Passwords have problems, but passkeys have more
Passwords have problems, but passkeys have more
We had originally planned to go all-in on passkeys for ONCE/Campfire, and we built the early authentication system entirely around that.world.hey.com
VS Code vs VS Codium: What's the Difference?
VS Codium is a very good alternative to the proprietary VS Code.
I use it every day
like this
jherazob likes this.
The latter: vscodium.com/
Microsoft’svscodesource code is open source (MIT-licensed), but the product available for download (Visual Studio Code) is licensed under this not-FLOSS license and contains telemetry/tracking.The VSCodium project exists so that you don’t have to download+build from source. This project includes special build scripts that clone Microsoft’s vscode repo, run the build commands, and upload the resulting binaries for you to GitHub releases. These binaries are licensed under the MIT license. Telemetry is disabled.
like this
Squiddlioni, jherazob and timlyo like this.
It's a fork of VSCode,
VSCodium disables the telemetry,
and also implements a privacy respecting mirror to download addons from.
Other than the icon,
they will use/feel like identical IDEs though,
but only VSCodium will respect your privacy.
Neither. Taken from Codium Github :
This is not a fork. This is a repository of scripts to automatically build Microsoft's vscode repository into freely-licensed binaries with a community-driven default configuration.
The code of VSCode is open source but not the binaries. Codium tries to fix that.
like this
timlyo likes this.
- Code - OSS is what's actually open source. It's like Chromium.
- VS Code is not open source and built on Code - OSS. This is like Google Chrome.
- VS Codium is open source and built on Code - OSS. It's like Degoogled Chromium.
Codium also used an open extension marketplace. Microsoft's cannot be used except by Microsoft products.
VS Code is the epitome of fauxpen source.
No. eclipse.org/community/eclipse_…
Only Visual Studio Products Can Access the Extension Marketplace
While all of the projects listed above support VS Code extensions, only Microsoft products can use and connect to Microsoft’s Extension Marketplace. The terms of use for the Marketplace prevent any non-Visual Studio products from accessing it.Gitpod employs a workaround where users upload .vsix files to install extensions. This causes unnecessary overhead as users have to download the files from GitHub, then upload them to Gitpod. Downloading extensions from the Microsoft Marketplace for any use other than in Microsoft products is prohibited as well.
Most extensions are developed by communities and published under permissive open source licenses. The requirement to distribute and access these community-owned extensions in a system with such restrictive terms of service does not seem right.
Our goal is to resolve this issue by hosting an open source extension registry at the Eclipse Foundation, a vendor-neutral organization. We’re doing this through the Eclipse Open VSX Registry project.
I’ve been trying VS Codium out for Rust/C++ development after avoiding it for years. (Used to use CLion until it for some reason stopped scaling consistently a couple days ago after I reinstalled my PC.)
So far it’s pretty good, except that run configurations seem extremely half baked and inconsistent between the two languages (or rather between build systems, at least for CMake, which doesn’t use the built in one at all; maybe specifically because it is half baked).
mpv script: watch-later-plus
There's no mpv community to share this to, so I figured the next best place was here.
I wrote a script that does two things:
- Saves the watch_later file for the currently playing file every X seconds, if the file is not currently paused.
- Saves a "watched" dummy file when the currently playing file exceeds a certain percentage of watch time.
Normally mpv saves the watch_later file for the currently playing file only if you gracefully quit. This isn't reliable enough for my tastes, so this timer makes better sure my last position is saved.
The second addition is purely for the benefit of additional scripting, inside or outside of mpv. The mpv-created watch_later files are intended to be impermanent, and I believe depending on settings are automatically removed once a file is played to 100%. I personally still want to keep track that I watched a specific video, even when the watch_later file is reset.
It probably goes without saying, but this script has only been tested in Linux.
like this
timlyo likes this.
The current state of the repo still requires quite a bit of manual finagling, but I've tried to make everything as clean cut and modular as possible.
The plan has always been once the configurations mature, to then create scripts that automate the process of not only installing expected packages, but also allow for limited theming.
I've not quite gotten to that phase, but it is quickly approaching.
[Solved] Sorry if this not related to this community because I don't know where to ask, but should I buy this laptop? and does it play nice with Linux.
- Price: 370$
- Model: Asus ROG Strix G15 (G531GV)
- CPU: Intel I7 9th Gen
- GPU: Nvidia RTX 2060 6GB
- Ram: 16GB
- Storage: Samsung SSD 980 Pro 1TB (NVME)
like this
Someplaceunknown likes this.
Nvidia and Linux don't play well. Also if you are able to add a little bit more I bought a new Lenovo IdeaPad Slim 3 14" with a AMD Ryzen processor and without Windows but instead there was FreeDOS preinstalled for $440.
I just installed linux on it and everything worked perfectly for 3 years now, I'm very happy with it. It's not the most powerful, so I can't edit videos on it, but I can play Minecraft, I can program, use the browser with all Microsoft 350 stuff and so on without any problems.
This is really cool! I had no idea that asus had Linux support. I just skimmed their site, are all their current models supported?
I’ll have to consider them next time I get a computer.
