hedgehog

@hedgehog@ttrpg.network

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Selfhosted alternative to Spotify⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Do you only experience the 5-10 second buffering issue on mobile? If not, then you might be able to fix the issue by tuning your NextCloud instance - upping the memory limit, disabling debug mode and dropping log level back to warn if you ever changed it, enabling memory caching, etc…

Check out docs.nextcloud.com/server/…/server_tuning.html and docs.nextcloud.com/…/php_configuration.html#ini-v… for docs on the above.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Your Passkeys have to be stored in something, but you don’t have to store them all in the same thing.

If you store them with Microsoft’s Windows Hello, Apple Keychain, or Google Password Manager, all of which are closed source, then you have to trust MS/Apple/Google. However, Keychain is end to end encrypted (according to Apple) and Windows Hello is currently not synced to the cloud, so if you trust those claims, you don’t need to trust that they won’t misuse your data. I don’t know if Google’s offering is end to end encrypted, but I wouldn’t trust it either way.

You can also store Passkeys in a password manager. Bitwarden is open source (though they did recently introduce a proprietary, source available SDK), as is KeepassXC. 1Password isn’t open source but can store Passkeys as well.

And finally, you can store Passkeys in a compatible security key, like the YubiKey 5 series keys, which can each store 100 Passkeys. This makes them basically immune to being stolen. Note that if your primary interest in Passkeys is in the phishing resistance (basically nearly perfect immunity to MitM attacks) then you can get that same benefit by using WebAuthn as a second factor. However, my experience has been that Passkey support is broader.

Revoking keys involves logging into the particular service and revoking them, just like changing your password. There isn’t a centralized way to do it as far as I’m aware. Each Passkey is only used for a single service, after all. However, in the same way that some password managers will offer to automatically change your passwords, they might develop a similar for passkeys.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Do any of the iOS or Android apps support passkeys? I looked into this a couple days ago and didn’t find any that did. (KeePassXC does.)
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
You have your link formatted backwards. It should be Vaultwarden, with the link in the parentheses.
⁨Comment⁩ on ⁨If I was selling a bag of flower and sugar to a CI who thought it was meth or coke can I get in trouble? How or why when I am selling a legal substance?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Nah, the idea is that anyone not buying it thinks it looks like drugs, not to convince the people buying that they’re buying drugs.

You could also call it “Spice” and make it a blend of different spices, salt, etc…

Either way, all you need is a bunch of people who are all in on the same joke.
⁨Comment⁩ on ⁨Is there any privacy-friendly way to use Facebook on iOS?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
I recommend checking out Friendly Social Browser.
⁨Comment⁩ on ⁨That hurts a little⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I assume this was supposed to say “more noticeable,” not “less”:

but of course for example the difference between 21 and 30 FPS is less noticeable than the one between 231 and 240 FPS
⁨Comment⁩ on ⁨Is it possible to run a reverse proxy only on a specific service or port?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

I made a typo in my original question: I was afraid of taking the services offline, not online.

Gotcha, that makes more sense.

If you try to run the reverse proxy on the same server and port that an existing service is using (e.g., port 80), then you’ll run into issues. You could also run into conflicts with the ports the services themselves use. Likewise if you use the same outbound port from your router. But IME those issues will mostly stop the new services from starting - you’d have to stop the services or restart your machine for the new service to have a chance to grab the ports while they were unused. Otherwise I can’t think of any issues.
⁨Comment⁩ on ⁨Is it possible to run a reverse proxy only on a specific service or port?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

I’m afraid that when I install a reverse proxy, it’ll take my other stuff online and causes me various headaches that I’m not really in the headspace for at the moment.

If you don’t configure your other services in the reverse proxy then you have nothing to worry about. I don’t know of any proxy that auto discovers services and routes to them by default. (Traefik does something like this with Docker services, but they need Docker labels and to be on the same Docker network as Traefik, and you’re the one configuring both of those things.)

