Posts by wonderfall@mastoid.dev
(DIR) Post #AU8iTVvObNobzKODB2 by wonderfall@mastoid.dev
2023-03-30T11:20:57Z
1 likes, 1 repeats
While still in alpha, @accrescent is getting noticeably better with every update. I'm pleased to see we're close to have another non-commercial app store which serves both developers and users.Reflecting back on a few things, I think that a store signing its own builds is not necessarily a wrong approach per se. Despite that, Play Store still suffers from obvious privacy issues while F-Droid has numerous UX issues (some are slowly addressed, some are deliberate choices).
(DIR) Post #AU8k7qydqhV2onhtdw by wonderfall@mastoid.dev
2023-03-30T11:27:50Z
1 likes, 1 repeats
The main issue I have with the latter approach is when it is advertised as a security feature when it cannot be realistically the case. Even malicious apps often slip through Apple's "thorough" review process. Moreover, source code availability isn't a guarantee whatsoever - and I hardly doubt it is even doable to audit every single update.That isn't to say FOSS is a useless thing - it is not, and I love FOSS apps. :)
(DIR) Post #AUVjk8lMXFHsRPJ5YO by wonderfall@mastoid.dev
2023-04-02T23:34:20Z
1 likes, 0 repeats
Someone I know who wanted my help literally sent me their Javascript code to connect to a crypto exchange, but they forgot to remove their own API keys. 😶I mean I'm flattered if you trust me that much...
(DIR) Post #AVHH2VxqZZKHTj7Rku by wonderfall@mastoid.dev
2023-05-03T12:18:22Z
1 likes, 0 repeats
The end of the padlock icon in the address bar is a good thing as it often conveys a false sense of security. It has been meaningless for years now that cleartext HTTP is the exception, not the norm. Modern browsers show it clearly when someone tries to access a HTTP website.
(DIR) Post #AXIWxGKoffj8zYdgps by wonderfall@mastoid.dev
2023-07-02T14:46:31Z
0 likes, 0 repeats
Found a nice app to mimic the "Flip to shh" feature I've missed from Pixel stock OS: https://play.google.com/store/apps/details?id=com.urbandroid.dndSeems to be minimally invasive, doesn't even list network permission. Works fine for me.
(DIR) Post #AXVvz6MrKEjjrRO3OK by wonderfall@mastoid.dev
2023-07-09T09:12:14Z
0 likes, 0 repeats
I tend to prefer the GrapheneOS camera over Google Camera nowadays, at least for daylight photography. Google Camera produces results that feel over-processed at times.What I really miss is a night photography mode and automatic object detection, but both of these features could eventually be provided through CameraX vendor extensions and maybe ML Kit.
(DIR) Post #AXVw8y8qlRAdFDXVWS by wonderfall@mastoid.dev
2023-07-09T09:49:37Z
0 likes, 0 repeats
@tuxicoman Yes, yes. It has a lightweight form of HDR+ (not as aggressive as Gcam's though) for photos and HDRnet when available.
(DIR) Post #AXVxgO1zd2rx37pZBI by wonderfall@mastoid.dev
2023-07-09T10:06:51Z
0 likes, 0 repeats
@tuxicoman Can't find something relevant to Pixels in the CameraX docs besides that they turned off HDR+ for Pixel 2 in latency mode (implying the standard camera mode has HDR+).There's also: https://news.ycombinator.com/item?id=33567614
(DIR) Post #AYvVcqOrWIoLouG2jI by wonderfall@mastoid.dev
2023-08-20T15:47:01Z
0 likes, 0 repeats
@tuxicoman Il serait aussi intéressant de déployer DANE et MTA-STS !
(DIR) Post #AaQwPe4a4Q7csfyHia by wonderfall@mastoid.dev
2023-10-04T17:26:53Z
1 likes, 1 repeats
7 fucking years of fucking OS updates. #Pixel8Great day for Android!
