like the OS, so root, swap and others on 1 drive. The /home should be on a separate drive. The tricky thing is to have everything encrypted, except /boot and /efi of course.
Now, here is what I can do
1) FDE on 1 drive. This is easy: you create /efi, /boot and then create a large LUKS partition. From there, you create LVM on that LUKS partition and get your: /, /home and swap. Then mount everything correctly and install.
In the grub config, you only need to set it so it knows the LUKS partitom and where the root is. For eg, if your LUKs partition is /dev/sda3, you do:
2) Unencrypted /home on another drive. This is like 1) but /home is mounted on a separate drive. Still need to do the grub config, but nothing is needed for /home. It is automatically mounted when you login.
Now for my case: Encrypt /home
The encryption and mount part is easy. But how to get the OS to recognize it? The Arch wiki has this weird thing where you create an encryption key, they called it home.key, using cryptsetup. You then store the key in /etc and then in your /etc/crypttab, you specifiy the drive with /home and location of the key. No need for any passphrase.
The problem I have with this is that keys are stored in root. So if my root system is corrupted, I cant even decrypt home....
Any advice is welcome..
Well thanks everyone. I finally managed to get it to work on Arch. System has separate encrypted root and swap in LVM, and a separate encrypted home. It can suspend and hibernate. Below are my steps
DISK PREP
to create a LUKS container that is encrypted with: a keyfile and a password. Test both to make sure you can open the locked drive. Format and mount it at /mnt/home or where you want the /home to be.
AUTOMATIC UNLOCK
home uuid of the unencrypted home drive location of the keyfile luks
The link above said to just use /dev/sda, but imo UUID is safer if you have a removable drive.
"rd.luks.uuid=UUID of the locked luks home drive"
FOR HIBERNATION
For some reasons, hibernation doesnt work out of the box. It works when I have everything in 1 drive, i.e 1 boot, 1 efi, 1 lvm on luks for /home, swap and /. The fix is simple:
Special thanks to bodaciousFern@lemmy.dbzer0.com and Lemmchen@feddit.org for giving me correct ideas about "rd.luks.uuid" and that LUKS can do both pass and keyfile.
Just wanted to share my experience moving to Linux from MacOS. Very satisfying, but of course not at first. I think my patience has improved a lot too lol.
I started out trying live bootables on my 2012 MBA. 4GB RAM, 60GB HDD. Not a beast really, but it is my only computer. I obviously couldn't risk ending up without a working OS, so the only option was dual boot from an external drive. Bought an SSD connected via USB and started trying to install distros. Initially Fedora Workstation. Was a mess. Slow, wifi was not working well, odd crashes etc.. Decided to start over with something lighter, but all other installers crashed halfway through. I kid you not I shot my back again bent over my small laptop i
without working peripherals trying to install different distros. My doctor was not happy when I came back and told her I fucked up my back again because of my posture lol. Apparently, a shitty USB leads to crashes on most installers. I knew Anaconda worked tho, so I went back to a lighter DE with Fedora, XFCE. Set up an install on the SSD with a shared partition I could access from both MacOS and fedora. No big permission issues yet.
Then fixing network drivers. There is a lot of info about what chip needs what driver, a lot of which is incorrect apparently, because my chip which was supposed to work with bcma needed broadcom-wl. The joy when I remembered USB tethering was a thing.. For a laptop with no ethernet plug this was a godsend. Got the drivers, got wifi.
And since then, many "issues" I encountered where simply things that generally happened behind the scenes on MacOS I didn't even know where happening. Learning about these things has been very gratifying, and gives a lot of respect for a polished OS that just works like magic. Eventually, an issue on MacOS I could not solve due to it being a walled garden made me switch to Linux as a daily driver, and once I got over CMD and CTRL being swapped it sped up my workflows and runs better overall. More tweaking tho of course.
There are odd quirks but I found fun solutions for some, and began planning and learning to remedy others. Mostly, everything is working really well. I am having a lot of fun!
My tip for anyone struggling with getting started with linux, set up a log function so you can easily log any relevant changes you make, and have it accessible from somewhere else (like a shared partition or external drive for example). This way you know what you have done and can use that to fix whatever you fuck up. Also, make a knowledge base with the sources you find useful. I have a small kb in UpNote now so I can look up how some things were done instead of having to search and find the right guides over and over.
>> to append to the end of the file.function log()
{
local changelog="/run/media/jamie/DUAL/changelog"
if [ "$1" == "--view" ]; then
cat $changelog
else
echo "$(date +%D:%H:%M): $1" >> $changelog
fi
}
Nice I didn't know that ^^ should probably learn at least the basic bash operators, I am just hacking together the different commands I happen to know at the moment really
Edit: why echo instead of printf?
This was causing a lot of issues with newlines, like when I fetched the log to view it my $ was right after the log entry so I switched it back. But it is probably useful in the future to use >> instead :)
I've been using the terminal for 5 years.
99% of attempts at keeping valuable code snippets failed. Or having a useful command history.
Finally, I looked up how to send a line to terminal.
I use vscode since Atom was discontinued (looking forward to zed). But in the meanwhile, I just added
{
"key": "ctrl+enter",
"command": "workbench.action.terminal.runSelectedText",
"when": "terminalProcessSupported && editorTextFocus && editorLangId =~ /shell|bash|zsh|fish/"
}With this, I can finally keep a history of all useful commands I run. Like I can have a systemd shell file where I store the commands that I ran. Or a file to store all my podman commands. Now I do not have to type them anymore, I can just run them.
That's not what DRM is in kernel/hardware land
It stands for display rendering manager and it predates any of the other stuff.
So following on from my last post I'v now tried again, this time using Rufus to make my boot USB rather than balena etcher which despite being reccomended is apparently problematic. I also downloaded and verified a fresh install of the cinnamon ISO.
Result is uh....
Failed to open \EFI\BOOT\mmx64.efi - Not Found
Failed to load image (windows symbol): Not Found
Failed to start MokManager: Not Found
Something has gone seriously wrong: import_mok_state() failed: Not FoundPC in question is a small notebook with no discreet GPU to speak of (Intel integrated graphics) that I've been hoping to use as a testbed before comiting to Linux on my main PC.___
Sorry to link to reddit, but have you already tried the suggestions in this thread from a year ago: old.reddit.com/r/pop_os/commen… ?
Large (1920x9750, ~3MB) screenshot for posterity + those who absolutely do not want to access reddit at all: files.catbox.moe/mqsdxh.png
Edit: (Related links)
- linuxquestions.org/questions/l…
- forums.linuxmint.com/viewtopic…
- unix.stackexchange.com/questio…
I'd try the "copy \EFI\BOOT\grubx64.efi to EFI\BOOT\mmx64.efi" solution personally and see what happens. If that works, you might just have an obnoxious BIOS on that computer.
Hi guys, I'm in a real bind and I don't know what to do. Really hoping someone who has experienced something similar can help. Background: 1....reddit
So check it out: Mastodon decided to implement follower-only posts for their users. All good. They did it in a way where they were still broadcasting those posts (described as "private") in a format that other servers could easily wind up erroneously showing them to random people. That's not ideal.
Probably the clearest explanation of the root of the problem is this:
Something you may not know about Mastodon's privacy settings is that they are recommendations, not demands. This means that it is up to each individual server whether or not it chooses to enforce them. For example, you may mark your post with unlisted, which indicates that servers shouldn't display the post on their global timelines, but servers which don't implement the unlisted privacy setting still can (and do).Servers don't necessarily disregard Mastodon's privacy settings for malicious reasons. Mastodon's privacy settings aren't a part of the original OStatus protocol, and servers which don't run a recent version of the Mastodon software simply aren't configured to recognize them. This means that unlisted, private, or even direct posts may end up in places you didn't expect on one of these servers—like in the public timeline, or a user's reblogs.
That is super relevant for "private" posts by Mastodon. They fall into the same category as how you've been voting on Lemmy posts and comments: This stuff seems private, because it's being hidden in your UI, but it's actually being broadcasted out to random untrusted servers behind the scenes, and some server software is going to expose it. It's simply going to happen. You need to be aware of that. Even if it's not shown in your UI, it is available.
Anyway, Pixelfed had a bug in its handling of those types of posts, which meant that in some circumstances it would show them to everyone. Somebody wrote on her blog about how her partner has been posting sensitive information as "private," and Pixelfed was exposing it, and how it's a massive problem. For some reason, Dansup (Pixelfed author) taking it seriously and fixing the problem and pushing out a new version within a few days only made this person more upset, because in her (IMO incorrect) opinion, the way Dansup had done it was wrong.