Are you running this on your local network? If so, then unless you forward a port to your server on the port your reverse proxy is serving from, it’ll only be accessible from the local network. This means you can either keep it that way (and VPN in to access it) or test it by connecting directly to your server on that port and confirm that it’s working as expected before forwarding the port.
⁨Comment⁩ on ⁨Nintendo Targets YouTube Accounts Showing Emulated Games⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
It doesn’t matter if it’s emulated legally or not. They can issue a takedown for showing gameplay captured from an NES hooked up to a CRT if they want.

A fair use defense has to be defended in court, and it’s not just about whether you’re right but also about whether you can afford to fight.

It’s also not certain that a fair use defense would fly. One of the elements for determining whether fair use is market impact, and I suspect that Nintendo’s lawyers would argue that demoing that their games can be emulated - even if the specific demoed games are not being sold - has a negative market impact, since it makes people who might buy a Switch and a Nintendo Online membership to play the official emulated games less likely to do so.
⁨Comment⁩ on ⁨YSK: You don't own your Kindle e-books.⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

Fun Fact: If you were to rip a Bluray to your computer, you’re legally not permitted to watch that movie if you’re no longer in possession of the disc.

Not sure why you think this.

You can legally rip a Bluray for backup purposes. If you sell or give away the Bluray, you have to delete the backed up copy. If it’s lost, stolen, or unintentionally damaged, you do not.

However, you cannot bypass the DRM to watch it or when you’re creating the backup. This is true regardless of whether you still possess the physical disc.

Decrypting DRM is illegal not based on whether you own the content but because the DRM encryption itself is separately copyright protected.

Bypassing DRM is illegal because the DMCA explicitly prohibits the circumvention of technological measures that control access to copyrighted works, and there isn’t an exemption for personal use, personal backups, or fair use in general.
⁨Comment⁩ on ⁨Its a lot easier these looking at a beautiful person these days and not feeling a bit of jealousy know there is a decent chance they would vote for fascism.⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Just going plain statistics

And completely ignoring demographics.

First, a lot of people didn’t vote, period.

Second, support differs drastically by state. Let’s pretend we’re in 2020, right after the election. Are you in California? If so, a randomly chosen eligible voter has an 88% of having registered to vote. And a registered voter had an 81% chance of having voted. So 29% of people didn’t even vote. If they voted, they had a 34% chance of having voted for Trump. So that’s already reduced the overall chance that an eligible voter voted for Trump to 24%. But if they were younger than 30, that drops from 34% to 25% (overall: 18%). (Under 40? 29% (21%).) Or if they’re Black, Latino, or Asian? 21% (15%).

So if a 20-something Latino caught your eye, then there’s only a 17% chance he, she, or they voted for Trump. (And if you use different pronouns, there’s very little chance you voted for Trump.)

On the other hand, if you’re only into older white people (50+) who’ve been doing better while Trump was president, and you hold that not voting or voting third party is the same as voting for Trump (only a Sith deals in absolutes) then there’s a 61% chance he or she voted for Trump.

At least, I think that’s how those probabilities get combined.

Sources:
⁨Comment⁩ on ⁨How do you deal with it when you download library source code from github and need to change all the header includes to actually be correct?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

Can you configure freetype to go straight into /usr/local/lib and /usr/local/include instead, with no freetype/

Or create a symlink?
⁨Comment⁩ on ⁨How do I avoid enshitification of my keyboard and mouse⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

Now they demand internet accounts to use the features of the keyboard and mouse that I purchased.

What are you talking about? Which keyboard, which mouse, which features, and which “internet accounts” are they requiring?

Also, Logitech still distributes the older software and it still works for the mice that it used to work with. My MX Vertical works with Logitech Options or the new Logi Options+ software, for example.

Did you try using that software with your new peripherals?

You can find the list by device at support.logi.com/hc/…/360024361233--Software assuming this isn’t from their gaming line or something. In that case, go here instead: support.logi.com/hc/en-us/…/360001764393-Gaming

Not only that, have to use wide-open-to-snooping Chrome to adjust the settings. You cannot adjust/use your mouse and keyboard if you just use Firefox.

