Skip Navigation
Max_P Max-P @lemmy.max-p.me

Just some Internet guy

He/him/them ๐Ÿณ๏ธโ€๐ŸŒˆ

Posts 15
Comments 1.3K
How to Use the gpasswd Command on Linux
  • Same but without all the ads and blogspam wording: https://man.archlinux.org/man/core/shadow/gpasswd.1.en

  • Linux and being speedy
  • Linux encourages users to send patches while Microsoft is the sole company that can modify Windows.

    It's very common to see patches from Google/Meta/Cloudflare/Amazon squeezing more performance for their particular use cases. That benefits everyone in the end.

    Microsoft on the other hand is more concerned about its enterprise sales and overall profits. So they don't care that much. Windows 7 was horribly bloated, and they didn't address until Windows 8 because they had to, because they realized it was too bloated to run on their new tablet PCs so they had to do something about it.

    Apple cares a lot, because their thing is energy efficient fanless netbooks, and phones, and tablets. macOS and iOS are very close in how they work, so Apple has all the incentive to keep it efficient because their software will also affect the hardware side of the business. Microsoft doesn't, it's the hardware partners that get stuck dealing with it.

    The NT kernel is fairly good, it just doesn't get the attention it deserves. Microsoft mostly add features on top of older features, they never go in and be like "this sucks" and rewrite a feature, because that's very risky to do and may break millions of applications and affect their bottomline. Linux doesn't have to care about that.

    I'd say, if Windows was open-source, we'd have some pretty solid Windows distributions because the community would care to go in and fix a ton of bottlenecks that aren't worth it for Microsoft as a company to even bother reviewing the patches let alone develop and test them. It's much more lucrative for them to release AI crap like Copilot than make Windows 10% snappier. Because most Windows users are corporate people that makes decisions based on marketing and business items than being an enjoyable experience. Less frustrated users? Nah. More productive employees with crappy AI features that barely works? Hell yeah ๐Ÿค‘

    TL;DR: Windows sucks because of Microsoft's business interests don't require Windows to be that good, merely good enough.

  • Discussion of CVE-2017-5226
  • It's definitely not perfect, but this also wouldn't affect GUI apps because there's no shell to send inputs into to run other commands. There's also more container escapes than just that.

    But it's an added layer of security regardless, especially if you're not directly running software designed to escape the sandbox. A drive by exploit in a browser for example, is less likely to successfully escape because the stars needs to align that you have both a vulnerable browser and a vulnerable kernel at the same time.

    The average credential stealer or NPM malware is likely to be contained and not even realize it's in a sandbox. You have to get malware and said malware is smart enough to exploit an unpatched CVE in your sandbox.

    But no it's not perfect, the only way to safely run malware is on a separate physical machine with no access to your local network, and ideally with no wireless technology at all (to avoid WiFi/Bluetooth exploits). Even VMs can be escaped, there's a few CVEs for that too, and of course the processor bugs.

    Security comes in layers, unless a layer is basically useless, it counts.

  • [META] We should make something in the canvas event
  • We could make an absolutely massive parking lot and then leave it empty, just like the real world.

  • Project 2025 wants to send you to prison for watching porn. Laws requiring ID to access NSFW sites have already made porn hard to access in many states. Your browser is next ๐Ÿ‘€
  • So, why should people be fined for watching porn? Why does christian puritan views be pushed to everyone? Party of small government my ass.

    "It's not that bad" isn't good enough. Why is that there, at all? Why should I somehow deserve to be in prison?

  • How Wayland handles security considerations vs MacOS Quartz or Windows DWM?
  • Not sure if Windows has that but I believe on macOS what happens is the app tries to record the screen, and if it fails macOS blocks the request and opens the security settings to enable the permission, and you have restart the whole application for the permission to take.

    What's done for Wayland is the portal system: applications can use portals to request access to specific things like screen recording, the DE does what it needs to do and it starts feeding the data to the application through the portal. It's working fairly well, I haven't had issues with those in a while. The application just requests what it wants, and the DE prompts the user (or auto accept the request) optionally remembering the choice as well.

    Generally the solution for X11 problems is to implement a modern API for it in either Wayland or as a portal. Which breaks old stuff, but once updated it works fine.

    The main obstacle is getting Gnome to agree to the protocols.

  • Can we get a preference where we can browse 100 pages on one page instead of 10?
  • Infinite scroll ftw

    Lemmy's default UI isn't great. Thankfully there's a few alternatives such as Tesseract which is the one I installed for my instance. You can use the public instance of Tesseract from dubvee: https://tesseract.dubvee.org/, it'll let you log into your account on any instance.

    It actually feels like a well polished product.

  • Libreoffice released an Android version!
  • minSdk isn't the same as targetSdk or maxSdk.

    You can target Android 14 and still support Android 1.5 devices if you really want to. Android will enforce that you use Android 14's security features, but you can still use the old APIs just fine on older versions of Android.

    Android uses the target SDK to determine which restrictions to impose, because if you target Android 8 then your app can't be aware of Android 14 features so it goes into compatibility mode. But the minimum SDK doesn't matter, it's just there to tell users of too old Android versions that the app can't run.

  • Severe Pipewire popping and cracking
  • Yeah, PipeWire is the replacement, but you can still remove PipeWire and install PulseAudio again for testing. It's just not default anymore.

  • Severe Pipewire popping and cracking
  • Looks pretty close to mine, especially timers. I don't know, something's weird. I use cache=none for my disks but I don't think writethrough would cause the VM to lag, only disk IO.

