They mean new old stock, not used phones.

Security updates… meh, it’s a mixed bag. Outside of maybe Google I really doubt any manufacturer bothers to keep their Android phones super up to date with all the possible fixes, even within the support period.

And as for the privacy angle… honestly the manufacturer is usually the first one to spy the shit out of you. Using Google services while worrying about a hypothetical security breach is really ironic.

Lol Whatsapp as a system app sounds like a nightmare.

The usuall approach established by Samsung etc. is to bundle a few “shim” apps as system apps for Meta. One shim is used by the regular Meta apps to bypass restrictions and talk to each other, one collects data from any app that uses the Meta ad network, and some are there in case you install the corresponding user app (eg. Facebook) to give it system privileges.

I mean it ends up technically the same as having Whatsapp bundled outright, but you gotta give props to a manufacturer so shamelss they don’t even pretend to hide it. 😃

The problem is that making games (and software in general) has become more high-level, and enshittification has also gotten rid of highly skilled people. So the top studios in the industry are not capable of making resource-efficient, beautiful games anymore. Not because it’s physically impossible, but because they’re not geared for the processes and decision-making that would allow those games to be made.

When you switch from an artisan mindset to a mass-manufacturing and outsourcing mindset without exercising strict control you eventually become utterly dependent on service and product providers that will see to your costs going up so you’ll keep paying more for less.

All the large studios will come to a breaking point eventually because it’s unsustainable, and will be acquired for the franchise rights by corporations that make their money in unrelated industries. But the PC platform is also breaking down so this might be a moot issue in 10 years from now.

isthereanydeal can import your steam wishlist, and you can set a price threshold and other criteria on it. I have a $10 threshold on mine and there’s plenty of stuff on there all the time.

That’s a very warped impression of Silicon Valley. And it probably comes from Hollywood movies, which is super ironic since you mentioned writers and filmmmakers.

Dumb representation of computers in movies has done more to harm their image than actual software ever did. Most of the AI hype is based on fantastic notions of AI as seen in movies.

The difference is that it used to be harder to concentrate massive wealth in the hands on one individual. It used to require very large companies, which were controlled by multiple people through shares and board positions. Companies themselves weren’t allowed to grow too massive or achieve monopolies.

Lately all checks have gone out the window which has resulted in single individuals having control over mind-boggling amounts of resources. This changes the dynamics a lot because an individual will act very differently from a large board or shareholders.

HTTPS is privacy in transit. It has no say into what’s being downloaded.

You’re right I don’t think it can, can only advertise explicit labels.

It’s not a fine standard. Microsoft filed it with the express goal of preventing ODF from becoming the prevailing document standard, not with the goal of documenting OOXML. It’s intentionally obfuscated and kept different from MS Office. It’s not a standard it’s a red herring.

Please note that to use “bcrypt” for htpasswd_encryption you need the bcrypt python module installed. Some distributions of radicale (eg. some docker images) don’t have it.

It’s fairly safe to set it to “md5” instead. It does not mean plain MD5 (one iteration), it does several hundred rounds of MD5 plus a salt.

For the curious, the advantage of bcrypt over a single-iteration, fast hash like MD5 is that bcrypt lets you set the hashing effort, while MD5’s goal is to do it as fast as possible.

This becomes relevant when someone steals your password file and tries to brute force it by hashing a bunch of dictionary words and random strings (plus a bunch of salts) until something matches. A fast single-iteration hash like MD5 will let them do that much faster than a bcrypt hash set to a higher effort; it can mean the difference between finding a password in one week vs finding one in 100 years. That’s what the hundreds-of-iterations MD5 is trying to achieve, it’s a “poor man’s bcrypt”.

The former.

Evil billionaires are more of a 2020’s thing.

The thing about Elder Scrolls games is that they tend to be mostly RPG while BotW is mainly a sandbox game with some RPG elements. Most people I’ve seen trying to get the “BotW feeling” from an RPG ended up dissapointed.

You can mod ES games extensively to make them feel more sandbox-ish, or simply ignore quest lines and freeroam but it’s not quite the same.

Civ 5 is 30€ on Steam and 2-3€ on other Stores.

Outer Wilds is 23€ on Steam and 16€ elsewhere.

There may be regional differences for either of us.

Euro-Office and OnlyOffice don’t “only support” OOXML. Where did you get that idea?

From the fact ODF “support” is an awkward import/export function. It’s not a first class format.

The code is open so where do you suppose all this supposed spyware is hiding?

On their live service. They don’t publish the spyware with the code they choose to open, obviously. 😃

It can import your Steam wishlist and give you tons of examples. 😊

Here’s some: Civ 5, Disco Elysium, Yakuza 6, Borderlands GOTY, Outer Wilds, Doom Eternal.

You can also make filters that limit the suggestions to a certain sale percentage (eg. 50%+ off), or to a max price (eg. $10).

Here’s the AUR recipe (PKGBUILD file) for a random package:

https://aur.archlinux.org/cgit/aur.git/tree/PKGBUILD?h=nautilus-git

This is a standard format for the recipe. It’s Bash code used to define variables and functions.

You’ll notice there’s no place to sneak in a Python script. There is some brief Bash code in the functions but any major stuff would stand out immediately. So would an command that fetches a malware zip from a weird URL.

Meanwhile, if you add node or python to the dependencies, and then run a command that installs a perfectly legit npm or pip module, nobody would bat an eye. It’s impossible to figure out that among the many upstream dependencies of that module there might be one that was subverted to discreetly run malware.

AUR is a very bad idea tbh and should not be used by the faint of heart. It makes it entirely too easy to pull this kind of crap.

Add mTLS to the reverse proxy and to the Immich client app and forbid access without it.

The mTLS certs can be self-generated. There are tutorials for generating your own CA and individual mTLS certs for each device. Then you put the ca.pem file in a place accessable by NPM and add a couple of commands to the “Advanced” tab of the Immich proxy host, and you put the mTLS cert on the phone and load it into the Immich app.

mTLS is a super strong method, not only does it serve as great authentication for that particular device, it also checks the TLS connection for tampering so it can’t be hijacked even if somehow you get rogue certificates loaded on your phone, you can revoke certs if your phone gets lost or stolen etc.

It supports it on the iOS client as well but last time I tried it would always lose the mTLS setting on its own after a while. I had to resort to the other method they offer, secret key in a custom HTTP header.

DAVx5 also includes good security, like the ability to use mTLS to secure your access to Radicale adequately even if you expose it over the open Internet. It’s also being actively developed, with updates coming out every few weeks.

InfCloud is the last and only functional, standalone, web-based CalDAV frontend currently in existence. It doesn’t really matter how crap it is because there’s no alternative. And besides CalDAV/CardDAV are not exactly rapidly-evolving anymore.

There are a handful of alternative frontends bundled with other webapps, for example Nextcloud includes one, but if you don’t want to install Nextcloud just for that you’re stuck with InfCloud.

I really wish someone would make a modern standalone webapp for this but no luck so far.

Having worked at some point on some calendar interfaces I can appreciate why, because they’re super intricate and difficult.