sugar_in_your_tea

sugar_in_your_tea, 16 hours ago

How was the recovery process? I keep meaning to do it (we’re done having kids), but we keep having trips or whatever, so excuses pile up.

How soon could I be back doing active things? I have young kids, so “active” to me means roughhousing with the kids and whatnot.

sugar_in_your_tea, 16 hours ago

I think the @google or whatever shortcut would be more likely to work.

And yeah, rewriting URLs would probably be easier if you don’t want to lose the ergonomics of !g.

sugar_in_your_tea, 16 hours ago

I’m guessing Gabe Newell does too. I highly doubt he hasn’t considered succession at this point, and I’m guessing people he trusts are already largely running everything anyway.

sugar_in_your_tea, 1 day ago

Old enough/yes please/anywhere you’d like

sugar_in_your_tea, 1 day ago

Which one?

sugar_in_your_tea, 1 day ago

I’m an openSUSE fan, so I’d go with one of the microOS desktops (I’d pick Kalpa, but Aeon works too).

But that’s not on your list, so I’d go with Debian 12.

sugar_in_your_tea, 1 day ago

And everything on Kali can easily be installed on something else. If you want “hacker tools,” just apt install them on Debian 12. I use nmap pretty frequently on openSUSE Tumbleweed (not on the list) for testing my own domains, and pretty much any Linux distro will have those tools in the repos.

sugar_in_your_tea, 1 day ago

Yup, and I never said you didn’t. I just pointed out that “getting something for free” should have absolutely nothing to do with the product review. The review is about the merits of the product and whether it’s worth the asking price, how much they paid for it is completely irrelevant information.

sugar_in_your_tea, 1 day ago

The only issue I see is the implication that if they leave a negative review, they won’t get free stuff anymore. So if the reviewer is honest and willing to buy the products they review, I don’t see an issue with accepting random free stuff in exchange for taking the effort to review it.

That said, GN’s policy is great too, they buy the stuff they review so there are no conflicts of interest.

sugar_in_your_tea, 17 hours ago

1password did not get hacked.

The LastPass hack was caused by a Sr. DevOPs not practicing secure OPs at home (was running a very old version of Plex). It didn’t attack the technology stack itself, it attacked one of the employees. User passwords were encrypted, so attackers would need to break that encryption to access stored passwords.

You missed the Okta breach, which impacted support customers, but also didn’t expose stored passwords.

Bitwarden hasn’t been hacked, and the closest I’ve heard of is this security research, but that’s using a feature that’s disabled by default, requires using a keyboard shortcut, and doesn’t work on all sites anyway. Yet they patched very quickly anyway.

I personally trust Bitwarden. They have acted professionally at every turn, and I can self-host if I choose. I don’t trust LastPass or Okta (though I need to use Okta for work), and I don’t particularly trust 1password despite them not being breached because their product is not FOSS. Chrome is a big product with lots of breaches every day, so I’d really prefer to not have my passwords stored by the same software stack as a massive hacking target. Bitwarden has separate desktop apps, so I can completely separate my data if I so choose.

sugar_in_your_tea, 1 day ago

Cool.

Since you’re here, do you know if SIMs “just work” with different profiles? Can I restrict them to a specific profile? I’m guessing SIMs are a completely separate concept from profiles (which AFAIK just manages apps), but this is my first time with GrapheneOS.

sugar_in_your_tea, 1 day ago

Yes, I’m violating their TOS, but I also never signed their TOS agreement. I don’t use a YouTube account, I just access their webpage. Nothing here is illegal, I’m just not rendering content that I don’t want to see. I have no legal obligation here. Google doesn’t get to decide what gets run on my machine, I do. If they don’t want me to view their content, they should lock it behind a paywall or something.

sugar_in_your_tea, 1 day ago

Right, and I’m arguing that it’s not piracy. Piracy is a copyright violation, and blocking ads isn’t violating copyright, it’s only violating TOS. “Piracy” is the informal term for “copyright infringement,” at least in my jurisdiction (US).

Here’s a law stack exchange answer about it:

First the broad strokes: It’s not illegal to block ads.

…

But… that doesn’t mean your use of an adblocker isn’t in violation of US law.

The crucial issue with legality when it comes to adblockers is less about blocking ads, and more about circumventing a websites measures to defeat adblockers.

So I might be violating the DMCA by circumventing protections on the website, depending on what exactly the ad-blocker is doing, but just blocking URLs isn’t a copyright violation, it’s a TOS violation, which may or may not hold up in court. Therefore, not piracy.

sugar_in_your_tea, 1 day ago

The benefit is that I could block apps installed to one profile from using my data (i.e. wifi only), while allow apps on the other to use it. I could install something like NetGuard, but I also use a VPN, and it’s one or the other with that IIRC (at least on my old phone, I can only use one VPN at a time).

sugar_in_your_tea, 1 day ago

Maybe I’ll try to hack one in, how hard could it be? 😅

sugar_in_your_tea, 1 day ago

Thanks, I’ll check it out!

I’m with Tello, which has no international calls or data, and my wife is with Mint, which has a prepaid (really expensive) option for small amounts of credit. We’re planning to go to Canada for a day or two, and I was planning on (ab)using the 7-day trial.

I plan to do other international trips, and getting Fi for a month or so each time was the plan. But if they suck, maybe I’ll try something else for this trip.

