N.E.P.T.R

Why is Artix in the schizo tier? It is a pretty awesome project.

I hate how LLMs have made any talk about machine learning immediately cause a bad reaction for most people. ML isn’t inherently bad. LLMs are a neat technology, but it is hard for people to understand that when capitalism does what capitalism does best (extract and pervert). Now no one is excited to see anything related to ML.

I remember when GAN images started to be shown around the internet (which looked like acid trips lol) and I was so excited to see the technology improve. Now no one is excited to see anything ML because it is being used to do the worst things: spy, replace workers, cheat, propagandize, steal from the commons, lie, destroy the environment, destroy the economy, and (of course) kill people.

Not a great name when the Soulseek project already exists. Soulseek has been around for much longer and such a name collision could have been avoided if they asked around in FOSS communities before choosing it.

The one I like to use was not mentioned. It is called Gapless (g4music) and is available on Flathub. Basically, you just specify a library location and based on metadata it sort things. The Flatpak requires minimal permissions by default, but you can disable Network permission because it only uses it to song album art (which in most cases is embedded in the song file itself).

Lol, GNOME 46

PLM is hard dependent on systemd.

Yeah np

No, nothing runs as root in a Flatpak. The problem is that Flatpak stops apps from using unprivileged user namespaces, which is used by all modern browsers to isolate web contents. Because the browser (Firefox) can’t use namespaces, a malicious website can use a single exploit instead of needing to chain two separate exploits, making it significantly more likely to break the sandbox.

The Firefox Flatpak has much weaker isolation because the Flatpak sandbox interferes with the browser sandbox. This means a malicious site can compromise other sites and even the whole browser with a single exploit instead of the two normally required (which is a significant degradation in protection). The specific part blocked by Flatpak is user namespace sandboxing by Firefox. If you can help it, DO NOT install as Flatpak. Snap does not have this problem, but nobody likes Snap. Chromium has a similar problem as a Flatpak.

Ok. I guess I never noticed because I actively don’t like any of those features and I definitely don’t want Discord to have unrestricted filesystem access. The file picker in Vesktop works for me without giving full access.

What features? Discord was working perfect for me on a custom client (Vesktop) but is broken now because they hate me using a VPN.

Honestly, I thought the post may have been making a joke about GIMP sucking or something, cus half the time I see GIMP it is people hating on its (admittedly) not-great UX.

I think is very dependent on the apps you install because i haven’t need to do really any workarounds and i install all my apps through Flatpak. The only messing around with permissions i do is disabling everything that i dont need (like printer or smartcard access). I also have over a hundred apps installed.

While I agree snapper (what CachyOS uses) I very useful, it is important to draw a distinction between snapshots (snapper) and a proper backup tool (borg or restic). Snapshots are usually stored on the same drive, so in the event of a drive failure/corruption you are still very fucked. Proper backup programs also have other important features, like the ability to select remote locations, setup encryption, etc. DO NOT rely on snapper to (always) save your ass.

That being said, I fucking love snapper and it was the main feature I was missing from openSUSE.

Wydm? Rockchip copied their code, changed the license and didnt attribute FFmpeg. FFmpeg is a small team of enthusiasts who are responsible for plenty of important innovation and remain largely unpaid even with such substantial widespread use of their code in like SOOOO MANY big software projects. It isn’t their fault that people aren’t following the simple rules of the license to use their code.

I would prefer webapps to native if there was a protocol to fully load the page and disable network traffic for apps that work fully offline. It is more secure to run an app in the browser because off the layers of isolation in modern browsers. Native apps can access all sorts of information and system resources, which could be used to compromise the host OS.

I would prefer webapps to native if there was a protocol to fully load the page and disable network traffic for apps that work fully offline.

As I mentioned, most security vulnerabilities are not reported because it may not seem security related. The distro maintainers can’t keep up with every package and read all the commits, so as a result security fixes often go unfocused. It is a real big problem that many security researchers acknowledged.

I still would never recommend a “stable release” or LTS distro because the vast majority of security vulnerabilities never receive a CVE, and as a result the a large amount of vulnerabilities go unpatched for months. Also I like distros that take security seriously (Fedora and openSUSE).

It has to do with LTS kernel (iirc) making it incompatible with certain new(er) hardware. I recommend Fedora KDE.