So far, there is only some user settings accessible in the web interface. I don’t have an iPhone, hence I cannot say for their app. The android app will come later, apparently.
I don’t give a removed about TikTok or short form video but legitimately how is this expected to succeed with these limitations? Clearly people like this stuff but can a fediverse service really afford to be iPhone only? This truly seems doomed to fail.
we can get random experts chiming in about interesting topics
Lol we have that now… just be sure to phrase your question in the form of a Linux distro.
But to be serious I do think we’re heading that way, but it’s going to take a long time, likely as long as it took Reddit (if not longer).
I have no way to put this gently: I cannot conclusively determine which one is more secure.
That’s the only conclusion I would have trusted. Otherwise you should have been awarded the tech equivalent of a Nobel Prize.
Security (and privacy) is not a zero sum game. That isn’t to say we shouldn’t discuss it. That isn’t to say we can’t point out clear advantages.
In any case, I appreciate the write up.
Re Google Safe Browsing
I would argue it’s a security feature with potential privacy concerns, however I would agree it is more of a failsafe or suggestion.
However it being disabled by default or not included at compile time versus enabled by default may also be relevant when it comes to security. As a hypothetical a high severity bug with Google Safe Browsing could arguably make a browser less secure. However even as a failsafe/suggestion, the small security benefit may make the overall browser more secure, e.g. filtering known bad websites that attack known vulnerabilities.
I’m also just using Safe Browsing as an example here, it may or may not be worth focusing on since a browser is basically an operating system.
You mentioned sandboxing, which I think is perhaps a more reasonable scope.
So the community (users) can move, but I just realized that when an instance shuts down the community (posts) limps on, preventing the community (posts) from actually dying and the community (users) from moving on.
For instance, if you asked me, a lemmy.world user about moviesandtv@lemmy.film I would see, https://lemmy.world/c/moviesandtv@lemmy.film
But if you ask a sh.itjust.works user they see, https://sh.itjust.works/c/moviesandtv@lemmy.film
And lemmy.ml users see, https://lemmy.ml/c/moviesandtv@lemmy.film
We all see different versions of the same community (posts).
I think https://github.com/LemmyNet/lemmy/issues/4619 would fix this.
Re Concentration I’m not concerned that it is as of yet a problem. However I do think it is also a larger problem for Mastodon and other user-centric platforms than it is to Lemmy and other community-cetric platforms.
If a Mastodon user wants to leave their server there are migration pains. If your server makes a controversial change, you may have to migrate. As a follower if something goes wrong I have to remember that I was following Ada & Bob, but maybe Bob now goes by Bobby.
However as a Lemmy user I can just abandon my server and be done with it. If my server makes a controversial change, I can just leave. As a community follower can watch as Star Trek Memes becomes Risa, or Risa becomes Ten Forward. The names changed completely but it’s easy to find my community again.
I use flat case most of the time, but I also try to stick to single word files so there is no case to get in the way.
I think for documents I might share like a PDF I’d use Pascal case.
In a classroom or teaching setting I will sometimes use Kebab case as I find it is the least confusing and makes it extra clear where the word division is. Similarly I avoid Dot notation since it’s confusing for folks coming from a Windows world.
And I would avoid Screaming because that’s just too loud anywhere.
Sure that reveals your distro, but also consider what is in the logs you’re sharing. If you’re asking for help you probably also already said that you’re running Debian. Or the logs are full of apt logs already, querying a well known Debian mirror.
You’re right that PC is a fine default, but think about the whole picture as well.
Is the problem account making or data having persistence/backups?
Or is the issue having an account on service A, service A dieing and then when you create an account on service B you have to start over again, so we need to improve account portability?
I guess I also wonder… Is that a real problem for Lemmy? For Mastodon where you follow users sure, but does anyone care about their Lemmy account?
And what’s stopping that from happening now?
I assumed, perhaps incorrectly, that servers die because they are difficult to maintain. This is perhaps especially true for kbin/mbin based servers.
I suppose for enough money some might be willing to maintain, but I’m not sure it’s that simple.
Is there a solution to make the whole ecosystem mature and professional?
Certainly having everyone on one instance isn’t the way to go.
As far as I know. You could probably get fancy moving to dev mode and then install whatever, but I’m plenty happy with Debian.
Crostini. https://chromeos.dev/en/linux
A “one click” install of Debian (in a VM) that runs alongside your ChomeOS device. It’s a great starter tool for those getting used to Linux and even for the Linux Pro it gives you a terminal, which 99% of the time is all I need.
You can use GUI applications as well so GIMP and other tools are available.
Super easy, barely an inconvenience.
I think it’s fine if multiple of the “same” community exist.
If I were on Snooface and wanted to share/discuss a new game would I do it on, r/Gaming, r/Games, or r/TrueGaming? (Or yet another.)
If two communities are EXACTLY the same, then sure, merge them, but they are never EXACTLY the same.
Re “It could even a boat”, that’s Family Guy https://youtu.be/GKZJdaiJF84
But your point still stands.
https://www.mozilla.org/en-US/security/advisories/mfsa2023-56/
That’s a link to the most recent release of Firefox and the security vulnerabilities that were fixed.
You’ll notice the first one listed says, “This issue could allow an attacker to perform remote code execution and sandbox escape.”
So if you visited a site that exploited that bug, it escaped the sandbox and ran whatever code it wanted to. Since you were running as root it could do anything it wants. Your device is now the property of someone else. Potentially all your data has been stolen. You probably didn’t even notice.
Now. Realistically. You probably didn’t get exploited. Your device may not be vulnerable to that particular bug. But new bugs are found, and fixed, and created every day. Can you be sure you weren’t exploited?
Let’s look at it a different way. Think of it like driving a car with no seatbelt or airbags. As long as you don’t crash, you’re fine. The car still works fine without seatbelts and you have more freedom to move your arms around.
Let’s look at it a different way. Do you ever lock the door to your home/apartment? Heck do you even close the door? Why not leave it wide open?
At the end of the day security is about layers and the trade offs for convenience. You can run KDE as root, and you can run Firefox as root. You’ll probably be fine. It’s like driving without a seatbelt or leaving your front door wide open, but you can do it. If you do drive with a seatbelt and at least close your front door, you can probably run KDE and Firefox as a regular user.
You’ve mentioned that the majority of Lemmy.world users support defederating from threads. Do you have a source?
As someone in the “wait and see” group I’m curious how many people really are in each group.
Someone who disagrees with you is not a bootlicker.
Meta is a garbage company. Meta has done terrible things historically. At the moment we don’t know how Threads will affect the rest of the Fediverse. I’m ok with giving Meta a short leash. If you disagree, join an instance that has already blocked them. That’s how this works.
I fully expect, once rolled out, I’ll block Threads, but that is MY choice to make.
Debian Testing. It isn’t “recommended” but it works fine.
Obviously if you want AUR you need an Arch variant, in which case just pick Arch.
Edit: I needed the why, it’s up to date enough for me and I know apt well.