2017-03-23T17:58:30Z via Identi.ca Web To: Public CC: Followershttps://segment.com/blog/segment-open-fellowship-2017/
First glance looks like a clone of the Stripe program that had the honor of hosting @cwebber semi-recently.
der.hans shared this.
2017-03-20T07:30:52Z via Identi.ca Web To: Public CC: Followershttps://www.yergler.net/blog/2017/03/20/no-pressure-blogging/
It’ll be interesting to see if micro.blog brings back some of the spontaneity I felt with identi.ca back in the day. Hopefully without the passive aggressive, cringe inducing snark.
Hopefully without the passive aggressive, cringe inducing snark.
Pretty passive aggressive! ;)
But all respects to nyergler, and I'm happy to hear Nathan write more, anywhere. And I do miss the old identi.ca days, of course.
2017-03-14T16:53:14Z via Identi.ca Web To: Public CC: FollowersBassel Khartabil will have been imprisoned in Syria for 5 years tomorrow.
2017-03-13T18:23:35Z via Identi.ca Web To: Public CC: Followershttps://sandstorm.io/news/2017-03-13-joining-cloudflare
(Asheesh recently started working for Stripe though.)
Christopher Allan Webber shared this.
2017-03-13T18:22:07Z via Identi.ca Web To: Public CC: Followershttps://www.change.org/p/advanced-micro-devices-amd-release-the-source-code-for-the-secure-processor...
I don't think this will do a lot of good on its own, but seeing lots of people making such demands, even in the weak form of an online petition, is somewhat heartening.
2017-03-11T03:50:09Z via Identi.ca Web To: Public CC: FollowersAwesome and important job opening: WMF hiring a product manager with a focus on multimedia
2017-03-06T06:03:08Z via Identi.ca Web To: Public CC: Followershttps://blog.cryptographyengineering.com/2017/03/05/secure-computing-for-journalists/
from the comments https://gist.github.com/anonymous/9f789aabd7e8681dec0cf5781aecf664
In short, expert claims that (1) iOS is more secure than Android (Google phones) (2) is more secure than Android (other vendors) (3) is more secure than various desktop OSes.
(1) due to Apple investing more in security (better security features, Apple not being primarily a spy company, more/longer OS updates, stronger curation of store; latter two linked to single-vendor control of software and hardware). (2) due to more/longer OS updates, less crapware. (3) due to tighter default sandboxing, program access.
Security-first desktop OS projects like Qubes get a brief mention in comments, but focus nearly universally on what journalists (ie, everyday people) can get stuff done with. I didn't see a mention of ChromeOS, but tendency seems to be that if secure, your own device far preferable to cloud, which would make ChromeOS very suspect.
Like I wrote https://identi.ca/mlinksva/comment/xV1K3Ym_THaiTB852Pw5kw the other day: "It's very easy to accept locked down devices as a mitigation; coming up with better is one of the most significant challenges for software freedom. Heck, maybe the most. As I've commented various times over the last years, though usually in context of people thinking locked devices a good way to mitigate outright device theft."
It's sad that the mobile OS with obviously better (but radically imperfect, speaking of which, nobody is claiming iOS is secure in any absolute sense, only better relative to Android) software freedom is basically Windows II (BTW I can imagine Windows I eventually being about as semi-open as Android if Microsoft continues to release components under free licenses, and Google moves functionality into proprietary blobs or the cloud)...and if we take software freedom to mean control over one's computing, a relatively insecure device is highly questionable, as if the device is compromised, someone else has control over your computing, and not a faceless corporation that wants to sell your eyeballs or force upgrades through obsolescence while you get some utility from a device, but criminals whose business is completely adversarial to your interests.
The situation seems pretty desperate to me. Free software hackers presumably make things better to the extent they do things like make builds reproducible and migrate to more secure languages, but for people (including hackers) to have access to systems that are relatively secure from malicious adversaries requires lots of integration.