I think the blog-writer is just mistaken about some of the technical issues involved. It sounds like she's planning on telling her partner that it's still okay to be posting her private stuff on Mastodon, marked "private," now that Pixelfed and only Pixelfed has fixed the issue. I think that's a huge mistake for reasons that should be obvious. It sounds like she's very upset that Dansup made it explicit that he was fixing this issue, thinking that even exposing it in commit comments (which as we know get way more readership than blog posts) would mean people knew about it, and the less people that knew about it, the safer her partner's information would be since she is continuing to do this apparently. You will not be surprised to discover that I think that type of thinking is also a mistake.
That's not even what I want to talk about, though. I have done security-related work professionally before, so maybe I look at this stuff from a different perspective than this lady does. What I want to talk about is this type of comments on Lemmy, when this situation got posted here under the title "Pixelfed leaks private posts from other Fediverse instances":
Non-malicious servers aren’t supposed to do what Pixelfed did.Pixelfed got caught with its pants down
rtfm and do NOT give a rest to bad behaving software
dansup remains either incompetent for implementing badly something easy or toxic for federating ignoring what the federation requires
i completely blame pixelfed here: it breaks trust in transit and that’s unacceptable because it makes the system untrustworthy
periodic reminder to not touch dansup software and to move away from pixelfed and loops
dansup is not competent and quite problematic and it’s not even over
developers with less funding (even 0) contributed way more to fedi, they’re just less vocal
dansup is all bark no bite, stop falling for it
dansup showed quite some incompetence in handling security, delivering features, communicating clearly and honestly and treating properly third party devs
I sort of started out in the ensuing conversation just explaining the issues involved, because they are subtle, but there are people who are still sending me messages a day later insisting that Dansup is a big piece of shit and he broke the internet on purpose. They're also consistently upset, among other reasons, that he's getting paid because people like the stuff he made and gave away, and chose to back his Kickstarter. Very upset. I keep hearing about it.
This is not the first time, or even the first time with Dansup. From time to time, I see this with some kind of person on the Fediverse who's doing something. Usually someone who's giving away their time to do something for everyone else. Then there's some giant outcry that they are "problematic" or awful on purpose in some way. With Dansup at least, every time I've looked at it, it's mostly been trumped-up nonsense. The worst it ever is, in actuality, is "he got mad and posted an angry status HOW DARE HE." Usually it is based more or less on nothing.
Dansup isn't just a person making free software, who sometimes posts angry unreasonable statuses or gets embroiled in drama for some reason because he is human and has human emotions. He's the worst. He is toxic and unhinged. He is keeping his Loops code secret and breaking his promises. He makes money. He broke privacy for everyone (no don't tell me any details about the protocol or why he didn't he broke it for everyone) (and don't tell me he fixed it in a few days and pushed out a new version that just makes it worse because he put it in the notes and it'll be hard for people to upgrade anyway so it doesn't count)
And so on.
Some particular moderator isn't just a person who sometimes makes poor moderation decisions and then doubles down on them. No, he is:
a racist and a zionist and will do whatever he can to delete pro-Palestinian posts, or posts that criticize Israel.a vile, racist, zionist piece of shit, and anyone who defends or supports him is sitting at the table with him and accepts those labels for themselves.
And so on. The exact same pattern happened with a different lemmy.world mod who was extensively harassed for months for various made-up bullshit, all the way up until the time where he (related or not) decided to stop modding altogether.
It's weird. Why are people so vindictive and personal, and why do they double down so enthusiastically about taking it to this personal place where this person involved is being bad on purpose and needs to be attacked for being horrible, instead of just being a normal person with a variety of normal human failings as we all have? Why are people so un-amenable to someone trying to say "actually it's not that simple", to the point that a day later my inbox is still getting peppered with insistences that Dansup is the worst on this private-posts issue, and I'm completely wrong and incompetent for thinking otherwise and all the references I've been digging up and sending to try to illustrate the point are just more proof that I'm horrible?
Guys: Chill out.
I would just recommend, if you are one of these people that likes to double down on all this stuff and get all amped-up about how some particular fediverse person is "problematic" or "toxic" or various other vague insinuations, or you feel the need to bring up all kinds of past drama any time anything at all happens with the person, that you not.
I am probably guilty of this sometimes. I definitely like to give people hell sometimes, if in my opinion they are doing something that's causing a problem. But the extent to which the fediverse seems to like to do this stuff just seems really extreme to me, and a lot of times what it's based on is just weird petty bullying nonsense.
Just take it it with a grain of salt, too, if you see it, is also what I'm saying. Whether it comes from me or whoever. A lot of times, the issue doesn't look like such a huge deal once you strip away the histrionics and the assumption that everyone's being malicious on purpose. Doubly so if the emotion and the innuendo is running way ahead of what the actual facts are.
like this
don't like this
IMO, Dan has some responsibility but more of it lies with Mastodon and other microblogging software that labels this post type as "private", "followers only" or similar without any further explanation. It needs to be clear that it's dependent on good faith and competence of remote servers that may collect that information.
Moreover we need to do a better job of letting users know that anything posted on the internet, and especially anything posted to the fediverse where it's backed up on potentially thousands of servers, should be assumed to be publicly-visible and eternal. If nothing else, it will be backed up on the internet archive. If you want to communicate privately, this is the wrong place.
I wish there was a private social media platform but it seems like the closest we're going to get is Signal.
Also "the bullying problem" has nothing to do with the Fediverse and everything to do with people in general and the erosion of nuance.
like this
Let's clarify something here. Mastodon follower only posts don't have the "public pseudo user" addressed, do they?
That's the important piece that this whole thing hinges upon
If it is present, Mastodon is a fault. If not, Pixelfed messed up.
Am I mistaken?
For example, a followers-only post is addressed to the followers collection of the author, at minimum. When NodeBB sees this, it doesn't even consider it public, because the public pseudo user isn't addressed. We also have no concept of "followers only", but we handle them just fine.
like this
don't like this
like this
don't like this
nah, it’s better for information integrity to reply in the language you understand imo, comments translated using translator services are very obvious anyway and some people are multilingual
Sure, I agree? Maybe there's a misunderstanding here and I should add that it simply would never even occur to me to enter a conversation if I didn't natively understand the language that's being used.
Interstellar (!interstellar@kbin.earth) has added Piefed support!
Install interstellar from the play store/F-droid, and create an account on preferred.social/ (only instance with the API enabled, get join code from invite). Then, login from interstellar and you're done!
Well, andrew is working on porting thunder to piefed (the main dev of it is interested in it) Admiral patrick said he might port tesseract to piefed, once the API is stable, and ae_harding said he may add it after lemmy 1.0.
Thank you @andrew_s@piefed.social, @olorin99@kbin.earth and @jwr1@kbin.earth for working tirelessly to implement this :D
An app for Mbin/Lemmy/PieFed, connecting you to the fediverse. - jwr1/interstellarGitHub
like this
fxomt likes this.
Bin wirklich noch etwas überfordert hier. Wie kann man das feddit Konto und das Mastodon konto verknüpfen?
Wo finde ich die Adresse von meinem feddit Konto und muss ich es auf Mastodon einbinden? Hilfe.... 😱 Bitte...
like this
don't like this
Maybe then she'll SHUT UP! Oh my god, is there a single person on this platform who doesn't get these messages every month???
Guys, you all KNOW what I'm talking about, right? Gonna have to go get Tim Misney on this case! And you KNOW what he DOES! eyebrows
like this
don't like this
like this
advanced38 doesn't like this.
threelonmusketeers likes this.
I always believed that problems around technocratic broligarchy could’ve been solved if the software ecosystem using GPLv3 was strong. So when I suddenly see a flurry of articles stating that the EU is trying to come up with its own spin of Linux to boycott monopolies by US companies, I think it is either a waste of time or self defeating because the ultimate power of computer codes isn’t the code itself, but the license attached to it.
Is there something that I have missed in this matter because I barely see anyone talking about the need for more libre software. I find the latest transition from GLP to MIT license for rust-based coreutils to be concerning because we’re basically adopting “doormat” licenses that will enable companies to easily embrace, extend and extinguish the freedoms we cherish so much in this space.
We as a society have to enlighten ourselves such that we have a standard and this standard is open source.
The more people refuse to use proprietary stuff, and promote open source tools, the more powerful those tools get.
As long as we pay 100 bucks for a shitty game and refuse to donate 1 buck to a foss calendar we are far away from where we'd like to be.
If people would pay good for foss, companies would do it
VimWiki is my preferred notetaking solution because it's intentionally minimal. When I want to take notes, I want to take notes, not see a mind map or extra visualizations or photos to distract me....AbnormalBeingsTube
I've started doing notes in the terminal as well. I used Obsidian and Logseq for a while, mainly because I wanted something with a GUI so that I could recommend it to people who aren't comfortable with the terminal. But eventually I figured that a terminal solution was the right one for me, since I have a terminal open all the time anyway.
I switched from vim to kakoune a while ago ( kakoune.org ), so I use nb ( xwmx.github.io/nb ) instead of vimwiki.
nb is a terminal application that will open whatever your default text editor is.
