still water

While he definitely didn't help Orbán, I wouldn't give him this much credit. News have been crazy over here last week, including stories, like 3 whistleblowers confirming that the intelligence agency was used to try to secure the victory by leaking data from the then opposition (now victorious) party. To me (as a Hungarian) that's a far bigger story than the pathetic dipshit flying over.

I smell AI 😅

Holy shit, this article is garbage... the base premise that Play Services can access anything is true, but so many bad claims.

Google Play Services is a system app on phones that ship with Google services, and is the case on the author's phone too, since he could only disable the app, not delete it. System apps can still be updated separately from the system, if their signature matches the updated version's signature.

Also, I don't think they dedicate enough time to describe just how much data Google gets through your device, like how it logs your location for Google Maps' business popular times indicators and traffic metrics, or how they use all of your data to give you hyper-targeted advertising.

As for microG, it also runs with elevated permissions on most custom ROMs, and for some features (eg. integrity checks) it downloads & runs Google-made programs (eg. DroidGuard) with strong privileges. DivestOS (now discontinued) used to run microG in a sandbox.

There are ways to run Play Services as a normal app if the custom ROM has a compatibility layer for it, like GrapheneOS, where you can selectively enable permissions for Play Services. Of course, if you refuse some permissions, some features will break (eg. refuse SMS/call access and RCS will break), but it's a mostly usable situation.

In Hungarian it says "segglyuk", but that means "asshole". It should be "segg" to match "ass".

It's only backwards because you're looking at it from the outside from the front. When it's in you, the left is on your left.

Also, USB4 can optionally support PCIe tunneling, which is a fancy way of saying it supports plugging more advanced types of hardware in (like GPUs, high-speed network cards or NVMe SSDs) at speeds of up to 40Gbps.

And there is USB4 v2 (not kidding, that's the name) which extends USB4 to up to 80Gbps, but there are no devices that support that yet.

Unfortunately, this is probably because of the apps started using the Play Integrity API, which is a hardware-based attestation and can only be faked in two ways that GrapheneOS isn't interested in:

• you can fake an older device that didn't support hardware attestation yet, or had a broken implementation
• or you can try getting leaked vendor keys and emulate the crypto with those until they get revoked

Last time I checked the Snap Store was proprietary. While you could modify the Snap client, you can't host your own store and you're at the whims of Canonical for which apps you can get.

Meanwhile, both the Flatpak client and server are open, and you could (and some distros do) host your own repo. For example, Fedora has its own repo for Fedora-packaged Flatpak apps alongside Flathub.

I mean... This is kinda close. The "Linux Terminal" app is running a full Debian install in a KVM VM. On the newest version of the app (like on Android beta or on GrapheneOS), you even have a full GUI that you can use.

In theory, we should be able to boot any mainline Linux distro in a VM, if someone writes an app for it, as AVF (Android Virtualization Framework) is just a wrapper around Linux KVM with some restrictions. (for now the built-in app only supports Debian)

This change only brings speed & stability, which is essential, but hard to see for us, end users. The bigger one is going to happen on Thursday, where Lemmy itself is going to be updated. After Thursday's update, any users will be able to block entire instances and see our upvotes, along with many other Lemmy updates.

They most likely check based on User Agent, so you should still be under Windows for them

You can disable the NixOS firewall, install firewalld (or any other firewall solution) and use that if you want.

That depends on your Mac. The older the Mac, the older the version. On most M1 Macs, you can go back even to Big Sur, on M2 it's usually Monterey and so on. It might be different with the Pro/Max/Ultra variants though.

This is the reason I set my phone's language to Irish English... I needed an English language option that uses sane measurements for everything.

I don't know anything about how Firefox is packaged for snap, but snap's "sandboxing" might interfere with getting all fonts.

You might want to try using Firefox without snap (which has some other benefits, especially around startup time) or adding ~/.local/share/fonts (which is where fonts are supposed to be installed for users) to some sort of allowlist.

yes

Oh wow, cool story about Yasuke. Is that where Yakuake got its name from?

Most people dont use dark mode on Linux because most apps look horrible in Linux under dark mode

Among my friends, dark mode users hugely outnumber light mode users, I really don't have any apps that struggle to support it. LibreOffice used to be really bad, but I don't really edit documents anymore, so I don't use it often, but when I do, I don't see issues (although the document background is white, because paper, so the contrast is a bit weird). I'm curious about which apps didn't work for you.

If I were you, I'd wait until Aug 20, when the new Pixels get announched; they might have one with 512GB and you should be able to install GrapheneOS a bit after launch.

Strange that google is the only option for the only "secure" operating system.

The have their reasons: https://grapheneos.org/faq#future-devices

Hey, do you know what is Ring Level minus One ?

I know you're only trolling here and I'm feeding into it, but you nerd sniped me just right to explain why your question is stupid on multiple fronts.

First of all, "Ring -1" is the hypervisor, at least on virtualization-capable devices (which modern Pixels are), and the hypervisor will be Linux's KVM in this case, which is open source and compiled by the Graphene team as part of the kernel from source.

Secondly, Arm (which is the architecture basically all phone chips use, including Pixels) has a slightly different model of security, where apps are Exception Level 0, the OS is EL1, the hypervisor is EL2, and the "secure monitor" (or management firmware) is EL3 (and is probably what you were trying to refer to).

So yeah, I don't think you know what "Ring -1" is. At least not enough to warrant a snarky comment.