sugar_in_your_tea

@sugar_in_your_tea@sh.itjust.works

Mama told me not to come.

She said, that ain’t the way to have fun.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

sugar_in_your_tea,

Same, except I’m not an attention whore (or at least I don’t openly admit it).

I would really like to unicycle to work, but that goes a bit too far down the attention-whore path (not to mention I work really far away).

sugar_in_your_tea,

Don’t let your dreams be dreams.

:)

I loaned out my 20" and never got it back, so I picked up a 29", which I absolutely love. I still miss my 20" though, so I might just pick one up the next time my kid wants to learn to ride. :)

sugar_in_your_tea,

My kid wants one.

sugar_in_your_tea,

Eh, I got it for $50 and it worked to get me to learn, so I’m not too hung up on it. And I leant it to a coworker who was contracting with our org, and after the job ended, he didn’t reach out to return it (I didn’t either). It was kinda crappy, so whatever.

That said, I’m casually in the market again. I’ll get a good one this time too.

sugar_in_your_tea,

How was the recovery process? I keep meaning to do it (we’re done having kids), but we keep having trips or whatever, so excuses pile up.

How soon could I be back doing active things? I have young kids, so “active” to me means roughhousing with the kids and whatnot.

sugar_in_your_tea,

Good advice. I’ve never had surgery outside of wisdom teeth removal, and other than then, I’ve never used anything stronger than ibuprofen. I’ve taken some pretty rough spills, so I think I have a high pain tolerance, but I don’t know for sure.

Does One Line Fix Google? - A “Web” filter that presents what Google used to look like a decade ago | tedium.co (tedium.co)

Forget AI. Google just created a version of its search engine free of all the extra junk it has added over the past decade-plus. All you have to do is add “udm=14” to the search URL....

sugar_in_your_tea,

I think the @google or whatever shortcut would be more likely to work.

And yeah, rewriting URLs would probably be easier if you don’t want to lose the ergonomics of !g.

sugar_in_your_tea,

I’m guessing Gabe Newell does too. I highly doubt he hasn’t considered succession at this point, and I’m guessing people he trusts are already largely running everything anyway.

sugar_in_your_tea, (edited )

Here are fewer words: 1password didn’t get hacked (you claimed they did), LastPass didn’t expose user passwords.

sugar_in_your_tea,

I’m the same way, I use Bitwarden myself.

sugar_in_your_tea,

Lastpass exposed encrypted passwords in 2022

Yes, that’s bad, but attackers would still need to break the encryption. Nobody does that, except maybe state level actors, and if you’re worried about that, you wouldn’t use commodity password managers.

1Password app had a bug where it didn’t clear master password after logof

I think you’re talking about this study:

On the negative side, the master password remains in memory when unlocked (albeit in obfuscated form) and the software fails to scrub the obfuscated password memory region sufficiently when transitioning from the unlocked to the locked state. We also found a bug where, under certain user actions, the master password can be left in memory in cleartext even while locked.

To exploit this, the attacker would need access to the memory of the device and know how to find the password in memory. It’s certainly not ideal, but it’s also not very exploitable.

The newer version is worse in this regard, but it still requires that relatively advanced exploit.

In the conclusion:

However, each password manager fails in implementing proper secrets sanitization for various reasons.

This isn’t unique to 1Password, it’s probably common across password managers. Unfortunately BitWarden wasn’t part of this research because I’m interested to know how it fairs here.

That said, I don’t use or recommend either LastPass or 1Password because they’re not FOSS, I just don’t like FUD. I use and recommend Bitwarden because it’s audited, FOSS, and competitively priced.

sugar_in_your_tea,

Idk, S. Korea’s chaebols actively reduce competition. So be careful who you want to provide that competition…

sugar_in_your_tea, (edited )

Requirements exist. It’s just that device manufacturers don’t seem to care.

I think it’s more reasonable to look at Linux phones than GrapheneOS supporting anything beyond Pixels. I was hoping to get a Linux phone this time around, but they just don’t support the basic features well enough. Hopefully my next phone will be a Linux phone, but we’ll see.

Giving into Google hardware to escape Google software is a step I don’t want to take

Yeah, it’s annoying. However, it’s important to note that Google is generally really good about security, so it’s not a surprise that their phones have a lot of cool security features.

I also didn’t want to give Google money, so I bought a used Pixel and saved a ton of money. I got a Pixel 8 in like-new condition for <$400 on eBay after a big discount from an eBay sale, and I can expect 6+ years of updates (not just security updates, but OS updates). I’m really enjoying GrapheneOS so far. I guess I tangentially helped them, but at least my dollars_ didn’t go to Google.

That said, CalyxOS and DivestOS are also fine projects, and I seriously considered using them instead.

sugar_in_your_tea,

Yup, I’ve been on the fence about buying one since the launch of the OG Pinephone. But I kept waiting until the software support for the things I need arrived (MMS and decent battery life), and that still seems to be unresolved.

