RSA4096 has a bit of an edge over ed25519 both in effective key size as well as support by things like YubiKeys and other HSMs that is beneficial for GPG but not really helpful for SSH.

SSH generally best to use ed25519, for GPG RSA4096 is better supported by HSMs and slightly more secure for longer-lived keys like root keys.

Yeah, I used Chrome up until extremely recently because genuinely no browser Just Works to the extent Chrome does.

Fast, good media codec support, Web API support for hardware access for PWAs, doesn’t lock up w/ a lot of tabs (post-quantum FF is better about this, but not quite there), excellent DevTools, and just generally snappier and more polished than even chromium.

I switched to firefox recently exclusively for better home-manager support, and other than the ability to use home-manager more easily, it’s just a slightly slower and jankier experience at all times whether it’s requiring transcode for Jellyfin, laggy WebGL performance, janky DevTools, or missing WebAPIs.

Same

looking to eventually drop it for Dendrite

https://github.com/matrix-org/dendrite/issues/3413

Solid Explorer

Where the metadata goes I think is important as well.

All Signal metadata necessarily goes through Signal’s servers and is tied to your phone number, but not all Matrix metadata ever gets near the Matrix.org if you are using a different homeserver.

I think both are less than ideal in that regard, and I think Briar (strictly P2P) has a much better model for dealing with this at the expense of generally being a UX disaster.

The server software appears to be available and updated now, which they’ve been spotty about in the past. I’ve updated to remove the closed-source part since that is not correct.

As for phone number: Signal still requires me to enter a phone number to create an account as of about 5 minutes ago.

Signal is centralized, closed-source, not-selfhostable (edit: in any meaningful way) and requires being attached to a phone number. (Edit: server source is available, but self-hosting requires recompiling and distributing a custom app to all of your contacts to actually use it.)

Matrix is decentralized, federated, fully open source with multiple client and server implementations, self-hostable, and does not require being attached to a phone number.

Used Ubuntu for ~15 years, switched to NixOS a couple months ago and haven’t looked back.

I’ve made a habit of clean installing all of the desktops/laptops/servers in my life on the first point release of each LTS (i.e. 22.04.1). That would mean there was time for the dust to settle and for me to tweak my install/customization scripts from the previous LTS.

So since I knew I was gonna have to modify my Ubuntu install scripts to work with 24.04 anyways, I fiigured it was a decent time to try and see if I could get the install scripts converted to a nix config instead, and it ended up working a treat.

Given how common it is for people to use the ‘reset password’ link for this exact purpose, it does make it seem kinda redundant to even implement passwords on many services to begin with.

Very similar heuristic here, insofar as when to use passphrases and how long.

LUKS and Bitlocker volumes get 8 words, computer logins usually get 4 words (potentially more depending on frequency/criticality of system).

Smartcards and mobile devices do have numeric pins due to frequency of use and relative difficulty in copying those for offline attacks.

Websites that are filled in w/ password manager get passwords get the random symbol-laden strings that ‘meet requirements’

If that is the threat model then Signal is not and never was fit for purpose at all.

Because every time I’ve complained about not wanting to give my phone number to sign up for Signal I’ve been lectured about how Signal is “all about privacy, not anonymity and those are not the same thing” and how that is good for the average Joe even if it isn’t useful for journalists and activists, and what you’re saying goes completely against that by suggesting that the police are somehow unable to get the phone number out of the thing that uses the phone number as the user id.

You’re describing how a real privacy-focused app like Briar functions, but definitely not how Signal does.

https://lemmy.world/post/10802805

Is there a non-video source for this information?

After much fighting with and trying of other solution, that’s what I ended up settling with.

That’s a pretty silly headline for an article that quite clearly states that the issue was with the router’s data usage reporting capabilities.

I’ve been using a homebrew solution (https://github.com/mlaga97/qr-inventory-manager) for a few years now with decent success. At some point I need to check out Homebox and Snipe-IT to see if one of those would be a better fit or if I should buckle down and document my solution.

Something something “Looking Glass”