  • Severe Pipewire popping and cracking
  • That sounds like timer related. I would guess Windows just bloats up the buffer a lot to make it work, or you've enabled some Hyper-V enhancements that makes Windows happy.

    You can also switch to interrupt scheduled audio instead of timer scheduled. Also, how about direct ALSA like aplay direct to your hardware? That's a good sanity check because that rules out PipeWire entirely. You could also see if PulseAudio handles it okay, then we can compare what PA and PW does different.

    Post your VM config maybe? Works fine for me with whatever virt-manager added by default. I do have cores pinned and high priority so it doesn't cause latency spikes in the VM, the worst thing that can happen for audio is latency spikes and bad timers.

  • AT&T says hackers accessed records of calls and texts for nearly all its cellular customers
  • They all get cybersecurity insurance to limit/eliminate that risk and pass it down to someone else. Yeah, we're at a point where companies have accepted it'll happen and pay for fucking cybersecurity insurance to protect their capital instead of spending that money on actual security.

    Increasing the liability just means the premiums will be passed down to the users, and insurance companies will be rolling in cash. Not like the users would get the settlements anyway.

    And of course there's the whole problem of disposable LLCs, so even a corporate death penalty would do shit, because our society doesn't give a shit about people, only capital.

  • Is anaconda download page considered dark pattern?
  • Yes and also not sure why you'd use Anaconda. What's wrong with plain regular Python?

  • GrapheneOS Sensors and Network permissions confuse me
  • Those are Java package names. Android is written mostly in Java/Kotlin. Java being Java, the recommendation for package names is to use reverse domain name syntax to uniquely identify your stuff. So most of Android's core is under the com.android.* namespace, and Google's extra stuff usually under com.google.android or something like that.

    Android is also extremely modular, so a lot of the system is also just regular Android apps, including settings. That's why you can see say, "Android Easter Egg" which is the hidden system app that gets launched when you tap the version number in settings a few times.

    If all you installed is GrapheneOS and Google Apps, I wouldn't worry about malware. Google's stuff might be spyware but that's up to you to judge, but nothing that wouldn't run anyway on your stock OS.

  • [email protected]: Which email alias services allow unlimited aliases for websites *with a custom domain*?
  • I haven't heard of it being an issue for receiving. Sending is a whole other deal yeah. It works fine for signing up to accounts and stuff.

    That said my emails have been making it to inbox just fine, but I do have a decade of good standing on that IP.

  • [email protected]: Which email alias services allow unlimited aliases for websites *with a custom domain*?
  • I get that services don't want to ruin their own email domains, but I should be allowed to do whatever I want with my own domain.

    Email works with both domain reputation and IP reputation. Even if you have your own domain you're still using their IPs for emails, they're still tied to it for abuse.

    I've been hosting my own for over a decade, works great and no limits other than what the hardware can do. I'd recommend doing that since you already have a domain.

  • how the heck does FM work,?
  • Of course, don't trust me on anything. I likely said something wrong.

    Looks pretty solid to me!

  • Linksys Velop routers send Wi-Fi passwords in plaintext to US servers
  • It's like all the tech companies are actively working together to give us trust issues at this point. Used to flash things for fun because I can, more and more it feels like it's a necessity just to get basic human rights respected.

  • What are your thoughts on Medium.com?
  • I'm not making a Medium account just to read some half assed blog post. That's my biggest gripe with the service.

    It's not like running a Ghost instance is particularly hard or resource consuming.

    I personally like the static site generator blogs people host on GitHub Pages, at least those don't demand my personal information just to read a blog post.

  • Test 0.19.4 comment nesting (after DB fix?)

    Testing, I broke the database so bad my posts were federating out but not saving on my local instance, fun stuff

    4

    Wayland windows can apparently vsync to multiple monitors at once at different refresh rates

    Neat little thing I just noticed, might be known but I never head of it before: apparently, a Wayland window can vsync to at least 3 monitors with different refresh rates at the same time.

    I have 3 monitors, at 60 Hz, 144 Hz, and 60 Hz from left to right. I was using glxgears to test something, and noticed when I put the window between the monitors, it'll sync to a weird refresh rate of about 193 fps. I stretched it to span all 3 monitors, and it locked at about 243 fps. It seems to oscillate between 242.5 and 243.5 gradually back and forth. So apparently, it's mixing the vsync signals together and ensuring every monitor's got a fresh frame while sharing frames when the vsyncs line up.

    I knew Wayland was big on "every frame is perfect", but I didn't expect that to work even across 3 monitors at once! We've come a long, long way in the graphics stack. I expected it to sync to the 144Hz monitor and just tear or hiccup on the other ones.

    7

    Wifi circuit breaker : a terrible idea

    All the protections in software, what an amazing idea!

    5

    [Bug] Viewing a comment (eg. from Inbox) doesn't have a "view parent" option

    It only shows "view all comments", so you can't see the full context of the comment tree.

    2

    [Feature Request] Sharing and copying links should let you copy a local instance link as well

    The current behaviour is correct, as the remote instance is the canonical source, but being able to copy/share a link to your home instance would be nice as well.

    Use case: maybe the comment is coming from an instance that is down, or one that you don't necessarily want to link to.

    If the user has more than one account, being able to select which would be nice as well, so maybe a submenu or per account or a global setting.

    0

    Testing federation

    Testing federation stuff after fixing NTP

    0