Sorry but could you please elaborate. I've been using nvidia forever in linux machines both at work and at home. I work in AI so using nvidia gpus is a must. Maybe there's something that I missed but my experience has been pretty solid so far.
At home I am using openSUSE tumbleweed KDE wayland and at work ubuntu headless.
Integrated GPU is not a dirty word anymore.
AMD's system-on-a-chips with RDNA2/3 pack almost the same punch as the discrete cards with the same architecture. See steamdeck as the prime example, but there's quite a few boards, boxes and laptops with the same.
Do you mean in terms of gaming? I admit that I don't do much gaming on linux. Usually just development and browsing.
I also use proprietary nvidia drivers if that makes a difference.
like this
SaltySalamander likes this.
Sure, but I'm just curious because of course a very cheap model is very cheaply constructed.
Also comparing cans to machined aluminium is pretty weird when they are completely different.
like this
TVA likes this.
I've had lots of problems with Nvidia over the years; you're lucky not to. Latest has been with Wayland which are ongoing. That being said Nvidia drivers are much better generally than they used to be, and I've not had the myriad of small issues I used to get.
This is less to do with them being closed source drivers so much as their drivers being poorly maintained in the past. They seem much better maintained but even now the software support lags behind windows - you have to use 3rd party open source software to make use of the streaming features for example.
Man I wish my time with Nvidia was as easy as you claim it to be.
I had a 1080 Ti that I was forced to sell because Nvidia drivers made my PC unusable.
The performance drop going from a 1080 Ti to a RX 580 was huge, but it was well worth it for a system that would actually work reliably.
I've tried a 3060 as well, which was a nightmare too. Although that was in a laptop so I'm not sure if that's a laptop-specific thing.
I doubt it though, since every other update would render it unbootable, and there was excessive flickering, both of which also happened with the 1080 Ti.
I do know that AMD "just works", though.
Nvidia needs to seriously improve before they're right for a typical Linux user.
Shit, Valve's new big picture mode was delayed for like a year because it was unusable on Nvidia hardware. Doesn't exactly sound bug-free to me mate.
Except, as I and others are telling you, it doesn't "just work".
A crying-laughing emoji is not a counter-argument.
Debian, Fedora, EndeavourOS (arch).
Nvidia's issues on Linux are very well documented... even by the inventor of Linux himself. I didn't realise I had to bring receipts.
As for what do I mean by nightmare, I already said. It would break after updates, I had constant flickering, stuttering, and artefacts. No it wasn't a hardware issue. They're Nvidia driver issues.
To me, that's a nightmare. I need my machine to function, and with Nvidia, it couldn't.
My experience with Nvidia (granted, 3 years old experience):
Going with the closed source driver means stuff breaking each kernel update.
Going with the opensource driver (while it may work for you): not everything is supported.
So its not just "people being annoyed with Nvidia" i'd say.
like this
TVA likes this.
Going with the closed source driver means stuff breaking each kernel update.
What distro are you using if nvidia breaks after every kernel update? What do you need to do to fix the breakage?
Debian.
Well, every kernel update is overstated maybe, but I had my fixed workflow of dropping to text mode and reinstalling the latest drivers from vendor, which is annoying as hell.
Dropped the card after meddling about for almost a year. Been using Linux since slackware was still hip & happening.
Did you use your package manager and dkms? You need to recompile the driver hook with each kernel update.
I've had Nvidia cards since the Riva TNT2 and it's been reasonably smooth sailing... 🤷♂️
Keeps jumping to the latest kernel instead of the latest stable release.
Blames nvidia for not keeping up...
I've been on Manjaro for years and have literally NEVER had your issue. Why, because I don't just automatically change to the latest kernel and then wonder why shit doesn't work.
After an update, it'll tell me if a newer kernel is available, I'll look at it and if its a new stable release I'll change to it with no issue because an NVIDIA update was likely included with that update.
Stop forcing early adoption on your computer and then blaming others when it fucks up your shit.
Not an assumption.
I freely admit that it's an anecdotal fallacy in that it's based entirely on my own experience and may or may not reflect the larger reality. But it would only be an assumption if it's something that I was just guessing was true, whereas I've been around the Linux world long enough to see it first hand.
You have adapted your way of working around the fact that it can break:
- Not auto updating
- Checking if it is an LTS
I call that way of not updating "annoying" and insecure IMO.
Other vendors don't have this issue.
My conclusion: steer clear of Nvidia.
Didn't say anything about auto-updating. Just can't be bleeding edge and use proprietary drivers, that's all. Other (AMD) use the open source drivers, so they don't have that issue. And that's great. But if you use the NVIDIA propietary drivers, you can't race ahead of them.
That doesn't make the drivers bad; they work perfectly fine; and have far far far better performance than AMD. There's just the trade-off that you can't be bleeding edge when using them.
You take the good you take the bad you take them both and there you have...the facts of life.
You're argument that drivers are bad because you can't fuck around with your system without them breaking is disingenuous. If you buy a brand new Wacom tablet, and it turns out that it's too new and the Kernel doesn't support it yet, or no one has written a patch to get it working, you don't claim that Wacom is a shit company. It's just a fact of life that you have to wait for either the kernel to update or for someone to get a patch working.
