I contacted my representatives in Spain and they gave two fucks about it, they still positioned as “in favour”.

Why would a OS need an online account?

We truly live in the stupidest timeline.

They are closing the whole project.

Specifically they say that they are tired of pushing fixes and that they don’t find excitement in maintaining the project. With zero mentions at all to being scrapped or having any kind of AI related issue.

I don’t know if you knew the project before seeing this post. I did, I was considering between this and freshrss and chose freshrss specifically because I knew that the end of ttrss was close (this was like 2 years ago). There were a lot of signs that the development was ending and the project was on route to be abandoned.

First, source code is on github.

Second, RSS aggregators are self hostable, not a service provided by the dev. The dev would have not issues of a public instance of ttrss hosted by someone gets scrapped.

Third, RSS aggregators doesn’t really tend to be public facing. Due to their personal nature they don’t tend to be open. They are more account based.

Sorry, I really don’t see the case here.

It really doesn’t seem like that’s the case. It doesn’t even makes much sense. What do tou think was being AI scrapped? The source code?

You could want to have multiple clients in sync.

Also a web service could be fetching 24/7 and perform classification algorithms before serving to the client that will only connect a few times a day.

Newpipe, now signed by Norman Reedus, verification picture and everything!

I will push with my current phone, for a few years. Luckily abd installs could do the trick for a while.

For when this phone is failing I hope the new partnership between GrapheneOS and a phone manufacturer that’s not google is already working and producing a phone I could buy.

My despise to ads is so big that if someday ads are completely unavoidable I’ll settle for a system that just blackens the screen and mute the volume for the duration of the ads. It will still be worth it.

It’s true. Having to constantly update some adblockers and ways to evade ads in youtube made me realize shitty youtube videos are not worth the effort and I barely use it nowadays.

Headline is not true.

A police spokesperson from one Spanish region told that they suspect of people carrying google pixel phones because they are commonly used by drug dealers with GOS installed. It was made more as a comment than as a serious threat.

I have heard nothing about any actual confiscation based on phone OS being made.

I’m closer to carrying around a cyberdeck than a dumbphone.

I don’t like either sms or phonecalls.

I have just set up a normal computer with the specs I wanted, installed debian and docker/podman and I’m golden.

I can’t wait for what comes first. The claudication and predictable extended support or the wave of malware paralyzing half the world over unsecured devices.

I had a friend that was 100% convinced that we have already found extraterrestrial life, and that it was already normalized. She was actually surprised when I have to explain that we haven’t found any evidence whatsoever of any living organism that had not originated on earth. She didn’t even believed me at first, she just thought I was misinformed.

I blame headlines like this.

I also have a WD black 2TB that must be near a decade now and it’s still going with zero issues. There were definitely doing something good.

Though truth be told, it’s a data drive, not the OS drive. So there’s less r/w going on.

A sad reality of political activism is the inability of many groups to follow proper opsec.

Have to point a dns to the ip, buy a domain, stablish ddns. I don’t see it happening often. If you know all that you are ought to know about getting hitm

Bot hits are not a problem for jellyfin. The main problem right now is unauthorized access to endpoints for people who know the hash that is being used in that endpoint.

It’s a targeted attack that hampers availability of the services (making it more available than it should be). It doesn’t make internet more insecure or anything.

As I said previously I haven’t actually known of any of these attacks happening on the wild. As they are kinda hard of pull of. You need to know the precisely hash used for the endpoint, the most normal way of knowing that without being an authorized user is because you used to be an authorized user and you are not anymore. That’s weird in jellyfin current ecosystem. People say that the hash could be calculated by a complete outsider, but I have never seen anyone pulling it off on the wild. You need to know a lot of things about the service you are attacking to be able to do it.

So, yes is a security vulnerability, all software have those. But I think it gets blown out of proportion often.

Not techie people are not going to be able to open it for internet access. If you have the knowledge to set a internet available service you should have the knowledge to be able to provide basic security.

Most security issues with jellyfin are an issue only for a specific type of user. The one who is selling access to their server. The worst Jellyfin security issue makes selling access to your server a higher risk situation.

I hope someday those issues would get patched, but I get why there are other priorities for the dev team right now, about issues that bother to a bigger majority of jellyfin users.

Jellyfin dev team is not in charge of your self hosted security though. You know what you are getting, source code available, and it’s up to you setting the security.