the OS was not the comparison, but the hardware it runs on (just as @Freefall said) but also you seem to be wrong with your other assumption:

And both those devices are tied to a specific OS.

Which seems not to be the case as install instructions for another OS can be found here (i didn’t try it though) for the mentioned device:

https://wiki.lineageos.org/devices/pdx215/

lineage os still is an “android”, but another vendor with clearly different approach than the original firmware and what hinders you from writing bsd drivers and compiling a bsd kernel for it instead? So i count the Xperia 1 III as NOT bound to any OS or OS vendor.

But despite the way longer possible support/security, freedom of choice and endless other possibilities that often come along with free OS choice, this pure and great advantages weren’t even mentioned there, thus it wasnt an OS comparison as it also wasn’t a bound-to-an-OS vs. absentness of vendor-lock-in-limitation-jungle comparison.

Wait… So LOTR is just a long winded remake of Smokey and the Bandit and Pippin is the Bandit.j

honestly i have no idea who a smoky should be, however i liked the movie “Bandits” back then, but i guess its likely not what you meant.

no pippin is rather just a fool who is directly driven by his curiosity and foolish but never foul ideas but that had an impact by the same luck that seems to follow pippin wherever he goes, thus he is rather the old character of the fool from tarot cards people have long forgotten (which is the only card of todays -poker,skat,etc- cardgames that somehow kept its original meaning from tarot cards: the joker who could be placed to replace every other card like the fool -high arkana- who could do anything and would just walk forwards without fearing consequences or looking back which is much of what pippin is like)

pippin actually helped to distract sauron a LOT. Without his “accident” there wouldn’t have been the big distracion that held until frodo and sam actually were on the vulcano short to letting the ring destroy itself.

ads with install buttons always are traps. and traps are always bad (except snmp traps, those are good but unreliable)

same way ads at download pages stating “proceed to download” are traps.

also ads at search result pages stating " 1 2 3 4 … next" are traps too.

for the “sponsored” note: there is no boundary here that makes it really clear for what that ‘sponsored’ is meant for. without any boundary it could be for something above it, below it, on the side or maybe even something that opens when you click on “sponsored” itself (seen it this way once). it could be for an ad that just failed to load (noticed the free space above that “sponsored” text? maybe the ad loads a bit later just to shift the real contents down so you “accidently” click on the ad that loads intentionally late for this very accident to be likely to happen?) if you use adblockers - which you should do for security reasons anyway - then you’ll see “sponsored” or “advertising” often even without the ad it was meant for after full load of the page. so a single “sponsored” without a clear boundary showing what would be that sponsored content, does not state anything to be an ad, it is purely meaningless and the lack of such boundary always is intentional to distract the user from what he wanted and trap him somehow.

a clear thumbs-down for ‘zoho assist’ from me here just for paying for (or trying out for free or such) such an advertising type.

And in most cases ads simply beeing ads are traps too. by the very concept of ads.

around 80 % of all things i actually still wanted after i bought them were recommendations by people i met in person. 15 % are things recommended by real persons i met on the internet. around 5% are things i bought without it beeing recommded by anyone (not even an ad) things i still wanted after i bought it due to an ad are nearly not existant. ok, i have stopped viewing television in 1997, have a sticker at my postbox that forbids to throw ads in (works where i live), use dns entries to remove most ads in my network, use browsers/extension that remove most crapjunkwastelitterrubbishads and skip webpages that still show too many ads or too offensive cookieterrorbanners. i use google search only sometimes for comparison of results, but near to zero for actual searching. i feel safe to say i am not that much distracted by ads. (however open source projects and authors do get money from me on a monthly basis, where i want to support them, either direct lly sent from my bank account or indirect).

for me personally an ad just saying “you might like this” drives me away from that product, if it needs or wants an ad, i don’t want it, even more so the more it states how difficult and horrible my life would be without the product or how easy it’ll be with it, go away ad-needing products, get recommended personally by those who actually use it, not by those who want to sell it. period. there is no better ad than true recommendation and its also free, no marketing monkey needs to get payed for bs, only an actually good product is needed… and there we go what types of products actually need ads…

once in my life i discovered a product that i first explicitly not bought for a decade because of the awful ad for it, but bought it another decade later by an absentminded accident and found it to be a good product despite its awful ad. then they increased packaging/reduced the product within to cover up a price increase in trade of more waste production, so i abandoned that product again and found something cheaper more eco friendly instead, yes, the cheaper one is really not as good, but i feel better with it and especially less betrayed by the vendor, so the eco one is the better one alltogether. and also i think its better to buy products where you don’t see ads for cause this behaviour could actually fix this advertising storm in the long run, so in this way its the better choice to buy products that don’t have ads for it.

