You’re right, my bad.

OP’s security concern is valid. Different CAs may differ in the challenges used to verify you to be the domain owner. Using something that you could crack may lead to an attacker’s public key being certified instead.

This could for example be the case with HTTPS verification (place a file with a specific content accessible through your URL) if the website has lacking input sanitization and/or creates files with the user’s input at an unfortunate location that collides with the challenge.

This attack vector might be far-fetched, but there can certainly be differences between different signing authorities.

Do you still need help with docker?

While I believe they really could, that would be really stupid. Is creating a hotspot with your phone suddenly also not allowed? Because that’s all it essentially is.

How close to vim’s functionality is evil mode? I’ve been toying with the idea of learning Emacs but I rely on Vim’s langmap and that is rarely implemented in Vim emulations / bindings.

You can learn Emacs in one day. Every day.

Even if you use arrows, you still have to reposition your hand.

I will totally abide by all traffic rules when playing a virtual reality driving game in my sleep. Nothing can go wrong there.

But do I get paid for that?

You can actually (for now) just replace gitea with forgejo while keeping all the files in place and it just works. Really easy then using docker, cause all it takes is changing the container image.

When was it ever about improving it for the end user? From the picture, it’s absolutely terrible. You have what, four folders taking up the whole menu? Yeah, Windows XP had a more efficient workflow than that.

It’s always the DNS!

You can’t begin to imagine just how much energy cryptocurrencies use. A web server can never come close.

Setting up synapse is particularly painful.

Not Morocco, but I’ve experienced this before. Been to a country where YouTube didn’t display any ads.

And that’s how you get free healthcare.

There are free services that let you send and receive on your own domain. I use zoho. I can send emails with SMTP, but unfortunately, you cannot read them other than by using their web interface in the free tier.

Oh yeah you’re right!

The article does not mention reporting it to the police. I get that 99.99% of the time, nothing will come of it, but that’s something I would immediately do. Maybe I just don’t get the rich aspect of going out and buying the newest latest model right away and forgetting about the stolen phone, even if it is theoretically still in the reach of police forces.

Apple has the benefit of making everything themselves, down to the secure enclave processors and, as of some time also, the processor as a whole. They get to design their hardware, OS, software, ecosystem, all around security and it all plays together nicely.

If you control everything, you can do whatever you want with it. Android phones being more of a mixed bag of different vendors making different parts of the phone, including the software components, makes this interplay much more difficult. It usually takes android quite some time before they catch up on the latest security concepts.