Yeah.

[edit: To be clear, I assume the part that OP is not sure if it’s satire or not is “or switching to a more privacy-conscious browser such as Google Chrome.”] The emphasis in

Firefox is worse than Chrome

is in the original. To me that clearly implies that they are of the opinion that in general Google & Chrome are worse on privacy than Mozilla & Firefox. The comment at the end is just tongue in cheek snark alluding to the fact that in this particular case google did better for privacy in Chrome than Mozilla in Firefox.

or switching to a more privacy-conscious browser such as Google Chrome.

Definitely satire, the context from earlier:

2. Firefox is worse than Chrome in their implementation of ad snitching, because Chrome enables it only after user consent.

Tell them if you have to go back to the office, you quit.

Nah, never say “or I’ll quit”, you just say you won’t go to an office. End of statement. You don’t make any sort of threat or give them an ultimatum, just set your boundaries. Make them fire you, if you’re valuable and/or well liked odd are they won’t and you just get to keep working remote.

deleted by creator

For the purposes of data collection, the US basically isn’t foreign for AU: https://en.m.wikipedia.org/wiki/Five_Eyes

We tried that in the 90s, it went poorly: https://en.wikipedia.org/wiki/Trans_fat#History

As others have said, it’s quite good on privacy. For the truly paranoid, IIRC you can even self-host the sync server.

From the security perspective of privacy, do make sure to use a good password for the Mozilla account, the account password is also the encryption key for the E2E encryption.

Unfortunately, no. Samba needs a different label. Doing that relabels things so that only containers (and anything unrestriced) can access those files.

IMO, yes. Docker (or at least OCI containers) aren’t going anywhere. Though one big warning to start with, as a sysadmin, you’re going to be absolutely aghast at the security practices that most docker tutorials suggest. Just know that it’s really not that hard to do things right (for the most part^[1]).

I personally suggest using rootless podman with docker-compose via the podman-system-service.

Podman re-implements the docker cli using the system namespacing (etc.) features directly instead of through a daemon that runs as root. (You can run the docker daemon rootless, but it clearly wasn’t designed for it and it just creates way more headaches.) The Podman System Service re-implements the docker daemon’s UDS API which allows real Docker Compose to run without the docker-daemon.

That’s a problem anywhere with user generated content & user defined communities. The usual example is that when BOTW came out there were at least half a dozen subreddits created and more than one survived, so there were two that were both really popular at the same time and that’s in addition to multiple Zelda and multiple Nintendo subs that might all get the same links/posts.

Its a non-powered version of a hot shoe, both of which are the thing you use to mount an external flash that’s on the top of a lot of (all?) full sized cameras.

It’s for a hook to keep the handset on when the phone is mounted flat on a wall. It can usually be slid/folded down or removed when its not need.

Update: Delivered! Now just to “patiently” wait for it to warm up before I can turn it on…

If you have any straight straws, you might want to hold them up to the light. They get pretty grody on the inside.

I am dismayed at the current scenario of basically nothing but the pixels being supported for rooting (not the fault of the community). Also a bit saddened by how easily everyone has accepted it.

Serious question, what the the community not accepting it look like?

Mine nows says it was picked up about an hour ago and should be here Weds. Coming from Addison, IL.

Exactly the same for my LE OLED order that I got in @ 29 minutes.

Edit: Dunno if there are multiple warehouses, but mine is for shipping to Minneapolis, tracking doesn’t say where it’s coming from yet.

Defense in depth. If something escapes the container it’s limited to only what’s under that user and not the whole system. Having access to the whole system makes it easier for malware to hide/persist itself.

If your distro offers it, rootless podman + podman system service is the best setup, IMO. That will give you a docker command that is 1-to-1 compatible with docker and lets you use tools like docker-compose that expect a docker service socket. Then you can just follow tutorials that only explain things for docker.