Hyprland is an open source Wayland compositor based on wlroots, a project I started back in 2017 to make it easier to build good Wayland compositors. It’s a project which is loved by its users for its emphasis on customization and “eye candy” – beautiful graphics and animations, each configuration tailored to the unique...
These are not Drew’s words, he is quoting something said by the project dev. The context that the previous commenter ommitted is:
Following my email conversation with Vaxry, he appeared on a podcast to discuss toxicity in the Hyprland community. This quote from the interview clearly illustrates the attitude of the leadership:
[A trans person] joined the Discord server and made a big deal out of their pronouns […] because they put their pronouns in their nickname and made a big deal out of them because people were referring to them as “he” [misgendering them], which, on the Internet, let’s be real, is the default. And so, one of the moderators changed the pronouns in their nickname to “who/cares”. […] Let’s be real, this isn’t like, calling someone the N-word or something.
This should be illegal, companies should be forced to open-source games (or at least provide the code to people who bought it) if they decide to discontinue it, so people can preserve it on their own....
An open source project backed by a corporation that sells support. And… the open source community almost instantly turns on that and decides they are evil
Redhat was the golden child of the open source community, the paragon of open source success stories, until fairly recently.
Canonical was also very highly respected until they started putting Amazon ads into people’s menus.
It is not something that happens instantly for no reason, it’s because of the need for these companies to squeeze every last drop of revenue out of a product to appease shareholders. Open source companies can, and do, thrive without screwing their communities over. The problem is the mindset that creating value for shareholders is the only thing that matters.
I’m reading the ActivityPub spec here and it seems pretty fit for client-to-server communications. Yeah, it might be somewhat bulkier than your typical rest api, but it’s more universal, which begs the question: why do mastodon and lemmy both decided to implement custom (and incompatible) APIs for their clients to talk to...
Postel’s Law is relevant here. Conservative in what you send (simplify the schema of the data on the wire) and liberal in what you receive (put the complexity for interpreting that data in the client).
The next release of the Linux kernel, 6.6 [will] include the KSMBD in-kernel server for the SMB networking protocol, developed by Samsung’s Namjae Jeon....
KSMBD is also important in that placing such core server functionality right inside the kernel represents a significant potential attack surface for crackers. As one comment on Hacker News said “Unless this is formally proven or rewritten in a safer language, you’ll have to pay me in solid gold to use such a CVE factory waiting to happen.”
What this guy found in Austria is actually illegal under EU consumer protection law.
Misleading price reduction claims
Price reduction claims such as “was € 50, now € 25” can be misleading if the initial selling price (known as “anchor price”) has been inflated. In all EU countries traders are obliged, when offering a discount, to indicate the lowest price applied to the item at least 30 days before the announcement of the price reduction. This information allows you as a consumer to assess whether the discount is genuine or not.
Noob starting first server. Installed Ubuntu server, and opted for LVM. However, will that cause me problems on a headless server if I get a power outage and need to reboot? I think yes. Is there a solution, or should i remove LVM before i go too deep setting things up?
Ah, you’re talking about LUKS. LVM is just the volume manager.
The standard way is to add an sshd (such as dropbear) to your initramfs so that you can ssh in and run commands (such as entering the root partition password) during system boot.
It only takes one paying customer to take the published FOSS code from the commercial software and re-distribute it for everyone to benefit from the commercial modifications made to it. That’s the point, a commercial use of the software can not make the source proprietary.
This is what Redhat recently found out when they tried to hide their RHEL source behind a paywall. Attempting to tie the hands of their customers with an additional license agreement forbidding distribution of the source is a violation of the GPL.
The Kaspersky analysis noted that the malware contained comments in the shell scripts written in Ukrainian and Russian, and used malware components detected in previous malware campaigns since 2013 that presumably have been attributed to a specific group.
FTA:
Meanwhile, the postinst script contains comments in Russian and Ukrainian, including information about improvements made to the malware, as well as activist statements. They mention the dates 20200126 (January 26, 2020) and 20200127 (January 27, 2020).
…
Having established how the infected Free Download Manager package was distributed, we decided to check whether the implants discovered over the course of our research have code overlaps with other malware samples. It turned out that the crond backdoor represents a modified version of a backdoor called Bew. Kaspersky security solutions for Linux have been detecting its variants since 2013.
…
The Bew backdoor has been analyzed multiple times, and one of its first descriptions was published in 2014. Additionally, in 2017, CERN posted information about the BusyWinman campaign that involved usage of Bew. According to CERN, Bew infections were carried out through drive-by downloads.
As for the stealer, its early version was described by Yoroi in 2019. It was used after exploitation of a vulnerability in the Exim mail server.
Most people know at this point that when searching for a popular software package to download, you should be very careful to avoid clicking on any of the search ads that appear, as this has become an extremely common vector for distributing malware to unsuspecting users....