But when it comes to NVIDIA...holy shit... WORST, period, COMPANY, period, EVER!!!! And that's just hypocritical.
Bleeding edge in Debian? I was not even using the "testing" release of Debian.
If your point is that it's fine for a company to get their stuff out there in a timely fashion, that company just sucks balls in my opinion.
Just FYI I am perfectly fine with you having your workarounds and (apparently different) opinion.
I expected some basic civility and more constructive tone of words. But if you start blaming me as a user for something basically ALL other vendors are coping with just fine, thats where the discussion stops with me.
I am definitely not against linux (daily user myself). And honestly, people like you don't make Linux more attractive of an option.
Have a good one.
NVIDIA has improved a lot over the past year.
Explicit sync support in Wayland now.
Even the closed drivers use Open Source components in the kernel now. For newer cards, that is the default.
These days ROCm support is more common than a few years ago so you're no longer entirely dependent on CUDA for machine learning. (Although I wish fewer tools required non-CUDA users to manually install Torch in their venv because the auto-installer assumes CUDA. At least take a parameter or something if you don't want to implement autodetection.)
Nvidia's Linux drivers generally are a bit behind AMD's; e.g. driver versions before 555 tended not to play well with Wayland.
Also, Nvidia's drivers tend not to give any meaningful information in case of a problem. There's typically just an error code for "the driver has crashed", no matter what reason it crashed for.
Personal anecdote for the last one: I had a wonky 4080 and tracing the problem to the card took months because the log (both on Linux and Windows) didn't contain error information beyond "something bad happened" and the behavior had dozens of possible causes, ranging from "the 4080 is unstable if you use XMP on some mainboards" over "some BIOS setting might need to be changed" and "sometimes the card doesn't like a specific CPU/PSU/RAM/mainboard" to "it's a manufacturing defect".
Sure, manufacturing defects can happen to anyone; I can't fault Nvidia for that. But the combination of useless logs and 4000-series cards having so many things they can possibly (but rarely) get hung up on made error diagnosis incredibly painful. I finally just bought a 7900 XTX instead. It's slower but I like the driver better.
Finally, thanks for the clear cut answer. I don't have any experience with training on AMD but the errors from nvidia are usually very obscure.
As for using gpus other than nvidia, there's a slew of problems. Mostly that on cloud where most of the projects are deployed, our options seem either limited to nvidia gpus, or cloud tpus.
Each AI experiment can cost usually in thousands of dollars and use a cluster of GPUs. We have built and modified our system for fully utilizing such an environment. I can’t even imagine shifting to Amd gpus at this point. The amount of work involved and the red tape shudder
The only two things that have ever been broken by an update for me are hyprland and Nvidia drivers, multiple times
Even then that seems to have stopped happening recently though they patched one of the reallg big issues this year
Oh yeah, the equation completely changes for the cloud. I'm only familiar with local usage where you can't easily scale out of your resource constraints (and into budgetary ones). It's certainly easier to pivot to a different vendor/ecosystem locally.
By the way, AMD does have one additional edge locally: They tend to put more RAM into consumer GPUs at a comparable price point – for example, the 7900 XTX competes with the 4080 on price but has as much memory as a 4090. In systems with one or few GPUs (like a hobbyist mixed-use machine) those few extra gigabytes can make a real difference. Of course this leads to a trade-off between Nvidia's superior speed and AMD's superior capacity.
2060, 9th gen and 1Tb SSD for 400 is a good deal in my opinion. Don’t fear the nvidia BS spreaded here, with an up to date distro, it is no problem
I use my 780 with endeavourOS and latest proprietary driver without issues. I had to switch some packages from the nauvau edition to the nvidia editions. (Vulcan and cuda stuff)
In kde settings about page you can easily check if vulcan is running good
NVIDIA drivers are notoriously bad. They break and WILL depreciate your card eventually, forcing you to switch to the slow open source drivers.
I have had two cards lose support. It's absurd.
But for 370 it's kinda a steal honestly.
That seems like old nvidia card (shortly googled). For those, nvidia deserves all the fuck you it gets 😂 they don’t offer proprietary drivers for legacy card on newer kernel. For most, there exist community patched versions, but nouveau is often more feature rich (and works with wayland!). Many legacy nvidia cards require you to boot from legacy BiOS and won’t work from UEFI -> is is especially infuriating on old Mac, since those need to boot from a CD in order to be able to easily install Linux using legacy bios (there are ways to convert a EFI install, but I, till now, always failed that approach..). At least, as soon as you have grub2 and legacy bios set up, you can use grub to boot feom a iso file on your harddisk without switching back to EFI)
This card in the laptop is not legacy and even “works” with wayland on proprietary drivers
I think since version 550 of the proprietary driver, it is mostly possible, if your card is compatible (meaning not legacy), but yea, I as well have to switch ch to X.org for some things. (Proton Cyberpunk, for example)
For legacy cards, the open source driver are most of the time best bet, if you are not running a legacy kernel since nvidia does not update those anymore (there are community patches of legacy proprietary driver to make them work on newer kernel, but they often have less features than using the card with nouveau)
Yeah, Tumbleweed has a good track record with NVIDIA drivers in my experience. As with updates in general.
