Notices by Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me), page 2
-
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Saturday, 29-Mar-2025 01:43:24 JST 
Haelwenn /элвэн/ :triskell:
@epsi @stefan Yeah when stuff I don't admin goes down, well can't be helped, like worst case if I really need it I might just ask admin to ping me when it goes back up but so far I've barely ever done that. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Saturday, 29-Mar-2025 01:30:33 JST
Haelwenn /элвэн/ :triskell:
@epsi @stefan Specially when it's just volunteer.
I hate my shit going down because I use it but otherwise it's whatever. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Saturday, 29-Mar-2025 00:17:11 JST
Haelwenn /элвэн/ :triskell:
@fristi @ejabberd Yeah that side of things is a lot harder, it's a bet that the libre software implementations would be at least cared for enough that they can compete with the proprietary ones when people can more easily switch from one to another.
An even bigger bet would be for people to use that two-way street to move from proprietary to libre.
You could worry about standard bodies governance or about them being forked but I think implementations naturally get priority over standards (as seen when there's broad consensus/refusal of implementations compared to the standard), so I'm usually not too worried about that part. -
Embed this notice
Sylvhem (sylvhem@eldritch.cafe)'s status on Thursday, 27-Mar-2025 09:36:51 JST 
Sylvhem
When free software copy the interface of a proprietary software: “It’s so derivative! You should try to be your own thing instead of just copying the corporate solutions.”
When free software doesn’t copy the interface of proprietary software: “What is this? A program from the 2000s 🤣? It looks so bad! It’s not at all like the interface of the big proprietary software everybody use!”
-
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 23:56:44 JST
Haelwenn /элвэн/ :triskell:
@codimp Genre de truc qui donne presque envie d'être son propre ISP histoire de bloquer directement par AS au lieu de devoir aller chercher les plages d'IPs. ^^ -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 23:51:51 JST
Haelwenn /элвэн/ :triskell:
@fristi @ejabberd Makes sense to block them out if you can but say you *need* to interact with some Meta service (as sadly some people use those services exclusively…): Would you rather do it by proxy through software you control and where the amount of data shared can be limited, or through software that they control? -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 22:47:01 JST
Haelwenn /элвэн/ :triskell:
@wolf480pl Heh, I think "unopinionated" cannot exists. There's choices that have to be made and there's also the fact that at some point software is written by humans, not some hivemind specie.
And even if say, we actually have an unopinionated implementation, being maintained forever isn't a thing.
Which is why I think it's a lot better to have a diversity of implementations than a monopoly or duopoly.
And reusability helps a lot there, specially because it often then allows to swap components either ship-of-thesus style (see Unix-like systems), or with switching to another dependency+API.
Like you can move from GTK to Qt, and probably will be able to move from WebKit to Servo. But move from being a Firefox fork to being a Chromium fork? Probably not. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 22:25:41 JST
Haelwenn /элвэн/ :triskell:
@wolf480pl What?
No, re-read.
Opposite of that, forking a video player which it's own codec support is an horrible idea.
Same shit as forking a browser with it's own html/css/… support. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 21:54:21 JST
Haelwenn /элвэн/ :triskell:
@wolf480pl Yeah, because those beasts are more related to OS or video players.
It makes sense to just reuse existing code for this because it's huge.
But there's sustainability to take into question. If ffmpeg didn't exists (or wasn't as good) and you'd have to fork a full blown video player, then it would be an horrible task.
And this is why to me Mozilla throwing reusability of Firefox's engine is so disgusting. (And to me Chromium forks by small teams is just a way to burn developers) -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 21:44:47 JST
Haelwenn /элвэн/ :triskell:
@irrlicht @wolf480pl Well there's people working on WebKit which unlike Chromium and Firefox (XUL and mozembed are gone) is reusable.
And Servo seems to be on pretty good tracks.
Also parallel to osdev is quite interesting, the only brand new OS that have left the hobbyist stage since the mid 90's have been stuck into the embedded side of things (see L4, NuttX, …).
Linux distros? Most are just derivatives of existing ones, sometimes just for purely branding or default configurations. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 21:33:29 JST
Haelwenn /элвэн/ :triskell:
@wolf480pl Well I kind of count file formats and protocols with multiple crypto-algorithms as rolling your own algorithms, not just implementations.
Like what's the difference between TLS (specially ClientHello+ServerHello) and the various kinds of Diffie-Hellman in terms of security?
But if someone implements TLS and makes sure that their implementations passes the tests… Short of doing an actual audit (which seems to be barely ever done, almost nobody reads code), it's probably as good at any other TLS implementation. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 21:17:58 JST
Haelwenn /элвэн/ :triskell:
@wolf480pl Did you ever actually look at the specification for cryptographic algorithms? Because they pretty much all come with very good test vectors.
Or looked at the code of popular cryptographic libraries? Because a lot of them are downright scary and wouldn't pass an audit (remember OpenBSD reaction to OpenSSL?).
Hence why I've only ever seen serious usage of "Don't roll your own crypto" to mean "Don't make your own algorithms".
As for browsers and the like, usages should be separated *but* it should be comfortable. Because attackers will exploit your stress (check articles from people who got phished), which is where you'll choose the easiest and most immediate path, which should still be secure.
(That sadly means getting proper security on smartphones for most people) -
Embed this notice
Foone🏳️⚧️ (foone@digipres.club)'s status on Friday, 28-Mar-2025 09:07:26 JST 
Foone🏳️⚧️
So it's packaged like this:
rar inside a rar (both passworded)
containing an NSIS installer
which drops and runs a copy of electron.
the electron code is obfuscated, and encrypted. it decrypts itself on run. the encrypted code is also obfuscated.that JS code does most of the password stealing, but it drops an EXE file off the iwannaeatcats.com site, and sets it up to auto-run next boot. it also grabs the NPM package, for unknown reasons
-
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 08:12:22 JST
Haelwenn /элвэн/ :triskell:
@mirabilos @navi Pfft, and there I was more wondering if it was related to X11 :D
(wikipedia says it's marketing to go together with stuff like iOS, how boring) -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 08:06:46 JST
Haelwenn /элвэн/ :triskell:
@mirabilos @navi Apple dropped the X some years ago so I don't mean MacOS 9 by just "MacOS" but effectively MacOS 11+ (which corresponds to Apple switching to ARM). -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 08:01:52 JST
Haelwenn /элвэн/ :triskell:
@famfo Heh the solar panels looks like shovels to me :D -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 07:58:42 JST
Haelwenn /элвэн/ :triskell:
@mirabilos @navi
Must say I haven't checked the full lawsuit but wouldn't that part be obsolete since the transfer of the trademark to The Open Group?
And well MacOS still gets certified and most of it's Unix-relevant code is from BSDs. And would be quite surprising if SunOS didn't get to use the UNIX® trademark. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 07:44:46 JST
Haelwenn /элвэн/ :triskell:
@mirabilos @navi I mean UNIX®, each unixes typically already have their mascot. -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 07:43:12 JST
Haelwenn /элвэн/ :triskell:
@navi Unix should have a mascot too -
Embed this notice
Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Friday, 28-Mar-2025 07:04:38 JST
Haelwenn /элвэн/ :triskell:
@foone Sometimes I feel like npm/pypi/… really ought to have like security researchers able to run scanners and stuff at the bunch of binaries hosted there.
All GNU social JP content and data are available under the