AFAIK even legitimate ad clicks will first direct to an analytics platform before redirecting to the destination site, so that they can track click through rates and where the referral came from. So it is unlikely that ad links will actually go to the website you expect them to even in normal scenarios. It is actually this mechanism that the malicious ads described in the article are using to fake the display URL.
I have a network-wide pi hole and I noticed that it requested activity.windows.com, a url blocked by my pi hole, even while my pc is suspended. I pinged 10.0.0.217 and it is currently unreachable. So, somehow, windows pc’s turn on networking, phones home, and turns off even while suspended....
the folder Music>Pictures (the regular Pictures folder… for some reason that’s where it is) is open in explorer.
This sounds like the kind of thing that might happen if you have some kind of automatic sync set up, like when you plug your phone in and it automatically copies photos, or perhaps a cloud service that’s syncing photos?
I started the video thinking “huh, that’s neat I guess” and then I was more and more impressed as the video went on. This would be pretty revolutionary in how it could change your workflow. It’s the kind of feature that would get me to switch from Gnome to KDE if it was only supported fully in the latter.
A reported Free Download Manager supply chain attack redirected Linux users to a malicious Debian package repository that installed information-stealing malware....
If you have installed the Linux version of the Free Download Manager between 2020 and 2022, you should check and see if the malicious version was installed.
To do this, look for the following files dropped by the malware, and if found, delete them:
Yeah I agree, sorry about that. I thought that the body-text field was mandatory to fill in, so I used the introductory paragraph from the article so as not to editorialize.
and it could abusing the bandwitdh limitations of the source site by using multiple parallel connections that pulled on different file chunks
Also for files which had multiple different mirror sites you could download chunks from multiple mirrors concurrently which would allow you to max out your bandwidth even if individual mirrors were limiting download speeds.
TLDW: 8 minutes of vacuous navel-gazing which could have been distilled to the following 4 sentences:
But who involves themselves that much with games? Critics, journalists and enthusiasts. But what percentage of the whole do these people make? If you’re watching this video right now I imagine you’d be considered an outlying statistic a few steps away from the average demographic the industry continues to target.
I undervolted my CPU about a year ago and haven’t had any issues with it till now. I’ve been dual booting Linux recently and noticed whenever I was in Linux it would crash/reboot after a couple of hours or less of using it. I noticed the behavior was similar to when I set the voltages too low when initially setting up the...
What kernel version are you running? I’m no expert but I’m pretty sure that Windows and Linux handle Ryzen power states differently, as there have been some changes to the kernel recently to improve power state handling on AMD. I don’t know whether the latest kernel would fix the issue but might be worth a try to rule that out.
An undercover police officer used his fake identity to deceive a woman into a 19-year relationship in which they became partners and had a child together, the Guardian can reveal....
I have a habit of making windows for different things. For example, let’s say I have three windows open. One for school, one for work, and one for leisure....
I was thinking about this recently too. I’d like to have a “session” per window that I can open and close and resume at any time. Instead of having to load all or nothing at browser startup.
Non-endemic companies such as Google and Amazon are among the biggest threats to the games industry.
That’s according to former PlayStation boss Shawn Layden, who shared his thoughts on the future of games during the keynote at last week’s GamesIndustry.biz Investment Summit in Seattle.
The irony is palpable throughout this entire article.
A Starfield player has credited the sci-fi game with saving their life after they stayed up late to play it and was awake when their apartment complex caught fire.
u/Tidyckilla took to Starfield’s subreddit over the weekend to report their amazing escape, saying that if they hadn’t been awake “bingeing” the game when the fire broke out, the player and their wife would likely have “died to smoke inhalation”.
The translation feature is based on the Bergamot project to provide users with a privacy-aware translation engine where the translation is done locally using machine learning, it’s never sent to a third party, and it’s optimized for consumer hardware.
Title pretty much says it all. I’ve been using ubuntu as my daily driver for the last 5 years or so and honestly, I’ve had a wonderful experience with it....
Humble Bundle expressing their feelings about Unity (lemmy.today)
Hyprland is a toxic community (drewdevault.com)
Hyprland is an open source Wayland compositor based on wlroots, a project I started back in 2017 to make it easier to build good Wayland compositors. It’s a project which is loved by its users for its emphasis on customization and “eye candy” – beautiful graphics and animations, each configuration tailored to the unique...
This should be illegal (lemmy.world)
This should be illegal, companies should be forced to open-source games (or at least provide the code to people who bought it) if they decide to discontinue it, so people can preserve it on their own....
ANTI-UNITY STRATEGY (lemmy.world)
twitter.com/monsterprom/…/1702442081170383355?t=L…
Unity's Plan Won't Work, but Someone Else's Will | TechnoFeudalism in Games and Beyond (youtu.be)
cross-posted from: lemmy.world/post/5196308...
Why fediverse clients reinvent the C2S APIs and don't use ActivityPub?
