Chapter 99: Page 34Who knows who what
Gunnerkrigg Court is a science-fantasy webcomic created by Tom Siddell. It is updated online three days a week.www.gunnerkrigg.com
Chapter 99: Page 33Thanks for nothing.
Gunnerkrigg Court is a science-fantasy webcomic created by Tom Siddell. It is updated online three days a week.www.gunnerkrigg.com
Chapter 99: Page 32Thanks, I guess?
Gunnerkrigg Court is a science-fantasy webcomic created by Tom Siddell. It is updated online three days a week.www.gunnerkrigg.com
Sort of command that would pull a download that is self executed to the host machine?
That's worded a bit fucky, if I need to elaborate, please chime in.
Something like this?
alias ls="who am i >> /var/log/intruder.log && logout"
alias l="/usr/bin/ls"
Partially for sure. Other part of this would be somehow executing a command on the attackers machine that originated as their own input, but they wouldn't be privy to that due to the alias.
I've seen some videos where people will willingly let scammers into their machine, and Honeypot them with a file that they execute, typically named like credit card info or bank info or something. But they knowingly click that and open it, I don't know what needs to be done on the "make this code execute on the attackers machine" part.
If someone is ssh'd into your machine, are there any escalated privileges you'd already have back to their machine because they've willingly come to yours?
I've þought about how to do ðis myself. Ðe best idea I've had is to build a virus, or simply someþing destructive, or a program ðat downloads CP and emails it to the FBI; and use Justine's APE to build an executable and call it "bitcoin_wallet.exe". Entice ðe hacker to download a malicious program and execute it on ðeir computer.
Ðen I lose interest and spend the time instead doing someþing to furðer tighten security on my VMs.
Extensions load unknown sites into invisible Windows. What could go wrong?Dan Goodin (Ars Technica)
Extensions load unknown sites into invisible Windows. What could go wrong?Dan Goodin (Ars Technica)
Residents in rural Georgia say the data centre next door has disrupted their water supply.By Michelle Fleury (BBC News)
The FAA’s decision to deny a special medical clearance for an airline pilot taking antidepressant medication was “arbitrary and capricious."Zach Vasile (FLYING Magazine)
The Diplomacy Update for X4: Foundations is now in Beta bringing some huge new features to the popular space sim.Liam Dawe (GamingOnLinux)
just_another_person likes this.
Older readers might be interested in this one. Silent Shoals Software announced In Silence Waits, a modern take on classic graphical adventures.Liam Dawe (GamingOnLinux)
Need a fresh Tower Defense game to try out? Here's another tip for you! Operation Octo arrives in September with a chance to try it early.Liam Dawe (GamingOnLinux)
With a demo live on Steam, Vehicle No. 4 could be one to watch if you love your horde survival games with you building your own vehicle.Liam Dawe (GamingOnLinux)
just_another_person likes this.
Coming to Early Access later in July, MR FARMBOY blends elements of Stardew Valley with automation and optimisation.Liam Dawe (GamingOnLinux)
Opinion - Zeynep Tufekci
July 9, 2025[as usual, independent thinking from #ZeynepTufekci ]
"What Kelly didn’t mention, but which has since become well known, is that the Weather Service employee whose job it was to make sure those warnings got traction — Paul Yura, the long-serving meteorologist in charge of “warning coordination” — had recently taken an unplanned early retirement amid cuts pushed by the so-called Department of Government Efficiency. He was not replaced.
To a Washington bean counter, his loss might have looked like one tiny but welcome subtraction in a giant spreadsheet, but not in a region so prone to these perilous events that it’s known as Flash Flood Alley. Hundreds of kids at summer camps slept in cabins along the river. The plan was for folks at the upstream camps to send word to the downstream camps if floodwaters got scary. But if even the highest official in the county wasn’t on high alert, how were the camp counselors supposed to understand the danger — or, in an area without reliable cellphone coverage, to act on it?"
https://www.nytimes.com/2025/07/09/opinion/texas-floods-nws.html
Israeli Settlers Set Fire Near Ancient Church in West Bank Christian Village - Antiwar.com (2025-07-08)news.antiwar.com/2025/07/08/is…
———>> Three priests based in the village of Taybeh issued a statement calling for help in the face of growing settler violence
>> In a joint statement, priests from the three churches in #Taybeh — the Latin Church, Greek Orthodox, and Melkite Catholic — condemned the attack and asked for action in the face of growing settler violence against the village, which comes amid a spike in settler attacks across the West Bank…
A group of Jewish settlers set a fire near an ancient Christian church in the Palestinian Christian village of Taybeh in the Israeli-occupied West Bank, Nabd El-Haya, a radio station based in the town, has reported.News From Antiwar.com
like this
McDonalds gets millions of applications? wtf?
ETA: Yeah, I guess they do.
eu.usatoday.com/story/money/20…
McDonald's announced plans for a hiring surge alongside U.S. Secretary of Labor Lori Chavez-DeRemer.Melina Khan (USA TODAY)
President Donald Trump expressed mounting frustration Tuesday with Russian President Vladimir Putin, promising during a lively Cabinet meeting to boost U.S. military aid to Ukraine.Katherine Doyle (NBC News)
externelly likes this.
The Senior Community Service Employment Program through Goodwill helps Indianapolis seniors get jobs and learn new skills.Claire Rafford (Mirror Indy)
[Cal Bryant] hacked together a home automation system years ago, which more recently utilizes Piper TTS (text-to-speech) voices for various undisclosed purposes. Not satisfied with the robotic-soun…Hackaday
I wanted to publish constructive criticism towards Reddit on Reddit but unfortunately that's basically impossible since they'll do everything to censor/silence that for their own gains to not hurt their reputation (you might also get censored for mentioning Reddit alternatives like Lemmy).
So I have to do it here.
I'm addressing censorship because that's basically the biggest issue.
