What connection do you think a third party is saving when using openid? Generally speaking the only thing the third party needs is your identifier which in most cases is just an email. It’s no more devastating for the user base for that information to be leaked than it is when they’re handling authorization themselves. I personally think using a government backed authorization platform is a terrible idea and something completely liable to be abused by those in power, but it would objectively be better than trying to have every single service store your personally identifiable information themselves.

??? This is just textbook sso/openid but backed by the government. There’s nothing intrinsically insecure about having third parties send you directly to a trusted government site for authorization.

Imagine knowing what people post on Twitter

I don’t want to be an asshole but after checking a couple of those out they all appear to be post-authorization vulnerabilities? Like sure if you’re just passing out credentials to your jellyfin instance someone could use the device log upload to wreck your container, but shouldn’t most people be more worried about vulnerabilities that have surface for unauthorized attackers?

I think he maintained git at its inception for like 6 months and then passed it off to someone else, but I could be completely mistaken.

Remember to take your Claritin before starting a sync play session

With certbot there’s probably a plugin to do it automatically, but if you just want to get something working right now you can run the following to manually run a dns challenge against your chosen domain names and get a cert for any specified. This will expire in ~3 months and you’ll need to do it again, so I’d recommend throwing it in a cron job and finding the applicable certbot-dns-dnsprovider plugin that will make it run without your input. Once you have it working you can extract the certs from /etc/letsencrypt/live on most systems. Just be aware that the files there are going to be symlinks so you’ll want to copy them before tarballing them to move other machines.

certbot --preferred-challenges dns --manual certonly -d *.mydomain.tld -d mydomain.tld -d *.local.mydomain.tld

Printing was horrible on Windows, and Mac uses cups too, no? I’ve only ever had good experiences printing from Linux

Technically you can nat punch with wire guard

I’ve encountered the issue on arch and fedora, don’t have the package name off the top of my head but both package managers ask you to pick a package to fulfill the dependency.

Most distros have a vk package that steam depends on that varies based on hardware, there is a system different package for amd than Nvidia or Intel.

I daily drive Wayland and I just have to ask, why is the clipboard and associated tooling so much worse‽ I just want input leap and neovim to both be able to properly read from and write to my clipboard. Input leap never can, and neovim has like a 50% shot at doing what I expect. Also I understand we’re moving away from x11 in general but why is there no replacement for x11 forwarding over ssh?? I know I’m a niche user, but it drives me crazy.

Rust guys want to make the kernel safer, more expressive, and easier to maintain. To do that they need to know how the kenrnel talks between its parts to ensure they are creating matching behavior. The C guys don’t really care about the Rust guys and say that they can’t be bothered to guarantee interoperability because they like to change how things work on the C side to make things better in the C code.