• 0 Posts
  • 24 Comments
Joined 1 year ago
cake
Cake day: November 4th, 2023

help-circle

  • If the Democrats lose, there is not going to be any soul searching. There is going to be a lot of finger pointing and blame. And most of it is going to be at Republicans, at the media, at Trump idiots, etc.

    I am hoping that Trump loses if only because I think they’re actually be some realignment within the GOP. Unlike the Democrats, there is some actual question of direction within the GOP currently from what I’ve seen. Not everybody over there is happy with Trump. Many who just want power see him as too divisive and cultish, a Trump win is a win for Trump not necessarily for the GOP. There are some actual conservatives in the GOP who feel (IMHO correctly) that Trump is more of a cult of personality than a reflection of conservative values.

    If nothing else, if Trump loses this time, he is probably finished. At least I hope so and I think there’s a good chance of it. Look at the younger generations, how many people under say 30 do you see waving Trump flags?

    At least I really hope that realignment happens. And I also hope it comes with a realignment of message. I think there are a lot of conservative positions that could have mainstream appeal, that deserve a voice in politics, but the GOP has abandoned a great many of them in favor of harassing gay people and immigrants. That’s not a good way for us to go as a country.


  • Not really because their rights have not been violated, nothing was stolen from them. They were presented with a software product that had a limited license, and they accepted that. As far as they are concerned, the developer has fulfilled their contractual obligation to them; they were never offered a GPL license so they got exactly what they were offered.

    The author of the GPL’d code however is another story. They wrote software distributed as GPL, Winamp took that code and included it without following the GPL. Thus that author can sue Winamp for a license violation.

    Now if that author is the only one who wrote the software, the answer is simple- Llama Group pays them some amount of money for a commercial license of the software and a contract that this settles any past claims.

    However if it’s a public open source project, it may have dozens or hundreds of contributors, each of which is an original author, each of which licensed their contribution to the project under GPL terms. That means the project maintainer has no authority to negotiate or take payments on their behalf; each of them would have to agree to that commercial license (or their contributions would have to be removed from the commercial version of the software that remains in Winamp going forward). They would also each have standing to sue Llama Group for the past unlicensed use of the software.



  • Not necessarily. It means that Llama group, and perhaps the original Nullsoft, have violated the license of whatever open source developer wrote that code originally. So the only ones who could actually go after them to force anything are the ones who originally wrote that GPL code. They would basically have to sue Llama group, and they might also have a case against Nullsoft / AOL (who bought Nullsoft) for unjust enrichment over the years Winamp was popular.

    Chances are it would get settled out of court, they would basically get paid a couple thousand bucks to go away. Even if they did have a legal resources to take it all the way to a trial, it is unlikely the end result would be compelling a GPL release of all of the Winamp source. Would be entertaining to see them try though.

    Complicating that however, is the fact that if it’s a common open source library that was included, there may be dozens of ‘authors’ and it would take many or all of them to agree to any sort of settlement.


  • Here’s the story:
    Company buys the rights to Winamp, tries to get the community to do their dev work for free, fails. That’s it.

    The ‘Winamp source license’ was absurdly restrictive. There was nothing open about it. You were not allowed to fork the repo, or distribute the source code or any binaries generated from it. Any patches you wrote became the property of Llama Group without attribution, and you were prohibited from distributing them in either source or binary form.

    There were also a couple of surprises in the source code, like improperly included GPL code and some proprietary Dolby source code that never should have been released. The source code to Shoutcast server was also in there, which Llama group doesn’t actually own the rights to.

    This was a lame attempt to get the community to modernize Winamp for free, and it failed.

    Of course many copies of the source code have been made, they just can’t be legally used or distributed.



  • There’s currently no way to delete an uploaded image.

    That’s especially problematic since pasting any image into a reply box auto-uploads it. So if your finger slips and you upload something sensitive, or if you want to take down something you uploaded previously, there’s no way to do it.

    What should happen is whenever you upload an image, the image and delete key get stored in some special part of your Lemmy account. Then from the Lemmy account management page you can see all your uploaded images and delete them individually or in bulk.

    So it seems you can now do this- Profile, Uploads shows you all your uploads. Go Lemmy!



  • The only way you can do this, is if the only service you use the provider for is storage. Encrypt the data before you send it to the provider and then they don’t know what they’re storing.

    If they have to do any processing on it at all, then conceptually they need a plain text copy of it to feed into the CPU. And if they have that, there is nothing you can do to stop them from stealing it or using it.

    There has been some research in this field, the concept is called homomorphic encryption. That is where you encrypt something in a way that allows a third party to manipulate the data without possessing a key. It is still very limited, and likely always will be due to the extreme difficulty of the question.


  • with an outside control interface that’s quite literally about as optimal as it can be.

    Which is probably true, as long as you make one assumption- that the operator dedicates a significant amount of time to learning it. With that assumption being true- I’ll assume you’re correct and it becomes much more efficient than a Nano/Notepad style editor.

    I’m happy to concede without any personal knowledge that if you’re hardcore editing code, it may well be worth the time to learn Vim, on the principle that it may well be the very most efficient terminal-based text editor.

    But what if you’re NOT hardcore editing code? What if you just need to edit a config file here and there? You don’t need the ‘absolute most efficient’ system because it’s NOT efficient for you to take the time to learn it. You just want to comment out a line and type a replacement below it. And you’ve been using Notepad-style text editors for years.

