Thanks for the correction. A full month is much more problematic.

Thanks, SUSE completely slipped my mind

How does the xz incident impacts the average user ?

It doesn’t.

Average person:

• not running Debian sid, Fedora nightly, Arch, OpenSUSE Tumbleweed, or tbh any flavour of Linux. (Arch reportedly unafffected)
• ssh service not exposed publicly

The malicious code was discovered within a day or two a month of upload iirc and presumably very few people were affected by this. There’s more to it but it’s technical and not directly relevant to your question.

For the average person it has no practical impact. For those involved with or interested in software supply chain security, it’s a big deal.

Edit:
Corrections:

• OpenSUSE Tumbleweed was affected; Arch received malicious package but due to how it is implemented did not result in compromised SSH service.
• Affected package was out in the wild for about a month, suggesting many more affected systems before malicious package was discovered and rolled back.

In addition to the ones listed:

• Matrix client (Element, Shildichat, Fluffy chat, etc.)

• XMPP client (Conversations, Monocles Chat, Blabber, etc.)

• SimpleX Chat

• Briar

None of them are tied to your phone number if that’s what you mean by non voip.

Tried ElementX but ran into issues while getting it working with a selfhosted matrix server. After setting up dendrite (matrix server) and sliding-sync server (asynchronous message history syncing; which it requires) I still wasn’t able to get past the initial sync screen. Are you hosting your own matrix server, did you use it with a public server, or have you not tried using it yet?

Just another option. If you know already or are willing to learn how to write documents in markdown format (like how lemmy supports), and learn some of infrastructure set-up and it can be between free and very cheap to have a blog on something like netlify.app, github pages or others. There are plenty of static site generators out there that can be both relatively easy and very powerful.

I currently have a private blog set up on a cloud provider that just takes markdown documents and builds those along with some templates and webpage code to create a site like this. Although I have mine hosted on a VPS with my own domain, it’s completely possible to use something like github pages, netlify.app, etc. for that. They’re both free afaik to host on, but if you want to pay for a dedicated service they are usually between 2 and 5 USD per month.

Edit: The option above isn’t activitypub software, sorry for not realizing that immediately, but it is federated in a way I suppose.

SquareHome?

Hey, no worries. I’m new too, and most of us here are learning as we go. For communities there should be a link along the top bar next to the “Create Post” button (screenshot of my instance attached). Click it and it will take you to a page where you can name your new community and fill out other details about it. Once you’ve got it created feel free to post a link here! I’m sure we all will be interested in following a new art community.

Just to clarify, are you wanting to create an instance (an entire server like lemmy.ca, lemmy.ml, lemmy.world), or a community (a subreddit like nostupidquestions@lemmy.world, canada@lemmy.ca, main@sh.itjust.works)? Instructions differ greatly depending on your answer.

Have a Oneplus 7 Pro, first Oneplus phone I’ve owned and it will be the last. Absolutely love the phone itself, but Oneplus as a company, the software they package, the warranty issues, and the direction they’ve gone as a value pick have all fallen off a cliff since it was produced, and have turned me off to ever upgrading to one of their newer models. That’s fine for me though, I have replacement parts on-hand, and a third-party actually maintained rom, so I’m OP7P until the wheels fall off this thing.

Edit: Can’t comment with experience on other OP phones, but I’ve heard very good things about the 6s, it was my second pick when I was looking for a phone at the time.

Is it any better now?

LMAO this is gold

That’s true, though the dev has already patched his deployment on lemmy.ml. Hopefully the release is dropping soon.

It’s not not true, but I get your point. It’s hard to build an ip-block reputation anyway so the emails you send from there are actually delivered. Much less with others (Microsoft looking firmly at you) with their super aggressive email shitcanning.

YouTube is full of irrelevant clickbait

I’ve even seen this when searching for technical questions on Google/DDG. And it always seems like the video most closely related to what I’m trying to learn leads to this one guy literally saying (not literally ) “thumbs up, coment, subscribe, patreon” then posts an actual screenshot of a stackoverflow thread that I read through minutes prior. Infuriating.

I’m sure that’s the case as well. I’m not entirely convinced though that whoever would step into the mod role from the community would be suited to the role (on average).

With the number of eyes Reddit has on it every day I see it as being a huge target for malicious actors (read ad-bots, brigadiers, self-promotion, trolls) and as a sub grows it too can become somewhere those actors can post and comment with impunity; and have. I truly think that modding an even relatively popular sub with good tools is time consuming and mentally exhausting work. Take those tools away and it can become a nightmare in a hurry depending on the nature of the issue.

Whether someone from the community can just step into that role is a big dice-roll. They may be either unwilling or unable to keep the subs content on-topic and reign in bad behavior within he sub. Then again they may be perfectly suited to take up the mantle, only time will tell.

Seems they’re spinning it as “If your sub is private you aren’t moderating your community. If you aren’t going to be an active mod, you are on grounds for dismissal” which is asinine, but it seems to be the way they’re playing it.

forcing their own mod team in to replace striking mods

I don’t think it’s off the table, but I also don’t think they’ll have the resources to do that for very long at all or with many subs. Remember they are cutting staff, and having mods working for free en-mass is pretty crucial to their business structure.

No experience with unraid so I can’t really contribute on that front, but I applaud you for contributing on the topic!

It’s alright, it takes all kinds. Haven’t posted anything here yet either, usually just feel like I need a prompt to engage with; then the words start flowing.