again:

An ad with an install button is always a trap, even more so when the real install follows a single misclick on it. il’d say it would be quite fair to downvote/zerostars an app for how foulish-sneaky it was positioned in the search results if it is shown like an actual result with a f’ing install button. as its advertising type is always also part of the brand and the product itself. maybe make a sports out of that, klick the clickbait install buttons only to downvote the app for beeing intrusive and deinstall it again without even starting the app once, just to train advertisers to do it right instead of wrong next time. maybe. but for security reasons better don’t do that (at least not with a device with sensitive data on it)

please do not blame users to fall for ads. advertising industry now had centuries to learn to trap users and literally thousands or millions of marketing guys, designers, psycologists, neurologists or whatever only to learn and establish new abusive ways to distract and trap users. but a user only has his own lifespan to counteract that and learn to avoid those manipulations, and he also has to do other important stuff in his life too.

please don’t blame users for beeing humans. blame the industry where they are intentionally abusive, inhumane and/or counterproductive.

maybe there was a mixup of individual datapoints and individual persons.

lets see if that could fit.

as far as i read things in this thread, the whole security is based on exactly these datapoints: Full Name, Date of Birth and SSN (three datapoints) plus username and password for 3 sites (six datapoints) makes 3+6= 9 datapoints per person.

2.9 billion (us) should be 2.900.000.000 (correct me if i’m wrong, but where i live one “billion” is actually “1.000.000.000.000” thus a “bit” more)

divided by 9 those 2.9billion would be ~ 320 million.

on wikipedia they say the us had 331 million people in 2020…

that would fit like an ass on a bucket! lol just to mention that.

have a nice day!

Does anybody have a real answer?

the answer is: probably not. this might be very personal and then the only one who “could” have a real answer, is the one asking for one.

but ideas do exist

what if you want social interaction but what “they” call social interaction actually is not what you want?

maybe you don’t want group interaction but instead a single friend to go out and maybe do stupid harmless stuff or watch sth instead?

groups always are different, also people behave different when in groups.

maybe one just choosed the wrong ones to interact with. society has lots of subgroups, some even toxic by their own wish. maybe better choose more wisely.

maybe learn to cope with your personality not beeing ready yet to be part of a group by adding yourself to it slowly?

maybe these are answers, but if they are real ones, who knows?

i think its also a very good symbol of how the US just forgets about even their very own laws at a snap of a finger and that no nation in the world (not even the us itself) can ever trust them with anything. like for example the so called freedom of religion when we’re at the Sioux Blackbhills anyway.

What’s the alternative to ads, though? Not everyone wants to (or can afford to) pay for every site they use.

its not about paying for the site a user uses, its about paying those who run the site (and less to pay for someone only “managing” the site by doing actually nothing)

maybe these could be alternatives:

• patreon
• flattr
• micropayment in general
• donations (somafm runs on donations)
• link to shopping platforms (musicians on somafm mostly have links to the songs on amazon that you see while playing the song for free)
• communities, like FSF, local groups
• some small payed supporter part (like lwn.net) while the important stuff that makes the win-win of the site is free to use
• maybe the list from this page can help too: https://kinsta.com/de/blog/patreon-alternativen/ Kickstarter Indiegogo Podia Sellfy Buy Me a Coffee Memberful Hypage Ko-fi Substack Kajabi Gumroad WooCommerce Mighty Networks MemberPress Uscreen

maybe even a combination of multiple of those *whoa!!! mindblow!!! could be a good choice to allow usersvto choose how to contribute.

so really only choosing to offer exactly one option that also puts all users at a real risk of real attacks where they can get ripped off of all or lots of their real money and data for the sake if earning 0.003 ¢ per each putting them at high risk is not really what should be done, or do you personally profit from their users high risk and are thus completely okay with it? hope not.

if you have to earn money with your project or whatever, why not offer several options to choose from? why only one? and while we’re at it, offering an ad-free “membership” for 400 times the price of what they would earn by the same visitor with ads like they try here sometimes, does not make any platform look good, but the opposite.