    Thus my point-- there is ABSOLUTELY a place for Vim. But wanting to just edit a file without having to learn a whole new editor doesn’t make one lazy. It means you’re being efficient, focusing your time on getting what you need done, done.


  • Oh yes for sure. Wasn’t saying otherwise. Was only pointing out the details because the way the program worked previously, it was kind of an all or nothing thing. And thus, Aqara joining could be taken as a sign that they are going to make everything completely open and interoperable and work perfectly directly with HA. I don’t think that’s the case.

    This is still a very important step. Open standards may be the most important part of home automation, but the second most important part might well be respect. Go back just a year or two and HA and open source in general were basically ignored in the market. Now things are changing.
    Every company that partners with HA further cements HA and open standards in general as a legitimate / major player in the automation market that manufacturers ignore at their own peril. The more that happens, the more products will be developed with open standards in mind.





  • SirEDCaLot@lemmy.todaytoPrivacy@lemmy.mlIs TOR compromised?
    link
    fedilink
    arrow-up
    16
    arrow-down
    2
    ·
    3 months ago

    All the crypto in the world won’t help if you do stupid stuff and have crap OPSEC.

    A big part of that is stay under the radar. If I were NSA I’d be running a great many TOR nodes (both relay nodes and exit nodes) in the hope of generating some correlations. Remember, you don’t need to prove in order to raise suspicion.

    So for example if you have an exit node so you can see the request is CSAM related, and you run a bunch of intermediate nodes and your exit nodes will prefer routing traffic through your intermediate nodes (which also prefer routing traffic through your other intermediate nodes), you can guess that wherever the traffic goes after one or two relay hops through your nodes is whoever requested it.
    If you find a specific IP address frequently relaying CSAM traffic to the public Internet, that doesn’t actually prove anything but it does give you a suspicion ‘maybe the guy who owns that address likes kiddy porn, we should look into him’.

    Doing CSAM with AI tools on the public Internet is pretty stupid. Storing his stash on cell phones was even more stupid. Sharing any of it with anyone was monumentally stupid. All the hard crypto in the world won’t protect you if you do stupid stuff.


    So speaking to OP- First, I’d encourage you to consider moving to a country that has better free speech protections. Or advocate for change in your own country. It’s not always easy though, because sadly it’s the unpopular speech that needs protecting; if you don’t protect the unpopular stuff you jump down a very slippery slope. We figured that out in the USA but we seem to be forgetting it lately (always in the name of ‘protecting kids’ of course).

    That said, OP you should decide what exactly you want to accomplish. Chances are your nation’s shitty law is aimed at public participation type websites / social media. If it’s important for you to participate in those websites, you need to sort of pull an Ender’s Game type strategy (from the beginning of the book)- create an online-only persona, totally separate from your public identity. Only use it from devices you know are secure (and are protected with a lot of crypto). Only connect via TOR or similar privacy techniques (although for merely unpopular political speech, a VPN from a different country should suffice). NEVER use or allude to your real identity from the online persona. Create details about your persona that are different from your own- what city you’re in, what your age and gender are, what your background is, etc. NEVER use any of your real contact info or identity info.



  • Casey Neistat. Back when he was doing his daily vlog thing a lot of it was really interesting, covering him and his wife trying to make shit happen in the city as he was running and riding his powered skateboard around Manhattan. At some point his audience started drifting younger, way way younger, and I don’t know if it was him or me but I just kind of lost interest. It didn’t feel new anymore.

    That might be me to be honest. I actually don’t watch YouTube that much at all anymore, unless I’m looking for something specific. Their recommendation algorithm is garbage and it is so obviously going for raw time suck engagement that it leaves me with a bunch of unfulfilling clickbait / ragebait where I could watch it for an hour and then just want my hour back so I end up not returning. The whole platform used to be more full of interesting genuinely entertaining and educational videos, now it just feels like a giant time sink. And every other video is now some paid sponsorship or plug where the creator is basically just whoring out their own influence. Case in point, look up reviews of laser engravers. Every single one that I could find, especially of a couple major brands, the creator got the laser hardware for free. Some of them are just advertisements that reuse the manufacturer’s own stock footage, and some seem more like real reviews, but for one or two brands I literally could not find one video where the creator wasn’t sponsored by the laser manufacturer.


  • It’s a very simple answer Apple has guaranteed that your data will stay on your device and stay secure. This is generally trusted because Apple has a track record of keeping user data secure on the device or encrypted in the cloud even in ways Apple cannot access. Point is, when Apple says they are going to do this in a way that respects privacy, and they outline the technical details of how it will work, people trust that because there’s a track record.

    Microsoft has no such trust. They have a recent track record of being intrusive and using dark patterns to persuade users to give Microsoft their data, for example in Edge there have been new feature pop-ups that require data sharing with Microsoft and the two options are ‘got it’ and ‘settings’ so accepting requires one click and rejecting requires 4 going into the settings menu and changing a few things. Microsoft is also heavily pushing Copilot which is mostly cloud-based. Furthermore, Microsoft recently showed a system that would basically screenshot your computer at very regular intervals and store them in an insecure manner. Granted it was on the device, but the way they were going to be stored meant they could be stolen with two lines of code. And let’s not forget that Windows 11 cannot be set up without a Microsoft account, so to even use your computer you have to share your email address with Microsoft. In this and many other ways they just do not act like a company that respects privacy at all, they act like the typical big tech give us everything or we will make your life difficult type company that nobody trusts.