[-] flux@lemmy.ml 2 points 2 weeks ago

In theory, yes. But if you follow the link and that leads to downloading the JS and running it, you're already too late inspecting it.

And even if you review it once (and it wasn't too large or obfuscated via minification), the next time you load a page, the JS can be different. I guess there could be a web browser extension for pinning the code?

The only practial alternative I know of is to have a local client you can review once (and after updates).

[-] flux@lemmy.ml 2 points 1 month ago

Alas my game PC is going to stick with Windows due to bad state of VR in Linux :/. And therefore one day it might need to update to Windows 11.

In particular if you have a headset that is not Valve Index, though apparently with Meta Quest one can use ALVR, as long as you get the actual games running.

[-] flux@lemmy.ml 2 points 1 month ago

Indeed, warranties usually don't cover misuse anyway.

[-] flux@lemmy.ml 1 points 2 months ago

I haven't done it, but you could try socket activation.

[-] flux@lemmy.ml 2 points 3 months ago

Maybe consider static ip assignment in your DHCP server (e.g. internet router) if at all possible.. Then you can add a name to it to /etc/hosts.

Alternatively you could use Avahi to provide mdns names to your local network

[-] flux@lemmy.ml 2 points 3 months ago

At the end of the log you find:

822413 connect(4, {sa_family=AF_UNIX, sun_path="/run/user/1000/gcr/ssh"}, 110) = 0
...
822413 read(4, 

meaning it's trying to interact with the ssh-agent, but it (finally) doesn't give a response.

Use the lsof command to figure out which program is providing the agent service and try to resolve issue that way. If it's not the OpenSSH ssh-agent, then maybe you can disable its ssh-agent functionality and use real ssh-agent in its place..

My wild guess is that the program might be trying to interactively verify the use of the key from you, but it is not succeeding in doing that for some reason.

[-] flux@lemmy.ml 2 points 4 months ago

Yes, just mount to /mnt/videos and symlink that as needed.

I guess there are some benefits in mounting directly to $HOME, though, such as find/fd work "as expected", and also permissions will be limited automatically per the $HOME permissions (but those can be adjusted manually).

For finding files I use plocate, though, so I wouldn't get that marginal benefit from mounting below $HOME.

[-] flux@lemmy.ml 1 points 4 months ago

Because encryption doesn’t work for rooms over 50 people, so any room over that size is public by default.

By public you mean non-encrypted? How does that work? When you create a room, you default to encryption, and there is only one participant (the room creator). And you cannot turn off encryption, so what then happens when you get 51 participants?

Also existing non-encrypted rooms are never automatically switched to encryption, so the switch must be explicit. Does it refuse to do it if there are more than 50 participants?

I've never heard of this limit nor was I able to find info about it (so a link would be great), but there could some factor that increases problems as the number of people increases.. Perhaps 50 is some practical suggestion for the maximum number of people to have in encrypted sessions?

[-] flux@lemmy.ml 1 points 4 months ago

Am I to understand correctly that if you are running Gtk+ apps in the Gnome compositor, you get this working, but if you are running non-Gnome compositor with Gtk+ apps, it will not work? Or is it independent of the compositor?

[-] flux@lemmy.ml 1 points 1 year ago

What do you mean? Matrix supports E2EE.

Its not used with e2ee, is it though? At least it's not the default and I doubt it can even be enabled.

So what is the security flaw assuming we weren't using e2ee to begin with?

Unless you mean that the simple client should still provide other people that have non-simple clients URL previews, which would only be accomplished if the server generated them.

Yes, like RSS bots, bridges, webhook-bots etc all can produce links the recipient might want to see previews for.

Another thing is that e.g. spammers might choose to use a misleading preview. Though I suppose that's a minor point, probably server-side previews can be tricked as well.

[-] flux@lemmy.ml 1 points 1 year ago

What is the security/privacy flaw if the server does it? No point thinking a non-encrypted would be very secret in the first place.

I guess the idea is that this works with simpler clients as well. Other nessaging networks with initiator-side previews usually have single-provider clients, as far as I know.

Initiator-generated previews would be a nice feature, though, and they would work with e2ee.

[-] flux@lemmy.ml 1 points 1 year ago* (last edited 1 year ago)

I use etckeeper to autocommit changes in /etc as git just has better and faster tools to look at the changes of a fle, compared to backup tools.

It's just so easy to do that there hardly is any point in not doing it.

view more: ‹ prev next ›

flux

joined 4 years ago