Leaflet @ that_leaflet @lemmy.world

[Mastodon](https://fosstodon.org/@that_leaflet)

---

Read more

Posts

261

Comments

372

Joined

2 yr. ago

Canonical is making the security patches.

Also, you don’t have to release your source code changes to the public. You only have to release your changes to those who have access to the product.

That being said, Canonical probably does release the source code changes for their security fixes, I just don’t know where.

Yes. Ubuntu has two main repos, main and universe.

main is relatively small and includes everything that comes with Ubuntu by default. Canonical secures this repo with security fixes for everyone.

universe is not officially supported by Canonical. It's updates are done by community members. However, Ubuntu started a service called Ubuntu Pro / ESM that provides updates for packages in universe. It's opt in because Canonical wants companies using Ubuntu to pay for Pro in order to help fund Ubuntu. However, Pro is also free for personal use on up to 5 machines, so there's no reason not to enable it. f it was enabled by default then no one would pay for it.

I’m sure some laws would considering you making this post or me writing this comment as “selling” data.

Haven’t heard about any distros removing Firefox from the repos.

It’s possible that some distros may go an IceWeasel by default route, but I see that as unlikely.

Problem is that it wouldn’t launch for them. Fedora has an RPM for it, but I don’t think Ubuntu does.

Try “flatpak override —user —reset” and “flatpak override —system —reset”.

GTK3->GTK4 should be easier than GTK2->GTK3.

The frog color management protocol is based on the upstream protocol. They used an experimental version to bring the feature to Steam Deck faster.

Though Frog did do a good job with pushing FIFO forward.

Apple has decided to eliminate the crease at all costs, regardless of price

Apple Vision Pro V2

The display crease has been one of the biggest challenges in foldable technology

My understanding is that the crease is basically a non issue. You can only see it if you look at your phone in a specific way. And for most applications, you’re not running your finger over it.

Are you sure about that? KDE has a feature that lets Xwayland apps snoop if certain keys are pressed, but Gnome does not.

Apps need to add support for the new portal system. Chromium is adding (or added?) support, so Discord may implement it once they use an Electron version with support.

If you’re using KDE, you can tell Discord to use X11 and use KDE’s feature to let X11 apps snoop on key presses.

Already merged there some time ago.

The traditional insecure global shortcuts system works in Xorg.

Gnome Extensions run in the Gnome shell, so they have special privileges.

Wayland’s security focus prevents apps from listening in on all user key presses, which means they can’t know you used a keyboard shortcut unless the app is focused.

The Global Shortcut Portal was made to address this. An app registers for a global shortcut, and when the user activates the shortcut, the portal tells the app that it’s been activated.

Make sure VA-API is enabled in about:config with "media.ffmpeg.vaapi.enabled"=true. It should be enabled by default in nightly.

Fedora Flatpak exists to match Fedora’s philosophy on FOSS, patented software, and security.

Everything in Fedora must be FOSS and free of legal issues, like codecs. Fedora also takes security seriously, so all their Flatpaks use dependencies all from Fedora repos.

Fedora never called it official. It lacked the verification tick that official Flathub packages get and right under the install button in Gnome Software, the install source says “Fedora Linux”.

Flathub isn’t quite default, but it’s an option in the setup screen. It’s also the lowest priority.

Provided they fix the issues they outlined, yes.

Fedora aims for FOSS, software unencumbered by patents, and security.

Flathub explicitly allows proprietary and patented software.

And since they want upstream apps to publish their apps and not scare them away, security isn't as strong. Apps are allowed to use EOL runtimes and apps roll their own vendored dependencies. Fedora Flatpaks solve this problem by building all their flatpaks from their distro packages.