TiffyBelle

TiffyBelle , 6 months ago

The number seems low, so I looked for some information about how common CO poisoning is in non-Airbnb hotels and motels and found this:

This study was conducted to determine the significance of the problem of carbon monoxide poisoning occurring in US hotels, motels and resorts. […] From January 1, 2005 to December 31, 2018, 905 guests were poisoned in 115 identified incidents, including 22 fatalities. […] Most poisonings were caused by natural gas fueled appliances and could likely have been prevented by an in-room carbon monoxide alarm. To reduce morbidity and mortality from unintentional CO poisoning in lodging facilities, government should mandate installation of in-room CO alarms, similar to the current requirement for smoke alarms.

This problem doesn’t appear to occur any higher in Airbnb establishments than any other hotel, motel, or resort, at least according to what this research suggests. It is worth noting, however, that the frequency of poisonings is a lot higher when you consider those that didn’t lead to fatalities.

With that said, CO monitors are fairly cheap and as the research states, a lot of these incidents could probably have been prevented by using them. In many countries in Europe at least, this is already a legal requirement. I don’t see why it shouldn’t be in the US too.

TiffyBelle , 8 months ago

I moved to KBin for a time when Lemmy had various issues such as auto-updating timelines that were hard to deal with and hugely broken algorithms for “Hot” posts, etc.

Somewhere around release 0.18.3 a lot of these issues were fixed and I ditched KBin. I figured in the long term, it was likely that Lemmy would have more development attention. It also used more straightforward terms like “communities” instead what KBin terms them (“magazines”), which just seemed to be unnecessary and confusing terminology for the sake of being different rather than because it made sense.

The KBin interface looks polished, but it hides a lot of fundamental issues with the software under the hood. I hope the project receives more dev attention and thrives in the long-term, however. It’s good for the Fediverse that choices exist.

TiffyBelle , 8 months ago (edited 8 months ago)

That’s a really nice alternative interface for desktop! I wonder if other instances implement it other than lemmy.world? It’s cool that that that instance admin has, though. It looks superb.

Its default purple theme matches my overall browser theme completely by accident, lol.

https://feddit.uk/pictrs/image/b8c7a59c-da2b-4d48-aaad-72b1fde6eeb1.png

TiffyBelle , 8 months ago

Awesome. Thanks so much for the tips! ❤️

TiffyBelle , 8 months ago (edited 8 months ago)

Obsidian is really good. Very feature-rich and customizable.

I personally prefer Joplin for a couple of reasons. It’s fully open source and while it has less features and customizability, I also feel it keeps out of my way more to allow me to focus purely on taking notes and not messing around with other features. Obsidian encourages me to play with its extra features more, which for my case usually just reduces the productivity of my note-taking.

Probably just a me-thing. I tend to gravitate to more straightforward and minimalist solutions generally.

TiffyBelle OP , 8 months ago (edited 8 months ago)

Good question! There’s a few reasons, I guess:

• There’s a large element of “because I can” to this, just to explore how stupid the scope of systemd is as a suite.
• There’s a small practical element. GRUB itself is quite a hefty tool to accommodate all kinds of boot setups, and it works well. If you have a simple boot setup though you could probably shave a couple of seconds off of the boot time just by using the simplified sd-boot and loading the kernel via its EFIStub.
• A learning exercise in self-signing EFI binaries, enrolling a MOK, and setting up scripts to handle updates.

All boils down to my enjoyment of doing weird nerdy things though, ultimately. =)

TiffyBelle OP , 8 months ago

Booting the kernel directly via EFIStub from the firmware is certainly an interesting idea, although it sounds like a potential pain to manage updates. Will definitely take a look down that rabbit hole though. =)

TiffyBelle OP , 8 months ago

Microsoft doesn’t own the standard. It’s actually an open standard maintained and contributed to by a whole host of technology companies. This is contrary to the old BIOS method which was originally proprietary to IBM.

The fact they have such wide authority in signing is a product of how wide-reaching their market share it. They essentially mandate that OEMs include their signing keys in the signature database if their systems are to ship with Windows, thus making them a de facto authority on what gets signed. This was a point that made a lot of people in the FOSS community uncomfortable and still does to this day, although if one wants they can actually take full control of the Secure Boot process by replacing the Platform Key (PK) with their own. This gives ultimate control to the owner of the machine as they can then replace the Key Exchange Keys to allow them to replace Microsoft’s keys within the signature database (db). This completely removes reliance on any third party signatures and enables ditching the first-stage Shim bootloader from the boot flow entirely, since the owner could just sign whichever bootloader they wanted to use directly with their own key in the database. As it would require manually signing everything from the bootloader to the kernel and its modules though, including re-signing them after updates, this is definitely a much more involved way of doing things although arguably even more secure as the system would be entirely locked down to only binaries signed by its owner at that point.

