Stephan Sokolow @ssokolow@qoto.org

@ataraxia937@fosstodon.org ...that said, I should find or write a YouTube userscript which forces 480p or 720p quality on logged-out video playback, rather than "auto". "auto" is often over-sensitive to YouTube's heavy page loads, resulting in videos starting at 144p and spending too long there.

(And, "auto" or the inconsistent play/pause performance, Google is famously impervious to receiving feedback from users in forms other than randomly-appearing "on a scale of 1 to 5, how well is YouTube working today?" popups.)

@ataraxia937@fosstodon.org Agreed. On desktop, with uBlock, I just don't see Invidious as having a worthwhile value proposition... especially with the bug where, when the Play/Pause button is focused, the arrow keys don't do anything.

(I habitually never click the video frame because if the browser is bogged down, it can take 10+ seconds for YouTube to react, while Play/Pause always reacts quickly.)

I got used to not logging into YouTube years ago when they tried to force me to make a Google+ profile.

@lupyuen Having skimmed that paper as someone who's lurked on /r/rust/ and the Rust RFCs since before version 1.0, my impression is that the paper's focus is misguided:

1. I didn't see any evidence of them addressing the question of whether Rust affects the *number* of CVEs filed per amount of code, which seems like an obvious important thing to consider in a situation like this.

2. It comes across as if they're oblivious to the fact that other safe languages, like Python, have FFI support, like the ctypes module, and are calling out Rust as uniquely flawed in how the safe and unsafe code interact.

3. When they're classifying the vulnerabilities, it feels like they're oblivious to the fact that they are re-discovering the already well-known implications of constructs necessary for C FFI. (Had they approached it from a "does the real-world of Rust match the expectations for these constructs?" angle, it wouldn't bother me, but what they wrote feels like it lacks that self-awareness.)

4. I'm not a programming language theorist but, given the level of theoretical discourse that shows up in Rust RFCs, the kinds of ideas that show up in Rust team member blog posts, and the kinds of tooling, both experimental and production-ready, which get announced in /r/rust/, their recommendations for mitigating the risk feel so simple that I'd be surprised if they weren't already on the list of things that have already occurred to the relevant people and either are "easier said than done" or have non-obvious fatal flaws.

All in all, it just has an air of "People who know far less than they think they do acting with un-earned confidence".

(In fact, it feels vaguely reminiscent of the parts of the Unix Hater's Handbook that, yes, are a problem with Unix... but nobody else has managed to put anything better into practice.)

@CaptainStack I'm also in the market for one... though, if it requires permission to post to or modify my Mastodon account, I may go without since I'd prefer not to have to audit and self-host to feel suitably comfortable with it.

@wizzwizz4 @ticoombs

If you look at the spec for ABE definitions, you'll see that it supports whole-URL regular expressions too.

@protonmail For the focus-tracking, unless it's penalizing you for allowing your mouse and keyboard to go idle, you could also just run it in something which virtualizes the concept of "active window" like Xephyr, Wine in virtual desktop mode, or a VM like VirtualBox or KVM.

@randynose @shibayashi @lain

Fundamentally, the question is whether you're old enough to have strong memories of TVs from before they had the processing power to substitute a blue fill when failing to sync with an NTSC/PAL signal's timing.

@wizzwizz4 @ticoombs

If you want to block subresource requests, I used to use NoScript's ABE module to do things like neutering Google Instant without killing off Google's search pages entirely.

https://noscript.net/abe/

@andrioid@mastodon.technology

@vancha Oh, I almost forgot. I've gotten some excellent indie music from bundles on https://groupees.com/ over the years.

(For example, the albums containing https://www.youtube.com/watch?v=U5u9glfqDsc and https://www.youtube.com/watch?v=E52rxz2sjRs )

@vanitasvitae @fribbledom That one amused me because, as a UI/UX enthusiast, I agree with the sentiment but, perhaps ironically, I can also do that because I habitually unpack archives in the terminal.

@alexbuzzbee @Jason_Dodd I'm similar, but I usually say "Unixy OSes".

@TsRoe @vordenken When I have time, I want to set up my own mail server which uses a milter combined with a web service to treat e-mail aliases as revokable API keys bound to expected senders.

(eg. So an eBay seller who subscribes my eBay address to their newsletter without asking will find it bouncing with "You are not an authorized sender for this e-mail address. Please fill out this CAPTCHA to exempt the current message. Note that abusing this feature may result in blacklisting.")

@vordenken I have a domain registered through the registrar https://nearlyfreespeech.net/ partnered with and I pay 3¢ per day for e-mail forwarding on it with no limit on how many addresses.

@vancha Yeah. I actually discovered Jamendo through an open-source game that uses music by a band on it.

http://mars-game.sourceforge.net/ (`marsshooter` in the Ubuntu Universe repository)

https://www.jamendo.com/track/337572/ezer-ev

It's sort of like a SoundCloud that doesn't fight tooth and nail to prevent downloading unless the uploader pays money.

@vancha I don't know if any of the ones listed at https://fckdrm.com/ are built on open-source software, but they don't require clients.

@nebunez @orbjet@fosstodon.org Were you launching `libreoffice --quickstart` first, to keep LibreOffice Calc resident as a tray icon after the initial load?

@EclecticEclipse

Here are some classics from that period that are on sale on GOG.com and have open-source engine offerings:

The Curse of Monkey Island (classic funny point-and-click adventure, ScummVM)

Theme Hospital (tongue-in-cheek management sim, http://corsixth.com/)

Arx Fatalis (would have been Ultima Underworld 3 if they could get the rights, Arx Libertatis)

You can extract the data files using either the newest version of https://constexpr.org/innoextract/ or using Wine.

@floppy @wizzwizz4 @gxtony@fosstodon.org

5) See if Xephyr (Linux) or Cygwin/X or VcXsrv (Windows) can be configured to achieve a sufficient "split focus" effect.

6) Try running a browser under Wine in "virtual desktop" mode, then full-screening it so the pointer can't leave the website before it leaves the desktop.

As for #1, see http://greasemonkey.win-start.de/patterns/override-method.html

@kev Still, I really *should* find time to write the Git repository-splitting helper I've wanted to write. I've got quite a few useful little things that are ready to share once I get them split out of their incomplete parent projects without losing history.

(Basically, I want to build a Qt GUI which makes it feasible to audit what I'm telling git-filter-branch to do before pushing the result public.)