I highly doubt that the mouse and keyboard cannot be used without Chrome.

Due to security concerns, Firefox did not implement the WebSerial API that’s most likely used to configure your mouse locally. Chrome did. It’s therefore completely reasonable that you would not be able to configure your mouse from Firefox.

That API is also supported by Edge and probably by most Chromium-based browsers, like Brave, the “Ungoogled Chromium,” etc… If you have one installed and it doesn’t work, you can probably change your user agent to trick it into thinking you’re running Chrome as a workaround. Most likely they only tested with Chrome and therefore only say they support Chrome, but don’t actually use any Chrome-exclusive functionality.

This only makes sense if they are planning (or are already) tracking my every move online to sell to advertisers or spooks.

That’s a bit of a leap.

If you use Firefox for browsing and only use this Chrome to run this tool to configure your keyboard and mouse, then even with cross-site cookies and so on unblocked, none of that will be visible from the other browser. So this makes you more isolated, not less. Having it in a browser app instead of a desktop app gives you more protection, not less.

If a company can provide a browser app to do everything a desktop app could, then they can speed up development without having to use something like Electron to distribute their app. And there’s even less friction than Electron because their don’t have to check for updates / require users to install the latest version manually, because they can just always serve the most recent one from the site. As a user, you can probably install the tool locally if you want (it’s likely a PWA) but you don’t have to, meaning you get less software installed on (or worse, constantly running in the background) on your machine.
⁨Comment⁩ on ⁨How do I avoid enshitification of my keyboard and mouse⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
The Keychron K2 and K6 both look solid. Starting at $70 for a Bluetooth/wired mechanical keyboard, RGB backlighting, extra keycaps for Macs / OS toggles… there’s even a hot swappable variant for $10 more (or heck, on sale for $70), option for an aluminum frame… shame they don’t run on QMK.

Oh - turns out they have several keyboards that do run QMK/VIA, like the K6 Pro.

If I used staggered keyboards for anything other than gaming, or if I didn’t already have a wireless gaming keyboard, I’d be considering one.
⁨Comment⁩ on ⁨Question about drive capacity for WD PR4100⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I don’t know that a newer drive cloner will necessarily be faster. Personally, if I’d successfully used the one I already have and wasn’t concerned about it having been damaged (mainly due to heat or moisture) then I would use it instead. If it might be damaged or had given me issues, I’d get a new one.

After replacing all of the drives there is something you’ll need to do to tell it to use their full capacity. From reading an answer to this post, it looks like what you’ll need to do is to select “Change RAID Mode,” then keep RAID 1 selected, keep the same disks, and then on the next screen move the slider to use the drives’ full capacities.
⁨Comment⁩ on ⁨Question about drive capacity for WD PR4100⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
upper capacity

There may be an upper limit, but on Amazon there is a 72 TB version that would have to come with at least 18 TB drives. If 18 TB is fine, 20 TB is also probably fine, but I couldn’t find any reports by people saying they’d loaded 20 TB drives into theirs without issue.

procedure

You could also clone them yourself, but you’d want to put the NAS into read only mode or take it offline first.

I think cloning drives is generally faster than rebuilding them in RAID, as well as easier on the drives, but my personal experience with RAID is very limited.

Basically, what I’d do is:
1. Take the NAS offline or make it read-only.
2. Pull drive 0 from the array
3. Clone it
4. Replace drive 0 with your clone
5. Pull drive 2 (from the other mirrored pair) from the array
6. Clone it
7. Replace drive 2 with your clone
8. Clone drive 0 again, then replace drive 1 with your clone
9. Clone drive 2 again, then replace drive 3 with your clone
10. Put the NAS back online or make it read-write again.
In terms of timing… I have a Sabrent offline cloning hub (about $50 on Amazon), and it copies data at 60 Mbps, meaning it’d take about 9 hours per clone. Startech makes a similar device ($96 on Amazon, that allegedly clones data at 466 Mbps (28 GB per minute), meaning each clone would take 2.5 hours… but people report it being just as slow as the Sabrent.

