Thanks to these attacks I think creds got to all move to physical security keys so there's nothing to (digitally) steal any more.This tool is a good idea for the short term.

When Antennapod requests the episode the server can inject the ads and geolocate you based on your IP. Thus they can tailor them at the point of delivery to your region (and anything else they know/guess about your IP). Antennapod does not inject ads itself, it is at the mercy of what the podcast server returns.

Nights are 72F/22C so it cools a bit but not quite enough to undo all the day's heating (speaking personally)

It could if you/future owner ever need to re-enable it:

The trouble is not your present boot; it's your future boot. If your older PC's firmware never gets the 2023 keys, and the rest of the world starts assuming those keys exist, you can end up stuck in a weird limbo. While your existing Linux install will still boot, a new or updated distro won't.

Testing now will help diagnose future problems.

https://www.zdnet.com/article/aspirin-for-linuxs-microsofts-secure-boot-headache/

That was wonderful thanks for posting!

https://www.gov.uk/government/publications/fact-sheet-new-rules-to-protect-children-online/fact-sheet-new-rules-to-protect-children-online#what-is-changingand-whats-banned

We plan to use the same model for a social media ban as Australia. Their model included platforms like Instagram, YouTube, TikTok, Snapchat, Facebook and X.

BBC News - How does Australia's under-16 social media ban work? - BBC News https://www.bbc.co.uk/news/articles/cwyp9d3ddqyo?app-referrer=deep-link

Ten platforms are currently included: Facebook, Instagram, Snapchat, Threads, TikTok, X, YouTube, Reddit and streaming platforms Kick and Twitch.

The government assesses potential sites against three main criteria:

• whether the platform's sole or "significant purpose" is to enable online social interaction between two or more users;

• whether it allows users to interact with some or all other users; and

• whether it allows users to post material

Hmm. So affects the big platforms for now, but no guarantees it won't extend in future to the fediverse if children were to move there. More likely people will work around the age-gating if they can. I wonder how this is looking in Australia?

I'm not familiar with Pikapods but Monica v4 has trouble with notifications. First you need to ensure it's been configured right to even send a test email, this can be triggered with a command if you have access:

php artisan monica:test-email

Various Monica environment variables must be set to configure this, it should be in the docs somewhere if not I can fish my config out for you.

Even once that's working you'll need Monica to run its regular jobs for sending notifications, there's config for that too. Finally the code has bugs and will often miss reminders in my experience. There are some open bugs still on this and I guess the devs have moved onto their rewritten version (chandler):

https://github.com/monicahq/monica/issues/5681

https://piefed.social/c/[email protected]/p/2152375/map-reconstructing-london-in-the-13th-century-ad

This link above work?

Here's the image anyway

F-droid themselves gave an update in April:

https://f-droid.org/en/2026/04/03/twif.html

If you’ve been holding off updating Syncthing-Fork we have two pieces of news for you. First, the original dev continues to collaborate still, we know this was a pain point back then. Second, we’ve just added BasicSync, A simple app for running Syncthing, which just controls Syncthing’s running behaviour as hands off as possible, while the original service hums in the background.

So it seems since the handover things have settled but there is also a new fork which takes a more bare-bones approach.

I see this with flatpaks, the solution might be to grant permission to the app to the part of the filesystem your dragging from with flatseal/cmdline.

HOWEVER I do think the desktop is missing a pop-up which offers to do this for you when it happens. This is how android does it when an app needs access outside its own files, you just get a prompt to allow it.

This is the sandbox future - it's safer and you can trust that apps can't go snooping around your system but users shouldn't need to fiddle with perms all the time to get stuff done.

Gopher guarantees readers that there will never be anything other than text and media served on a site. They don't have to trust the publisher, the protocol enforces it.

The contention is that Mattermost say it's licensed under AGPL but then they add conditions which are incompatible with that license. So it seems they want to give appearance of AGPL but not give the actual rights that come with it. So therefore it's not AGPL.

Hedy is an open source programming language that is broken into levels for easy learning. As you progress the language gains more capabilities, so they are never overwhelmed with too much

In contrast to block based languages like scratch its goal is to leave students ready to switch to Python by the end.