there are many platforms that i would pay for monthly and i would spend much more money alltogether than now on that if their price would not be artificially pushed into astronomically heights per service…

there is one project where i do donate each month a little bit via recurring bank transfer since years. my transfer says the name of the project and “donation” thats pretty easy to setup for both sides, but too complicated for those who pay designers money so they can place the ad layers on top of the 400 other layers of spypixels and navigation controls… really ? lol*

if those you are talking about cannot afford to have a bank account for some reason, i guess they also cannot receive the revenue of ads on their webpages ;+)

saying there are no alternatives to ads is rather a candidate for the lamest excuse award ;-)

its not just ads and malware, and its not only about beeing sorry for them. ads are also manipulating how people think. not only the obvious things like “that product is good”, but also that products in general would help (with problems you didn’t have). and the format itself of ads (even without considering its contents) already has a changing effects on the minds of those who watch it. i am thinking of some parts of neil postmans thoughts about television back then and i guess there is plenty of possibilities to make a realistic conspiracy theory out of it why exactly the most poisonous parts of television are replicated to the internet with massive force even though everyone ignores ads in the net. i like theories

unfortunately, feeling sorry for them does not help society to stability. 😥

you should definitely know what type of authentication you use (my opinion) !! the agent can hold the key forever, so if you are just not asked again when connecting once more, thats what the agent is for. however its only in ram, so stopping the process or rebooting ends that of course. if you didn’t reboot meanwhile maybe try unload all keys from it (ssh-add -D, ssh-add -L) and see what the next login is like.

btw: i use ControlMaster /ControlPath (with timeouts) to even reduce the number of passwordless logins and speed things up when running scripts or things like ansible, monitoring via ssh etc. then everything goes through the already open channel and no authentication is needed for the second thing any more, it gets really fast then.

isn’t a security feature. At most it can be a safety feature.

o,O

no bad politics

😭

not the home screem

if had to use windows at home i’ld screem too.

not too surprised they didn’t change that.

The whole point of ssh-agent is to remember your passphrase.

replace passphrase with private key and you’re very correct.

passphrases used to login to servers using PasswordAuthentication are not stored in the agent. i might be wrong with technical details on how the private key is actually stored in RAM by the agent, but in the context of ssh passphrases that could be directly used for login to servers, saying the agent stores passphrases is at least a bit misleading.

what you want is:

• use Key authentication, not passwords
• disable passwordauthentication on the server when you have setup and secured (some sort of backup) ssh access with keys instead of passwords.
• if you always want to provide a short password for login, then don’t use an agent, i.e. unset that environment variable and check ssh_config
• give your private key a password that fits your needs (average time it shoulf take attackers to guess that password vs your time you need overall to exchange the pubkey on all your servers)
• change the privatekey every time immediately after someone might have had access to the password protected privkey file
• do not give others access to your account on your pc to not have to change your private key too often.

also an idea:

• use a token that stores the private key AND is PIN protected as in it would lock itself upon a few tries with a wrong pin. this way the “password” needed to enter for logins can be minimal while at the same time protecting the private key from beeing copied. but even then one should not let others have access to the same machine (of course not as root) or account (as user, but better not at all) as an unlocked token could also possibly be used to place a second attacker provided key on the server you wanted to protect.

all depends on the level of security you want to achieve. additional TOTP could improve security too (but beware that some authenticator providers might have “sharing” features which could compromise the TOTP token even before its first use.

My theory is that you already have something providing ssh agent service

in the past some xserver environments started an ssh-agent for you just in case of, and for some reason i don’t remember that was annoying and i disabled it to start my agent in my shell environment as i wanted it.

also a possibility is tharlt there are other agents like the gpg-agent that afaik also handles ssh keys.

but i would also look into $HOME/.ssh/config if there was something configured that matches the hostname, ip, or with wildcards* parts of it, that could interfere with key selection as the .ssh/id_rsa key should IMHO always be tried if key auth is possible and no (matching) key is known to the ssh process, that is unless there already is something configured…

not sure if a system-wide /etc/ssh/ssh_config would interfere there too, maybe have a look there too. as this behaviour seems a bit unexpected if not configured specially to do so.

antarctica:

• no bad politics
• no wars so far
• people there are mainly interested in science
• no economic abuse or exploitation
• pinguins!
• no air conditioning needed to survive the summer.
• winter is offline time, visitors won’t arrive or leave then.
• last place to stay cool during boomers heritage “heat death of our planet”

well sure, it has downsides too. Next Rollercoaster park is -tbh- unreachable, internet connection is sloo.oo…oow (or did they already finish the submarine fibre cable?) and sunbathing basically only brings you frost bites (if you’re lucky).