Also, if you bought two offline cloning devices, you could do steps 1-3 and 4-6 simultaneously, and do the same again with steps 7-8.

I’m not sure how long it would take RAID to rebuild a pulled drive, but my understanding is that it’s going to be fastest with RAID 1. And if you don’t want to make the NAS read-only while you clone the drives, it’s probably your only option, anyway.
⁨Comment⁩ on ⁨Amazon's Monopoly of the tech industry is ruining the US economy⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
This article literally proves their point. When Amazon doesn’t need to compete (because other sites are indexing off their prices) they raise their prices. When they do need to compete (like in the examples OP mentioned) they keep their prices low.
⁨Comment⁩ on ⁨If simulation is possible, we could upgrade reality to 4D⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

There’s nothing about our neural architecture that has “3D” built into the information it can process.

I think we are very much hardwired to innately understand 3d space in an intuitive level.

Is that just based off of something more concrete than what feels right to you? If a neural network on a computer can interact with four dimensional data, why wouldn’t we be able to?

It isn’t as automatic in three dimensions as you make it sound. Based off of the amount of learning and experimentation we do as infants, it seems reasonable to theorize that if a human were to be born in a fourth dimensional realm and to be implanted with some sort of sensory organ(s) that function in the fourth dimension, they would be able to gain an intuitive understanding of that world in the same way that they gain intuitive understandings of this one.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
You can use AI for free on your own hardware.

AI is committing mass theft of copyrighted information and data on a widespread scale, the only way they are going to be able to train their AI models and have been training their AI models are through free information that has been taken from users, people of the world, sold to them by third parties.

By “mass theft of copyrighted information,” what do you mean? Who had the copyrighted information but no longer has it? Do you mean copyright infringement? If so, then you should look up “fair use” and keep reading until you understand why they think it’s applicable to their use case.

And by “data that has been taken from users,” do you mean by users who agreed to terms of service allowing the use or sale of their information/contributions to the site, generally so they could use a site for free?

Do you think that receiving a service has zero value, or that providing that service has zero value? If so, then why did all of those people use those zero value services in exchange for their information?
⁨Comment⁩ on ⁨How would I find my phone if I didn't have a phone to find my phone with?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Other people have computers - friends, family, etc… Libraries, hotel and apartment lobbies, community centers, etc., frequently have them available for free use.
⁨Comment⁩ on ⁨DuckStation Creator Considers Shutting Down Emulator Amid License Change⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
100% agreed. Nobody’s going to care about someone stealing his source code if they don’t know about it.
⁨Comment⁩ on ⁨DuckStation Creator Considers Shutting Down Emulator Amid License Change⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

If you are not a copyright holder, then you are not in a position to make any demands. I find it especially ironic, considering when the GPL was actually violated on multiple occasions, even as recently as a few months ago, nobody ever takes issue with that.

Ironic that he says he understands licensing but doesn’t understand that, if you’re not a copyright holder, you don’t have standing to do anything about those violations. The Violations of GNU Licenses page states that if you see a violation, you should confirm the violation, collect as many details as you can, and then:

Once you have collected the details, you should send a precise report to the copyright holders of the packages that are being wrongly distributed. The GNU licenses are copyright licenses; free licenses in general are based on copyright. In most countries only the copyright holders are legally empowered to act against violations.

I remember reading about someone attempting to challenge that by suing for the rights that should have been conveyed to them by the infringer respecting copyright, but I wasn’t able to find anything on it. I did find references to people who were partial copyright holders being found to not have standing due to not having sufficient ownership to make a claim, though - see the outcome of sfconservancy.org/…/vmware-lawsuit-faq.html
⁨Comment⁩ on ⁨Existing California solar customers may get blindsided with net metering cuts⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

Sure, but if everyone does it then it wouldn’t work (no one would be drawing excess when the solar is at peak)

If everyone did it then electric companies could prioritize investing in batteries and capacitors and further reduce their reliance on fossil fuels.