The official website of Kakoune, a selection-first modal code editorkakoune.org
^ Title ^
so I've had problems getting linux to actually setup properly but the functional preview on the boot USB stick itself works without issue, so can I just run it that way, or is that going to limit functionality in some way?
If you want to try to get Linux on the main drive working (since USB works but isn't ideal) there are a few things I encountered.
-some distros just didn't like my hardware. Failed to install, or installed but boot would get errors and halt. The remedy was using an rpm distro rather than deb based (I tried about 10 debs, the rpm ones acknowledged the bios error and moved on)
-secure boot can be a bit of a pain. If you don't want to deal with it, Turnoff secureboot, and in some cases EFI and use legacy BIOS mode.
-if you want Secure boot and EFI. Allow USB boot in BIOS, do the install and ensure it is building a GPT disk with an EFI partition. At the reboot stage it should ask if you want to enroll keys, say yes.
If during reboot it does nothing or boots to windows(assuming you have windows drive). Go into BIOS and choose secure boot option where you can pick which Secure OS it found and move that to top of boot list.
-if it is not those things it is often nvidia on Wayland or X issue on laptops. If you don't want to mess with installing a GPU switcher, you can often set your laptop to discrete graphics before install and bypass the two GPU issues
As others say, it can be done. If you want more normal umpf, you'll need to mount parts of the filesystem to your ssd. You can mount /home or / on ssd, or have an overlay file system as a file on an ssd/hdd, or use bcachefs with back propagation to the usb, or similar fancy setups.
So you'll boot linux kernel from the usb, but most disk activity will be on your ssd. Fun project, but not super easy/practical if it isn't done automatically.
My old HP microserver is 'made' to boot from a usb-stick inserted on the mb.
Anyway, perhaps an AI can suggest a script to do what you want ?
like this
don't like this
like this
Hi folks!
I'm here with another idea. Let's make an amazon alternative. I know! I know! That was asked for a couple times already but lets discuss some details.
Amazon is basically glorified dropshipping by now. What if we just made federated (not sure if over activitypub would work) ads and sales, powered by fediseer (the "trust" network of the fediverse).
Example 1:
So you buy at toms groceries, you trust them. they have experience with tina's hardware store and they trust them. so you can buy both toms and tinas wares on both sites.
Example 2:
So for example, I run a small business that sells computers. You run a small business that sells mice and keyboards. I have worked with you before so I mark you as trusted in my local website, which federates with yours, showing your products in my shop. If a customer buys my computer and buys your keyboard on top, my site sends you a buy order with customer address and payment. I get a small fee for my electricity of say 1%.
Can someone try and poke holes in this idea? It feels like this could work!
Have a nice weekend.
A version of this focussed on a gift economy/trading platform (e.g. like freecycle, or the buy nothing groups on facebook) would also be cool.
Also person-to-person buying/selling, rather than business-to-person would be nice to have, like craigslist, reverb.com, gumtree, or used items on ebay.
If this was focused on a craigslist/gumtree style of selling, where most of the actual trade is done off-site/in-person with cash or bank transfers, it would completely side-step the payment processor problem.
Anuj Ahooja https://bsky.app/profile/quillmatiq.comA New Social https://anew.social, profile https://bsky.app/profile/anew.socialBridgy https://bsky.app/prof...YouTube
like this
I absolutely love wiki walking through random obscure fan wikis, but I hate how most are on Fandom.
I think a federated wiki solution makes sense. I could see it as an evolution of the interwiki concept.
like this
don't like this
Seems like there is a federated solution for everything lol
There's also a list of ActivityPub software on Wikipedia: en.wikipedia.org/wiki/Activity…
like this
Nah... Missing IMHO:
like this
Also:
These seem kind of ideal for a federated network, IMO.
I actually think Lemmy would be a pretty decent format for something stackoverflow like - just maybe needs to UI tweaks to minimise the visual space that replies take up, plus maybe answered post flair
Is there an interest to develop a post tagging feature? I remember seeing an issue about it some time ago, but I can't find it anymore so it's possible I'm making this up. A post tag would be defin...GitHub
lgsp@feddit.it likes this.
There's codeberg.org/flohmarkt/flohmar… for a marketplace.
I'm really missing something like yrpri.org/domain/3
like this
I think you're starting too big, to use your phrase.
Get used to the basics first: what's different (to whatever you're running now), what's the same. They Linux distributions almost all have GUIs (KDE, GNOME are the main ones but there are many others).
Run a live USB version from a usb stick to get used to it until you have the confidence to install it on an old pc. Personally I do not recommend dual booting; data gets lost that way. Install it on an old pc and learn how to restore your backups to a Linux filesystem (not the fs of what you're used to on Linux platform). I write that because you said that want to end up with a Linux server.
Choose one of the top few from distrowatch.com/
Your aim is to understand what's going on under neither the GUI; how permissions work.
I started by installing a VoIP product into a VM on Windows 2000, but there are better ways now.
Good luck. You shouldn't find it that difficult.
PeerTube has a lot of settings to toggle and tweak before uploading videos and inviting new users. We're going through the most common ones for new instance owners like setting up a Home Page, tran...AbnormalBeingsTube
like this
The “privacy-first” company surprised its user base when CEO Andy Yen lauded Trump on social media.
I was looking for some collection of posts earlier about Proton Mail and the whole controversy with the CEO, and I opened a post the lemmy instance that was suggested was lemmy.zip but the community and the poster were from lemmy.world so that made me ask myself a bunch of questions. Reference link
Note: I used duckduckgo
Here are some questions I have:
I remember learning about search engines a while back but I don't know how relevant that information is any more. Having crawlers and the more a website is linked in other websites the higher up in the search result will be and the whole robot.txt thing.
I know if I wanted to search for something specific in lemmy I could just use its own search function, but what about people who ask general questions and that happens to be answered in a lemmy post. I wanted to know how exposed we are/ will be to people who don't yet know about lemmy.
like this
Meltdown doesn't like this.
So domains are recursive tree structures. So u have node com which has a bunch of nodes below it of different domains which can have sub domains etc. Its like this cos that's how DNS was designed.
Search engines gives scores to domains and pages. When u say that the content origin of ur page is some other domain the search engines will use that knowledge to adjust rating accordingly.
Say u have 2 domains site1.example.com and site2.example.com the search engine will have a rank for site1, site2, and example.com where the rating of both site1 and site2 effect the rating for example.com.
If the content origin for all federated content has the same origin say instance.fediverse.com then the rating for all federated content will be classified as part of fediverse.com and all content will be working together across all instances boosting the fediverse as a single entity.
JustAnotherKay likes this.
cross-posted from: piefed.social/post/538685
No more duplicate postsOne of the things that the recent addition of the Feeds feature highlighted was how many cross-posts / duplicate posts there are. When you display posts from linux@lemmy.world, linux@programming.dev, linux@lemmy.ml, etc all the cross-posts make it get repetitive, really fast. The same thing happens on the home feed too although it's a bit less obvious because there's a wider range of subjects involved.
Except now, it doesn't, because PieFed de-duplicates your feed! And your home page, and your topics. Attached to this post is a screenshot showing how it works out - an article posted to 7 different places is only shown once despite me having joined most of those communities.
We're still figuring out whether it's a good idea to merge all the comments from all the cross-posts into one page and how to do that in a way that respects the different culture/rules in the communities that the posts were made in. It's a tricky UX and social question.
I've held off on adding a cross-post function to PieFed until now but it'll be added soon.
like this
don't like this
like this
like this
Dynamically prioritizes CPU or memory access out of a given command.
Can be run as a non-root user.
Instructions on how to compile and usage are provided inside the code right here.
-EDIT- Just improved the code with improved nice sorting, detection and configuration.
For those not familiar, there are numerous messages containing images being repeatedly spammed to many Threadiverse users talking about a Polish girl named "Nicole". This has been ongoing for some time now.
Lemmy permits external inline image references to be embedded in messages. This means that if a unique image URL or set of image URLs are sent to each user, it's possible to log the IP addresses that fetch these images; by analyzing the log, one can determine the IP address that a user has.
In some earlier discussion, someone had claimed that local lemmy instances cache these on their local pict-rs instance and rewrite messages to reference the local image.
It does appear that there is a closed issue on the lemmy issue tracker referencing such a deanonymization attack:
github.com/LemmyNet/lemmy/issu…
I had not looked into these earlier, but it looks like such rewriting and caching intending to avoid this attack is not occurring, at least on my home instance. I hadn't looked until the most-recent message, but the image embedded here is indeed remote:
lemmy.doesnotexist.club/pictrs…
I haven't stored and looked through a list of these, but as I recall, the user sending them is bouncing around different instances. They certainly are not using the same hostname for their lemmy instance as the pict-rs instance; this message was sent from nicole92 on lemmy.latinlok.com, though the image is hosted on lemmy.doesnotexist.club. I don't know whether they are moving around where the pict-rs instance is located from message to message. If not, it might be possible to block the pict-rs instance in your browser. That will only be a temporary fix, since I see no reason that they couldn't also be moving the hostname on the pict-rs instance.
