Lemmy.ml admin who banned him here: Not sure I have that much to add to the convo, but I will say I’m really disappointed at this. Still think the ban should have been upheld but the admin that reversed it outranks me so my hands are kinda tied.

Might have transferred it through China, Russia, etc

Suddenly the cryptobros don’t like the fact that anyone can use it anymore.

Pedophiles paying for CP and murderers paying for hitmen? That’s just the cost of currency freedom, apparently (not making it up, I’ve seen cryptobros defending both under the guise of if you suppress them you suppress everyone). But a country the US hates paying to feed its people? Now that goes too far!

Also, prions, one of the deadliest cannibalism infections, are pretty damn heat stable. You can grill the shit out of a burger and still get mad cow disease, pretty sure that applies to human-human transmission too.

Also also, if I’m understanding this right, he didn’t actually get backlash for being a literal cannibal, you know, the most serious point in all of this, but instead he got backlash for accidentally eating a fellow Ukrainian instead of an evil enemy Russian?

What the fuck is wrong with people?

It wasn’t supposed to lol

Maggot poop cheese. Search it up.

And they have the gall make fun of Chinese food during covid. “HURR DURR THE CHINESE ARE SO GROSS THEY EAT BATS!”

And when they inevitably go “hey that’s only one small region of Europe!” Just say “well only one small region of China eat bats too, didn’t stop you from being racist toward the whole thing, did it?”

Also, hope you get a prion you piece of shit.

Literally being a monster in order to show how barbaric the Russians are. Nice.

Why include it as a default though? If they simply dropped a recommendation, or asked to install it letting you know it’s proprietary, sure people might still complain but it won’t be seen as nearly as serious a violation of FLOSS principles.

Can you elaborate? This is the first time I’ve heard that, then again I’ve never used Grapheme and never interacted with any communities dedicated to the project.

This whole thing has given me the push I needed to get off Reddit. Uninstalled Slide from my phone and logged off Reddit on my browser.

And I realized that I don’t miss it, and I barely even think about it anymore.

TIL that’s a thing.

And TBH it’s really suspicious they don’t tell you which one.

I do wonder what their one proprietary app is

I vaguely remember there was this weird PDF reader app I’d never heard of the last time I used /e/. Going to bet it was that. Never used it, installed Book Reader from F-droid in its place.

Now, why that would be a default, I don’t know. The only non “it’s sponsored” theory I can come up with is that vanilla AOSP, by itself, has no actual ability to read PDFs. There is no default app for it and none of the common browsers can open them either. This is actually a problem in LineageOS because it only ships the AOSP default apps.

Or maybe it’s their custom app store that connects to Google Play without signing in? It doesn’t seem it’s based on Yalp/Aurora Store.

/e/OS currently has an alpha image for the FP4, I imagine LineageOS will soon too. Both are well-known degoogled ROMs.

It’s expensive yes, unfortunately prohibitively so for many, but that expense goes into sustainable, conflict-free materials, many years of continuous support, and the engineering required for a semi-modular phone. It will more than likely last you a very long time, longer than any other Android phone, especially since the battery, the first thing to fail in a phone, can be freely replaced.

Yes

I’m definitely an advocate for low level memory safe languages like Rust, over C/C++

No, this is worse. With the cURL thing, you know what you’re doing because you literally entered the command, and then you have to enter a password, and you can make your own assessment as to whether it’s a good idea. Also, assuming you’re on an HTTPS connection and trust the source (i.e. reputable software author versus shady pirate site), it’s not actually unsafe.

Whereas with sandbox breaks in Electron, someone can’t reasonably know that a feature is vulrnable (hell it can take the people who wrote the damn thing years to realize there’s a bug). If you need to open an HTML file in VSCode, are you going to manually audit the previewer implementation? It’s much easier to check your terminal commands for insecure pipes than to check an electron app for sandbox violations.

Is there a specific reason or example for why we say it has terrible security here?

From what I’ve heard, it’s trivial to accidentally execute an external webapp with the same privileges as the app itself, so you’re one bug away from potentially giving a random website access to your system APIs. For example, an improperly implemented HTML previewer would probably be the easiest way to get pwned in this way, especially since Electron supports the entire Node.js environment and not just browser based JS.

I’d be less hateful of Electron if it simply allowed me to use Mozilla Gecko instead of Chromium as the rendering engine.