As to why they don’t sign GRUB, it’s about licensing. Since GRUB is GPLv3, there are provisions in the license that Microsoft interprets as potentially mandating them to disclose their private key to facilitate users installing modified versions of it. Ubuntu came to the same conclusion when contemplating how to deal with Secure Boot back in the day, where they wanted to provide an alternative to the Microsoft keys by having Canonical’s keys also shipped with firmware, although proliferation of their keys is a lot less widespread and in some peoples’ eyes not all that much different than just using VeriSign’s service for the Microsoft keys anyway.

TiffyBelle , 8 months ago

I prefer the KeePassXC fork as it’s written in C++ and not C# so it has better native integration with OSes like Linux, but yeah these are really good solutions with no subscription requirements or necessity to upload to any cloud service.

TiffyBelle , 8 months ago

This thread is about KeePass and my comments relate to that. If you pull KeePass2 from the repos in Debian, for example, it’s going to pull the Mono runtime to execute it as well because it’s been built, like most C# apps, for JIT compilation. I doubt it’s even possible to compile KeePass2 using AOT compilation.

This is what the C# KeePass application looks like using the Mono runtime in Debian:

https://feddit.uk/pictrs/image/20570e86-6c0b-4325-b7f4-2df32c5d9731.png

This is KeePassXC:

https://feddit.uk/pictrs/image/590ced27-0b20-4b96-8e04-87af5aff1986.png

You can see which has better native integration into the desktop out of the box.

TiffyBelle OP , 9 months ago

Turned out, this model was hard coded to only allow a boot entry named “Windows Boot Manager” to be loaded by default.

Holy moly that’s absolutely shocking. Yeah I didn’t quite realize how scuffed various UEFI implementations were until I encountered this issue and started looking around. Wild.

TiffyBelle , 9 months ago

The lack of proper search has been a defining barrier between Mastodon and similar services. I’m glad it has finally been added. A great improvement alone.

TiffyBelle , 9 months ago

Vivaldi is an awesome browser and the people and company behind it continue to inspire me with confidence that they’re truly committed to providing a Chromium-based browser that is as privacy conscious as it can be.

TiffyBelle , 9 months ago

Brave and Vivaldi are very different companies. I don’t use Brave specifically because I’m not comfortable with the fact that, essentially, they’re an advertising company primarily looking to push their crypto.

It’s true that using a Chromium base poses some additional privacy challenges. Due to its customizability, it’s certainly possible to harden Firefox to a better level than any Chromium-based browser currently; projects like Arkenfox certainly help with this, as well as the tweaks ported to the browser by the TOR Uplift project. With that said, stock Firefox as shipped by Mozilla isn’t exactly privacy friendly without going to lengths to harden the browser. Mozilla collect an absolute ton of telemetry by default, complete with a unique identifier attached to each download. FF also comes with pre-installed addons with questionable privacy policies like Pocket.

I think concerns about fingerprinting are somewhat overstated, or at least over thought about. The reality is there’s an absolute ton of metrics that can be used to fingerprint a browser by advanced scripts and if a site wants to fingerprint you it will, and it doesn’t really matter if you’re using FF or Chromium. The only realistic way of avoiding this is by using browsers like TOR or Mullvad, which aim to all have the same fingerprint so you’ll be able to blend in with the crowd. Preventing naïve script fingerprinting is the best you can ever hope to do on any other daily driver browser, and addons like CanvasBlocker for Firefox or JShelter for Chromium are typically enough to prevent fingerprinting by opportunistic scripts.

TiffyBelle , 9 months ago

Supporting the Chromium monopoly is a valid point, but there’s also a reason why a lot of browser companies, even those who market their browser at more privacy-conscious individuals such as Vivaldi and Brave, choose to fork Chromium over Firefox/Gecko. A good portion of that reason is Chromium’s superior security architecture that is a lot more battle tested and mature; the rest of the reason often comes down to compatibility and mobile-readiness.

A lot of people are wary of any browser engine attaining a monopoly since IE achieved this back in the day. It’s not exactly a like-for-like comparison though, since Chromium is actually open source and IE/Trident was not. For that reason, anything problematic can be stripped out by those who fork it which is exactly why we have browsers like Brave, Vivaldi, Ungoogled Chromium, and others who remove anything that feeds data to Google from their releases. The option also theoretically exists to hard fork the project entirely and take it in a different direction which was never a possibility in the IE days, although that would be a monumental effort.

I get it if people want to support Firefox/Gecko for philosophical reasons. In an ideal world there would be several projects of equal maturity to the browser engines we have today. Realistically though, for all intents and purposes, the vast majority of the world is already using Chromium in some flavor or another and it’s a project that has a lot of the world’s best browser engine developers contributing to it. As a user, I care most about using a secure, privacy-respecting browser that I find innovative which caters to my needs through its features rather than fighting a philosophical battle that’s already been lost. Naturally if you find Firefox does cater to all your needs though, more power to you.

TiffyBelle , 9 months ago

Coincidentally, the last time I opened WordPad was probably 28 years ago.

