• 0 Posts
  • 88 Comments
Joined 1 year ago
cake
Cake day: July 29th, 2023

help-circle





  • XFCE + Compiz

    The unholy combination of accelerated 3D graphics and performance, all without the stupid drawbacks of wayland.

    Runs much lighter than KDE even with all the 3D cube and windows stuff enabled.

    Extremely customizable as well. XFCE already does a great job of UI/UX, it just lacks a compositor to add flare (xfwm4 has no animations, only some blur effects).



  • This is why lots of software has started adopting SSPL license which doesn’t actually fix the problem and isn’t a FOSS license.

    I still think a new license scheme should be considered though. Giants like AWS and Google have been profiteering off of FOSS for way too long now.

    AGPL has been deemed generally successful in this regard because it has been upheld in court cases and forced companies to comply, which it seems to work pretty great for SaaS.

    The problem is these giants will usually just choose a more permissive alternative anyway. Both MongoDB and Redis have forks that they can use, and GPL itself is permissive enough for private forking being legal.





  • I remember when Microsoft made a big deal about this on Windows and then their “implementation” was making the local signon a number PIN.

    And not a proper separate auth operation lol. You either set up almost everything with the PIN or use a regular password, not both. Makes it useless on enterprise.

    Realistically we should all be using a key/pass vault since that would make using passkeys much easier, but that’s too complicated for the internet in 2004 2024.

    If it were me, I’d just issue everyone a yubikey.


  • mlg@lemmy.worldtoMemes@lemmy.mlFinally, Inner Peace!
    link
    fedilink
    English
    arrow-up
    13
    ·
    1 month ago

    I just browse “All” and I keep getting slapped with “Kamala actually cares about Gaza and understands the complexities of the situation so plz vote plz I beg we need this so bad no don’t go actually look at the ongoing genocide just plz vote” posts


  • Explorer has had so many dependencies attached to it that if even one of them sneezes, the entire desktop environment crashes and has to restart.

    Actually insane when you think about it. Why the hell is a file explorer the root process of the desktop???

    I’ve only ever forced stopped thunar once and it was because I was messing with some thumbnail settings. Naturally the rest of my system worked as normal, as well as the other thunar windows open lol.


  • mlg@lemmy.worldtoTechnology@lemmy.worldWhat the hell Proton!
    link
    fedilink
    English
    arrow-up
    11
    ·
    edit-2
    1 month ago

    is this saying you can still be fucked on public WiFi even if you connect through a VPN?

    The quick and dirty answer is no, unless an attacker can figure out a way to get your VPN to strip it’s encryption (doubt you’ll ever see this outside something like defcon but you never know lol).

    The long answer is that not all VPNs are equal depending on what you are trying to accomplish.

    A VPN will simply tunnel your internet traffic over an encrypted channel to a server anywhere in the world.

    On a technical level, this means that it will guarantee your internet traffic is unreadable until it hits the destination, which does mean it can make it more secure to use a public wifi/hotspot.

    Of course privacy is actually a massive security iceberg, so some caveats in no particular order are:

    spoiler
    • Modern protocols like HTTPS are already encrypted, although someone can still mess with stripping and poisoning techniques, so having a VPN running would be peace of mind.

    • Your privacy from companies like Google, Facebook, etc won’t be enforced by a VPN if you don’t also use a new browser session (incognito) because they can easily track your identity via cookies and accounts.

    • Even if you use a fresh session and dedicated VPN accounts, aforementioned tech companies can still identify you via statistical modeling based on your activity. They don’t really care what your IP is unless they need to pay tax for a country or follow some random media block law.

    • Your privacy from the government is nonexistent because most VPN companies will share your info if the government requests it.

    • Lots of VPNs choose to block torrenting so they don’t have to deal with protecting their customers (although lots also don’t).

    • Even if you setup your own VPN via a VPS in anonymous way, the government can still watch your exit traffic and link the origin back to you by inspecting the VPN packets (which is why Tor exists, a much different solution to the privacy problem).

    You should use a VPN if:

    • You want to torrent copyrighted material (yar har piracy)
    • You want to spoof your location to get access to geolocked content
    • You want to negate an attackers ability to mess with your connections on public WiFi
    • You want a secure channel between two of your own locations (make two separate networks accessible to eachother, or VPN to home/work to access resources on that network).
    • ^ same thing but remote access etc.

    You should not use a VPN if:

    • You need to hide what you do on the internet from the government (See Tor, journalists stuck in shithole regimes).
    • You want privacy from internet megacorps (you’d have to keep fresh sessions or use them sparingly which you can 90% do without a VPN anyway)
    • You want to hide anything after it reaches the VPN server (public VPN services, doesn’t apply if you VPN to something you physically own and access only its local resources).

    After all that, the use case basically becomes:

    • VPN to within your own country to secure your connection on public WiFi
    • VPN to home or work to access network
    • VPN with a good public service to other countries to watch or torrent media


  • I don’t know why the guy just assumed every linux and BSD machine runs cups-browsed by default?

    It took me literally 5 seconds to check that it’s disabled on Fedora by default.

    Then he wrote a whole paragraph about how no one should use CUPS for printing because based off of his own analysis, it’s some insanely crappy and insecure system.

    Which is actually stupid because the only alternative is windows??? Which is universally known for printer driver and spooler vulnerabilities.

    Then he got mad the the maintainer for patching before his disclosure…


  • After 15 years of wayland development hell, I’m honestly open to anything. Problem is I can definitely see an experimental branch being just as scrutinized. One of the core issues highlighted was that features and requests were rejected because of hypotheticals and the maintainers trying to avoid fragmentation like early Xorg.

    Basic features from X11 are still missing. Everyone ended up somewhat fragmenting anyway via compositors because weston wasn’t really useful for developers beyond a demo. Wayfire started out as a Compiz redux and now its being considered by several DEs like XFCE to be the default compositor which they should standardize around.

    Regardless, I really hope they nail it down in the next year because the halfway migration to wayland is seriously harming Linux desktop, especially when lots of frontend UI has been done perfectly decades ago on X11, and wayland still not properly supporting new features like HDR.