In addition to the other comments… These functions transverse the target subdirectories and try to copy/move files into themselves, which just won’t work but is a waste of time and you’re gonna see these errors. Just skip them like so find . -path ~/png -prune -o -iname "*.png" -exec ...

still it is concerning, that any program can know about the sites I visit

As other noted, that’s the case in Linux, by default all processes are equal, so if your shell process can access a file, the Firefox process can access that file.

But there are in fact many ways to sandbox processes and prevent exactly what you are worried about. One way is to install applications via Flatpak (or Snap), that can limit what files the app can see, while still running as your user.

If there is an app you need and don’t trust that’s not available as a flatpak (or snap), there are ways to sanbox it manually. It does require some tinkering, but people can help you on [email protected]

Turns out the light at the end of the tunnel is the huge white margins on this meme

I don’t really need the encryption

In this case I’d say, LUKS is an overkill and just complicates your life. Try to think of a worst case scenario and what you are trying to protect against. Full disk encryption protects you against someone physically and clandestinely tampering with your server to compromise you by altering your OS, I’d say most selfhosters aren’t at risk of this (I do use LUKS on my laptop, because if I’m not available to decrypt the drive then there’s no reason for it to get decrypted). My approach to the server is to have encrypted directories as needed. For example the SFTP directory, the logic being that some of what’s there may be sensitive, so encryption at rest prevents leakage after the drive is eventually disposed of. But my Git repos (including private ones) and calendar aren’t encrypted at rest. Other services (e.g. Matrix, Borg, Vaultwarden) provide E2E so don’t really need further encryption.

As the article says, there are different flags flown there all the time, including the Israeli flag, the arguments against flying the Palestinian flag specifically don’t make any sense. I’m unfortunately out of town now, I would have loved to be there.

Exposing stuff to the internet shouldn’t be that scary… I haven’t had any incident so far in 8 years. Yes, you see plenty of illegitimate access attempts in the logs, but if everything is properly patched, it should be OK.

This post is quite profound

“The uploader has not made this video available in your country” – fuck you Paramount, but OK, I have VPN.

I’ll give it a shot. I just pray that other than a few characters in common, it won’t have anything to do with Discovery.

The Cold War came after World War II…

Vaultwarden isn’t actually susceptible to man-in-the-middle attacks, since the passwords are encrypted and decrypted on the end device. But some relevant metadata do go over the connection so it’d better have TLS.

I think your meant BlueTooþ

Right? 😂

I don’t know, some turtles could be quite slimy. At the corner where it says turtle it should probably say tortoise, and at the “what goes here” corner you can put something like a softshell turtle.

Absolutely right! To somehow make sense of the current system, I tried to do statistics of reviews and see how a product or a business fairs in comparison to equivalent products or nearby businesses. The problem is that now there are so many fake reviews in addition to unhelpful human review.

No, I think they should ignore it and let the British government do what they will. Again, they are not bound by UK legislation. Similarly they don’t block Chinese IPs because of censorship laws over there.

I’m not an expert but I feel like organizations like Wikipedia that are not based in the UK and do not do business in the UK shouldn’t fight or comply with this nonsense. If the British government instructs ISPs to block access to Wikipedia, let them, and see the uproar it generates.

Matrix, with the Element app on phones.

Full disk encryption with LUKS. Don’t really see much point in a TPM for booting my personal device, although it definitely has use cases and I don’t know what’s backdoorsy about it.

Interesting, I’ll keep it in mind next time I have to deal with this problem (hopefully never but who knows).

A few years ago I was in contact with researchers that were developing an AI tool to parse PDFs (I think they didn’t care about converting to editable formats, but extracting data), from their material I got the impression that it’s extremely difficult to do right using traditional algorithms.

It’s a curse because it’s used for things other than what it’s intended to. It’s doing a good job representing printed material, but unfortunately people very commonly expect it to be something more akin to a word processor file.