Software Endorsements

[HahaYes]

But apparently even though it's industry-wide accepted to be secure, he doesn't view Yubikeys as secure since it hasn't been approved so I got nowhere

Not 100% on thread topic, but your best bet to get Yubikeys (etc) approved as an alternative MFA method to number matching with MS Authenticator is to talk risk and group policy change to the internal security team. I've had the exact same slapfight before at previous organisations and risk is the best angle to take it at. Even if it takes fucking forever to get over the line depending on the size of the business you do get results

 

[SlobberKnocker]

can someone recommend an AI that isnt cucked into high heaven. i dont even need it to say gamer words bit this makes me weep

 

[Flaming Dumpster]

All the comments just screaming honeypot
I just wanna believe

Not sure I'd take them seriously. SimpleX is open source, can be be proxied via Tor, doesn't require a phone number, and you can even run your own message relays if you don't trust the developer provided ones. When you look at Ghost, Anom, EncroChat, etc. as real-world examples of backdoored messengers, you see their source isn't available, they have closed signups, and they do weird shit like sell customized hardware with their application preloaded.

What I find baffling is why criminals keep using these weird shitty messengers nobody has heard of that seem to be exclusively developed for organized crime instead of just blending into the crowd by using a relatively normal messenger plus PGP for the very secret stuff.

SimpleX is a cool concept but I find it unusable since going between mobile and desktop requires the clients to actively sync with each other on the same LAN. This sync process is established manually each time, fragile and completely broken on my setup for whatever reason. People regularly complain about this and the developers do at least acknowledge the issue and say they're working on it, but just struggling to find a solution that ticks all their schizo privacy boxes.

https://x.com/SimpleXChat/status/1837436923360825812

If they want any hope of becoming successful, they need to make it as seamless as something like Telegram and they need to sort it out ASAP. I think an opportunity will present itself soon for another encrypted messaging application to become popular with Telegram getting targeted and Signal's loony leadership, but these guys need to be ready lest the opportunity pass them by as they're too busy dreaming up a perfect system that nobody will end up using.

 

[Anime Lover]

SimpleX is open source, can be be proxied via Tor, doesn't require a phone number

How does it compare to session?

 

[Flaming Dumpster]

How does it compare to session?

Hadn't actually tried Session before so I installed it and gave it a try. Session seems way less schizo as they let you opt in to Firebase so you can have timely push notifications which would be unthinkable for the SimpleX people. Going between desktop and mobile is basically seamless, you scan a QR code and it "just works".

One-to-one and closed group messaging is E2EE and decentralized with node operators incentivized via a shitcoin called Session Token. The Privacy Guides people point out there's no forward secrecy, which would prevent a future key compromise decrypting past messages, but the Session people excuse it in this blog post. Their argument is long term key compromise can only occur if your device is compromised, so they'd rather simplify their protocol than try to protect a compromised user.

There's a concept of communities as well for hosting a room with a large number of members, since closed groups are limited to 100 participants. Open communities (SOGS) are self-hosted using PySOGS and are not E2EE, just encrypted in-flight. Your IP isn't revealed to the operator as requests are onion routed, but there's no decentralization so you're screwed if your favorite SOGS instance dies. Setting one up looks straightforward at least: https://docs.oxen.io/oxen-docs/products-built-on-oxen/session/guides/open-group-setup

SimpleX can have large groups operate natively on its network and it seems they favor security vs usability. Session works well enough that my mom and dad could probably figure it out on their own and it is more secure than Telegram while more privacy respecting than Signal.

Whether you use one or the other may depend more on your friends and family than the technological merits of either one. Unless you love talking to yourself through overcomplicated buzzword-laden encryption protocols.

 

[Car Won't Crank]

What about KeepassXC/DX?

KeepassXC is good too afaik. Offline password manager that runs on all platforms. Better than the original keepass.