If everyone did it, then even without extra storage capacity, net metering would still work. You don’t get credits for generating energy, just for sending it to the grid. All they have to do is the same thing they already do - curtailment.

Finally, it’s impossible for everyone to be on net metering because NEM 3.0 doesn’t have net metering and NEM 1.0 and 2.0 are only available if you’re grandfathered in.

If oversupply were really a concern, then you’d think the prices during oversupply would reflect that, dropping to basically nothing. They don’t. If they did, then EVs could be charged for super cheap when solar power was flooding the grid.

that sounds a lot like what they are talking about

What they’re talking about is revoking the law that grandfathered people into NEM 1.0 and 2.0 contracts. Keep in mind, the people who purchased solar under NEM 1.0 and 2.0 did so under the presumption that they would be able to stay on it for at least 20 years (because that was codified in law).000

only getting paid some large percentage of the price for energy sent to the grid

NEM 3.0 reduces the way credits are calculated to, on average, 25% of what they were before, and that are not the same as the retail rate.

aurorasolar.com/…/explaining-and-modeling-califor… has some examples. At the same time that electricity from the grid costs $0.44/kWh, solar sent to the grid only returns a $0.05/kWh credit.

5 cents is not a large percentage of 44 cents.

If your neighbor has solar and you charge your EV in the middle of a sunny day when your neighbor is at work, you’re probably using your neighbor’s electricity to do so. That’s gonna cost you $15 and net your neighbor a $1.71 credit.

Under NEM 1.0 and 2.0, if you import from and export to the grid in the same hour, those amounts are netted, even before NBCs come into effect. But under NEM 3.0, you could get billed for importing in the same hour even if you exported far more than you used. If you imported 1 kWh from the grid, you’d need to export 9 kWh to break even.

Again, this doesn’t make sense. Someone is paying $0.44/kWh for the energy you exported, but you’re only getting $0.05 credit for it.

If your solar system has storage, you can strategically export energy to the grid when the compensation is higher. That’s something you can consider when installing your solar system… but that’s not true for the people who are grandfathered into NEM 1.0 and 2.0, who knew they were grandfathered in by law.

And from what I’ve heard, even that doesn’t actually help that much, because the credits don’t apply to the largest part of the bill - they apply to “generation,” not to “delivery.” I haven’t found a reliable source confirming that, but if true it just adds insult to injury - if you pay the added cost to install an intelligent storage system and configure it to return money to the grid when their costs are highest, you get a credit equal to the cost you helped them avoid, but then the credit’s actually only usable on a small portion of your bill. If the calculations are based on avoided cost, you should get those credits even if it means the electric company is paying you.
⁨Comment⁩ on ⁨Existing California solar customers may get blindsided with net metering cuts⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

It doesn’t really seem like net metering is sustainable.

Not sure why you think that.

Say for example someone generates the same amount of electricity they use, in that case they pay $0 for electricity even though the grid has to take the burden of storing the electricity until they use it later in the day.

The grid isn’t storing their energy - it’s sending it to other customers, meaning that non-sustainable, polluting energy sources don’t have to be generated.

The only time that’s not true is when the net load on the grid dips below zero. According to the duck curve graph from the article, it does appear to be very briefly dipping for a very brief time period each day. At that point it could make sense to store the rest, but if the grid doesn’t have storage capacity then any excess is “wasted,” but at that point the grid engages in a process known as “curtailment,” which means it rejects the excess, meaning that nobody gets credit later for energy that isn’t used now.

Also, curtailment is often not because the grid itself is over-supplied, but because specific regions are over-supplied and the grid lacks transmission lines from them to regions where demand is higher.

in that case they pay $0 for electricity

True under NEM 1.0, but NEM 2.0 also includes “non-bypassable charges” - components of pulling from the grid that cannot be offset by what they contribute. Those charges are roughly 5% as far as I can tell, meaning that if they pulled $300 worth of energy from the grid and sent back $300 worth (or more), they’d still owe $15.
⁨Comment⁩ on ⁨Startpage.com is not a default option for Apple users⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Cool, didn’t know that about Ecosia.

