NewOldGuard [he/him, they/them]

A lot more people have android phones than iphones that’s all that is. If anything iOS is overrepresented

Piracy is ethically correct against corporations and I do it with glee

deleted by creator

So aurora with micro g is more private in the sense that you’re not required to have a google account which would be used to track the apps you use etc. But sandboxed google play on GrapheneOS is significantly more secure. It requires fewer privileges than microG, operates in a much stricter sandbox, and performs checksum verifications on your downloads to ensure they are legitimate. Aurora is hypothetically vulnerable to man in the middle attacks since it doesn’t check the file’s hash

Default Fedora workstation and Silverblue do it this way. First boot prompts you to create an account and set it up, then lands you on the desktop and asks if you want a tour of the UI

I don’t have experience with dual GPU laptops but from what I’ve heard PopOS handles them really well. They also have an image with the nvidia drivers preinstalled which should make the setup process straightforward

Edit: I also found this github repo which documents some fixes for issues on that device specifically. Not sure how many of these have been patched upstream by now but it’s worth checking out.

Flat out wrong, the Japanese were preparing to surrender prior to the nuclear bombs being used. The USSR had entered the Pacific front and was rolling through Manchuria to hit Japan, and the Japanese empire knew they were finished then and there. The nukes were nothing more than a US stunt to demonstrate the weapons and intimidate the socialist and imperialized countries away from resistance as the US started the Cold War.

I agree. I think Hector Martin should not have endorsed that sort of behavior to whatever extent he did. But I also think long term that the sorts of behavior that’s keeping these rust patches out of the code base will kill the future of the project. The reasons given aren’t even applicable since the patches are in their own branch of the tree. But I agree brigading is not the way to address these sorts of organizational issues

I agree but in terms of the features, momentum, and community around rust I think it’s the most promising option for memory safe language. But you’re right that it’s not the only option, I should say that they should be more welcoming to mixed language development with memory safe languages in general

Hey one thing I noticed in your safe mobile operating systems section is that you recommend divestOS as an alternative to graphene. I have made the same recommendation for years, but if you aren’t aware that project actually shut down in December so it’s just gone now. A good recommendation that is still maintained is CalyxOS, which also supports bootloader locking after install (at least on pixels, they have caveats for fairphone devices). I haven’t had a chance to read all of your guide yet though, but other than this I’ve enjoyed the parts I’ve gotten to. Thanks for making it!

Rust is the future for this sort of systems programming work, and by failing to see that and accommodate its use both Linus and Hellwig are sabotaging the long term viability of the kernel imo. New devs are keen to jump on rust because of how much it does better than C/++ and how much easier it is to make safe and secure systems with it, but shit like this just demotivates that crowd and thins the pool of people who are willing to contribute going forward. We need memory safety by default, the task of kernel stability is only going to get more complex and unsustainable without it. Stop holding onto tradition and purity for the sake of it

This is not true. You may be thinking of the Secure Enclave, which Apple processors have had for a while and acts as a dedicated piece of silicon to protect encryption keys. But pixels have this too, idk about phones with Qualcomm or exynos SOCs but they likely have something similar. Either way it has no impact on battery life and all major smartphones have been capable of encryption for many years

I got one of these for $20 at Walmart