A feature that will not do anything unless you explicitly press a button to start using it is quite literally opt-in, though? Opt-in doesn’t mean “I won’t even know the feature exists without hunting through the settings”. It just means that it won’t start doing things without your consent. Presenting a way to provide that consent in a more visible place than buried deeply in the settings does not make it opt-out. It might be a bit annoying to you, but it has no effect on your user choice or privacy, especially if there’s also a way to globally hide it and any other features like it, including new ones that might be added in the future.

Ah, okay, gotcha. Yeah that’s fair. Not something I’ve ever really used, so wasn’t aware of that. Your comment read to me as if Windows as a whole just didn’t support drag&drop.

Or maybe you’re overestimating the amount of people who actually used that. Spending effort on something that less than maybe 1% of users actually use and that is not load bearing to any important workflows is hard to argue for when you’re a corp that is only concerned about its own bottom line. It’s a pretty rational business decision, even if you (and I) disagree with it.

Sadly not true. Microsoft removed the Start button in a version of Windows before

They didn’t say that every version of windows since then had a start button

First of all they only talked about the start menu, which was still part of 8, even if it was annoying and full-screen. And second they only said that every Windows version that had that allowed you to move the taskbar around. Not that every Windows version so far had it.

Uh, what? Can you clarify what you mean by “drag&drop”? Because dragging and dropping files or text around within or between application windows definitely worked even when Win 11 was new, so you’re probably talking about some specific instance, I assume?

Well but distributed != federated. Which is why Forgejo is currently working on a federation feature.

The company that employed the core Immich devs about a year ago to give them a full-time salary to keep working on Immich. Founded and funded by a millionaire whose stated goal is to try and make a viable business model out of software that doesn’t abuse its users

e2ee would be important if youre uploading files when away from your local network

Even without e2ee or a VPN, just plain old HTTPS should be enough to secure that part, or am I missing something?

even if you steal my password (database)

That’s a big leap you’re doing there, equating stealing a password to stealing a password database. Those are very different. Stealing a password can be done through regular phishing, or a host of other methods that don’t require targeted effort. Stealing a password database, if properly set up, is a lot harder than that. It depends of course on what password manager you’re using, but it usually involves multiple factors itself. So equating that to just a password, no matter how strong and random, is just misleading.

Mind you, I agree that it’s less secure than “proper” MFA, and I’m not saying that everybody should just use MFA through a PW manager. I am using physical security keys myself. But for a lot of regular people that otherwise just couldn’t be bothered, it’s absolutely a viable alternative that makes them a whole lot safer for comparatively little effort. Telling them they just shouldn’t bother at all is just going to create more victims. There is no such thing as perfect security, and everyone has a different risk profile.

More like 1.5FA, at least. It still protects against passwords being compromised in any way that doesn’t compromise full access to your password database, which is still a lot better than using just passwords without a second factor.

Didn’t want to be too combative from the start lol

Like it or not, words have meaning, and black and white thinking is comfortable, but doesn’t help anyone. There is still a massive difference between the gates foundation having a 0.5% stake in Kurzgesagt and them being “owned” by PE, and pretending otherwise just means you’re not actually interested in any kind of productive discussion.

Bringing this general issue up in a thread about Kurzgesagt, without also providing evidence that Kurzgesagt specifically is actually part of that issue, is at best irrelevant and at worst misleading though

Do you have actual evidence for Kurzgesagt being among PE-owned channels, or are you just extrapolating? Because the video you linked doesn’t mention them, and a quick search didn’t turn up anything about that.

You might have to sign out and then in again. There was a bug with the initial release that caused this kind of behavior

I think the idea is to pressure the partners of Collective Shout, per the url in the comment. Those might not necessarily agree with what they’re doing in this case, and if they see it’s making waves, reconsider their partnership.

It doesn’t need to be the latest android version per se, but I wouldn’t want to use a phone that’s not getting security patches anymore

Well, yeah, kind of at this point. LLMs can be interpreted as natural language computers

Watch time is pretty important on YouTube afaik, initial clocks themselves don’t count for that much