Confirmation bias alert: safety and freedom (narrowly construed as four freedoms) are both going to require public regulation. Traditional software freedom advocates are going to have to really up their game or regulation will only mandate safety, and in part through anti-freedom.Show all 11 replies@cwebber how has GNU/Linux fragmentation gotten better? The most user-visible splits (packaging and desktops) have slowly fragmented more, not less. The only distro available for non-server uses to people not connected to the community (ie installed on devices by major vendors) is in the direction of Android (in the throw-over-the-wall and for the benefit of corporation that runs project senses), and "universal" package installer formats (or whatever flatpak, snap et al should be called) seem to be adding yet another layer of fragmentation, though maybe they could help with making it easy to run $Y on $X distro. I can think of one positive story semi-recently, but it's a small one: razor+lxde merger->lxqt.
Thanks for the links! I never have an iPhone, nor am much experienced with Android phones. With this in mind, I will say that journalists are targets of a specific kind. Threat models for them probably are different from those for others. Their social circles and contacts are vulnerable in physical space, for example. Even if a journalist has secure devices, s/he is threatened whenever people s/he cares are threatened. In this sense, it will be good to decouple what a journalist is doing (and the devices s/he is using) from the person s/he is. If I were a journalist, I would want my work phones and computers disposable and de-linked to my identity at all time. On the other hand, I don't know if this is workable in practice.
Christopher Allan Webber likes this.@trc the links don't really discuss anything journalism-specific. I'm not sure the threats you describe really are specific to journalists, other than perhaps by degree. Except for a virtual hermit, everyone's contacts are vulnerable in physical space and is threatened when people they care about are threatened.
Yes some people doing very sensitive work should take more extreme measures such as only using disposable and identiy de-linked devices, and journalists are probably over-represented among people with such requirements. But there there's an extra huge challenge with maintaining operational security, even with relatively secure devices. Most people will fail at that. But everyone should have a relatively secure device (inclusive of no device!) to begin with, journalists or not. Almost all of us are bad at security and need all the help we can get and are threatened, if not specifically, then by opportunistic criminals.
@mlinksva I certainly agree to your emphasis on the need of everyday persons, myself being one, for better computing/communication security. My view is that for journalists what at stake can be personal safety while for most of us it is probably about money and data loss. It is important and hard to communicate good practices to folk to prevent money and data loss, but I think for journalists in danger they will need another set of skills which may well be confusing and impractical for most people.
2017-03-04T18:05:59Z via Identi.ca Web To: Public CC: FollowersSaw Death of a Salesman first time in years last night at http://www.ubuntutheaterproject.com/death-of-a-salesman/ (this Ubuntu is a charity, BTW ;-)) and was struck that the current US dictator is Willy Loman: well-liked, truthful, faithful, humble, non-delusional.
This has occurred to many others before, eg http://host.madison.com/wsj/opinion/mailbag/trump-is-modern-day-willy-loman----mike/article_626280a3... https://www.forbes.com/sites/johnmcquaid/2016/07/21/nomination-of-a-salesman-donald-trumps-odd-and-d...
Christopher Allan Webber likes this.
Christopher Allan Webber shared this.
2017-03-01T01:37:17Z via Identi.ca Web To: Public CC: FollowersWebAssembly should (multiple meanings) be huge, no?
Christopher Allan Webber likes this.
I think you're right, in multiple meanings. :) To unpack your potential #vaguejoke (a useful heresy if there ever was one):
- It could be huge in terms of the size of executables! :) Many web pages now take 25 or more megabytes just to load these days, which is kinda obscene. That's probably going to get a lot harsher.
- It could be huge, as in terms of pushing for more of an "executable web" over the "document web". Sadly I think this may be more huge for proprietary software than free software, for reasons that are long to get into (but it doesn't, in theory, have to be.)
I tend to agree with these two comments https://news.ycombinator.com/item?id=13759903
I think the cause of computing freedom is likely better served by building high-quality wasm disassemblers (radare has an open ticket, for instance) and by making sure that wasm code is so tightly sandboxed that DRM can't work, i.e., that you have the equivalent of an "analog hole" because you can write a browser extension / patch that taps all the data and the inside code can't tell. Hoping that technologies won't get developed has historically not been a productive approach for software freedom; the folks who want to take our freedom have enough resources that they'll do it whether or not there's a standards process involved.
