Debianbros...

Debianbros...

https://fosstodon.org/@keepassxc/112417353193348720

A Conspiracy Theorist Is Talking Shirt $21.68

CRIME Shirt $21.68

A Conspiracy Theorist Is Talking Shirt $21.68

  1. 3 weeks ago
    Anonymous

    doesn't this just mean it's more stable? seems standard for debian

    • 2 weeks ago
      Anonymous

      Wouldn't holding applications back so that they are years behind the times also hurt the user experience just as much as "instability"?

  2. 3 weeks ago
    Anonymous

    >trannies take over
    >the enshittification of everything begins

    happens literally every time
    it's at the point that you have to just ban anyone with a pronoun in bio from working on your software if you want it to stay functional now

    they are all just incompetent political activists

    • 3 weeks ago
      Anonymous

      how does this relate to them exactly?

      • 2 weeks ago
        Anonymous

        Trannies live rent-free in his head. He is literally so obsessed that every discussion in which he participates is defined by omnipresent troony boogeyman. I bet that every time he sees a shadow on the street he thinks thats a troony is stalking him (that is if we assume that he actually leaves his basement at the first place).

        • 2 weeks ago
          Anonymous

          Go back to support Palestine, Josephine.

          • 2 weeks ago
            Anonymous

            [...]

          • 2 weeks ago
            Anonymous

            t. Josephine

    • 3 weeks ago
      Anonymous

      ermm this has nothing to do with trannies or political views. stop obsessing over trannies, this is just pure stupidity of package managers.

      • 3 weeks ago
        Anonymous

        to be fair, he does have pronouns in bio

        but yeah he sounds reasonable

        • 3 weeks ago
          Anonymous

          >but yeah he sounds reasonable
          >Vegan
          lmfao right

        • 3 weeks ago
          Anonymous

          -Vegan
          -Rainbow Nazi Flag
          -pRonOuns
          -Mastodon

          This right here is the enemy

        • 3 weeks ago
          Anonymous

          Daily reminder that Gentoo is the only major distribution that allows you to easily configure these things the way you want. No need to rely on what features this homosexual decides you're allowed to have. Want SSH support? Enable the USE flag. Don't want browser integration? Disable the USE flag.

          It is legitimately crazy to me that people just accept this behaviour from distro package maintainers. It's like some weird form of Stockholm syndrome.

          One of the unsung benefits of Arch--and something I took for granted until recently--is that they package everything from upstream unmolested. You can install a package, and be pretty well assured that it functions exactly as the developer intended it to, and all of the documentation (and troubleshooting information) for it will be accurate and relevant. You don't have homosexuals like the guy in this image (who think they know better than the end user) packaging things for you.

          In contrast, I gave Debian a whirl recently, and holy shit it was an infuriating experience. Every other package had some tweak from upstream, whether that was a change in default behavior, a lack of features, a renamed binary, some random patch that broke other things, or just other weird autistic issues/omissions (like the package maintainer accidentally disabled a feature 5 years ago and nobody ever bothered to fix it). Quite often, it wasn't apparent why a package I installed wasn't working as expected, until I dug through the issue tracker for a given project and *constantly* found issues to the tune of "yeah, sorry, our software is broken/neutered/packaged strangely on Debian".

          Arch is no better than Debian in this regard. You get whatever the package maintainer decided you'll get, and you have no choice in the matter. The Arch maintainers even said that customisability has never been one of the goals of their distro.

          • 3 weeks ago
            Anonymous

            >some weird form of Stockholm syndrome
            uh something something people sacrifice freedom in exchange for convenience something something also applies to beliefs, hence why trannies and similar mental illnesses are accepted because it's more convenient to just go along then to disturb society by trying to say "no" something something something innate instinct in most normies because it promotes civilization and structured societies blah blah blah

          • 3 weeks ago
            Anonymous

            >install gentoo
            >enable flag
            >system is bricked
            >check forums
            >you're not really supposed to use that flag teehee

          • 3 weeks ago
            Anonymous

            >use computer
            >put it in water to cool it down
            >system is bricked
            >check forums
            >water le bad!

          • 3 weeks ago
            Anonymous

            >I'm too stupid to use Gentoo so I have to make up some fake scenario where it sucks
            Sad. Many such cases.

          • 2 weeks ago
            Anonymous

            >>you're not really supposed to use that flag teehee
            This is happening more and more often (see: iamben) and it's basically defeating any point of using Gentoo. I'm thinking of ditching it for good once I have some time.

          • 3 weeks ago
            Anonymous

            >Arch is no better than Debian in this regard.
            I understand the point you're trying to make, but I explicitly laid out how it is better--Arch ships software straight from upstream, Debian doesn't. Perhaps this isn't ideal for you, but I think it's an improved state of affairs relative to Debian, and personally meets my needs in virtually every instance (and in the very rare case that it doesn't, it's pretty trivial to write a PKGBUILD script for something). I have nothing against Gentoo, but I personally don't find that I tend to benefit from the level of granularity it offers. Then again, I haven't spent a lot of time with Gentoo, I just messed around with it a little bit a few years ago. I intend to revisit it when I have the time (although, I'm more interested in giving NixOS a try).

          • 2 weeks ago
            Anonymous

            genpoo users once again outing themselves as the most moronic of the gnu/linux world

        • 3 weeks ago
          Anonymous

          Oh frick, its a vegan too.. that's double trouble.

        • 2 weeks ago
          Anonymous

          >vegan
          >homosexual flag
          >pronouns
          >furry socmed

        • 2 weeks ago
          Anonymous

          >Vegan
          >Pronouns
          >homosexual flag
          Why the frick is the Linux community full of these mentally ill people? Fragmentation is the fricking issue you people have.

          • 2 weeks ago
            Anonymous

            Easy for corporations to control them.

          • 2 weeks ago
            Anonymous

            literally this
            it's no wonder why these same homosexuals push PulseAudio/systemd/PipeWire/Wayland/NetworkManager and whatever other overengineered redhat corpo garbage that comes out

        • 2 weeks ago
          Anonymous

          Anyone who puts pronouns in their bio is a troony. Reasonable people don't need to do that.

        • 2 weeks ago
          Anonymous

          If breaking 100% of the package user's setups is reasonable I can't imagine what is being unreasonable.
          You can't expect people of a supposed "stable" distro to expect shit to break apart in an update just because they're expected to read the news file for their 4k packages every time they upgrade the os.

        • 2 weeks ago
          Anonymous

          hahahahaahahaha

      • 3 weeks ago
        Anonymous

        You're right, it's not trannies. It's weapon-grade asperger's.

        • 3 weeks ago
          Anonymous

          Where do you think trannies come from?

      • 3 weeks ago
        Anonymous

        >https://github.com/keepassxreboot/keepassxc/issues/10725/

        • 3 weeks ago
          Anonymous

          based comic sans

          That does nothing. He will never get punished for his freedom breaking.
          Forks never even get off the ground.

          forks can only be killed for CoC reasons and I think the trannies will be on the side of the fork here

        • 3 weeks ago
          Anonymous

          Doesn't Debian very clearly state somewhere that you shouldn't file upstream bug reports unless you've confirmed that they're also present in upstream?

          • 2 weeks ago
            Anonymous

            Implying the average moronic user gives a shit about debian’s bug report policy

          • 2 weeks ago
            Anonymous

            Not saying you're wrong, and I assume there is significant overlap between the user segment ignoring Debian's bug report policy and the user segment ignoring the message that pops up when updating that says "These features are no longer included! If you want them install this other package". Just seems like that's what the dev should tell the morons complaining rather than cry about Debian changing their defaults.