Although I still use X11 as Wayland still has graphical issues in some apps for me. Usually Flatpaks. That makes it unusable for me for the time being.
Edit: I have an older card (1050ti), so maybe I don't get the latests drivers anymore?? On version 550.
Honestly I think the power bills would be similar with similar performance hardware, because you have to take into account battery losses with laptops.
that's fair that you don't have the space though
This
Gaming laptops usually have atrocious battery life, especially ones with Intel i9s and comparatively weak GPUs. Means they put the whole budget of the laptop into the CPU and nothing else.
My i7 8th gen 32gb 1060 MSI g65 stealth with a brand new battery gets 45minutes - 3 hours depending on what I'm doing....it's atrocious.
I main a 1135g7 32gb dell latitude and that seems to be in the happy range of 3hrs-5hrs 3hrs being the more more common time. As much as I hate the plastic package I really go love the 1135g7 processor. Dell just sucks at making good hardware.
I genuinely didn't realise that! It looked like they were missing, and just had the little nubs underneath.
Would you perhaps like to imagine they were missing, if only for the sake of my previous comment? :)
I suppose if you don't know what you're doing - that's true. It's not something unique to nvidia either - it's true of any drivers outside the kernel source. But that's what dkms is for - it automatically handles it for you when you update your kernel.
If you don't want to learn how the system you use works then you suffer the consequences. Or you just continue to blame nvidia for your own ignorance as I'm sure you will.
Ah the problem you are describing in wayland actually usually happens only with electron apps. Most of the electron apps require forcing them to run on wayland. They are usually running on X (x-wayland) which cause all sorts of glitches. You can use xeyes to check if the app is using xwayland or not. If eyes move when you move the cursor inside the app then it's on xwayland.
To resolve the issues for the electron apps I pass these parameters:--enable-features=UseOzonePlatform --ozone-platform=wayland
Getting these args to flatpacks could be a bit tricky. You can usually find Appimages that can allow you to run these apps easily on wayland.
I am also on ver 550.120 so doubt that driver is the issue here.
No consequences here. I’m perfectly happy continuing on using AMD.
Sure - and you're limited to systems that use an AMD chip. Consequences. I'm sure you justify this to yourself though.
Why do you think AMD always work out of the box and people constantly have problems with Nvidia? Is it because they’re “ignorant” or because it’s unnecessarily convoluted?
I don't think - I know. Because one is integrated with the kernel and built and distributed with it and the other is a separate module. This isn't something unique to nvidia either - my system has modules from system76 as well as v4l2loopback that are also compiled separately.
But since I install my packages using "apt" they are all managed by dkms and I don't need to worry about it. Because I took a few minutes to learn about how my computer works.
This is the literal definition of a consequence. 🤣
My guy, I don't even know what these words mean. And with AMD, I don't have to become a software engineer. It just works.
Fucking hell...
Consequence: "a result or effect of an action or condition."
e.g "being stuck buying only amd kit"
Oh no, absolutely nothing else to add. I don't want to confuse you with "software engineer speak". Enjoy the self-imposed ignorance.
😂i need to fix element (matrix client) with that 🥳 finally got the cause of the issue
Thank you very much!
How could that be fixed by the devs? Is it something electron has to update or all electron apps individually, in order for it to work out of box?
So last when I was following the issue on github, it would need to be supported by electron first. It’s in the works but for now, and take it with a grain of salt, I think the recommendation in the issue was to add the options in the desktop file or executable of the app yourself.
If you are distributing the app with the flags then just a remainder to set the compatibility of the flags such that it also works with X.
For the third time, not a consequence. Consequence implies some sort of sacrifice.
You mean like not being able to use a system with an Nvidia card? 🤣
OMG dude. This is pathetic.
Just turn the computer off when you’re not using it.
If it’s because of bills then you’re not gonna see a significant increase in power consumption from just a computer.
If it’s because of your grid or home circuits, you have bigger problems. Washing machines and refrigerators are a big draw when the motors kick on and everything’s just fine. Hell, incandescent lightbulbs draw 100w.
Source: when I’m worried about power draw I use a kill a watt for a month on the thing I’m worried about.
Don't know what it is in this thread. "It did not work for you so you must have done something wrong"?
See my thread where some dude says it should just work (when he is just doing LTS kernel updates only and not updating in general).
Comments simply blaming the user based on their limited usecase are hardly constructive.
I have a quadro k2000m in my laptop. Cannot use modern drivers, and old drivers slowly have their support dropped by everything else. If the chip works then the drivers should as well.
AMD does not have this problem. AMD has open source drivers. If NVIDIA made their drivers open source then it would not be a problem.
Dilaectical Materialism is influenced by Hegel's Dialectical Idealism, but rejects the majority of it as idealism. A good primer is Elementary Principles of Philosophy, by Georges Politzer, which goes over the history of Idealism, Dialectics, and Materialism, before showing how they gave way to Dialectical and Historical Materialism.
It requires reading to understand, but certainly no PhD!