However i am not planning to migrate there.

since bots are better at solving captchas and humanoid services exist that solve them, the only ones negatively affected by captchas are regular legitimate users. the bad guys use bots or services and are done. regular users have to endure while no security is added, and for the influx i guess it is much more like with the better lock on the front door: if your lock is a bit better than that of your neigbhour, theirs might be force-opened more likely than yours. it might help you, but its not a real but only relative and also very subjective feeling of 'security".

beeing slower than the wolves also isn’t as bad as long as you are not the slowest in your group (some people say)… so doing a bit more than others always is a good choice (just better don’t put that bar too low like using crowdsnakeoil for anything)

Cold fusion is right around the corner!

i thought they’re already at “triple cold² fusion++” ;-)

yet these are never make it to market.

my personal favorite (but not a battery) were two different fake news about fans without any moving parts, one with electricity, conductors and shapes only, the other using ultrasonic somehow, how cool were these lies !!!

https://www.itnews.com.au/news/silent-microchip-fan-has-no-moving-parts-106236

“RSD5 is the culmination of six years of research by Dan Schlitz and Vishal Singhal of Thorrn Micro Technologies”

“Six years of research”, such a cool “product” and now that linked thorrn domain is for sale, how bad!! the world will never profit from their super “cool” invention !!!

“today” other bladeless fans (based on ultrasonic freqs) were anounced: https://linustechtips.com/topic/1471374-not-a-big-fan-new-solid-state-cooler-can-blow-air-with-no-moving-parts/ (“Frore is expecting to start shipping units in Q1 of next year.” which was news from 2022) but did you hear about that cool product beeing shipped yet? i would have, i’m somehow sure, but somehow i didn’t. maybe the “units” they wanted to ship were just something else *lol That article also says: “Frore Systems hasn’t announced any actual computers featuring its Airjet solid-state coolers. But the company is already in partnership with the likes of Intel […]” no actual result, but already partners like intel (intel, how does’nt that already fit !!)

The same nonexisting effect (fan without moving parts), abused (at least) twice. (i’ll just ignore those “bladeless fans” here that officially just have hidden “propellers”) but military says “twice” is already a scheme…

why should it be different for batteries?

if they produce batteries THAT good, they would never sell them but make them available only for rent, to maximise their(!) ROI (and not yours). so i guess it’s yafn - yet another fake news. i might still be wrong however, but i also like to be on the safe side of predictions ;-)

a theory: the richies offsprings startups desperately need other lies than their parents and grandparents who already used up nearly all language-allowed possible lies (as well as nonverbal lies, just watch tv for a while to see it in action) to distract people, companies and govs to ‘invest’ in them instead of i.e. in the future or in the nation, thus new nonexistant technologies is what the richies offspring found best to be their lies about.

like i said:

maybe the root-cause is […] the total lack of any consequences

but you used much more words ;-)

“publicly traded” does not imply that consequences would be impossible.

i see the opposite is true.

one could make that “public trade” also “very” public as in ownerships could only be changed together with a public note of who that new owner of that share is in person and only like not allow ownership changes more than twice a week per person, making investment more profitable than parasitic high performance trade. also the current lack of consequences could be improved by making the shareholders personally responsible for everything that the company does, including going to jail when the ceo left the country to not go there.

that could include making those responsible who owned that company at the time of its crime, making trust in the company way more important than that they can cause damage to society in macroscope just to profit in microscopical bits.

this way the shareholders would have a at least one trigger to actually want to look into who that bullshittalker is they want to let into such a position of “their property”

society should take care who they let do things with “their property” too.

i believe such happens only bcs society lets people into such positions without checking them to be fit in any way for anything except them having a bank account for receiving millions and a lawyer to check contracts and tell them what they should not say in public and receive parts of these millions in return for changing their customers “pampers”.

or maybe that brainfart was just part of a trip on randomly mind altering illegal substances? or maybe a brain tumor? or maybe a brain parasite? or maybe a parasite brain? or maybe just normal capitalism? or maybe a tumor that grows in society?

i guess we will never know for sure.