one thing to remember is that alot of Lemmy supports markdown
tal @ tal @kbin.social Posts 11Comments 458Joined 2 yr. ago
tal @ tal @kbin.social
Posts
11
Comments
458
Joined
2 yr. ago
Kbin's implementation differs from Reddit's in at least one way that I've run into: Reddit permitted a link to be italicized using asterisks inside the link. Like:
I read a [book called *Arabian Nights*](https://en.wikipedia.org/wiki/One_Thousand_and_One_Nights).
Valid in Reddit Markdown, but in kbin's Markdown -- dunno what lemmy does -- that's not permitted, and gives this:
I read a book called .
You can do:
I read a book called *[Arabian Nights](https://en.wikipedia.org/wiki/One_Thousand_and_One_Nights)*.
Which yields this:
I read a book called Arabian Nights.
https://www.amazon.com/android-laptop-computer/s?k=android+laptop+computer
1-16 of over 1,000 results for "android laptop computer"
There is something of a blurry line between the two these days.
I get the "Android software isn't desktop software" argument, but then, I can also fire up up emacs in Termux on my Android phone, so that's kind of blurry too.
I use screen as well. It is significantly faster than tmux.
Big Pork had embarked on a new, urine-oriented guerrilla marketing strategy.
I just always click "accept all" and have my browser purge all cookies on exit other than a few whitelisted sites. And I have various plugins to block the flagrant cross-site tracking services. Same thing I did before the EU did their cookie directive.
I don't think that the EU's actual intent behind the cookie directive was to literally provide a UI to reject cookies, because trusting the remote end rather than your local browser is kind of fundamentally a broken security model. I think that their aim was to try to increase public awareness of all the cookies that websites are storing by having websites constantly throw up dialogs talking about them.
Fandom uses Mediawiki; if you're familiar with git -- a popular revision control tool that a lot of computer programmers use today -- you can also use git-remote-mediawiki to use git to gateway a fandom wiki to and from a local git repository.
He isn't going to win a war with the US.
North Korea has something like 3% the PPP-adjusted per-capita GDP that South Korea does and speaks the same language. If the North-South situation ever normalizes, he is going to be out of a job, because North Korea's population is going to be in South Korea in short order.
He starts a war, he's worse off. He lets tensions go to zero, he's worse off. I expect that his best route is to keep things about as they are.
Which is more or less what the Kim dynasty has been doing for a long time.
And this is why you don't trust tankies. It's very easy to compromise the software and put back doors into it.
This is hardly a back door. The lemmy devs just screwed up.
Use kbin instead.
Kbin had a fix for an SQL injection exploit the other week. Both probably still have security holes that haven't yet been identified.
There are more eyes on the software as the userbase grows, and people are going to find more flaws. That's just the way things go.
I have not seen any notice as to how either users or admins should mitigate the problem so far. Obviously, admins should update once a new release is out, but beyond that...
From an end-user standpoint, I would guess -- I have not looked at the code and have not been working on the security hole -- the following:
- This basically allows the attacker to masquerade as a currently-logged-in user who has viewed their link.
- Viewing content on a lemmy server while logged in as an admin right now is probably a particularly bad idea.
- I don't know what the full impact is for a regular user account, but it's probably possible for at minimum posts to be deleted, and posts to be made as someone. In kbin, my account shows my email address, so if lemmy does the same, it would be possible to link an email account used for registration with a username. If you used a throw-away email account that is publicly-accessible -- as I did -- that could allow for full account compromise.
- Viewing content while not logged in is probably safe -- maybe they can make Javascript run from a link, but without you being logged in, there isn't anything interesting that the attacker can do. If I were going to be viewing content on lemmy servers right now, and okay with being limited to lurking, I might do that for a few days until the issue is resolved and lemmy servers update.
- I don't know if kbin is vulnerable. It didn't accept the URL given in the bug as an example of a malicious URL when I tested submitting one, but it's possible that it trusts URLs coming from federated servers, which I did not check.
The only major limits are for Playstation, which don’t allow custom assets (models/textures).
Huh. What's Sony's objection to those?
I assume that one factor is that they necessarily have to have access to your files.
The developers of an app that uses ads can also just route the traffic through a server that also provides something crirical for the app to work. You'd have some CDN probably serving both. I mean, in the long run, if app developers work againat it, you can't block apps from showing ads by blocking network traffic.
I doubt that the Android security model lets apps know what's happening on overlays, though, as doing so would create issues for Android as an OS. So apps that cover up ads are hard for app developers to defeat.
I haven't really found a particularly good alternative. I used to use AnySoftKeyboard, but stopped after I found that it was the cause of some performance issues I was having that would occasionally cause characters to be entered out-of-order on a slower Android device.
The lack of decent open source onscreen keyboards was actually one of my larger surprises when I hit Android. I thought that there'd be keyboards with user-specified macro keys, keys that could be dragged into a new layout or added and removed, etc, but no.
Obviously it has questionable content which is not great to have stored on big servers for legal reasons.
It's less a function of size and more of location. Burggit serves lolicon, which isn't legal in a number of places like Canada, but is protected by the First Amendment in the US.
