@cstross
We absolutely did that with the native American genocides. Hell, it's mostly still taught in glowing terms.
@pettter @yogthos
Notices by Eleanor Saitta (dymaxion@infosec.exchange), page 2
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 05-Apr-2023 21:35:36 JST Eleanor Saitta -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Monday, 03-Apr-2023 20:44:50 JST Eleanor Saitta "Your work would be more useful if you did things that solve the problems the people you want to help say they have" is a sentence I feel like I shouldn't have to type as often as I do.
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 22-Mar-2023 19:16:18 JST Eleanor Saitta "This is effective" is not an argument saying that a thing is necessary, proportionate, legal, acceptable, desirable, or even that it leads to better outcomes.
Unrelated, did you know that engineers are more likely to become terrorists than any other profession, by a large margin?
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Friday, 10-Mar-2023 02:02:26 JST Eleanor Saitta @pettter
That's pride week! Couldn't possibly, sorry
@mlowdi @dekaminski @rysiek -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 21:49:37 JST Eleanor Saitta @pettter
When the choices are "devote hundreds of hours to trying to manage direct democracy for one single communication system out of a dozen I use in an ecosystem where the tooling is actively not supporting good outcomes" that's... really not great? I already run a web and email server and I'm well aware that this is already a very dumb choice, adding not-well-hardened complex, heavyweight services that I need to deal with HA for is wildly more expensive than any reasonable payment into an established instance. That's why I'm here, on a server where a bunch of my professional community is local. A bunch of small instances are also blocked any large instance, either for the mods not reading every post and instead relying on reports (laughably unscalable), or simply because they're large. Which means eventually they'll block any instance that allows people to just sign up. Fragmentation and the governance and technical structures that encourage it as a first resort are a critical vulnerability to the health of the ecosystem.
@stribika @akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 20:22:33 JST Eleanor Saitta @pettter
But it won't be, because virality exists in the context of the medium it came from, including all of the API affordances like boosts, follows, RTs, etc. If you turn it into torrents, you e.g. eliminate the possibility of someone editing or deleting a viral post, which are critical safety features. So no, it isn't easy and there basically are no shortcuts. @akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 20:01:47 JST Eleanor Saitta @pettter
In terms of power usage? A lot if those systems are going to be able to deal with content getting even mildly popular. And let's not forget that that degree of micro-federation really wildly doesn't scale, so you're not just paying the penalty of having to overspec the hardware, you're also dealing with geometrically more requests.
@akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:59:04 JST Eleanor Saitta @akareilly
Hell, create more account attribute types. Instance allowing company accounts that don't have the corporate type attribute? Sure, defederate for a clear governance violation. There are so many ways to do this properly.
@pettter -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:56:35 JST Eleanor Saitta @pettter It would be trivial to have a version of masto that maintained addressability and allowed people to see content and maintain subscriptions if they wanted to while still allowing community moderation decisions. They chose not to. This was dumb.
@akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:49:26 JST Eleanor Saitta @pettter
People collaborate with companies here? It's a tech support medium? People do work together in public? It's a lot of different things.One of the big mistakes about designing a social tool is thinking that you can dictate what your users are going to use it for. Yes, you can ban certain kinds of behavior, but there are limits to how much that will work without extraordinary mod efforts.
@akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:47:34 JST Eleanor Saitta @akareilly
Yup. Also "oh no, we have vulnerabilities! Please won't the security community we've banished help us" -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:47:32 JST Eleanor Saitta @akareilly
It's ok, we don't need the cloud, it's easy for a small company to replicate the security and reliability they need without it being much more expensive!(Sure, once you're at a hundred engineers and a thousand servers...)
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:45:17 JST Eleanor Saitta @pettter
It doesn't really stop it though? It just means you have to be very marginally more sophisticated about it? And no, I've seen it done explicitly only for the reason that an instance has corporate accounts. Likewise, government accounts. Hell, I saw eupolicy.social get defederated for "promoting European nationalism". Shit be crazy.
@akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:36:14 JST Eleanor Saitta @pettter
I don't care about them not wanting to talk to them, but the bit where the addressability of the network is destroyed by it is pretty fucking dumb. I understand the goals of the design, and I think the architecture doesn't serve them well.
@akareilly -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Wednesday, 08-Mar-2023 19:27:59 JST Eleanor Saitta @akareilly
If you're taking about defederation announcements, I think it's basically "there are companies there". A small instance I still have my alt on has defederated basically the entire security community at this point. I'm not impressed. -
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Monday, 06-Mar-2023 10:43:46 JST Eleanor Saitta I've talked about this in smaller contexts, but I haven't found any traction and time is getting short. When the Nazis passed the enabling laws for the book burning on April 8th, 1933 — exactly 90 years ago in 34 days — the first thing they burnt, the same day, were the archives of the largest trans and gay research institute in the world. When they say now that we didn't exist until after the war, the only reason they can get away with it is that they burned all the accumulated evidence.
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Saturday, 04-Mar-2023 17:24:27 JST Eleanor Saitta The EU's proposal to force all service providers to automatically search all content that is either stored or transmitted anywhere in Europe, forward all illegal results to the police, and to block access to all non-European illegal content is expected to be presented to parliament in April. It's currently focused on algorithmic identification of unknown CSAM and of any social interactions that could be child grooming — basically, an AI trying to guess if an image might be child porn or a conversation might be trying to lure a child for sex — but it's unlikely that once the capability exists it won't be expanded to other crimes. The proposal would also force all services to age check their users (which means identifying them) and effectively ban anyone under 18 from interacting with the internet. There are no exceptions for end to end encryption and stored data not being shared is included.
To be clear, this proposal is not going to work. You know how bad chatGPT is? This is trying to solve a much harder problem, one humans struggle with, with much less compute power. What it will do is end all private communication in Europe, waste an amazing amount of police time, and leak a spectacular amount of private material to local police, some of whom — looking at you Hungary and Poland — are more than happy to use it to harass queers and trans people. It is fundamentally incompatible with the basic rights the EU is legally bound to uphold. It's also, in case they care, going to be a nightmare for corporate security and intellectual property control and will create a massive barrier to entry for anyone smaller than Google or Facebook running communication services in Europe.
Please call or write your MEP today and tell them to stop #ChatControl and preserve freedom of expression in Europe.
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Friday, 24-Feb-2023 21:56:58 JST Eleanor Saitta Wow. So, an entrapment operation by Norwegian intelligence explicitly encouraged what turned out to be last year's Pride shooting. That's a genuinely shocking kind of fuck up, although it does explain why intelligence was so adamant that the parade couldn't happen the next day — because it was their fault in the first place.
https://www.vg.no/nyheter/i/venev4/den-hemmelige-operasjonen
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Friday, 24-Feb-2023 21:36:17 JST Eleanor Saitta It's always fun when you search for hardware that can handle the performance level a client needs and you get (recent) research papers instead of products.
(In this case, DPI on 100GbE)
-
Embed this notice
Eleanor Saitta (dymaxion@infosec.exchange)'s status on Monday, 13-Feb-2023 20:46:43 JST Eleanor Saitta @cstross
Yeah, same reason for me sticking to windows. It's not great, bit I had to use it for work for a decade and now I've got 20 years of infrastructure built on it.
@pettter @pluralistic