GE-Proton9-16 Released
Proton:
- import upstream makefile changes
- import upstream proton changes
- import upstream steam_helper changes
- import upstream vkd3d-shader changes
- update wine to latest bleeding edge
- updated dxvk to latest git
- update vkd3d-proton to latest git
- update dxvk-nvapi to e4bad70
Protonfixes:
- fixed issue with game_titles not being pulled correctly for UMU
- game_titles are now looked up as part of included umu-database csv instead of trying to send online website api call
- games run with UMU will now have /mnt,/run/media,/media/, and the user's home folder added as drives u:,v:,w:,x: respectively inside the prefix if they are not empty. This is to allow users to install or import games outside of the prefix more conveniently. A typical scenario for this would be if you have your games pre-installed on a different mounted drive, or somewhere else in your home folder outside of the prefix and you want to add them without reinstalling the game, OR if you want to install the game to one of those mounts instead of the C:\ drive inside the wine prefix. With steam, users don't really have to worry about this because steam handles the drive mounts and the install locations, however we found that outside of steam users were trying to use the Z: drive (which is symlinked to root (/)) -- which is of course containerized and read only, and therefore also unable to provide a proper drive size, resulting in users being told they don't have enough space. With the new drives added into the prefix it should fix this, allowing users to access their mount locations or existing game folders for installation or importing via the new drives instead of Z:.
- Mod support for various bethesda games has been added (Thanks Root-Core). If a mod executable is found for bethesda games it will launch the mod executable instead of the original:
mapping = {
'22380': ('FalloutNV.exe', 'nvse_loader.exe'), # Fallout New Vegas
'22370': ('FalloutLauncher.exe', 'fose_loader.exe'), # Fallout 3
'377160': ('Fallout4Launcher.exe', 'f4se_loader.exe'), # Fallout 4
'22330': ('OblivionLauncher.exe', 'obse_loader.exe'), # Oblivion
'72850': ('SkyrimLauncher.exe', 'skse_loader.exe'), # Skyrim
'489830': ('SkyrimSELauncher.exe', 'skse64_loader.exe'), # Skyrim SE
'1716740': ('Starfield.exe', 'sfse_loader.exe') # Starfield
}.get(game_id, ('', ''))
- protonfix added for metal gear solid 2 (thanks FranjeGueje)
- protonfix for Kindom Hearts HD Remix added for steam version (already existed for egs version) (thanks Internetbestfriend)
- protonfix added for Gothic Playable Teaser (thanks Root-Core)
- Star Citizen protonfix updated (no longer requires EAC workaround)
Sorry to be off-topic but I'm curious:
How/why do people use proton-ge?
Are you using it standalone? Through Lutris or Steam? Something else?
What are the situations you'd need it over vanilla proton? Do you keep both vanilla and ge installed?
Also, do improvements generally get added to vanilla, or is ge an increasingly-divergent fork?
I've been gaming primarily on Linux for over a decade and since it's been an option I've used proton on steam extensively, but I've never tried ge
Cuban president leads pro-Palestinian march in Havana
Cuban president leads pro-Palestinian march in Havana
Thousands of Cubans, led by President Miguel Diaz-Canel and other leaders of the communist-run island, marched in Havana on Monday to express solidarity with Palestinians in Gaza.France 24 (FRANCE 24)
like this
Oofnik, KaRunChiy, NoneOfUrBusiness, metaStatic and Maeve like this.
MX Linux forum was under a DDOS attack.
like this
Someplaceunknown likes this.
reshared this
Tech Cyborg reshared this.
like this
KaRunChiy likes this.
like this
KaRunChiy likes this.
Even EndeavourOS and Debian are above Ubuntu. (For the last 6 months.) My theory is that most Ubuntu users don't need to search in Distrowatch anyway, but people looking an alternative for Ubuntu do. Also the site counts Kubuntu and Lubuntu and all variants as separate distributions. My gut feeling says to me that most users first use for Ubuntu, even if they look for information about Kubuntu.
That would be an explanation without script kiddies. Just because I have a good heart and faith in the community. :p (my jokes get worse every day)
like this
DaGeek247 likes this.
someone asked a question and the only response was
"man page"
Silent Coup: How Corporations Steal Resources and Ransack the Poor from the Shadows
Silent Coup: new book shows how corporations steal from us all
Silent Coup: How Corporations Overthrew Democracy is now available in paperback. To mark the occasion, we spoke to co-author Matt Kennard.Ed Sykes (The Canary)
like this
SolacefromSilence and SuiXi3D like this.
Sweden boosts defense spending to handle a ‘wartime situation’
Sweden boosts defense spending to handle a ‘wartime situation’
Defense Minister Pål Jonson told POLITICO that a Russian attack “cannot be excluded.”Joshua Posaner (POLITICO)
like this
SuiXi3D, Oofnik, aramis87, NoneOfUrBusiness, felixthecat and Maeve like this.
Inside Meta’s Palestine Censorship
Meta has a Palestine problem. If you use Facebook or Instagram, you’ve probably seen the censorship yourself. Dena Takruri uncovers an internal culture of censorship, intimidation and fear within Meta, the parent company of Instagram and Facebook.
