Even there, if the stars align (network access, cups being used), you still need to convince the user of the device to switch printer.
Even there, if the stars align (network access, cups being used), you still need to convince the user of the device to switch printer.
As far as I’m aware, the exploit requires someone to try printing using a malicious networked printer. It is a vulnerability, yes, but it affects essentially nobody. Who tries manually printing something on a server exposed to the internet?
Although for local network access, like in a corporation using Linux on desktops, the vulnerability is an actual risk.
If this was the case, the phrashing around the issue would’ve likely been different. Yet bitwarden remained very vague, and even locked github comments on the issue.
Especially considering that a move like this alienates their core target demographic (people who use FOSS), they would’ve been much more open and much quicker if it wasn’t intentional.
I will personally be switching, likely to KeePassXC.
According to Jim Starkey, the person who coined the term, “Blob don’t stand for nothin’.” However, it is often referred to as a “Binary Large OBject”, meaning a large file with content not easily readable by people.
With an open source project, you have source code which is turned into executables/“blobs” by the compiler. As long as you trust the compiler, you can (functionally) know the content of the blobs by looking at the source code they were made from.
In the case of Ventoy, several “blobs” are included from an unknown or vague origin. This is a great way to bundle malware, as seen with the XZ backdoor from earlier this year. As such, the original creator of the linked issue is requesting they are built/obtained at compile time, so either the content or origin of these files can easily be found.
Correct, Vector does not receive this information unless you willingly share it with them.
Element is able to use features called “Integration Manager” and “Identity Server”. When using an Identity Server, you can choose to link name, email, and phone number to your Matrix account. When using an Integration Manager, there’s a feature to share your location with others in chat.
As such, Vector discloses that they “collect this information”, although (except some diagnostics), this is completely optional.
(I am not associated with Vector, just interested in Matrix)
“clean driver install”, which heavily suggests you installed nvidia drivers, probably from the website. That issue is entirely on you.
Although “custom Windows ISOs” are a big security risk, AtlasOS isn’t a “custom ISO” and running a random binary off some guy on YouTube is arguably just as bad. He has next to no knowledge of Linux, neither do any other “Linux YouTubers”. Trusting someone like that with your Linux machine is risky at best.
Lets go through the summary and see if anything is wrong or misleading:
Linutil is a distro-agnostic toolbox designed to simplify everyday Linux tasks. It helps you set up applications and optimize your system for specific use cases. The utility is actively developed in Rust 🦀, providing performance and reliability.
sudo pacman -S networkmanager
as “helping”, even when it ignores existing network configuration.So lets revise the short description, to exclude any incorrect/misleading statements:
Linutil is a toolbox. The utility is actively developed.
Alongside all that, the “installation instructions” include the biggest sin of all:
curl -fsSL https://christitus.com/linux | sh
TL;DR Never trust Chris Titus, or any “Linux YouTuber”, with your Linux machine. They do not know what the hell they’re doing.
mount -o remount,ro /
I don’t own one, so I can’t guarantee the following: Compared to other PCVR headsets, the screen is very high quality, the tracking is easy to set up, it’s not a facebook headset, and the price is still very good compared to other non-facebook offerings.
Eye tracking on PC would’ve allowed for “foveated rendering”, a technique where only the part you are directly looking at is rendered in high quality, with peripheral vision rendered at lower resolution. Even very powerful desktop PCs are going to struggle rendering the full resolution of the PSVR2s displays.
Please look up reviews, and check if the headset is compatible with the games you want to play, before purchasing one.
Of course it would be less than on PlayStation. Game developers on PC don’t have features like headset feedback and adaptive triggers built into their games, and the standard VR protocols (afaik) do not support stuff like that.
The main thing that’s disappointing is eye tracking being unavailable. There’s no technical reason for them to not expose that, and would’ve made the PSVR2 one of the best PCVR headsets.
