Giver of skulls

Verified icon

  • 0 Posts
  • 1.03K Comments
Joined 102 years ago
cake
Cake day: June 6th, 1923

help-circle
  • If you have your client configured for IMAP, Thunderbird will synchronise with the new server.

    If you did not transfer your emails from your old server to your new server, that means the new state is “empty inbox” and synchronising means “removing everything that’s available locally”.

    To fix this, either do a server-to-server transfer from the old email provider to the new one (there are tools to do that, like imapsync), or try importing emails from a backup into Thunderbird after synchronisation succeeds, so that Thunderbird will upload the messages. It’s possible that you will need to use a tool to rewrite the message IDs so that Thunderbird treats the messages as new items.

    If you have already cancelled your old server provider (so a server-to-server transfer is not possible), restoring from backups may be your only solution.

    If you don’t have any backups, your email may not be lost. The first thing you need to do is copy Thunderbird’s data folder to a backup location, just in case Thunderbird tries to do maintenance on the file while you’re performing recovery. Then, use a tool like Thunderbird Reset Status (I can’t quickly find a more up to date tool but they probably exist) to unmark the emails in the Thunderbird mail store as deleted. Then set up backups for your new mail server.

    If you use the trick above and Thunderbird starts deleting emails again, repeat the trick but break the email account settings first. Then, set up a second connection to your email account, drag over all the undeleted emails so they get uploaded to the new server.


  • Mastodon is just one of many applications that uses AP for their own custom purposes. MissKey and derived software has some kind of emoji response feature to posts that’s basically unimplemented anywhere else. Lemmy’s boosting trick to make comment sync make interoperability with timeline based social media a spamfest.

    Maybe I should check again, but last time I looked into it there were no commonly used ActivityPub compliant servers. Everyone does their own thing just a little different to make the protocol work for their purposes. Even similar tools (see: MissKey/Mastodon, Lemmy/Kbin) took a while to actually interoperate.

    As far as I can tell, the idea behind the original design, where servers are mostly content agnostic and clients decide on rendering content in specific ways, hasn’t been executed by anyone; servers and clients have been mixed together for practical reasons and that’s why we get these issues.


  • It’s very useful in sealed devices (smart watches, ear phones). Much better than pogo pins on your skin; whatever metal they pick, someone is going to be allergic. Things like active pencils (Apple Pencil, but als the Windows open standard ones) also make a lot of sense to charge like that.

    I also use a wireless charging stand for my phone. Most phone stands have an opening for a cable, but for some reason that opening is always at just the wrong space, or not right for the cable. K They’re also useful when using your phone for navigation in your car. I find a cable sticking from the bottom of my phone quite a handful to manage, especially as the USB ports are all so close to my gear shifter.

    For those still sporting lightning iPhones, it also provides a universal charging option.

    Oh, and then there’s the edge case of “I want to plug something into my phone and also charge it”. Tiny flash drives, 3.5mm converters, you name it. Most phones only have one USB port, so using it for anything but charging usually means not being able to charge unless you go wireless.

    Still, wired is the way to to moet of the times. Wireless is just a nice backup, and maybe a fun gimmick in certain furniture.


  • Building trust is hard. It’s easier to trust a few companies than to trust a million unknown servers. It’s why I prefer Wikipedia over amazingnotskgeneratedatalltopicalinformarion.biz when I’m looking up simple facts.

    Furthermore, Facebook isn’t selling data directly. At least, not if they’re following the law. They got caught doing and fined doing that once and it’s not their main mode of operation. Like Google, their data is their gold mine, selling it directly would be corporate suicide. They simply provide advertisers with spots to put an ad, but when it comes to data processing, they’re doing all the work before advertisers get a chance to look at a user’s profile.

    On the other hand, scraping ActivityPub for advertisers would be trivial. It’d be silly to go through the trouble to set up something like Threads if all you want is information, a basic AP server that follows ever Lemmy community and soaks up gigabytes an hour can be written as a weekend project.

    Various Chinese data centers are scraping the hell out of my server, and they carry referer headers from other Fediverse servers. I’ve blocked half of East Asia and new IP addresses keep popping up. Whatever data you think Facebook may be selling, someone else is already selling based on your Fediverse behaviour. Whatever Petal Search and all the others are doing, I don’t believe for a second they’re being honest about it.

