He/him. Chinese born, Canadian citizen. University student studying environmental science, hobbyist programmer. Marxist-Leninist.

  • 352 Posts
Joined il y a 4 ans
Cake day: oct. 03, 2019


Jeez is this why my torrents slowed down to a crawl lately? I’m on Mullvad and wasn’t aware they removed port forwarding, or even really what port forwarding is until now.

Thank you so much comrade! I loved working with you and the other admins and am very grateful for the experience!

Hi! This isn’t really a question, but I was a former admin on Lemmy.ml and I just want to say that I really appreciated the opportunity to be on your team and it was a really valuable experience for me! I’m no longer an admin due to inactivity and personal life events causing me to no longer have the time to serve such a role, but I enjoyed the time I was and I really hope I was able to make a positive contribution to the instance!

Thank you for your continued work developing this project and running your instance comrades! This is still by far my favourite fediverse platform, actually, favourite social media in general. I intend to continue using both Lemmy.ml and Lemmygrad and I hope I can continue to contribute by using Lemmy when I have the chance!

Whatever you call them, sugar-based popiscles have nothing on pieces of frozen fruit. You can even get bags of them at grocery stores and plenty of convenience stores!

On one hand I’m interested in seeing how well it works and what they do with it, on the other hand…

Source: https://xkcd.com/927/

PSA: Most admins don’t have any better access to Lemmy than you do if the server is struggling. Please be patient.
Most admins on Lemmy instances do not have backend access. That is generally reserved for the server owner/head admin only. So if your instance is going on- and offline intermittantly due to server load, admins will also be having a hard time getting on the site to moderate or really do anything. The server owners may be able to use the backend command line to do a tiny amount of moderation, but it's very much not intended to be used in that way. I say this to remind everyone to please be patient on the 1st, there will be a massive influx of traffic, servers will go down, and admins may not be able to get on the site and moderate effectively until things settle down at least a little. We're trying our best.

I wish Ol’ Debian would get the love it deserves, especially for enterprise where their “stability over the latest flashiest software” philosophy should really shine. People on the desktop side criticizing how slowly Debian packages update is generally responded with “well it’s a server OS first and foremost, the Debian derivatives are more suited for desktop,” so why does no one use Debian for servers? And as far as I know Debian has always prioritized stability and reliability above anything else, and have never pulled any sort of corporate antics even close to what Canonical and Red Hat have pulled.





Because in order to federate, user data needs to be shared, including the username. It prevents double votes from the same account and also allows votes to be rescinded at the user’s discretion, at which point the instance will send effectively an undo signal for the activity.

The first rule of the Fediverse is to make sure you’re perfectly okay with the entire internet seeing your account activity, including votes and favourites. If you’re unsure or are worried you might regret it, best not to post it at all. This is equally true on all social media but the way the Fediverse works just makes it more obvious.

imagine people would start defeding email

There are literally globally maintained blacklists of spam email sources. When people lease a static IP address the first thing to do is to check it against the major email blacklists.

