There’s always caddy-cloudflare: https://github.com/CaddyBuilds/caddy-cloudflare

This works perfectly with Cloudflared tunnels. I use it for full https (validated) in completely internal endpoints.

Is this similar to the built in KDE night light?

Did I say anything to argue otherwise? Since you brought it up, internet infrastructure grants should go to fiber PUDs and not a billionaire nazi. Then, there’s no need to have satellites. He’s polluting the skies for profit.

While true, they continuously replenish the ones that fall back to earth. I wouldn’t be surprised if their current launch pace is higher than the amount falling out of orbit. That’s not even mentioning the impact they have on ground-based astronomy.

Thanks! I’ll add it to the todo list.

I’m a current gitea user… should I be moving to forgejo?

Do the fans come on during charging if you’re not using it?

Private space works slightly differently especially when it comes to folder organization. Because of that I actually still prefer Shelter, personally.

Yeah, I guess I knew what they were, but it seems like it would be rough to use on an Android TV in the browser compared to purpose built TV applications.

I downloaded TizenTube Cobalt as a replacement until the dust settles. Obviously similar attacks can happen with TizenTube, but if you want something that is clean right now, that’s the way to go.

Do either of those work on Android TV?

Hm, I’ve thought about using an HTPC for this myself, but haven’t gotten around to trying it. I’d prefer to be able to use my remote still…

Curious, what did you do for an alternative?

Slightly more detail in this GitHub issue, however much is still unknown, even after three or so days. The dev hasn’t revealed any further details. Some articles on this incident:

• https://www.bleepingcomputer.com/news/security/smarttube-youtube-app-for-android-tv-breached-to-push-malicious-update/
• https://www.aftvnews.com/smarttubes-official-apk-was-compromised-with-malware-what-you-should-do-if-you-use-it/

Note that the articles provide little detail on what’s happened, mostly just detail that a malicious library was found and Play Protect started removing the app if affected. It’s unclear which versions are specifically affected, how the dev got breached, and what the malware actually does. According to a user (who may or may not be using some sort of LLM, their comment sounds like one at least) in a separate, related issue, the malware may collect device info and send to a command & control server. It could (in theory) receive new instructions at any point if it’s a C2 server. Again, it does appear that they had an LLM of some sort generate their comment, so take it with a grain of salt.

I’m going to uninstall the app and revoke access on my Google account page. I see little reason to need to reset my password as of right now, since the app uses an API key and not my actual password. In my opinion, it’s possibly related to YT viewbotting and commenting, or to add your device to a botnet. It’s unclear to me how this botnet would work in practice, since even Android TV sandboxes apps (for the most part)

I’m not concerned about the app id changing after a signature leak, in fact, it’s what I’d expect. I am concerned about if the new signature is from the actual dev or not, and the dev hasn’t really said much other than they’ll release a disclosure once their new build is pushed to fdroid. It’s been pushed as far as I can tell, and it’s still been silence from them. I’d recommend not installing either app until this gets sorted out, and revoking the app’s access to your account.

I have used Bazzite for some time for both gaming and development tasks. Distrobox is what I use to do development, and rpm-ostree if I don’t care about layering on to the system image. Really, immutable distros just function differently than non-immutable, so if you try to use them like you might be used to, then you might have a difficult time.

Bazzite’s real strength is with completely new users in regard to Linux who haven’t already built up non-immutable habits imo (although I’ve used Linux for over a decade and was able to adapt to immutable and actually prefer it). It pre-packages everything someone moving from gaming on Windows might need while making it more difficult to break. That’s why Wendell recommended GN use it over Cachyos, since it’s more approachable and accessible to those moving from Windows.

Containers are the best, so probably

Those both work fine in Wayland.

I currently donate to Frigate, but I definitely should donate more. Especially to KDE…

The new repo has two releases in it now. These releases are not signed with the original key as far as I can tell. Further, GitHub is silently redirecting to the new repo, even in Obtainium, meaning it’s possible that if you had this previously installed via Obtainium and updated now, you may have unsigned apks installed that may or may not contain the changes in the repo.

This is a mess. I deleted the repo from Obtainium (luckily I don’t auto install updates) and will wait to see what happens over the next few months. Might just save my notes in a network share instead of using syncthing from my phone. Idk, notes are all that I was using it for.