Federation means, multiple servers talking to one another and exchanging information.

You’re on lemdro.id, I’m on my own server, yet we can talk. I can shut down my server, and you will still see my comments from lemdro.id.

This ensures you don’t have to be on a single website along with everyone else: you’re always free to leave lemdro.id if you wish and go to say, lemmy.world or sh.itjust.works or whatever other instance you feel like.

Lemdro.id doesn’t appear to block any servers, so it will federate with any server that doesn’t block lemdro.id. You can see the list here: https://lemdro.id/instances/linked.

They have a poor history of incidents that leaves many people not trust them.

https://manjarno.pages.dev/

It’s meant to protect the software, not the hardware. Of course you can still put a hardware keylogger on it.

You’re also only considering the use case of the owner and user being the same person. In a business context, the user and the owner are two different persons. It can be used to ensure the company’s MDM and security software aren’t tampered with, for example if you try to exfiltrate company data. In that situation, even if you have a keylogger, it doesn’t help you much, it still won’t allow you root access on the machine, because the user of the machine doesn’t have root access either.

Same with servers: you don’t even care if the hardware is keylogged, nobody’s ever using the local console anyway. But it’ll tell you if a tech at the datacentre opened the case, and they can’t backdoor the OS during a planned hardware maintenance.

Same with kiosk machines: you can deface the hardware all you want, the machine’s still not gonna let you order a free sandwich. If you buy one off eBay you can bypass secure boot and wipe it and use it, but it won’t let you sneak a USB on it while nobody’s watching and attack the network or anything like that.

But yes, for most consumers it’s a bit less useful and often exploited in anti-consumer ways.

It’s mostly for use cases where you can lose physical access to the computer like overnight at the office, at a hotel while travelling, in a shared server room, etc. It’s extra assurance that the computer runs the software you expect it to run and nothing else without at least being somewhat noisy about it.

This can in turn be used to use the TPM to get a disk encryption key, so you can do full disk encryption but still boot to a normal login screen without entering a password. It will only hand out the key with the correct signed boot chain.

If you have a desktop PC at home that nobody untrusted touches, then yeah there isn’t that much value to it for you.

If we deleted everything written by insufficiently pure developers, we wouldn’t have a Linux desktop. Especially if we count the ones that were smart enough to not bring up anything political in public.

Not a fan of DHH, but then you delete Rails then there’s no GitHub, GitLab, Mastodon, and many many other things given how popular Rails is, and that’s just that one guy.

If you include all the sketchy stuff that happens in the supply chain mining the minerals, processing, assembly all the way up to the final computer product, you just can’t morally justify supporting any manufacturer either.

This really doesn’t do anything useful other than feeling good to not support one of those guys. If anything it just adds extra political drama that feeds into a much bigger worldwide division problem.

At this point China doesn’t need propaganda, they just let the chinese users look at the US user’s misery by themselves and sit back.

When Rednote was first flooded by the first wave of TikTok refugees, the chinese users were baffled just how much worse it was than their propaganda said. Which is probably why they just let it go and didn’t immediately shut it down.

Rednote is pretty different vibes, I’m on it but not nearly as much as TikTok. It’s pretty interesting for what it is but it’s not a replacement and it’s not competing to be a replacement either.

I would guess they’ll probably move to Bytedance’s other app, Lemon8, or probably Skylight Social as Bluesky is generally pretty popular with the particular part of TikTok I’m on, so everyone already have ATproto accounts and follows.

Comme d’habitude, on subventionne les profits, et socialise les pertes.

C’est une clause qui devrait avoir été accompagnée de conséquences criminelles de ne pas les suivre.

C’est comme les compagnies de pétrole: oui oui, on va tout boucher et nettoyer ça juré promis. Ils font une LLC, qui fait faillite juste avant que ce soit le temps de tout reboucher et nettoyer, et hop, c’est au gouvernements de se débrouiller à nettoyer tout ça, tu peux pas poursuivre une compagnie qui n’existe plus.