        • 3 weeks ago
          Anonymous

          comfy comic sans 🙂

      • 3 weeks ago
        Anonymous

        One of the unsung benefits of Arch--and something I took for granted until recently--is that they package everything from upstream unmolested. You can install a package, and be pretty well assured that it functions exactly as the developer intended it to, and all of the documentation (and troubleshooting information) for it will be accurate and relevant. You don't have homosexuals like the guy in this image (who think they know better than the end user) packaging things for you.

        In contrast, I gave Debian a whirl recently, and holy shit it was an infuriating experience. Every other package had some tweak from upstream, whether that was a change in default behavior, a lack of features, a renamed binary, some random patch that broke other things, or just other weird autistic issues/omissions (like the package maintainer accidentally disabled a feature 5 years ago and nobody ever bothered to fix it). Quite often, it wasn't apparent why a package I installed wasn't working as expected, until I dug through the issue tracker for a given project and *constantly* found issues to the tune of "yeah, sorry, our software is broken/neutered/packaged strangely on Debian".

        • 3 weeks ago
          Anonymous

          >using a password manager
          Serves you right.

          Same in Slack, everything is either compiled from source or kept as close to upstream as possible.
          Imagine using a distro two or three times removed from Debian, it's like marrying a former pornstar.

        • 3 weeks ago
          Anonymous

          Arch, like every distro, has software that they patch for compatibility or for bugfixing or for a myriad of other reasons. You're not special.

          • 3 weeks ago
            Anonymous

            There's a big difference between a backported bugfix or other patch accepted by upstream (which is generally the extent of the modifications Arch makes to its packages), and the autistic compulsion Debian maintainers feel to frick with, neuter, and pre-configure literally every package they touch. Arch has an explicit policy to ship unmodified software wherever possible, Debian does not.

          • 3 weeks ago
            Anonymous

            Debian is a server distro so obviously they're more focused on security. Nobody who knows what they're doing would use Debian on a home computer.

            Arch is a desktop-focused distro so they're more focused on enabling useful features. The downside is that it is less secure. There's a reason that guy chose to disable those features, his reasoning is actually sound even though he talks like an arrogant douche.

          • 3 weeks ago
            Anonymous

            >There's a reason that guy chose to disable those features, his reasoning is actually sound
            How is forcing users to expose passwords to the entire machine MORE secure than the status quo of NOT exposing passwords to the entire machine?

          • 3 weeks ago
            Anonymous

            >How is forcing users to expose passwords to the entire machine MORE secure than the status quo of NOT exposing passwords to the entire machine?
            I don't know but there must be a legitimate reason for it

          • 3 weeks ago
            Anonymous

            >Debian is a server distro
            >Arch is a desktop-focused distro
            For whatever it's worth, both distros bill themselves as general-purpose distros (which is reflected in them both having installers that offer a lot of flexibility in how the base system is configured). Their respective users may lean towards certain use cases, but I certainly wouldn't call Arch a desktop-focused distro (compared to something like Linux Mint). Similarly, just going off of Debian's package statistics, there are a decent number of people who use Debian as a desktop system, and Debian has plenty of maintained desktop-oriented packages.

            >There's a reason that guy chose to disable those features, his reasoning is actually sound even though he talks like an arrogant douche.
            Keepass is something that is almost universally going to be used by desktop users, though, so if the rationale is to neuter the package with respect to server users, that doesn't really make any sense at all.

          • 2 weeks ago
            Anonymous

            >Nobody who knows what they're doing would use Debian on a home computer.
            Because...?

          • 2 weeks ago
            Anonymous

            because pic rel
            Debian Sid on a desktop is great. Been using it for years

        • 2 weeks ago
          Anonymous

          This is an argument for Gentoo if anything because you can just set your own compiler flags and enable what features you want in any application.

          • 2 weeks ago
            Anonymous

            No, that's an argument for building directly from upstream, which can be done on any distro.

            Gentoo does apply downstream patching, see Libreoffice.

        • 2 weeks ago
          Anonymous

          On Arch, you have to trust every single upstream dev not to be moronic. In this particular instance, the upstream devs *are* moronic and the Debian package maintainer is correct.

          • 2 weeks ago
            Anonymous

            >On Arch, you have to trust every single upstream dev not to be moronic.
            on the flip side, when they are moronic and something breaks, you immediately know who to blame and can go straight to their issue tracker to b***h/figure out what to do next, in contrast to other distros where it's more of a guessing game as to who broke your shit

          • 2 weeks ago
            Anonymous

            >apt show less | grep Maintainer
            >Maintainer: Milan Kupcevic <[email protected]>
            Damn, that was hard.

          • 2 weeks ago
            Anonymous

            you missed my point--my point is that when a package breaks or has some errant behavior on a distro like debian, it requires more digging to determine whether your issue is a packaging problem or an upstream problem. on arch it's pretty much always immediately apparent that it's the latter

          • 2 weeks ago
            Anonymous

            If it breaks on Debian then you simply apt-get source <package>, and inspect what was changed by the packaging guys.
            The difference is that on Debian it hardly ever breaks, while my Arch install requires constant maintenance, especially stuff from AUR.

          • 2 weeks ago
            Anonymous

            right, and if you modify source then build and install binary package, you are stuck with patching it for life

          • 2 weeks ago
            Anonymous

            No, you create a bug report and it gets fixed at Debian level, just like in your example for Arch. You know where to put bugs because every packages has proper metadata in it.

            >two actual canonical clipboard types
            this i understand
            >there's 20 incompatible clipboard implementations
            this not so much. please elaborate?

            >this not so much. please elaborate?
            https://wiki.archlinux.org/title/clipboard
            It's the managers that are the problem. Every DE has one and they have different behaviours. Some support the agreed on protocols, but some do not.

          • 2 weeks ago
            Anonymous

            >clipboard managers
            linux is such a brutal operating system. i keep wanting to install it and leave this windows dungeon, but in my research i am often coming across such horrors as this. we can't have nice things.
            >upstreaming deltas
            yes, assuming the distro wants your patch. if not, it's a rough job on debian and fedora. i think arch makes it easier as it is much more encouraging of end users building their own packages. gentoo of course is in another league.

          • 2 weeks ago
            Anonymous

            Well, you have to pick your poison. I personally prefer fixed release distro because, even though they may ship with some bullshit, they at least stay still for a while so you can work around them once and not worry about them for a long time. On a rolling release distro, you have to always watch out.

            However, keeping software as vanila as possible is indeed attractive in its own right.

        • 2 weeks ago
          Anonymous

          Why is a package manager even needed? Why can't it just be "sudo apt install program-straight-from-dev's-github" ?

          • 2 weeks ago
            Anonymous

            This is essentially what flatpak is and why more people want to move to it

      • 3 weeks ago
        Anonymous

        >security autism
        Hyper based Debian maintainers

      • 3 weeks ago
        Anonymous

        >browser integration
        >superfluous
        why can't we have nice things ?

      • 3 weeks ago
        Anonymous

        he's right tho

      • 3 weeks ago
        Anonymous

        Fair enough. Didn't even know it had ssh-agent and favicon download nonsense.

        what the frick is a NEWS file?

        It's like CHANGELOG but a bit more generic.

        Good point, but not for this discussion; It's a package in a repository aimed for consumers to download, in other words: It was made for the consumers mainly.
        >foss maintainters have no obligation to obey the consumer's opinions or feedbacks.
        He/him is a package maintainer, not a maintainer of KeepassXC, so he has no right to edit the package however he wants (I don't need to explain why).
        >you are drawing something and photocopying every time you are satisfied with it, someone comes up to you and says "this looks stupid delete this and put this here"
        This is what he/him did literally, anon.
        What you say is true, no one has the right to "force" a change into a FOSS project, if he wants to change it (not to improve it) he can fork it. But this statement goes against what he/him did, so your statement is literally showing how he/him is a homosexual.