Qwant: looks like maybe they used to have a browser that might have been forked from Firefox, but it hasn’t been updated in a while - per the App Store listings, I think they now just have a lightweight search engine frontend.

Brave on iOS appears to have been forked from Firefox on iOS back in 2018-2019, which was news to me. (“Appears to” regards the date; it was definitely forked from Firefox).

the rest of the browser is derived from Firefox

This might be true for some, like Ecosia, but I’m guessing that Brave isn’t pulling changes from Firefox. It seems like they basically used the Firefox codebase as a starting point - and in 5 years of development, a lot can change.

I wasn’t saying that this is generally true for IOS browsers, just that a pretty large part of FOSS ones are

Gotcha, that makes more sense.

One more thing to point out is that your comment reads like they were based on Firefox and that Firefox didn’t use Webkit (but of course Firefox on iOS also uses Webkit).

more like Floorp

Meaning that they’re forks of Chromium on desktop in the same way Floorp is a fork of Firefox on desktop?
⁨Comment⁩ on ⁨Startpage.com is not a default option for Apple users⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

They are based off Firefox for IOS which uses WebKit, but they are still based on the browser like Edge which is based on chromium vs Flakon which uses blink but not the rest chromium

I’ve reread this like 5 times and still have no clue what you’re trying to say.

The person you replied to was technically incorrect - other browsers aren’t UIs on top of Safari, but (outside the EU) they’re all limited to the same browser rendering engine Safari uses, Webkit.

This means that other rendering engines - namely Firefox’s Gecko and Chromium’s Blink, as well as niche engines like Ladybird’s - are unavailable there (outside the EU).

They are based off Firefox for IOS

This is not generally true of browsers on iOS, and might not be true of any.

Flakon

I didn’t know what this was at first - apparently this was a typo for “Falkon.”

which uses blink

The browser rendering engine used by Chromium browsers is Blink, which was forked from Webkit over a decade ago, but I’m not aware of any non-Chromium browsers that use it… including Falkon, which appears to leverage QtWebEngine, which itself uses Chromium.

but they are still based on the browser like Edge

By “based on” do you mean “uses the same branding as and is loosely inspired by?” Because I highly doubt that the iOS codebase is based off the desktop codebase for many Chromium or Firefox-based browsers… they may share some code and assets but I doubt they get to share much more than that.
⁨Comment⁩ on ⁨Startpage.com is not a default option for Apple users⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
It’s a bit unclear what you mean by “Apple” - I’m assuming you mean Safari on both Mac and iOS.

The search engine I use is SearxNg. On Firefox on Mac it was pretty easy to add.

To use it in Safari, I installed the Keyword Search extension from the App Store. It has the option to set a search engine as the default if you don’t use a keyword, so I did that. This works in both Mac and on iOS / iPadOS.

There are other Safari extensions that do similar things, like Customize Search Engine (free). Kagi has an extension that can make Kagi the default search engine, for example (it doesn’t appear that there’s an equivalent for Startpage, though). I haven’t used anything other than Keyword Search for this, though.
⁨Comment⁩ on ⁨YSK there are more than 3 US credit bureaus⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

Each credit reporting agency offers this option, at no charge …

It is highly recommended to lock your credit. Frankly, it should be locked by default. In September of 2017, Equifax announced a data breach that exposed the personal information of 147 million people.

Note that, before this incident, it wasn’t consistently free. I remember it being free to lock, but costing $20 or so to unlock. A law passed in 2018 required credit bureaus to offer freezes and unfreezes (and to fulfill them within certain time frames) for free.

Also note that you might need to look for a “freeze” instead of a lock. Experian charges $25/month for their “CreditLock” service, for example, but they offer a free security freeze.
⁨Comment⁩ on ⁨JPEG is Dying - And that's a bad thing | 2kliksphilip⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Are you seriously asking why a commonly supported 27 year old format doesn’t need a fallback, but a 2 year old format does?