I'm not always against all censorship as it can be beneficial in some circumstances to provide constructive discussion to not end up like X where everyone is shouting hateful opinions without getting heard anyways. (But very generally I'm still strongly against censorship).
My main problem is about wrongful censorship. Reddit is basically unusable for me since I had the experience multiple times that I get banned from a subreddit for actually no reason just because a moderator feels like it. And when I then ever accidentally post on the same subreddit with a different account (which is hard when there are multiple to keep track of) your whole access to Reddit gets banned for about 12 months by advanced fingerprinting (so even if you create a new account it gets automatically banned, so you basically cannot post anything on Reddit for a year).
While Lemmy is somewhat better in this regard I think it's mainly only because it's so small, is only known by a very small enthusiastic group and therefore needs less moderation. But I realized that even here once a post is slightly controversial it will get removed sooner or later. Frankly I wouldn't be surprised if this gets removed too. I know that the fediverse theoretically provides protection against censorship by being able to host your own instance but practically that's very unrealistic to see properely moderated instances being used by enough people.
I think it's a shame that if you're looking into providing high quality topics and discussions that are valued by many people and you just want to learn by broadening your intellectual horizons, you can get banned every second because some moderator had a bad day.
And I'm not just talking about posting something maybe somewhat controversial that a moderator might not like. I literally had many situations where I posted completely normal posts that completely aligned with the subreddits rules. I could literally post a normal cat picture on a cat picture subreddit and get banned seconds later without being able to talk to the moderators. In some instances the cat picture post (I'm using that as a metaphor) didn't even get published and I got banned anyways. Often it's enough to have a single wrong word that is filtered by Reddit so your whole post won't publish.
I think the core concept of platforms like Reddit and Lemmy can be very valuable but it's executed very badly. There should be multiple independent steps of verifying if someone should get banned and in what way. And probably integrate a good test for joining the community so that it's more likely for people to be rational from the start (that way you don't even have to look at so many potential flags).
Maybe AI could be better for this by having less human emotion based judgement?
But I'm conflicted because on one hand these platforms can have such a great potential and value but on the other hand it's maybe better to not use it anyways since it can be quite unhealthy to spend much time on there.
Anyways I think it's sad we can't freely express ourselves on social media and can't have proper discussions. This really feels like being in a 3rd world country with dictatorship and this shouldn't be the case in 2025. Especially nowadays where it's extremely important to have open and trusted discussion about topics.
There should be a platform with good/useful censorship and a platform truly without censorship that isn't owned by a Nazi billionaire. Or even better: have an all-in-one solution that has spaces without and with censorship to varying degrees (preferably a degree that can be decided by the users and not by the corporation).
like this
don't like this
Cochise likes this.
I think it's really just the fact that there are moderators who ban people based on their mood. It has nothing to do with the actual content as I've seen many posts that seem actually questionable but haven't been banned. Of course you only see the people who didn't get banned and can post and you can't see the people who are banned because well, they cannot post.
If I'd show you the times I got banned you will see that it is basically randomly and those moderators invent things that are far detached from reality.
Cochise doesn't like this.
There should be multiple independent steps of verifying if someone should get banned and in what way. And probably integrate a good test for joining the community so that it's more likely for people to be rational from the start (that way you don't even have to look at so many potential flags).
How much would you pay to join a community with that level of protection for user rights? Like the old subscription based forums, some of which are still floating around the internet?
Because "multiple independent steps of verifying" is, frankly, going to be a lot of frustrating, thankless, and redundant work for moderators. I mean, we know how to safeguard people's rights through legalistic processes. Courts do it all the time. It's called due process. And due process is frequently a slow, complicated, and expensive pain in the ass for everyone involved. And I think very few people would want to do that work for free.
(Conveniently, this would also serve as a good test for joining such a community - people are more likely to follow the rules and act like decent human beings if a subscription they paid for is riding on it, and it would price out AI and spambots in the process.)
Sorry for making a post for such a basic question but I wasn't able to figure out my own so I'm come here as last resort.
I bought a new CPU, RAM, and motherboard combo and I migrated all my non-conflicting parts from my previous machine, which had a Linux install and a Windows install.
When I booted into the PC, I did not see an option in the boot menu or in the boot order for Linux whatsoever. Only my windows 11 IoT install and my new nanokvm.
I had a asrock x570 extreme4 and switch to a Msi Pro x870E-P WiFi. I have updated to the newest BIOS.
I was previously using systemd as my boot manager until I tried switching over to grub but neither trying to fix system D or installing grub seemed to work for me.
So I was hoping that I could delete my boot partition or somehow start from scratch without deleting any data in my root partition (Btrfs sub volumes) . and get a step-by-step installation guide for me since I can't seem to understand the arch wiki at my current state.
I would like to give you guys more information about the scenario and more context of what I've done, but i'm sadly not capable.
/dev/nvme0n1 is my linux install while /dev/nvme1n1 is Windows 11 IoT
New motherboard with new boot options, and possibly an incompatible partition scheme.
Pull up the boot menu during POST and force it to boot the partition. That usually works depending on the manufacturer.
Otherwise, get a LiveUSB and make sure your drive is actually showing up post-boot.
Mobile network anomalies consistent with cell phone surveillance were detected at a July 4 protest at an ICE field office in Washington state.Mikael Thalen (Straight Arrow News)
Andi's Writeup
Researchers have developed Centaur, a computational model that can predict and simulate human behavior across a wide range of psychological experiments[^1]. Built by fine-tuning Meta's Llama 3.1 70B language model on a dataset called Psych-101, Centaur was trained on over 10 million choices made by 60,000 participants across 160 psychology experiments[^1].The model outperforms existing cognitive models in predicting human behavior, even generalizing to entirely new scenarios it wasn't trained on[^1]. "You can basically run experimental sessions in silico instead of running them on actual human participants," said Marcel Binz, cognitive scientist at the Helmholtz Institute for Human-Centered AI[^2].
