I’ve got a 9700X and it absolutely rips at only 65W

The trusted 3rd party in this case is actually multiple 3rd parties. There’s several options for trusted timestamping just like there’s multiple trusted root CAs for SSL. Since the timestamping service is free and public, anyone can use it to sign anything, even self-signed certificates. There’s no mechanism to deny access, at least for this portion.

There’s always a risk the root CAs all collude and refuse to give out certificates to people they don’t like, but at least so far this hasn’t been a problem. I don’t have a better solution unfortunately. If we could have a 100% decentralized signing scheme that would be ideal, but I have no idea how you would build such a thing without identity verification and some inherit trust in the system

This isn’t “my idea”, this is how the industry already does code signing. You can’t sign something with a date of 1984 because your certificate has a start and end date, and is usually only valid for 1 year.

You can read more about how this works here: https://knowledge.digicert.com/general-information/rfc3161-compliant-time-stamp-authority-server

https://en.wikipedia.org/wiki/Trusted_timestamping

Code signing certificates work a little differently than SSL certificates. A timestamp is included in the signature so the certificate only needs to be valid at the time of signing. The executable will remain valid forever, even if the certificate later expires. (This is how it works on Windows)

On linux it’s just called running an executable

Edit: As a less snarky answer, you can run Android apps natively on linux by installing Android OS in a container using something like Anbox Waydroid.

I think the biggest thing lacking in this kind of hardware is displays. Where can you find a phone-sized 1080p display that doesn’t require signing some NDA or reverse engineering the specs? OLED would be even better for battery life.

I don’t see that probably 360p black-or-white e-ink display is going to be a good experience unless you’re comparing it to a flip phone.

That’s probably true, but it sure can be hard to motivate yourself to do things yourself when that AI dice roll is right there to give you an immediate dopamine hit. I’m starting to see things like vibecoding being as addictive as gambling.
Personally I don’t use AI because I see all the subtle ways it’s wrong when programming, and the more I pay attention to things like AI search results, it seems like there’s almost always something misrepresented or subtly incorrect in the output, and for any topics I’m not already fluent in, I likely won’t notice these things until it’s already causing issues

Can that not run through Proton? You could probably launch it through Steam, even if you bought your copy somewhere else. I have loads on external apps added just for easy setup with Proton

+ biometrics

This means you only enter the password when your phone restarts, you access specific settings, or I think one or two other rare cases. Personally I only need to enter my pin maybe once a week

That’s for breaking a bcrypt hash, and I don’t believe there’s any way to extract the pin hash from a phone since it happens inside a secure hardware layer (like a TPM). If it is possible, the attacker would most likely have to physically destroy your phone to get at it. To bruteforce a 4 digit pin with retry lockout timers, it takes 16 hours to try all combinations, according to a tool I found that auto-enters pins via usb keyboard emulation.

Sponsorblock works perfectly fine on Firefox Mobile

Bit rot happens on much longer time scales (like 10+ years), and can happen regardless of use. Most storage media has this as an issue though, so that’s why it’s always good to have backups.

Save games probably wouldn’t have a huge effect on write endurance, but certainly in some uses that write constantly like a dashcam, it could potentially destroy the flash in a matter of months. There are endurance sd cards for this kind of application, but they usually come in smaller sizes, and I’ve still had them fail eventually.

Once upon a time I owned a GameCube memory card, specifically so that I could have my own save progression when visiting my friend’s house (who actually owned the GameCube and games). That may not really apply anymore?

On another note though, making the sd card read only means it will last significantly longer. Flash storage (like SD cards) have limited write cycles, so this preserves the games themselves while leaving the much smaller save files to be written somewhere else where they’re easier to back up.

That’s unfortunate. Personally I can barely tell all the black rectangles apart. It’s a utility for me, not a fashion accessory. Maybe if it was, I’d have an iPhone

I used my last phone for about 4 years. At that point the battery life was getting worse, and the coating to prevent smudges and make your finger slide easily had worn off in the middle. Even then it’s still perfectly usable, I just wanted an upgrade and to get away from Samsung.

I don’t understand the people that upgrade every year or two. In the last 5 years basically the only new development has been higher refresh rate displays and faker looking (more processed) camera images…

Apparently there’s some open source designs for a sim card module already. Idk if Framework is planning on making their own though. https://github.com/Zokhoi/framework-cellular-card

1. The domain name has no effect on spam filters, it’s all about which server is sending it and if the domain is properly configured with MX records, DKIM signing keys, etc… A custom domain with mail sent from a major mail provider won’t get sent to spam any more than a new gmail account.
2. Mailboxes for a custom domain work exactly the same as any other email. There is no forwarding to another mailbox or provider unless you configure it to be that way. You should be pretty careful with what settings the mail server is configured with though, because encryption is optional…

… Didn’t the EU JUST fine Apple half a billion euros over the same thing?

How are they going to enforce this? Is side loading getting some extra signing step only Google can provide?

I shouldn’t need to go through Google at all to release an Android app if it’s not on their store. This is bullshit

And bonus, Bloomberg’s lawyers could get punished or even disbarred for filing knowingly fraudulent claims