overview for refalo

Fix for KeePassXC browser integration by refalo in c/flatpak@programming.dev

[-] refalo@programming.dev 1 points 2 days ago* (last edited 2 days ago)

I had a similar issue with firefox launched via firejail where I had to pass through the socket file it uses to communicate with.

If it helps anyone, this was my solution:

$ cat .config/firejail/firefox-common.local
include firefox-common-addons.profile
noblacklist ${RUNUSER}/app
mkdir       ${RUNUSER}/app/org.keepassxc.KeePassXC
whitelist   ${RUNUSER}/app/org.keepassxc.KeePassXC

-3

Are there any operating systems with devs that don't have a history of openly abusing others? (programming.dev)

submitted 2 months ago by refalo@programming.dev to c/operating_systems@beehaw.org

8 comments fedilink

I would prefer to find an operating system I can support that is developed by people who are generally kind, however I find the behavior of many of the top Linux/*BSD devs to be... abhorrent.

Are there any real alternatives that are led by nicer people?

108

Rustdesk Server Pro allegedly violates AGPL license by not distributing source (github.com)

submitted 4 months ago* (last edited 4 months ago) by refalo@programming.dev to c/opensource@programming.dev

13 comments fedilink

The free community version of Rustdesk Server (a competitor to the Teamviewer remote access software) is AGPL licensed.

https://github.com/rustdesk/rustdesk-server

The paid, proprietary Pro version builds on top of the community edition by adding extra features such as user authentication and a web backend for administration.

There exists a repo for the pro server: https://github.com/rustdesk/rustdesk-server-pro

But it only contains install scripts and no actual source code of the application.

The github releases page of this repo however, contains the compiled code of the proprietary pro version and is available for anyone to download for free.

Analyzing the disassembly of the pro and open source binaries shows that the pro version is definitely based on the open source version.

The company previously associated with Rustdesk, Purslane Limited of the UK, is no longer in operation since 2023.

The project has no CLA and so the dozens of previous contributors still hold the copyright to their code and have not given permission for it to be used in a proprietary version.

There have been multiple requests for the source code of this pro version, but either there was no response or the issue was closed without comment.

EDIT: The repo owner has completely deleted the issue, here is a screenshot: https://0x0.st/KaqD.png

To me this just proves they know what they're doing is wrong.

New version of X.org X11, Xlibre fork gathers support by refalo in c/linux@programming.dev

[-] refalo@programming.dev 86 points 7 months ago

About four years ago, Linus Torvalds rebuked him for spreading anti-vaxxer misinformation on the Linux Kernel Mailing List

175

F-Droid has received funds from US Congress (via OTF), just like Signal (f-droid.org)

submitted 1 year ago by refalo@programming.dev to c/privacy@lemmy.ml

33 comments fedilink

no amount of documentation can save users from themselves by refalo in c/programmer_humor@programming.dev

[-] refalo@programming.dev 62 points 2 years ago

34

ICPP – Running C++ in anywhere like a script (github.com)

submitted 2 years ago by refalo@programming.dev to c/programming@programming.dev

3 comments fedilink

Interpreting C++, executing the source and executable like a script.

Writing powerful script using C++ just as easy as Python;
Writing hot-loading C++ script code in running process;
Based on Unicorn Engine qemu virtual cpu and Clang/LLVM C++ compiler;
Integrated internally with Standard C++23 and Boost libraries;
To reuse the existing C/C++ library as an icpp module extension is extremely simple.

There is also a Qt helper module: https://github.com/vpand/icpp-qt

How I Got a Truly Anonymous Signal Account by refalo in c/privacy@lemmy.ml

[-] refalo@programming.dev 58 points 2 years ago* (last edited 2 years ago)

tl;dr the sms verification falls back to voice and they just used a payphone.

I guess if you count the airport full of cameras they went to to do this as "anonymous", then sure :)

Also this article from 2017 suggests not using this method:

It’s important to maintain control of this phone number. For example, you could use a disposable SMS service to register with Signal — there are many such services if you search for them — but those phone numbers can be used by anyone. Similarly, you should avoid using a public payphone’s number, or a SIM card on which you do not intend to renew service. If someone else can receive SMS messages or phone calls to this phone number, they can take your Signal account away from you.

