Max-P @ Max_P @lemmy.max-p.me

Just some Internet guy

---

Read more

Posts

2

Comments

1,623

Joined

2 yr. ago

There's YaCy. I've run a node for a while but it ended up filling up my server's drive just indexing german wikipedia and the results were terrible.

And it's still not private because you have to broadcast the query across the network.

I got asked the same. I simply pointed out the test is a reproduction of last week's bug that took down prod at 2am and got paged to fix, and is therefore as realistic as it gets of what they'll need to be able to handle.

It's always DNS, everyone should know that.

I went through hiring several times at several companies, being on the interviewer side.

Typically it's not the talent pool as much as what the company has to offer and how much they're willing to pay. I referred top notch engineer friends, and they never made it past HR. A couple were rejected without interview because they asked too high of a salary, despite asking under market average. The rest didn't pass HR on personnality or not having all the "requirements", because the really good engineers are socially awkward and demand flexibility and are honest on the résumé/CV, or are self taught and barely have high-school graduation on there (just like me).

I've literally seen the case of: they want to hire another me, but ended up in a situation where: I wouldn't apply for the position myself, and even if I did, I wouldn't make it to the interview stage where I'd talk to myself and hire myself.

Naturally the candidates that did make it to me weren't great. Those are the people that do the bare minimum, have studied every test question (without understanding), vibe code everything, typically on the younger and very junior side. They're very good at passing HR, and very bad at their actual job.

It's not the technology, it's the companies that hire that ultimately steers the market and what people study for. Job requirements are ridiculous, HR hires engineers on personnality like they're shopping for yet another sales associate, now it takes 6 rounds of interviews for an entry level position at a startup. VC startups continue to pay wildly inflated wages to snatch all the top talent while established companies are laying off as much IT staff as possible to maximize profits.

The email used to be used to send you notices if your cert wasn't renewed and other communications. They've just discontinued that feature, so the email isn't super important.

It's a good idea to provide a valid email address, but it's not that important and doesn't really matter for the purpose of issuing a certificate. It's not part of the problem you're having.

Keyboard shortcuts in general.

• Alt + left right (previous/next page in browsers)
• Windows + 1 (2, 3, ...) on Windows and KDE focuses the window at that position in the taskbar
• Alt + Tab to switch windows (hold shift to go backwards)
• Windows + Tab to switch windows within the same application (like, all browser windows if you're in a browser)
• Alt + 1 (2, 3, ...) on Windows/Linux usually selects the corresponding tab
• Ctrl + Tab to cycle through tabs like Alt-Tab does for windows (hold shift to go backwards)
• In most browsers or things with a URL/go to bar, Ctrl+L will focus that. No need to click the address bar, Ctrl+L, example.com, Enter.
• In Discord and Slack, you can press Ctrl+K to open a box to quickly type a channel/DM name to go to it quickly
• If you have them, the Home/End/PageUp/PageDown keys are actually pretty useful. Press Home instead of scrolling all the way back up.
• F1 is usually help
• F2 is usually rename
• F3 is usually search

At the very least I hope it's hosted by someone outside the US so it's out of reach to the authorities.

The main issue you'll run into is nicher proprietary software being hard to install, but that's what containers are for. The main one I see is if you need to install some proprietary VPN client it gets annoying, but since you'll be running a VM anyway you can do some network trickery. My work's antivirus only works on Ubuntu and RHEL, proprietary kernel modules so it's got to be at least one of those kernels.

Linux is Linux, nothing's impossible to solve even with Bazzite's immutability. Worst comes to worst you make your own images and it's not that hard, you basically just fork it on GitHub and let the CI do its thing.

But do you have time to fiddle to make it work and take the risk, or do you want to play it safe? How confident are you with Bazzite's more advanced topics?

Ah yes, he's the only government allowed to collect taxes.

Gotta condition americans to the norm of guilty until proven innocent early!

And hopefully ad blockers too.

It's been a while, but I believe you do need the annoying new XML/SVG thing as it also doubles as the splash screen animation when you open an app as well. You can embed a PNG in those but vector is preferred because of screen resolutions.

Wishing you great success with your app, disabilities are wildly underserved especially in open-source.

Wine has always done that, last seen on Plasma 5 (I switched to Wayland with Plasma 6), and I remember that being a thing way back in 2007 too. Valved patched the scaling in Proton as well I believe so that might be why it didn't do that.

It behaves how fullscreen apps work on Windows, takes over your whole display and messes with the resolution and all.

