Skip Navigation

Posts
5
Comments
2,011
Joined
2 yr. ago

  • The guy gives a ton of "I don't care about anyone's use cases except mines" vibes too. Also called Gnome and KDE teletubbies DEs when I mentioned xcomposite being an important feature. Basically considering the widely known issues around multimonitor vsync and mismatched resolutions and all as basically not real issues with Xorg.

    XLibre is 100% a political fork because the guy claims Xorg is deprecated by a big tech conspiracy pushing inferior software onto users. There's nothing wrong with wanting to continue Xorg's legacy but come on we don't have to pretend Xorg is this perfect thing that always works. Xorg has been hated for decades for a reason. This xkcd exists for a reason: https://xkcd.com/963/

  • It's been a while, but I believe you do need the annoying new XML/SVG thing as it also doubles as the splash screen animation when you open an app as well. You can embed a PNG in those but vector is preferred because of screen resolutions.

    Wishing you great success with your app, disabilities are wildly underserved especially in open-source.

  • Wine has always done that, last seen on Plasma 5 (I switched to Wayland with Plasma 6), and I remember that being a thing way back in 2007 too. Valved patched the scaling in Proton as well I believe so that might be why it didn't do that.

    It behaves how fullscreen apps work on Windows, takes over your whole display and messes with the resolution and all.

  • It's supposed to scale correctly, but otherwise Gamescope will take care of that particular issue.

    Kinda annoying on Xorg when the game just decides my screen should be 800x600 and then proceeds to crash and leave me at 800x600 on a 4K display with scaling set to 200%.

  • I think it's also made much more apparent when that demographic that had no interest in computers were forced to be chronically online due to the lockdowns and quickly found the anti-vaxx groups, and suddenly felt like their opinion matters and that everyone is an expert if they do a little bit of "research".

  • Why though?

    We can just subscribe to the community on lemmy.ml, there's no point reposting when it's already there ready to federate.

  • It depends on your overall energy use but generally that would be negligible when compared to heating and hot water, especially during winter when the furnace runs 24/7.

    In particular, during the winter, all excess energy from the oven is heat the furnace doesn't have to provide so it's basically free: you'd use that energy anyway.

    Generally the economy of scale should technically favor the prebaked bread, at least before the store slaps its value added surcharge for it. The store still needs to pay for the energy (but probably gets it cheaper than you), but also needs to pay to maintain a factory, equipment, employees. So you kinda need to factor in the price of your oven too and its wear and tear.

    I just buy the loaf because one thing I know for sure is if I factor in the value of my time, it's way better and easier to work an hour than spend an hour baking a loaf of bread. The time to bake the bread costs more than if I used that time to work the equivalent time and buy 5 loaves of bread with the money.

  • That's the point, we don't want it to phone home. So why are we crying it won't let us turn on an even worse feature when telemetry is off?

    If you don't like it phoning home, why would you possibly want it to download and execute random code pushed by Mozilla? No phoning home means no phoning home. You can't possibly want telemetry off and labs on at the same time.

  • That kind of makes sense? Aren't the labs when they're A/B testing or benchmarking new features before general release and toggle random people's settings doing so? I vaguely recall some drama around that.

    If I turn off telemetry I want those off too, it makes sense they're linked. It you want a new feature there's always nightly+about:config, but I don't want it downloading random config toggles especially if it's not reporting back that it broke my stuff. The code should be what I installed and compiled by my distro, not some random lab blob downloaded off their servers at runtime.

  • That kind of makes sense? Aren't the labs when they're A/B testing or benchmarking new features before general release and toggle random people's settings doing so? I vaguely recall some drama around that.

    If I turn off telemetry I want those off too, it makes sense they're linked. It you want a new feature there's always nightly+about:config, but I don't want it downloading random config toggles especially if it's not reporting back that it broke my stuff. The code should be what I installed, not some random lab blob downloaded off their servers at runtime.