Despite the downsides of F-Droid, there’s one thing they provide that other stores like Accrescent simply can’t. F-Droid provides APK builds with the exact source used for the build available. There’s a lot of trust involved, but this trust is in a single entity, rather than random developers. F-Droid has existed for a long time without adding malicious code to builds, so when they say “this source code produces this APK”, they have years of history doing exactly that to back their claim.
A random app developer has no such trust built up. Stores like Accrescent, even if you download only FOSS apps, trust the app developer with building apps. It’s less prone to one massive takeover, but APKs built by random devs are much harder to verify and check for malicious code than the source code. If F-Droid is taken over, it should be noticed relatively quickly, but affects everyone using F-Droid. If an app on Accrescent bundles malware, only users of that app are affected, but it may go unnoticed for a much longer time.
Client side anti-cheat is inherently flawed. These games are asking an untrusted computer whether it is cheating. That’s like asking a known liar whether they’re lying at that moment. The one way to make it harder for the computer to “lie” is by increasing the permissions the AC has, which comes at the cost of privacy for people with the game, and security for every Windows user (not just the ones with a certain game installed).
Client side anti-cheat can be poked and investigated locally, with no restrictions. All it takes a skilled enough cheater is time, and they will bypass it. The only way to test server side anti-cheat is by hopping in the game, trying to learn how it works, and trying to bypass it. That is a much more time consuming and expensive process.
This person uses an 8GB mac, and tried to defend Apple in the debate, going as far as to say that Apple hardware is “not that expensive”, and within 2 months regrets buying the 8gb mac.
They think Open Source is “overrated”, insecure, and not important. They think Linux users are “normies” and fakers, Linux is not a desktop OS, and have explicitly stated “F*** LINUX”.
That’s a lot of terrible opinions in just 4 months, especially for someone who calls the internet “stupid”, and supposedly doesn’t have any education.
This is either a troll account, or someone with less than zero credibility considering their opinions and statements.
Steam Link doesn’t work on Linux. SteamVR, ALVR, WiVRN, and Monado work under Linux.There’s more headsets than the Quest.
Android is a dead end for FOSS in the future, but moving from one corporate owned semi-proprietary OS to another doesn’t solve anything.
It really depends how the release turns out. Eye tracking is often used in social VR games like VRChat, and it can help increase peformance, but that often requires setup. The other “features” are not standard or completely lacking in PC VR, like “headset feedback” or adaptive triggers. These wouldn’t be used in any games even if the hardware/software was capable of it.
Compared to the Valve Index, the PSVR2 has a higher screen resolution, OLED, no finger tracking (different controllers), and inside-out tracking instead of base station tracking. It looks like a really good option, at a really good price (compared to other “consumer” PC VR headets like the Index). From what I can tell, you’re not really “missing” any major hardware features when using PSVR2 on a PC compared to an Index (depends on implementation, will be obvious at release). Although the lack of eye tracking when the hardware is capable is kind of a bummer.
Wait this one out for initial reviews, but if those are good, the PSVR2 seems like a very good option for PC VR (Although only “casual”, like playing games, social vr, etc. compared to “competitive” like very high level play at Beat Saber, shooters, etc).
Do note that this is just looking at PC VR exclusive headsets. “Standalone” headsets like the Meta Quest lineup offer similar VR hardware specs at a similar or lower cost. These come with the downside of having to “stream” from a PC rather than using raw display output (for games not natively supported on the headset). The privacy aspect of standalone headsets needs to be considered too. Most run a version of Android, which comes with just as much (or more) telemetry as an average Android smartphone.
As for being tethered, you get used to it pretty quickly. The main problem is that the cable is being used, and will break after some time. They are often expensive to replace, like on the Index. With standalone headsets, the cable is often USB-C and a lot cheaper to replace. I don’t know how replacement cables for the PSVR2 are handled.
That was a possibility with this exploit, but realistically that doesn’t affect nearly as many people as “All GNU/Linux systems”.