To those of you with nothing to hide: One day you might have. Because you don’t make the rules. by refalo in c/privacy@lemmy.ml

[-] refalo@programming.dev 160 points 2 years ago

I have nothing to hide

Ok, pull down your pants and hand me your unlocked phone.

Interesting OSS project: Holesail creates instant P2P tunnels between networks (like a VPN) by refalo in c/opensource@lemmy.ml

[-] refalo@programming.dev 94 points 2 years ago

Join our Discord Support Server

Right into the trash.

✨️ Finish him. ✨️ by refalo in c/science_memes@mander.xyz

[-] refalo@programming.dev 64 points 2 years ago* (last edited 2 years ago)

honestly LeCun should know better than to argue with a crazy person.

it doesn't matter how right he is, musk will turn everything around and have fun while doing it.

5

403 on API endpoints (lemmy.readme.io)

submitted 2 years ago by refalo@programming.dev to c/meta@programming.dev

6 comments fedilink

Tried to use several different API endpoints as described in the link, but they all return 403 with a cloudflare "Just a moment..." html reply. Even tried copying an existing jwt token from a working logged-in browser but the same thing still happens.

Any idea what I could be doing wrong?

curl -v --request POST \
     --url https://programming.dev/api/v3/user/login \
     --header 'accept: application/json' \
     --header 'content-type: application/json' \
     --data '{"username_or_email": "redacted", "password": "redacted"}'
...
< HTTP/2 403
...

<!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title>
...

Fix Incoming! Empty S3 buckets won't be able to make your AWS bill explode by refalo in c/programming@programming.dev

[-] refalo@programming.dev 63 points 2 years ago

Only took 18 years since it was first reported.

Never Forget by refalo in c/science_memes@mander.xyz

[-] refalo@programming.dev 65 points 2 years ago

still... 35 years? obviously there is more missing information.

22

Some comments not appearing? (programming.dev)

submitted 2 years ago* (last edited 2 years ago) by refalo@programming.dev to c/meta@programming.dev

7 comments fedilink

I am noticing that some comments, which are coming from users on other verified (via /instances) federated instances, do not show up on a post. For example: https://programming.dev/post/13648105

Does not show this comment on it: https://lemmy.ml/comment/10803786

Any ideas why? I checked the modlog and the comment wasn't removed, and their post history to me does not look like someone that is likely to be banned from the instance, so I'm not sure what else it could be.

European Law Enforcement Officials Declare Encryption Must Be Broken To Ensure Public Safety by refalo in c/privacy@lemmy.ml

[-] refalo@programming.dev 98 points 2 years ago* (last edited 2 years ago)

Privacy measures currently being rolled out, such as end-to-end encryption, will stop tech companies from seeing any offending

Front doors also stop them from seeing things... is that next? What about clothes to conceal drugs?

Today I got greeted on a Tor friendly website by refalo in c/privacy@lemmy.ml

[-] refalo@programming.dev 73 points 2 years ago

That was probably me. You can check it here among other scary fingerprint stuff https://abrahamjuliot.github.io/creepjs/

Ubuntu Snap Hate by refalo in c/linux@lemmy.ml

[-] refalo@programming.dev 75 points 2 years ago* (last edited 2 years ago)

The server is proprietary and last I checked you can't even turn off auto-updating or verify the binaries they push to you.

https://www.zdnet.com/article/linux-mint-dumps-ubuntu-snap/

In the Ubuntu 20.04 package base, the Chromium package is indeed empty and acting, without your consent, as a backdoor by connecting your computer to the Ubuntu Store. Applications in this store cannot be patched, or pinned. You can't audit them, hold them, modify them, or even point Snap to a different store. You've as much empowerment with this as if you were using proprietary software, i.e. none. This is in effect similar to a commercial proprietary solution, but with two major differences: It runs as root, and it installs itself without asking you.

10

Is there a way to view the frontpage of another server, or get an RSS feed of another server's single community? (programming.dev)

submitted 2 years ago by refalo@programming.dev to c/lemmy_support@lemmy.ml

12 comments fedilink

My lemmy account is on the programming.dev instance but I use newsboat for RSS reading of some lemmy.ml communities, along with browsing the local homepage of lemmy.ml and some other instances in a regular browser. Is there a way to do either of these things from the programming.dev instance so that I can easily comment on posts without having to manually locate the same post by browsing to /c/foo@lemmy.ml on my own instance?