Red Hat strikes a crushing blow against RHEL downstreams



In Defense of Registration Screening
*This is my personal opinion, it is not the collective opinion of all lemmy.ml admins nor the broader Lemmy network as a whole. But I feel like no one is talking about this side of things, hence this post.* It seems that a major point of friction lately has been the registration screening questions that most large instances have, and the fact that instances which do not are being blocked. People are complaining about not knowing when they will be allowed to use their new accounts, if they will at all, as well as their instance being blocked by larger instances. While I empathize with the frustration this is causing, and I do agree that the registration screening system is far from perfect, I *really* feel the need to defend my fellow instance admins here, on all the major instances, and defend their decision to have registration screening. We are all unpaid volunteers, and are running and/or moderating Lemmy instances because we are interested in doing so. In fact we have regular jobs and responsibilities that we juggle with moderating Lemmy. At the same time, we want to provide high quality spaces where users can interact and engage in meaningful discussion, and that requires that the threads be mostly free of trolls, abusive users, and spam. We have no automoderator, no automated content screening or spam/abuse detection in general, nor do we generally have enough people to even cover all 24 hours of the day (especially since instances tend to be run by people in the same or similar time zone). Registration screening goes a long, long way toward easing our workload and actually allowing our instances to function without getting overrun by undesirable content. Lemmy, especially the larger instances, has been the target of many raids and brigades from places like 4chan. They were, I kid you not and you can find plenty of discussion about this if you go far back enough, posting anything from Nazi/fascist propaganda, to scat and gore porn, and rendered instances completely unusable for a time. Based on my experiences with lemmy.ml getting brigaded, enabling registration screening brought the number of abuse posts from tens or well over a hundred per hour to almost none, because just having to put that bit of work in to make a troll account is enough to discourage most people who have no interest in actually participating meaningfully, and it also makes it much more difficult to create multiple accounts for ban evasion, or to automate the creation of accounts in the form of a bot. Also based on my own experiences, I can tell you that any instance with open registration is very quickly overrun by spam and abuse posts, to the point where it can make other, larger instances unusable if that influx of content is federated over, as well as generally massively increasing the workload of the admins on the other instances as now they have to pick up the slack and moderate what content from the open instance is actually real content that is allowed on their own instances. This would be happening in a time where those instance admins are already being swamped with new registrations and moderating the huge influx of content being generated from their own instance. Until a Lemmy instance gets large enough to actually hire full time admins to catch and remove abusive content ASAP, and/or implements reasonably accurate spam and abuse content screening that is resistant to evasion tactics, I don't see instances reasonably being able to go without registration screening because the trolls *will* seize on that opportunity every time. Admins of larger instances see it all the time: 1. New instance pops up, yay! And most instances automatically federate with new instances! 2. It doesn't have registration screening, this is quickly discovered by trolls and adbots and the instance gets filled with rule breaking content. 3. Large instances start blocking it because by federating with an instance that is being used in this way degrades the quality of your own instance and adds a ton of workload to your (unpaid) mods and admins. They specifically do this because they know that posting in small, brand new instances will also get their content forwarded to the large instances, because they have a harder time directly posting abuse on the larger instances. (We don't block instances because "how dare they not have registration screening?!" We only really block instances when we start getting flooded with reports from our own users flagging the incoming abuse posts.) 4. The instance eventually enables registration screening, and other instances start unblocking it. It's happened with plenty of instances before and will probably keep happening as long as spam and trolling exist. Most instances' registration questions are fairly simple, and all we really want is for you to spend a minute of your time to write a few sentences, maybe a paragraph at most. You doing that reduces the workload for us, as well as contribute to a nicer environment for you and your fellow users.

If the government really wants to come for you there’s little you can do, but I’m more concerned about your average basement troll who may have gotten really pissed off during one of the debates/flamewars that have been popping up and is looking to get even. We’ve already had to ban some… interesting characters… and I just don’t want to give them any easy targets from this site.

PSA: It’s a bad idea to use your real name on a pseudoanonymous forum.
Been reviewing account applications and noticed that a lot of them just have the person's actual name in the username, complete with them saying that it's their real name in the registration questions. I just want to comment that I don't think it's good to be doing that, especially if you have certain political affiliations that Western governments might not like (communism, socialism, not going to dance around it). I have still approved your accounts if you did this as it doesn't break the rules, but frankly I recommend you make a new account with a more anonymous username and don't post under your real name. Keep the account with your real name if you want but don't make it your main. Lemmy, just like Reddit, is meant to be pseudoanonymous, and especially considering all the controversy and friction that the influx of new users are causing and the presence of people who seem to be here just to pick a fight, I just think it's a bad idea to put any sort of personal information on here that other people, trolls and assholes included, can exploit. I certainly haven't put my personal information on here and I'm an admin. This goes double for profile pictures of your face or anyone you know. Though I haven't seen much of that.

The paradox of the enemy: They are endlessly threatening to our existence while being endlessly incompetent and inferior to us in every possible way.

Ubuntu is the stepping stone from Mac/Windows to Linux. Like the tutorial level. It’s also one of the most “corporate” Linux OS vendors outside of RedHat. Of course it’s shitty lol.

