this post was submitted on 03 Jun 2024
1 points (100.0% liked)

Technology

59587 readers
2940 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

As read from my Mozilla Firefox....

top 50 comments
sorted by: hot top controversial new old
[–] tedu@azorius.net 0 points 5 months ago (1 children)

I'm going to go way out on a limb here and guess nothing will happen if I do neither.

[–] AlphaAutist@lemmy.world 0 points 5 months ago (4 children)

The article says that’s what the government is telling employees since there were several critical vulnerabilities found in chrome. It is very convenient that these vulnerabilities were patched in the same update that manifest v2 is removed though

[–] aniki@lemm.ee 0 points 5 months ago

That's what I was thinking. It's mighty convenient...

[–] Audalin@lemmy.world 0 points 5 months ago (4 children)

CVEs are constantly found in complex software, that's why security updates are important. If not these, it'd have been other ones a couple of weeks or months later. And government users can't exactly opt out of security updates, even if they come with feature regressions.

You also shouldn't keep using software with known vulnerabilities. You can find a maintained fork of Chromium with continued Manifest V2 support or choose another browser like Firefox.

[–] Lost_My_Mind@lemmy.world 0 points 5 months ago (2 children)
[–] essteeyou@lemmy.world 0 points 5 months ago (2 children)

I'm using IE5.5 and a screen resolution of 800x600 because a website said that was the best way to view it 25 years ago.

[–] Audalin@lemmy.world 0 points 5 months ago (1 children)

xkcd.com is best viewed with Netscape Navigator 4.0 or below on a Pentium 3±1 emulated in Javascript on an Apple IIGS at a screen resolution of 1024x1. Please enable your ad blockers, disable high-heat drying, and remove your device from Airplane Mode and set it to Boat Mode. For security reasons, please leave caps lock on while browsing.

[–] Rhaedas@fedia.io 0 points 5 months ago

Never realized that was there. One of the ten thousand.

[–] KISSmyOSFeddit@lemmy.world 0 points 5 months ago

https://ilsogno-hd.de/

This website is optimized for Internet Explorer 6.0 and Firefox 1.5

[–] Elgenzay@lemmy.ml 0 points 5 months ago

I'm using tilt controls!

[–] deweydecibel@lemmy.world 0 points 5 months ago* (last edited 5 months ago) (1 children)

You also shouldn't keep using software with known vulnerabilities. You can find a maintained fork of Chromium with continued Manifest V2 support or choose another browser like Firefox.

It's disgusting how this exact idea is used to push users away from things they want, and no matter what they claim, you can't convince me this isn't part of how they design certain updates. When the customer has no choice but to update, the company has no reason to make the update appealing. They can actively make it all worse and worse and worse, while continuing to scare users into accepting it.

I'm tired of companies hiding behind "security" to mask anti-consumer shit, and I'm tired of the security community helping them shovel that shit while acting like the consumer is a fool for not wanting to eat it.

[–] 0xD@infosec.pub 0 points 5 months ago (1 children)

Yeah, go read a book or something.You have no idea what you are talking about.

[–] unexpectedteapot@lemmy.ml 0 points 5 months ago

Backporting security and bug fixes is a responsible and reasonable measure taken by any software that actually respects its users ESPECIALLY when a new breaking update is released. You failed at bullying a stranger with valid concerns. Try to bring reason with you next time before you decide to be rude and condescending.

[–] reddig33@lemmy.world 0 points 5 months ago

Maybe that software doesn’t need to be so fucking “complex”. It’s a web browser. Stop cramming everything but the kitchen sink into it. Half of the crap in web browsers like WebGL and WASM should be plugins anyway.

[–] AbidanYre@lemmy.world 0 points 5 months ago (1 children)

You can find a maintained fork of Chromium with continued Manifest V2 support or choose another browser like Firefox

You can find them, but you're not getting them installed on your government issued work computer.

[–] catloaf@lemm.ee 0 points 5 months ago (1 children)

Depends on the government org. Some give more flexibility than others.

[–] AbidanYre@lemmy.world 0 points 5 months ago

Fair enough. My experience is mainly in and around the DoD.

[–] tedu@azorius.net 0 points 5 months ago

I don't know why you'd jump to the dev channel, though. Just apply the stable channel update.

[–] Neato@ttrpg.network 0 points 5 months ago

Government isn't telling employees shit. Federal users have no control over browser updates or most settings. At best this is a directive to push updates to it department head.

[–] deweydecibel@lemmy.world 0 points 5 months ago (2 children)

headlines have focused on the detrimental effect this will have on ad blockers, which will need to adopt a complex workaround to work as now. There is a risk that users reading those headlines might seek to delay updating their browser, to prevent any ad blocker issues; you really shouldn’t go down this road—the security update is critical.

It's almost like tying together feature updates with security updates was a deliberate choice by tech companies so that they could tell users shit exactly like this.

How can there be any real market choices when software literally tells users "for your own safety, you must abandon the things you want, and take the things we give you".

[–] tedu@azorius.net 0 points 5 months ago (1 children)

We're all trying to figure out where these headlines came from. The stable channel with all the fixes does not (at this time) bundle the warning. How is that users have become confused and believe the dev channel is the only way to get security fixes?

[–] madsen@lemmy.world 0 points 5 months ago

The headline is supposedly CISA urging users to either update or delete Chrome — it's not Chrome/Google itself. However, I'm having trouble finding the actual CISA alert. It's not linked in the article as far as I can tell.

[–] avidamoeba@lemmy.ca 0 points 5 months ago* (last edited 5 months ago) (1 children)

When it comes to open source software, market choices aren't nearly as necessary because new ones can be created at will and very low cost by forking. But in the abstract thech companies are definitely not interested in choices. Choices don't maximize profits.

