Gave it a quick shot right now, and gonna be honest - while the premise seems nice, the sample project is very transparently AI slop generated with a prompt that, I can only assume, included an instruction like “for every sentence that doesn’t include a whimsical quip, I’m gonna kill a kitten”. It is absolutely grating to read. I don’t care if you do that in your marketing copy, but keep that shit out of technical documentation, it’s annoying, it’s distracting, and it’s turning me off the entire project. Like wtf is this:

Richtig und wichtig! Alternativ sind Passkeys auch eine gute Sache, sind aber noch nicht so wirklich im Mainstream-Bewusstsein angekommen

Also raufgeklickt, dahinter die perfekt nachgebaute SIMon-Mobile-Anmeldeseite. Meine Anmeldedaten eingegeben.

Weil es bisher in den Kommentaren noch nicht erwähnt wurde, aber es einer der wichtigsten Schutzmechanismen gegen sowas ist: Jeder, absolut jeder, sollte konsequent einen Passwort-Manager mit Autofill benutzen, und dann sehr, sehr skeptisch werden wenn Autofill mal nicht funktioniert - normalerweise bedeutet das, dass man gerade nicht auf der Seite ist, auf der man glaubt zu sein.

Passwort-Manager sind wirklich in jeglicher Hinsicht win-win ohne Kompromisse - sich irgendwo anzumelden wird einfacher und sicherer, gleichzeitig. Man muss sich nur noch ein einziges Passwort merken und von Hand eingeben, alles andere macht der Passwort-Manager für dich, und sorgt ergänzend auch noch dafür dass du überall unterschiedliche und sichere Passwörter benutzt.

Resolve is working fine for me on Bazzite KDE, on Wayland, with an Nvidia GPU. Installed via ujust install-resolve

I mean I get your point, but it seems like at the current point in time, “Gaming” distros also happen to be the distros that produce the least amount of weird issues and headaches for someone new to Linux, especially if you’re on Nvidia. Bazzite in particular has been incredibly smooth sailing in a way I’ve seen no other distro achieve so far. And it does have a non-Gaming sibling distro if you don’t want that stuff.

if you run into any weird edge case issues it’s much more likely that someone else has already been there and discovered solutions

While that is true, the amount of those weird edge cases that you’ll get varies wildly between distros. In my experience so far on a somewhat comparable rig to OP, Bazzite has been the only one that actually just worked out of the box and had not a single hickup, while any other distro I’ve tried (Pop, Fedora and Arch) all had several issues that required troubleshooting.

So, I guess, for someone willing to actually understand Linux, learn, and troubleshoot issues themselves, your advice is the way to go, but for the relative who wants their system to just work and would call me anyway at any sign of trouble, I’m recommending Bazzite (or Aurora, I guess) all the way

That’s a lot of words to say “GUIs, TUIs and CLIs are good at different things”

Well but distributed != federated. Which is why Forgejo is currently working on a federation feature.

If they were, “are”, “of” and “and” likely wouldn’t be capitalized.

Also, “the actual grammar rules” are not a thing. There are lots of different style guides for how to capitalize titles, there’s no generally accepted “correct” version like there is for most of orthography or regular grammar (but almost all of them have in common to not capitalize the words I mentioned before)

I have heard that DaVinci resolve is very hard to set up.

On Bazzite (and probably the other ublue distros as well), you can run ujust install-resolve on the terminal, and that’s it, you’re good to go

literally any abstraction

Except vibe coding is not an abstraction in the way that word is usually used in the software context. Abstractions are deterministic. They may be leaky, but they can be fully understood and properly debugged if you have the skill. A chat bot that gives you a completely different result each time you give it the exact same task is something very different from that.

and plug in the wireless dongle

Depending on your setup, not even that. It sounds like if your wifi hardware is good enough, you’ll be able to play over that as well, eliminating even the line of sight requirement between PC and headset

Ich bin kein Anwalt, aber für mich klingt es so, ja

Sehe ich auch so. Da kommt halt nochmal ein Vielfaches von drauf für die Anwaltskosten des Klägers. Verstehe wieso das so läuft, aber ich finde da könnte man noch am ehesten drüber nachdenken ob das so fair ist, wenn der Verfahrenswert so gering ist

Im Artikel steht:

Zusätzlich [zur Löschung des Bilds] sprach das Gericht 100 Euro Schadensersatz zu: Nicht, weil die Daten missbraucht wurden, sondern weil der Kläger für rund eineinhalb Jahre die Kontrolle über sie verlor. Schon dieser Kontrollverlust kann laut Art. 82 Abs. 1 DSGVO ein immaterieller Schaden sein. 100 Euro seien, so das OLG, “angemessen, aber auch ausreichend”.

Finde das ist schon ziemlich klar nicht einfach nur dem Buchstaben des Gesetzes gefolgt, sondern abgewogen was sinnvoll ist und dem Sinn des Gesetzes entspricht.

The company that employed the core Immich devs about a year ago to give them a full-time salary to keep working on Immich. Founded and funded by a millionaire whose stated goal is to try and make a viable business model out of software that doesn’t abuse its users

e2ee would be important if youre uploading files when away from your local network

Even without e2ee or a VPN, just plain old HTTPS should be enough to secure that part, or am I missing something?

even if you steal my password (database)

That’s a big leap you’re doing there, equating stealing a password to stealing a password database. Those are very different. Stealing a password can be done through regular phishing, or a host of other methods that don’t require targeted effort. Stealing a password database, if properly set up, is a lot harder than that. It depends of course on what password manager you’re using, but it usually involves multiple factors itself. So equating that to just a password, no matter how strong and random, is just misleading.

Mind you, I agree that it’s less secure than “proper” MFA, and I’m not saying that everybody should just use MFA through a PW manager. I am using physical security keys myself. But for a lot of regular people that otherwise just couldn’t be bothered, it’s absolutely a viable alternative that makes them a whole lot safer for comparatively little effort. Telling them they just shouldn’t bother at all is just going to create more victims. There is no such thing as perfect security, and everyone has a different risk profile.

More like 1.5FA, at least. It still protects against passwords being compromised in any way that doesn’t compromise full access to your password database, which is still a lot better than using just passwords without a second factor.

You might have to sign out and then in again. There was a bug with the initial release that caused this kind of behavior