She speaks to Meta employees who’ve tried to fix the problem or speak out, and say they were silenced or even fired. She also investigates Meta leaders’ deep ties to Israel, which may explain why it’s suppressing and censoring Palestine content for billions of users around the world.
- YouTube
Auf YouTube findest du die angesagtesten Videos und Tracks. Außerdem kannst du eigene Inhalte hochladen und mit Freunden oder gleich der ganzen Welt teilen.www.youtube.com
like this
NoneOfUrBusiness likes this.
It was never about “countering dis-, mis-, and mal-information”. It was always about controlling the message, about censorship & propaganda. It was always top-down from the capitalist class and their government mandarins to shape public opinion. I’ve described real media literacy before, which you’ll never get from secondary or undergraduate schooling, nor from corporate media, nor from the new post-Trump/“post-truth” media literacy curricula.
In the fediverse we have some amount of freedom right now, but they’ve become aware of us.
A recent surge in global warming is not detectable yet
A recent surge in global warming is not detectable yet - Communications Earth & Environment
Despite 2023’s record temperatures, there is no significant warming surge beyond the 1970s, and an increase of at least 55% across all datasets is required for a detectable warming surge at the present time, according to an analysis of four global me…Nature
What is the ‘Generals’ Plan’? Israel’s ongoing ethnic cleansing of northern Gaza, explained
What is the ‘Generals’ Plan’? Israel’s ongoing ethnic cleansing of northern Gaza, explained
The ethnic cleansing of northern Gaza as part of the so-called “Generals’ Plan” isn’t new, but the only thing standing in its way is the will of 200,000 Palestinians to stay in the north and refuse displacement.Qassam Muaddi (Mondoweiss)
We Distribute Is On Temporary Hiatus
Due to the ongoing strain of trying to write, edit, and publish articles on a consistent basis, and a handful of personal obligations of our founders, We Distribute is officially on temporary hiatus.
This is not the end of our publication or our project, but we need to step back for a while and regroup, if the project hopes to survive.
We Distribute Is On Temporary Hiatus
We Distribute has been in operation in one form or another for the past 9 years. Our project has managed to reach thousands of people, both inside and outside of the Fediverse, to promote a vision ofSean Tilley (We Distribute)
A drone attack on a Zionist military base in Binyamina, south of Haifa, has killed four occupiers and wounded 67 others, according to Zionist media.
Notably, air defense systems failed to detect the drone, which detonated without triggering air raid sirens in the area, as confirmed by occupation media outlets.
‘Israeli’ media reported that 50 ambulances were dispatched to the scene where a #Hezbollah drone, flying undetected, exploded in a military base south of Haifa, after sirens failed to sound.According to Israeli media, 39 injuries were reported in the drone attack, with many of… pic.twitter.com/rGqpgIFoov
— Al Mayadeen English (@MayadeenEnglish) October 13, 2024
The strike reportedly targeted the dining hall at a base belonging to the Golani Brigade.
It was reported that 50 ambulances rushed to the scene to transport the casualties, with helicopters also being called in.
Hezbollah issued a statement in the wake of the operation, claiming responsibility for it. “The Islamic Resistance carried out an operation on the evening of Sunday, October 13, 2024, launching a squadron of attack drones at a training camp of the Golani Brigade in Binyamina, south of Haifa,” the statement read.
The Resistance said the operation was in response to the Zionist massacres across Lebanon, particularly its aggression on the Lebanese capital a few days ago.
“The Islamic Resistance will remain present and ready to defend our country and our proud, oppressed people, and will not hesitate to fulfill its duty in deterring the enemy,” it added after underlining that the operation was carried out as part of the series of Khaibar operations and in support of the people of Gaza and their resistance, as well as in defense of Lebanon and its people.
The military media wing of the Islamic Resistance in Lebanon – Hezbollah reissued a warning to settlers, reiterating a statement made days earlier by the Resistance operations room.
Hezbollah had earlier said: “The ‘Israeli’ enemy forces are using the houses of settlers in some settlements in northern occupied Palestine as assembly points.”
“The Zionist enemy’s bases used as operations rooms for the aggression on Lebanon are within densely-populated cities such as Haifa and Tabarayya, among others,” the warning added. “All the aforementioned houses and military bases are legitimate military targets for the Rocket and Air Forces of the Islamic Resistance. Therefore, we warn settlers against gathering near these military sites in order to preserve their lives until further notice.”
Hezbollah Operations Room:
—
We had previously warned that the persistence of the zionist enemy in assaulting our honorable people across the steadfast land of Lebanon would turn Haifa and beyond into targets for the resistance’s missiles and drones, just like “Kiryat Shmona,” “Metulla,” and other settlements along the border with Lebanon. We accompanied this warning with some of the information returned by our “Hudhud” drones about “sensitive” zionist military targets and “vital” zionist facilities in occupied Palestine, especially in the occupied city of Haifa. We also emphasized to this enemy that the Islamic Resistance sees and hears where it is least expected.
