bluepenquin
  • 100 Posts
  • 61 Comments
Joined 2Y ago
cake
Cake day: Sep 25, 2020

help-circle
rss
Of snaps and stratagem - Jussi Pakkanen
I upgraded from 22.04 Development to 22.04 LTS and didn't face any broken dependency issue with the deb -> snap migration. I might add that the migration could have been a bit more transparent. Right now unless the snap package is manually blocked, it'll be silently reinstalled and Firefox will be silently transitioned unless you are looking closely at the apt logs. Also Firefox profiles weren't migrated but [Mozilla is working on that](https://bugzilla.mozilla.org/show_bug.cgi?id=1730530). The snap version has been working fairly well for me other than the known issue about cold start taking several seconds. If someone doesn't want snaps there's the option of downloading the [Mozilla build](https://ftp.mozilla.org/pub/firefox/releases/99.0.1/) or using the [Mozilla team PPA](https://balintreczey.hu/blog/firefox-on-ubuntu-22-04-from-deb-not-from-snap/) or installing the [Flathub](https://flathub.org/apps/details/org.mozilla.firefox) version, also maintained by Mozilla.


On AMD systems, 5.17.3 and 5.18rc2 have a nasty bug that freezes the system after suspension and it can’t resume without a hard reboot. Issue: https://gitlab.freedesktop.org/drm/amd/-/issues/1976


The Freedom Phone is not great at privacy - Matthew Garrett
A bit of background... https://en.wikipedia.org/wiki/Umidigi_A9 > The device is marketed at a price of US$500; in comparison, the Umidigi A9 Pro retails for US$120, a little less than a quarter the price of the Freedom Phone. The Freedom Phone website did not initially publish specifications for the phone, but incomplete information was later published. Finman confirmed to The Daily Beast that the Freedom Phone was manufactured by Umidigi. > In a review of the product, CNET said that the $500 Freedom Phone appeared to be "nearly on par with a $200 budget Android phone." The phone comes with rebranded [Aurora Store](https://auroraoss.com/) and calls it " 'uncensorable' Freedom Phone app store" https://arstechnica.com/gadgets/2021/07/the-maga-targeted-freedom-phone-has-a-breathtaking-amount-of-red-flags/ > As pointed out by XDA's [Mishaal Rahman](https://twitter.com/MishaalRahman/status/1415779874426531848) on Twitter, the phone's "PatriApp" Store appears to be no more than a rebranded Aurora Store, an open source client for the Play Store. > As far as getting "censored" apps onto the Freedom Phone, the plan seems to be to preload them. The phone ships with apps for right-wing outlets and services like Newsmax, OANN, Parler, and Rumble.

I think that happens only for some subreddits like r/piracy,imatotalpieceofshit etc. that they deemed ‘problematic’ or something so they force the app on all posts.

If you are using uBlock Origin I think this filter removes the element: www.reddit.com##xpromo-untagged-content-blocking-modal


I downloaded RSSGuard and it appears that I can’t import my rss feed into it and they are online based?

Both.

Add a standard account first:

Then in the “Accounts” drop-down you’ll have the option:


IIRC, RSSGuard has a dark theme https://github.com/martinrotter/rssguard (I used to use it on Arch Linux long ago before switching to ttrss in browser; apparently they also have Windows builds).

Edit. Ah, it also supports custom skins https://github.com/martinrotter/rssguard/blob/master/resources/docs/Documentation.md#skin


You can add a custom search engine to FF desktop if you don’t want an add-on or extension.

about:config -> create browser.urlbar.update2.engineAliasRefresh (boolean), set to true. Then go to settings there should be an “Add” button:

(There won’t be a favicon though.)


Good that you brought this up. Perhaps it was patched or worked around in Tor browser ?

Yea Tor browser worked around it, see https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40432#note_2735850


There is Trickle https://wiki.archlinux.org/title/Trickle and Wondershaper https://github.com/magnific0/wondershaper#using-wondershaper

curl/wget both have a --limit-rate option

There is tc and iptables that can both do latecy and bandwidth quotas.