TiffyBelle , 10 months ago

I mean, I consider Mastodon pretty “customizable” in the sense that you state. It’s easy to follow individual hashtags surrounding specific topics, groups that people use to post about a specific topic or individual users. My home timeline is pretty much all topics I’m interested in due to who and what I follow.

Similar to Lemmy really. Your subscribed feed should be exclusively topics that interest you from the communities you subscribe to.

TiffyBelle , 10 months ago

I am absolutely not, but this may have changed as I don’t have access to real-time information as my knowledge was last updated in September 2021.

TiffyBelle , 10 months ago

Eh, I used to think this way until I actually tried GNOME for a bit. I’ve grown quite fond of its workflow. There’s definitely extensions that I feel I need for it to be fully usable from my perspective, but in some ways I see it as a positive to start out with a good foundation and then allow users to extend the functionality they feel they need onto that base. Not every user is going to want the same thing, so keeping the core minimalist makes sense.

If I wanted something like Windows, I’d use KDE. If I really wanted a GNOME Windows-like experience similar to the old GNOME2 behavior I’d use something like MATE or Cinnamon. I guess my point is that there’s plenty of DEs out there that are essentially copies of the same workflow. I respect the desire to innovate in GNOME3.

TiffyBelle , 10 months ago

I still use Slackware and it’s a great distro. I very much enjoy its batteries-included approach (a full install comes with pretty much everything pre-installed) and I enjoy its simplicity and ease of configuration and use. There’s a learning curve to get there, but once you understand how everything works it’s a distro that gets completely out of your way. The bonus is that if you understand Slackware, generally, your knowledge of GNU/Linux broadly will mean you’re never lost on any other distro either. Most of my frustrations with other distros actually stem from them patching something/doing something weird with config defaults, whereas Slackware ships stuff as it is from vendors with vendor defaults which I find a lot more palatable and predictable.

Philosophically, I like how Slackware is independent and beholden to no corporate entity. Controversies that have hit other distros in the past as a result of that just aren’t a thing with Slackware.

Slackware is a very rewarding distro to use even in 2023. It’s not for everyone, but I imagine there’s a fair amount of people like me who’ve probably been using it for ages and have had absolutely no reason to ever consider using anything else. Once you’ve got everything you want and configured stuff to your liking, it’ll just work forever fantastically.

TiffyBelle , 11 months ago

Debian. I always come back to Debian.

It’s just a rock solid, multipurpose distro that has everything. If you have an issue with some older software versions, you can just track testing or sid and treat it as rolling release or use flatpaks for GUI apps.

To me, Debian is almost perfect.

TiffyBelle , 11 months ago

Bit confused about the question, but assuming you mean Windows… it looks nothing like it.

It just looks like GNOME2, lol.

TiffyBelle , 11 months ago

Pretty much any store-brand toothpaste is probably going to be a lot cheaper than “branded” products, and will have the required amount of fluoride within it to keep your teeth healthy which is far and away the most important ingredient in any toothpaste. The entire toothpaste industry is mostly all marketing.

TiffyBelle , 11 months ago

It’s worth noting that the “trees planted” counter is basically an estimate as to how much ad revenue on average is generated from a user based on their number of searches. If you block ads at all, you’re probably not contributing to their revenue at all, thus planting nothing.

I like the idea, but don’t see it as worth sacrificing privacy or allowing ads. Tossing a few bucks every now and then to a charity might be a better option for some.

TiffyBelle , 11 months ago

Because there are search engines out there who don’t commit your IP/search terms to disk at all for any length of time. Search engines like Startpage, Brave Search, and DDG. Users of those would be sacrificing privacy to use Ecosia.

The money used to plant trees also comes from somewhere, namely advertising. It’s fair to assume most web-based advertisers are privacy-hostile and once you click ads served to you from Ecosia to actually generate them revenue, you are then directed to the advertiser’s site and subject to their privacy policy, which is likely a lot more loose. Allowing Ecosia’s ads through your filters is sacrificing privacy.

The Privacy Policy you linked also talks vaguely about working with and providing “metadata” and such to “third party providers” for a variety of uses, with apparently optional “personalization” and whatnot.

I don’t think their privacy policy is a complete disaster when you compare it to mainstream search engines like Google or Bing directly, which they go to great lengths to point out in their own policy with the “hey, we’re not as bad as the other guy!” rhetoric. But there are more private search options out there, hence my earlier post’s allusion to sacrificing privacy.

TiffyBelle , 11 months ago

A sense of pride and accomplishment?

TiffyBelle , 11 months ago

This reads like a low-quality AI curated article with “tips” that are absolutely useless.

TiffyBelle , 11 months ago

It feels very much the same type of people who were mostly hanging around the early Internet; BBS and IRC, etc. before “the general population” caught on and flooded the space.

TiffyBelle , 11 months ago

I avoided GNOME3 for the longest time, but I decided to try it on a new install of Debian on a whim and actually ended up really liking it. Needed to enable a couple of extensions, but once you get used to it the workflow isn’t at all that bad.