The zionist enemy wagered that the Islamic resistance would be unable to carry out its threat after it conducted vile security operations and assassinated its righteous leaders, foremost among them our most exalted and sacred martyr, the honorable Secretary-General Sayyed Hassan Nasrallah (May Allah sanctify his soul). The enemy ignored the warnings and continued its assaults against our honorable people, committing the most heinous massacres against women and children, especially in Beirut and the southern suburbs.
After all this, the leadership of the Islamic Resistance decided to discipline this enemy and reveal a fraction of its extensive capabilities, whenever and wherever it chooses—whether in secret or openly. The target was one of the elite “Golani” Brigade camps in “Binyamina,” south of occupied Haifa, a location unknown to many settlers.
In a complex, qualitative operation, the Islamic Resistance’s rocket force launched dozens of missiles toward various targets in the Nahariya and Akka areas to preoccupy “israel’s” air defense systems. Simultaneously, the Islamic Resistance’s air force deployed swarms of drones—some used for the first time—toward different areas in Akka and Haifa. These advanced drones penetrated the zionist air defense radars undetected and reached their target: a training camp for the elite “Golani” Brigade in “Binyamina,” south of occupied Haifa. The drones exploded inside the rooms where dozens of enemy officers and soldiers were gathered in preparation for participating in attacks against Lebanon. Among them were high-ranking officers, and the operation resulted in many killed and wounded.
The Islamic Resistance pledges to the most honorable and purest people that it will remain their protective shield and will not allow this cowardly enemy to single them out. It renews its promise to its most exalted and sacred martyr [Sayyed Hassan Nasrallah] that it will continue to defend the land of beloved Lebanon according to the operational plans he personally supervised with the martyred leaders. The resistance assures the enemy that what it witnessed today south of Haifa is only a small preview of what awaits if it continues its aggression against our proud and noble people.
abolitionmedia.noblogs.org/pos…
#alAqsaFlood #guerrilla #hezbollah #lebanon #palestine #resistance #westAsia
Cuban President Miguel Díaz-Canel joins march in support of Palestine
Cuban President Miguel Díaz-Canel joins march in support of Palestine : Peoples Dispatch
Thousands marched in Havana to denounce Israeli genocide in a demonstration organized by the Young Communist League of CubaPeoples Dispatch
US Army quits plan for next-gen Patriot missile replacement
US Army quits plan for next-gen Patriot missile replacement
Patriot missiles will continue to see upgrades as missile threats evolve over the next several decades.Jen Judson (Defense News)
sir_pronoun
in reply to exu • • •asap
in reply to sir_pronoun • • •edit: I think I’ve misunderstood the point of the article. He is saying passkeys are dangerous for people without password managers, therefore for most people passwords are still better (since most people don't use password managers). It's not so much a problem with passkeys, but the lack of password managers.
Surely the better-case scenario would be using a password manager?
The article doesn't address the recommended use-case of passkeys + password manager, which makes it kind of irrelevant.
like this
Get_Off_My_WLAN likes this.
sir_pronoun
in reply to asap • • •asap
in reply to sir_pronoun • • •like this
Get_Off_My_WLAN likes this.
hedgehog
in reply to sir_pronoun • • •Nope.
Using a cross-platform password manager with synced passkeys is different and much more secure than using a password manager with email TOTPs or sign-in links with emails that aren’t end-to-end encrypted.
And password manager adoption is much higher than PGP keyserver adoption, and if you can’t discover someone’s public key you can’t use it to encrypt a message to them, so sending end-to-end encrypted emails with TOTPs/sign-on links isn’t a practical option.
According to Statista, 34% of Americans used password managers in 2023 (a huge increase from 21% in 2022), so it’s not even like the best case scenario is rare.
Im_old
in reply to exu • • •Seems to me the whole argument boils down to "they (the passkeys) are generally saved in proprietary non-communicating stores", which is fair. But then the problem is not the passkey, it's the fact that we (as usual) give all our stuff to corps. It's the eternal struggle of easy of use vs. better security.
I host my own vaultwarden btw 😊
like this
xep and Get_Off_My_WLAN like this.
unskilled5117
in reply to exu • • •Agreed, in its current state I wouldn‘t teach someone less technically inclined to solely rely on passkeys saved by the default platform if you plan on using different devices, it just leads to trouble.
Using a password manager is still the solution. Pick one where your passkeys can be safed and most of the authors problems are solved.
The only thing that remains is how to log in if you are not on a device you own (and don’t have the password
... show moreAgreed, in its current state I wouldn‘t teach someone less technically inclined to solely rely on passkeys saved by the default platform if you plan on using different devices, it just leads to trouble.
Using a password manager is still the solution. Pick one where your passkeys can be safed and most of the authors problems are solved.
The only thing that remains is how to log in if you are not on a device you own (and don’t have the password manager). The author mentions it: the QR code approach for cross device sign in. I don’t think it’s cumbersome, i think it’s actually a great and foolproof way to sign in. I have yet to find a website which implements it though.
like this
WadeTheWizard likes this.
hedgehog
in reply to unskilled5117 • • •The site doesn’t need to implement this; the browser handles that part.
I confirmed this works and logged into Github using Google Chrome on my work computer using a passkey stored in Bitwarden earlier today. I had to enable Bluetooth for Chrome, since I’d had it disabled, but then everything else was seamless.