It looks like lemmy.world is in Germany or thereabouts, or at least that that's where the netblock of the last-hop router between it and me are located.
It sounds like Germany uses a roughly-similar rationale to the US, that the only content that is illegal involves actual abuse of minors or -- because it creates problems for enforcement against those -- content that looks realistic and is indistinguishable. Hence, lolicon sounds like it's okay in Germany.
https://en.wikipedia.org/wiki/Legalstatusoffictionalpornographydepictingminors
In principle, the regulations in Chapter 13 of the German Criminal Law for offenses against sexual self-determination also prevent the public advocation and the degradation of minors as sexual objects.[73] The distribution of child pornography, defined as pornography relating to "sexual acts performed by, on or in the presence of a person under 14 years of age (child), the reproduction of a child in a state of full or partial undress in an unnaturally sexual pose, or the sexually provocative reproduction of a child's bare genitalia or bare buttocks," is criminalized with a penalty of imprisonment.[74] However, with regards to possession, only material depicting actual or realistic acts is criminalized.[74] For reproductions of persons over 14 but under 18 years (youth pornography), the penalty for distribution is imprisonment or a fine.[75]
Nevertheless, due to the guaranteed freedom of art,[76] fictional works were officially deemed legal or can be checked by a legal opinion.[77] According to German legal information websites, acquisition and possession of fictional pornography depicting minors where it is immediately apparent that the content is purely of fictional nature, such as cartoons and comics or anime and manga, are not prosecuted against unless it is not readily distinguishable whether the depiction is computer generated or real.[78][79][80] The Federal Government also made it clear that the criminal offense "should remain limited" to cases "in which an actual event is reproduced through video film, film or photo". On the other hand, it did not regard the sanction of the regulation as fulfilled in the case of "child pornographic novels, drawings and cartoons", because their possession did not contribute to children being abused as "actors" in pornographic recordings. [81]
That being said, given that lemmy.world is the largest lemmy instance and is a common choice for newcomers and presently often the first of what newcomers see of lemmy, setting aside legal concerns for the instance operators, I think that it might be a good idea to not have the default content have lolicon sprinkled through it. Obviously, that's up to the instance admins, but if that's not what they want to do, I'd suggest that it might be a good idea to have some instance that acts as a "front door" to recommend people to that does do some level of censorship.
Also, I don't think that the way to deal with "there is content on a platform that I don't like" is to run from it. It's to make better filtering systems to choose what I want. Two reasons:
- First, some people like different things. They shouldn't have to use different platforms just for that.
- Second, stuff like spam will show up anywhere that has decent size anyway eventually, once there are enough eyeballs for it.
I think that the goal should be to have plenty of content of all sorts on the Threadiverse, and then just have good filtering tools that are hard to subvert.
Reddit didn't let people build the filtering tools they wanted in and in some cases -- like when it came to their own ads -- were actively opposed to that. The Threadiverse solves that problem for me.
If every time a person has a question, it has to be re-answered, it's vastly less efficient than having it be answered once and then have people just Google for it. When I answer a question, I want it to benefit not just one random person but all the future people who can find it via searching.
I understand the people who object to people being rude about it, but not with the people saying that they should not be expected to at least search -- a small expenditure of their time -- before asking other people to spend their time fixing the first person's problem.
It takes you seconds to hit Google. If you broadcast that question to a forum, maybe thousands or tens of thousands or even millions of people read your question. Then they donate their time to try to solve your issue, and multiple people may spend time on it. It almost certainly takes more time per individual to craft a good answer than it takes the asker to perform a search. That is asking for a big chunk of time from people who are trying to donate their time to help others. Their time is much more limited than Google search cycles.
Common courtesy is to search first. If that doesn't solve it, then ask.
I'm on the emacs side of things, but knowing at least the bare minimum of vim is handy, because I have run into into systems (usually very small systems like routers or something) where some vi variant is available and nothing else is. Though as systems get bigger, it has become more the norm to have at least nano also available.
I'd know at least this:
ito enter insert mode. Then you can edit as in a non-modal editor.- Esc to exit insert mode and go back to normal mode.
h,j,k,lmove left, down, up, and right. The fingers under your right hand on a QWERTY keyboard./to start a regex search%and then SRC/REPLACEMENT to do a regex replacement.:qto exit without saving changes.:wqto save and exit.
That's enough to perform a couple of small edits or something if need be.
One thing I've never been enthusiastic about has been Markdown's auto-renumbering support. I have never seen someone really being happy with the implementation and lots of people frustrated as they try to embed numbered items and get them renumbered.
1. First 1. SecondYields:
Usually came up on Reddit when someone wants to quote a single item in a numbered list from some external text, quotes only that, and it gets renumbered...and they don't know how to backslash-escape the period to avoid the thing:
1\. First 1\. SecondYields:
It looks like kbin also does the auto-renumbering. Dunno about lemmy. Kind of the one element of Markdown that I'd be happy to see die. I don't mind having a syntax for auto-numbered lists -- I just don't think that using an actual number as prefix to indicate that that should happen is a reasonable way to go about it.