Another mitigation would be to route one's client software or browser through a VPN.
I don't know if there are admins working on addressing the issue; I'd assume so, but I wanted to at least mention that there might be privacy implications to other users.
In any event, regardless of whether the "Nicole" spammer is aiming to deanonymize users, as things stand, it does appear that someone could do so.
My own take is that the best fix here on the lemmy-and-other-Threadiverse-software-side would be to disable inline images in messages. Someone who wants to reference an image can always link to an external image in a messages, and permit a user to click through. But if remote inline image references can be used, there's no great way to prevent a user's IP address from being exposed.
If anyone has other suggestions to mitigate this (maybe a Greasemonkey snippet to require a click to load inline images as a patch for the lemmy Web UI?), I'm all ears.
Issue Summary By using markdown image embedding syntax:  Along with a link that collects IPs, an attacker may harvest IPs that visit the page. This can be combined with the "auto di...GitHub
SOLVED If any lost souls find themselves here in a similar situation let it be known that the file that worked for me was creating a file at '%h/.config/systemd/user/google-drive-ocamlfuse.service' with the following content:
[Unit]
Description=FUSE filesystem over Google Drive
After=network.target
[Service]
ExecStart=google-drive-ocamlfuse %h/googledrive
ExecStop=fusemount -u %h/googledrive
Restart=always
RestartSec=300
Type=forking
[Install]
WantedBy=default.targetI am trying to use this package to be able to access my google drive from Dolphin. And so far it works okay. Except that it doesn't survive a reboot. I have to run the command:
google-drive-ocamlfuse ~/googledriveI created /usr/local/bin/ocamlfuseStartup.sh as a file that contains the command from before:
google-drive-ocamlfuse ~/googledriveI then created another file at /usr/lib/systemd/system/startup.service that contains the following:
[Unit]
Description=Startup Script
[Service]
ExecStart=/bin/bash /usr/local/bin/ocamlfuseStartup.sh
[Install]
WantedBy=multi-user.targetstartup.service: Main process exited, code=exited, status=203/EXEC
However with it I get this error:
startup.service: Main process exited, code=exited, status=2/INVALIDARGUMENT
which I take to mean that there is something wrong with my ocamlfuseStartup.sh file maybe? But since it works when I manually execute the file I'm kind of at a loss.
I found this thread where it seemed like someone else was having a similar issue but I didn't really grok what they were talking about.
Any and all help is greatly appreciated!
Learn various ways to run a command or a script when a Linux system starts upHaidar Ali (Baeldung)
The 203 error you got is because your script isnt a valid executable, it needs to have a shebang at the top, you can change it to something like this and set the executable bit with chmod +x <file>
\#!/usr/bin/env bash
google-drive-ocamlfuse ~/googledriveIm not familliar with this google drive software, but im figuring that its exiting with an error code cuz its running as a system service, and $HOME probobly isnt set so ~ doesnt expand and the software gets an invalid path.
But I recommend using a user service for this, it will run when you login, you should be able to copy the service file you already have into ~/.config/systemd/user/ and run systemctl --user daemon-reload and systemctl --user enable startup.service --now, this will enable and start the service in one go.
I also recommend adding the following lines under [Service]
Type=simple
Restart=always
RestartSec=60If you need it to run before login, it is possible to do with a system service, but it will need a bit more setup
i would install cron if its not installed, then add a file under
/etc/cron.d/someNiceToRememberName
and with an editor write the following in it:
@reboot root /bin/bash -x /usr/local/bin/ocamlfuseStartup.sh >> /tmp/output 2>&1 ; echo returncode=$? >> /tmp/outputyou might be able to do this with systemd too, but it often messes things up and i like i.e. clean log outputs.
for testing you can add a line that would start it without a reboot.
22 * * * * root /path/to/your/command parameters >> /tmp/output 2>&1as systemd starts cron with a broken environment too, it might as well not work using cron, but then you know its the broken environment systemd starts it with.
if thats your problem, you might want to add:
PATH=$PATH:/usr/sbin:/usr/local/sbin
somewhere at the top of the shellscript depending on what is missing, which by itself would be the directories the commands executed are in.
in terminal use :
which sedto maybe more easy see what is missing i added the -x as a parameter to bash which makes it print out a line for every command it executes to sdterr so you can see what the last commands were.
you can try it in the terminal (if your terminal is bash or compatible
$ set -x
$ echo foo
+ echo foo
foo
$ echo PATH: $PATHgood luck.
transition to linux. One of the first things I have hit a wall on is getting a file to execute on boot using systemd.I am trying to use this package to be
that bash thing is the interpreter. the script ocamlFuseStartup.sh is written as bash (possibly the same as your terminal) if that script has a "shebang" (#!/bin/bash) as the very first line AND the file has the execute permission set (chmod +x /path/to/file), then you dont need /bin/bash at the beginning to start it.
Following a slew of hardware announcements in the past few months like the RP2350 shipping, Raspberry Pi 5 16GB, Raspberry Pi Monitor, and Raspberry Pi 500, today they have a new software announcementwww.phoronix.com
like this
like this
like this
Ingo Molnar began sending out the pull requests today for the upcoming Linux 6.15 merge window of code areas he oversees for the Linux kernelwww.phoronix.com
Madbrad200 likes this.
Madbrad200 doesn't like this.
Yeah I was on Fosstodon first. Moved to Sakurajima (Sharkey) and now I'm on Sakurajima (Mastodon).
You're right, the instance makes a big difference. Very important to find one you enjoy.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software. If you wish to join, contact us for an invite.Mastodon hosted on fosstodon.org
Given the different way they apps are structured I don't even know if it's a sensible question, but is there a way to subscribe to something on a Madison server?
The server as a community, or a tag as a community? Does mastodon have some other concept that I could subscribe to?
like this
don't like this
not from lemmy. you would have to use a microblog-interacting platform like mbin
there you can follow and be followed by microblog platforms like mastodon.
like this
Microsoft's newest open-source contribution to the Linux kernel being proposed is..www.phoronix.com
For anyone who wants an invitation to join mastodon.online, let me know! Like mastodon.social, it is one of the two official communities run by the Mastodon non-profit. The difference is that mastodon.online is invite-only.
Joining an invite-only server helps keep out spammers who target mastodon.social and lets someone be part of a more exclusive community. This can help someone have a better-quality mastodon experience, overall.
Of course, to keep out scammers, the invitation isn't open to just anyone who asks, they will have to have a posting history of some sort.
like this
don't like this
Quick question for you. I signed up to Mastadon a while back, have been endeavouring to use it more regularly, and have been trying to sign on to as many local or often-subscribed orgs (on other media platforms). What I'm finding is that remarkably few of them are on Mastadon, and often those that are have been using them as a kind of alt-Twitter content splash with little engagement.
Are the actual active profiles/communities sort of walling themselves off from bots and bad actors in the way that you're describing? Invite-only groups whose activity isn't seen by non-members, or even accessible when searching for related tags/topics? Have I been casting about looking for content like someone looking for people in a neighbourhood where everyone is inside with the curtains drawn, or is there actually low engagement on Mastadon overall?
Successful_Try543 likes this.
like this
If you want to follow specific organizations, unfortunately, there aren’t as many on Mastodon as on other social media platforms. Some are accessible through Threads.net federation, like @theonion@threads.net, through the Bluesky bridge, or via other non-Mastodon federated communities (e.g., Flipboard.com) if that’s something you’re interested in.
However, some communities do wall themselves off from bots and bad actors. For example, the most popular Mastodon instance (mastodon.social) blocks the second-largest instance (pawoo.net). Other instances, like mastodon.art, defederate from AI art supporting instances, while others like hachyderm.io has defederated from Threads.net. Additionally, some Mastodon communities, like Truth Social, are entirely isolated and defederate from everyone else.
So, if you want access to the widest range of communities, you may need to join more than one instance.
like this
like this
The servers are hosted by Hetzner with servers across Europe. They call out Hetzner when there is an outage.
status.mastodon.online/cm722jt…
We have switched back to our original networking, and all functionality and performance is restored. Hetzner has confirmed that is was indeed a vSwitch issue that caused the network outage.
More info about Hetzner here:
hetzner.com/unternehmen/ueber-…
DB connection issues - Incident details - mastodon.online Statusstatus.mastodon.online
like this
Newsletter platform Ghost, an open source competitor to Substack, is now connected to the fediverse, also known as the open social web. Federated apps runSarah Perez (TechCrunch)
like this
The docs are super unclear.
