entwine @ entwine @programming.dev

Posts

0

Comments

29

Joined

6 days ago

Don't knock it till you've tried it. History has shown that a system package manager is a very poor solution for distributing software. Anyone who disagrees has never been involved in shipping and/or supporting software on Linux. Nix tries to solve this one way, immutable distros solve it another (IMO much simpler) way.

You can still install software using a traditional package manager via podman or docker. Toolbox and Distrobox streamline this for the common shell use-case by automatically doing things like mounting your home directory, using host networking, etc so it looks/acts like a regular shell. Anything you install in the container works exactly as it would on the host, except you can completely wreck it without breaking your host (just don't rm -rf your home directory, or anything shared)

Immutability is the future of the Linux desktop.

I said you won't be able to break it, but an update can. Bazzite is an open source project with limited resources, and shit happens from time to time.

However, in cases like that you can always fix it by either doing a rollback (one liner: sudo rpm-ostree rollback), or by simply choosing the previous working version in grub while the machine is booting using the arrow keys.

use Bazzite, or any other distro that calls itself "immutable". That's Linux speak for "it just works, and you won't be able to break it even if you try". There are other immutable distros, but Bazzite is the one most likely to have everything you need out of the box.

Also, look at flathub.org and check if the software you need is on there. If it is, then congrats, you're on the easy path. If not, you might need to use the command line to install what you need from another source.

If any platform actually needs age verification, it's Roblox. Fuck this "estimation" bullshit.

(I'm not the guy you original replied to btw)

I think I don’t need to be overly concerned with security like that, right?

There's no way to know for sure, as each vulnerability is different. There could be bug that allows remote code execution, or something crazy like that. If you have ssh keys on your phone for accessing your personal infrastructure, I wouldn't risk it. Even if you're not someone worth targeting individually, bad actors try to exploit vulns en-mass to see what sticks. I'm sure you're no stranger to random bots hitting your webservers looking for wp-admin endpoints 24/7.

I'm a software dev, not a security researcher, but my perspective gives me insight into how sloppy and irresponsibly most software is written these days. I sure as hell don't trust

<random-OEM>

lmao this is a targeted campaign to fuck with you. Look at people in your circle of family/friends/acquaintances/enemies and you'll find your suspect. Real viruses don't do anything as remotely entertaining as this, they just steal your passwords/crypto/etc, ransomware your files, or turn your PC into a botnet for internet spam or mining.

Download a fresh install of debian, flash it onto a usb, and do a reinstall. Use different root/user passwords that you're certain nobody knows, and ensure you lock the computer whenever you step away. Also, obviously, be careful with what software you're installing.

Lol imagine getting filtered this hard, and publicly posting it. Some people have a humiliation fetish I guess.

MSVC redistributable dependencies are also a problem on Windows. If you try to run an app built with a version of the MSVC runtime that's not installed on Windows, you'll get an error telling you to install it. Microsoft doesn't ship all possible versions of that with Windows, so users are on the hook to install it themselves (if it's a big publisher though, they'll typically include it as part of a installation wizard, and Steam handles it automatically behind the scenes).

make sure it’s compatible with other software you have

Not sure what you mean by this, as wine software is contained within a wine prefix. If you have dependency conflicts within a wine prefix, you can just create a separate one. Apps like Lutris make this easy to do via a GUI, and they even have community sourced installer scripts for well-known software that automates installing dependencies (like MSVC, fonts, or other bullshit you'd normally have to get through something like wine-tricks).

Lineage OS updates aren't going to fix firmware vulnerabilities, which would need to be developed for each phone individually. That's why guaranteed security updates from the OEM are so important, because they're usually the only ones equipped to provide them. If you don't care about security that much though, it's a good way to save money and prevent the device from going to a landfill. At the very least, it could be used for gaming or some other low risk utility. I have an ancient LG G5 with LineageOS connected to a TV, which I only use for streaming video. I even blocked it from accessing the rest of my LAN just in case.

he will become hostile and defend his position until you either leave or he bans you from any community he has control over. I’ve been down that road a couple times.

Just proceed with caution.

So you hold a grudge because they banned you for something, and now you're passive-aggressively spreading FUD, even as you recognize its superior security. What do you even mean by proceeding with caution? Be careful you don't get banned from a chat server, or something more vague and nefarious? This kind of petty mud slinging is the bane of open source software's existence everywhere.

Best secure Android experience. Certainly not the best from a usability standpoint, but I digress

Unrelated to the above, but what do you mean by this? Graphene is by far the most usable custom ROM I have ever used. Everything just works out of the box, including Google Play and banking apps (at least the ones I use) without compromising on privacy or security. The only times I've encountered a broken app, I could always fix them by disabling the hardened allocator for that app in the app info dialog, which does technically compromise security a little, but is a low risk trade off in most cases.

Definitely GrapheneOS. It's the best Android experience you can have right now, hands down. Better than stock Android, and it may not be around forever. Take advantage while you can. $500 is a small price to pay for the peace of mind.

The outcome is the same, but the meaning is scarier. In the first case, it's a corrupt/incompetent politician being corrupt/incompetent, which is nothing new (Bush is the same redneck dipshit who purposefully lied to justify a war with Iraq)

This time, it's a competent judge outright refusing to enforce the law even after he himself found them unambiguously guilty of breaking it, and even found they destroyed evidence to try to avoid getting caught. The rot has crept into the judiciary, which is supposed to be America's final line of defense against corruption and injustice.

I think I'm going to start investing in crypto, or maybe launch some AI-powered botnet to scam vulnerable grandparents out of their life savings. The age of honesty and integrity is officially dead.

Honestly, there's probably a bigger market for a working printer than for their laptops.

To be fair, Microsoft's slap on the wrist came from Bush forcing the DOJ to settle. In this situation, it's a spineless judge refusing to enforce the law in the first place.

Another reason to use Linux is to spare yourself the Windows CMD prompt syntax

Rug pulling a blog service? Seriously? Any first year student can make something like this. The name/brand is probably the only part that's remotely valuable, and a rug pull is a good way to fuck that up.

Nah, nobody gave a shit about privacy back then, just like they don't give a shit about it today. The problem was just that most people "understood" what spy glasses were because they'd seen them in movies, and the media just stoked the flames of controversy because it led to easy clicks.

Walking into a public bathroom with glasses like that on your face seems creepier than walking in with a phone in your hand, even though it's much easier to discretely record with the phone (and in much higher quality).

Although Meta's case is different. If I see someone with those glasses on, I may give the individual the benefit of the doubt and trust that they're not recording me, but I sure as shit am not giving Meta the benefit of the doubt and trusting that they're not going to record without the user's knowledge/consent. They wouldn't let a chance to capture free data pass them by.

With old hardware, beggars can't be choosers. I get the appeal of the nouveau driver, but if your goal is to save a machine from the landfill, it's probably the better compromise to use the proprietary driver and keep it actually competitive for as long as possible. Those 900/1000 series cards are still plenty powerful today, even if they can't quite do AAA gaming anymore.

Bazzite. Every other recommendation is wrong.

Bazzite is "immutable". What that basically means is that you won't be able to break it even if you try. And if it does break somehow (for example, because of a bad update), you can fix it by doing a rollback, which is literally a one-line command: sudo rpm-ostree rollback

Sure, there are other immutable distros out there, but Bazzite is probably the most popular right now, and it ships with Nvidia drivers so it's ready to go for 99% of people with no changes necessary.

As a former glasshole, I'm being retraumatized all over again.

Google Glass did nothing wrong!