Unless I’m mistaken, this mostly depends on software/os you install.

A RPI with OpenWRT will be secured in exactly the same way as a router with OpenWRT and a laptop with OpenWRT. (At least I think so, I vaguely remember hearing about some Intel CPU vulnerabilities, but I don’t think there’s anything remote).

Power draw will be the main problem, along with more limited range because of the strength of the WiFi card.

I’m kind of interested how will it go, especially further development and their issue handling.

It doesn’t do anything I need, though.

I hope this will bacfire heavily and shuts down their tourist industry.

I’ve had a few people around me who were to US, or planned to go. All of them has lost all desire to do so. I can’t imagine why would anyone who doesn’t have to (i.e for work, and even then I’d really reconsider it) volunteraly go to US at this point, for a vacation of all things.

If you aren’t already using it, https://vencord.dev/ is a good Discord client mod that lets you get rid of some of the annoying features.

Might be against ToS, but so far I don’t think people had any issues with it.

Another option (that I use when I don’t need voice) is having your own Matrix server with Discord bridge. With double puppeting it can bridge both servers and DMs, and post in your name (without needing a bot on the server).

As far as I know you can do double puppeting with Matrix discord bridges, or whatever it is called.

As in “the bridge posts using your account, and not a bot”. I have it set up on my own Matrix server, and I have servers and DMs bridged without issues.

Also, setting up a server with the ansible project is super easy, it’s one of those rare cases where the ansible is robust, easy to use and actually doesn’t break.

I have no experience with React, so I couldn’t tell. Thanks for the info, I’ll keep it in mind.

I think I’ve seen it mentioned that in case RSC isn’t used, it might be vulnerable but it’s not really confirmed, but you’re right that it probably doesn’t warrant shutting down the server.

I don’t really need it that much, though, so I’ll just wait for the update, take a scour through logs and use it as a learning opportunity for forensics, and skip the reinstall.

Well, Element seems to still be running at the unupdated version even after update, so I’m just shutting the server down.

I’m bummed that it took me 5 days to learn about it, does anyone have some tips how to get early warnings for techs you’re using? I’m guessing there’s a way with npm.

Also, anyone has some tips how to properly compromise-check your server? I’m guessing there are logs to check for compromise, and audit your startup scripts for persistence? Any tools that could help with that?

Fuck, Element for Matrix is apparently build on React, and I was updating like 4 days ago after few months.

Well, time to update again, I hope it’s fine. Never really learned how to properly compromise-check your server.

People whose thread model requires high stakes and serious encryption are probably using PGP with hardware keychain, with Tails or something similar on a live USB.

Adding a high-profile law like this will probably just cause them to increase their op-sec and make it even harder to actually get any evidence where it really matters, while having a huge PR cost and abuse potential. But it’s very probably not about catching criminals anyway.

Also, it’s kinda funny that they moved from SS to AA :D

If I understood it right, one of the projects he was working on as part of the experiment was the website.

Figures.

I’ve been using Matrix for a few years by now, mostly only for the bridges, and the setup experience was actually way more straitforward than I expected.

Did you use the matrix ansible project for setting it up? Enabling bridges was just adding like two lines of config parameters per bridge max, and adding my accounts was just like two back to back messages with a bot and it worked. The whole server setup with the ansible took like an hour max, including getting hosting (I used Hetzner for like 8$ a month) and domains.

I was planning to look into Zig for this year’s Advent of Code. Haven’t really looked at it yet, but I’ve heard good things about it. Nowadays I mostly write in C# or Python for smaller scripts, so I kind of expect getting back to C-style code might have some friction, but it’s about time to refresh my memory. I had a pretty good time with Rust for AoC in the previous years (not that I ever used it for anything else), but I guess it’s time to try something else.

I’d say that’s because here on Lemmy, we already don’t give a fuck about and wouldn’t touch Chrome or Edge with a ten foot pole, but some of us trusted Mozzila, which is now starting to do dumb AI shit. And having your trust broken hurts.

Astroturfing would not be recommending LibreWolf as an alternative.

If you look into alternatives, Brave is one that’s usually mentioned but there’s always someone quickly posting all of the dumb shit they did.

If you mean PhotoGimp, it’s just a config file thst rebinds keybinds and sets up UI layout, like location of tools and windows, to be similar to photoshop.

To be honest, I’m only using Matrix for the bridges into every other service, so I can talk to people on messenger, signal, telegram, discord and whatsapp through a single app, the Matrix client, so I at least don’t have spyware on my phone, even though they’ll get my messages. And E2E encryption doesn’t apply in that case, so I never had to deal with it.

With self-hosted solution, your main advantage is that you can simply create the accounts on the server side, and don’t need any verification. After the first login, it usually asks for every new device, that you have to confirm the session on a device that’s already confirmed, but I never had issues with that.

But I don’t have experience with actuall Matrix to Matrix communication, I just used the bridges. Haven’t tried DeltaChat yet, but tbh I’ve just given up convincing people to switch and am glad I can at least have the bridges working, so I never have to login or use any apps or websites of FB/Discord/whatever.

By the way, if you are using Gmail for Email, have files stored on GDrive, OneDrive (Documents are by default in OneDrive on Windows) or iCloud, use Messenger, Whatsapp, Skype, Snapchat, Xbox or Instagram to communicate, your files and messages are already being scanned for the last 5 years, since 2021.

ChatControl was already voluntary, and the products I mentioned villingly joined and are already doing it. For most of the people suddenly complaining, not much actually changes. They could do something about it for the past 5 years - not use the apps that do it, but “I don’t want to install another chat apps, I have everyone on messenger” have been forcing people like me to choose between privacy and having a way how to contact friends and familly. And I’m 90% sure that most of them vouldn’t switch even if this new law did not pass.

Anyway, if you haven’t already, look up “Matrix ansible project”, it’s an extremely easy way how to set up a server, with awesome guides and actually a very robust implementation. It will save you a lot of time. I"m just paying 6$ a month for Hetzner cloud, and setting it up took like an hour tops.

Self-hosted open source solutions will always be an alternative, the major problem is that they will soon ban side-loading of apps to phones, so you won’t be able to install a FOSS messenger that connects to your solution, or a browser that doesn’t scan you, unless you have something like GrapheneOS.

They already do that. I can’t watch YT, Reddit and have trouble logging in to FB. Cloudfare sometimes hits me with a endless captcha too.

I use Mullvad. Nothing of value was lost, and it has tremendously help me with finally stopping waating my time on those services.

It’s sad to see that we’re heading towards a future where people can’t read a text longer than one summarized paragraph, and write anything longer than a sentence without using LLMs.

Children are already skipping learning of very important skills by offloading it to AI in school.

Last time I checked, you cab use old.reddit.com to bypass this login requirement.

Reddit doesn’t let me in with ny VPN on, though, so I just stopped using it.

deleted by creator