InnerScientist
@InnerScientist@lemmy.world
- Comment on Yet another note taking recommendation needed 3 days ago:
I run wireguard and Android with chrome cause firefox doesn’t support pwa. Did you add it to your home screen?
- Comment on Yet another note taking recommendation needed 4 days ago:
It just works™?
Silverbullet supports working offline as a pwa, just click install on the website and you get a shortcut to the web app that you can use online and offline, open it when your online again to sync your changes to the other devices.
- Comment on Yet another note taking recommendation needed 1 week ago:
Can recommend, work offline and online with PWA support and stored everything in Markdown files for easy migration if you want to change your frontend.
- Comment on SearXNG doesn't load the settings ... 1 week ago:
Did you follow the guide?
- Comment on Head of the Signal app threatens to withdraw from Europe 1 week ago:
Nah i don’t.
- Comment on Head of the Signal app threatens to withdraw from Europe 1 week ago:
I hope more follow, would be funny if “all chat apps have to include a back door” leads to “there are no official chat apps”
- Comment on rootless backup or rootless podman volumes? 1 week ago:
It is expected, the users inside the container are “real” users. They just get offset inside the container and some mapping is applied:
Root inside the container is mapped outside to the user running the container, everything that has the owner “root” inside the container can be read from outside the container as your user.
Everything that is saved as non-root inside the container gets mapped to the first subuid in /etc/subuids for your user + the uid inside the container.
You can change this mapping such that, for example, user 1000 inside the container gets mapped to your user outside the container.
An example:
You have a postgres database inside a container with a volume for the database files. The postgres process inside the container doesn’t run as root but instead runs as uid 100 as such it also saves its files with that user.
If you look at the volume outside the container you will get a permission denied error because it is owned by user 100100 (subuids starts at 100000 and usid inside container is 100).To fix: Either run your inner processes as root, this can often be done using environment variables and has almost no security impact or add --userns keep-id:uid=100,gid=100 to the cmdline to make uid 100 inside the container map to your user instead of root (this creates a new image automatically and takes a while on the first run)
- Comment on xkcd #3148: 100% All Achievements 2 weeks ago:
Bro did not get a degree, he got a whole rotation.
- Comment on Google's shocking developer decree struggles to justify the urgent threat to F-Droid 2 weeks ago:
Theoretically, google could keep that workaround in the code, yes.
Tap for spoiler
Practically it will be gone in 3…2…1…
- Comment on Self-Host Weekly (26 September 2025) 2 weeks ago:
Maybe
- Comment on Public toilets in China demand ad views for loo roll 2 weeks ago:
Wouldn’t people use tissues and cause pipe blockage in the long run?
- Comment on Steady 2 weeks ago:
You could even say they have the stediest vitals of them all.
- Comment on Open-WebUI v0.6.29 release 3 weeks ago:
I don’t like Source-available software, especially when they’ve changed from a more open license to this.
- Comment on Open-WebUI v0.6.29 release 3 weeks ago:
To add to this, “Open WebUI” needs to be included, as is and without modifications in all derivations. The term is also trade marked and as such, cannot be distributed without the trade mark owners approval…
- Comment on Get ready to see ads on your… Samsung refrigerator 3 weeks ago:
it was of course a horrible laggy mess.
So the freezer froze?
- Comment on If I use Caddy for reverse-proxying into another local machine... is my local connection not HTTPS? 3 weeks ago:
There are multiple reasons but the most important one is: You didn’t enable it.
Caddy fully supports https to the reverse proxy targets, though you’d have to get those targets trusted certificates otherwise caddy wouldn’t connect.
The default protocol for backends is http, most of the time this isn’t a problem because:
- The web server runs on the local machine
- The web server runs in containers/vms on the local machine
- or is running in a VM and has a direct virtual connection with the caddy vm
- The connection to the Backend is encrypted with a VPN
- Caddy and the web server are directly connected or connected through an otherwise isolated network
Because https requires certificates that are somewhat difficult to set up for internal servers (and were even harder to get before) the default mostly is just to encrypt on another layer of the stack. Afaik at least.
- Comment on Friends are a bloatware. 4 weeks ago:
- Comment on THIS JUST IN: FBI suspects Kirk was likely targeted, more info to come 4 weeks ago:
- Comment on THIS JUST IN: FBI suspects Kirk was likely targeted, more info to come 4 weeks ago:
Crazy what age does to your body
- Comment on choice 4 weeks ago:
I’ll take two unretard.
- Comment on How to make a Tailscale-like mesh VPN work without the internet? 4 weeks ago:
Something like yggdrasil would wor or a daemon that publishes mdns and connects to known peers.
- Comment on DDR4 costs soar as manufacturers pull the plug — panic buying and stockpiling impact DDR4 spot pricing as supply dwindles 5 weeks ago:
That’ll be 3500, and 2 months of tweaking please.
- Comment on Google's plan to restrict sideloading on Android has a potential escape hatch for users 5 weeks ago:
Then you need a Trusted Third Party, right? Still requires some though on how to prevent that third party from blocking applications they don’t like but I can see how a group of trusted authorities could work.
- Comment on Google's plan to restrict sideloading on Android has a potential escape hatch for users 5 weeks ago:
Doesn’t work, the reason they can expire is to make certificate rotation possible. If an expired ssl certificate is cracked it doesn’t matter because no browser will accept the expired certificate, with your idea the expired certificate just signs an app with the date of 1984 and it works.
Certificates in SSL can’t change the date because that date is signed by a certificate higher in the hierarchy.
- Comment on Practice makes perfect 5 weeks ago:
I’LL PRONOUNCE YOU DEAD MYSELF!
- Comment on The Browser Wasn’t Enough, Google Wants To Control All Your Software 1 month ago:
Yeah that’s their excuse, luckily the law explicitly says that:
(19) Verification by radio equipment of the compliance of its combination with software should not be abused in order to prevent its use with software provided by independent parties.
- Comment on The Browser Wasn’t Enough, Google Wants To Control All Your Software 1 month ago:
You can switch banks you know, it’s not convenient but easier than switching your email.
- Comment on The Browser Wasn’t Enough, Google Wants To Control All Your Software 1 month ago:
It isn’t, now that apple is using that to block installation of third party apps I’m expecting the EU to once again step in.
- Comment on Google will block sideloading of unverified Android apps starting next year 1 month ago:
Does anyone read these or does it just go through ai?
- Comment on Google will block sideloading of unverified Android apps starting next year 1 month ago:
Linux mobile phones won’t have to be ready if smartphones become un-ready.
