i’m shopping for mp3 players for precisely this reason - a friend has an ipod touch that abruptly stopped scrobbling. the last.fm app is stuck in a loop sucking battery. and she needs bluetooth anyway. she has always kept music and phone separate but now we have to ask the five whys on that before getting her a new unfamiliar gadget.

again not foss so won’t dwell at length — but i use fund manager from beiley software. commercial, but works double-entry and handles more investment complexity than a human could ever need. windows app, i run it under wine on linux and crossover on mac. (i don’t own a windows box — that’s how irreplaceable it was for me.)

so per wikipedia and confirmed at MDN, firefox is the only major browser line not to consider certificate transparency at all. and yet it’s the only one that has given me occasional maddening SSL errors that have blocked site access (not always little sites, it’s happened with amazon).

i don’t understand how firefox can be simultaneously the least picky about certificates and the most likely to spuriously decide they’re invalid.

neo store refuses to run if you don’t grant it the right to send notifications and bypass battery optimizations. if an app demands a permission and doesn’t have a plausible explanation why it needs it, i don’t keep it :/

imo magic earth is a navigation app, full stop. it does that amazingly well, including live traffic, but i wouldn’t use it for anything else. organic maps is a better general-purpose map but isn’t a patch on magic earth for nav.

It exists, it’s called a robots.txt file that the developers can put into place, and then bots like the webarchive crawler will ignore the content.

the internet archive doesn’t respect robots.txt:

Over time we have observed that the robots.txt files that are geared toward search engine crawlers do not necessarily serve our archival purposes.

the only way to stay out of the internet archive is to follow the process they created and hope they agree to remove you. or firewall them.

https://blog.archive.org/2017/04/17/robots-txt-meant-for-search-engines-dont-work-well-for-web-archives/

i made the same migration from markor (files in a folder) to logseq. there’s a lot to be gained - always-preview alone is a game changer - but on mobile the visibility of the keyboard can be fiddly. once in a while you’ll feel like you’re in vi, it has such a mind of its own. but i’m not planning to go back

looks great! the catch for me is that my current host doesn’t have docker support. your dependencies don’t look crazy so in theory i could burst it and install directly to the host environment, but at that point i’m giving myself grocy-level headaches.

reading about docker-capable hosts, i was surprised to see them starting at 1GB RAM - i couldn’t run pac-man in that. what would be a reasonable expectation for kitchenowl?

i haven’t tried the docker route - it seems fairly new. it also doesn’t seem like it would fix the issues i ran into. containerization is great for insulating the app from external dependency hell and environmental variation. but the problems i’ve had involve its own code and logic, and corruption of a sqlite database within its own filesystem; wrapping issues like that in a docker container only makes them harder to solve

i agree, but my unpopular opinion is that mozilla has also proven this repeatedly, with nothing and nobody being universally better. privacy people love firefox, but i spend a lot of time with each major version’s release notes figuring out how to undo the new telemetry (increasing integration with pocket, firefox suggest, location that won’t turn off).

my threat model is ‘they’re all evil, including mozilla’, so there are additional rings around everything

i left a big comment regarding this in another thread, TL;DR combination of brave on desktop and a lot of non-brave things on android, privacy browser + mull + DDG

https://poptalk.scrubbles.tech/comment/84466

inside the addons page: eBay is port scanning visitors to their website - and they aren’t the only ones

that one is very interesting if one has any coding background

appimages just got less easy…

i don’t know which update did it - i think it must have been os-level (i run pop_os, derived from ubuntu) - but appimages silently stopped working. double-click, nothing. finally i looked in the log out of desparation, which said ‘appimages require fuse’.

more accurately, appimages require fuse 2 and the os had just upgraded to fuse 3. the fix is to heat-seek libfuse2, and don’t mess with any other fuse-related package as things can start wrecking themselves:

sudo apt install libfuse2

originally seen on an omgubuntu post

i believe one can’t stop collection, only aggregation, so use different platforms and different emails - and critically, a device that actually meets your needs - and hope for the best. i have a garmin with an email on a domain i own. my phone is android, using a google profile that’s empty of any voluntary info and tied to a gmail address used for nothing else.

it’s child’s play to aggregate this, but otoh, two companies will work to combine the data only if they have a common goal.

i did end up going back to namecheap, where i already had an account. i’m trying not to create new relationships with businesses that heavily use recaptcha, and with porkbun it’s part of the login process

damn, automatic whois privacy and easy let’s encrypt certs - that does look legit

i had run across this report some time back - it provides some hard analysis behind the “both leak but android leaks more” theory

Mobile Handset Privacy: Measuring The Data iOS and Android Send to Apple And Google

retrieved from doug leith’s web site, at trinity college in dublin: https://www.scss.tcd.ie/Doug.Leith/

that tripped me up too - but it’s just the web demo. if you install it, your browser doesn’t matter

i’d never heard of this concept! i have a disorganized stack of markdown files - notes, to-do and packing lists - that this looks ideal to tame

on android, i have three.

• the default browser is an f-droid rarity called ‘privacy browser’. it is configured to allow scripting but reject practically everything else (storage, cookies). this will break lots of things, but i feel safer with this as the initial offer. it’s wired to a searxng instance for search. i have a personal hosted homepage that it uses for home.
• if i am opening something myself, i use an app shortcut that opens my home page on mull. mull itself doesn’t believe in home pages, so i have to use a shortcut. it uses a searxng instance for search. it’s configured to discard all data on quit. if something breaks on privacy browser, i share it into mull.
• for sites in which i need a persistent login, i use duckduckgo browser, again with an app shortcut since it doesn’t believe in home pages. i don’t open links in ddg, instead sharing them to one of the other two. i don’t search here since you can only use ddg.

on desktop (all platforms), i use brave with a lot of stuff turned off, homed normally and pointed to the same search instance. i have cookie autodelete to burn cookies as i browse. i spend a lot of time manually deleting local storage.

i don’t love this flow. what i really would like is one browser that would:

• load my home page when i click its icon
• burn all cookies and local storage on exit, except from domains i designate

i haven’t found an answer for that yet, would love ideas.

i have previously used and discarded, for various reasons: vivaldi, firefox, firefox focus, chromium, librewolf. i carry some of these for occasional use, either for ‘let it through’ or ‘fuzz all the things’ threat models.