ilmagico

@ilmagico@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Windows Defender Anti-vitus Bypassed Using Direct Syscalls & XOR Encryption⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

According to the research published by Hackmosphere, […]

I cannot find a link to the original research, anybody has the link to the original research?
⁨Comment⁩ on ⁨Failure Has Many Fathers at Apple Right Now.⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

Some of Apple’s struggles in AI have stemmed from deeply ingrained company values—for example, its militant stance on user privacy, which has made it difficult for the company to gain access to large quantities of data for training models and to verify whether AI features are working on devices.

So, Apple is behind in the AI race at least partly because they’re trying to do it more responsibly and more respecting of their users. I don’t really like Apple, but I guess I’m starting to like them more… a bit more. tiny bit. but still.
⁨Comment⁩ on ⁨Teardown Of A Scam Ultrasonic Cleaner⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Few years ago at work, people were using them to clean electronics after soldering, etc. but once, they did it on a board with a MEMS device, a gyroscope and accelerometer chip. Took them a while to figure out while none of them worked until they narrowed it down to the ultrasonic cleaner…
⁨Comment⁩ on ⁨Do you dislike your dependency on Android? To the rescue comes Mobile Linux "PostmarketOS" - Funded via Donations, Focus on Reliabilty for 2025⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
While I’m a fan of GrapheneOS, I think it could still be considered “tied to Google” both due to it being based on Android, and also because it only runs on Google Pixel phones. Graphene focuses more on security, then on privacy, but not so much on reducing our dependency on Google’s software and/or hardware.
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
You’re right, I thought I remembered that article giving actual figures but instead it just handwavily says they didn’t sell many.

So, here is one that actually quotes a number, 3% of the whole iPhone lineup: macrumors.com/…/iphone-13-mini-unpopular-march-qu…

And another: cultofmac.com/…/iphone-13-mini-makes-up-a-tiny-pe…

And another, this one says 5% for some reason: notebookcheck.net/iPhone-13-Mini-sales-continue-t…

Either way 3% - 5% is a small number for Apple (or Samsung, or…) which might not justify making a small phone, but in absolute numbers, thats actually a lot of people! A smaller manufacturer should definitely be able to profitably fill this niche…
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Yeah, sounds like they improved quite a bit, I might consider it, thanks! Still, lack of 5G means not so future proof
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
The old jelly pro had a decent modding community, and I definitely was able to unlock the bootloader and root it, though not sure about degoogling.
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
There is. The screen is smaller, but the actual phone is bigger 🤦‍♂️
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
They can just make them a little thicker, but still usable with one hand.

Really, it’s not a technical problem, it’s a marketing problem (i.e. not enough demand, unfortunately).
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
As a lover of small phones, unfortunately that’s the truth. Apple tried a couple years ago with their iPhone mini and sold very few. Still, there should be enough of us that maybe some smaller phone manufacturers could fill this niche.

And maybr make it fully unlocked and repairavle, replaceable battery, etc. while they’re at it.
⁨Comment⁩ on ⁨Why can't we go back to small phones?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I have their old Jelly Pro, awesome tiny phone, replaceable battery, fits easily into any pocket, was my daily driver for a few months, but then again, it’s just a bit … too tiny. Also, battery life sucked, camera quality forget it, speaker not loud enough, low res screen, etc. I’d be curious if they improved on these things with this new version.

Still, one thing is still missing from the specs is 5G support. I mean, 4G is plenty fast, but not very future proof, carriers are starting to shift more towards 5G, 3G is already being phased out, and it’s just a matter of time before 4G follows.
⁨Comment⁩ on ⁨US Bill proposed to jail people who download Deepseek⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Always have been, and this is a bipartisan value, heck, it’s common to all political parties of the world.
⁨Comment⁩ on ⁨Embodied Is Actually Trying To Release ‘Moxie’ Robots To The Open Source Community⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
That people who bought it can hopefully continue using it after the money runs out.
⁨Comment⁩ on ⁨Manjaro is experimenting with **opt-out telemetry | Hacker News (More like op-out spying)⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I had a forum account from long ago that I barely use and even I was able to vote … so if you had an account there, give it a try and vote!
⁨Comment⁩ on ⁨Podman or rootless docker?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Was this with podman or rootless docker?