Centaur demonstrates unprecedented capabilities in capturing human cognition:
- Predicts behavior with 64% accuracy across varied tasks[^3]
- Generalizes to modified experimental scenarios, like switching from "spaceships" to "magic carpets" in decision-making tasks[^4]
- Shows alignment between its internal representations and human neural activity[^1]
- Performs well on out-of-distribution tasks in moral decision-making, economic games, and logical reasoning[^1]
"It's the first model that can do any kind of task exactly like a human can," said Russ Poldrack, cognitive scientist at Stanford University[^4].
[^1]: Nature - A foundation model to predict and capture human cognition
[^2]: Nature - This AI 'thinks' like a human — after training on 160 psychology studies
[^3]: Live Science - New AI is better at predicting how we behave than ever before, scientists say
A new artificial intelligence (AI) model called Centaur can predict and simulate human thought and behavior better than any past models, opening the door for cutting-edge research applications.Perri Thaler (Live Science)
Adrian Holovaty, founder of music-teaching platform Soundslice, finally solved a months-long mystery: weird images of ChatGPT sessions kept being uploaded to the site.Julie Bort (TechCrunch)
The lack of coverage is becoming more problematic as climate change intensifies storms.Coco Liu (Bloomberg)
NATO member Poland scrambled fighter jets overnight as Russia launched record numbers of drones and missiles at neighboring Ukraine.Ellie Cook (Newsweek)
T-Mobile told the FCC that it will end its DEI programs “not just in name, but in substance”The move comes as it awaits regulatory approval of two deals: USce | Just like that, T-Mobile is ending its diversity, equity and inclusion (DEI) programs to …Monica Alleven (Fierce Network)
Lit Hub’s list of the most anticipated books of the second half of the year includes many genre titles, but, one might argue, not enough. What can I say, I’m an excitable boy, still in …Literary Hub
"We know that some microbes on Earth can tolerate the range of pH found on Enceladus."Keith Cooper (Space)
Hello everyone, I have I guess a bit tricky situation on hand
I have 4 devices (2 computers, 2 cellphones) on my home network, they're all connected on the same LAN, and additionally, all are also running Tailscale (rather out of the box configuration except specific IPv4 addresses given by me)
When going out of home, I normally take up to 2 devices with me and connect to the ones at home through the Tailscale IP
Usually I do this by typing the IP address manually on either scenario, if I'm home I connect typing the LAN IP Addresses for the devices, otherwise I manually type the Tailscale IP addresses
I would like to now optimize this process using Host Names; I would like to type in say, SSH pc1 and that connect via LAN IP if available, and otherwise fallback to Tailscale IP if not
Result being I can just type the one singular host name, and connect successfully regardless if I'm home or not, also using the best possible connection (LAN preferred over Tailscale)
I am aware Tailscale has a feature that it does this out of the box using the Tailscale IP on the same LAN, but this doesn't seem to work on all devices (the phones) and additionally that generates some noticeable overhead given their age too
I have been reading about Avahi and thinking of using it on each device, advertising the same host name with both it's IPs, which I am yet to try but figured I could use more input on solutions if anyone has experience with it, I'd appreciate any
Thanks for reading, and I hope you have a nice day
My comment was kind of high level because I wasn’t sure how much you knew technically already.
But yeah, you would unfortunately need access to the DNS server on your router and be able to add custom records. You’d additionally need a DNS server somewhere for Tailscale clients whether that’s on a Tailscale node or just on the public internet (and configure Tailscale to use it).
I suppose a last-ditch effort would be to buy a domain and create records pointing to both the Tailscale and internal LAN IP addresses. The downside is that you’re basically making the map to your network public but at least people wouldn’t actually be able to access those internal (LAN, Tailscale) IP addresses. The benefit would be only needing to manage one set of records in one place.
I’m really rusty on my OSI model but Avahi, NETBEUI and friends won’t work over WireGuard tunnels because those are layer 2 protocols whereas WireGuard operates at layer 3 (if I remember correctly).
I think I understand why Avahi wouldn't work with that explanation, I keep digging and now my router is not exactly inaccessible, it's managed by my ISP instead which is annoying but I supposedly can still ask them to tweak things for me so I may have a chance
Tailscale already has DNS servers working on Tailnets (they call it mDNS, or magicDNS) which is I believe 100.100.100.100... actually, the documentation states that every tailscale-running device is a DNS server on itself too but either way that IP is private on every tailnet, remains accessible and host names are configurable on the Tailnet too
If I'm not mistaken on the functioning of DNS, I should be able to do it with that primary-router secondary-tailscale DNS setup I hypothesized and on LAN that will yield perfect connectivity, while out from home there would be no such records and it'll fall back to Tailscale's DNS which is already private (worst concern is just sending a request for a hostname on public network but that shouldn't be that big of a deal)
At this point I might have this solved, but of course, more input is nice too, It'll take some time for my ISP to work for me on this
cheese_greater likes this.
Tags:
- 2025070800 (Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet, Pixel Fold, Pixel 8, Pixel 8 Pro, Pixel 8a, Pixel 9, Pixel 9 Pro, Pixel 9 Pro XL, Pixel 9 Pro Fold, Pixel 9a, emulator, generic, other targets)
Changes since the 2025070700 release:
- update to BP2A.250705.008 vendor files (July 2025 Pixel monthly release)
- disable temporary unconditional system crash notifications since we've gotten the initial feedback we needed since releasing our port to Android 16 (users can enable this themselves via Settings > Security and privacy > More security and privacy > Notify about system process crashes)
- NFC: always show standard confirmation dialog before opening a URL instead of it only being enabled for a small subset of users
- temporarily remove NFC auto-turn-off feature since it can cause NFC HAL or system_server crashes in rare edge cases and we need to entirely reimplement it inside of the NFC APEX module to avoid the problems (there were rare issues reported prior to Android 16 but 1 user reported an NFC HAL crash loop on Android 16 making it clear we need to drop this until we redo it in a better way)
The new doll includes accessories that 'accurately reflect the medical equipment' people with Type 1 diabetes may need, Mattel said.