2017-02-26T06:27:10Z via Identi.ca Web To: Public CC: FollowersVote (one click, one vote per IP address) to help GIMP Motion (the extension developed and used by the ZeMarmot team) win an audience prize of 1500€. Background.
2017-02-23T16:52:17Z via Identi.ca Web To: Public CC: FollowersCommunications generalist job at institute that does lots of interesting work http://thegovlab.org/seeking-talented-communications-professional/
2017-02-09T17:59:23Z via Identi.ca Web To: Public CC: FollowersApart from the obvious hypocritical element of this and serving as a data point on destructiveness of patents, curious...would love to read a deconstruction:
2017-02-08T20:21:33Z via Identi.ca Web To: Public CC: FollowersAmway? Are you kidding me? JHFC. (Belatedly reading about the DeVos family.)
2017-02-06T20:29:47Z via Identi.ca Web To: Public CC: Followershttps://sandstorm.io/news/2017-02-06-sandstorm-returning-to-community-roots
IIUC no longer attempting to build a proprietary enterprise backend (and their work on that now free software) or a large business, though no shutdown.
Some discussion at https://news.ycombinator.com/item?id=13582942
Sandstorm is still a great project. I hope it finds lots of success, even moreso now!
2017-01-31T15:53:57Z via Identi.ca Web To: Public CC: Followers#FREEBASSEL Campaign Denounces U.S. Executive Order Excluding Refugees http://freebassel.org/campaign/statements/2017/01/31/us-exclusion-statement/
2017-01-31T03:42:01Z via Identi.ca Web To: Public CC: Followershttps://sfconservancy.org/news/2017/jan/30/opposing-us-immigration-ban/
I modified the 2nd to last sentence, because I do not wish to see or pass on the names of extreme narcissists. Link to original with name included above. Maybe @conservancy will start posting here again soon. ;-)
Software Freedom Conservancy Opposes U.S. Presidential Executive Order on ImmigrationJanuary 30, 2017 The free software movement is, at its core, a social justice movement. Software freedom is essential for people to be confident their technology works in service to equality, justice, and democracy, and not as a tool for the privileged and the powerful to quash those values.
For this movement to succeed, it must welcome people from all nations and religions. If people are excluded from our work, what we build will fail to meet their needs. As much as we’re able, Conservancy strives to make free and open source software development accessible to people around the globe. We help our member projects organize conferences in many different countries. And our member project Outreachy provides internship and mentorship opportunities in countries that are thus far underrepresented in FOSS development.
Moreover, we house dozens of member projects that develop free and open source software and do so on a global scale. Their developers live around the world, collaborating thanks to licenses that give them equal rights to work on the software. In-person conferences are crucial to their work, providing important opportunities for focused development and community-building. Many of those developers have found employment in the U.S., enriching the economy and the world. Prohibiting arbitrary groups from traveling to the U.S. destroys these opportunities. It exacerbates the very inequalities that free software strives against.
Diversity and inclusion are core Conservancy values. The travel ban in the U.S. regime’s recent executive order runs wholly counter to those values. We oppose it in its entirety, and support its full reversal.
2017-01-27T04:10:56Z via Identi.ca Web To: Public CC: Followershttps://news.ycombinator.com/item?id=13493311
The company that developed RethinkDB, something like MongoDB but with a better reputation, went out of business, and apparently the developers want RethinkDB in a foundation. But are held up because foundations want them to change the license from AGPLv3. Apparently they are talking to the wrong foundations.@jxself yeah I made a snarky comment to that effect https://news.ycombinator.com/item?id=13497625
Now I see Erik Moeller made the obvious suggestion nearly six months ago https://github.com/rethinkdb/rethinkdb/issues/6137 ... I don't follow these conversations about choosing a 'foundation' closely, but I get sense that somehow, maybe without lots of awareness, lots of developers think joining a trade association is the right, or perhaps high status, thing to do, not really taking non-profit stewardship seriously. Am I crazy to sense this? I would love to change it if true.
Christopher Allan Webber likes this.
2017-01-26T21:39:37Z via Identi.ca Web To: Public CC: Followersentropy : rng :: vacuity : ???
Thought upon reading some particularly vacuous sentences.