There are probably cases where turning off Secure Boot is fine. If you make that decision for yourself and are aware of the implications, go ahead. My remark wasn’t against users turning it off, but rather against the advice of “just turn it off lol”

This is true, unfortunately some Linux users have been conditioned to “just turn off Secure Boot” without understanding what this actually means and entails.

This is an issue with these half-baked security solutions.

Don’t get me wrong: the setup protects against some very common threats (i.e. device gets stolen). But they’re unsuited for evil maid attacks.

Secure Boot isn’t flawless, but it can improve system security if used correctly; unfortunately, most distributions don’t go all the way as demonstrated here. I guess this can be solved via UKIs, but anything built on the users machine like an initramfs can’t be signed properly if no user TPM keys are enrolled and available during generation.

The issue I have with all this is that these distributions don’t really tell you that the security they provide is ultimately limited. Personally, I have custom TPM keys, the initramfs is signed, I unlock via TPM PIN and the emergency mode is disabled. Also UEFI needs to be password protected so that an attached can’t modify your booting parameters, though this couldn’t be done undetected because it’d break TPM supported boot.

Think that’s called NATing

Stronger compartmentalization

Gitlab is a product for enterprises which usually selfhost private repositories, I don’t think they give a damn about community stuff.

Yeah there are paying customers that want this, but I don’t think they see a business case, but rather a maintenance burden.

I think csv is a bad format, if you can even call it that. Yes, there are some cases where it makes sense. I worked with an oscilloscope at uni which output csv. But other than that, I consider it more of a concept than an interface / exchange standard

As a straight cis man, the idea of straight pride is pathetic. It’s so easy, nobody ever questions you for it. There is no work in living your sexuality. Such a sad idea. Has those “all lives matter” vibes

Plex has better security, federates and shares with other plex servers and generally is less hands-on for transcoding.

Regarding security, it’d be interesting to see how secure it actually is. Yeah, the individual endpoints might be protected better, but is Plex the company maybe a single point of failure?

The equivalent to WSL is Wine, but it’s not Linux-specific. However, it’s architecturally much closer to WSL 1 than to the current WSL 2.

I doubt it. Nix has a ton of infrastructure and contributors there. Plus they wouldn’t gain anything immediately tangible from it. Codeberg is still git with a very similar UX to GitHub. Not the same can be said for Savannah.

That doesn’t mean it’d be a bad choice in the long run. But still.

Some stuff turns to e-waste because it’s no longer supported by software. Some stuff turns to e-waste because it’s just so goddamn old. The last ones of these architecture had a whopping 233MHz. My first PC that I got new as a kid was faster than that (must have been a Pentium II, while i586 is Pentium). I highly doubt there are many of these systems left in operation, especially not with new kernels.

Do programmers actually like bash?

I’m not a programmer and I really don’t like bash. Not because I don’t like shell. In fact I do like fish as a shell. But bash always feels super weird. Unfortunately that’s kind of the compatibility baseline on Linux (I don’t think any relevant system needs strict sh compatibility). But better bash’s weird arrays than none at all, plus process substitution is handy.

Most bash scripts are nasty, except for the most simple ones.

In its defense, it’s not a programming language.

It wasn’t about sending SMS, it was about sending SMS securely, and whether this actually provided an improvement offer not offering it anymore. TextSecure came out when mobile data wasn’t as prevalent. But times have changed

What about tortoisegit

The equivalent to Plex is Jellyfin I think, Plex can be used as a media server for Kodi.

Apart from security and upgrades, there might arise situations where you want to change aspects of the underlying operating system, and these changes might require changes to the source code.

Also if you remember Stuxnet, those computers were also airgapped not connected to the internet.

One goal of ReactOS is to run Windows drivers, which Wine can’t do. There are old specialized devices with Windows exclusive drivers still running in production requiring something like Windows XP or 2000. You can’t replace these with Linux and Wine. It makes sense for Russia to sponsor it; they probably depend on these old installations in either their refineries or somewhere in their nuclear program.

Fuck Russia but I wouldn’t interpret too much into this