    Most Fediverse software defaults to federation and accepting inbound follow requests. At least, Mastodon, Lemmy, GoToSocial, Kbin, and one of those fish named mastodonlikes did. Profiles are often public by default too. The vulnerability applies to a large section of the Fediverse default settings.

    I’d like to think people would switch to the Fediverse despite the paradigm shift. The privacy risks are still there if there’s only one company managing them, so I’d prefer it if people used appropriate tools for sharing private stuff. I think platforms like Circles (a Matrix-based social media system) which leverage encryption to ensure nobody can read things they shouldn’t have been able to, are much more appropriate. Perhaps a similar system can be laid on top of ActivityPub as well (after all, every entity already has a public/private key pair).


  • I don’t believe you can do it natively. However, I have managed to convince my phone to swap from slow 2.4GHz to 5.2GHz by using the Fritz! Wlan app, which exposes some more WiFi control.

    I can imagine recent Android versions having patched that out, though. WiFi permissions are usually only granted to system apps these days.

    I believe there’s also an ADB command line way, but I don’t remember it. Furthermore, you could try looking into developer options to see if there’s a toggle in there, or perhaps a method to select the WiFi country so you can pick one that won’t connect to your 5.2GHz band.

    As long as the SSID and password are the same, and both are routed to the same network, IoT apps shouldn’t struggle to connect, though. You can try temporarily disabling 5.2 GHz in the router but I kind of doubt that it’ll fix your problem unless you have a really uncommon setup. Even with my weird guest network setup, cheap tuya IoT seems to connect just fine. Tuya all goes through the cloud anyway.


  • I don’t think dansup was in the wrong here. Yes, it’s a security issue I suppose, but the problem lies within the underlying protocol. Any server you interact with can ignore any privacy markers you add to posts, you’re just not supposed to do that.

    Whether this is a 0day depends on what you expect out of the Fediverse. If you treat it like a medium where every user or server has the potential to be hostile, like you probably should, this is a mere validation logic bug. If you treat it like the social media many of its servers are trying to be, it’s a gross violation of your basic privacy expectations.


  • This is exactly why ActivityPub makes for such a mediocre replacement for the big social media apps. You have to let go of any assumptions that at least some of your data remains exclusive to the ad algorithm and accept that everything you post or look at or scroll past is being recorded by malicious servers. Which, in turn, kind of makes it a failure, as replacing traditional social media is exactly what it’s supposed to do.

    The Fediverse also lacks tooling to filter out the idiots and assholes. That kind of moderation is a lot easier when you have a centralised database and moderation staff on board, but the network of tiny servers with each their own moderation capabilities will promote the worst behaviour as much as the best behaviour.

    But really, the worst part is the UX for apps. Fediverse apps suck at setting expectations. Of course Lemmy publishes when you’ve upvoted what posts, that’s essential for how the protocol works, but what other Reddit clone has a public voting history? Same with anyone using any form of the word “private” or even “unlisted”, as those only apply in a perfect world where servers have no bugs and where there are no malicious servers.


  • The market runs Windows, so it would entirely depend on how well Windows runs on them. If you’re buying an Apple chip to run macOS, you’re already getting the best deal out of Apple anyway.

    Given the history of Exynos I doubt Samsung will ever make anything high performance. If you want high performance ARM, you’ll probably want to go for something like Ampère, like the workstation that System76 is selling right now.

    The modern Snapdragons seem more than fast enough for most desktop use. They have PCIe capabilities so in theory you could just hook up a GPU and use them in a gaming rig. The most power efficient gaming rig could hilariously be a Qualcomm CPU paired with an Intel GPU. Qualcomm’s media encoder/decoder is also leagues ahead of the desktop competition, so streamers may get an edge there if OBS can take advantage of the hardware acceleration. Unfortunately, from what I’ve seen on reviews, some games don’t like to run on ARM. Performance is just fine (very impressive for laptop GPUs!) but without stability, you’re not attracting many gamers.

    If Qualcom targets the desktop market, I expect them to go all in on Apple Mini style computers. Their Snapdragon chips inside those ultra thin desktops Lenovo sells pack a surprising punch and they’re more than good enough for most desktop use. Taking the fight to gaming seems like picking an uphill battle for no reason.

    Unfortunately, modern ARM designs all seem to go the same route as Apple, with unified memory for both CPU and GPU. You can run the CPU on swappable DIMMs, but the GPU needs more bandwidth than that, so you’ll need to get soldered RAM. I was hoping LPCAMM2 would fix that, but Framework and AMD tried and couldn’t get their new AMD chip to work without soldering the memory for stable performance, so I’m thinking the days of swappable memory are coming to an end.



