Yujiri
@Yujiri@lemmy.ml
I'm the Yujiri from yujiri.xyz. https://yujiri.xyz/contact
- Comment on The cover of inflation 2 years ago:
That isn't how inflation works. Inflation is when the value of currency decreases, meaning prices as measured in currency increase to stay equal in value.
- Submitted 2 years ago to opensource@lemmy.ml | 1 comment
- Comment on Which free email host would you recommend? 2 years ago:
Disroot
- Comment on I realized i'm unfireable 2 years ago:
Hate when people insult others for being "boomers"
- Comment on So you guys planning to change the name of this community here on lemmy?? 2 years ago:
It would be ridiculous to change the name of our community just because some drama happened on reddit that wasn't even as bad as people made it sound anyway. Imagine if we decided to abandon the word "socialism" just because some authoritarians use it to describe themselves, or "anarchy" just because some media dipshits used it to describe the Jan 6 rioters.
- Comment on apparently reddit also has content gated behind an app on mobile now 2 years ago:
I had a similar experience earlier today: i was on the web version of the Wage app (freelancing platform) and saw a banner saying they're gonna scrap the website and force everyone to use the mobile app only
All the proprietary stuff is just getting more user-hostile by the day. like, how long before average people can't tolerate it anymore and start switching to free stuff? i really wanna see that.
- Comment on Which FOSS licence would you suggest me? 2 years ago:
Depends on what terms you want. Summary of popular options:
- GPL is meant to ensure that any derivative works are also FOSS
- LGPL is similar, but the definition of "derivative work" is narrower, so proprietary projects can use its code as long as they aren't extending the LGPL work itself. Often used for libraries
- AGPL is like GPL, but also applies if someone is using your software as the backend for a network service rather than a program they distribute to users. A company can make a derivate work of GPLed software and offer access to it as a network service without being subject to the GPL terms because making something available as a network service doesn't count as distributing the derived work.
- ISC (or MIT or BSD, all roughly the same) is meant to not project derivative works. It makes your project FOSS but allows proprietary derivatives
- Comment on Distraction free operating system 2 years ago:
you can easily configure a Linux system to be like this
- Submitted 2 years ago to asklemmy@lemmy.ml | 0 comments
- Comment on 2 years ago:
Posting these two comments again and again will not make the arguments against them disappear.
- Comment on [deleted] 2 years ago:
That... has nothing to do with the metaverse.
- Comment on 2 years ago:
Similar to what? According to their client's github readme, it's just an alternate client for the signal server (which IIRC is illegal and previous alt-clients such as LibreSignal have been shut down because Moxie threatened legal action, so I'm not sure how Molly's getting away with that).
- Submitted 2 years ago to asklemmy@lemmy.ml | 1 comment
- Comment on 2 years ago:
This is not to say you should trust Olvid's claims of superiority; on the contrary, they are definitely telling some lies themselves: https://lemmy.ml/post/134819/comment/103067
- Comment on 2 years ago:
Unfortunately it might not be since it seems their server is still closed source.
- Comment on 2 years ago:
Activate Posteo crypto mail storage for your account: This function encrypts your entire email data at the press of a button, including all content and metadata. The encryption is comprehensive; it encompasses your existing email archive, all newly-arriving emails and your notes.
To be honest, this sounds like gobbledyremoved aimed at duping people who don't understand cryptography. The problem with encrypted email is first of all that it only works if both sender and receiver agree to do it. You cannot use your posteo account to send an encrypted email to other email users, because they wouldn't know how to decrypt it! Likewise, incoming emails can only be end-to-end encrypted by the sender; if the sender sends them in plain text (which all but one in a million email users will), the server receives them in plain text. Even if the server "encrypts" them for storage, the plain text is still available to the server.
- Comment on 2 years ago:
Some red flags about this messenger:
They are dishonest about the merits of existing secure messengers.
From the homepage:
Download Olvid, the most secure messenger in the world.
There is no "most secure messenger in the world"; that judgement is much too nuanced and situation-dependent for such a claim.
Most of the supposedly free messaging services are financed through the exploitation of the exchanged data.
This is false of at least several alternatives, including Signal and Matrix.
From the "technology" link on top bar:
Our security model is utterly game-changing. Olvid is the first and only messaging system whose security no longer relies on any trusted third party, either operators or their servers.
Objectively false. Even if you consider end-to-end encrypted and federated platforms like Matrix to "rely on a trusted third party", there are P2P messengers which truly have no servers and which solve the problem of mapping username to public key, such as Tox.
Olvid servers get hacked? Not an issue! No one will ever be able to read your messages, including the servers relaying them. It is forever impossible. Nor can any users identities ever be revealed. Olvid is the only system that also encrypts metadata, thus guaranteeing the anonymity of interlocutors. Finally, Olvid guarantees the authentication of users, contrary to all messaging servers that replace trusted third parties...
Actually, all existing secure messengers have cryptographic authentication, and I'm pretty sure some of them also encrypt as much metadata as possible, such as Signal.
It seems like they're dishonest about the merits of their own messenger.
Inability of the operator to know "who is talking to whom". No third party could ever identify the participants, not even the server. No trace of any metadata.
This is huge. I'm developing a federated messenger and had given up on hiding the recipient ID when sending a message because I couldn't find a way to do it. If there's a practical way to do it, I want to hear about it. So I opened their protocol specification.
In the section "Upload message and get UID", I see that the request actually contains a list of both the device UIDs and the identity of all recipients. They call it "encoded", but it sounds like that just means JSON.
In summary, I would stay away from this messenger in favor of another option like Matrix or SIgnal.
- Comment on 2 years ago:
Also the part about matrix being created for military: Most of our technology is derived from military use. Sadly the best motivator for human beings to create a new thing is “how we can use it to control/kill?”
True: even Tor was created by the US gov
- Comment on 2 years ago:
I agree btw that Nheko's the closest thing to a fully functional desktop client, just felt like sharing the story about Mirage
- Comment on 2 years ago:
I used to use Mirage (fancy interface, multi-account, i liked it except for lack of support for edits and reactions) until one day it had some weird error connecting to my homeserver and no matter what I tried I could never get it to connect again, even while other clients could. Even tried reinstalling Mirage and removing and readding my account but I could never get it to connect again so I was forced to switch back to Element.
- Comment on 2 years ago:
That's one thing I don't like about Revolt. There's no information about it either on their homepage or github
- Comment on 2 years ago:
Is Revolt federated?
- Comment on 2 years ago:
The CIA & NSA admitted that they kill people by gathering and using metadata.
This is a serious claim that you just gloss over. I don't doubt that they do those things, but I'd still like to see the source for them publicly admitting it.
- Comment on 2 years ago:
As an element user for about a year: the biggest thing element needs is to make E2E actually work consistently. Every day I see random "can't decrypt this message for some reason" errors, and it makes me embarrassed whenever I convince someone to try using Matrix instead of proprietary platforms and then I have to tell them I can't read their messages and the first three things we tried to fix it didn't work. This is the biggest reason why I want to abandon Matrix for good as soon as possible, and am working on creating another federated chat protocol.