mox @ mox @lemmy.sdf.org

Posts

229

Comments

1,552

Joined

1 yr. ago

Sync to a CalDAV/CardDAV server instead of to Google. If you're up for self-hosting, Radicale is a good and simple one.

I use DAVx⁵ on Android and Thunderbird on the desktop. Other sync clients are listed here: https://radicale.org/v3.html#supported-clients

the explicit declared direction is that Rust should become an increasingly large part of the Linux kernel.

Who explicitly declared this? Where?

Thanks!

My "client" is Lemmy's native UI, and is rendering it correctly according to markdown and html specs. If your client is wrapping it or using a variable-width font, then that's convenient for you in this case, but it's violating the spec. (This is somewhat common in mobile apps, so I guess you're reading on a phone.)

OP, can you please remove the four spaces preceding each paragraph in your post? That syntax is for code formatting. It triggers a monospace font and puts each paragraph into a single line, forcing readers into painstaking horizontal scrolling to be able to read each one. It's like trying to read a book through a keyhole.

Agreed.

To be fair, though, OP's username does say that he is a twelve-year-old. :)

Civ V had mediocre-to-bad gameplay on release, but was transformed into something good by the Brave New World DLC. I have read that Civ VI was similarly improved (although perhaps with a bit less success) by way of DLC.

Judging by the initial reviews of this one, it looks like a pattern is developing. I guess I'll once again wait a few years until the "fix" DLC has been out for a while, and buy the combo pack on sale.

Unless they use Denuvo or some other anti-customer nonsense that I won't support.

The question I've had since this sequel was announced: Does it use the same approach to combat skill progression as the original, where players are robbed of agency instead of encouraged to learn effective use of available tools & moves?

Eike Cramer from IGN Deutschland seems to have my answer:

The game design is annoying with forced stealth on top of a frustrating save system. That’s especially true for some of the longer story missions. On top of this, the combat mechanics are extremely inaccessible and, with their mercilessness, put far too many obstacles in the way of the players, especially at the beginning. Kingdom Come Deliverance 2 is nevertheless an utterly unique, ambitious and, in large parts, very good adventure. But it’s also a video game that misses important points a little too often in the gameplay details and does not respect the player’s time in certain places.

Thank you Eike, and thank you OP for posting those quotes.

https://archive.today/HEufK

I started playing this on PC, but at a certain point, it persistently crashed. A bunch of other folks reported the same problem. I guess non-Deck hardware wasn't a priority for Valve this time.

How would the sender prevent messages from going to the admin user that joined the room?

It wouldn't matter if a rogue admin eavesdropped on an E2EE room, because they would see encrypted blobs where the message content would be. That's what E2EE is for.

https://en.wikipedia.org/wiki/End-to-end_encryption

How would the sender prevent messages from going to the admin user that joined the room?

You're conflating multiple things. Merely joining a room does not grant access to message decryption keys.

I respect your curiosity, but I think you're going to have to familiarize yourself with the software and concepts to get a detailed understanding of how all this stuff works. If you're technically inclined, I suggest reading the protocol spec, or at least the parts that interest you. You could also drop in to the public chat room and ask more questions there: #matrix:matrix.org

SimpleX has some interesting ideas, but also some shortcomings for people who want a practical messaging service. For example:

• It is funded by venture capital, which calls into question its longevity, and even if it does manage to stick around, suggests that it will be leveraged to exploit people once the user base is large enough.
• Its queue servers delete messages if they are not delivered within a certain time frame (21 days by default). Good luck if you take a vacation off-grid for a few weeks.
• No multi-device support. (This means a single account accessed concurrently from multiple independent devices.) The closest it comes is locally tethering a mobile device to a computer.
• Establishing new contacts requires sharing a large link or QR code, which is not always convenient.
• No support for group calls.

I would not recommend it for talking to family members and people in general, which is what OP requested.

But who/what gets to decide who the intended recipients are?

The sender, of course.

Can’t the homeserver admin just join the channel and then the other members would exchange keys automatically and now they can see what people say?

No. Verification prevents that.

a compromised or hostile home server can still take over the room

A compromised server could affect a denial of service attack against its users, of course. The attacker could do the same thing by simply turning off the server. That's true on all platforms that use servers. A reasonable response would be to switch to a different server.

That admin (or even a newly minted user) can then send events

Exactly what events do you think would be dangerous?

or listen on the conversations.

No. End-to-end encryption ensures that only the intended endpoints can read the messages. Older Matrix clients have a setting to block the user from sending messages to unverified devices/sessions, in case they somehow don't understand the meaning of a bright red warning icon. I think newer ones (e.g. Element X) enforce that mode; if you're concerned about this, you could check for yourself, but...

not everyone will pay attention to unverified warnings

...unfortunately, there are no guarantees when trying to fix human behavior. If you need a messaging app to make it hard for your contacts to do something obviously foolish, then I suggest waiting until Matrix 2.0 is officially released and implemented in the clients. The beta versions of Element X, for example, look like everything is locked down to avoid human mistakes like the one you're describing.

even with E2EE, the admins of a homeserver can still impersonate you

No, they cannot. Your homeserver admin could create an impostor login session on your account, but it would be pointless with E2EE, because it would be flagged with an obviously visible warning. You and all of your contacts would see that the impostor session was not verified as you (this typically shows up as a bright red icon on the impostor and another one on the room they're in). Also, the impostor would be unable to read your communications.

That doesn't really answer my question.

I'm curious about what significant changes in behavior we might see as a result of the upgrade. Are there improvements you were looking forward to? Is anything worse? Has our recurring federation problem been solved?

So far, I've noticed that my front page now appears with blank placeholders where the posts should be, and it takes several seconds for them to resolve into something readable. Seems like a step backward to me.

What changed since the version we had? The UI changelog doesn't seem to be consistently maintained.

Another tool for researching parts based on the specs you want:

https://skinflint.co.uk/

I find its level of detail is often more helpful than PC Part Picker.

I was also thinking a better Nvidia card might be worthwhile?

Why Nvidia? AMD's GPUs are quite good these days. They're also better supported on Linux, which you might consider running some day, since Linux is better than Windows at getting performance out of aging hardware.

It's also worth noting that AMD's X3D CPUs are superior at gaming in many cases.

An archive of all CDC datasets uploaded to https://data.cdc.gov/browse before January 28th, 2025. Excludes corrupt datasets and data not publicly accessible.

Most datasets are accompanied by an additional file ending in -meta that includes the metadata associated with the data. Attachments referenced in these files can be found in the attachments/ folder.

If you would like to seed this data to improve its redundancy please do not use the auto generated torrent, as it is incomplete. Instead use the torrent file labeled "full-20250128-cdc-datasets-USETHIS.torrent"

Addeddate 2025-01-31 04:08:40

Identifier 20250128-cdc-datasets

Are there any real-world examples where encryption backdoors have been successfully used without compromising cybersecurity?

No. That concept is an oxymoron.