From this RSS feed
Nanook doesn't like this.
But I'd have to buy a Barbie first..
Sigh, how about an Edible Barbie, you just bite her legs off?
And once you get down to eating the lady parts, you get the true edibles and get stoned to the bone?
cross-posted from: beehaw.org/post/20996269
I flew out of Denver on Monday and was told I didn’t have to take off my shoes.
I often hear how the TSA was/is security theatre. Was this ever proven with any kind of stats? Did they ever stop any big incidents from occurring?
I remember going through various American airport security in the 2000's and thought it was intimidating (i was a kid). But i figured it would at the very least deter people who might attempt some kind of crime of opportunity? Idk.
They find a lot of guns (about 5,000/yr), but it is usually from people that forget they can't take guns on a plane.
What they don't catch is unknown, but the tests show probably a lot more
onemileatatime.com/tsa-fails-t…
The results of yet another internal test have been revealed, where TSA agents have missed 95% of weapons that were brought through the checkpoint.Ben Schlappig (One Mile at a Time)
I think a lot of people have heard of OpenAI’s local-friendly Whisper model, but I don’t see enough self-hosters talking about WhisperX, so I’ll hop on the soapbox:
Whisper is extremely good when you have lots of audio with one person talking, but fails hard in a conversational setting with people talking over each other. It’s also hard to sync up transcripts with the original audio.
Enter WhisperX: WhisperX is an improved whisper implementation that automatically tags who is talking, and tags each line of speech with a timestamp.
I’ve found it great for DMing TTRPGs — simply record your session with a conference mic, run a transcript with WhisperX, and pass the output to a long-context LLM for easy session summaries. It’s a great way to avoid slowing down the game by taking notes on minor events and NPCs.
I’ve also used it in a hacky script pipeline to bulk download podcast episodes with yt-dlp, create searchable transcripts, and scrub ads by having an LLM sniff out timestamps to cut with ffmpeg.
Privacy-friendly, modest hardware requirements, and good at what it does. WhisperX, apply directly to the forehead.
WhisperX: Automatic Speech Recognition with Word-level Timestamps (& Diarization) - m-bain/whisperXGitHub
You should be able to get decent results if you pipe your tracks through demucs first to isolate the vocals.
Vanilla whisper will probably be better than whisperX for that use case though.
Depending on how esoteric your music library is, you can also build a lyrics DB with beets: beets.readthedocs.io/en/stable…
Code for the paper Hybrid Spectrogram and Waveform Source Separation - adefossez/demucsGitHub
I think you won't regret it. If the container startup installs stuff, you might lock yourself out when the remote server has issues, your network has issues, or if the package you install changes due to an update.
With it baked into an image, you have reproducible results. If you build a new image and it doesn't work anymore, you can immediately switch back to the old one and figure out the issue without pressure.
Git 2.50.1 fixes seven CVEs, including critical flaws in submodule handling, bundle cloning, and GUI tools.Bobby Borisov (Linuxiac)
Searching gives me the impression there's a million ways to solve the same problem on Linux, and I find myself profiling answers into about four categories at a glance:
I'll usually just take solutions from the first category, which almost always works, save for differences between updates and versions. Solutions in the second category also seem to end with a 50% chance of the OP unable to solve the problem. If I'm desperate, I'll try the second one, but it often ends up not working, eventually leading me to come up with a much cleaner solution of my own.
Curious if anyone else does this too and if those one-liners are really better solutions or if it's just confirmation bias.
like this
The usual tech support search:
So to answer the question, I can usually tell I'm getting close to the solution when I say "Oh for fuck's sake" as I'm closing tabs lol.
like this
I love to go with just rip out what ever is broken never look at it again and till eventually forgetting something was broken reinstalling what ever I ripped out only for everything to work again
Despite trying to reinstall things like 3 times before.
The key is you HAVE to forget about the problem or it knows your trying to trick it and it breaks it self again!
I'm just using the Cosmic Terminal that's part of the Pop!_OS Cosmic Alpha, but I ran into similar issues with Gnome terminal and even with Termius.
Scenario:
I'm currently working on leveraging a VPS to act as the gateway to my homelab so I have one ssh session to Unraid server and one to VPS. One in each tab. Obviously the name shows up as what the username@servername is called in each tab. But I keep getting tripped up and sometimes try to do something from the wrong machine. Once I even failed to realize that the ssh session to one of them cut out and I was back on my desktop and took me an embarrassingly long time to realize why stuff was failing.
So what are y'all using to keep that organized in your work flow? Separate terminal windows instead of tabs? Some shell customizations to make them look different than one another? Or just so ingrained in your brain that you never have this problem?
Hello,
Trying to use my linux partition to remote into windows PCs and I am struggling to get ninja remote software to work with even a browser running through wine. Has anyone used this software before and have a solution?
Funny I just spend a few hours working on this on my workstation. Tested in VM first before deploying out to my main machine. but here are rough steps:
You have to use wine and the browser extension "User-Agent Switcher and Manager"
I would say first install the browser extension then log into your RMM agent. The button to remote will appear but won't work.
Click the remote in button and Download the 32bit agent from the pop up
Then run wine not sudo on that exe file.
Once installed you need to make a desktop entry
[nano ~/.local/share/applications/ninja-remote.desktop]
#Paste this with the correct path and username
[Desktop Entry]
Name=NinjaOne Remote
Exec=bash -c 'wine "/home//.wine/drive_c/users//AppData/Roaming/NinjaRemote/ncplayer.exe" "%u"'
Type=Application
Terminal=false
MimeType=x-scheme-handler/ninjarmm;
###
Second to last Register the desktop Entry:
run: xdg-desktop-menu install ~/.local/share/applications/ninja-remote.desktop
run: xdg-mime default ninja-remote.desktop x-scheme-handler/ninjarmm
Lastly, Paste this in your firefox extension (The we used to trick sites into thinking we are windows)
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Let me know how it goes.