Each level has small tasks to complete so you can tackle it piece by piece and get a sense of progression.

https://hedy.org/

There was a moment in time where maybe it was qmail:

https://en.wikipedia.org/wiki/Qmail

Ten years after the launch of qmail 1.0, and at a time when more than a million of the Internet’s SMTP servers ran either qmail or netqmail, only four known bugs had been found in the qmail 1.0 releases, and no security issues.

More on how it was accomplished:

https://blog.acolyer.org/2018/01/17/some-thoughts-on-security-after-ten-years-of-qmail-1-0/

This is the meat of the headline:

For example, the Anthropic-claimed 181 Firefox exploits ran with the browser sandbox turned off and the FreeBSD exploit transcript "shows substantial human guidance, not autonomy." 

Additionally, the "'thousands of severe vulnerabilities' extrapolates from 198 manually reviewed reports. The Linux kernel bug was found by Opus 4.6, the public model, not Mythos," Devansh said.

Another researcher, Davi Ottenheimer, pointed out that the security section (Section 3, pages 47-53) of Anthropic's 244-page documentation "contains no count of zero-days at all. With no CVE list, no CVSS distribution, no severity bucket, no disclosure timeline, no vendor-confirmed-novel table, no false-positive rate."

Ottenheimer likens it to "the ending of the Wizard of Oz, a sorry disappointment about a model weaponizing two bugs that a different model found, in software the vendor had already patched, in a test environment with the browser sandbox and defense-in-depth mitigations stripped out."

Parliament itself recommends VPN use for its members:

Labour's Lord Knight acknowledged that VPNs could "undermine the child safety gains of the Online Safety Act" but warned that age-gating the apps could be "extremely problematic". He said:

"My phone uses a VPN, following a personal device cyber consultation offered by this Parliament. VPNs can make us more secure, and we should not rush to deprive children of that safety."

We’re also making it possible to add alt text for profile pictures and headers now, making your profile more accessible for blind and visually impaired users.

That's good!

The EFF have a page on this, setting out the threats:

https://www.eff.org/wp/unintended-consequences-16-years-under-dmca

...which is mostly a link to:

https://www.eff.org/files/2014/09/16/unintendedconsequences2014.pdf

...whose summary reads as follows.

The “anti-­‐circumvention” provisions of the Digital Millennium Copyright Act (“DMCA”), codified in section 1201 of the Copyright Act, have not been used as Congress envisioned. The law was ostensibly intended to stop copyright infringers from defeating anti-­‐piracy protections added to copyrighted works.[1] In practice, the anti-­‐circumvention provisions have been used to stifle a wide array of legitimate activities. As a result, the DMCA has become a serious threat to several important public policy priorities:

The DMCA Chills Free Expression and Scientific Research.

Experience with section 1201 demonstrates that it is being used to stifle free speech and scientific research. The lawsuit against 2600 magazine, threats against Princeton Professor Edward Felten’s team of researchers, and prosecution of Russian programmer Dmitry Sklyarov have chilled the legitimate activities of journalists, publishers, scientists, students, programmers, and members of the public.

The DMCA Jeopardizes Fair Use.

By banning all acts of circumvention, and all technologies and tools that can be used for circumvention, the DMCA grants to copyright owners the power to unilaterally eliminate the public’s fair use rights. Already, the movie industry’s use of encryption on DVDs has curtailed consumers’ ability to make legitimate, personal-­‐use copies of movies they have purchased.

The DMCA Impedes Competition and Innovation.

Rather than focusing on pirates, some have wielded the DMCA to hinder legitimate competitors. For example, the DMCA has been used to block aftermarket competition in laser printer toner cartridges, garage door openers, videogame console accessories, and computer maintenance1 services. Similarly, Apple has used the DMCA to tie its iPhone devices to Apple’s own software and services.

Self-hosting anything that is deemed "content" openly on the web in 2025 is a battle of attrition between you and forces who are able to buy tens of thousands of proxies to ruin your service for data they can resell.

This is depressing. Profoundly depressing.

Sigh

Grateful the SFC has got users' backs!