Amju Wolf @ amju_wolf @pawb.social

Posts

2

Comments

366

Joined

2 yr. ago

Have been for a long time. You just have to use the DNS validation. But you should do that (and it's easy) if you want to manage "internal" domains anyway.

...which shouldn't be an issue in any way. For extra obscurity (and convenience) you can use wildcard certs, too.

Packages or dependencies with only one maintainer that are this popular have always been an issue, and not just a security one.

What happens when that person can't afford to or doesn't want to run the project anymore? What if they become malicious? What if they sell out? Etc.

"Removed by Reddit" implies admin action though.

...or maybe they just don't want a busy looking logo.

Except you aren't questioning anyone's views, you're making an argument that barely touches the subject it responds to. And doing so in a very argumentative and condescending way.

So yeah, it doesn't really belong in a civil discussion.

A precise android version could for example be used to target you with an exploit for that version.

I agree with OP, it shouldn't behave like this because the expectation with screenshot software is that it doesn't add any metadata and if it would it should be explicit and probably opt-in.

Waiting for Proton to acknowledge and fix critical bugs that can cause data loss was way more painful.. took them years with the solution being "just wait for the bridge rewrite it will be (most likely) fixed there".

Chrome dev tools are better for JS debugging, but Firefox wins with everything else, IMO. Especially their flexbox, grid and font visualizations and debug tools are amazing.

If you ask a user to show you a "core dump" they're more likely to shit on their floor and send you a photo than do what you actually mean.

Telemetry is absolutely crucial in determining what to focus on in development, to fix issues the users might not even realize exist. Especially for projects that aim at the general public. As long as it's communicated clearly, used truly only for development purposes and an opt-out is available there's nothing wrong about it.

Security is always applied in layers. If you aren't inconvenienced by it, it's a really solid layer to use. Doesn't matter how 'paranoid' you are, it's a good strategy.

Their quality is adequate for the price and they are open enough to be used with any NVR.

If you are worried about privacy you should segment the cameras onto their own network (VLAN) or at the very least block them on the firewall from accessing the internet, which you should do anyway.

On the contrary, it's the only comparison you can make, since they are literally the only options.

...and there is no way to do that, currently.

That's not something that'd likely scale enough to bring any meaningful sum of money.

Even then it targets a tiny, tiny minority of their even current userbase, let alone if they want to approach more "average" users.

Anything that can compute can do it. The important part is that it has an associated non-insignificant cost.

They also assert that Bluesky doesn’t federate (it currently doesn’t, but the protocol is designed for federation!) when it’s clear that it now does.

I'm not surprised about the skepticism there though. These are just promises, and we all know that a for-profit entity will happily sacrifice any promies if it means they make more money that way. Also depending on how exactly that federation will work it might be practically useless as well.

I dunno, having a free, open model made by a trusted company would be nice. I like initiatives like Mozilla Voice, this could be something similar. Probably not great if it's replacing focus on the other things though.

...and, more importantly, none of the donations go towards Firefox development. Instead they go towards "causes" that Mozilla Foundation finds worthy, and usually they have nothing to do with the open web.

They're two separate(ish) issues.

But it's still a bad idea to use national TLDs for stuff that has nothing to do with that nation.

Granted, is ICANN wasn't just a money-grabbing machine with no forward thinking they wouldn't give nations clearly "generally desirable" gTLDs, but since they did already that doesn't mean they should be misused.