chinese software is way too often shoddy quality. the state does not need to plant backdoors, because most all of their products already include them. nothing is invulnerable, true, but chinese software is just not secure at all.

for an example, just look up chinese iot devices, even popular brands like tplink. lots of unbranded and sometimes noname branded cameras use the same firmware base, connecting to the same cloud service allowing unauthenticated remote access to the devices, their networks, and arbitrary firmware updates.

its sad, but its still true, other than it being temporary. its still not safe to think as your home about places that only tolerate you until you can satisfy the lord.

neither does the something.vercel.app domain

was duplicate

if it is signed by a key used in public repos of the commiter, or otherwise known to possess the key, that is proof, yes

I think copyparty can handle partial transfers both ways

unencrypted, unauthenticated, unverified, and not just hard but impossible on phones.

I’m not sure that’s needed, but the firewall on your PC is likely to be blocking the connection by default

btw localsend has some plans for supporting google’s somewhat common but proprietary quickshare functionality, but it seems the app hasn’t received an update in almost a year

but it’s still an alternative insofar as two people can transfer files to each other

after painfully figuring out (or not) how to make a hotspot with a somewhat secure password and get the other phone to connect to it.

thanks! also, I think as things are now, it’s fine to keep using lemmy for your server. but keep in mind that in the future they could implement features that are not for the benefit of your community. anything can be reverted with some custom development, but you may not want that.

there are some lemmy instances that are planning a switch to piefed, with a database migration so that existing content and users are kept. the one I use is among them.
updates to lemmy can make such a migration harder in the future, even unintentionally.

they recommend people to donate to lemmy devs in the reddit post, though.

I am not blaming them, they probably didn’t know it, but it’s worth mentioning.

the commiter name in the repo is not ironclad proof, anyone can upload commits to their repo in Linus Torvalds’ name. but github probably has the capabilities to find out who was the original uploader of the commit, or what was the upstream repo of a fork

oh that’s good to know, thanks!

and this one:

User vote totals: You can see the total number of upvotes and downvotes given to each user.

people were happy that lemmy does not do this…

that page limit is very bad. essentially makes lemmy posts ephemeral. did we forget that we hated it when reddit did that?

piefed and lemmy users see the same content though

Tracker-free? There’s literally no way anyone could track you through RSS. It’s just an XML file and can’t run any arbitrary code.

there is actually. the user agent string, ip address, when do the images get loaded. if clients can user server provided CSS, that too can do some conditional reports. but yes the possibilities are much fewer, they are easier to fix.

which part sounds logical?

my country recently got a new behavioral car insurer. their very first move? running brainwashing 0.5 second ads on popular TV channels, that just flashes thrir logo quickly, and has just enough time to announce the name of the company. I’m not exaggerating. absolute parasite scumbags, every one of them must burn.

I don’t want to drive traffic to their site, but this one is it: https://web.archive.org/web/20260000000000*/https://drivello.hu/

stear clear from them, they have shown they are here for deception money, zero good intentions.