I also would like to switch to rootless, I have some experience with podman and, while I generally like it, it’s not 100% compatible with (rootful) docker, and can have performance issues if you’re not careful, especiallt with certain file systems like btrfs. I wonder if rootless docker is now better than podman, or preferred for some other reason.
⁨Comment⁩ on ⁨REPORT: Arm is sensationally canceling the license that allowed Qualcomm to make Snapdragon chips which power everything from Microsoft's Copilot+ PCs to Samsung's Galaxy smartphones and tablets⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I could be wrong, but I think Qualcomm designs its own chips and only licenses the “API”, so it would be no difference for them.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I was finally able to find some technical detail on passkeys on FIDO website, and yeah, it actually looks like it’s a real improvement over passwords: it’s simple, uses proven technology (public/private keys), and should be much more secure than passwords.

Also, nothing in the “specs” says I need to entrust my private key with the OS or a third party, which is good.

That said, it seems some OS support is required nonetheless, to show the pin / biometrics prompt (or is it?), and on android at least, I’d need to buy a new device with Android 14 to use a non-Google passkey provider…
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I use KeePassXC on desktop and Keepass2Android on, well, android, and sync via nextcloud. They all seem to handle syncing correctly, merging changes made on one side, or showing a notification about a conflict, and KeePassXC can definitely merge the two “conflicted copies” together reliably with a couple of clicks (yes, a no-click solution would be better, I know, but it’s not “manual”). Keepass2Android integrates directly with nextcloud and seems to handle it fine.

The situation can definitely be improved but it’s not so bad for me. Also, two different people should probably use two different database files and not share passwords ;)

Not sure how syncthing handles conflicts, it’s been many years since I tried it.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I use KeePassXC’s browser integration daily and it works pretty well with Firefox (linux), well enough that I’m not complaining, but I cannot compare it with Bitwarden cause I never used it. On Android I use Keepass2Android and works well with autofill, but again, I can’t really compare it.

Something tells me Bitwarden works better, just by virtue of being a commercially supported product, but I have no complaints with KeePassXC & Keepass2Android (KeePassDX works well on android too). Original KeePass desktop client was never great though.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I see, that makes sense and should be more secure, in theory. Thanks for the explanation.

The issue I have is, whether I need to trust a third party with my private key, e.g. Google with Android, Microsoft with Windows, etc. (yes on linux it’s different, but that’s not my only OS).

Also if the private key does get compromised (e.g. local malware steals it), hopefully there’s an easy way to revoke it.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Ok, from a quick search, it seems passkeys rely on some trusted entity (your browser, OS, …) to authenticate you, so, yeah, I’m not sure if Ilike that. The FIDO alliance website is all about how easy, convenient and secure passkeys are, and nothing about how they actually work under the hood, which is another red flag for me.

I’ll stick to old-fashioned, long, secure, randomly generated passwords, thanks.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
From a quick search, Keepass2Android doesn’t have it, not clear if they’re working on it: github.com/PhilippC/keepass2android/issues/2099

KeePassDX similarly has an open issue, not clean when/if it will be implemented: github.com/Kunzisoft/KeePassDX/issues/1421

Good to know about Strongbox on iOS, though I’m on android so no bueno for me.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I don’t use passkeys so I don’t know. Maybe I should research into passkeys, what’s the benefit over plain on (long, randomly generated) passwords?
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
+1 For KeePassXC and the KeePass ecosystem. Yes, you need to sync the database yourself, but you can use any file sharing service you like, e.g. google drive, dropbox… or selfhost something like nextcloud (like I do), which for me is actually a point in its favor.

Based on this news, I think I made the right choice back then when I decided to go with KeePass.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
What do you mean “no cross device support”? KeePassXC supports Win, Mac, Linux and there are iOS and Android apps available…

As for the lack of cloud and requirement to provide your own synchronization, for some (like me) that’s a feature, not a limitation :)