lukas

lukas, 6 months ago (edited 6 months ago)

I’m not sure what you mean. Artists use Photoshop for drawing, yet Adobe advertises Photoshop mostly for image editing. Even though Adobe advertises Photoshop for image editing, which should include fully editing your own photographs imo, the only proper Denoise AI is built into Lightroom lol. Photopea also supports pressure sensitivity, so it should work just fine for drawing. Tools aren’t that big of a deal. People who design beautiful presentation decks use PowerPoint after all… with the default system fonts.

lukas, 7 months ago

I like your thinking, comrade

lukas, 7 months ago

Lists of things not to do:

• (NEW!) Go through airport security with an encrypted laptop, sensitive information and free conference stickers showing your affiliations as an activist. Let airport security confiscate your laptop. Airport security drugs and wrenches you. You give them your laptop password. The police arrests you based on suspicions of terrorism.

lukas, 7 months ago

Force people to move to Wayland. Everyone that complains about Wayland breaking their setup knows how to install Xorg anyways. But most Wayland problems are software vendors not giving a shit. Make them give a shit by breaking their shit by default on most setups. 10 years was enough time to make your software work on Wayland. If your software doesn’t work on Wayland by now, then your risk management is shit.

lukas, 7 months ago (edited 6 months ago)

If that’s the case, then stick to Xorg for now. But that doesn’t change the fact that it’s in your best interest for distros to ship with Wayland out of the box.

Do you want software you use to be compatible with Wayland now or later? If your answer is later, then you have to wait for vendors to catch up, even though Wayland got auto type (already exists) and screen magnification by then. This is why I never understood this push against Wayland. People, your only alternative to Wayland is dead and unmaintained. If you push against Wayland as the default option, you only make your transition in the future more painful than it needs to be.

Also, I think it’s still a software vendor problem. If your software can’t work with the only desktop protocol with a future, then you must contribute to the protocol to create a way to make it work. If you don’t do that, then shit happens, your software breaks, and you had 10 years to contribute to the protocol to fix it. Your risk management was once again exceptional at avoiding doing the necessary work to eliminate a long known risk.

lukas, 7 months ago

Read again

lukas, 7 months ago (edited 6 months ago)

Nobody’s pushing “against Wayland”. I don’t give a shit about Wayland or Xorg. What I care about is having a full-featured, easy to use desktop stack readily available.

Install Xorg yourself. Don’t make it easily accessible to new Linux users. Software vendors will take note and postpone doing any work for as long as possible.

And you obviously care a lot about Wayland and Xorg.

The “dead” Xorg works perfectly with everything. That’s the bar.

No, it doesn’t. And if it does, then it’s still insecure by design. When I hear statements like these, I get the urge to publish PoC Linux malware code on GitHub that uses X11 specific features to show just how not fine it is.

The Wayland choice of pushing complexity onto individual software projects by making them all reinvent a hundred wheels, and onto users by making them hunt down a hundred pieces of software to build a wobbly desktop stack sucks.

Substitute Wayland for X11 here. Both Wayland and X11 are protocols. X11 is such a lackluster protocol that all implementations died, except that Xorg still has users.

lukas, 7 months ago (edited 6 months ago)

New users will drop any distro whose default desktop doesn’t work perfectly and with all the features they want. Linux already has a high enough bar competing with Windows, creating additional artificial hurdles is dumb in the extreme.

Both Wayland and X11 are an artificial hurdle to someone, so at least pick the sane choice with a future.

Security vs convenience has always been a give and take. There’s a cutoff point that users will not cross if the software becomes too inconvenient to use, even if it means greater security. The Wayland stack is currently on the bad side of that line and needs to step over if it wants to see mass adoption.

No, Wayland is doing fine.

Nobody cares, all they see is the stack, with Wayland leading the point on the bad decisions.

Oh no, Wayland isn’t X11. It’s almost as if Wayland isn’t supposed to be 1:1 bug compatible with Xorg.

You are projecting. If this were any other piece of software, say, a text editor that works and does everything you need, and someone came and told you “you must use this new one, it’s the way forward, but oh it doesn’t have all the features you need from a text editor” you would say “thanks but I’ll wait until it’s ready”. But you see no problem in pushing Wayland on people who can’t use it?

I don’t know about what text editors you use, but my text editor doesn’t allow malware to log all keystrokes, tamper with windows of other apps, steal clipboard contents without consent, inject keystrokes into other windows, escalate privileges, and install rootkits that persist OS re-installs using the escalated privileges.

People work on Wayland. Nobody works on Xorg. Alternatives don’t exist.

Please understand that nobody will ever successfuly push through incomplete software. Not on Linux. There’s nothing you or anybody can do to convince people that incomplete software is complete and usable when it’s not.

Do you need a refresher about systemd, pulseaudio, etc.? I’m not in the systemd haters camp, but pulseaudio broke regularly for me. Yet every distro included pulseaudio.

lukas, 7 months ago (edited 6 months ago)

Oh yeah?

That must explain why Xorg always crashes and burns when I don’t use the correct combination of desktop environment, compositor and driver version.