Cheers!
With SUSE's help, European companies and governments can ensure their IT support, software, and data assets are safe.Steven Vaughan-Nichols (ZDNET)
like this
If a person reads a lot of theory about how to swim, different types of techniques, other people's written experiences etc., can they swim if thrown in a deep swimming pool? Or, at least, be able to swim enough to reach the steep end and save themselves from drowning?
By "a lot", I mean spending over 6 months to a year, gaining theoretical knowledge. And when we throw them in the pool, they are willing to try it, as in, "I have learnt enough, and I am willing to try it out."
I know that stock Android itself is spyware.
What tips about setting up my stock Android phone would you give me?
It's not factory unlocked so I'm sticking with Google Android.
Things I've done:
- Stopped and disabled all apps that I don't use or need.
- Replaced all apps that I can with FOSS alternatives from github using Obtainium.
- Not installed things that I can just check on my laptop like email.
Is there anything else that I can do?
Thanks in advance
Edit
I've also:
- Changed my DNS to Mullvad DNS
- Restricted app permissions to only what they need
- Not signed into the phone. I don't even have Gmail account.
I made the unfortunate post about asking why people liked Arch so much (RIP my inbox I'm learning a lot from the comments) But, what is the best distro for each reason?
RIP my inbox again. I appreciate this knowledge a lot. Thank you everyone for responding. You all make this such a great community.
like this
Lots of projects claim to be the “smallest” or “simplest” Kubernetes, but they never provide data to back it up. Let’s look at how these distributions compare to Talos Linux.Justin Garrison (Sidero Labs)
And obviously their option is the "best". From the conclusion:
Talos Linux is unique. It’s the only option that includes OS management in a purpose-built distribution for running Kubernetes. There’s no compromise for scaling up or down. In terms of small-scale numbers, it “wins” in several of the examined categories, including memory usage, disk r/w, and installation size. But all of these metrics are side effects of Talos Linux’s defining characteristic: It’s simple.
You could try mine, SimpleK8s (kubeadm, containerd, systemd, buildroot), ~50Mb single file (kernel+initramfs).
simplek8s.org/
The current footprint is lower than every alternative commented on this article.
So, a while back I installed Xfce with Chicago95, but was disappointed. Xfce just doesn't vibe with me, and a strict emulation of Windows95 is not really what I wanted, I just wanted something that "felt" that classic.
So I was gonna give up and just use KDE, until I saw TDE. I think TDE is probably what I'm looking for but I'm concerned about using anything so minor because security.
It TDE secure (for personal use)?
Can a DE even be insecure, or are they all generally as secure as each-other as long as you follow the rules (trustworthy software, closed firewall, install patches fast, and disaster recovery plans)?
What vulnerabilities can a desktop environment even have (edit)?
It TDE secure (for personal use)?
Depends on your threat modeling. Though, unfortunately, none of the DEs/WMs on Linux offer perfect security; this even applies to a hardened distro like secureblue.
So, practically-speaking, it probably ain't great. But we aren't used to great anyways 😅.
Oh damn, so just viewing a file in your file manager is enough to get infected in an insecure desktop environment, as thumbnails can be generated programmatically? If I clicked a bad link that would 100% infect my system.
I'm not worried too much about screen-capture. I'm worried first and foremost about triggering any arbitrary code execution and thumbnail generation on a file would definitely do it.
So basically they still require arbitrary code execution as a starting point.
Another guy shared this link from Secureblue that goes into thumbnail generation, which can be done programmatically and has been documented in the past as an avenue for infection in Nautilus.
like this
Right at the top:
FOKS is like Keybase, but fully open-source and federated, with SSO and YubiKey support.
I guess the reason I am asking is that I have never understood the use-case for Keybase either.
So your answer does not really answer my question. 😀
like this
just_another_person doesn't like this.
like this
Is the data and public keys being replicated in the communication between instances? it's not made clear how the federation actually works, because "enabling users on different servers to share data with end-to-end encryption" (from foks.pub/) is something all services with TLS / HTTPS support already do...
Also.. one big plus for the OpenPGP HKP protocol is that technically you can self-host your own key in a static HTTPS server with predefined responses and be able to have it interact with other servers and clients without issue. I'm expecting the more complex nature of FOKS might make self-hosting in this way difficult. I'd rather minimize the dynamic services I expose to the outside publicly if I'm self hosting.
Eleven init systems enter, one init system leaves.Tyblog
Sensitive content
Well, generally, the answer is a no. Nails and intestines do not mix well, and once you're past the anus, that's what you're dealing with.
It isn't impossible to modify the nails to be less risky, but never to the degree that I'd be willing to have them up my rear, even if I was into that. There's reasons that nurses and nurse's assistants are often expected to keep their nails short, and that's one of them. We don't go wrist deep, and it's still too big a risk.
Way I see it, you have two options. One is to cut them back to where they don't extend past the end of the fingers, then use two nitrile gloves over your hand that's doing the work. You can still keep pretty nails like that, they just won't be as showy
The other is to take the risk, and wrap the nails in something like gauze, then tape them, then glove up. I've heard of people doing that with no injury, but it is still risky.
If you can't/won't do either of those, call it done and get a fist dildo.
The popular Linux gaming image Bazzite has a July 2025 update out with some interesting new features and expanded device support.Liam Dawe (GamingOnLinux)
The National Education Association, the United States’ largest teachers’ union, has voted to cut all ties with the Anti-Defamation League over the group’s weaponization of antisemitism and attacks on supporters of Palestinian rights.jacobin.com
He claimed "tremendous power at the White House to run places" if needed.Lalee Ibssa (ABC News)
externelly likes this.
