afaik USB can be used for serial, car diag programs often work like that too, so this might not be the problem
Computers and the internet gave you freedom. Trusted Computing would take your freedom.
Learn why: https://vimeo.com/5168045
afaik USB can be used for serial, car diag programs often work like that too, so this might not be the problem
3 GB swap usage is usually very unpleasant in my experience when the swap is on a HDD. and no thabks, I won’t move the swap to the SSD to kill it earlier
19 GB cache is worthless after you have just moved a lot of files, large in total size. very few useful things remain in there, while your program will get swapped out unnecessarily
through a kernel parameter, or permanently through sysctl
and then I guess it can even be trimmed somewhat. delete the development packages, look through and filter the unneeded larger ones, …
I guess you can do that on Linux as well by disabling kvm passthrough of the GPU to the VMs.
I think it is disabled by default, and you would need to enable it for a specific VM. as I know, the GPU can rarely be shared to multiple VMs
I think QubesOS only does mitigations, not microupdates.
it may be possible to do it on Qubes too. I think the microcode updates are not OS-specific, but I’m not certain about this
I’m blocking that too, it’s even disabled in the settings. in my opinion they shouldn’t be doing this in a privacy oriented browser in an opt-out manner. look at where they host the data: GCP and AWS. that’s maybe fine for firefox sync data because it’s encrypted (probably only on a per-record level though, so it may still be useful to measure activity), but for usage data, no thanks
As a Nightly user
that makes some difference, but they shouldn’t count the needs of nightly users as the needs of release users. totally different userbase, to begin with
do you mean this part?
However, some of the vulnerabilities of this class cannot be effectively mitigated without updated CPU microcode.
(https://osresearch.net/Heads-threat-model/)
linux can do microcode updates. I think what they wanted to mean is that the general mitigations (the retpolines and the page table isolation they mention near it) are what is not enough
my PC constantly awakening from standby
why do you think that’s caused by plasma? I don’t think it would intentionally wake itself up. Did you check the same kernel version with gnome?
which frontend allows that?
as I know piped and invidious have their own account system, and by following their attempts to regain access to youtube content I would think that if they allowed login with a google account, that would place the account in danger of getting blocked for good
I don’t think it’s you who is at fault here
it can be still useful to know how to code, for when you want to put together a tool, or something that does things automatically
to be targeted through an old ThinkPad.
I’m not convinced that this needs targeting. At the same time, you can’t know if any of the former owners was an important person, or in the environment of one, just as you can’t know what shit did they install entirely carelessly.
These old bricks don’t get microcode updates for the CPU which means you will be vulnerable to many Spectre and Meltdown attacks. QubesOS can mitigate it to some degree such as by disabling hyperthreading, but QubesOS can’t mitigate it completely, only microcode updates can and these old bricks don’t receive them.
as I know linux is capable of loading its own, updated cpu microcode at boot time. I’m not sure if it’s being done by default, but this article probably means that it isn’t
but the main thing is that built-in microcode version is probably not that bad of a problem if you take care of it
keep in mind that phone number privacy does not mean that they don’t get your phone number, but that the official app does not reveal it.
but then, they have probably found you either by phone number or from a group
these only handle crypto. they’re not a replacement for stripe, and saying that it is is a very large stretch. stripe is used for handling fiat payments, and there’s a reason even Liberapay only supports that and Paypal: because all others are worse or questionable.
such services (recurring payment services) can’t really make use of crypto right now anyway, can they? they would either need to store your keys, or create a specialized wallet program and stop being a service, but the latter would also remove any possible transparency that the donation receiver may want to provide
Which which one?
netfilter, iptables, or one that is based on them
Firewalld isn’t a GUI
that’s right, but it has an official GUI: https://firewalld.org/documentation/utilities/firewall-config.html
I haven’t tried opensnitch.
it has per-app rules, and can show a popup for programs that don’t yet have a rule. you can also limit the access by time, destination, and port
DKMS is setup, and I still have to plan my kernel upgrades due to the compilation time.
in my experience every kind of update requires planning and a reboot because incompatibilities between new libs and already running older programs will cause problems. but DKMS may help in making it less of a work
hmm. I have to admit I don’t understand the difference. on windows it’s the desktop folder, plus a few separate icons to system utilities with some way to filter them. did you mean that?
requirement of the root password? why would it need that, when it normally doesn’t? to clarify, I didn’t mean the “sudo reboot” command, but the reboot button in the KDE application launcher
ok. what should we use instead? paypal?
I thought that’s a firefox exclusive feature. in which other programs did you see it work?