The most popular non-Canonical derivatives, Linux Mint and POP OS, have both totally rejected and vocally criticize Canonical’s bullshit, Snap or otherwise. This isn’t going to make the fall in line, this is going to make them finally get serious about ditching Ununtu and switching directly to the upstream Debian base.

And Snap isn’t? If you think Flatpak is bad how exactly is locking you into an objectively worse universal package manager the solution?

Can Windows just die already? It's clearly obsolete and has jumped the shark.

Thoughts on the Leftpad debacle?
Pocket reposted an older QZ article about Leftpad and it's sort of reignited the controversy, at least for me. [Here's the link.](https://getpocket.com/explore/item/how-one-programmer-broke-the-internet-by-deleting-a-tiny-piece-of-code?utm_source=pocket-newtab) I'd love to hear what you think of this, but here are my thoughts: One, why is this not in the JS standard library? It's a *super commomly used* method with equivalents in every programming language, right? JS is pretty notorious for being bloated (which isn't necessarily a bad thing IMO), but the fact that it lacks this basic function is kind of ridiculous? Two, people were calling him out as the villain for having the *audacity* to delete a method he knows powers most of the internet, and to those people I ask: Have you even looked into why that happened? The most common story was just that he was butthurt because "NPM didn't treat him like royalty like he wanted", but, what actually happened was Kik, yes, the messaging platform notorious for being infested with child groomers, that Kik, wanted to publish their own library (I think it was an API for their app), and Koçulu already had a library called kik. So what does Kik do? Are they like any other programmer who would go "aw man, that name is taken, better come up with another name for my thing then!" No! They go to fucking NPM and essentially allege trademark violation (which is bullshit because Koçulu's kik was not a commercial product, and trademarks only apply to names used in commerce). But NPM still removes Koçulu's kik package, at which point Koçulu removed all his libraries and deletes his account in protest, and the rest is history. Long story short, it ends with NPM restoring his packages against his wishes, and as far as I know he never released anything on NPM again. So, generally I see two hiveminds when it comes to this controversy. One is of course people mocking Koçulu for being a snowflake or whatever, that he needs to control his anger and not withdraw his packages because he didn't get his way. Obviously, I disagree with that. I think Kik was being a snowflake for throwing a hissy fit that their name was already taken for something completely unrelated, by someone who almost certainly did not even use their app. They could have named their library kik-chat, kik-app, kik.com, whatever, and it still would have been the same library and people still would still have discovered it. NPM claims that they did this to "reduce confusion", but at best that is massively underestimating the intelligence of people who *already know how to program*, and is a complete lie cooked up by their PR team at worst. Needless to say, I don't think he was in the wrong at any point of this. The other hivemind was really mad at NPM, which is a step in the right direction, but they were mad that they restored his package. That makes no sense either, because one of the pillars of open source is that anyone can publish or distribute it as long as they distribute it with the original license and give credit. NPM is an asshole, but they still have the right to distribute an open source library. What we *should* be mad at NPM for is that they threw him under the bus by removing his package in the first place. Again, Kik has no legs to stand on and NPM was never in any legal trouble because of this, trademarks do not apply to non-commercial products. They're called *trade* marks. Trade. As in commerce. Also, it really highlights their priorities that they hold a corporation infamous for enabling children to be victimized in higher regard than someone making code used by the entire internet and not getting paid for it. I also don't see enough people being mad at Kik. What they did was absolutely unacceptable and they should have faced the brunt of the hate. Then again they've already shown themselves to be horrible so they probably would have shrugged it off or maybe even played into it for publicity. What can the open source world learn from this? Well, for one, I think it has become clear that having your open source dependencies managed by a for-profit company is bad. I wouldn't be surprised if Kik paid NPM a ton of money and essentially "bought" the kik name like a fucking NFT. The solution would be a combination of package repositories managed by worker co-op nonprofits with transparent financial reports, and decentralized/independent package sources hosted by the authors themselves. If JS took inspiration from Java just a bit more and also made their dependency naming system work by domains, we would have gotten `com.koculu.kik` and `com.kik.kik`, and no conflict. Almost like a federated package manager. Especially now that NPM is owned by Microsoft and Yarn was always owned by Facebook, we really do not have a good, trustworthy JS dependency repo, which is a problem because like the language or hate it, it is still extremely important for our modern computing environment. I think it's long overdue to break their duopoly. IDK, that's the end of my rant. Didn't really mean to write a wall of text, just saw this article and got me wanting a retrospective, but yeah. What do you think? Do you agree? Disagree? Why or why not?

