Thats the only (sane without tons of work) way how you can have a rolling release distro without the need to compile everything yourself, everytime. Dependency issues will occure when glibc gets updated (or any other library) and you only update some programms but not all, its possible that those programms work or not.

Yes but that is on Manjaro if they do not follow basic rules from their upstream and not on arch. If you ignore design desicions then thats on you.

So, when you activate simple versioning, and keep the last 20 Versions, then an error occurs (or malicious actor) and overrides the file 20 times. Then the simple versioning is gone.

Yes with the correct setup you could probably backup via syncthing BUT no one in the comments ellaboborated and mostly just says “i sync to multiple devices via syncthing”

I am shocked how many ppl think synchronization like syncthing act as a backup.

No synchronisation is not a backup. If you accidentally delete the database and it syncs across all devices then the database is gone. If something is broken and overrides multiple times then the history if it is enabled is also gone.

Pls use proper backup methods to backup your database.

Edit: I sync my database also with syncthing across devices. But to back it up i have on multiple clients system backups running that include the database.

Why should that be a flaw on Arch’s side, when it ooses no issue on Arch’s side? Partial updates are explicitly not supported. That would be fine for Manjaro if they would not encourage the use or for some cases even enable the use of AUR by default.

The Pin is not designed and used for such an authentication. Also can be changed at any time:

How do I manage or change my PIN?

On your phone, go to Signal Settings > Account > Change your PIN

Its not about being complicated, its about dumping the whole chat history with just a few seconds of physical acceas to the device.

LEA has used this method with messangers like Whatsapp for years to quicly exfiltrade the data from a victims phone to other software.

It is less intuitive to set up, but it is extremely lightweight and very fast. That is the one I recommend.

I highly question the decision process to only include the lightweight and speed. There are much more important criterias to consider, like for example stability, maintainability, support etc.

I do not need yet another service that gets abonded 1-2 years after launch or goes subscription only etc.

While lots of ppl will hate on Nextcloud, its pretty good. When you do the setup right, with cache and so on set up it’s fast and serves its purpose not only as cloud storage but as a collaboration platform where you can edit files with other ppl and much more.

If you only want a simple Web App to up and download files there are probably other solutions for that.

Looking at the research they are doing and actually looking critical and scientific on their own product, it is actually believable.

I am actually more worried about the USA honoring any contract or licensing agreementa on their end.

Have you been on social media? A lot of ppl acting up participating in racism, transphobia, hate speech etc. do not give a shit about protecting their identity. If the real name is not already on their profile, then their post makes them easily identifiable.

Also, there are enough laws out there that force social media providers to give out information about the users who do illegal stuff online. That would make almost everyone identifiable.

The reality is that law enforcment gives a shit about doing their job. And Social Media providers give a shit about actively protect users of those points, even tho they are obliged to in many jurisdictions.

And those handwritten notes are secure random passwords and never repeat?

Just too much work for the average person and too inconvenient to type.

This is not really a weakness in the bitlocker encryption but in the TPM used to store the secrets if you set it up like that.

Different to most at least somewhat popular software futo is involved in, immich is foss. It’s AGPL licensed and community driven.

Yes. There are enough signed and exploitable Windows Boot loader which you can use to boot anything you want.

Luckily thanks to their licensing model they basically cannot. Immich has according to github as of now 1606 contributors. Changing the license so that there could even be a proprietary fork would require basically the ok by every contributor (that made a relevant code contribution)

Yep, there even was a standard that would have been sufficient, Do Not Track. https://en.m.wikipedia.org/wiki/Do_Not_Track

There are many ways to harden against it, but “just disable root auth” is not really it, since it in itself does not add much.

No you can alias that command and hijack the password promt via bashrc and then you have the root password as soon as the user enters it.

With aliases in the bashrc you can hijack any command and execute instead of the command any arbitrary commands. So the command can be extracted, as already stated above, this is not a weakness of sudo but a general one.