That leaves UCEPROTECTL3

Is anyone still using them?

I see a lot of spam coming from sendgrid, so I wonder how long they can continue operating that way until they get blocked completely by one of the larger mailbox providers.

see https://www.open-std.org/jtc1/sc22/wg21/docs/papers/2024/p3471r2.html#enabling-hardening

Much like a freestanding implementation, the way to request a hardened implementation is left for the implementation to define. For example, similarly to -ffreestanding, we expect that most toolchains would provide a compiler flag like -fhardened, but other alternatives like a -D_LIBCPP_HARDENING_MODE=<mode> macro would also be conforming.

I wonder if it would be possible to build such a tool on top of tree-sitter (although not sure tree-sitter’s C++ grammar can handle modules yet)

Isn’t that mainly just torrent trackers that publish your IP address and then the ISP gets a request for who was using that particular IP address. I don’t think an ISP would itself be interested in detecting whether their customers download illegal content - there is no business case for them to do that.

at least you could keep their reviews so users could at least know if the app can be trusted.

You mean, don’t trust a flatpak uploaded by a random person, but if there are enough fake reviews, it can be trusted?

Can anyone explain why there is such a huge difference in some of the benchmarks: Poll, Forking, CPU Cache, Semaphores, Socket Activity, Context Switching (all Stress-NG). Can we really trust these tests?

Also the location of known Wifi networks.

Embracing the GC

I never actually liked the GC in D as it didn’t seem to fit in with the general direction of the language, and Walter Bright in D at 20: Hits and Misses says:

Miss: Emphasis on GC

So they actually rewrote The Hurd in Rust.

Prepare for a humongous inrush of spam before servers patch this one.

But it’s already patched by GMX and Microsoft.

As far as I understand it, it doesn’t affect single mail servers, but only mail systems where you have separate inbound and outbound servers and the outbound servers trust the data they get from the inbound servers.

Not sure how many get the joke in “Figure 23: Typical Austrian reaction after receiving a spoofed e-mail”:

OIDA

😂

There is no reason to “hate” Ubuntu but there are better choices.

What are those better choices then (for those who currently use the non-LTS Ubuntu releases and don’t want to move to rolling releases or LTS-only releases)?

I still think Ubuntu is the best option (particularly if you want to use the non-LTS releases)

Having said that I do hate snaps and also dislike flatpaks. So what I do is just use the Firefox deb package from the PPA and the chromium package from Linux Mint. Oh, and I have actually replaced ubuntu-advantage-tools with a no-op dummy package.

Only issue is they’re stored in my server as belonging to the server user (I assume everything in those directories should belong to root and I can just use chown?) But I also don’t know if they retain the same permissions when backed up.

Not everything will be owned by root, and some of the binaries will be setuid or setgid, some might even have extended attributes (e.g. ping will usually have a security.capability attribute). /var will also have a lot of different owners.

“secure alternative”? Others are not secure?

Pretty much anything that’s only available via an app store. The difference with web apps is that I can also use them on a laptop/PC and I have a bit more control about tracking (by using ad/tracking blockers).

not being forced to have an Android or Apple smartphone, so more open standards and just Web apps instead of proprietary apps

replaced it myself - it’s not actually that difficult to do

I actually replaced the display twice already (got a replacement from Aliexpress for around $16) - first time because the touchscreen failed and second time because I smashed it.