“I’d rather die alone shot down by a fascist than teaming up with this pal that do not share 100% of my vision on what this dead dude did 100 years ago”

I suppose you can enforce additional politics into your store. Like forcing all apps being open source (like f-droid).

But everything will keep to be apple/google approved, at least until linux phone becomes more mainstream.

Until then I’m moving away from native app development, and focusing more on webapps and progressive apps.

I contacted my representatives in Spain and they gave two fucks about it, they still positioned as “in favour”.

They are closing the whole project.

Specifically they say that they are tired of pushing fixes and that they don’t find excitement in maintaining the project. With zero mentions at all to being scrapped or having any kind of AI related issue.

I don’t know if you knew the project before seeing this post. I did, I was considering between this and freshrss and chose freshrss specifically because I knew that the end of ttrss was close (this was like 2 years ago). There were a lot of signs that the development was ending and the project was on route to be abandoned.

First, source code is on github.

Second, RSS aggregators are self hostable, not a service provided by the dev. The dev would have not issues of a public instance of ttrss hosted by someone gets scrapped.

Third, RSS aggregators doesn’t really tend to be public facing. Due to their personal nature they don’t tend to be open. They are more account based.

Sorry, I really don’t see the case here.

It really doesn’t seem like that’s the case. It doesn’t even makes much sense. What do tou think was being AI scrapped? The source code?

You could want to have multiple clients in sync.

Also a web service could be fetching 24/7 and perform classification algorithms before serving to the client that will only connect a few times a day.

Newpipe, now signed by Norman Reedus, verification picture and everything!

My despise to ads is so big that if someday ads are completely unavoidable I’ll settle for a system that just blackens the screen and mute the volume for the duration of the ads. It will still be worth it.

It’s true. Having to constantly update some adblockers and ways to evade ads in youtube made me realize shitty youtube videos are not worth the effort and I barely use it nowadays.

It seems that there has been a massive short lived ddos attack all over the web.

There have been several in the later years. Sone of them are linked to a botnet called AISURU that it’s supposedly infected millions of devices worldwide.

Timing links most likely with an attempt at hybrid warfare against europe. My bet is israel or Russian linked due recent events.

Headline is not true.

A police spokesperson from one Spanish region told that they suspect of people carrying google pixel phones because they are commonly used by drug dealers with GOS installed. It was made more as a comment than as a serious threat.

I have heard nothing about any actual confiscation based on phone OS being made.

I’m closer to carrying around a cyberdeck than a dumbphone.

I don’t like either sms or phonecalls.

I have just set up a normal computer with the specs I wanted, installed debian and docker/podman and I’m golden.

I can’t wait for what comes first. The claudication and predictable extended support or the wave of malware paralyzing half the world over unsecured devices.

I also have a WD black 2TB that must be near a decade now and it’s still going with zero issues. There were definitely doing something good.

Though truth be told, it’s a data drive, not the OS drive. So there’s less r/w going on.

Have to point a dns to the ip, buy a domain, stablish ddns. I don’t see it happening often. If you know all that you are ought to know about getting hitm

Bot hits are not a problem for jellyfin. The main problem right now is unauthorized access to endpoints for people who know the hash that is being used in that endpoint.

It’s a targeted attack that hampers availability of the services (making it more available than it should be). It doesn’t make internet more insecure or anything.

As I said previously I haven’t actually known of any of these attacks happening on the wild. As they are kinda hard of pull of. You need to know the precisely hash used for the endpoint, the most normal way of knowing that without being an authorized user is because you used to be an authorized user and you are not anymore. That’s weird in jellyfin current ecosystem. People say that the hash could be calculated by a complete outsider, but I have never seen anyone pulling it off on the wild. You need to know a lot of things about the service you are attacking to be able to do it.

So, yes is a security vulnerability, all software have those. But I think it gets blown out of proportion often.

Not techie people are not going to be able to open it for internet access. If you have the knowledge to set a internet available service you should have the knowledge to be able to provide basic security.

Most security issues with jellyfin are an issue only for a specific type of user. The one who is selling access to their server. The worst Jellyfin security issue makes selling access to your server a higher risk situation.

I hope someday those issues would get patched, but I get why there are other priorities for the dev team right now, about issues that bother to a bigger majority of jellyfin users.

Jellyfin dev team is not in charge of your self hosted security though. You know what you are getting, source code available, and it’s up to you setting the security.

While I whish access were secured at some point. I’m still yet to see one of those guessed hash attacks on the wild.

A good thing about Jellyfin is that we KNOW its insecurities because it’s open source.

Other software may be insecure like that but you would only know after an incident happens because you cannot audit the source code.