Et on continue d’approuver ces projets quand-même. Mais qui aurait pu prévoir que ça allait arriver???

This is why when an app pops up that permission dialog, you always say no. The number of permissions Meta apps ask immediately upon startup is a red flag on its own.

Can’t collect and upload what it doesn’t have.

It won’t do much in english, but makes a lot of sense for french, spanish and other languages using heavily gendered nouns.

In english, “the user” is neutral. In french, you have “l’utilisateur” and “l’utilisatrice”, because everything including nouns are gendered. So you’re stuck misgendering half the population by default. This lets you address women as women and men as men.

There’s a reason it only supports Pixel phones: none of the other manufacturers produce phones that are suitable for it. All the other ones either don’t let you unlock the bootloader, won’t let you relock it with your own keys, or disables other security featurea. Meaning anyone can just flash whatever code they want to the phone and completely nullify the security model.

For a bit, OnePlus did support this but they quietly removed that feature with the Android 12 bootloader update, and otherwise cut you off from the TEE anyway so the OS can’t even verify the boot chain.

The GrapheneOS team said they would happily support other devices if any met their criterias for support. None do. Pixels are the only phone where you can properly flash a custom OS on, and relock the bootloader and disable OEM unlocking like it’s the official OS with all the security features functional.

That seems like a good way to get vendors to start only shipping firmware updaters that only runs on Windows again.

Ish, just après qu’Israel décide d’attaquer Gaza à nouveau. Juif pas juif, si tu supporte Israel tu supporte le terrorisme, je suis désolé mais y’a pas de place pour ça à la fierté.

J’espère qu’ils vont revenir sur ce retour de décision.

If that works, something with the PipeWire state might be weird. Tried deleting pipewire/wireplumber in ~/.local/state followed by a reboot (or restarting pipewire and wireplumber). That should reset it.

Sounds more like a rolling release than a mess to me. Makes sense for development and users that want to try out new features as they get developed.

From a developer’s perspective that sounds like a good idea too, no need to rip out features that weren’t ready in time and no need to rush a feature because it was in the developer preview therefore it has to ship.

No just the one > at the start.

Makes it look like this

D’après moi il n’a pas intercepté en tant que tel, l’un des deux côté est infecté et quelqu’un dans les courriels ou active la fonction pour transférer tous les courriels entrant à une autre addresse. Ils pourraient aussi avoir ajouté l’adresse courriel dans une autre banque et supprimé les messages de confirmation, ni vu ni connu. Reste plus qu’à accepter le virement avant la vraie personne, puis virer l’argent dans un compte à l’étranger.

C’est possible d’avoir un compte avec plusieurs banques, alors quand tu reçois un virement tu veux pouvoir choisir quelle banque et quel compte, ouvrant la faille.

Ou bien, y’a pas eu de bug, se sont fait arnaquer. J’aurais jamais payé deux fois: c’est clairement le problème du propriétaire. Je te paye tu te fais voler ton portefeuille 2 min après, c’est pas mon problème.

Ubuntu 7.10 so late 2007, but I guess the nerd part came when I installed Arch in 2011. Still running that very same install.

My own personal example: https://www.reddit.com/r/linux4noobs/s/8FM1ZvXi68

It just doesn’t look great nor serious nor welcoming.

The guy gives a ton of “I don’t care about anyone’s use cases except mines” vibes too. Also called Gnome and KDE teletubbies DEs when I mentioned xcomposite being an important feature. Basically considering the widely known issues around multimonitor vsync and mismatched resolutions and all as basically not real issues with Xorg.

XLibre is 100% a political fork because the guy claims Xorg is deprecated by a big tech conspiracy pushing inferior software onto users. There’s nothing wrong with wanting to continue Xorg’s legacy but come on we don’t have to pretend Xorg is this perfect thing that always works. Xorg has been hated for decades for a reason. This xkcd exists for a reason: https://xkcd.com/963/