Need to let loose a primal scream without collecting footnotes first? Have a sneer percolating in your system but not enough time/energy to make a whole post about it? Go forth and be mid: Welcome to the Stubsack, your first port of call for learning fresh Awful you’ll near-instantly regret.

Any awful.systems sub may be subsneered in this subthread, techtakes or no.

If your sneer seems higher quality than you thought, feel free to cut’n’paste it into its own post — there’s no quota for posting and the bar really isn’t that high.

The post Xitter web has spawned soo many “esoteric” right wing freaks, but there’s no appropriate sneer-space for them. I’m talking redscare-ish, reality challenged “culture critics” who write about everything but understand nothing. I’m talking about reply-guys who make the same 6 tweets about the same 3 subjects. They’re inescapable at this point, yet I don’t see them mocked (as much as they should be)

Like, there was one dude a while back who insisted that women couldn’t be surgeons because they didn’t believe in the moon or in stars? I think each and every one of these guys is uniquely fucked up and if I can’t escape them, I would love to sneer at them.

(Semi-obligatory thanks to @dgerard for starting this.)

  • khalid_salad@awful.systemsEnglish
    2·
    2 days ago

    Spent the last week playing with some security shit (thinking about a career change, since it looks like I will be mastering out of my PhD program) and fuck me everything about hardening your personal devices is exhausting. We are nowhere close to accessible privacy and security in our computers. The best solution right now may be “buy a Macbook and learn MacOS”, which is so depressing.

    Still deciding on a web browser. Used to be I could recommend Firefox because Righteous-Opposition-to-Google, but that doesn’t really track anymore with Mozilla’s behavior. Now I guess I would recommend Chrome, but it feels so gross (and I am unsure about things like Ungoogled-Chromium, for security reasons).

    the basic laptop hardening
    • Install Fedora Silverblue
      • Be sure to set a good LUKS password
    • Set a BIOS password and disable USB booting
    • Rebase to secureblue
    • Follow the Post Install Readme
      • I personally couldn’t figure out how to set the GRUB password. I will probably get around to it eventually.


    As far as passwords, the only password I have to memorize is the one to my Bitwarden vault. Everything else is stored in Bitwarden. The passwords (except for my phone PIN) are 16 characters if I ever need to type them in manually (e.g. LUKS password), whereas passwords that will always be copy-pasted are 128 characters. I am looking into integrating a yubikey, but am leaning towards “fuck that shit, why would anyone actually want to use this?” If anyone here has comments on this (am I missing an obvious pitfall? do yubikeys suck as much as it looks like they suck?) I would be happy to hear them.

    Anyway tl;dr is I spent the last week hardening all my devices and it sucks. In some cases it was a complete waste of time (my Steam Deck does not appear to have a way to set a password in the BIOS). In other cases (e.g. my Framework), it was probably worth it but a deeply terrible experience.

    • sinedpick@awful.systemsEnglish
      4·
      2 days ago

      I don’t think I could ever recommend chromium-based browsers due to the MV3 switch. Does ungoogled-chromium do any patching to get around this? If not I think FF is the only sane option still.

      • khalid_salad@awful.systemsEnglish
        1·
        2 days ago

        I believe ungoogled-chromium does have MV2 support. Unfortunately, there are still real security concerns with Firefox. The good news is that Trivalent (a hardened version of Chromium developed by the Secureblue folks) has ad/content blocking built in. I am still mostly using Firefox, but the small amount that I have used Trivalent has been good.

    • nightsky@awful.systemsEnglish
      3·
      2 days ago

      The best solution right now may be “buy a Macbook and learn MacOS”, which is so depressing.

      Depends on whether you include “my personal data is sent to the manufacturer of the computer against my wishes” in your threat model… Apple does many good things for security, and I wish PC hardware makers would take security-related things even just nearly as seriously as them. But I can’t trust Apple anymore either.

      (Explanation: the whole iCloud syncing stuff is such a buggy mess. I don’t want it, I don’t need it, so I want it off. But I guess Apple just doesn’t test enough how well it works when you turn it off, maybe they can’t imagine someone not wanting it. The problem is, iCloud sync settings don’t stay off. Settings randomly turn themselves back on, e.g. during OS updates, and upload data before you even notice it. I’m not claiming that’s intentional, I assume it’s just bugs. But I’ve observed such bugs again and again in the past 9 years, and I’ve had enough. Still have a Macbook around, but I use it very rarely these days, only when I need some piece of software on MacOS that has no suitable Linux equivalent.)

      While a PC+Linux setup can avoid the specific issue of “don’t randomly upload my data somewhere”, the setup of it all can be a mess, as you say. And then security is still limited by buggy hardware and BIOS/firmware that is frequently full of security holes. The state of computers is depressing indeed (in so many ways, security just being one of them)…

      • khalid_salad@awful.systemsEnglish
        2·
        2 days ago

        A note to the effect of:

        You have basically no control over how Apple handles your data. When iOS users opted out of data collection, Apple still collected the data, they just didn’t allow third-party access to it.

        is a good idea if I ever do recommend a Mac.