It's supposed to scale correctly, but otherwise Gamescope will take care of that particular issue.

Kinda annoying on Xorg when the game just decides my screen should be 800x600 and then proceeds to crash and leave me at 800x600 on a 4K display with scaling set to 200%.

I think it's also made much more apparent when that demographic that had no interest in computers were forced to be chronically online due to the lockdowns and quickly found the anti-vaxx groups, and suddenly felt like their opinion matters and that everyone is an expert if they do a little bit of "research".

Why though?

We can just subscribe to the community on lemmy.ml, there's no point reposting when it's already there ready to federate.

It depends on your overall energy use but generally that would be negligible when compared to heating and hot water, especially during winter when the furnace runs 24/7.

In particular, during the winter, all excess energy from the oven is heat the furnace doesn't have to provide so it's basically free: you'd use that energy anyway.

Generally the economy of scale should technically favor the prebaked bread, at least before the store slaps its value added surcharge for it. The store still needs to pay for the energy (but probably gets it cheaper than you), but also needs to pay to maintain a factory, equipment, employees. So you kinda need to factor in the price of your oven too and its wear and tear.

I just buy the loaf because one thing I know for sure is if I factor in the value of my time, it's way better and easier to work an hour than spend an hour baking a loaf of bread. The time to bake the bread costs more than if I used that time to work the equivalent time and buy 5 loaves of bread with the money.

It seems to have picked up "circle" as the distro. You'll need to replace that with the matching Ubuntu or Debian version of what this version of ElementaryOS is.

It's derived by both a key from the TEE and the PIN/password.

The reason for that is so you need both the user's correct password, and the TEE to agree to hand out the key, which it may refuse to do if there's been too many attempts. When you factory reset it just generates a new key, instantly making all the previous data permanently inaccessible. The TEE will also wipe the key if you unlock the bootloader or try to break in the wrong way.

It's still only roadblocks though, extract the key from the TEE and you have unlimited attempts on what are usually weak 4-6 digit PINs. It's not a lot of tries. Then you better hope you had a good password.

Biometrics are worst than a pin in a situation where your phone us hooked up to Cellebrite, because most likely they can just take your fingerprints, or make you press the sensor by force. Or even worse with facial recognition, because they can just wave the phone in front of you to unlock it.

It's generally not super good otherwise either, at least not as a reliable way to derive an encryption key while being tolerant enough to damaged skin and positioning and all.

Biometrics are a good compromise for daily convenience: most people care about if they lose their phones or it gets stolen, and a thief will just factory reset it and flip it especially of the full qwerty keyboard pops up. Biometrics are still usually backed by a PIN or password, so biometrics makes it bearable to use a strong password since you only need to enter it once every couple days. And that password is the encryption key, so in BFU state you're safe.

It doesn't solve Safety Net/Play Integrity, at all. My bank is the kind that just warns you and then lets you in anyway. I just live without Google Pay, I just put the card in the phone case to the same effect. The point I was making there is that most apps don't care, Google isn't "pushing" it, but it is made available to developers, so really it's the app developers' choice to check or not.

Pixels are just less fiddling because flashing it is supported. It is not endorsed by Google, and you don't pass Play Integrity at all, but it is supported and doesn't void your warranty. They just allow you to install whatever you want on your hardware without a fuss, and get the full performance you'd expect and all, and even make use of the security chip. But, they only trust their code and their ROM for the purposes of Play Integrity, which is kinda fair game.

That's why it is quite ironically the device of choice for GrapheneOS. It's not a hack, it's a fully supported use case even though you lose Play Integrity certification, so they can implement all the security features Google has access to. The TEE will happily sign a unique and verifiable integrity attestation... for GrapheneOS's ROM signature. You can make an app that only works on genuine official GrapheneOS the same other apps do with Play Integrity. You can have a custom ROM and properly enroll it in some enterprise MDM and all that stuff, and only allow your builds of that custom ROM to enroll. But, no Play Integrity because it's not their official certified build.

It's like PC, you can turn off secure boot, you can secure boot with your own OS keys and get all the security benefits. But Valorant will still refuse to let you play if you haven't booted with secure boot into an official unmodified copy of Windows where they can ensure their kernel anti-cheat can trust the kernel about what drivers and processes are loaded. Microsoft isn't forcing their OS on you, but the developers will only trust you if you do. You're still perfectly free to put Linux on it, and it won't affect you otherwise.