        [...]
        homosexuals are hollows and mentally ill subhumans with no purpose, and they feel like shit always, so they need something to fill them with purpose and self-worth. homosexuals are ruining the tech industry in general.

        [...]
        I agree, but people need to be more strong, and stop crying over "cyber-bullying". I hate it when some FOSS project is abondoned because the maintainer got "bullied" by some kids.

        > He/him is a package maintainer, not a maintainer of KeepassXC, so he has no right to edit the package however he wants (I don't need to explain why).
        That's literally what a disto is. Or maybe you might be surprised to find out how different packages are across distros.

      • 3 weeks ago
        Anonymous

        >They don't need those features
        Unfathomably based

      • 3 weeks ago
        Anonymous

        shipping plugins as separate packages is a very valid strategy that has worked for many other software as well
        good example is pam
        plugins should not come with the base package

      • 3 weeks ago
        Anonymous

        > drive-by contributor attacks
        are all of these plugins not developed in-tree by the same dev team as the application?

      • 2 weeks ago
        Anonymous

        She's right, though

      • 2 weeks ago
        Anonymous

        to be fair, he does have pronouns in bio

        but yeah he sounds reasonable

        Sounds like typical Debian bullshit to me: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=477454
        >No, this can't result in a lawsuit against Debian, please take your bullshit elsewhere, kthxbye.

        What is with Julia/ens and being dicks?

        • 2 weeks ago
          Anonymous

          >+ "file:///Sebastian/Droge/please/choke/on/a/bucket/of/wieners", ""):
          kek

      • 2 weeks ago
        Anonymous

        >All of these features are superfluous and do not really belong in a local password database manager, these developments are all utterly misguided.
        This dude is right. This is why I just use this:
        username = base36(tuplehash(31, masterpassword, domain))
        password = z85(tuplehash(128, masterpassword, domain, username))
        keypair = ed25519(tuplehash(256, masterpassword, "ed25519", identity))
        tuplehash(output_bits, t_1, ..., t_n) = shake128(t_1 || length(t_1) || ... || t_n || length(t_n) || n || output_bits)

        Using this scheme you can derive all your passwords and secret keys (ssh, pgp, etc.) from a single master password in a secure way.

        • 2 weeks ago
          Anonymous

          >Using this scheme you can derive all your passwords and secret keys (ssh, pgp, etc.) from a single master password in a secure way.
          you basically said to the NSA: here glowBlack folk. this is how i create one password for anything. i'm sure these glowBlack folk are laughing their asses off right now. how did you end up with profound brain damage?

        • 2 weeks ago
          Anonymous

          you're gonna get FUDded from glowies for posting this, they want everyone using huge password manager tools you can't audit yourself.

      • 2 weeks ago
        Anonymous

        >can't use old software, breaking changes everywhere down to gcc itself
        >forced into maintainers' repository playpen
        >can't use new software either because the middlemen that inserted themselves between you and the software you want to use think it's their priviledge to pick what you actually wanted to install and straight up remove fricking features from it
        Oh geeeeee I wonder why windows is more popular

        • 2 weeks ago
          Anonymous

          And I forgot
          >want to know we're breaking your shit? read my blog
          >don't worry, I already took the liberty of putting it on your computer
          LMAOOOOOOOO

      • 2 weeks ago
        Anonymous

        The windows version has this all prebuilt into the release and so does every other distro. Why would users expect a different experience on Debian? Why not just recommend a less "crappy" password manager? I could understand if this was the approach the maintenaners had taken from the outset but at this point this is just self righteous homosexualry. Exact same security theater as Wayland. Will they begin to do this to all packages that have "crappy" features by default?

        • 2 weeks ago
          Anonymous

          If you want to use the Windows version, just use Windows.

      • 2 weeks ago
        Anonymous

        He is absolutely right. It says what most of IQfy want, yet you morons are always attacking everyone automatically without even thinking.

      • 2 weeks ago
        Anonymous

        Picrel and yet systemd exists

        • 2 weeks ago
          Anonymous

          Honestly, udev is the only good thing to come out of that systemd cesspit.

      • 2 weeks ago
        Anonymous

        He is right, there must be 2 versions - less "bloated" and more secure and full featured, but he is delusional in one thing: his version is crappy shit for normies and another version is based and for powerusers

      • 2 weeks ago
        Anonymous

        Absolutely based maintainer putting these shitware shovelers in their place.

      • 2 weeks ago
        Anonymous

        klode bois we're so fricking BACK it's quite actually unbelieveable

      • 2 weeks ago
        Anonymous

        >users annoyingly do not read the NEWS files they should be reading
        Holy fricking shit i hate this homosexual so much it's unreal.
        This gay legit believes some random user should read ALL of the changelogs, updates, news, etc. in fricking software that should just work.
        Does he realize people have jobs and don't have time to spend reading some moronic shit that they shouldn't even care about?
        God, this is so infuriating.

        • 2 weeks ago
          Anonymous

          No, but he believes they should read the paragraph or two that is very rarely included in updates whenever changes are made that users need to take into account. Or they should stick to Debian stable where such changes pretty much only ever appear when switching to new stable.

          >a rolling development version of the Debian distribution containing the latest packages that have been introduced into Debian
          huh, weird nowhere in this description of Sid does it say "this is where we break shit for fun"

          what is this change testing?

          I'm pretty sure I've read that Sid is named after some Toy Story brat that breaks the toys for fun.

        • 2 weeks ago
          Anonymous

          >This gay legit believes some random user should read ALL of the changelogs, updates, news, etc. in fricking software that should just work.
          yes. you're required to read all that shit. are you new to linux or did you just mash your ape palms on your ipad and accidentally end up here?
          >God, this is so infuriating.
          god is not going to save your simple monkey ass, homosexual. he's probably laughing his ass off at simpletons such as yourself.

      • 2 weeks ago
        Anonymous

        This is correct. I use none of these features and I'd rather simply not have them in one my highest risk applications.

        • 2 weeks ago
          Anonymous

          >I would rather use a completely untested version of this application instead of the build that the devs actually use and develop and run tests on.

          • 2 weeks ago
            Anonymous

            I would rather use a version tested by millions of Debian users than the build devs only run on their machine.

          • 2 weeks ago
            Anonymous

            Well so far the full version of kepass xc has been tested by millions of debian users and this maintainers hackjob has been tested by the 3 idiots that store all their passwords in debian sid

          • 2 weeks ago
            Anonymous

            >removing plugins means its untested

          • 2 weeks ago
            Anonymous

            keepassxc, like any piece of modern software, instantly breaks if you change any compile flags or build options

          • 2 weeks ago
            Anonymous

            > plugins
            They're not plugins, they're feature flags.

            #ifdef FEATURE_FOO
            void foo() {
            puts("Foo is a feature");
            }
            #else
            void foo() {
            puts("Foo is not supported.");
            }
            #endif

            These features are fully integrated into the keepassxc codebase. Calling them plugins misses the point, and proves that the debian maintainer is a drooling moron with no understanding of the package he "maintains."

          • 2 weeks ago
            Anonymous

            The keepassxc devs literally call them plugins.

          • 2 weeks ago
            Anonymous
          • 2 weeks ago
            Anonymous

            https://github.com/keepassxreboot/keepassxc/wiki/Building-KeePassXC

          • 2 weeks ago
            Anonymous

            Semantics, I call flags switches and everybody knows what I'm talking about because ESL

          • 2 weeks ago
            Anonymous

            Doesn't change that it's not runtime loaded code, but compiled and built in. Prior use of the term is a misnomer, and incorrect. The linux kernel has the ability to load modules, and this ability is itself togglable with a feature flag.

