Those should be closed WONTFIX. Neither doas nor sudo can protect you from the consequences of running untrusted code and must not attempt to do so because it adds needless complexity to safety-critical software.

It is more like phone based 1FA at this point. My Google account cannot be recovered at all even though I know the password and still control the recovery e-mail because at one point I made the mistake of adding a (now inaccessible) phone number.

Hell, I have diligently backed up recovery codes and security question answers to dozens of services... including Google and banks... and many of these providers require my phone number or their already activated mobile app to log in.

Have you tried calling the number to see if whomever has it will send you the code it receives?

If someone called me with a request like this I would assume it was a phishing attempt to take over my own accounts.

Remember the average and unsophisticated. Humans are the weakest link.

Is nitter.net still functional for you? The service was accessible earlier this year from my ___location but now it is all 403 Forbidden.

nitter.net is, the mirrors are not.

iirc, twitter turned off all anonymous access, unless you come from a search engine, then you get a limit number of requests. So zedeus came up with an idea to make a massive pool of search engine'd api tokens and use those to keep nitter up. The mirrors would have to copy that idea, and few (0?) have atm.

The current state is to use guest accounts [1]. If you use that branch instead of master and get a collection of accounts, you can run your own instance. For my personal use instance this is working fine with the initial set of accounts I put in. No idea how long this will work and/or when it is going to get merged, it is a moving target.

I think the token workaround you mentioned is the old way that no longer works, but I am not sure.

[1] https://github.com/zedeus/nitter/pull/985

The answer is always no, please don't ask!

Seems trivially easy to solve since all the users are already carrying tracking devices with GPS.

Presumably they are more interested in information like which room someone is in than their position on Earth. I doubt that indoors the ___location accuracy of phone GPS would be accurate enough to be useful, particularly in buildings where many locations are designed to be secure both from physical attacks and espionage (probably a lot of thick metal plates in random walls). And even without interference issues, GPS elevation accuracy is pretty bad. Finally, you're only tracking the ___location of the person's phone, which in an emergency could easily get left behind somewhere.

None of this is to say an email chain is the optimal solution though.

I prefer to keep the task manager processes sorted by PID, that way the order is stable with new processes appearing at the end of the list.

been playing that I'm the OS game and this comment brings joy

Windows Defender is worse than nothing but in recent versions of Windows it is enabled by default, very difficult to disable, and may get re-enabled at any future software update.

I had one of those accounts and it was very much a lottery and not something a financially literate person would open.

A reasonable and safe default is to use the same channel for sending me marketing information that I used to request it. Unsolicited marketing is never acceptable.

What about for specialized services that you may not already be aware of? The ideal of advertising is to inform and educate the consumer.

Should non-megacorp specialized services simply not exist? How should they get the word out? The approved channels you speak of are very expensive and highly competitive.

It's harmless. The sensation is electrolytic in origin rather than caused by taste receptor activation; it's like when you put a 9 V battery to your tongue except much less potential and therefore weaker feeling.