Hey 👋 I’m Lemann
I like tech, bicycles, and nature.
I assume it’s a feature to prevent Android’s memory management from forcefully killing Firefox… for me the tabs don’t unload, but they behave as if the JS running inside them has been frozen/paused.
Maybe installing those tabs as apps via Firefox’s menu will bypass this
BTRFS has encryption now? Yay!! I have been wrapping it inside a LUKS partition for years at this point…
Holy moly that is an absolute sh*t ton of ads!
Second this. Zorin OS, and Mandriva Linux (before they went bankrupt, and the community picked up development) were my first exposure to Linux over a decade ago, and the ux familiarity really helps a ton.
A lot of the other distros had funny stuff going on with multiple docks, open apps showing in the top dock, others looked like a Stardock Special and it was just a little confusing for younger me lol
X.509 certs are commonly used in TLS/HTTPS.
Why is one needed in your boot process?
Don’t know why but I found this funny
Edit: sorry, I may have misunderstood your post - free email != email masking.
My original post below…
Curious why you consider email address masking services as for those with “drastic anonymity” requirements?
I personally don’t think so: they are pretty much just a digital P.O. box, and are typically not anonymous in any way (subpoena/court order to the provider). They are built-in to Firefox too, it will automatically create new ones OOTB as you sign up on websites, if you click the autofill.
They are however IMO one effective tool out of many to restrict the ability of data brokers and hacking groups (aggregated breach datasets) alike from making money from your online presence without your consent.
In almost all cases this data is freely searchable for law enforcement and private investigators, allowing them to avoid going through the legal system to investigate and possibly detain you for things you’re not guilty of
I delete them from the ssh config folder after installation, along with the DSA and ECDSA keys. No ed25519? No auth.
Also prevents a handful of bots from attempting SSH login into your cloud infra, a lot of them don’t support ed25519 kex
Probably a good idea to look for a different client, call me tinfoil but I wouldn’t want to touch a very old mechanism that is supported/pushed by a very recognisable 3 letter agency
If they’re easy to get, why not have them 😉
The sense of entitlement in some of the replies on that post are absolutely awful
As for me personally, I want to love Wayland. It has great performance on ALL my devices, (except one with a nvidia GPU) and is super smooth compared to X11!
However… the secure aspect of Wayland makes it very difficult, if not impossible to easily get a remote desktop going. Wayvnc doesn’t support the most popular desktop environments depending on how Wayland was compiled, and the built-in desktop sharing on distros that have switched over to Wayland often require very specific Linux-only VNC and RDP clients, otherwise you run into odd errors.
I really hope the desktop sharing situation improves because it’s a pretty big showstopper for me. On X11 you just install & run x11vnc from a remote SSH session and you have immediate session access with VNC from Linux, Android, and Windows. If you want lockscreen access too then you run as root and provide the greeter’s Xauth credentials. But Wayland’s not so simple sadly AFAICT…
Waypipe is something I’ve found out about recently though, so need to check that out and see how well it works at the moment. If anyone has any helpful info or pointers please share, I’m completely new to Wayland and would appreciate it!
It prevents apps from opening links in your browser directly, since they have to go through URLCheck first. Let’s say you click a link in your email, and instead it opens a “google.com/url?q=https://amazon.com” or a “safelinks.outlook.com/?url=…” instead of just taking you to Amazon.com. URLCheck will get rid of the unnecessary redirection and allow you to go directly to the site.
Adding onto that, my pet peeve with email links is them showing you a link that says Amazon.com, but then you go to click the link it opens a bunch of email tracking links before finally taking you to Amazon.com. With URLCheck you can actually stop these links from opening, and go to the website directly in the browser yourself.
If you’re familiar with that issue that popped up regarding “.zip” domain names, and how they can be engineered to look like an official URL, this is a non issue as you’ll get a warning if any link contains malicious unicode characters that could be mistaken for something else
Also, if you have multiple apps that can handle a link (maybe different youtube apps like libretube, newpipe, grayjay), you can pick which one to open after clicking a link. Android does have a stock app picker, but it’s very easy to mistakenly set an app as default.
Android apps can also track what apps triggered them to open - URLCheck can mask this, and even set some advanced flags for how the link handler app should be opened.
To be honest after using it for a while, I really wish there was something similar available for desktop
This is how I do it 👌 no need to install another when the pi already comes with one OOTB.
If OP is looking for VNC clients for zorin OS, there’s an app called “Connections” in the store which works great
Ooh interesting, never knew they started a rewrite!
The reports of poor performance with the PHP version was one of the things that pushed me towards using Syncthing instead when I was looking for a solution to view my documents and files from various devices
Lovely feature, been using it for years 👌 I have my calendar, email, homeassistant and zabbix pinned
They also don’t move when the normal tab bar becomes scrollable due to too many tabs open, which is pretty neat IMO
Happens on both LinkedIn and Instagram, never actually checked what causes it…
Wouldn’t be surprised if it’s some click event listener firing off a synchronous xhr telemetry request when you close the popup, which freezes the main thread long enough to make the browser think you’ve selected some text
WebUSB is handy for things like factory resetting a pixel, where it’s one of many options available… what I don’t like is when manufacturers decide to only allow their device to be configured over webusb (looking at you various mech keyboard companies 🤬)
Flash drive hidden under the carpet and connected via a USB extension, holding the decryption keys - threat model is a robber making off with the hard drives and gear, where the data just needs to be useless or inaccessible to others.
There’s a script in the initramfs which looks for the flash drive, and passes the decryption key on it to cryptsetup, which then kicks off the rest of the boot mounting the filesystems underneath the luks
I could technically remove the flash drive after boot as the system is on a UPS, but I like the ability to reboot remotely without too much hassle.
What I’d like to do in future would be to implement something more robust with a hardware device requiring 2FA. I’m not familiar with low level hardware security at all though, so the current setup will do fine for the time being!