[–] AProfessional@lemmy.world 0 points 5 months ago (1 children)

Maintaining a fork of Chromium would cost millions to do it responsibly.

[–] avidamoeba@lemmy.ca 0 points 5 months ago* (last edited 5 months ago) (6 children)

It depends on how fat the fork is. While I haven't worked on Blink, as a developer who works on other people's very large codebases, including one from Google, I disagree. There are free tools for build automation. That'll take care of being up-to-date with upstream in terms of security. Patching things can be done using conflict-minimizing strategies. I used to work at an Android OEM and I've seen it done with great success. Thinking of Blink specifically, there have been lots of forks during its WebKit days. If I remember correctly there are also thin forks of Firefox maintained by some open source developers. This is all to support thay I don't think it's that big of a deal. Especially if most of it is rebranding and restoring some deprecated or deleted functionality. Could be wrong. I think we'll see, because I have a feeling the cost of maintaining a Chromium fork could be cheaper than patching apps to work well on Firefox. Some corpos might even pitch in. Not to mention that it isn't at all obvious for how long Firefox will be developed by Mozilla. If they drop the ball at some point we'll be faced with implementing new features in Firefox vs patching features of Chromium. ⚖️

load more comments (6 replies)
[–] thejml@lemm.ee 0 points 5 months ago (1 children)

I choose to just continue not having it in the first place. I uninstalled it from my work PC a year ago and never put it on either personal install. Definitely haven’t missed it.

[–] Lost_My_Mind@lemmy.world 0 points 5 months ago (1 children)

But you're missing out on all those privacy violations, and spying!

[–] jabathekek@sopuli.xyz 0 points 5 months ago

Yeah, no one's thinking of the exhibitionists! For shame!

[–] Talaraine@fedia.io 0 points 5 months ago (1 children)
[–] gdog05@lemmy.world 0 points 5 months ago (1 children)

Great reference. Also, you can do gifs in Lemmy. Not sure if everyone knows that or not.

[–] AceBonobo@lemmy.world 0 points 5 months ago

Ooo being fancy with .webp

[–] tsonfeir@lemmy.world 0 points 5 months ago (3 children)

Which of you fools still use Google products?

[–] PrincessLeiasCat@sh.itjust.works 0 points 5 months ago (1 children)

Sometimes we have to for work. That or Edge :(

[–] tsonfeir@lemmy.world 0 points 5 months ago (1 children)

Your IT department should be very concerned

[–] Grippler@feddit.dk 0 points 5 months ago (4 children)

The IT department are the morons enforcing that shit.

load more comments (4 replies)
[–] callmepk@lemmy.world 0 points 5 months ago (1 children)

I have to use for work, because all our customer only uses chrome or chrome-based browser :(

[–] tsonfeir@lemmy.world 0 points 5 months ago

Show them the way!!! … to Firefox.

[–] devilish666@lemmy.world 0 points 5 months ago (1 children)

Well it's me bc my job :

  1. YouTube Revanced for entertainment
  2. MicroG for account for apps that need google dependency for work
  3. Gmail for personal email although nowadays i rarely used it because my client rather used Telegram or WhatsApp
  4. GDrive for backup
[–] eodur@lemmy.world 0 points 5 months ago (1 children)

I highly recommend looking at something like Proton for 3 and 4. Or backblaze for 4 if it's truly for backup.

[–] devilish666@lemmy.world 0 points 5 months ago* (last edited 5 months ago) (1 children)

Thx for recommendations bro
I already used proton but that's only for truly personal stuff, a lot of things on my country only support Microsoft mail or google sadly that's why I'm still using gmail for works, same thing like WhatsApp

Now i only need recommendations for YouTube apps that can sync playlist from my YouTube (like SpMp music player), bc i hate using YtRevanced patch every time YouTube roll out new apps

[–] eodur@lemmy.world 0 points 5 months ago

Ah. I still have a "gmail" account but it's entirely for the places that require a Google account now.

As for YouTube, I just stumbled across this thread: https://lemmy.zip/post/16741291

[–] LinusOnLemmyWld@lemmy.world 0 points 5 months ago

chrome, hahaha

[–] jabathekek@sopuli.xyz 0 points 5 months ago
[–] DaCrazyJamez@sh.itjust.works 0 points 5 months ago (1 children)

So google manufactured a (possibly false) security risk to force users into updating to manifest v3 software?

load more comments (1 replies)
[–] TankovayaDiviziya@lemmy.world 0 points 5 months ago (1 children)

I always use Mozilla Firefox

sips hot chocolate

So that isn't my concern.

load more comments (1 replies)
[–] demonsword@lemmy.world 0 points 5 months ago
[–] _sideffect@lemmy.world 0 points 5 months ago (3 children)

What a pos company

I really need to start to de-google my life

[–] sugar_in_your_tea@sh.itjust.works 0 points 5 months ago (5 children)

Do it!

I'm still working on it, but I've cut out quite a bit. Start with Chrome, and work your way down.

When you get to email, Gmail has a very convenient forwarding feature so you can forward all email to the new one while you change accounts and whatnot. I made a new account elsewhere, and I have a separate folder for email from my old Gmail and my new email. Every so often I'll go fix an account or two, so I'm making steady progress.

For me, docs/drive is the hardest, so I'm doing it last. I'm playing with self-hosted options, and am still in an adjustment period.

[–] QuadratureSurfer@lemmy.world 0 points 5 months ago (8 children)

Getting away from Google Maps has been a tough one. There aren't many options there, it's either Google, Apple, Microsoft, or OpenStreetMap.

I've been contributing to OSM for my local area as much as possible to update businesses and their opening hours, website, etc., but it's not a small task.

load more comments (8 replies)
load more comments (4 replies)
load more comments (2 replies)
load more comments
view more: next ›