In future, we hope to develop a deeper integration between your social web profile and followers <> and your public website and registered members. To start with, though, they operate independently from one another.Your social web profile and followers are separate to the rest of your site and memberships, so you can think of it as a new, additional distribution channel.
Emphasis mine. I think the setup is basically federating links in Mastodon style. So if you have a post available as a subscription, it will prompt a login after clicking through.
jackalope likes this.
I have separate directories for uni courses, which are grouped in semester directory. I also TA some classes, which is stored in separate folder named 'TA'. That is, it is grouped like this:
University
| - ...
| - 2024.2
| | - Lie algebra
| | - Operator algebra
| - 2025.1
| | - Mathematical Algorithms
| | - Diophantine equations
| - TA
| | - ...
| | - 2024.2
| | - 2025.1Basically, I want to view directories with different grouping for each use case, as in the title. I hope this makes sense..
Is there any kind of directory structure or application-based solutions for this cases?
EDIT: I want both GUI and TUI solution for browsing files like this, it's great if linux filesystem supports this natively but fine if it doesn't.
Database with redirection capability would be even better.
Thanks in advance!
Is this what you're looking for?
University
|-TA-By-Semester
||-Semester 1
|||-Class A
||-Semester 2
|||-Class A
|-TA-By-Class
||-Class A
|||-Semester 1
|||-Semester 2
A new zypper experimental media backend and support for parallel package downloads have been introduced with the release of libzypp version 17.36.4 and zyppe...openSUSE News
like this
It's not only FreeDesktop.org that has been transitioning to new infrastructure this month but separately, Kernel.org is now receiving hosting and CDN needs provided by Akamai.www.phoronix.com
like this
like this
Palestine WIll Be Free doesn't like this.
like this
So many AP platforms are made by a couple of guys in their garage, it's not even funny, and the mentality of "just dicking around" means what gets used is whatever the whims of the day dictate, rather than the standard.
"If it works, it's not stupid" and all that.
But that kind of work lacks real world testing, and depe concern for public expectaton or desire.
Plus, you have to keep in mind that the idea of interplatform interoperability isn't this core conceit of ActivityPub. It's a potential use case, but it's not an expectation. There's no reason anyone should expect interop like that, other than some developers wanted to try it.
But some didn't, and now that their platforms are gaining audience, they're refactoring to meet that audience's expectations.
like this
like this
I recently did a library implementing pretty much the whole ActivityPub protocol and let me tell you one thing I've learned: ActivityPub is a half-assed unfinished mess.
It has so little constraints that pretty much anything is valid. You'd think that there was some logic at the core, but not really.
For example, there's the Like activity, the name is pretty self-explanatory. But it's valid to like anything. You want to like another Like activity? Why not! So you can like a like that likes a like...
Obviously, no real project implements such nonsense. But because almost everything is valid and up to interpretation of the implementer, there really is no single ActivityPub to implement that gets you running smoothly. There are many de-facto standards with various levels of compatibility with each other. Sending private messages is one such thing that many projects chose to implement in different ways.
Fun fact: Without implementing the HTTP Signatures spec, your app will not be able to send any activities to any software, because ActivityPub allows anyone to impersonate anyone, which obviously didn't really fly with people developing actual software that uses it.
In conclusion, pure ActivityPub is an unusable mess in its pure form that literally won't be able to communicate with other software implementing "ActivityPub," so everyone is kind of implementing a similar slice/hybrid of ActivityPub and other protocols, but not exactly the same ActivityPub.
like this
pwalker doesn't like this.
ActivityPub is a half-assed unfinished mess.
tried working on my own service and figured this one out very fast.
It's amazing that it works at all. 98% of the stuff is not documented at all. and the stuff that is, can hardly be called documentation.
like this
like this
They have conferences about ActivityPub. Why isn't W3C trying to fix this mess in newer backwards-incompatible versions? The time to do it is now, not later, because it would involve a major version and years of pushing for adoption. The lack of standardization of basic concepts is why integrations of different types of implementations is a broken mess, which is the whole fucking point of ActivityPub! Now, we have to compete with ATProto, which has different kinds of problems, and it's very possible that it just wins out and kills ActivityPub.
This reminds of the early days of SMTP, where there was zero thought behind security, and that created an entire spam industry.
PeerTube integration into Lemmy is still shit, poorly implemented, and rarely linked by Lemmy admins.
like this
"Rikudou's personal email"@5.75.133.3?like this
like this
Private messages and public comments are quite awkward in Activitypub, because the json format looks identical. They only way to differentiate them is to check for the presence or absence of https:...GitHub
like this
As political winds shift across the globe, the digital world is not immune to the turbulence. Governments and organizations across the globe are reassessing ...openSUSE News
like this
The future of tech doesn’t need to be American. It doesn’t need to be Chinese. It needs to be open.
And based on Tumbleweed?
Links & Resources ❯ HP Wants to Make a SteamOS Handheld: https://www.gamingonlinux.com/2025/03/hp-are-interested-in-making-a-steamos-handheld-as-the-windows-experience-sucks/ ❯ ChimeraOS 48 rel...PeerTube.wtf
like this
GoToSocial is probably the best way to get yourself onto the fediverse at the lowest price possible. It's an excellent choice for solo instances and enables you to migrate both to and from Mastodon...PeerTube.wtf
like this
irelephant [he/him]🍭 likes this.
github.com/LemmyNet/lemmy/issu…
I really hope this feature comes soon.
Requirements Is this a feature request? For questions or discussions use https://lemmy.ml/c/lemmy_support Did you check to see if this issue already exists? Is this only a feature request? Do not p...GitHub
I'm asking myself if exist something inside the fediverse where you can list your profiles and other people can Send you a message throw your most used app/profile without needing an sccount on that service, unify conversations throw different platforms and notify you if one person you follow in A service has a new profile in B service.
Something like a federated meeting point compatible with all ActivityPub developments. Does it exist?
Thanks!
like this
don't like this
Send you a message [through] your most used app/profile without needing an [account] on that service
No, I don't think so...
However, what you're describing kind of sounds like a polycentric identity. Maybe check that out. Also, I believe ActivityPods aim to handle a little of what you're describing, but I don't know how much adoption it's had.
like this
like this
Out of 120+ benchmarks run on Ubuntu 24.10 vs.www.phoronix.com
As a very exciting improvement for the open-source PostgreSQL database server, it has merged initial support for making use of IO_uring on Linux servers for asynchronous I/O and can provide for some nice performance improvements.www.phoronix.com
In the next release of Dolphin, the search backend (when Baloo indexing is disabled) will be faster and support more file types, by using external projects ripgrep-all and ripgrep to do the search. Merge RequestUse `ripgrep-all` / `ripgrep` to improve search in Dolphin
I was reminded of Recoll after reading a thread about email search.
I installed it on my desktop (Mint 22.1); does anyone have a way to integrate it directly into a desktop search.
e.g. press Super+f pops up a dialog box where I can search for something?
The Linux 6.15 kernel is set to remove support for IBM Cell Blade servers for those server platforms from around two decades ago that used the Cell Broadband Engine Architecture processorswww.phoronix.com
🔥 Support The Channel Get Zorin OS Pro here: https://zorin.com/linuxrenaissance Like, comment, and share to support more content! 📝 Quick Summary of the Video Zorin OS 17.3 is here, bringing a refi...PeerTube.wtf
KDE developers propose a new Plasma Login Manager to replace SDDM, aiming for deeper integration and a more feature-rich, modern login experience.Bobby Borisov (Linuxiac)
like this
This is great to hear. Something I love about GNOME was the login / lock experience.
SDDM felt like shit when used with Unity, and with Pantheon, and with Plasma.
Looking forward to its release.
XZ 5.8 is out today as the first notable feature release since last year's malicious backdoor in XZ 5.6 inserted by a then-co-maintainer of the projectwww.phoronix.com
An exciting new Linux kernel patch series was posted today for testing..www.phoronix.com
Following a decree by US President Trump, the Open Technology Fund is no longer receiving funding. That is why the organization is now going to court.Sven Festag (heise online)
like this
That website's cookie requirements are gross, here's the whole article
The Open Technology Fund (OTF) has filed a lawsuit in the US District Court in Washington D.C. against the US Agency for Global Media (USAGM) and the Office of Management and Budget. In its lawsuit, the OTF is seeking a preliminary injunction to have the USAGM release the withheld funding. US President Donald Trump had previously issued a decree largely restricting the USAGM under the current legal situation. The OTF uses its funds to support the certification authority Let's Encrypt and the anonymization network Tor, among others.OTF lacks 650,000 US dollars for operating costs
In its application, the OTF argues that the termination of the grant by the USAGM is unlawful, as the provision of the funding has already been decided by Congress. As part of this decision, a total amount of 43.5 million US dollars has been earmarked for 2025, which accounts for 98 percent of the OTF's funding. The USAGM oversees the financial and programmatic activities of the OTF and makes payments to the non-profit organization. The OTF had requested and not received a payment of around 650,000 US dollars for operating costs in March.