M600
in reply to exu • • •Every time I’ve tried to understand passkeys I either don’t get it and it’s scary to potentially be locked out or I do understand it and I still find it scary to potentially be locked out.
Even 2fa is tricky.
If my phone is stolen and I don’t have my laptop with backup codes, then I’m not getting into my accounts.
What if both are stolen or damaged at the same time?
Fushuan [he/him]
in reply to M600 • • •Bitwarden has a passkey service + a paid totp service, so I can always use either to log into whatever within two clicks. Yeah it's less secure than a physical keychain but... Whatever, it's better than passwords and as easy to use.
In any case, if you atore the backup codes in a place where you can lose them, that's on you. Upload them into somewhere you control that has good privacy laws.
shapis
in reply to M600 • • •Passkeys are basically passwords that you don’t send to the server. So they are safer against phishing.
Basically the server has a message. They will scramble it with your public key. And send it to you. Your private key unscrambles the message and then you send the message back to them. So if they receive the original message back. They know you are you. And they never got their hands on your private key at any point. It’s awesome.
2fa is an entirely different thing. And I do wish it was more standard how it works. Some places if you lose it you lose your account (bitwarden). Others you don’t (protonmail).
Everyone should use passkeys. 2fa you have to decide if your case warrants it.
Edit: example of passkeys:
Step 1: they have the message “cat”
Step 2: they encrypt it with your public key and it becomes “acm”
Step 3: they send you the encrypted message “acm”
Step 4: you decrypt the message “acm” into “cat” with your private key.
Step 5: you send the
... show morePasskeys are basically passwords that you don’t send to the server. So they are safer against phishing.
Basically the server has a message. They will scramble it with your public key. And send it to you. Your private key unscrambles the message and then you send the message back to them. So if they receive the original message back. They know you are you. And they never got their hands on your private key at any point. It’s awesome.
2fa is an entirely different thing. And I do wish it was more standard how it works. Some places if you lose it you lose your account (bitwarden). Others you don’t (protonmail).
Everyone should use passkeys. 2fa you have to decide if your case warrants it.
Edit: example of passkeys:
Step 1: they have the message “cat”
Step 2: they encrypt it with your public key and it becomes “acm”
Step 3: they send you the encrypted message “acm”
Step 4: you decrypt the message “acm” into “cat” with your private key.
Step 5: you send them back the message “cat”
Only your private key would be able to decrypt something encrypted with your public key. So they now know you are you. And they never got a hand on your private key. It’s the same as a password except you never send it directly to the server.
hedgehog
in reply to M600 • • •Do you memorize all of your passwords? If so, I take that to mean that you don’t use a password manager. Password managers - really, any app with 2FA - have this problem, too. But if you use a password manager and store your 2FA methods in it, then you only need to be able to regain access to your password manager.
If you use a cross-platform password manager with Passkey support, like Bitwarden, you can use it on any of your devices. In the event that you lose all of your devices, if you don’t have an Emergency Contact set up, you will need your password and one of the following to gain access to your account:
If you use security keys for 2FA, then you should have at least two - one that you keep with you and a backup that you keep in a safe place, like at home in a lockbox.
If you use a TOTP app to log in, or if you use security keys and want anoth
... show moreDo you memorize all of your passwords? If so, I take that to mean that you don’t use a password manager. Password managers - really, any app with 2FA - have this problem, too. But if you use a password manager and store your 2FA methods in it, then you only need to be able to regain access to your password manager.
If you use a cross-platform password manager with Passkey support, like Bitwarden, you can use it on any of your devices. In the event that you lose all of your devices, if you don’t have an Emergency Contact set up, you will need your password and one of the following to gain access to your account:
If you use security keys for 2FA, then you should have at least two - one that you keep with you and a backup that you keep in a safe place, like at home in a lockbox.
If you use a TOTP app to log in, or if you use security keys and want another backup, then making sure you’ll have access to the Recovery Code should be your priority. You can write it down and keep it in a few different places - at home, in your car, in your locker at work, etc.. You can share it with someone you trust in person or over an encrypted channel (like Signal). You can store it on a flash drive, encrypted by a second password (which can be much easier than your primary password) or even unencrypted, if you generally keep the drive somewhere safe, disconnected from your computer. As long as you remember your password and can access your recovery code, you’ll also be able to regain access to your account, including all of your passkeys.
Emergency Access requires someone else to have access to their Bitwarden account, but assuming you don’t both lose access, it’s a pretty solid solution. When they request access, Bitwarden will send you an email allowing you to accept or reject their request. If you accept or don’t respond within the allotted “Wait Time” (which you configure: 1 day minimum, 90 days maximum) then they’ll be granted access. You also get a choice (when setting this up) to let them takeover the account (resetting your master password) or to just get read-only access.
Maybe you don’t like Bitwarden and want to use some other app, like 1Password, Dashlane, Roboforms, etc.. Whatever your choice, familiarize yourself with how to restore access to your account in an emergency. Then you only need to worry about that and not about how to get access to your passkeys that are on your Windows laptop or only synced to your Apple devices.