 

[Anime Lover]

I'd like to shill a little combination of mpv (which is a video player you should be using) with mpv-webm script. It's very convenient when you want to quickly clip something, has a nice option to crop and limit the target file size too (I use this one to fit clips into discord free upload).

Spoiler: screencaps

 

[freund]

can someone recommend an AI that isnt cucked into high heaven. i dont even need it to say gamer words bit this makes me weep

View attachment 6481046

what are your HW specs?
a few suggestions for recent releases would include:
https://huggingface.co/mradermacher/Qwen2.5-32B-AGI-i1-GGUF
https://huggingface.co/bartowski/Tiger-Gemma-9B-v3-GGUF
https://huggingface.co/mylesgoose/Llama-3.2-3B-instruct-abliterated-Q8_0-GGUF
and my current favorite:
https://huggingface.co/mradermacher/Mistral-Small-Instruct-2409-abliterated-i1-GGUF

Spoiler: it performs quite well in general day to day use and i attached my results to your questions:

if you're curious about the process:
https://huggingface.co/blog/mlabonne/abliteration

 

[CEO of Autism]

I'd like to shill a little combination of mpv (which is a video player you should be using) with mpv-webm script. It's very convenient when you want to quickly clip something, has a nice option to crop and limit the target file size too (I use this one to fit clips into discord free upload).

Spoiler: screencaps

View attachment 6487221
View attachment 6487222
View attachment 6487225

How do you change the cropping points? I can't seem to set custom settings, pressing 1 or 2 will always do its own thing.

 

[Anime Lover]

How do you change the cropping points? I can't seem to set custom settings, pressing 1 or 2 will always do its own thing.

1 and 2 uses your mouse cursor coordinates.

 

[CEO of Autism]

1 and 2 uses your mouse cursor coordinates.

Oh, so that was it, stupid me. Thanks a lot, works like a charm.

 

[ENDTOPII]

mpv (which is a video player you should be using)

> VLC: Just download an installer from the official site and it just works
> MPV: Must go to third-party compiled installers or do it yourself (99.9999% of the internet doesn't know how to do that)

Stop recommending MPV, just because they made one based tweet doesn't mean it's worth shilling their /g/ programmer LARP. Until it's a one click install from their official site, MPV can fuck off!

 

[CEO of Autism]

> VLC: Just download an installer from the official site and it just works
> MPV: Must go to third-party compiled installers or do it yourself (99.9999% of the internet doesn't know how to do that)

Stop recommending MPV, just because they made one based tweet doesn't mean it's worth shilling their /g/ programmer LARP. Until it's a one click install from their official site, MPV can fuck off.

It's easy to install tho on Linux

 

[Spud]

It's easy to install tho on Linux

That's nice and all but what about people who actually want stuff to work?

 

[ENDTOPII]

It's easy to install tho on Linux

If it's about Software Endorsements, one should consider the software in question to be easily accessible on any OS and device. If you can't get it to work easily on the two biggest OS's on the market, it's simply garbage. With VLC having more plug-in and other stuff to enhance the vanilla version (due to a bigger userbase). Endorsing MPV over VLC is retarded.

That's nice and all but what about people who actually want stuff to work?

You use VLC.

 

[DavidS877]

MPV is nearly perfect, you give it a file, it plays it. No GUI, no decorations, just play file.

VLC I'm sure has that sort of feature but I usually spend way too long reading the docs to get it to do simple stuff.

 

[Prokhor Zakharov]

DVD Decrypter has worked whenever I've tried it and it's freeware. Hasn't been updated since 2005 but who cares? It works!

http://www.dvddecrypter.org.uk/

Turn the volume down when it's nearing completion as it has an ear-rape jingle it plays when the rip is done.

Since the DVD DRM has never, and will never be updated, there is no reason not to assume it will continue to work. I actually use it as well for simple things. Compared to the more complex and burdensome crap that can do the same thing, it is very much a no frills solution to a very simple task.