Interesting. Xiaomi (and Huawei IIRC) seem good about allowing bootloader unlocks as well, so will definitely have to look into this avenue.

What’s a good tablet and touch screen oriented Linux distro or desktop environment? Can any of them compete with something like Android?
I'm looking to get a straight tablet (not a 360-hinge laptop with a keyboard) that will mostly be used for mobile centric applications like when I'm out and about or when I want to binge shows in bed. Ideally it will be a device that I can exclusive use the touchscreen with for when I'm either too lazy or can't practically prop it up and use it as a proper laptop. I want to keep at least the software as open source as possible, so my options are either an Android tablet that I can sideload an AOSP de-googled ROM like Lineage OS, or a Windows tablet with an x86 CPU that I'll install a Linux distro on (inb4 "Android is technically Linux"). I currently use KDE Plasma which is my favourite environment when I'm on my desktop, and I quickly found through testing on my touchscreen laptop that it's practically unusable without a mouse and keyboard. Here are some things that I found KDE lacking that I need: * Integrated onscreen keyboard that automatically pops up when you're in a text field, and/or can easily be brought in and out of frame when needed. * Smooth swipe-based scrolling. I find that swiping up on many KDE apps just selects text or drags an element, or does nothing, and you have to drag the tiny scroll bar to scroll. * Pinch to zoom * A terminal that works well with touch screen, namely one that makes it easy to use special characters and control keys with an onscreen keyboard. Termux on Android is what I consider one of the best implementations of this. * Active stylus support with palm rejection is a plus, like the Surface when running Windows or the iPad Pro. I consider myself very knowledgeable with Linux, and I do tinker with my computers a lot, but for this one, I do simply want something that "just works", because I'll either be using it at school/work and can't afford to start diving into conf files and searching up cryptic error messages because something broke, or I'll be in bed just wanting to relax before going to sleep. Finally, is this futile? If we're considering stock Android as a benchmark for a decent user experience on a tablet, can anything on the non-Android Linux side even compare?

Make sure you never connect it to the internet either.

TVs can record snapshots of what’s being displayed on screen and send it for analytics. They’re supposedly only recording a scattering of pixels throughout a screen and trying to match it to those same pixel values at the same positions generated by scenes in known media properties, which would in theory mean they can’t really recreate what is actually on screen or identify any media personal to you that’s not on their media database. (Honestly even that is creepy as fuck.)

But since the code is proprietary, who’s to say they’re not just taking full blown screenshots of literally what’s on screen every now and then? If they sent a full screenshot and compressed it with LZMA or something on the highest compression power, every hour or so and slooowly sent it a few bits at a time over the course of that hour, you’d most likely never notice since it would likely be encrypted with SSL and not be so much data that would be easily discernible from other random network activity from someone who was monitoring their home network traffic. They could totally say it’s simple HTTP requests for software updates or grabbing the latest Netflix listings or whatever. (And even then very few people actually monitor what their devices are sending. Even companies that eventually had scandals where they sending unauthorized analytics frequently and in plaintext, as in you only had to hook it up to Wireshark a single time to realize what they’re doing, still manage to get away with it for years before someone noticed.) Or, the TV could be built with a trigger where it normally doesn’t record your screen, but if you were a person of interest, they could start monitoring you whenever they want by sending a signal to your TV.

And I’m sure if you at any point connect your smart TV to the internet, it’s definitely been caching all those past analytics to send in one burst. So don’t do it.

Honestly, as a former Windows user, I’ve been really enjoying Fedora KDE. KDE because it looks and feels a lot like just a cleaner, de-bullshitted Windows 10 or 11, and Fedora because I think it strikes a good balance between stability, up to date software, and a good delection of default packages and community repositories.