I will hopefully have time to hack on it sometime in the next year or two, so I’ll probably get one eventually. Then again, maybe I’ll just ignore the problem until they release an update or something (would be awesome to get a new SOC with better power saving features).

sugar_in_your_tea, (edited )

possible to have different profiles

That’s possible on most recent-ish Android phones, at least it was on my Moto G from 2020 running Android 11. To activate, you need to go to Settings > System > Multiple Users (may need to enable developer access first, not sure).

That allows you to have multiple logins on your phone, and you can switch between them.

What GrapheneOS adds is that you can have Google Play services sandboxed (no privileged access, it works like any other app) per profile. So my main profile has no Google Play services, and my “work” profile has Google Play services with only the handful of apps I need for work (MFA, work chat, etc). When you’re in one profile, you have no access to anything from the other profile, though you have access to system stuff like wifi networks and SIM cards (e.g. you can make/receive calls from all profiles).

It’s that sandboxing that I am most interested in. I rarely use apps from Google Play, but I do need them occasionally, so i separate them by concern. I’m probably going to end up with a “personal” profile for all of the Google Play apps that I need periodically.

sugar_in_your_tea,

I want to route the data we use during our 1-2 day trip through Google servers, yes. It’ll be on a fresh number, and then cancelled promptly after our trip, and it’ll be a hotspot just for the trip so my wife can communicate w/ her friends. It’ll also be used for any incidental calls we may need while there. I usually don’t bother and just use wifi calling as needed, but I saw the free 7-day trial and was interested.

That said, someone else mentioned some inexpensive alternatives ranging from $3-6 (airelo, I also found these), so I’ll probably just go that route instead. Most no-contract services I’ve found require buying international credit, so that would be $20+ just for the trip, and that seems a bit ridiculous. I’m willing to pay about $5 for data for the trip, I’m not willing to pay $20+.

sugar_in_your_tea,

I meant it more tongue-in-cheek :)

My threat model isn’t such that I need it, it’s just really annoying. GrapheneOS does allow blocking network per-app, which is a sufficient workaround. It’s a bit tedious, but I can do the following:

  1. disable network on sensitive apps
  2. disable NetGuard and enable other VPN
  3. finish what I was doing
  4. undo step 2
  5. undo step 1

I really wish there was a way to get VPNs and NetGuard playing nicely together. I want all traffic to be filtered by NetGuard, and then routed over the VPN. This is trivial on Linux, but apparently not so on Android, which is a shame.

sugar_in_your_tea,

If all this engagement slop went out of business tomorrow, my life wouldn’t change lol

Your life would probably improve.

sugar_in_your_tea,

Or just… install an ad-blocker. With Container Tabs on Firefox, YouTube doesn’t associate those links with me (at least not through my Google Account), and I don’t see ads with my ad-blocker.

No need for using random websites that may just be stealing my data a different way. I’m happy to watch on YouTube, I’m just won’t watch the ads or opt-in to tracking.

sugar_in_your_tea,

But YouTube links auto-open, which is why I post YouTube links. I suppose I could figure out how to associate all these random sites (Piped, Freetube, probably others) with YouTube, but surely URL redirectors work better when using the original source URLs instead of a laundry list of different URLs.

On Lemmy, we have the Piped bot, so the inconvenience for those who don’t have those URL redirects configured is to go to the comments and click a link.

sugar_in_your_tea,

Thanks, I’ll check it out. :) That should do nicely.

sugar_in_your_tea, (edited )

Ah, okay, thanks for the clarification. I’ve never used it, just seen it mentioned here.

Regardless, I think it would be easier to use YouTube links instead of Piped links for redirecting links to it. Then again, I don’t have experience with it, only with Android YouTube alternatives like NewPipe and Grayjay.

sugar_in_your_tea,

My new phone doesn’t seem to have the rotate issue, so the biggest annoyance for me now is the lack of channel playlists (i.e. go to a YouTube channel and see their curated playlists). I don’t need that to pay though, so I’ll probably go pay soon.

And yeah, it’s a great app. I still need NewPipe though.

sugar_in_your_tea,

They have other things to consider as well, such as accessibility. You can’t just eliminate all whitespace without consequences.

I do agree it should be easily configurable, but my point is that they’re better than pretty much every competitor, so I’m satisfied.

sugar_in_your_tea,

If they go back to non-floating tabs, you’d save like 2-3px per my screenshots. You seem to want more than that, and that’s where the accessibility issues come up.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • kavyap
  • DreamBathrooms
  • cisconetworking
  • magazineikmin
  • InstantRegret
  • Durango
  • thenastyranch
  • Youngstown
  • rosin
  • slotface
  • mdbf
  • khanakhh
  • tacticalgear
  • JUstTest
  • everett
  • modclub
  • Leos
  • cubers
  • ngwrru68w68
  • ethstaker
  • osvaldo12
  • GTA5RPClips
  • anitta
  • provamag3
  • normalnudes
  • tester
  • lostlight
  • All magazines
    •