            Brainlet here, why not test both branches of the feature flag like you would with a regular if/else?

            A ridiculous number of combinations to test, not a good use of time and resources compared to normal paths.

          • 2 weeks ago
            Anonymous

            They could at least test the default build configuration (with all plugins turned off).

          • 2 weeks ago
            Anonymous

            That should be on the package maintainer.

          • 2 weeks ago
            Anonymous

            they do
            >We do run a minimal build with all flags disabled on our CI, but that is all we do to test it (that said, if you start enabling flags selectively, you are basically on our own).

          • 2 weeks ago
            Anonymous

            How can building without certain features make the software less stable or secure?

          • 2 weeks ago
            Anonymous

            By disabling a feature that increases security. Example: disabling autotype forces users to rely on the clipboard

          • 2 weeks ago
            Anonymous

            But autotype acts as a virtual keyboard, so the keystrokes will be recorded in that event anyway.

          • 2 weeks ago
            Anonymous

            >But autotype acts as a virtual keyboard
            Pretty sure it just sends the necessary X events which is why it doesn't work on Wayland. You're right that these could be logged though.

          • 2 weeks ago
            Anonymous

            >being this moronic
            plugin as the name suggest is pluggable, like your browser plugins, can be added or removed without recompiling your browser.
            these are clearly features with compile flags to customise the final build

          • 2 weeks ago
            Anonymous

            >called plugins in the software
            >but they're not plugins because of my definition of what a plugin is

          • 2 weeks ago
            Anonymous

            based on THE definition of a plugin

          • 2 weeks ago
            Anonymous

            There is no universal definition for a plugin.

          • 2 weeks ago
            Anonymous

            based on THE definition of a plugin

            Even if there was and the KeePassXC devs fricked up their terminology, it's pretty obvious they're actually feature flags.
            Acting like they're plugins as in "browser plugins" is disingenuous and moronic.

          • 2 weeks ago
            Anonymous

            Brainlet here, why not test both branches of the feature flag like you would with a regular if/else?

          • 2 weeks ago
            Anonymous

            they're not plugins dumbass

        • 2 weeks ago
          Anonymous

          That’s a reasonable stance as a user but not
          >I use none of these features so let’s fricking disable them by default for everyone and make them install a separate package because I feel like
          Honestly as a non user of keepass (I use Bitwarden) I’m laughing my ass off but if I was a user I’d be PISSED

      • 2 weeks ago
        Anonymous

        >removing features to improve security

      • 2 weeks ago
        Anonymous
      • 2 weeks ago
        Anonymous

        >you don't need this
        look, i'm all for shipping separate minimal versions of programs, or splitting programs up so you can just install the stuff you need, but if keepassxc comes with those features by default, then that should be what the default package is, that is, don't make a keepassxc-full packages, make a keepassxc-minimal package
        not that it's relevant, but the only feature listed there that i use is auto-type, and even then i don't really need it

        • 2 weeks ago
          Anonymous

          >words words words
          even your posts are bloated

      • 2 weeks ago
        Anonymous

        if this homosexual thinks this is all bloat why, instead of molesting the upstream package, doesn't him create his own stupid fork of keepass with no useful features and ultra hardened security? This is the sort of behaviour that makes foss so shit. People wasting time and effort in useles shit no one asked and no one cares. If you want your keepass with no extensions, compile that shit yourself. Don't waste time fricking over every other user just because *you* don't like the way that specific software is shipped. People like him deserve the rope. I give it 2 years before he troons out and, consequently, ropes himself.

        • 2 weeks ago
          Anonymous

          there is no fork or molesting of any kind
          he just builds two versions from the same source with different build options
          this is fairly common practice and both -tiny/-minimal and -full are well understood conventions already
          you clearly don't use debian and have no understanding of it
          plenty of people have also expressed desire for such feature-reduced version of keepassxc, for people who want to retain all features installing keepassxc-full does not really waste any time at all
          this maintainer behavior is in fact very untroonish and more in line with the traditional stable distribution autism
          troons are much more concerned with what upstream desires
          packaging the software is not a service for the upstream but for the distribution and its users

      • 2 weeks ago
        Anonymous

        How is he wrong?
        If you want extraneous features then you add them yourself. He's talking about the default experience.

        • 2 weeks ago
          Anonymous

          > He's talking about the default experience.
          The default experience includes things like browser integration. It sounds like this guy should just maintain a different password manager.

          But once again, Gentoo is proven to be supreme.

      • 2 weeks ago
        Anonymous

        Respectable, reasonable, well spoken and based.
        Debian is the best

    • 2 weeks ago
      Anonymous

      literally every single thread chuds bring up troonshit. it's all so tiresome, as someone who actually wants to stop hearing about troonshit can you homosexuals just get comfortable with your sexuality, admit you want to frick girls with wieners and stop seething about it on a technology board?

      • 2 weeks ago
        Anonymous

        pronoun post

  3. 3 weeks ago
    Anonymous

    Imagine using a keymanager
    it's like you're begging to lose accounts forever

    • 3 weeks ago
      Anonymous

      ???

  4. 3 weeks ago
    Anonymous

    based debian devs. all of these features are an attack surface and they don't belong in a password manager, except yubikey, which should not be enabled by default either.

  5. 3 weeks ago
    Anonymous

    >Linux is freedom
    >The freedom to do exactly as the guy in charge tells you or else.
    You talk about Microsoft's walled garden.
    But never about the petty Stalin FOSS gays great wall of China next to it.

    • 3 weeks ago
      Anonymous

      auto-type is very useful, unless you want to type your email dozens of times

      • 3 weeks ago
        Anonymous

        meant for

        based debian devs. all of these features are an attack surface and they don't belong in a password manager, except yubikey, which should not be enabled by default either.

      • 3 weeks ago
        Anonymous

        i just copy user name which is the email then copy password

      • 3 weeks ago
        Anonymous

        never used it. I have my keepass in a separate vm anyways
        what's so bad about pasting your password?

        • 3 weeks ago
          Anonymous

          Zoomies' frail little hands get the crampies if they have to type too much.

        • 2 weeks ago
          Anonymous

          sometimes pasting is not an option, for example in corporate when the mechanism used to access the jump host and all the customer infrastructure behind it blocks clipboard and a bunch of other shit
          plus you can define autotype combinations that will type both your login and password, which is faster than searching for the same entry twice, copying two different pieces of data, and pasting them separately

        • 2 weeks ago
          Anonymous

          >What's so bad about pasting your password?
          Copying it puts it in the clipboard so any random program has access to it. You might hit control v later and paste your password in full view. If you use a clipboard with history enabled your password will be in a file in plain text and can be visible on screen.

          • 2 weeks ago
            Anonymous

            don't have such problems because i use qubes

          • 2 weeks ago
            Anonymous

            iirc keepassxc does it's very best to clear the clipboard

            i've been burnt so many times by accidentally pasting shit though that i just clear my clipboard like every 30 minutes

      • 2 weeks ago
        Anonymous

        Double click on "User name" column, paste. Double click on "password" column, paste.

        • 2 weeks ago
          Anonymous

          That's worse security wise since the password will remain in your clipboard

        • 2 weeks ago
          Anonymous

          there are legitimate uses for it, namely for things you can't paste test into (VM's without integration, video games, snowflake software that disables paste on login screens for no fricking reason)

    • 3 weeks ago
      Anonymous

      in both operating systems you can download from third party providers. i dont understand what you mean mr anonymous can you elaborate?

