Zangoose

@Zangoose@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Finally, an optimal monitor configuration!⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I mean I don’t see any reason why a Wayland compositor couldn’t support it, it’s pretty cursed either way though.

There’s a screenshot in one of the other comments in this thread
⁨Comment⁩ on ⁨Finally, an optimal monitor configuration!⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
X11 already supports this lol
⁨Comment⁩ on ⁨oopsie poopsies⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I think they’re talking about the image
⁨Comment⁩ on ⁨Lead Lemmy developer dessalines@lemmy.ml Appears to Have Had Their Account Compromised After Moderation Actions Raise Serious Concerns⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

The code is open source. Nothing is obscured.

“Security-by-obscurity” is a phrase used for any measure that is useless once you know how it works. In this case it’s hoping that a troll doesn’t know about the specific hardcoded rules. None of the rules in PieFed actually work if you are at all aware of them.
⁨Comment⁩ on ⁨Lead Lemmy developer dessalines@lemmy.ml Appears to Have Had Their Account Compromised After Moderation Actions Raise Serious Concerns⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Thanks for clarifying, I guess I misremembered the shadowbanning part. I think I was mixing together the fact that reputation isn’t really transparent (users’ reputation can change by even attempting to upload an image that gets flagged, and the vague error means they’ll probably try multiple times without realizing they’re being moderated) and the fact the communities can autoban any user whose global reputation is low enough.

I still think the security-by-obscurity approach to moderation is inherently flawed though, and I hate to imagine how the dev approaches actual account security if that’s their approach to moderation.
⁨Comment⁩ on ⁨Lead Lemmy developer dessalines@lemmy.ml Appears to Have Had Their Account Compromised After Moderation Actions Raise Serious Concerns⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Honestly I would consider hardcoded shadowbanning just as bad.

Just because I’m closer to agreeing with the PieFed dev’s opinions a little bit more doesn’t mean that I’d support shadow banning someone because the trivially-evaded checks caught a false positive in the crossfire. Piefed’s auto moderation/social scoring is pretty much textbook definition security-by-obscurity. The second anyone knows how it works, it’s useless. It will pretty much exclusively catch people who just wanted to post a harmless meme or something.

At least (for now) Dessalines isn’t hardcoding his tankie beliefs into Lemmy’s source code.
⁨Comment⁩ on ⁨Lead Lemmy developer dessalines@lemmy.ml Appears to Have Had Their Account Compromised After Moderation Actions Raise Serious Concerns⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
There were a few, not exaustive since it’s been a few months since I looked through the source code, some of this might have changed and there’s also a few other checks that I’m forgetting:
- 4chan screenshots (specifically anything that OCR identified as having “Anonymous #(number)” in it) were banned. Honestly this one is fine as a toggle but I think for a while it was just on by default in the code
- any community that had specific words in it were blocked at instance level. I think “meme” was there, a few swear words, and a few carryover reddit meme community names (196, I think nottheonion was also there, anything with “shitpost” in the name, etc.)
- There’s a hidden karma/social credit score based on a user’s interactions and net total karma hidden from them that gets impacted by any moderation actions, including some of the automated hardcoded ones (e.g. even trying to upload an image that gets flagged by the hardcoded checks)
- users with a low enough net score get shadow-banned without being informed
⁨Comment⁩ on ⁨Lead Lemmy developer dessalines@lemmy.ml Appears to Have Had Their Account Compromised After Moderation Actions Raise Serious Concerns⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Tbf Piefed also does have opinionated moderation literally hardcoded into the source code.

It’s pretty easy to modify since it’s python and not rust, but still not great
⁨Comment⁩ on ⁨Apple introduces Macbook Neo - cheaper Macbooks starting at $599⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

I’m comparing hardware to hardware, not artificial Apple software restrictions.

That’s great but hardware doesn’t exist in a vacuum. With an ecosystem as locked-down as an iPad’s you can’t just ignore the software. It’s not like you’ll ever be able to uninstall it because it’s intentionally locked down, unlike a macbook which allows installing apps and even modifying the bootloader to boot into a different OS.
⁨Comment⁩ on ⁨Apple introduces Macbook Neo - cheaper Macbooks starting at $599⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Ok but if you want to do actual work on it then these things absolutely do not cancel each other out because you have to spend $270 on a keyboard/trackpad regardless, and now have to use a clunky touchscreen on your 13 inch tablet half the time.

Yes, the M4 is much faster and it is probably only stupid product segmentation keeping it on the iPad. But the reality is, iOS/iPadOS puts OS-level limits on how much you can even take advantage of that hardware even if there is an iOS app for the thing you want to do
⁨Comment⁩ on ⁨Ladybird Browser adopts Rust, with help from AI⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
That’s fair, I assume most people probably aren’t following ladybird that closely so it’s easy to miss. It just bothers me because shrugging off small individual problems and ignoring a bigger trend is arguably what let people like DHH get a platform in the first place.
⁨Comment⁩ on ⁨Ladybird Browser adopts Rust, with help from AI⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
How many times do I have to give him the benefit of the doubt though?

