d3Xt3r

Okay so that's different.

nginx only runs the master process as root, but the actual worker processes already run under a low-privileged account called http. If you want to run the master process as well as non-root, you can follow the instructions here: https://wiki.archlinux.org/title/nginx#Running_unprivileged_using_systemd

To restrict access to files, you'd be editing the nginx config file, you can read on how to do that in the nginx documentation, or check ServerFault etc.

But the modern Linux world revolves around containers. There's an official Docker image for nginx that you could use if you'd like, and that'd make it a much more secure - and portable option.

Also, I'd recommend checking the Arch Wiki first for anything Linux related - the wealth of knowledge and documentation there is unmatched, and is useful even if you're not running Arch.

The /etc/sudoers file is what you'd need to edit, and you'd use the visudo command to edit it.

chmod is indeed used for file permissions, but you can also use SELinux or AppArmor for more access/role/action based permissions (aka Mandatory Access Controls) instead of just limiting yourself to file permissions (aka Discretionary Access Control). There's also udev rules (for device/sysfs access) and PAM (Pluggable Authentication Modules). Then there's cgroups and namespaces for process limits and sandboxing. Really depends on what you're trying to achieve.

But is there any reason why you're looking into micromanaging service permissions? Most users, or even power users wouldn't need to touch that stuff at all.

If it's in a corporate environment, you'd already be running something like SELinux or similar and you'd apply a baseline security profile that meets various compliance specs. Very rarely would you have to mess with permissions of a service.

If this is for personal stuff, you'd just make use of multiple user accounts (if it's a multi-user system), or just sandboxing (containers, flatpak etc) to run untrustworthy stuff like web browsers. None of this stuff would require you to touch chmod.

Actually, Edge WebView2 is a separate system component pushed out via Windows Update (can also be bundled with individual apps), and is independent of Edge the browser.

So you can actually uninstall Edge the browser completely if you wanted to, and still keep using Webview.

Of course, it's a different story that Microsoft like to sneak it back in as part of an update or something.

This is a good example of why vertical videos are cancer.

Here's a much better version: https://www.youtube.com/watch?v=dqcAjxVyJZA

I no longer have a OnePlus, but I believe Project Elixir is pretty decent, might be worth checking out?

same build process and code base.

It's not the same code base though. They're all different branches, and also differ in code (although not by much, but it still requires manual maintenance of each branch). I haven't seen the actual build process but it's likely to be completely separate CI/CD pipelines, so I wouldn't claim it to be the "same" build process either. Also, Focus uses a completely different UI with a different/cut-down set of features.

Naturally I'm not saying that maintaining these branches amounts to the same level of effort as maintaining the iOS WebKit and Gecko branches, but it's not some non-trivial effort either.

There's also Firefox Beta, Nightly and Focus.

This was posted by @[email protected], which is quite dumb and often posts off-topic or spammy content, so not really surprising.

Keep reporting these posts, and hopefully either the author makes it smarter, or the mods ban it.

This has nothing to do with Sony the technology company - it's about Sony Pictures, which is a media company and Zee Entertainment, which is also a media company. Therefore this post is completely off-topic here. It would be more appropriate to post in c/entertainment or c/televison, but since this is really only relevant to India, it should be posted to c/India.

Reported to mods.

> Google AI outperforms medical doctors on diagnostics tasks

> URL: blog.research.google

[X] Doubt

Kinda reminds me of this XKCD: https://xkcd.com/695/

It's already a reality: https://www.unihertz.com/collections/jelly-series

My only issue is that it's not Snapdragon and not quite dev/root friendly, but otherwise it ticks all the boxes - including a 3.5mm jack and an IR Blaster!