Let’s not ignore that Xorg doesn’t and never has been working for everyone. At least default to the sane option with a future.

lukas, 7 months ago (edited 6 months ago)

If you still want to give Wayland a try, take a look at wiki.archlinux.org/title/wayland#Electron. Electron still defaults to X11, even though Electron supports Wayland. It’s a bit annoying to set the command line parameters for apps that bundle Electron, but maybe it works for you.

lukas, 7 months ago (edited 6 months ago)

Man, that’d be horrible! Imagine people could exercise their rights. Thank God we live in a world of zero digital ownership with anti DRM circumvention laws to strip everyone from rights copyright laws are supposed to grant. We can sue anyone that scans books and lends them out 1:1 as that’s untransformative and unfair use. But hey, it’s a free market! Let’s offer them e-books with DRM for $15 that libraries can only lend out 15 times, 20 hours total read time or three months after purchase, whichever comes first, and then jack up the price to $30 when they’re locked into the ecosystem. Sounds like a fair deal to me! Not like they have an alternative.

lukas, 7 months ago (edited 6 months ago)

Thank you.

I hate that most Linux brightness controls assume that humans perceive brightness linearly for some reason. I don’t want a flash bang in dark surroundings when I forget to use the slider. I don’t want to press my brightness up key a thousand times or resort to the slider in bright surroundings.

So yes, please merge this.

lukas, 7 months ago (edited 6 months ago)

You can’t trust VPN providers to store no logs. It’s impossible to verify. I don’t get why people downvote this comment.

lukas, 7 months ago

VPN providers don’t protect you from malware.

lukas, 7 months ago (edited 6 months ago)

DNS blacklists also don’t protect you from most malware.

lukas, 7 months ago

I can’t call DNS blacklists part of defense in depth. DNS blacklists are a poor man’s version of existing and pre-installed anti-malware software.

• DNS blacklists block only older known malware, similar to existing anti-malware, but less effective.
• DNS blacklists block hijacked, but legit websites that host malware, contrary to existing anti-malware.
• DNS blacklists? What is that? I use DoH, get fucked. Contrary to existing anti-malware.

They’re completely bypassable, they boast a high false positive rate due to how threat actors host malware, and they don’t even block newer malware. Just use Windows Defender. It ain’t perfect, but it’s leagues better than any DNS blacklist.

lukas, 7 months ago

Because Defender already covers what DNS blacklists block and more with less false positives and a proper way to manage exceptions for non-technical people. Older malware is a solved problem for Defender since it’s literally pre-installed everywhere. VPN providers don’t have a way to manage DNS blacklist exceptions, so have fun disabling your VPN to do any research. You also don’t get to choose the blacklists your VPN provider uses. Saying 3. is not a point is like saying malware that’s always able to bypass your anti-malware solution is irrelevant.

lukas, 6 months ago

You conflate VPN providers have an incentive to store no logs with it’s impossible to verify whether VPN providers store logs. It’s like trusting your friend to keep a secret. They promise not to write down what you say, but you can’t be sure. You accept that risk in your threat model, and that’s fine. But newcomers should judge that risk themselves. I feel like “Don’t worry bro, they don’t keep logs.” is an inappropriate response to people that’re about to commit a crime that can land them in jail.

lukas, 7 months ago

Yeah, the ads are a crime against humanity. I bought the movie ffs. Let me watch it.

lukas, 7 months ago

You wouldn’t download a fridge

lukas, 7 months ago (edited 7 months ago)

I didn’t like their service, so I cancelled my account and deleted it like I always do. Not sure why others delete their accounts. Edit: How ironic that they were sued for violating privacy lol.

lukas, 7 months ago

I can’t find anything about this on the web. Did they rebrand?

lukas, 7 months ago

Ain’t nobody needs to know the finances of my web3 unregistered securities pyramid scheme fraud.

lukas, 7 months ago

Russia has KYC regulations as well. Mostly to censor people, but still.

lukas, 7 months ago

Copyright today is shit tho. It’d be more logical to talk about how much it costs the public to maintain a fundamentally broken system to keep a few companies with a dysfunctional business model on life support.

Rights holders take people and organisations to court for a lot of shit that should be thrown straight out of court. But no no, the people who protect and protected the interests of organisations that benefit from copyright laws wrote the copyright laws. If they couldn’t pass their extremist copyright laws locally, they’d try again nationally, then internationally, until their contradictory and ass-backwards copyright laws got passed. Other countries copied these laws.

• Copyright laws implicit registration robs the public domain of works made by unidentifiable authors.
• Copyright laws force the digital world to play by impossible rules.
• Copyright laws forbid DRM circumvention, but that contradicts with existing copyright rights.
• Copyright laws forbid digitization of analog media if the judge considers this untransformative or unfair use.
• Copyright laws may allow snippet taxes for daring to use an excerpt of a news article without paying an arm and a leg.
• Copyright laws may forbid fair use, banning reviews, etc.
• Copyright laws force libraries to buy e-books under unfair conditions due to DRM and the digitization edge case.

… the list goes on. Copyright laws in their current form should be thrown in the trash and burned alive while we can. The EU Copyright Directive is so fundamentally broken that member states postpone enacting the directive into national laws, years after the set deadline. Member states copy and paste the directive, unwilling to spend the effort to revise existing laws to conform to the over-reaching copyright directive.