I’m reading the ActivityPub spec here and it seems pretty fit for client-to-server communications. Yeah, it might be somewhat bulkier than your typical rest api, but it’s more universal, which begs the question: why do mastodon and lemmy both decided to implement custom (and incompatible) APIs for their clients to talk to...
Linux 6.6's in-kernel SMB networking server graduates (www.theregister.com)
The next release of the Linux kernel, 6.6 [will] include the KSMBD in-kernel server for the SMB networking protocol, developed by Samsung’s Namjae Jeon....
France's Carrefour puts up 'shrinkflation' warning signs (www.bbc.com)
Digital Foundry: Star Wars Jedi Survivor PC Is *Still* The Worst Triple-A PC Port Of 2023 (www.youtube.com)
[Question] to LVM or not?
Noob starting first server. Installed Ubuntu server, and opted for LVM. However, will that cause me problems on a headless server if I get a power outage and need to reboot? I think yes. Is there a solution, or should i remove LVM before i go too deep setting things up?
Unpopular Opinion (lemmy.ml)
In Poland, Testing Women for Abortion Drugs Is a Reality. It Could Happen Here. (www.nytimes.com)
Article without paywall: archive.ph/ZA7x9...
Trojanized Free Download Manager found to contain a Linux backdoor (FDM's response in post text below) [Securelist] (securelist.com)
From www.freedownloadmanager.org/blog/?p=664:...
Unity Silently Deletes GitHub Repo that Tracks Terms of Service Changes and Updated Its License - GamerBraves (www.gamerbraves.com)
Malicious Google Search Ads can now fake the displayed URL to push malware downloads (www.bleepingcomputer.com)
cross-posted from: lemmy.ml/post/4912712...
Malicious Google Search Ads can now fake the displayed URL to push malware downloads (www.bleepingcomputer.com)
Most people know at this point that when searching for a popular software package to download, you should be very careful to avoid clicking on any of the search ads that appear, as this has become an extremely common vector for distributing malware to unsuspecting users....
Windows pc calling home (even while asleep) (lemmy.dbzer0.com)
I have a network-wide pi hole and I noticed that it requested activity.windows.com, a url blocked by my pi hole, even while my pc is suspended. I pinged 10.0.0.217 and it is currently unreachable. So, somehow, windows pc’s turn on networking, phones home, and turns off even while suspended....
KDE Compositor Handoff Revolutionizes Wayland - YouTube (youtu.be)
[URGENT] WinRAR 0-day that uses poisoned JPG and TXT files under exploit since April (Update to WinRAR 6.23 now!) [ArsTechnica] (arstechnica.com)
This is critically important for everyone and is shared for wide reach.
Is Google Pixel actually good for privacy?
I hear many people say that the Google Pixel is good for privacy, but is it?...
I work at an Unity-adjacent company - Here's what's happening
Per the CEO in today’s meeting:...
The Death of Unity - gamedeveloper.com (www.gamedeveloper.com)
[LXDE] it works for me (lemmy.zip)
i don’t have anything else to say
Free Download Manager site redirected Linux users to malware for years (www.bleepingcomputer.com)
A reported Free Download Manager supply chain attack redirected Linux users to a malicious Debian package repository that installed information-stealing malware....
The Escapist: The Problem of Voting With Your Wallets | Cold Take (www.youtube.com)
Linux Mint Debian Edition 6 "Faye" Is Now Available for Public Beta Testing (9to5linux.com)
Undervolt stable on Windows but crashes on Linux
I undervolted my CPU about a year ago and haven’t had any issues with it till now. I’ve been dual booting Linux recently and noticed whenever I was in Linux it would crash/reboot after a couple of hours or less of using it. I noticed the behavior was similar to when I set the voltages too low when initially setting up the...
Malicious Google ads deceive Mac users into installing Atomic Stealer malware (appleinsider.com)
Revealed: undercover UK police officer deceived woman into 19-year relationship (www.theguardian.com)
An undercover police officer used his fake identity to deceive a woman into a 19-year relationship in which they became partners and had a child together, the Guardian can reveal....
Peter Molyneux says he regrets over-promising his games (www.eurogamer.net)
Extension that syncs a bookmark folder with a browser window?
I have a habit of making windows for different things. For example, let’s say I have three windows open. One for school, one for work, and one for leisure....
Tencent Games strategic advisor Shawn Layden issues warning about non-endemics breaking into games (www.gamesindustry.biz)
[ExplainingComputers] RISC-V Week: 7 days only using RISC-V computers (www.youtube.com)
Staying up and "bingeing" Starfield "literally saved" this player's life (www.eurogamer.net)
First renderings show new California city that tech billionaires want to build (www.sfchronicle.com)
Firefox 118 Enters Beta Testing with the Built-In Translation Feature for Websites (9to5linux.com)
Tips for switching to Debian from Ubuntu?
Title pretty much says it all. I’ve been using ubuntu as my daily driver for the last 5 years or so and honestly, I’ve had a wonderful experience with it....