Nope! I’ll be keeping my sudo account on there for when I have to do maintenance on the computer and set up a normal user account for them.

Seriously, have her try KDE! It feels a lot like Windows 11 but honestly a lot better than Windows.

I live with them, and I will be keeping all the remote management stuff open from when it was a server, and will essentially be continuing to manage it along with the rest of my servers.

The Hidden Cost of Cheap TVs

I converted my parents to Linux yesterday!
I gave them one of my micro office PCs I was using as a server as our living room home theatre PC, because the previous one was Windows Vista which is absolutely not safe to be running connected to the internet anymore, and the new computer (hopefully) managed to get them to stop using the apps on the smart TV both due to my privacy concerns and because they are no longer being updated and don't work that great anymore (thanks for no longer supporting your few years old thousand plus dollar TV Samsung, you planned obsolecense assholes!) This is their first Linux computer in a family that has pretty much been exclusively been using Microsoft operating systems really since they got access to computers. So, pretty big deal that I finally convinced them to give Linux a try. It's running Fedora with KDE Plasma. Here's hoping everything goes well.

Great, now everyone will know how bad my typing is and how often I have to backspace typos!

I mean, at this point I’d be disgusted, but not surprised.

Isn’t this basically just a local proxy that sinkholes certain domains? You can pretty easily set that up yourself.

I just have my internet traffic running through a proxy server at home that has PiHole installed, I have a few reasons for doing this instead of just setting my DNS to the PiHole (my VPN provider limits the number of logged on devices, so I have my proxy seever routing traffic into a single OpenVPN connection, this way all my devices appear as only one), but obviously you can just change your DNS for a similar effect with way less effort. Don’t want to set up PiHole? There are public DNS providers that do ad and tracker blocking.

All in all, DDG’s solution is hardly an innovation worth reporting on. It’s just packaged up more nicely and with marketing (you know, like this article).

And these aren’t ontop of stolen land and evicted Indigenous communities, unlike the US/Canada

I think a more ethical way is to have user donations. That way the site is truly community run.

Assuming you’re running a site as a non-profit and just want to provide a self-sustaining service (which is usually the case in the Fediverse): something that could be beneficial is to publicly announce the price breakdown of everything that goes into the site: servers, domain name, etc, and also disclose how much money is being raised per month. Maybe even list how much surplus money is set aside for months where there aren’t enough donations to fully cover the hosting costs. The goal shouldn’t be to guilt trip people obviously, but simply matter of factly stating these figures gives users a sense of exactly where their money is going, which has been shown to build trust and increase donations, and also gives them a sense of how much donations are needed, as most users have an impression that an ad-free site can just keep going without them having to donate, not due to an unwillingness to donate, simply due to not knowing.

Also, the corset in the community pic. Dead giveaway. No one who respects women and want to engage in informative discussions with them is using that as the icon, as their first choice, for their community.

This isn’t even how you get compliance. You get compliance by treating patients like humans, not buggy computer programs.

From the title I thought this was about Destiny the game franchise and was really confused lol

Pretty sure literal slaves in Ancient Greece and Africa had better working conditions. They could also earn enough to buy their freedom, which, the same absolutely can’t be said if you’re working minimum wage in today’s economy.

Anyone who knows the history of video games knows there’s a huge casino machine maker to arcade machine maker pipeline.

An even cooler thing that China (and other countries) are actively exploring is not making biodiesel using plant oils, but making essentially actual diesel and gasoline by gasification of biomass and/or trash (plastic). That way, instead of using the soybeans that could have been fed to humans (most biodiesel is from virgin plant oils, waste cooking oil and fat are only a small portion of global biodiesel production). You can feed the oily and edible parts of your crops to humans, and use the stalks, shells, and other waste parts of the plants to make fuel. If you use ultra fast growing plants like hemp or bamboo, you can make a lot of carbon neutral biofuel very quickly.

That’s fucking terrifying. Something tells me they’re definitely not going to pay if they collapse your house.