I'm ashamed to suggest this, because I'm not a weeb, but Aegisub is pretty decent if you want to do fancy things... And it's surprisingly easy to start with.
View attachment 6321052
edit: you can do some really fancy text stuff without needing a video editor and then burn it in via re-encoding.

I also suggest Aegis. I have used it for creating subtitles for movies in Japanese games that are undergoing translation. I've been able to get it to do things that many people can't do with high quality paid sofrware.

MPV is nearly perfect, you give it a file, it plays it. No GUI, no decorations, just play file.

VLC I'm sure has that sort of feature but I usually spend way too long reading the docs to get it to do simple stuff.

MPV vs. VLC is like VIM vs. Emacs, there is no "right" answer, it's down to preference.

In the year of our lord 2024, what torrenting software do people use? I'm running uTorrent 1.6 (from before they infested it with ads) but I'd prefer to run software that's not 15 years old. Not trying to pirate anything (right now), actually trying to download a Linux CD image. I've seen some older recommendations for qBittorrent. Is it still good?

I suggest Deluge, just make sure to check the forums for the compatible, updated libtorrents as they come out. There is 1 bug in Deluge I intend to ask them to fix, It's when you want to set an aggregate download limit for your connection. Generally, if you want your regular internet/system use not to interfere, or be interfered with, by your torrenting, you want to limit cumulative downlink bandwidth of 80-85% of your total pipe size. If your download limit is larger than 1 Gbps, it won't be implemented correctly, it will be implemented as 10 Mbps for every torrent added, even though it will look correct in settings. So you have to end up fixing it for every torrent you add, which gets annoying if you forget and wonder why your downlink on a given torrent keeps maxing out at 10 Mbps.

 

[Flaming Dumpster]

> VLC: Just download an installer from the official site and it just works
> MPV: Must go to third-party compiled installers or do it yourself (99.9999% of the internet doesn't know how to do that)

Stop recommending MPV, just because they made one based tweet doesn't mean it's worth shilling their /g/ programmer LARP. Until it's a one click install from their official site, MPV can fuck off!

I don't shill mpv because of le based tweet, I shill it because it's an objectively good player that shits all over VLC when doing basic shit like seeking a file. I do agree they need to sort out their disastrous Windows build situation. There's basically no installer, you either use that dodgy mpv-install script or choco. It's dumb as fuck that they haven't bothered to script an installer for Windows that can fetch a fresh build and install it with the right registry keys set for file associations.

You're free to use whatever anyway, and dumbasses who can't read instructions unless they're provided as a 15 second Tiktok video are free to use whatever shit comes with Windows these days. Not sure why you're so angry about mpv being recommended, did you try and fail to install it and are now pissed you got filtered?

 

[Prokhor Zakharov]

One annoying thing I discovered with the Linux version is there's a longstanding bug with libtorrent 2.x that leaks memory

It's actually not a leak, it's because they changed the memory allocation model that libtorrent uses. Surprisingly, it is actually meant to do what you are seeing.

I have actually argued this directly with the maintainer of libtorrent. He is completely intransigent on this. If you think it's a problem in Linux, it is much worse with Windows given the nature of its memory model. Windows will actually blue screen when it hits the limit of its virtual memory space, which, of course, is limited to available space for the page file on mass storage. Linux's memory model at least allows for a per-process virtual memory space that is only limited by the addressing of the memory manager (so, 10's of terabytes, if I'm not mistaken). Although, I actually ran into someone that had a borderline unbelievable number of torrents and actually managed to hit the upper ceiling of the memory manager for the version of Linux they were using, which is impressive.

 

[Gatdam Animal Person]

Ever since Barrier's abandonment by its lead developer, the rest of the team decided to fork and work on the input-leap repository. For a while, the only way to get updated packages was to either make a GitHub account or just use arch lmao. However it seems like they've finally reached their milestone, version 3.0.0.

Basically, it's a KVM software that allows you to control multiple computers (server and clients) using one single mouse and keyboard. This fork added very good Wayland support along with more bug fixes. I use it constantly at work, and I suggest you do!