• 0 Posts
  • 210 Comments
Joined 1 year ago
cake
Cake day: July 10th, 2023

help-circle
  • I get the sentiment, but in this time and age and with the internet, I think the information most likely to be at risk of being destroyed or censored is the one that is not commonly available, or in the hands of law enforcement.

    A fascist government will more likely effectively prevent creation of new dissenting works, than suppressing existing ones.


  • One notable software business professional interviewed by RBC thought that the West’s decision would “adversely affect the life of the developer community, mutual trust within it, and therefore the quality of the product.”

    It was Russia and other autocracies etc. that diminished the trust by actually financing developers for multiple years to first earn trust and finally introduce backdoors into open source software, as demonstrated by the XZ utils backdoor.

    In open source projects, maintainers need to have some initial trust into each contributor, and let this trust naturally grow with time and contributions. They cannot perform intensive background checks on everyone before accepting a patch.

    While it is easier to uncover backdoors in open source software, there is no good way to defend and prevent against this kind of attack in this type of development process. All open source projects can do is trying to take away some trust from people within higher risk groups. This of course might lead to discrimination.


  • cmhe@lemmy.worldtoScience Memes@mander.xyzpump up the jamz
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    1
    ·
    5 days ago

    Nothing gets burned or otherwise destroyed when receiving EM radiation via a dish and converted it into electricity via a receiver.

    Sure, the amplification stage of the process likely works only one way, and should be replaced in order to send something.

    The one way process of burning oil to generate heat seems much more primitive than the energy conversion offered by a diode, TBH.

    You can push or tow an electric car and charge their batteries. Because electric motors are also generators.

    Even with your simplistic fossil fuel car in your example the alternator within can also be used as a motor.



  • The best “server-side” anti cheat mechanisms online is streaming the game, and I am sure that eventually some talented developers are able to even write some aim bot (or more) for that.

    Competitive games need a fully controlled environment. Doing it online with random unknown people should not be taken as serious as they currently do.

    Alot about video games is not standardized. To be competitive all players should have the same hardware, internet connection, etc. So that it is actually individual skill that is measured, not just the size of players wallet.

    But even then, developing skill takes alot of practice and time, which also, in our current system, can be converted into money. There just is no fair competition here anyway. Still many people believe in meritocracies…



  • cmhe@lemmy.worldtoScience Memes@mander.xyzpump up the jamz
    link
    fedilink
    English
    arrow-up
    6
    ·
    edit-2
    7 days ago

    There is no such big differences between a light emitting (LED) and a light receiving diode (photodiode), they are just the reverse of each other. In fact photodiodes can even emit light, but very inefficiently. Same in reverse, LEDs can also detect light, just badly.

    It seems like most efficient energy conversion methods can be used in both directions.


  • cmhe@lemmy.worldtoScience Memes@mander.xyzpump up the jamz
    link
    fedilink
    English
    arrow-up
    5
    arrow-down
    1
    ·
    edit-2
    7 days ago

    These radio telescopes don’t transmit anything at all, they listen to radio waves coming from the cosmos. Much like a normal telescope doesn’t transmit light.

    If you invert the flow of the electrons, a receiver becomes a transmitter.

    Speakers can become bad microphones and vice versa. Pretty sure that a radio telescope is a very bad transmitter for human music, but it could be possible with some changes…



  • Which other trustworthy search engines are there? And I don’t mean some different frontend or a meta search engine like ddg, sp, kagi, searx(ng), etc… that mostly just use googles, bings or even yandex and beidu results?

    Ages ago I configured and hosted yacy for myself, but that was a different time… Are there any real alternatives? With mayor internet companies like cloudflare, social media sites and many others restricting the access to the net and information, searching becomes more and more impossible if you aren’t a huge corporation…


  • The problem is EAs business model for this game. It is free to pay, so EA need to extract money otherwise. They introduce some gamified resource collection and crafting with exponentially rising costs, etc. And hope that gamers circumvent that by buying stuff with real money. Now players don’t all want or can’t do that, and look for alternative solutions.

    So EAs business model drives people to cheat. To cheat them primarily and other players secondarily.

    And because of their business model, they cannot solve the cheating between players by giving them dedicated servers or just let them P2P match, because they would loose control over them and their ability to extract more money.



  • Together with secure boot and your own signing keys, it could be a good way to en/decrypt the a dm-verity secured read-only rootfs. But for the home partition I would probably still want to enter my own decryption key, maybe via systemd-homed. From there you can update the kernel/initramfs and read-only rootfs image and sign them for the next boot.

    This is complicated to set up. Otherwise maybe use TPM as a 2FA, so you still have to enter a pin?





  • So you meant to say:

    I would go as far as to say that Bitwarden’s main competitive advantage and differentiation is that it’s source is available.

    That is not true, there are a lot of other password management software out there where the client source code is either open source or source available. For instance keyguard: https://github.com/AChep/keyguard-app?tab=License-1-ov-file#readme which is an alternative proprietary bitwarden client, where the source is also available. Also the Proton Pass client is under GPLv3.

    I would argue that the main advantage of bitwarden compared to others is that it is open source and has an open source server for self-hosting (vaultwarden). Which of course makes it difficult in terms of business strategy with their VC funding. But maybe becoming a non-profit org and getting money from donors, the strategic funds of EU and other governments, etc. might be an alternative way.


  • Ok, lets take it step by step:

    Thanks for sharing your concerns here. We have been progressing use of our SDK in more use cases for our clients. However, our goal is to make sure that the SDK is used in a way that maintains GPL compatibility.

    • the SDK and the client are two separate programs

    I think they meant executable here, but that also doesn’t matter. If both programs can only be used together and not separate, and one is under GPLv3, then the other needs to be under GPLv3 too.

    • code for each program is in separate repositories

    How the code is structured doesn’t matter, it is about how it is consumed by the end-user, there both programs are delivered together and work together.

    • the fact that the two programs communicate using standard protocols does not mean they are one program for purposes of GPLv3

    The way those two programs communicate together, doesn’t matter, they only work together and not separate from each other. Both need to be under GPLv3

    Being able to build the app as you are trying to do here is an issue we plan to resolve and is merely a bug.

    Not being able to build a GPLv3 licenses program without a proprietary one, is a build dependency. GPLv3 enforces you to be able to reproduce the code and I am pretty sure that the build tools and dependencies need to be under a GPLv3 compatible license as well.

    But all of that still doesn’t explain what their goal of introducing the proprietary SDK is. What function will it have in the future? Will open source part be completely independent or not? What features will depend on the close-source part, and which do not? Have they thought about any ethical concerns, that many contributors contributed to their software because it under a GPL license? How are they planning on dealing with the loss of trust, in a project where trust is very important? etc.


  • None of that makes Bitwarden not open source.

    Yes, it does, because it violates its own license GPLv3 by having proprietary build-/runtime dependencies.

    If it was under a different, maybe more permissive, open source license, then maybe it would still be open source, but as of right now i likely breaks its own license terms.

    Not only that, they specifically state this is a bug which will be addressed.

    From what they state, they think that because executables that share internal information via standard protocols does somehow not break GPL3 terms compared to two libraries that share internal state via the standardized C ABI which does. And they seem to not consider that a bug, just the build-time dependency.