City stands in solidarity by taking trash to the curb in defiance of Mayor Parker’s orders, 2 union member arrestsunicornriotuser (UNICORN RIOT)
For a surgery that’s supposed to boost your confidence, the Brazilian Butt Lift (BBL) comes with a dirty little secret...Ashley Fike (VICE)
My friend was telling me of this, thinking since its crypto related it must be really good. I said this has been around for many years and there are much better solutions than any that Jack is going to come up with to scam us. Have you guys heard of this?
I have to laugh at these tech-bros that actually know nothing, thinking they are great genius inventors. Reminds me of fElon.
I'm still not sure what you're refferring to.
Jack Dorsey is one of the original Twitter guys, started Square, launched Bluesky...etc.
The only company he's been involved in that deal with money is Square, so maybe I'm not sure where the "crypto scam" is?
cheese_greater likes this.
cheese_greater doesn't like this.
Unfortunately, the time has come for me to leave Lemmy. Time will show where we all end up. I'll see you in the future... maybe sooner than you think?
Edit: Follow up post is here. Don't worry. You're not getting rid of me that easy. I'm just switching to piefed.world
externelly likes this.
cm0002 likes this.
I'm looking for something in the low hundreds range, mostly to do Visual Studio Code, pretty light html editing, general purpose stuff like Netflix and web browsing.
I'd kind of just like a decent tablet with a keyboard cover. The Pixel tablet might be an option, even if I have to go with something like this.
store.google.com/us/product/pi… $280
logitech.com/en-us/shop/p/k480… $35
I'd of course prefer to run Linux over Android if it works. Is there anything in a similar form factor and function for price in the Linux world?
The Pixel Tablet is the first tablet with the Tensor G2 chip built in featuring Google AI for fast and smooth streaming, and more.Google Store
I was about to suggest the same thing. You can pick up a pro 4 with a case and get a keyboard for well within that range.
I have one and it runs Mint just fine.
Replacing the battery is a pain though.
Any one EXCEPT the Surface Pro 4.
The 4 is notorious for having lousy heat management and a faulty power circuit. The screen image shakes if it gets too hot.
My own SP4 worked fine for years, but as it aged it started to succumb. I can't use it for any real work anymore.
Don't get anything lower than the 5 (from 2017).
From what I understand, the poor heat dispersal slowly fries the power management circuits.
If you don't do anything to taxing with it, it may be fine for a while. Ever since I installed EndeavourOS on it, it's been running cooler - much less system overhead than Windows. Still, I know one day it's bound to fail. 🙁
cross-posted from: piefed.world/post/237378
Hello World!We've recently added PieFed.World to the Fedihosting Foundation portfolio.
PieFed.World is still in its early stages, and we still need to port some of our automations we already have in place on Lemmy.World. This includes functionality to inform people about moderation actions taken against them, as well as some other moderation tooling. Administration is currently done by the same team responsible for Lemmy.World, and the same rules that apply to Lemmy.World also apply to PieFed.World.
What is PieFed?
PieFed is a Fediverse/Threadiverse platform similar to Lemmy or Mbin/kbin. You can find a description and feature comparison with Lemmy on their website.While PieFed has a range of features currently not present in Lemmy, it also is a a lot younger and isn't quite as robust as Lemmy currently is. There are still many bugs and missing features that you will likely run across compared to Lemmy, which will take time to be addressed. PieFed has fairly active development and is seeing a lot of issues addressed fairly quickly, which is especially important recently, as the number of active PieFed instances and PieFed users increased significantly with a range of Lemmy instances opening up PieFed instances as well. PieFed currently does not have proper "stable" releases and no test suite, so it's not unlikely for things to break from time to time. Although 1.0.0 has already been released a while back, there are still too many issues addressed in more recent commits to stay on that version.
As PieFed is part of the same federated network as Lemmy and Mbin, all PieFed communities can be accessed from Lemmy and Mbin, as well as other Fediverse platforms. Likewise, PieFed can access communities from Lemmy, Mbin and other Fediverse platforms. Whether you use a PieFed instance, a Lemmy instance, or an Mbin instance, it does not matter what type of instance the community is on. The software affects your own user experience, but the content is available regardless.
Creation of communities
Creation of communities will be limited to admins for the first week of the public launch. We will reserve this time to allow community moderators of established communities to claim the name on PieFed.World before we open community creation to the public. We will limit this to communities with the same name and at least 2k monthly active users. In case of multiple qualifying communities with the same name on different instances expressing interest, Lemmy.World communities will be given preference, afterwards the number of monthly active users. Please reach out if you'd like to discuss an exception. Requests can be posted in !support@piefed.world. After the first week, community creation will be available to anyone.
Migration of communities
PieFed has a feature to migrate communities to a local instance. We will not be offering PieFed's community migration feature initially.We still need to research the details of how this works and the impacts this has on federation before we will make a decision on whether will support this in the future. If requested, we may reserve some names for potential future community migrations until we have made a decision to allow community migrations.
This does not prevent you from moving communities in the classic way, by opening up a new community and posting in the old community that people should move over.
Private voting
We had previously disabled private voting for PieFed.World before opening the instance to the public, as the original implementation has a range of drawbacks when it comes to federation, and our team overwhelmingly believed that the individual benefits of private voting did not outweigh the impact this has on the Fediverse beyond the user's instance. Additionally, due to the implementation of that feature, it was also trivial to identify the original voter, which significantly limited the promises of this bringing actual voting privacy.Since then, the implementation of private voting has been changed to provide the option of federating or not federating votes. While this is more likely to result in vote differences across instances, it does not feed bad information to other instances, which could make it a lot harder for other instances to identify manipulation.
Non-federated voting is available for all PieFed.World users.
Topics
Topics are a kind of "starter packs" or collections grouping multiple communities that people can follow, curated by the admin team. We don't have a clear vision for the structure of these yet.You can see an example structure on piefed.social.
Feel free to let us know your thoughts on this.