      • 3 weeks ago
        Anonymous

        Simple.
        An example is the top of this thread.
        Another power hungry spiteful autistic has made sweeping changes because "he thinks its better".
        He did not ask the community, he just did it.
        Where is my freedom? My freedom to have these things he deems by his own arrogant homosexual judgement being not useful.
        >WELL U COULD USE SOMFINK ELSE
        Yes, but i object to being bait and switched. That is the issue here. He used a useful feature to gain market share, then rug pulled people.
        It is wrong behaviour and in any other industry subject to ethics complaints.

        • 3 weeks ago
          Anonymous

          >Where is my freedom? My freedom to have these things he deems by his own arrogant homosexual judgement being not useful.
          Ideally normal people just fork away from him.

          • 3 weeks ago
            Anonymous

            That does nothing. He will never get punished for his freedom breaking.
            Forks never even get off the ground.

        • 3 weeks ago
          Anonymous

          did you already forgot the lzma backdoor?

        • 3 weeks ago
          Anonymous

          that literally happens in every part of life anon. when someone fricks up bad and they dont make up for it they just vanish to be nothing in the history. linux gives you the freedom to choose, you choose to let your packages maintained by someone else so why even whine about it lol just change your distro.

          That does nothing. He will never get punished for his freedom breaking.
          Forks never even get off the ground.

          >He will never get punished for his freedom breaking.
          if he continues to behave like that and make annoyances people will slowly stop using debian and move on to other distros. thats how business works anon.

          • 3 weeks ago
            Anonymous

            > linux gives you the freedom to choose
            But that is not the case. No matter the distro, no matter the package. You are at the mercy of a petty Stalin FOSS gay.
            Who changes shit for 0 reason other than to sate his ego.
            It is why FOSS is becoming a joke now.

          • 3 weeks ago
            Anonymous

            well from consumer's pov you are right but from a programmer's pov you are somewhat wrong. in foss consumers donate to project maintainers to support the project. project maintainers do not promise anything to you and they give you %100 of the code so you can modify it all you want. if you dont like the changes you can completely stop using the program or you can contribute to project the way you want it. foss maintainters have no obligation to obey the consumer's opinions or feedbacks.

            ex: you are drawing something and photocopying every time you are satisfied with it, someone comes up to you and says "this looks stupid delete this and put this here" and you just say "there is a photocopy over there, do it yourself because i like it this way" but the person completely goes psychotic because he wants the drawing in your hand and not the photocopy that he can freely change.

          • 3 weeks ago
            Anonymous

            The thing is your post imply's that programmers are often rational with their changes.
            Like the example in this thread, this is a petty Stalin move for 0 real reason other than the gay here trying to put his name on the project.
            Many such cases are starting to pop up in FOSS now.
            Not to mention the politically motivated changes. But that is a parallel issue.

          • 3 weeks ago
            Anonymous

            yes i agree with you but even if you step up to these people they wont change shit because they are bad within. we need people to support projects where maintainers are actually communicating with the community. these people will constantly shit on projects that are actually doing that and will try to get you to support them. maybe we need more people to actually care about this and actively work on the projects that are infested with these people so we can push them out of the project with the reason being "unprofessional behaviour" and "using their power for their own benefit" which both are true.

          • 3 weeks ago
            Anonymous

            Good point, but not for this discussion; It's a package in a repository aimed for consumers to download, in other words: It was made for the consumers mainly.
            >foss maintainters have no obligation to obey the consumer's opinions or feedbacks.
            He/him is a package maintainer, not a maintainer of KeepassXC, so he has no right to edit the package however he wants (I don't need to explain why).
            >you are drawing something and photocopying every time you are satisfied with it, someone comes up to you and says "this looks stupid delete this and put this here"
            This is what he/him did literally, anon.
            What you say is true, no one has the right to "force" a change into a FOSS project, if he wants to change it (not to improve it) he can fork it. But this statement goes against what he/him did, so your statement is literally showing how he/him is a homosexual.

            The thing is your post imply's that programmers are often rational with their changes.
            Like the example in this thread, this is a petty Stalin move for 0 real reason other than the gay here trying to put his name on the project.
            Many such cases are starting to pop up in FOSS now.
            Not to mention the politically motivated changes. But that is a parallel issue.

            homosexuals are hollows and mentally ill subhumans with no purpose, and they feel like shit always, so they need something to fill them with purpose and self-worth. homosexuals are ruining the tech industry in general.

            yes i agree with you but even if you step up to these people they wont change shit because they are bad within. we need people to support projects where maintainers are actually communicating with the community. these people will constantly shit on projects that are actually doing that and will try to get you to support them. maybe we need more people to actually care about this and actively work on the projects that are infested with these people so we can push them out of the project with the reason being "unprofessional behaviour" and "using their power for their own benefit" which both are true.

            I agree, but people need to be more strong, and stop crying over "cyber-bullying". I hate it when some FOSS project is abondoned because the maintainer got "bullied" by some kids.

          • 3 weeks ago
            Anonymous

            >Good point, but not for this discussion; It's a package in a repository aimed for consumers to download, in other words: It was made for the consumers mainly.
            yes that is correct i wasnt thinking about this when i wrote this, i fixated on the "why foss is becoming a joke now" because the maintainer of keepassxc actually came up to the github issue and talked about how maintainer is being a moron and shouldnt have done it.

            >I agree, but people need to be more strong, and stop crying over "cyber-bullying"
            yes i do agree with that but when you look at people who stopped maintaining their projects or further, who deleted their whole internet persona off of the internet are mostly the people who got doxxed and got death threats. people who are too high up in the foss community are just making upcoming foss developers quit it because they dont want competition, they want all the money to themselves and push their political shit on shitty programs they make. its just sad and pathetic.

          • 2 weeks ago
            Anonymous

            >so he has no right to edit the package however he wants (I don't need to explain why).
            Yes, you should explain why. The GPL, which KeepassXC is distributed under, allows this.

        • 3 weeks ago
          Anonymous

          what he did is in line with previous conventions of the distro
          shame it wasn't done earlier to avoid a spergout

          • 3 weeks ago
            Anonymous

            >Removes the DE
            >Removes frames
            >Removes X and Wayland
            >Removes the Kernel
            They could be attack surfaces bro,

          • 3 weeks ago
            Anonymous

            This but unironically.
            My kernel is heavily debloated and deblobbed.

          • 2 weeks ago
            Anonymous

            did you make sure to debloat your penis too?

          • 2 weeks ago
            Anonymous

            Your mom debloats it for me every saturday night, bucko

          • 2 weeks ago
            Anonymous

            it was debloated from birth

        • 2 weeks ago
          Anonymous

          this
          Hitler was right, autists need to be killed at birth
          they're too big a burden for society

    • 3 weeks ago
      Anonymous

      OK now try updating Windows and your essentiell operating system features from non-Microsoft servers

      • 3 weeks ago
        Anonymous

        >Only answer is whataboutism
        This is when you know, you have lost the argument.

        • 3 weeks ago
          Anonymous

          ???

        • 2 weeks ago
          Anonymous

          >its okay when i do it but not when you do it

      • 2 weeks ago
        Anonymous

        Why?
        How is removing fricking features from the program you already installed equivalent to only being get updates to X from the company making X? Wouldn't anything else just open you to supply chain attacks more?
        WHAT THE FRICK DO I CARE WHO I UPDATE FROM
        it's a 3T dollar company, the servers are not gonna go down

      • 2 weeks ago
        Anonymous

        "Just fork it" is the "Just move to Canada" of the "Just move to Canada" OS.

    • 2 weeks ago
      Anonymous

      if you don't like it, you can fork it

    • 2 weeks ago
      Anonymous

      You are the most moronic poster on IQfy this week, congratulations you doubletroon

  6. 3 weeks ago
    Anonymous

    What is the point of keepassxc when pass exists?

    • 3 weeks ago
      Anonymous

      Exactly.