  • Two possible reasons here:

    1. Discord is blocking Nord from password reset links on a network level (probably because VPN servers are second only to Tor when it comes to malicious traffic). Frankly, I would’ve expected a CAPTCHA page instead, but it’s technically possible for an error to show up that way. You can try bypassing it by manually editing the address to make sure it starts with https.

    2. Your VPN is actively trying to sslstrip you. Aside from the whole “that’s literally a crime people go to prison for” thing, that means you cannot ever trust that VPN again. Just because Discord bothered to secure their website doesn’t mean other apps do. You may already have been hacked if that is the case.

    I’d be extremely cautious with VPN software because you’re essentially trusting them to be your ISP. If they’re doing permanent 40% off deals or (god forbid) sponsoring YouTubers, you should never trust them. It’s both funny and depressing how companies like PIA and Nord somehow convinced everyone that VPNs make your internet more secure while also not getting people to think for even a second about how much they trust these shady ass Caiman Island tax dodge scheme companies.


  • MLS is designed to support that use case, but the spec to actually intercommunicate between services is still being developed by the MIMI group. MIMI is the logical but entirely optional extension of MLS.

    I don’t think carriers will want random chat apps to send messages for free to their infrastructure for spam prevention alone. Companies like Element and Wire are probably going all in on this, but Signal doesn’t even want you to use clients they didn’t compile, let alone federate between services.

    I believe WhatsApp has chosen to license its API in a documented fashion rather than implement a cross platform messaging protocol after they were forced to open up by the DMA. That said, there are a bunch of Facebook emails in the MIMI protocol discussions, so at least one of their messengers may still end up implementing MIMI when it’s finally finished.


  • H1-B is a great boon for the American economy and it’d be absolutely idiotic to get rid of it, but the current American government runs on a platform of xenophobia, racism, and plain lies. They’re stupid enough to kick out all the illegal residents that harvest the crops and take care of trades, so I don’t see why they wouldn’t be stupid enough to end the programs that essentially bring in cheap, highly-educated labour into the country.

    I know Elon is profiting massively of H-1B, but that doesn’t mean there won’t be some kind of special exception for Elon’s companies. The current government is also getting rid of electric chargers along federal roads, while at the same time peddling Teslas at the white house.

    As for a source rather than a generic feeling: Project 2025’s handbook, basically a step-by-step guide of what the current American leadership is working on, page 150, mentions H-1B reform as a goal:

    H-1B reform. Transform the program into an elite mechanism exclusively to bring in the “best and brightest” at the highest wages while simultaneously ensuring that U.S. workers are not being disadvantaged by the program. H-1B is a means only to supplement the U.S. economy and to keep companies competitive, not to depress U.S. labor markets artificially in certain industries.

    Read to me like they’re trying to restrict H-1B to what it was originally intended to be: supplementing highly-educated labour where necessary, rather than allowing tech companies to cheaply import labour from poorer countries. Thing is, the US doesn’t need that much extra highly-educated labour in fields like computer science. When I see these people write down “reform”, I interpret that as “completely tearing down and replacing whatever was there with a new system”.


  • If you’re in the US, you’re probably right. After the cancerous growth VC companies dumped the unused software people they hired for no reason other than paper growth, the market showed it’s not as desaturated as statistics would make it seem.

    On the other hand:

    • H1-B is a political tool, and I doubt that visa still exists by the end of the year. Plus, the people coming in on H1-B visas are still software developers. They’re just from another country.

    • The software already built is good enough

      I have worked at several companies whose terrible, buggy software sold like hot cakes because the competitors were even worse. General consumer software and apps may be pretty saturated, but B2B is an unending race to the bottom, racing for “better than before without being much more expensive”.

    • Destruction of the public sector

      Helps not to be American. Or if you are, look for software jobs in defence.

    • AI is going to change the industry for sure. Lots of dumb framework copy/pasting jobs are going to disappear, but among the mess people with actual knowledge are going to be incredibly valuable.

    I do expect programmer careers to start paying out significantly less over the coming times, but mostly if you’re used to the ridiculously high wages software development pays in the US.

    I’ve found a new software dev job within biking distance in less than three weeks, after submitting my CV a total of three times. The B2B sector is still growing.