Feeds
PieFed supports feeds, which are user-created groups of communities, similar to topics. These are currently in a global namespace and all users can create public feeds in the same shared namespace.
Reputation and vote weight
PieFed has options for admins to treat certain types of content differently for "reputation" calculation, as well as options for weighing votes of specific instances differently compared to others. We currently have all options for treating certain content, communities or instances differently disabled.
How does PieFed compare to Lemmy?
PieFed has various features not present in Lemmy, check out their website!There is also various functionality that Lemmy has, which you may be missing currently with PieFed for now:
Limited API support
In Lemmy, the default web interface relies entirely on the Lemmy API. This has the major benefit of all functionality available in the default web interface also being available to all third party clients. PieFed currently uses separate code paths and implementations for the default web interface and its API. To make it possible to access functionality in third party apps, dedicated API endpoints have to be created, even if this functionality is already available in the default web interface. This also includes alternative web-based UIs.Multiple developers of alternative UIs and mobile clients are already working on PieFed support, some already released experimental versions.
Limited availability of Markdown previews
Markdown previews are currently only available in posts. There are many other places that accept markdown, but you can't preview the rendered comment before submitting it. This is tracked in #532.
Image uploads only on post creation
Images can't be uploaded to comments currently. You'll have to host them externally for now. This is tracked in #768.
Autocompletion of users/communities
Usernames and communities can't be autocompleted when typing their names currently. This is tracked in #799.
Limited availability of modlog
Modlog is currently very limited. While there is an instance modlog, there are currently no filters available, so it's not possible for users to see actions taken against a specific user or within a specific community. Community modlog exists, but it is currently only available to community moderators and admins. Filtering modlog is tracked in #846.
Moderator hierarchy
Lemmy has a moderator hierarchy based on the time a moderator was appointed, relative to other moderators in the community. This allows moderators to add other moderators, but they can only remove moderators that were added later than they were. There are a few other actions that check moderator hierarchy as well, including deletion only being possible by the top mod. In PieFed, communities have one or more owners, who can add and remove moderators, while all other moderators are currently on equal level. Community owners currently cannot be changed without editing this directly in the database, if you'd like to change owners in your community please reach out in !support@piefed.world.
Donations
Similar to Lemmy, PieFed development is supported by donations. You can donate to PieFed development through Patreon.Additionally, we would appreciate donations towards the Fedihosting Foundation, the non-profit organization operating PieFed.World, Lemmy.World, and a range of other Fediverse platforms.
Problems and questions
Please report any issues and questions about PieFed.World in !support@piefed.world.For topics about the software PieFed, please visit !piefed_meta@piefed.social.
Bugs can be reported on Codeberg.
TLDR: New platform with similar functionality available, Lemmy.World will continue to exist.
edit: reordered sections and minor wording changes
edit 2: updated community owner information
like this
don't like this
Congratulations Ruud & Rest - everyone at the foundation really, it's just fun to say Ruud & Rest! I'm excited to see how this will develop. PieFed does have a lot of features already, that I do miss for Lemmy, and the communication from the main dev has been great so far. (An opportunity to post links to his PeerTube channel, as well as his Liberapay profile).
A great addition to the "Threadiverse" in particular, and the larger Fediverse!
I'm building PieFed, an open source federated forum similar to Reddit, Lemmy or Kbin. See https://piefed.social for a demonstration and more info at https://join.piefed.social…Liberapay
like this
I had sadly the opposite experience as a developer. He bends the rules, the code of conduct to his will so that he stays in the "right".
He disregards any improvements to the codes style ( formatting, styling, linting ) and when you point that out you just get the lemmy devs treatment. I mentioned, the code is a mess. He went on rampage declining any attempts to "untangle" or format the code. And he simply said "Go away and dont come back".
One example:
codeberg.org/rimu/pyfedi/commi…
like this
Ah, I am sad to hear that. And sorry that has been your experience.
As only an amateur coder, I can't weigh in how serious the issue is, but I'm gonna take your word for it, without any other person involved adding input. I hope it'll end up in a state, where the project can still sustain its growth in both features and users.
AbnormalHumanBeing likes this.
This is all sour grapes.
I've read your interaction with him, and, frankly, if I were moderating a community where you incessantly carried on over insignificant details, continuing to question things after you got your answer (sea lioning), insisting on focusing on nothing, and never ever stopping, I'd block you too, and I've only blocked 2 people in my entire life as a mod.
Now you're in here trying to malign him, for revenge, for shutting you down so he could get work done and he can focus on important work instead of debating you over never-ending trivial topics.
He is the opposite of the image you are trying to give him.
Luvs2Spuj likes this.
Ahh yes, that is another risk factor of him. He never tests it. I guess he always goes for guts instincts. ( As there is no CI tests or any type hints ).
And again we speak of FORMATTING pr's those risky formatting pr's i guess he tested that? and somehow found that it didnt worked?
Just to be clear, i fixed a lot of bugs already too. E.g. Mastodon login never even worked ONCE, i implemented that to the end.
With his merge first fix later attitude, for little bit more established servers its killing argument: Oh yeah feature X broke because no one tested it before.
My PRs were in good faith. I was ok with constructive feedback ( e.g. change this, change that ) but dismissing ones PR MULTIPLE times. With almost none real reason other than "Opiniated Formatting" ( where none exists )
WASHINGTON—Insisting that he deserved a place alongside the iconic visages of the auto supply company’s founders, President Donald Trump issued an executive order Tuesday adding his face to the Pep Boys logo.The Onion Staff (The Onion)
cm0002 likes this.
OC by @TobyTostoff@lemmy.world
Sway with waybar, alacritty, conky and rofi on Bunsenlabs Boron (Debian 12).
