DarthYoshiBoy

My kids have child phones on Google Fi which allows me to shut down their Internet with a couple of button presses. Are they simple devices if I geofence their internet access off while they're in school? I somehow doubt it, but it does meet the definition as you've stated it, which in turn means it is as @originalucifer said, not exactly cut and dry.

Attributes only apply to the directory’s own allocation table and child directories have their own tables.

Thanks. It has been a while, but I was fairly certain that this was the case, glad to have the confirmation. 👍

If you'd like to look into it further. the +i flag in chattr is setting an attribute making the file (everything in Linux is a file, so yes this even means directories) immutable. When a file is immutable, it isn't possible to change the ownership, group, name, or permissions of the file, nor will you be able to write, append, or truncate the file.

It's been a while since I've used it, but I don't believe it's possible to have an immutable directory where you can still modify the contents therein, but I may be misremembering that. It would seem unlikely since adding content to the directory should require that you modify the links for the directory, which shouldn't be allowable with an immutable object?

It's possible that the +a chattr attribute may achieve what you'd prefer. I believe that flag will make it so that files (and again, everything in Linux is a file) can be created and modified, but never deleted. I've actually never used this one, but I can foresee how this still may not be ideal for your wishes since updates to games may expect to be able to delete old content which would be thwarted here. 🤷

I accidentally misclicked this article and reported it as spam while I was trying to report some prescription drug spam. Hopefully it's not adversely affected. I wish there was an Undo on that action.

You or I might, but companies have a constant flow of new middle management who want to make their KPIs this quarter and will shove their own mother in front of an oncoming train to get there. Corporations don't learn, doubly true for corporations like Apple who have basically captured an audience within their walled garden, the motivation is always all the money now, not some money consistently forever.

Even when you have a company like Samsung with their exploding battery fiasco. Sure they have protections now in place against designing a new product with bad batteries, but give it some time and they'll do it again when a middle manager (who wasn't there the first time) ignores the recommendations of their engineers and the company guidelines so they can save $0.001/phone by using a slightly inferior battery design and net that neat bonus for keeping costs down. It will always happen.

I mean, it's worked for exceptionally well for C. Montgomery Burns, so why not this other cartoon miscreant?

Not for all the money in the world could you convince me to touch him, let alone what you propose.

I'm now deeply curious if it works for your use case. Hit me back if you give it a go and let me know if it works out or not.

If gaming with Nvidia hardware is your primary concern, then maybe Bazzite would suit you. It's based on Immutable Fedora, with tweaks to give it a SteamOS like experience. It offers Gnome or KDE for the desktop, and supposedly has everything dialed in for gaming. I've heard a bunch about it doing great with Nvidia cards and gaming in general, I suspect that you'd be able to do everything else you might need via the desktop it provides, but I have no knowledge of how it handles multiple monitors so maybe therein lies the fatal flaw.

If you use a fancy official VPN client from Mullvad, PIA, etc, you won’t need this since most clients already have a kill switch built in (also called Lockdown Mode in Mullvad).

According to the researchers...

The result of this is the user transmits packets that are never encrypted by a VPN, and an attacker can snoop their traffic. We are using the term decloaking to refer to this effect. Importantly, the VPN control channel is maintained so features such as kill switches are never tripped, and users continue to show as connected to a VPN in all the cases we’ve observed.

Killswitches are insufficient protection since the TunnelVision attack never disables the VPN tunnel. The TunnelVision attackers are instructing your physical layer connection to route everything through a node of their choosing rather than killing your VPN connection, and since the VPN connection never drops, a killswitch will never engage. The VPN stays up, thinking it is doing a good job, but in the meantime your network interface has been instructed to route no traffic through the VPN and instead route everything to the location of the attacker's choosing. I have heard that a couple of VPNs think their clients are not vulnerable here, but I haven't seen independent conclusive proof one way or the other yet.

I suspect that your "Solution" also fails to mitigate the issues in TunnelVision because it allows LAN access to the physical interface. In a TunnelVision attack the hostile has to be on your LAN (or rather the same LAN you are on since I suspect that "The coffee shop wi-fi" is the more likely network for an attack like this) already, so if they're going to tell your interface to route traffic somewhere else, in all likelihood that somewhere else will already be in the same LAN you are and their exfiltration will be allowed under your configuration.

The best that the SMS protocol can tell you is whether the message was delivered and even that isn't a requirement. SMS has delivery receipts, it does not have read receipts.

I don’t have a problem with people who are okay with it getting it.

My apologies if I implied that you did, that was not my intent.

But they aren’t really an alternative to, say, YouTube. [...] I just would prefer to pay for them with money rather than with data.

Sorry, that was my point though, without the tracking, you're not getting YouTube, or most of Google's services as we know them. The Google secret sauce is that they know enough about their users to curate an experience per user. That's largely why competitors to Google services rarely take off, the competitors lack enough individual user knowledge to make an experience that is better than what Google can offer for most users.

The services more or less are what they are because of the breadth of what and how Google knows to shape the experience for an individual, and that's why Workspace accounts still track what they do. Google would be providing their paying customers with a lesser experience if they genericized everything you're interacting with in those content related services due to a lack of learned data and behaviors per user. Which is probably not what the average user wants if I had to guess?

Heck, even paid YouTube Premium still needs your tracking data or it's just going to show you whatever popular rage bait is trending day to day with the general public? Or maybe just an unfiltered firehose of all the hours of nonsense that is uploaded every minute to the platform? I guess you could treat it as a whitebox video hosting site, but where does the money come from if YouTube can't make guarantees to advertisers that their ads will be seen by people who might care about the ad, and how do the content creators make money if YouTube can't get advertisers on board, and who is making interesting content if they have to pay to host it themselves because advertisers aren't paying that cost for them? I think my point is that if you pull the tracking and user knowledge out of the Jenga tower, the whole thing just crashes down.