Airalo looks decent ($6 for 1GB in Canada is reasonable). Thanks for the tip!

sugar_in_your_tea, 17 hours ago (edited 13 hours ago)

possible to have different profiles

That’s possible on most recent-ish Android phones, at least it was on my Moto G from 2020 running Android 11. To activate, you need to go to Settings > System > Multiple Users (may need to enable developer access first, not sure).

That allows you to have multiple logins on your phone, and you can switch between them.

What GrapheneOS adds is that you can have Google Play services sandboxed (no privileged access, it works like any other app) per profile. So my main profile has no Google Play services, and my “work” profile has Google Play services with only the handful of apps I need for work (MFA, work chat, etc). When you’re in one profile, you have no access to anything from the other profile, though you have access to system stuff like wifi networks and SIM cards (e.g. you can make/receive calls from all profiles).

It’s that sandboxing that I am most interested in. I rarely use apps from Google Play, but I do need them occasionally, so i separate them by concern. I’m probably going to end up with a “personal” profile for all of the Google Play apps that I need periodically.

sugar_in_your_tea, 16 hours ago

I want to route the data we use during our 1-2 day trip through Google servers, yes. It’ll be on a fresh number, and then cancelled promptly after our trip, and it’ll be a hotspot just for the trip so my wife can communicate w/ her friends. It’ll also be used for any incidental calls we may need while there. I usually don’t bother and just use wifi calling as needed, but I saw the free 7-day trial and was interested.

That said, someone else mentioned some inexpensive alternatives ranging from $3-6 (airelo, I also found these), so I’ll probably just go that route instead. Most no-contract services I’ve found require buying international credit, so that would be $20+ just for the trip, and that seems a bit ridiculous. I’m willing to pay about $5 for data for the trip, I’m not willing to pay $20+.

sugar_in_your_tea, 16 hours ago

I meant it more tongue-in-cheek :)

My threat model isn’t such that I need it, it’s just really annoying. GrapheneOS does allow blocking network per-app, which is a sufficient workaround. It’s a bit tedious, but I can do the following:

1. disable network on sensitive apps
2. disable NetGuard and enable other VPN
3. finish what I was doing
4. undo step 2
5. undo step 1

I really wish there was a way to get VPNs and NetGuard playing nicely together. I want all traffic to be filtered by NetGuard, and then routed over the VPN. This is trivial on Linux, but apparently not so on Android, which is a shame.

sugar_in_your_tea, 1 day ago

I use container tabs, which fills the space at the top on most of my tabs. In my screenshot, that is literally the top of my screen, there’s no extra space above it. Here’s a slightly bigger screenshot just above my extensions:

https://sh.itjust.works/pictrs/image/a138b9ee-cff6-4ef6-a3ec-80e3cacfd749.png

I used a screen measuring tool, and the black gap (the floating part) between the tab and my extensions bar is 2-3px (hard to tell exactly). The tab itself is ~30px (give or take 1-2px). So if Firefox used non-floating tabs, it would save about 2-3px. That’s it.

Chrome doesn’t have floating tabs, and it takes up more space than Firefox, here’s a screenshot comparing the two:

https://sh.itjust.works/pictrs/image/64235bef-2d02-4433-8258-b312df012fbf.png

Brave has floating tabs, and is also bigger, here’s a screenshot comparing Brave and Firefox:

https://sh.itjust.works/pictrs/image/82a29f4b-2a88-440d-b0d7-97dd2fd8aec1.png

This is on my Macbook Pro, so YMMV on Windows, but it looks very similar to what I have on my Linux devices. At least for me, Firefox is plenty compact and more compact than its main competitors.

sugar_in_your_tea, 1 day ago

I showed the other two since they’re popular, and what others would be comparing against. Firefox (on my machines) is more compact than them. So it’s not like Firefox is especially wasteful here. One has worse floating tabs, and the other has worse non-floating tabs. So it could be way worse.

Removing all the space would make it super cramped, and I don’t think it’s worth it for 10-20px. On a typical 1080p screen, that’s like 1-2% of the vertical resolution.

That said, it should be configurable. You can probably get what you want with the userChrome.css or whatever it’s called.

sugar_in_your_tea, 16 hours ago

They have other things to consider as well, such as accessibility. You can’t just eliminate all whitespace without consequences.

I do agree it should be easily configurable, but my point is that they’re better than pretty much every competitor, so I’m satisfied.

sugar_in_your_tea, 1 day ago

Yup, and I’m guessing LLMs use Markov chains, which are also a really old concept (the idea is >100 years old, and it’s used in compression algorithms like LZMA).

sugar_in_your_tea, 1 day ago (edited 1 day ago)

Blackboard, but I guess it’s just a dry-erase with black background instead of white.

I mistook it for this other thing or this thing my wife got before with these liquid chalk markers. The dry-erase blackboard is on our fridge, and this one is on our wall near our fridge.

sugar_in_your_tea, 1 day ago

I 100% agree, which is a huge part of why I don’t engage much with social media. Lemmy is literally it for me.

I’m not in a marginalized group, I just refuse to engage with that nonsense. I don’t have any solutions for those who are impacted, other than try to build real-world connections with people. Maybe local meetups are a good option here, idk.

Good luck out there! Stay safe!