Kari Lake, executive CEO of USAGM and special advisor to the Trump administration, described the US agency in a statement as a "huge rot and burden on the American taxpayer" that also poses a national security risk. OTF Chairman Zack Cooper, on the other hand, argued that his organization is the most efficient and effective tool against censorship and influence peddling. An end to OTF projects "would weaken America's national security and keep millions of people around the world trapped behind authoritarian information firewalls", Cooper said.
Overall, the US government invests a lot of money in open source software. Last year, Let's Encrypt received around 800,000 US dollars in funding from the OTF, the Tor network received almost 500,000 US dollars and the open-source Android app store F-Droid received 396,000 US dollars. In total, the organization currently supports around 50 projects, including the development of the free VPN client OpenVPN. According to its information, the OTF has published around 2,500 patches for open-source software and the organization promotes VPNs for around 45 million people in countries with censorship. OTF President Cunningham sees the lawsuit as the only way to ensure the continued existence of these projects.
like this
People might have noticed me talking about dropping OpenH264 from Freedesktop SDK. Here, I’ll try to go a bit into the history, the timeline and what led to the final decision.Pixels
like this
like this
don't like this
I felt the same way every time I tried to use Twitter as I feel every time I try to use Mastodon. It's either way too much or way too little. I prefer everything about the reddit/lemmy/threadiverse style.
How would we even be having this conversation on microblogging? A bunch of reposts, with or without comments, disconnected from each other... So much nicer to have a "subject" line and a page where every relevant comment is presented.
like this
redshift doesn't like this.
I think the main idea is to look at some hashtags to find people to follow, then eventually wean off those hashtags if you want.
Another key detail is that you can’t read it all. Not hashtags, not people. You’ll go nuts if you try. It’s about following people who are interesting, opening the app every once in a while to check in, then going on with your day.
like this
There was a hiccup yesterday with no Linux 6.14 release or 6.14-rc8 otherwise..www.phoronix.com
like this
cp -g for a progress bar from the Rust verskons, and then a dev to come along and contribute that in the GNU C version compared the Rust ones, I think the GitHub Rust version is more inviting and easier?
like this
don't like this
like this
like this
Rivals to the Steam Deck so far have focused on Windows, but SteamOS opening up to more handhelds could mean a HP Omen device on the way.Hassam Nasir (PC Guide)
like this
like this
Among the earliest of pull requests this week ahead of the Linux 6.15 merge window expected to begin tomorrow were the media subsystem updateswww.phoronix.com
like this
The Endeavour OS enthusiast Linux distribution built atop Arch Linux is out with its March 2025 ISO refresh under the codename 'Mercury Neo' for this spin featuring the latest software packages.www.phoronix.com
like this
Lunatik is an in-kernel Lua runtime that enables dynamic scripting inside the Linux kernel—without requiring recompilation. It provides a flexible and lightweight way to extend kernel functionality…Lourival Vieira Neto (Medium)
As a grumpy old man who wishes his computer would stop changing I've been trying to get on board with XFCE for a while and the big blocker has been making things work well on my 4K screen. (For the record this post is based on Debian testing = trixie, X11, and nvidia proprietary drivers god have mercy on my soul.)
For a while XFCE only supported the type of scaling that makes things smaller. Understandably IMO this confused a few people and happily this has been upgraded and now it also makes things bigger. However in my experience this also makes things blurrier.
In my latest round of testing it appears that the situation can be fixed with a single setting: font DPI.
Settings Manager > Appearance > Fonts (tab) > Custom DPI setting > I chose 150, and logged out and in to have everything take effect.
From this single change everything is looking good in both GTK and Qt apps. I did also increase the size of my panel through the panel settings, and title bars are kind of tiny, but mostly I use maximised applications so I'm not stressing about this too much.
Hope this helps anyone else who is stuck in an "ohgod why couldn't we just stop after Windows 2000" love-hate relationship with computers.
Other noteworthy pixelfed things:
loops:
- loops source code released: mastodon.social/@dansup/114188…
- hashtags pinned videos: pixelfed.social/p/loops/798412…
- website: pixelfed.social/p/loops/781981…
Attached: 3 images The Pixelfed app login/sign-up flow has been completely redesigned based on your feedback. I was wrong, you were right. Our growing team is tackling issues I missed before, accelerating our development timeline.Mastodon
like this
No, I don't think he is sleazy or have ill-intentions. I think he genuinely wants to do good things.
The problem it's just that he lacks focus and he worries more about feeling validated than dealing with the daily grind of continuously improving his product. As soon as any of his projects start getting a minimal amount of interest and people start depending on what he has promised, he finds himself some "new" project to be busy with. At the same time, he still feels possessive about his creations, so it's hard for him to just delegate away any significant part of the system.
I hope that the successful kickstarter makes him realize that shit got real and that he already got the validation that he was seeking, and that the money is enough to get him surrounded by good people who are a bit more focused on "proper" project management.
I've recently picked up a secondhand Lenovo ThinkCentre Tiny PC which ultimately I plan to use as a home server for a variety of functions (media server being the main one) but I don't need to use it as a main desktop.
It currently has Windows 10 installed. It has a decent sized SSD but no optical drive. I want to install a suitable Linux distro on it. What's a good Linux distro for my needs? And what's the best way of doing a scorched earth on the Windows install and replacing it with said distro?
I'm not entirely a Linux noob - I used to work on Xenix and later Red Hat Linux, but that was 30 and 20 years ago respectively!
Mint is great but I have to fix my screwups.
My cheap laptop has a 128GB SSD. I have 30GB available .
I installed Mint on Sunday on a 15GB partition then realized I was immediately out of room.
Now I believe I have reformat, repartition to maybe 25GB and reinstall. Any better options?
Also, I could probably reformat the entire laptop if I could only figure out how to replace the Google Drive for sync backup for roughly 15 GB of personal photos and videos.
Technically, I wouldn’t have to do anything as it is already backed up but I guess I’d need a way to copy everything over to a Linux alternative that can be backed up from Mint.
Thoughts?
There is some new Wayland protocol support activity this week worth mentioning for both the KDE Plasma and GNOME desktops.www.phoronix.com
Haiku OS developer X512 has managed a rather impressive feat: porting NVIDIA's open-source kernel modules to Haikuwww.phoronix.com
like this
phoronix.com/news/Microsoft-Ho…
Microsoft's newest open-source contribution to the Linux kernel being proposed is..www.phoronix.com
like this
No, Microsoft would likely sooner fully adopt the Linux kernel tbh.
It aligns with their software/service as a service model.
My bet is you’ll see a windows 11 compatible user space running on Linux a la WSL ( LSW? ) in the coming decade.
I know Linux engineers who moved to Microsoft generally for this purpose
EU push for open source, GIMP3 is out, Firefox gets webapps back_ Linux & Open Source News
Try out Proton Mail, the secure email that protects your privacy: proton.me/mail/TheLinuxEXPGrab a brand new laptop or desktop running Linux: tuxedocomputers.com/en#
👏 SUPPORT THE CHANNEL:
Get access to:
- a Daily Linux News show
- a weekly patroncast for more thoughts
- your name in the creditsYouTube: youtube.com/@thelinuxexp/join
Patreon: patreon.com/thelinuxexperimentOr, you can donate whatever you want:
paypal.me/thelinuxexp
Liberapay: liberapay.com/TheLinuxExperime…👕 GET TLE MERCH
Support the channel AND get cool new gear: the-linux-experiment.creator-s…Timestamps:
00:00 Intro
00:44 Sponsor: Proton Mail
01:42 GIMP 3 is out
04:13 Firefox nightly adds PWA support back, sort of
06:36 GNOME 48 is out
08:38 Pebble is back with 2 new models
11:00 EU push for a EuroStack that competes with the US
14:14 First SteamOS powered handheld is available for preorder
16:23 AC Shadows is good on Deck, not on Linux with Nvidia
18:38 Sponsor: Tuxedo Computers
19:44 Support the channelLinks:
GIMP 3 is out
testing.gimp.org/release-notes…Firefox nightly adds PWA support back, sort of
omgubuntu.co.uk/2025/03/firefo…GNOME 48 is out
release.gnome.org/48/Pebble is back with 2 new models
linuxiac.com/pebble-is-back-in…EU firms push for a EuroStack that competes with the US
techcrunch.com/2025/03/16/euro…First SteamOS powered handheld is available for preorder
forbes.com/sites/jasonevangelh…AC Shadows is good on Deck, not on Linux with Nvidia
gamingonlinux.com/2025/03/assa…Get more from Nick - The Linux Experiment on Patreon
creating videos and podcasts about Desktop LinuxNick - The Linux Experiment (Patreon)
like this
Welcome to a new issue of "This Week in Plasma"! Every week we cover the highlights of what's happening in the world of KDE Plasma and its associated apps like Discover, System Monitor, and more.This Week in Plasma: 6.4 Improvements
like this
Learn how to use Magit, an essential tool for any git-loving Emacs user. Magit supercharges your git workflow by removing the tedium of writing arcane commands and replacing them with a simple and ergonomic user interface.Mickey Petersen (Mastering Emacs)
I'm looking for inspiration for a custom Bash prompt^[1]^. I'd love to see yours! 😊 If possible, include both the prompt's PS1, and a screenshot/example of what it looks like.
