and you have just submitted a unique identifier over the whole internet

they must have inhaled too much vegetables

I run all of these or their equivalents in docker containers and have up to date versions of them. to me it makes management easy and the system clean from random files at random places. just one example: fortunately it does not need babysitting but i2p keeps its files in a very disorganized way inside the container, and I would never want to install it directly to the system (maybe unless the system would be dedicated to that)

for what kind of software? also, do you maybe also have exact features on your mimd?

I don’t agree with them generally, but this part is different:

Regarding Santa Claus’ growth in terms of popularity, in an interview with the Russian outlet Life, Ivanov said: “Santa Claus has become not so much a symbol of Christmas as a symbol of commerce and mass production. His omnipresence in shop windows is not an accident, but the result of a targeted marketing strategy, from which the true spirit of the holiday is leaving and our values are being destroyed.”

I’ve done so similarly, but I can’t tell that to everyone I know if I don’t know an alternative that doesn’t have their friends

I’m quite sure Debian’s server-related packages are kept patched against security issues in a timely manner

not really. services make the mobile site unusable. example:

• facebook: nags you to use the facebook app with popups and large banners
• facebook messenger: does not even let you to log in

well yeah actually it depends on how they are rotated. if they are “hanging” with the connectors facing the bottom/top, it does not make the box big in the dimensions I imagined

Absolutely. I think having this in mind would probably also solve the outdated packages problem. the docker based services won’t depend on it, and unless OP wants it to be a full blown desktop system too, the older packages shouldn’t get in the way

can you give examples of what you need more recent versions of?

the size of a toaster with lots of harddrives

a pretty big toaster then, isn’t it?

I have considered these operating systems. Are any of these bad ideas? What you recommend that is not here?

why not Debian? Perhaps Proxmox (but only if you are interested in virtualization based separation)?

voidtool everything

what? did they do something questionable?

how well does it handle lemmy’s multi-level responses?

thanks Patrick for fighting for us!

I guess you can do that on Linux as well by disabling kvm passthrough of the GPU to the VMs.

I think it is disabled by default, and you would need to enable it for a specific VM. as I know, the GPU can rarely be shared to multiple VMs

I think QubesOS only does mitigations, not microupdates.

it may be possible to do it on Qubes too. I think the microcode updates are not OS-specific, but I’m not certain about this

do you mean this part?

However, some of the vulnerabilities of this class cannot be effectively mitigated without updated CPU microcode.

(https://osresearch.net/Heads-threat-model/)

linux can do microcode updates. I think what they wanted to mean is that the general mitigations (the retpolines and the page table isolation they mention near it) are what is not enough

which frontend allows that?

as I know piped and invidious have their own account system, and by following their attempts to regain access to youtube content I would think that if they allowed login with a google account, that would place the account in danger of getting blocked for good

to be targeted through an old ThinkPad.

I’m not convinced that this needs targeting. At the same time, you can’t know if any of the former owners was an important person, or in the environment of one, just as you can’t know what shit did they install entirely carelessly.