Stephanie Lose told Euractiv that Europe’s defence build-up must be combined with “wise decisions” to loThomas Moller-Nielsen (EURACTIV)
Ubisoft has updated its End User License Agreement, and it’s instructing its users to remove and destroy their games completely should the title be taken offline.Essentially, the EULA has given Ubisoft free rein on its ability to stop supporting a game, writing: “You and Ubisoft may terminate this EULA at any time, for any reason. Termination by Ubisoft will be effective upon notice to you or termination of your Ubisoft account, or at the time of Ubisoft’s decision to discontinue offering and/or supporting the Product.”
Interestingly, this isn’t the only company that has the same terms in its EULA. The likes of Capcom, Sega, and even the Oblivion Remaster have the same clause in their terms and conditions, meaning the stipulation isn’t unique to Ubisoft.
Ubisoft has updated its EULA, and it’s now instructing its users to destroy their games should the title be taken offline.Jessica Filby (Dexerto)
The Linux foundation seems ready to finally axe a Microsoft-made remote network protocol for USB that is still a part of modern Windows operating systems.Sayan Sen (Neowin)
Does anyone have recommendations for some chalk that resists water very well?
I'd love any recommendations of brands, specific chemicals or properties to look for, or maybe questions that I would need to answer about the environment.
I'm planning to use my chalk on my asphalt driveway.
cheese_greater likes this.
Jeremy Corbyn plans a new socialist alternative to rival Labour before the next general election. "There will be an alternative view"Bill Curtis (The London Economic)
Glacial melt could increase volcanic activity in North America, New Zealand and Russia, spewing greenhouse gases into the atmosphere.Ben Turner (Live Science)
Opinion: Mozilla's management is a bug, not a featureLiam Proven (The Register)
The IRS said in a court filing that churches whose pastors endorse political candidates from the pulpit shouldn't lose their tax-exempt status.CBS News
Mastodon 4.4 release brings for things like profiles and lists and also lays the groundwork for quote posts.Jay Peters (The Verge)
like this
don't like this
like this
With a quote post, the post you are quoting is fully (text, avatar image) nested in your post.
It was commonly used on Twitter (I deleted my accounts some time ago).
like this
redshift doesn't like this.
like this
This is the “Emergency Certified” Teacher Facebook group.
These people possibly have bachelor’s degrees, but in subjects completely unrelated to the subjects they will be teaching.
Common complaints are about the tests being too hard (they aren’t, you can memorize the questions on fucking quizlet).
My first year teaching I was pulled aside and told by my principal, “you actually have a degree in this, you’ll have to step in to help your team” - because the other science teachers were a Physical Education teacher and the schools secretary.
But no f-ggots allowed! Being a drag queen on the weekends disqualifies you to be a school principal now, no matter how good you were at it.
I am a relatively new teacher in Oklahoma. In my experience, the teachers I've worked with are a fairly mixed bag. There are absolutely amazing teachers working in Oklahoma that are knowledgeable and passionate about their content areas. I have also noticed a fair amount of teachers that are wildly under qualified or seem to only be in a classroom for the opportunity to take advantage of the system (frequently missing work, not actually teaching their students content, etc.) Oftentimes, though schools don't have many options because they simply need bodies to supervise the students. It is very heartbreaking.
"My first year teaching I was pulled aside and told by my principal, “you actually have a degree in this, you’ll have to step in to help your team” - because the other science teachers were a Physical Education teacher and the schools secretary."
I can relate to this. I'll be entering my 4th full-year teaching. In my short time working in education, I have become the most senior and qualified teacher for my subject and grade level. I do the bulk of the curriculum planning for my subject.
The politics injected into public education via State Superintendent Ryan Walters is absolutely disgusting.
cheese_greater likes this.
Commercial 3D printers keep getting faster and faster, but we can confidently say that none of them is nearly as fast as [Jan]’s Minuteman printer, so named for its goal of eventually printing a 3D…Hackaday
First of all, I'm not sure this is the best community for this, so if you think there is a more suitable one, please inform me.
So I've been looking for manufacturers that sell computers with Linux out of the box and I remembered hearing about Tuxedo Computers. Some people seem to really like them, but I've also heard of some people complaining about them too.
And so I've come here to ask this community what are your experiences with this vendor? Is there somewhere else I should look? Thanks in advance.
like this
We have a few Tuxedo computers and some other Linux brands at our company and are generally happy about them. Cheaper devices have a less than perfect keyboard (though I liked the one on the slimbook) a worse camera and microphone (though some are very ok).
I'm very happy with these Linux devices. The few makes for which we needed parts also supplied them but sending the device their way for repair took longer than we'd have wanted.
I loved my Pulse 15 (Gen 1) from Tuxedo
It was a performance monster and still had amazing battery life.
But as others have said, they only take some finished Clevo models - like most small distributors, who can't afford their own factory.
But they verify that everything runs with Linux, else they sometimes patch stuff.
And I need to highlight their support!
After years with my Pulse 15 the battery became a pillow, because I used a USB C charger that wasn't working right (always switched on and off, which killed the battery)
Pretty much without questions asked I got a new battery for free.
Now I have it to my nephew, who enjoys Minecraft on this laptop (still Linux), but the CMOS battery was dead.
Got that one for free as well after warranty
So, I can't really complain about them.
Actually the opposite.
But I still settled for a Framework 16, because I wanted something different and the models at that time weren't fitting my use case...
What makes you think suspending an election is going to tip the scales?
Mostly that at least right now there's hope for midterms to change things in Congress and then the presidential election to get Trump out. Right now we still have the trappings of a Republic. I think if elections got suspended all belief in a peaceful solution will be erased and people will react.
You have a point though, bread and circuses go a long way towards kowtowing the population. That and the risk of death at the hands of the state. I don't know where the line is that people will readily accept potentially getting shot especially if they're in white man suburbia.
AnUnusualRelic
in reply to cm0002 • • •judgyweevil
in reply to AnUnusualRelic • • •cm0002
in reply to judgyweevil • • •I have 0 love for Amazon, but...it's better than going to Walmart
And my GOG account has 150 free games in it from them sooooooo 😅