Conversation

Notices

1. Embed this notice
   Dmitry Borodaenko (angdraug@mastodon.social)'s status on Saturday, 30-Mar-2024 15:34:18 JST Dmitry Borodaenko

   It's ok to summarily block people spreading FUD and conspiracy theories about #systemd.

   • Haelwenn /элвэн/ :triskell: repeated this.
   • Embed this notice
     Dmitry Borodaenko (angdraug@mastodon.social)'s status on Saturday, 30-Mar-2024 15:34:17 JST Dmitry Borodaenko

     in reply to

     Still accurate.

     Context of the day: https://www.openwall.com/lists/oss-security/2024/03/29/4

     "openssh does not directly use liblzma. However debian and several other distributions patch openssh to support systemd notification, and libsystemd does depend on lzma."

     No, systemd is not the root cause. The root cause is the sorry state of funding FOSS that leaves even core system components crumbling under tech debt.

     We already had that conversation after Heartbleed. We still haven't solved it.

   • Embed this notice
     this.ven (thisven@digitalcourage.social)'s status on Sunday, 31-Mar-2024 00:46:28 JST this.ven

     in reply to

     @angdraug What a pitty? 😔 What can non-developer people do to support solving this issue? 🫡

   • Embed this notice
     this.ven (thisven@digitalcourage.social)'s status on Monday, 01-Apr-2024 05:32:00 JST this.ven

     in reply to

     @angdraug Thanks for your reply. I am already donating and supporting projects, especially in the realm of #LinuxAudio.

     Regarding the dependency graph in the organization I'm still trying to convince my university switching to a #BigBlueButton or #OpenTalk provider instead to keep on making us #Zoombies.

     Unfortunately, this may become a rather legal than technical argument. However, if it doesn't even matter in the end, my complaint might be at least a statement and could encourage others to fight for #DigitalSovereignty in academia.

   • Embed this notice
     Dmitry Borodaenko (angdraug@mastodon.social)'s status on Monday, 01-Apr-2024 05:32:05 JST Dmitry Borodaenko

     in reply to

     • this.ven

     @thisven Thank you for asking! As an individual, set aside a donations budget you're comfortable with, and divide it between large organizations supporting core infrastructure (e.g. SFC, SPI, Mozilla) and individual projects you rely on. Support admins of your Fedi instance. If you have time to spare, help with documentation, bugs triage, translations. As an organization, invest in keeping your entire dependency graph healthy, not just leaf tools you use.