(DIR) Post #AbsDHJCUfnU5uNXKOu by wonderfall@mastoid.dev
2023-11-16T19:12:32Z
1 likes, 0 repeats
It's great that Apple plans to support RCS, but you should know: E2EE isn't part of the standard
(DIR) Post #AhvHNMyjDSIDIP65Ee by wonderfall@mastoid.dev
2024-01-30T13:10:57Z
0 likes, 0 repeats
Am I the only one liking Stage Manager on macOS? It feels less clunky than the intended way to manage windows on macOS (that is, not minimizing them, and/or relying on Mission Control extensively).You can still have full-sized windows while in Stage Manager.
(DIR) Post #Ahx1GLIrptON7g42dc by wonderfall@mastoid.dev
2024-01-30T22:09:31Z
0 likes, 0 repeats
Starting Linux 6.7 you can use the ia32_emulation=0 boot option to completely disable 32-bits support. It should be a nice ASR measure.
(DIR) Post #AhyrU2b7ZLjVwAPo5g by wonderfall@mastoid.dev
2024-01-05T02:05:54Z
0 likes, 0 repeats
Hot take: Terminal.app is a much better choice than iTerm2 if you don't need the features and customization the latter offers.Latency is just that much better.
(DIR) Post #Ai0CGQEVBpGVNj8uB6 by wonderfall@mastoid.dev
2024-01-12T18:51:41Z
0 likes, 0 repeats
Apple's TCC (permission model) on macOS feels a bit theatre for apps that aren't sandboxed. Like sure, you can deny access to standardized directories such as Documents/Pictures, but what if you have private keys in .ssh?Well, you shouldn't have plain private SSH keys on any desktop OS to begin with. On macOS, use Secretive, or (and on any other desktop OS) FIDO2-based 2FA.And of course, be extra careful when running non-sandboxed apps on macOS.
(DIR) Post #Ai0CGSj3vAtn75SL5c by wonderfall@mastoid.dev
2024-01-12T18:55:15Z
0 likes, 0 repeats
How to know if the app is sandboxed?First off, if downloaded from the app store, it is sandboxed - that doesn't mean it can't ask for very invasive permissions (accessibility, input monitoring, screen recording, and so on), so watch out for those.For other apps, either run them and display the "sandboxed" column in Activity Monitor to show their sandboxing status (yes/no), or use codesign in your terminal.Be very careful when storing secrets in non-protected directories.
(DIR) Post #Ai0lzIfrdVTvMk4lto by wonderfall@mastoid.dev
2024-01-08T16:24:32Z
0 likes, 0 repeats
fish shell has been rewritten in Rust, very interesting: https://github.com/fish-shell/fish-shell/blob/master/doc_internal/fish-riir-plan.mdhttps://github.com/fish-shell/fish-shell/discussions/10123Might consider it again instead of zsh + fish-like plugins (I don't use plugin managers though). zsh being mostly "POSIX compliant" is a plus, but I do not think this matters much in practice for your interactive shell.
(DIR) Post #Ai0lzJUuZiJZv3xXSy by wonderfall@mastoid.dev
2024-01-08T16:25:32Z
0 likes, 0 repeats
I've also tried nushell (https://www.nushell.sh/), and it feels like this thing comes from the future. It's so much different that I can't really switch yet, and it has a few quirks on macOS at least. Will definitely keep an eye on it.
(DIR) Post #Ai0lzLjsF3TIs2yW48 by wonderfall@mastoid.dev
2024-01-08T16:31:11Z
0 likes, 0 repeats
FOSS Rust projects are great. Yes "written in Rust" isn't just a meme and actually means something. At least I have the guarantee that your tool won't cause memory corruption on my system.This is also the perfect occasion to create new tools instead of drop-in replacements of the old ones which would at least greatly benefit from a saner, more accessible syntax.
(DIR) Post #Ai4cVPxpqWo6Kezuts by wonderfall@mastoid.dev
2024-01-10T20:33:46Z
0 likes, 0 repeats
Wishlist for the perfect browser:- Chromium-based BUT Chromium becomes its own independent foundation- A sane content blocker API private (not trusting 3P code) yet powerful enough to block anything invasive- Sane API for password manager extensions (no DOM hacks)- No JIT JS/WASM by default, with WASM interpretation à la Microsoft Drum Brake- No non-sense features, my browser should remain a browser- Open protocol for E2EE synchronization of favorites/tabs/history- Opt-in telemetry only