::: spoiler References
1. Type: Documentation. Title: "Bash Reference Manual". Publisher: Gnu Project. Edition: 5.2. Published: 2022-09-19. Accessed: 2025-03-21T02:46Z. URI: gnu.org/software/bash/manual/h….
- §6.9 "Controlling the Prompt". URI: gnu.org/software/bash/manual/h….
:::
Crossposts:
- sh.itjust.works/post/34840017
Share your Bash prompts!
I'm looking for inspiration for a custom Bash prompt^[1]^. I'd love to see yours! 😊 If possible, include both the prompt'sPS1, and a screenshot of what it looks like.::: spoiler References
1. Type: Documentation. Title: "Bash Reference Manual". Publisher: Gnu Project. Edition: 5.2. Published: 2022-09-19. Accessed: 2025-03-21T02:46Z. URI: gnu.org/software/bash/manual/h….
- §6.9 "Controlling the Prompt". URI: gnu.org/software/bash/manual/h….
:::Crossposts:
- sh.itjust.works/post/34840018
My shit is custom and rather elaborate.
From left-to-right:
/: commitThe code for this is on GitLab.
Useful scripts I use dailyGitLab
I'm looking for inspiration for a custom Bash prompt^[1]^. I'd love to see yours! 😊 If possible, include both the prompt's PS1, and a screenshot of what it looks like.
::: spoiler References
1. Type: Documentation. Title: "Bash Reference Manual". Publisher: Gnu Project. Edition: 5.2. Published: 2022-09-19. Accessed: 2025-03-21T02:46Z. URI: gnu.org/software/bash/manual/h….
- §6.9 "Controlling the Prompt". URI: gnu.org/software/bash/manual/h….
:::
Crossposts:
- sh.itjust.works/post/34840018
Share your Bash prompts!
I'm looking for inspiration for a custom Bash prompt^[1]^. I'd love to see yours! 😊 If possible, include both the prompt'sPS1, and a screenshot/example of what it looks like.::: spoiler References
1. Type: Documentation. Title: "Bash Reference Manual". Publisher: Gnu Project. Edition: 5.2. Published: 2022-09-19. Accessed: 2025-03-21T02:46Z. URI: gnu.org/software/bash/manual/h….
- §6.9 "Controlling the Prompt". URI: gnu.org/software/bash/manual/h….
:::Crossposts:
- sh.itjust.works/post/34840017
Not Bash, but zsh.
The host is there only because I'm usually logged in to 7 machines at once. The right prompt is the bare minimum path context, and the command # for easier !-re-execute; it disappears if the command gets long enough.
There's a bare minimum of cruft; no 2-line prompts, minimum verbosity in the prompt itself, because it's otherwise just noise that interferes with the output of whatever I'm doing and takes up space. It's especially important if I'm logged in via termux on my phone or something, where space is at a premium. What am I saying? Space is always at a premium.
$PS1 is
%{$fg[green]%}%m %{$fg[blue]%}»%{$reset_color%}%{$fg[green]%}%(5~|%-1~/…/%3~|%4~) %{$fg[yellow]%}%h%{$reset_color%}
You can see here my theme with autodetect of Python (I work a lot in Python). The orange bit is the error code returned by the previous command. Git is supported as well, and looks pretty much like powerline-gitstatus, as you'll read about below.
First, lets make Bash a little better:
# throw this in your `~/.bashrc`, and then `source ~/.bashrc` for it to take effect, or just restart your terminal.
# == shopts ==
# https://www.gnu.org/software/bash/manual/html_node/The-Shopt-Builtin.html
shopt -s autocd # cd into folder without cd, so 'dotfiles' will cd into the folder
shopt -s cdspell # attempt spelling correcting on folders
shopt -s direxpand # expand a partial dir name
shopt -s checkjobs # stop shell from exit when there's jobs running
shopt -s dirspell # attempt spelling correcting on folders
shopt -s expand_aliases # aliases are expanded
shopt -s histappend # append to the history file, don't overwrite it
shopt -s histreedit # lets your re-edit old executed command
shopt -s histverify # I'm confused.
shopt -s hostcomplete # performs completion when a word contains an '@'
shopt -s cmdhist # save multiple-line command in single history entry
shopt -u lithist # multi-lines are saved with embedded newlines rather than semicolons; explictly unset
shopt -s checkwinsize # update LINES and COLUMNS to fit outputpip install some_lib[some_extra] works in Bash, but not in Zsh And Ohmyzsh just felt it kept slowing things down, so I actually dislike Zsh ^(please don't kill me) >_>Anyway, I based this on powerline-status + powerline-gitstatus (if you want to use that instead (no, my config doesn't work), just sudo apt install powerline-status powerline-gitstatus - DO NOT USE THE PYPI VERSION (it's too outdated, and a pain to install)) because I had issues with finding the right combination of my configuration and which libraries to install for bash - there are too damn many: powerline-bash, powerline-status, powerline-rs, powerline-go, etc, etc. And they all do things just that little bit different.
Anyway, here is my ~/.config/starship.toml (archive1, archive2). It's a little long, and can probably be shortered, but that might break something again, and I'm not willing to risk anything right now.
~/.config/starship.toml - based on powerline-status + powerline-gitstatus - starship.tomlGist
It's been over three years since the last ReactOS open-source operating system release for this platform working on API/ABI compatibility with Microsoft Windowswww.phoronix.com
like this
The Vulkan 1.4.311 specification update is out today with a handful of issues resolved with various clarifications and other subtle refinementswww.phoronix.com
Try out Proton Mail, the secure email that protects your privacy: https://proton.me/mail/TheLinuxEXP Grab a brand new laptop or desktop running Linux: https://www.tuxedocomputers.com/en# https://ww...PeerTube.wtf
like this
[SOLVED] - I learned that this is a sure way to break your Debian, and no matter how you go about it, you'd wish you either waited or used a different distro altogether for this purpose. In my case, I got Nobara 41 working, which already has the latest mesa. Trying to install the latest from Debian unstable almost got me pretty turned around, and I'm glad I switched course when I did.
Original post:
Apologies for my fairly low-level question. I spent all day yesterday spinning my wheels on this.
(I do fine using Debian Linux as my daily driver, but I'm not ashamed to admit that this (and things in this area) are beyond my experience. I've never compiled anything from source. I used to be a wiz with DOS 6.22 and Windows through 7, but my brain just stopped learning these things properly some time in the past.)
My distro (MXLinux 23.x) just announced they're almost ready to include Mesa 24.2.8. I purchased an AMD RX 9070, and all my Linux games (HGL or Steam) are angry that Vulkan can't recognize a valid GPU.
I see that Mesa 25.0.2 should work, but I don't know how to either build & install from source or add a repo for that particular package only.
I see that Arch users can easily use the Mesa-git or others, but not my Debian 12.
I installed Nobara to a spare drive as a stopgap, but on that install, FH5 refuses to prompt for account sign in there no matter which Proton I use.
Edit: I'm using the AHS version which includes the liquorix 6.13.7-2 kernel, and none of the repos (testing, back ports) show a higher version of Mesa.