    • 2 weeks ago
      Anonymous

      Cross-platform. `pass` isn't Cross, while `keepass` (and it's ports) are. You can't use pass on Android or Windows, for instance.

      (Well you could, if someone/you did the legwork of porting but...)

  7. 3 weeks ago
    Anonymous

    Good on Debian for disabling Black person features, but surely it would be less confusing to have package and package-mini instead of package and package-full

    • 3 weeks ago
      Anonymous

      They should be package-mini and package-full.

  8. 3 weeks ago
    Anonymous

    what user agent does it use to fetch favicons? is it one time or does it fetch them each time you unlock the database?

    • 3 weeks ago
      Anonymous

      one time I think.

    • 2 weeks ago
      Anonymous

      i just tested this and it led me to this file
      https://github.com/navossoc/KeePass-Yet-Another-Favicon-Downloader/blob/cb8b7876bd2a8bf525b83b685da4fc64b1a6f10f/YAFD/ProviderList.cs#L17

  9. 3 weeks ago
    Anonymous

    Fine for me. I don't use any of that shit.

  10. 3 weeks ago
    Anonymous

    >he didn't install keepass in a flatpak in a bid to keep it from being ancient and full of holes

    • 3 weeks ago
      Anonymous

      yeah why would you use something as important as a password manager from Debian's repos of all places instead of directly from source?
      rookie move

    • 3 weeks ago
      Anonymous

      pretty sure browser integration won't work

    • 2 weeks ago
      Anonymous

      >native install: 3MB
      >flatpak install: 700MB

      • 2 weeks ago
        Anonymous

        >installed flatpak size: 46.9MB
        >native size: 35.6MB
        but muh 12MB am I rite my fellow poor Black?

      • 2 weeks ago
        Anonymous

        no the package is small,
        >but what about those huge kde dependencies
        Flatpak does not download the entire thing most of the time, just the parts it needs.
        also they are already installed, flatpak is just very bad at estimating update size.

  11. 3 weeks ago
    Anonymous

    So he just maintains the distro and not a actual dev on the project?
    Just email his bosses and complain and move distros

  12. 3 weeks ago
    Anonymous

    Can't they make a keepassxc-lite instead?

  13. 3 weeks ago
    Anonymous

    Use the flatpak, crybabies

    • 3 weeks ago
      Anonymous

      few questions about flatpak because i didnt use it much. (not specifically to you but for all flatpak users)

      >are flatpaks being maintained by volunteers or is it strict to devs?
      >do flatpak programs have interaction issues like drag-drop and choosing a system file?
      >do flatpaks have seperate packages for stable and experimental or is it dependent on maintainer?
      >why would do you prefer flatpak over distro repos?

      • 3 weeks ago
        Anonymous

        >>are flatpaks being maintained by volunteers or is it strict to devs?
        Depends on the program. Some are developed by the community, some are developed by the devs.
        If a programm is "verified" it's made by the actual devs of the program, which is true for KeepassXC.
        >>do flatpaks have seperate packages for stable and experimental or is it dependent on maintainer?
        Never seen an experimental package on flathub.
        >>why would do you prefer flatpak over distro repos?
        It's newer and straight from the devs. Also sandboxed

      • 3 weeks ago
        Anonymous

        >do flatpak programs have interaction issues like drag-drop and choosing a system file?
        Well, with regards to Keepassxc (or any other local password manager, like pass), Flatpak'd browsers will break any extension (like an autofill extension) that relies on a native messaging host, since a portal interface hasn't been defined for that yet. It's possible to break the sandbox as a workaround, but it kind of defeats the point of using the Flatpak in the first place.

    • 3 weeks ago
      Anonymous

      KeepassXC is a widely used FOSS application with native GNU/Linux support. It warrants inclusion in desktop distros' official repos.

  14. 3 weeks ago
    Anonymous

    I think having those plugins enabled by default is insecure, it's more attack surface for many things people will never use. I do use browser integration but don't use basically all the other shit they removed. Putting the stripped down under the same package name without a way to tell the user that breaking changes were made to a package when they apt upgrade is really the problem. The maintainer expecting people to read the news file is moronic, there should be some way to communicate this when you run upgrade, and have the user confirm they understand that something changed which will possibly be undesirable.

    • 3 weeks ago
      Anonymous

      what the frick is a NEWS file?

      • 2 weeks ago
        Anonymous

        debian's blog where they tell you what they broke for you this time, don't worry, they already installed it on your computer

    • 3 weeks ago
      Anonymous

      The problem being he just decided to do this shit with no real reason.
      >Well atack serfice
      >Well i could get struck by lightning.
      He has 0 hard proof Keepassxc is under threat of any exploit now. I am sure as a password manager the maintainers are on the ball already as it is a very important program with a reputation and image to uphold.
      He just decided he would strip out features of a core package on a unsourced fear of attack.
      Does he smash his car up with an iron bar, because tomorrow he could crash it in to the river?
      It was done for ego and his "vision" of what Keepassxc "should be".
      He has 0 care for the community. His only loyalty is too his own sense of self worth.

      • 2 weeks ago
        Anonymous

        You could have used that rage and energy to type apt-install keepassxc-full instead.

    • 2 weeks ago
      Anonymous

      >muh attack surface
      It's not that simple, if the devs only test against the default version with all the features enabled then there's a risk that fricking around with compile flags for no good reason can actually make it LESS secure.
      Especially if the person doing it is some moron package mantainer with an inflated ego who probably doesn't even know how the software actually works.

      • 2 weeks ago
        Anonymous

        >if the devs only test against the default version with all the features enabled
        then you should use some other software package, that's not good testing practice, especially for a product like KeepassXC

        • 2 weeks ago
          Anonymous

          They test it with all flags and no flags, but anything in-between they offer no promises
          Testing every possible permutation of flag for each and every single release when literally every distro just ships the (intended) full package anyway is a complete waste of time

    • 2 weeks ago
      Anonymous

      The "debloated" keepass package is still in testing. If you use any non-stable Debian branch, it's up to you to stay informed about the latest changes.

      If you don't like it, stick to Debian stable, that's the entire point of the stable branch.

    • 2 weeks ago
      Anonymous

      >t.cybersec scam degree no coder grad who watched a lot of videos about muh latest vuln

      • 2 weeks ago
        Anonymous

        maybe he did, tyrone, but he's fricking right. and you need to cope harder. truly amazing watching someone trying to give a frick about security but you jungle dwelling baboons have no idea how any of this works.

  15. 3 weeks ago
    Anonymous

    >using anything other than your brain for passwords
    ngmi

    • 3 weeks ago
      Anonymous

      >having accounts
      you failed at life

  16. 3 weeks ago
    Anonymous

    Sounds like a good choice by the package maintainers. I don't need or want any of those features and having a less bloated package with smaller attack surface is a clear win. Thanks debian package maintainers.

  17. 3 weeks ago
    Anonymous

    > Just realized If someone kills me while I'm logged in at my computer they could have access to my DE and files
    everbody smash your fricking computers NOW

  18. 3 weeks ago
    Anonymous

    Debian packagers can be quite moronic, I recently witnessed a package got swapped to a noob-fricking-around-for-fun fork because it looks more "actively maintained" lmao

    • 2 weeks ago
      Anonymous

      Name the package.

      • 2 weeks ago
        Anonymous

        hint: it was a suggestion posted on package bug tracker for no good reason other than looking more actively maintained, then the packager blindly applying the upstream change without testing, which is understandable because the port never actually worked lmao

    • 2 weeks ago
      Anonymous

      kek, when people ask gentoo package maintainers to switch some abandoned package to a fork they tell the reporter to frick off unless the fork has been blessed by the original developer

  19. 3 weeks ago
    Anonymous

    >install keepassxc-full
    >win

  20. 3 weeks ago
    Anonymous

    archbros keep winning, also
    >password manager
    pen and paper works for me

  21. 2 weeks ago
    Anonymous

    Wait, people can delete stuff from my puter? Do I even own the OS?

