Conversation
Notices
-
Embed this notice
narcolepsy and alcoholism :flag: (hj@shigusegubu.club)'s status on Monday, 29-Jul-2024 18:26:09 JST
narcolepsy and alcoholism :flag:
@kkarhan @radmin @SuperDicq ah yes, the Utopic world dreamed up by "native application purists" where to order a pizza you need to download PizzaHut.exe, run it, have it scan your $HOME and send it to papa john's and his advertiser friends, and then deny you access to ordering pizza because you're running TAILS instead of CentOS 6 and still have the audacity to ask for root access. Oh wait, that utopic world is a reality, it's called Google's Android. But hey at least you have to download it, give it permissions and execute it, right? :Topkek: - Haelwenn /элвэн/ :triskell: likes this.
-
Embed this notice
翠星石 (suiseiseki@freesoftwareextremist.com)'s status on Tuesday, 30-Jul-2024 00:10:10 JST
翠星石
@hj >where to order a pizza you need to download PizzaHut.exe
Why would ordering a pizza require the execution of software?
>have it scan your $HOME and send it to papa john's and his advertiser friends
The JavaShit interfaces are so shittily implemented that sites can and do easily fingerprint the browser and send it to advertisers.
>then deny you access to ordering pizza because you're running TAILS instead of CentOS 6
That already exists with JavaShit - either non-approved useragents are blocked (sure this isn't hard to bypass), or fingerprinting is done via JavaShit and non-approved browsers are blocked (hard (i.e. curl-impersonate) or impossible to get around).
apple has already added a JavaShit API for "remote attestation" that verifies that the device is running an approved version of proprietary malware and many other vendors are looking to implement their own implementation and that is intended to be crypto-graphically impossible to get around.
Why can't it be HTML web forms? (adding useless bloat like fancy bars with JavaShit would be fine just as long as it works if you don't run it).
Maybe even fancy "food ordering" forms without progress bars and the like without requiring arbitrary code execution could be added as a browser standard if "fancy" looks are wanted. -
Embed this notice
narcolepsy and alcoholism :flag: (hj@shigusegubu.club)'s status on Tuesday, 30-Jul-2024 01:49:39 JST
narcolepsy and alcoholism :flag:
@njsg @kkarhan @radmin @SuperDicq well, it really depends on the language used when talking about "native", GoLang can be quite heavy due to forced static linking, C/C++ can be unoptimized or overly optimized (i.e. sacrificing binary size for speed) and i'm not sure if dynamically linked libraries (like GUI toolkits like qt/gtk) should be included in the size or not, and Java is Java. 14 billion devices run Java.
Main complain usually is all of the malicious stuff websites including tracking, advertisement, bitcoin miners etc. Besides the malicious impact those contribute heavily to overall website size and performance. In reality it's not that much different from getting software that's loaded with trackers, except now it's not sandboxed (because of course it's not unless you do stuff like sandboxie or flatpak) and has access to your $HOME -
Embed this notice
njsg (njsg@social.sdf.org)'s status on Tuesday, 30-Jul-2024 01:49:40 JST
njsg
@hj @kkarhan @radmin @SuperDicq One wonders how did people manage to use the web before webapps became a thing, or before any JavaScript.
There's also the angle that, nowadays, instead of forms, one might end up with a heavy "web application", that's *much heavier* that it'd be if it were native, and that's probably part of the criticism out there.