EDIT2:
System:
Kernel: 6.13.7-2-liquorix-amd64 [6.13-5~mx23ahs] arch: x86_64 bits: 64 compiler: gcc v: 12.2.0 parameters: audit=0
intel_pstate=disable amd_pstate=disable BOOT_IMAGE=/vmlinuz-6.13.7-2-liquorix-amd64
root=UUID=<filter> ro quiet amdgpu.ppfeaturemask=0xffffffff init=/lib/systemd/systemd
Desktop: Xfce v: 4.20.0 tk: Gtk v: 3.24.38 info: xfce4-panel wm: xfwm v: 4.20.0 vt: 7
dm: LightDM v: 1.32.0 Distro: MX-23.5_ahs_x64 Libretto May 19 2024 base: Debian GNU/Linux 12
(bookworm)
Machine:
Type: Desktop Mobo: ASRock model: B650E Taichi serial: <superuser required> UEFI: American
Megatrends LLC. v: 3.20 date: 02/21/2025
CPU:
Info: model: AMD Ryzen 5 9600X bits: 64 type: MT MCP arch: N/A level: v4 note: check
family: 0x1A (26) model-id: 0x44 (68) stepping: 0 microcode: 0xB404023
Topology: cpus: 1x cores: 6 tpc: 2 threads: 12 smt: enabled cache: L1: 480 KiB
desc: d-6x48 KiB; i-6x32 KiB L2: 6 MiB desc: 6x1024 KiB L3: 32 MiB desc: 1x32 MiB
Speed (MHz): avg: 3175 high: 5437 min/max: 3000/3900 boost: enabled scaling:
driver: acpi-cpufreq governor: ondemand cores: 1: 2900 2: 2972 3: 2959 4: 3018 5: 5437 6: 2819
7: 3000 8: 3000 9: 3000 10: 3000 11: 3000 12: 3000 bogomips: 93602
Flags: avx avx2 ht lm nx pae sse sse2 sse3 sse4_1 sse4_2 sse4a ssse3 svm
Vulnerabilities:
Type: gather_data_sampling status: Not affected
Type: itlb_multihit status: Not affected
Type: l1tf status: Not affected
Type: mds status: Not affected
Type: meltdown status: Not affected
Type: mmio_stale_data status: Not affected
Type: reg_file_data_sampling status: Not affected
Type: retbleed status: Not affected
Type: spec_rstack_overflow status: Not affected
Type: spec_store_bypass mitigation: Speculative Store Bypass disabled via prctl
Type: spectre_v1 mitigation: usercopy/swapgs barriers and __user pointer sanitization
Type: spectre_v2 mitigation: Enhanced / Automatic IBRS; IBPB: conditional; STIBP: always-on;
RSB filling; PBRSB-eIBRS: Not affected; BHI: Not affected
Type: srbds status: Not affected
Type: tsx_async_abort status: Not affected
Graphics:
Device-1: AMD vendor: Gigabyte driver: amdgpu v: kernel pcie: gen: 5 speed: 32 GT/s lanes: 16
ports: active: DP-1 empty: DP-2, HDMI-A-1, HDMI-A-2, Writeback-1 bus-ID: 03:00.0
chip-ID: 1002:7550 class-ID: 0300
Device-2: AMD vendor: ASRock driver: amdgpu v: kernel pcie: gen: 4 speed: 16 GT/s lanes: 16
ports: active: none empty: DP-3, DP-4, DP-5, HDMI-A-3, Writeback-2 bus-ID: 4f:00.0
chip-ID: 1002:13c0 class-ID: 0300 temp: 42.0 C
Display: x11 server: X.Org v: 1.21.1.7 compositor: xfwm v: 4.20.0 driver: X: loaded: amdgpu
dri: swrast gpu: amdgpu display-ID: :0.0 screens: 1
Screen-1: 0 s-res: 1920x1080 s-dpi: 96 s-size: 509x286mm (20.04x11.26") s-diag: 584mm (22.99")
Monitor-1: DP-1 mapped: DisplayPort-0 model: Acer XF250Q serial: <filter> built: 2018
res: 1920x1080 dpi: 90 gamma: 1.2 size: 544x303mm (21.42x11.93") diag: 623mm (24.5") ratio: 16:9
modes: max: 1920x1080 min: 720x400
API: OpenGL v: 4.5 Mesa 24.2.8-1mx23ahs renderer: llvmpipe (LLVM 15.0.6 256 bits)
direct-render: Yes
Even amid the ongoing FreeDesktop.org GitLab cloud/server migration, Eric Engestrom has managed to release Mesa 25.0.2 on schedule as the newest stable release for these open-source OpenGL and Vulkan drivers for Linux systems.www.phoronix.com
One more idea... If you're willing to temporarily add the Debian testing "deb-src" repository to your sources.list, which should be slightly safer, then there's a chance that this might work: wiki.debian.org/SimpleBackport…
Seems not completely crazy, unless MX has its own way to do that.
cross-posted from: lemmy.world/post/27182706
At the time of writing Summit for Lemmy should be completely open source.After a lot of contemplation I've decided to open source the app. There are still some changes that probably need to happen before it can be considered "FOSS" but this is a huge step I think.
As I'm voiced my opinions on this previously, the main repository for Summit will not be to the public for PRs. If you encounter bugs or have any feature requests please continue to send them through the proper channels (ideally to this community).
Enjoy~~
Summit for Lemmy. Contribute to idunnololz/summit development by creating an account on GitHub.GitHub
like this
don't like this
Aiming for a 10 year life-cycle for smartphonespostmarketOS
like this
like this
The librem 5 still exists and has existed for a while...
lol. Just lol.
Edit: For those unaware.
"IIt’s also worth noting that plenty of Purism users have reported that they haven’t received the company’s previous Librem 5 phone, several years after ordering it. That phone first started shipping in 2020, while users report that Purism isn’t honoring refunds for these delayed orders or that the company is dragging its feet in this regard. So if it looks fishy and smells fishy, well, it must be a fish."
A US firm is selling a Linux phone called the Liberty Phone. But you should steer clear of this device, and not just because of the price.Hadlee Simons (Android Authority)
I refunded my librem preorder when it started smelling fishy and they did it quickly and hassle free, luckily.
I bought the pmOS edition of the pinephone instead for half the price. It hasn't really held up as a daily driver, due to its specs, but I still tinker with it.
LLM scrapers are taking down FOSS projects' infrastructure, and it's getting worse.Niccolò Venerandi (LibreNews)
like this
And Tor itself
It is part of the denial of service protection
Crossposted from: lemmy.ml/post/27387345
chroot, dd, debootstrap, and partition editors that allow you to install the new system in an empty container or blanket-overwrite the old system go against the spirit of this challenge.
package.provided does, [anything]->Gentoo shouldn't be that difficult. Of course, whether "work your way through about twenty packages one at a time, then just uninstall the rest of the old system and reinstall everything using Portage" violates the spirit of the challenge is another question.
Crossposted from: lemmy.ml/post/27387345
chroot, dd, debootstrap, and partition editors that allow you to install the new system in an empty container or blanket-overwrite the old system go against the spirit of this challenge.
3aqn5k6ryk
in reply to ikidd • • •priapus
in reply to ikidd • • •Do people in this thread not understand that Microsoft frequently contributes to Linux? They've already lost the battle there. They rely on Linux for servers as much as everybody else.
Not necessarily saying this is a good thing or not, but writing off any Linux contributions Microsoft makes would be pretty silly.
ganymede
in reply to priapus • • •priapus
in reply to ganymede • • •Or they're just adding improvements to the software they heavily rely on.
I don't trust or like Microsoft, but the likelihood of there being malicious intentions in this is incredibly low. Just imagine the fallout if Microsoft tried to sabotage the kernel.
ganymede
in reply to priapus • • •which they can do in private any time they wish, without any of the fanfare.
if they actually believe in opensource let them opensource windows 7 ^1^, or idk the 1/4 of a century old windows 2k
instead we get the fanare as they pat themselves on the back for opensourcing MS-DOS 4.0 early last year (not even 8.0, which is 24 years old btw, 4.0 which came out in 1986).
38 years ago...
MS-fucking-DOS, from 38 years ago, THAT'S how much they give a shit about opensource mate.
all we get is a poor pantomime which actually only illustrates just how stupid they truly think we are to believe the charade.
does any of that mean they're 100% have to be actively shipping "bad code" in this project, not by any means. does it mean microsoft will never make a useful contribution to linux, not by any means. what it does mean is they're increasing their sphere of influence over the project. and they have absolutely no incentive to help anyone but themselves, in fact the opposite.
as everyone knows (it's not some deep secret the tech heads on lemmy somehow didn't hear about) microsoft is highly dependent on linux for major revenue streams. anything a monolith depends on which they don't control represents a risk. they'd be negligent if they didn't try to exert control over it. and that's for any organisation in their position. then factor in their widespread outspoken agenda against opensource, embrace, extend, extinguish and the vastly lacking longterm evidence to match their claims of ❤ opensource.
they're welcome to prove us all wrong, but that isn't even on the horizon currently.
^1^ yes yes they claim they can't because "licensing", which is mostly but not entirely fucking flimsy, but ok devils advocate: release the rest, but nah.
InnerScientist
Unknown parent • • •Preventing kernel modifications to expand upon the work done for kernel lockdown. Add additional layers to system security.
Kernel_lockdown:
InnerScientist
Unknown parent • • •From the mailing list I'm reading that kernel maintainers have heard a few companies looking for something like this, so yes?
Edit:
WasPentalive
in reply to ikidd • • •They probably named it HORNET for a reason - think Japanese Murder Hornets... What Could Possibly Go Wrong??
It will probably start out as little glitches and slowdowns to destroy faith in your system ("Windows works right all the time") a random 2 second pauses. Finally one day every Linux box in the world crashes, all at the same time, because some 'dummy' in Microsoft deleted the private signing key.