First it was the “using they in documentation is political ideology” Github issue, then he publicly defended DHH when people called him out for being a white supremacist, he implied tech companies are discriminating against white people with diversity policies, and he tweeted that he hopes young people will carry on Charlie Kirk’s legacy.

If one or two of these things happened in isolation, I could maybe understand giving him the benefit of the doubt as a non-American (for that last one) non-native English speaker. But all of these things taken together? I personally don’t think I can look past that.
⁨Comment⁩ on ⁨Ladybird Browser adopts Rust, with help from AI⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
All things considered the way they’re approaching the migration is fine enough - they’re only moving specific portions at a time, they’re not stopping C++ development, and they’re making sure it doesn’t introduce regressions. Adopting a memory-safe language for something like a browser makes sense because it completely eliminates that class of vulnerabilities.

The problem is the way they’re approaching the code itself. From their wording, it sounds like they’re relying on AI heavily for both writing and reviewing the code. Rust has a steeper learning curve than most languages and is very different from C++. They even mention in the blog that their current Rust code looks like C++ code ported over. If they don’t take the time to actually learn Rust before adopting it, it’ll just lead to security logic issues that their AI couldn’t catch because C++ and Rust don’t always behave the same way. And that’s completely ignoring all of the other ethical/technical issues with AI
⁨Comment⁩ on ⁨Why all Animes are made in Japan?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Not sure about link click but To Be Hero X was co-produced between a Japanese anime studio (I forget which one) and Bilibili. The source material is game franchise, so the line is definitely blurry there. But since Cyberpunk Edgerunners generally counts as anime despite being published by an American company and based on a Polish game, I’d say these can fall under the umbrella also.
⁨Comment⁩ on ⁨Why all Animes are made in Japan?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
To be hero X is another really good Chinese one
⁨Comment⁩ on ⁨AI agent writes blog post to shame a developer after he refused it's code contribution.⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Presumably just for transparency in case humans down the line went looking through closed PRs and missed the fact that it’s AI.
⁨Comment⁩ on ⁨Nova Launcher gets a new owner and... ads⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Not just designed, lawnchair is a fork of the AOSP launcher which is why they look so similar. It’s also partially why they have a comparatively slow development cycle, because they spend a lot of effort rebasing whenever AOSP’s launcher has significant changes.
⁨Comment⁩ on ⁨Nova Launcher gets a new owner and... ads⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Lawnchair doesn’t have a paid version, it’s open source
⁨Comment⁩ on ⁨Going to a Protest? Don't Bring Your Phone Without Doing This First⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

They can also use live location data in an emergency situation,also using a court ordered subpoena.

What qualifies as an “emergency situation”? I imagine that definition could be stretched pretty thinly
⁨Comment⁩ on ⁨Samsung reveals first tri-fold phone⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
It’s worth noting that support for pixel 10s is currently in alpha and incredibly buggy
⁨Comment⁩ on ⁨Recommend that new users join geographically local instances⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
That’s exactly my point. Giving away the exact town you live in to strangers on the Internet is not good advice to give people generically.
⁨Comment⁩ on ⁨Recommend that new users join geographically local instances⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Maybe I could see country or even general region, but town?? Why would I want to publicly give away my location like that?
⁨Comment⁩ on ⁨LineageOS 23⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
They haven’t released Android 16 QPR1 to AOSP yet, even though it came out on Pixels at the beginning of September. Normally the gap is ~1-2 days.

So yeah, a lot of custom rom devs are pretty bleak right now and honestly their concerns are pretty warranted given that it’s Google we’re talking about.
⁨Comment⁩ on ⁨Who's your favorite female protagonist in a video game? (Add pic of character in response)⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Image
⁨Comment⁩ on ⁨⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Relevant XKCD: xkcd.com/1683/
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Boruto is like 95% “anime canon” that isn’t technically filler but doesn’t move the actual story along at all
⁨Comment⁩ on ⁨Best New Anime to Watch (Summer Season 2025) - IGN⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:

The Promised Neverland? I thought it only has one season.

It only has one season. It would really be a shame if they made a season 2 and ruined it right?
⁨Comment⁩ on ⁨Is Matrix cooked?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Didn’t know it only applied to UWP apps on Windows. That does seem like a pretty big problem then.

I don’t still have a Mac readily available to test with but afaik it is any application that uses Apple’s packaging format. It could also be that it needs to be in the “Applications” folder, but I’m almost certain it isn’t an App Store exclusive feature.
⁨Comment⁩ on ⁨Is Matrix cooked?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
I mentioned Linux specifically because something like this is the hardest to set up on Linux. I (wrongly) assumed that since you were complaining about it not existing, you were on a platform where setting these permissions up isn’t straightforward. App-specific file-acess permissions are on MacOS out of the box as a configurable setting for all applications (in the system settings menu), and I’m pretty sure Windows 10/11 has something similar in its settings menu as well.
⁨Comment⁩ on ⁨Is Matrix cooked?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Not sure what platform you’re on but on Linux flatpak can limit access to files, and things like AppArmor can do that for any native app as well (though it can be pretty tedious to configure)