Aa!

WSL is pretty good these days. Dual boot with Windows is still a pretty risky move with how easily Windows will overwrite your boot loader. I usually recommend you pick one os or the other rather than dual boot, so I’m in favor of WSL or virtualbox. Personally, I have never cared for needing to reboot just to switch operating systems. I tend to stick with one and the second one does nothing but take up disk partition space.

WSL lets you run both simultaneously without rebooting. Virtualbox lets you do the same with extra setup. Virtualbox makes it easier to do GUI setups than WSL does, and the network configuration is a little more obvious.

The best option is to get a second machine so you can run both. If that’s not an option, virtualbox is the better choice for learning. If you just want a Linux environment on your existing setup (similar to using a Mac) then WSL is usually good enough

I want an instance already established, very populated, and proven to last long term, so I don’t have to create another account

I’m shocked at what an unpopular thought this is. Like… If you go out in public, there’s a very real risk that people in public will see you. If that’s a concern you have, then you should take steps to not be seen in public. To me, that would mean not making my presence obvious when visiting a bar.

Camera or not, if people are looking for you, they will find ways to look for you in public places. You should always assume you’re being watched, because you probably already are.

Received dirt on the American Democrat party from the Russians and released it during the election to help Trump.

He said he received stuff on the Republicans as well, but it was “not interesting” and didn’t publish it. Didn’t really support his stated goal of transparency.

I have such bad things to say about recruiters. They generally don’t have a clue about any of the skills related to the jobs I’m after, and they take a huge cut of the pay the entire time I’m working the job.

On the other hand, the two best jobs (highest pay and best working environment) I’ve had in my career, I got through recruiters, so I acknowledge them as a useful business when it works out. The last one has led to the company buying my contract and hiring me directly for the past 12 years

That’s literally the majority of the existing mods today

This is not true, legendary actions are not an option in the custom game settings. This is why there are multiple mods that enable saving in honor mode or legendary actions in other modes.

Not without mods, as legendary actions only come from activating honor mode.

Yes, if you want to see Hackernews posts, get them from Hackernews yourself. Reposting to Lemmy just adds more posts with zero engagement that new users will see and be put off of the site for

Several months ago we had three different instances with their own Hackernews communities and their own repost bots posting the exact same things, with zero discussion.

Lemmy needs more actual discussion, and fewer bots adding noise to the feed.

A lot of people talk about the decentralization being a barrier of entry, but I don’t think it is.

Generally speaking, your average social media user won’t care about that one way or the other. You tell them an instance to look at, they will check it out.

Where I think it goes wrong is the general Lemmy attitude of curating your own feed. Your average Lemmy user will say the best part is that you just block the communities and instances that you don’t want to see.

Your average social media user on the other hand, doesn’t want to spend an hour or a month blocking people and communities to make the site useable. Most folks will come in, see a feed full of tech bros, repost bots with zero discussion, 30 different fetish porn communities, Star Trek memes, and bottom of the barrel shitposts, and they’ll just leave.

The only way I see Lemmy overcoming this is for instance admins to heavily curate the default experience so the feed is friendlier to new users. This would likely require some more tools in place to allow for this, possibly even a default block list that users can customize after they are already drawn in

Also the sorting could be better.

I have never once progressed his romance past “Sounds to me like you need a friend rather than a lover.” Any other option just feels like taking advantage of an abuse victim.

https://www.youtube.com/watch?v=xVSVZGH2x5Q

Well if you talked to him, you could tell him to leave. He won’t, but you can feel better knowing you tried

Also, didn’t want to associate with that kind of entity? So a vampire was cool, but a bone man is too far? It’s good to know where your boundaries are, I suppose

Atleast one must get physical access to the lock in order to pick it.

It’s a fair point, but if we’re taking about cars, I’d say physical access is a given. Keyless vehicles haven’t quite enabled remote car thefts just yet

It’s free, so when I need to ask about something in the news today, I’ll use Bing. Granted I use a browser extension that lets me use Bing in Firefox.

These are useful tools, but not useful enough that I’m willing to pay for them when there’s free options.

Generally commercial drive encryption solutions, like Bitlocker, usually has a backup recovery key that can be used to access the encryption key if your TPM is reset, or if your device dies.

So I guess the short answer is most of these solutions don’t fully protect it from being moved to another device, they just add another layer of security and hassle that makes it harder to do. And without the TPM as part of these solutions, you would be entering a 48-character passphrase every time you boot your device, which has several security flaws of its own.

Assuming you use bitlocker on your PC, how do you know the entire content of the TPM (your bitlocker encryption key, etc) cannot be fetched from the TPM by the manufacturer or any third parties they shared it tools and private keys with?

The TPM specification is an open standard by the Trusted Computing Group, and there are certification organizations that will audit many of these products, so that’s a good place to begin.

As with any of the hardware in your device, it does require some amount of trust in the manufacturers you have chosen. These same concerns would apply to anything from the onboard USB controllers to the CPU itself. There’s no way to be absolutely certain, but you can do your due diligence to get a reasonable level of confidence.

And because it is hardware based, how do I as a user know that it does what it claims it does as I would with a software based encryption software that is open source (like truecrypt/veracrypt).

This is a reasonable thing to think about, although very few individuals are qualified to understand and audit the source code of encryption software either, so in most cases you are still putting your faith in security organizations or the community to find issues.

When it comes to security, it often comes with a trade-off. Hardware devices can achieve a level of security that software can’t completely reproduce, but they are a lot harder to audit and verify their integrity.

In any case, the TPM is something that software solutions have to explicitly call in the first place, it isn’t something that activates itself and starts digging into your hard drive. Which means if you don’t want to use it in your security solution, then it will sit there and do nothing. You can keep using your encryption keys in clear memory, visible to any privileged software.

I don’t know specifically about the XBox and how it uses it, but the TPM absolutely can be used as part of a DRM scheme. Since the TPM can be used to encrypt data with a key that can’t be exported, it could be part of a means to hinder copying of content. Of course this content still has to be decrypted into memory in order to be used, so people looking to defeat this DRM usually still can. DRM as a whole is often shown to be a pretty weak solution for copy protection, but companies won’t stop chasing it just the same.

Well I have good news for you, the TPM can’t do those things. The TPM is just a hardware module that stores cryptographic keys in a tamper-resistant chip, and can perform basic crypto functions.

In of itself, it can’t be addressed remotely, but it is usually used as a component of a greater security scheme. For example, in full disk encryption, it can be used to ensure that disk can’t be decrypted on a different device.

There’s been a lot of FUD surrounding TPMs, and it doesn’t help that the actual explanation of their function isn’t something easily described in a couple of sentences.

There’s no reason to be afraid of a TPM, and for the privacy-minded and security-conscious, it can even be used as part of a greater security scheme for your device and its data.

Of course at the same time, it’s not a feature most home users would make full use of, and as for not liking Windows, carry on. There’s plenty of reasons to avoid it if those things are important to you

Now that you have spelled it out for me, I realize this should have been obvious. I have not been paying attention to what kind of saves each spell has, or how to make sure I use the right one on the right enemy.

I imagine that should help quite a bit

Admittedly haven’t tried bard itself yet, but I’ve got access to all those spells on Gale, and I find a well-placed fireball usually ends up being the better choice. The main problem i have is that I almost never saw those conditions last for even one turn, they would just pass a save and it was like the spell might as well have just missed.

It’s a little frustrating, because surely there must be value in using those spells… But I’m definitely not doing it correctly when I try them out.

For what it’s worth I played tactician mode right from the start, which probably colored my learning curve a bit