thanks steve! https://lemmy.zip/post/23518695
dingdongitsabear
joined 1 year ago
what's this coliseum shit, this is the second time I've seen this, it's colosseum. is this another aluminum/aluminium shit?
I mean, OK, it's a vulnerability and there are interesting implications, but this is hardly significant in any pracitcal sense of the word.
the potential victim has to run their system without a firewall, has to print to the printer they've never interacted with before and then the attacker can run shit with whatever the printing system's user id is, which shouldn't be an issue on any reasonably modern distro.
I routinely remove cups and friends from any system I run because I have no need for printing and it bothers me to see it constantly during every system upgrade.
I wanted to write the same thing. have the notes app do the notes thing and handle encryption elsewhere.
as to apps, I suggest QOwnNotes. it's markdown, highly configurable so you can make it minimalistic AF, stores notes in invidual files and folders. it also has a bunch functionality like syncing to nexctcolud and such, but I'd advise against it, just use it as a notes editor. you don't have to selfhost anything, make it use the e.g. Documents/Notes folder and you can use syncthing to securely replicate it to other devices.
friend should nuke this crapware and use syncthing for such activities. if they happen to run jellyfin, they can use it to serve books as well, and by utilising the OPDS plugin it would allow compatible readers (e.g. Librera) to directly download books/comics to the device in a shop-like interface.
because things moved forward in the last decade or so and it's not viable. the same way matrix and element and those ridiculous things aren't viable and never will be. can you use it today? absolutely. can you convert normies to it and make it an actual widely used comms platform? no. fucking. way.
this is coming from a guy running their own prosody instance and utilizing rocketchat on two separate client instances. yeah, I know how to set it up and deploy it; but the amount of absolutely credible complaints I get from normies forced to use it staggering.
to me it looks and feels like shit, compared to Durov's spyware it's like a PoC from 2015 looking for funding. fine demo you got there, now bring us the real thing.
but, to practical things, I lose/sell/buy/switch devices frequently. with telegram, I can lose all my devices, log on from a fresh one and all my shit is there - a decade+ of convos with 100s of people with valuable info. no juggling around with the crappy electron desktop app that doesn't give me access to convos or the inane procedure to replace a lost device and restore chat history... the other day, I successfully retrieved a piece of info from a convo from a decade prior.
I realize there are people out there that need that sort of security, but I don't. I just want Telegram with an OTR plugin (OMEMO nowadays) that prevents any nascent mass surveilance and LLM ingestion and I'm golden. but that shit's explicitly against Telegram's ToS; the only logical conclusion is they're adamant about leaving all your shit unencrypted in the cloud for some specific reason.
I can't think of any such reason that's not malevolent.
regarding its UX, nothing close exists; when it comes to converting normies, so you have someone to actually talk to, then there are no alternatives. that's a pretty shitty state of affairs for something that shoulda been solved a long time ago.
lesson learned, I guess, don't put all your eggs in one basket and have multiple fallback solutions. I've begrudingly moved to Signal and I'm cursing it out at least once per day, can't believe the navel-gazing, self-righteous cluelessness behind it; but that's the best there is at the moment. it's beyond shitty that we're having trouble achieving what we had in like 2012 by way of XMPP and friends, let alone surpassing it.
any way to read this without a telegram account?
I'm trying to utilize a couple of core 2 duo macbooks for the same purpose and it's not going great. I have twice the cores and RAM but they're stuck at 800 MHz, because of no batteries.
anyhow, very slow and issues with a lot of codecs I throw at them. try mpv without a DE/WM.
you live, you learn https://writingexplained.org/coliseum-or-colosseum