  22. 2 weeks ago
    Anonymous

    >unbackdoors your FOSS

    • 2 weeks ago
      Anonymous

      Look at all that asymmetry. Eyes, nose, mouth... poor lad.

      Daily reminder that Gentoo is the only major distribution that allows you to easily configure these things the way you want. No need to rely on what features this homosexual decides you're allowed to have. Want SSH support? Enable the USE flag. Don't want browser integration? Disable the USE flag.

      It is legitimately crazy to me that people just accept this behaviour from distro package maintainers. It's like some weird form of Stockholm syndrome.

      [...]
      Arch is no better than Debian in this regard. You get whatever the package maintainer decided you'll get, and you have no choice in the matter. The Arch maintainers even said that customisability has never been one of the goals of their distro.

      Based Gentoo user.

    • 2 weeks ago
      Anonymous

      >unironic chud face
      oh am laffin
      this kraut is also a canonical employee, no wonder she want to shit on debian's pkg.
      also, why is it the change just happen now? keepasxc been around for quite some time, not just since yesterday

  23. 2 weeks ago
    Anonymous

    The difference between Debian and a toy distro is that Debian has been around longer then most people ITT have been alive.

    • 2 weeks ago
      Anonymous

      >existing = good

    • 2 weeks ago
      Anonymous

      The same can be said for Windows... stupidest post ITT, congratulations.

  24. 2 weeks ago
    Anonymous

    Meanwhile, in Slackware

    https://slackbuilds.org/repository/15.0/office/keepassxc/

    > KeePassXC can be built with YubiKey two-factor authentication support
    for unlocking the database. This ... can be enabled by passing YUBIKEY=ON to the script.

    > Browser support is enabled by default ... This may be disabled by passing BROWSER=OFF to the script.

    > KeePassXC will be built with SSH agent support, allowing it to interact
    with a running agent. This may be disabled by passing SSHAGENT=OFF to
    the script.

    > Networking support, allowing website favicons to be downloaded, is
    enabled by default. This maybe disabled by passing NETWORKING=OFF to the script.

    > Support for database sharing and synchronisation using KeeShare will be
    enabled. It can be disabled by setting KEESHARE=OFF.

    > Support of FdoSecrets is disabled by default. It can be enabled by
    passing FDOSECRETS=ON to the script

    > KeePassXC will display a notification of new releases unless the option
    UPDATECHECK=OFF is provided.

    > Autotype may be disabled by passing AUTOTYPE=OFF.

    Looks like a sensible set of choices to me.

    • 2 weeks ago
      Anonymous

      Slackchads stay winning

  25. 2 weeks ago
    Anonymous

    I think its good. The software that I want only has the most basic shit and no browser integration sounds good to me, because frick this shit.

    • 2 weeks ago
      Anonymous

      hence the recommendation for "KeePassXC-minimal" for luddites like you
      or just use 'pass'

      >can't use old software, breaking changes everywhere down to gcc itself
      >forced into maintainers' repository playpen
      >can't use new software either because the middlemen that inserted themselves between you and the software you want to use think it's their priviledge to pick what you actually wanted to install and straight up remove fricking features from it
      Oh geeeeee I wonder why windows is more popular

      literally just use flatpak then, moron

      • 2 weeks ago
        Anonymous

        >literally just use flatpak then, moron
        ahahahahahahahaha
        concession accepted

        • 2 weeks ago
          Anonymous

          flatpak is literally the windows-ification of Linux
          what else do you want?

          • 2 weeks ago
            Anonymous

            the modern troonix desktop is windows- and macos-ified with all of the cons and none of the pros. that's the concession

          • 2 weeks ago
            Anonymous

            >flatpak is literally the windows-ification of Linux
            not entirely, flatpaks are more of an autistic mix between the windows and linux ways of packaging applications.

      • 2 weeks ago
        Anonymous

        flatpak version doesn't do browser integration because of sandboxing

        • 2 weeks ago
          Anonymous

          there's always the AppImage from the official site
          that's what I used to use on Mint because the version in the official repos was so outdated

    • 2 weeks ago
      Anonymous

      then don't install it moron

  26. 2 weeks ago
    Anonymous

    What's the problem exactly? KeepassXC by default comes with tons of bloat that most people don't need.

  27. 2 weeks ago
    Anonymous

    >maintain software because you're passionate about it
    >notice some potentially insecure features that are nice to have but not core functionality
    >the people bubble around you confirm your belief that this lean version is better for people
    >do it and begets predictable sphincter ailment from users of potentially insecure features
    >tell people they should be more involved in the people bubble if they want to influence decision making
    >debian users learn how to apt-get keepassxc-full and the userbase gets slightly better overall
    >moron users that do moron things by pathology are now safer
    >this is a good thing for debian
    >is a thing certainly

  28. 2 weeks ago
    Anonymous

    who tf uses this trash anyway
    just manually install pass like a real chad

    • 2 weeks ago
      Anonymous

      Nobody who uses computer on IQfy is a "real chad". Go out and compare yourself to everyone around you.

  29. 2 weeks ago
    Anonymous

    [...]

    >the app clears the clipboard after a timeout. at least, that's how it works on windows.
    It doesn't on Linux because there's 20 incompatible clipboard implementations, and two actual canonical clipboard types.

    • 2 weeks ago
      Anonymous

      >two actual canonical clipboard types
      this i understand
      >there's 20 incompatible clipboard implementations
      this not so much. please elaborate?

    • 2 weeks ago
      Anonymous

      works for me, copying to the clipboard doesn't show in the clipboard history and it auto-clears in a couple seconds
      I use Plasma (X11) on Arch

  30. 2 weeks ago
    Anonymous

    this is all due linux packaging being a fricking broken mess. none of this shit would be necessary if things were just a god damn static binary/appimage/exe/etc as default. Don't trust a pre-compiled binary? then compile the shit yourself you dirty homosexual!

  31. 2 weeks ago
    Anonymous

    troons took over linux, they are actively making it unusable and destroying any good thing about it. my next computer will be a mac

  32. 2 weeks ago
    Anonymous

    An offline password manager doesn't need online features.

    • 2 weeks ago
      Anonymous

      >An offline password manager doesn't need online features.
      This ^^^^ .... And it should be wrapped with Firejail to prevent such shenanigans.

      sudo apt install firejail
      sudo firecfg
      echo "net none" >> ~/.config/firejail/mpv.profile
      echo "net none" >> ~/.config/firejail/vlc.profile
      echo "net none" >> ~/.config/firejail/ffmpeg.profile
      echo "net none" >> ~/.config/firejail/keepassxc.profile
      echo "Less Leaking Secrets Out My Anus"

      • 2 weeks ago
        Anonymous

        The feature is already off by default
        and with mpv it's literally only ever used if you feed it a web URL

        • 2 weeks ago
          Anonymous

          >and with mpv it's literally only ever used if you feed it a web URL
          Or open a malicious video that overflows the player. They are linked on dicksword all the time. I clean them up for friends, taking the "fun" out of it.

  33. 2 weeks ago
    Anonymous

    Removing all features from a password manager sounds like an increase in security.

  34. 2 weeks ago
    Anonymous

    >NOOOOOOO YOU HAVE TO KEEP NETWORK ACCESS AND IPC ENABLED BY DEFAULT THIS IS HECKING GENOCIDE
    having a meltdown over trying to make software more secure sounds suspicious if you ask me.

    • 2 weeks ago
      Anonymous

      I don't trust KeePassXC anymore.

