Atemu

3

Are there any (ideally waterproof) compact devices with long battery life (months~years)?

On the website I only found a long list of supported devices with brand name search and protocol type. grep showed no LoRaWAN devices though?

My use-case is theft tracking. I only need the device to be able to locate itself after a theft actually occurred and I request it remotely. (Perhaps also periodically with very low frequency.)

Atemu @lemmy.ml 2w ago

SearXNG is not a search engine, it's a search engine proxy. The actual search engines that are being proxied are still the same old google, bing etc.

1

Atemu @lemmy.ml 2w ago

Disabling su is stupid because you always need some form of privilege escalation, restricting sudo to apt offers no security benefit whatsoever as apt allows arbitrary file modification, disabling root ssh provides no benefit when the unprivileged user has sudo access – I could go on.

2

Atemu @lemmy.ml 3w ago

I'd highly recommend you actually read it. Once you look past the LLM-ish phrasing, it quickly becomes clear that the actual information contained is human-made with a great amount of valuable thought put into it.

I've been here for a long-time (go and check if you'd like). There wasn't a single thing in that post that made me think the author hasn't understood the principles of the fediverse that make it so valuable or reasoned wrong about them – quite the opposite.

This post idenifies many (if not most) of the major problems that I have had with Lemmy over the years. The onboarding improvements you've seemed to have at least glanced at are just the tip of the iceberg.I use Lemmy despite of these limitations but I am also a technical person with quite a bit of tolerance for such technological pain. The high-level improvements proposed here would meaningfully diminish these; allowing less technologically capable or tolerant people to benefit from Lemmy too.

This is actual UX requirement engineering.

If broader (and less technical) user adoption is a goal of the Lemmy project, I'd consider the vision outlined in this post to possibly be one of the most valuable non-technical contributions to Lemmy as a whole.Seriously.

Atemu @lemmy.ml 3w ago

Yikes, lot's of bad advice in this thread.

My advice: Go develop an actual threat model and find and implement mitigations to the threats you've identified.

If you can't do that, that's totally okay; it's a skill that takes a lot of time and effort to learn and is well-compensated in the industry.

You will need to pay for it. Either through an individual assessment by someone who knows what they're doing, managed hosting services where the hoster is contractually liable and has implemented such measures, by risking becoming part of a botnet or by not hosting in a world-public manner.

My recommendations:

Pay for proper managed hosting for every part of your system that you are not capable of securing yourself. This is a general rule that even experienced people follow by i.e. renting a VPS rather than exposing their own physical HW. There are multiple grades to this such as SaaS, PaaS and IaaS.
Research, evalue and implement low-hanging fruit measures that massively reduce the attack surface. One such measure would be to not host in a manner that is accessible to the entire world and instead pay for managed authenticated access that is limited to select people (i.e. VPN such as Tailscale)
git gud

3

Atemu @lemmy.ml 3w ago

Wow is that ever a load of snake oil.

I see this kind of guide as actively harmful because it creates a false sense of security.

Atemu @lemmy.ml 3w ago

It works for me, even with substrings.

It's sometimes a bit fiddly though as adding even the tiniest bit of data that is not contained in the address as OSM knows it will invalidate the entire search.

1

Atemu @lemmy.ml 3w ago

(You did not ping the NewPipe account; this is the Newpipe Lemmy community forum.)

Atemu @lemmy.ml 3w ago

Kagi is a search engine where you just simply pay with money rather than being instrumentalised in all kinds of awful ways in order to make the operator money.

I was very sceptical at first too. I highly recommend to simply try using it with the gratis 100 searches. That lasted me for a few days and I quickly noticed what there is to love about it.

It's the best (and to my knowledge only) search engine money can buy.

1

Atemu @lemmy.ml 3w ago

The first two points have nothing to do with HTTP‽

The last one is just August before Eternal September ¯(ツ)/¯

Atemu @lemmy.ml 3w ago

(but-with 'nix (lots-of 'parenthesis))

Atemu @lemmy.ml 3w ago

That's for encrypting your data to protect against an untrusted storage back-end.

They also have e2ee for users though where the server cannot see the plaintext either.

https://nextcloud.com/encryption/

Atemu @lemmy.ml 3w ago

And this is why you want atomic updates folks..

Atemu @lemmy.ml 2mo ago

Did you/your distro set up realtime ulimits correctly such that pw can acquire rt priority?

4

Atemu @lemmy.ml 2mo ago

Tab groups are one of the best features to come to modern browsers the past few decades. Especially the ability to save and close them greatly aided me as a rehabilitating tab hoarder.

Haven't tried vertical tabs yet but it's great to see them implemented in Firefox properly now.

Great to see that PWAs finally coming back, even if it's only on Windows now. Didn't catch that they are working on that again!

I find the link previews to be distracting but they're easy enough to turn off.

Great to finally be able to undload tabs manually. That would have been extremely useful back in my tab hoarding days. Tab unloading is generally quite a neat feature.

The LLM shit can go away for all I care but it's not really that invasive IME. It's one entry in the right click menu that's easy enough to turn off right from said menu for me.

PDF editor upgrades are very welcome.

Right click to search for an image sounds like such an obviously good UX feature; great to see they're thinking about such things again. Sad to see it's Google-only for now but that makes sense given how small and non-standardised the market for reverse image search is.@kagihq@mastodon.social could you perhaps get in contact with Mozilla so they can implement your endpoint for this too?

1

Atemu @lemmy.ml 2mo ago

I get the sentiment but it does not seem appropriate in this case‽

2/14 features in the article are related to slop. The other 12 are actual, genuine improvements; some of them quite significant if you ask me.

Blame where blame is due but please don't forget to praise where praise is due too.