  • It seems to have picked up "circle" as the distro. You'll need to replace that with the matching Ubuntu or Debian version of what this version of ElementaryOS is.

  • Permanently Deleted

    Jump
  • It's derived by both a key from the TEE and the PIN/password.

    The reason for that is so you need both the user's correct password, and the TEE to agree to hand out the key, which it may refuse to do if there's been too many attempts. When you factory reset it just generates a new key, instantly making all the previous data permanently inaccessible. The TEE will also wipe the key if you unlock the bootloader or try to break in the wrong way.

    It's still only roadblocks though, extract the key from the TEE and you have unlimited attempts on what are usually weak 4-6 digit PINs. It's not a lot of tries. Then you better hope you had a good password.

  • Permanently Deleted

    Jump
  • Biometrics are worst than a pin in a situation where your phone us hooked up to Cellebrite, because most likely they can just take your fingerprints, or make you press the sensor by force. Or even worse with facial recognition, because they can just wave the phone in front of you to unlock it.

    It's generally not super good otherwise either, at least not as a reliable way to derive an encryption key while being tolerant enough to damaged skin and positioning and all.

    Biometrics are a good compromise for daily convenience: most people care about if they lose their phones or it gets stolen, and a thief will just factory reset it and flip it especially of the full qwerty keyboard pops up. Biometrics are still usually backed by a PIN or password, so biometrics makes it bearable to use a strong password since you only need to enter it once every couple days. And that password is the encryption key, so in BFU state you're safe.

  • It was made back when Facebook had that old style UI, in 2010. And then interest in Facebook's format kinda died, and so did the interest in the project.

  • Permanently Deleted

    Jump
  • It doesn't solve Safety Net/Play Integrity, at all. My bank is the kind that just warns you and then lets you in anyway. I just live without Google Pay, I just put the card in the phone case to the same effect. The point I was making there is that most apps don't care, Google isn't "pushing" it, but it is made available to developers, so really it's the app developers' choice to check or not.

    Pixels are just less fiddling because flashing it is supported. It is not endorsed by Google, and you don't pass Play Integrity at all, but it is supported and doesn't void your warranty. They just allow you to install whatever you want on your hardware without a fuss, and get the full performance you'd expect and all, and even make use of the security chip. But, they only trust their code and their ROM for the purposes of Play Integrity, which is kinda fair game.

    That's why it is quite ironically the device of choice for GrapheneOS. It's not a hack, it's a fully supported use case even though you lose Play Integrity certification, so they can implement all the security features Google has access to. The TEE will happily sign a unique and verifiable integrity attestation... for GrapheneOS's ROM signature. You can make an app that only works on genuine official GrapheneOS the same other apps do with Play Integrity. You can have a custom ROM and properly enroll it in some enterprise MDM and all that stuff, and only allow your builds of that custom ROM to enroll. But, no Play Integrity because it's not their official certified build.

    It's like PC, you can turn off secure boot, you can secure boot with your own OS keys and get all the security benefits. But Valorant will still refuse to let you play if you haven't booted with secure boot into an official unmodified copy of Windows where they can ensure their kernel anti-cheat can trust the kernel about what drivers and processes are loaded. Microsoft isn't forcing their OS on you, but the developers will only trust you if you do. You're still perfectly free to put Linux on it, and it won't affect you otherwise.

  • Permanently Deleted

    Jump
  • If you're buying something to mod I'd recommend a Pixel, unless you're getting an older OnePlus for cheap.

  • Permanently Deleted

    Jump
  • It's a OnePlus 8T, but I think any OnePlus before I think the OnePlus 11 have excellent custom ROM support.

    AFAIK I got lucky and the 8T is the last model from their "being nice to developers" era. OnePlus was born originally to be developer friendly, it was based on CyanogenMod out of the box, they even sent phones to developers.

    Mine launched with OxygenOS 11, and then OOS12 was completely rebuilt on Oppo's ColorOS and they threw everything out the window. Took them forever to drop sources, and it just went downhill from there.