    • 2 weeks ago
      Anonymous

      An offline password manager doesn't need online features.

      Then don't use it. Encrypt a text file yourself

      • 2 weeks ago
        Anonymous

        I have a shell function for that.

        function rot13()
        {
        if [ -r $1 ]; then cat $1 | tr '[N-ZA-Mn-za-m5-90-4]' '[A-Za-z0-9]'; else echo $* | tr '[N-ZA-Mn-za-m5-90-4]' '[A-Za-z0-9]'; fi
        }

        function rot47()
        {
        if [ -r $1 ]; then cat $1 | tr '!-~' 'P-~!-O' ; else echo $* | tr '!-~' 'P-~!-O'; fi
        }

        • 2 weeks ago
          Anonymous

          >rot13
          at least use vigenere

          • 2 weeks ago
            Anonymous

            No need, I have base64 and base2048. It's based.

        • 2 weeks ago
          Anonymous

          cool, you can frick off and stop dictating what and how other people use then, commie

          • 2 weeks ago
            Anonymous

            Golly Gee Newfriend, am I spoiling your fun nuggets?

  35. 2 weeks ago
    Anonymous

    >ssh agent, networking, browser integration
    based, they removed a backdoor

  36. 2 weeks ago
    Anonymous

    Minimalism is cancer

    • 2 weeks ago
      Anonymous

      This. All these morons screeching about security miss the fricking point of a password manager. There are a million websites that want you to have a password. You keep unique passwords for all of them, and browser integration intelligently fills out the password for you and clears out the clipboard. Impeding that functionality reduces security. It is fricking mind blowing how moronic the maintainer and all the minimalist security theater troons are.

      • 2 weeks ago
        Anonymous

        Because it was never about security
        It's about control
        morons that can't see why anyone would ever need to use autofill features probably use the same password on 90% of websites, LARPing about "muh insecure bloat" because their password manager is more than an encrypted spreadsheet

  37. 2 weeks ago
    Anonymous

    >being slave to moronic maintainers in fricking 2025
    why
    install gentoo

  38. 2 weeks ago
    Anonymous

    Debian maintainer is right. If keeptroons want all these insecure features they should have to install the non secure package.

    • 2 weeks ago
      Anonymous

      They did
      It's called keepassxc

  39. 2 weeks ago
    Anonymous

    i don't use those features and it's reasonable switching the default to not include them.
    But why wouldn't you change existing users to use the -full package?

  40. 2 weeks ago
    Anonymous

    The maintainer really should have transitioned existing users to the -full package.
    They are aware that users don't know how to read the NEWS, so they are also obviously aware that users will go to upstream, because this the first place they will find to report issues.

  41. 2 weeks ago
    Anonymous

    Why can't Debian do news items like Gentoo can?
    > * IMPORTANT: 2 news items need reading for repository 'gentoo'.
    > * Use eselect news to read news items.

    • 2 weeks ago
      Anonymous

      Because the whole point is breaking people's shit. Half of all changes in the linux ecosystem is unpaid jannies breaking shit on purpose because they're angry they're poor

      • 2 weeks ago
        Anonymous

        >is on unstable/testing branch
        >stuff breaks
        woooooooaaaaahhhhhhh

        • 2 weeks ago
          Anonymous

          >a rolling development version of the Debian distribution containing the latest packages that have been introduced into Debian
          huh, weird nowhere in this description of Sid does it say "this is where we break shit for fun"

          what is this change testing?

    • 2 weeks ago
      Anonymous

      The maintainer really should have transitioned existing users to the -full package.
      They are aware that users don't know how to read the NEWS, so they are also obviously aware that users will go to upstream, because this the first place they will find to report issues.

      News takes over the Apt-get upgrade process, you cannot update until you've read it (or scrolled through it and clicked continue), these are the type of people who'll happily hose their systems with --yes-i-know-what-im-doing.

  42. 2 weeks ago
    Anonymous

    So all that happened was a bunch of features (which I don't use but whatever) got removed ... to a different package?

    Christ, IQfy, you're such a bunch of b***hing drama queens sometimes.

  43. 2 weeks ago
    Anonymous

    No surprise here, freetards have been developing ways to obfuscate in open source since systemD.

    • 2 weeks ago
      Anonymous

      >No surprise here, freetards have been developing ways to obfuscate in open source since systemD.
      This ^^. Won't be long until it devolves into Windows 95. The obfuscation is better hidden though. Reviewing the code of systemd by itself is useless. The intentional weaknesses are a combination of systemd + udev + polkit + eBPF + binfmt magic + series of undocumented CPU instructions + JTAG. 3rd party code reviewers less likely to find them.

  44. 2 weeks ago
    Anonymous

    I'd like to interject for a moment.

  45. 2 weeks ago
    Anonymous

    [...]

    Nice trollpost. Filtered thoughever.

    • 2 weeks ago
      Anonymous

      where's the lie?

      • 2 weeks ago
        Anonymous

        Didn't read. I filter all posts with more than 3 replies. Gas all mass repliers. I just had the filter off this time so I thought I'll let one know they're moronic.

  46. 2 weeks ago
    Anonymous

    This is the issue with trusting maintainers. Sometimes they're based and great. Sometimes this

    • 2 weeks ago
      Anonymous

      Luckily you can tell at a glance which type they are from the presence of pronouns in their bio

  47. 2 weeks ago
    Anonymous

    the easy solution for the devs is to just remove all these compile flags if they don't intend for people to use them

    • 2 weeks ago
      Anonymous

      That's literally what they're doing kek
      "packagers" get the rope

  48. 2 weeks ago
    Anonymous

    OSS developers are so unnecessarily petty. Not that closing source and everything related isn't petty in itself too, but I really think we should be better.

  49. 2 weeks ago
    Anonymous

    Debian maintainers are just as insufferable as red hat maintainers. At least Red Hat doesn't generally make your system MORE vulnerable than it would otherwise be. Debian ships shit out of date, threatens up stream devs, and applies a bunch of sloppy packages. Just look at the xscreensaver fiasco and OpenSSL. The maintainers are especially salty about that one because it exposed just how fricking stupid they are.

    • 2 weeks ago
      Anonymous

      *sloppy patches, not packages

    • 2 weeks ago
      Anonymous

      >generally
      >posts example from $currentYear-9 in $currentYear+9
      while it was bad it's kind of irrelevant at this point

  50. 2 weeks ago
    Anonymous

    >removes bloat
    GIGACHAD

  51. 2 weeks ago
    Anonymous

    >https://github.com/keepassxreboot/keepassxc/blob/develop/CMakeLists.txt#L51
    >https://salsa.debian.org/debian/keepassxc/-/merge_requests/10/diffs
    the new keepassxc package literally uses defaults for everything except update check (which is something to be handled by the package manager)
    only a moron could think that these changes aren't a good thing

  52. 2 weeks ago
    Anonymous

    rekt for using shit package managers ran by dictators

  53. 2 weeks ago
    Anonymous

    Don't run debian, it is not a good distribution. They've broken other packages in the past by patching their build processes to allow building against older versions of libraries they don't work with. You are better off trying to de-shittify ubuntu than to run debian, though better still to run fedora or even suse in a pinch if you can't/won't run arch/gentoo/etc. Debian is manjaro with a "stability" fetish.

    • 2 weeks ago
      Anonymous

      >You are better off trying to de-shittify ubuntu
      That's called Trisquel, it's pretty comfy.

    • 2 weeks ago
      Anonymous

      >suse in a pinch
      kys

      • 2 weeks ago
        Anonymous

        Black person

  54. 2 weeks ago
    Anonymous

    why are freetrooners like this bros?
    it's every single time

Your email address will not be published. Required fields are marked *