![](https://lemmy.ml/pictrs/image/FeY8z1DeiK.png) Original post was [here](https://teddit.net/r/selfhosted/comments/mq8fmv/pastey_a_selfhosted_pastebin_alternative_with/)

NLnet is doing god’s work by funding so many important projects based around decentralization and privacy like Kaidan, Fractal, Lemmy, SearX, Briar, previously the Tor Project and many more current ones.


Hah, this one is classic :P.


[Phoronix] X.Org Server Git Lands Support For Hardware-Accelerated XWayland With NVIDIA
This was https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/587

There goes our chance of finding life on Mars :P


It was mainly for contributors and bug-reporters so that they can create a system quickly and reproduce issues/test things; when archinstall was moved to the repos. I haven’t seen anyone asking support specific to the install script method yet. And the wiki isn’t going away; if anyone doesn’t have a basic grasp of for example partitioning or in need of a customized setup they’ll still need to read it.


Regardless of the criticism Matrix is probably one of the best bets right now of a federated, decentralized real-time communication platform. Yes it gets complicated at the spec/protocol level when one is made to support so many use cases like Twitter,VR,IM,collaborative editing,bridges,bots,integration,video,audio,encryption,multi-device etc. but that is necessary to have a rich,diverse and modern protocol. The criticism is mainly at the specific IRC bridge and the clients. Admittedly the IRC bridge isn’t perfect due to the feature disparity between Matrix and IRC at a protocol level but it has been getting better. And saying that bridge isn’t perfect would be similar to saying IRC or a particular IRC client isn’t perfect.





See here. This is the issue tracking the UI for proxy too. The flag comes from Chromium; you can’t use a http+password proxy though since Chromium doesn’t support that too.


Verification of own/others’ devices is optional; it won’t prompt to setup if you aren’t using something other than Element or an E2EE capable client. Someone might have an account with cross-signing disabled or if it is enabled the new device will show up as unverified then there are chances/edge cases where they can be tricked into verifying that device; this way they’d also have control over encrypted content. Also admins have control over the password+login; they can delete the old one add a new password and it’s hash to the database then login using those and chat using someone else’s account on a public room. These are the reasons why it is always recommended to host one’s own instance or trust the instance you are joining.

This is an example of MITM in case of XMPP; Matrix would be very similar if the person doing it is the server admin.


If anyone is running AMD Stoney they might want to be a bit careful with 5.11 kernels; from 5.11-rc1 to 5.11.8 it gets stuck on loading initial ramdisk. The issue is solved in >=5.11.9.



TLDR: Brave sends referral header for crypto websites, they introduced Tor browsing inside the browser but that header was still being sent inside a Tor session along with the file created in config that keeps track of it. He reported, was assigned a CVE and brave fixed it. Write up by the person who reported it https://community.disclose.io/t/how-i-found-a-tor-vulnerability-in-brave-browser-reported-it-watched-it-get-patched-got-a-cve-cve-2020-8276-and-a-small-bounty-all-in-one-working-day/65 (I don't think Tor on Brave is ready it's best to not use that feature at the moment; since they have a number of issues in GitHub to improve anonymity and stop leakage etc.)




I'm not completely updated on the events but as I understand the original add-on changed ownership and was sold to a unknown group of Turkish developers against whom the claim of injecting malware is. The Chrome and Edge version is affected but not the Firefox one because the same add-on is maintained by another person for Firefox: https://github.com/LiCybora/NanoDefenderFirefox/blob/master/README.MD and is changing name to distance itself from upstream https://github.com/LiCybora/NanoDefenderFirefox/issues/188. The person making the analysis on the linked thread gorhill is the developer of the popular add-ons uBlock Origin, uMatrix etc.

Apache OpenOffice Responds to LibreOffice's Open Letter
https://twitter.com/apacheoo/status/1316422829202604032 Context: https://dev.lemmy.ml/post/41395

Actually Intel is wrong when saying ''upgrading to v5.9 will fix this'' because none of the mainline kernels have the patches. More here https://lwn.net/Articles/834297/#Comments


plocate-a faster locate Version 1.0.0 released
https://blog.sesse.net/blog/tech/2020-10-12-20-27_plocate_1_0_0_released.html


Kitty - A fast, featureful, GPU based terminal emulator for Linux/macOS
Changelog: https://sw.kovidgoyal.net/kitty/changelog.html