#Trump just said #Ukraine “should never have started the war” with #Russia.
Trump made the remark while deriding Ukrainian President Volodymyr #Zelenskyy, whose country was invaded by Russia in February 2022.
This guy is a #liar & an #idiot.
#geopolitics #authoritarianism #autocracy #idiocracy
nbcnews.com/politics/donald-tr…
Trump says Ukraine 'should have never started it' in comments about war with Russia
The president made the remark while deriding Ukrainian President Volodymyr Zelenskyy, whose country was invaded by Russia in February 2022.Zoë Richards (NBC News)
Lapo Luchini likes this.
reshared this
⭐ Everyone Knows Your Location timsh.org/tracking-myself-down…
We all kind of know this but seeing it laid out with examples is something else
∞ rknight.me/links/everyone-know…
Everyone knows your location
Recently I read about a massive geolocation data leak from Gravy Analytics, which exposed more than 2000 apps, both in AppStore and Google Play, that secretly collect geolocation data without user consent.tim (tim.sh)
Lapo Luchini likes this.
reshared this
According to all known laws of DNS, there is no way a fedi instance could be hosted on an .ARPA domain.
Even if you get ahold of a domain like this, it should only be used for PTR records - right?
The instance, of course, federates anyway - because DNS doesn't care what humans think is impossible.
Lapo Luchini likes this.
reshared this
Noam Chomsky offers a thought for your weekend.... as in the Court of the Tangerine Tyrant they yell 'drill baby drill'!
Lapo Luchini likes this.
reshared this
On Unix and gaming and SIGINFO
I used #Linux a bit in the days when Slackware was recent, then a friend of mine suggested #FreeBSD (4.7 at the time) and it was love at first sight. After that day, I used FreeBSD on all the servers I am the admin of, and also on my office desktop PC. Still very happy about my choice.
At home, on the other hand, I always needed to keep Windows to cater my gaming habit (no, I don't like dual booting at all, as I often game for a short time while keeping tens of other programs open and ready to use afterwards). Resorting to CygWin to have Unix tools, which I later substituted with WSL 1 (WSL 2 doesn't properly support IPv6 and also it occupies Hyper-V and thus forces VirtualBox in "turtle mode", so it is a no go for me), happily enough for a couple of decades.
Enter Steam creating Proton (out of Wine), making gaming on Linux a common and accessible thing almost overnight (of course it was possible for a long time already, but mostly retro-gaming and via emulators).
So, as an experiment, in the desktop PC I keep at my significant other's home I decided to try and avoid Windows… I tried FreeBSD for a couple of days, but running Proton on my nVidia 1070 card was very difficult (if at all possilble, I wonder) so, contrary to my convictions, I tried Arch Linux (mainly because it is the one Steam Deck is based on, and the fact that AUR is very similar to the FreeBSD Ports I love and use daily) and… even if #ZFS (I filesystem I cannot do without, ever) is not officially supported and using it via DKMS is a bit of an hack, that only took me 2 hours to conquer and from there it was all much smooth and easier that I dared dream. In only a couple more hours I had everything working at first try, all "by default" and with no need for extra configuration, including things like: nVidia with 3D and CUDA support, USB webcam, Wi-Fi printer/scanner, Bluetooth USB dongle.
I am impressed. 2024 might really be the "Linux on desktop year" as some say, for sure it was for me (at least in this PC, I'm still not migrating the existing Windows setup for now — but someday I will).
Now, ironically, the thing I feel absence mostly is control-T support in the terminal, which on BSD sends a SIGINFO which makes most programs print a status report on stderr. It is something that on Linux wasn't included "mostly out of laziness" as reported by Theodore Ts'o in 2014, but is still missing.
I am of course using FreeBSD on all the servers and hoping that FreeBSD will catch up on ease of use on the desktop to change to it again, but right now… I like using Linux better than Windows+WSL. 
Tech Cyborg reshared this.
Lapo Luchini likes this.
reshared this
Lapo Luchini likes this.
reshared this
Lapo Luchini likes this.
reshared this
Pi in the Pentium: reverse-engineering the constants in its floating-point unit
Intel released the powerful Pentium processor in 1993, establishing a long-running brand of high-performance processors. 1 The Pentium incl...www.righto.com
Lapo Luchini likes this.
Lapo Luchini likes this.
reshared this
#SQLite is the most deployed and most used database. There are over one trillion SQLite databases in active use.
It is maintained by three people. They don’t allow outside contributions.
avi.im/blag/2024/sqlite-facts/
Collection of insane and fun facts about SQLite - blag
Some of the interesting and insane facts I learned about SQLiteavi.im
Lapo Luchini likes this.
reshared this
Oh wow
From: @blainsmith
fosstodon.org/@blainsmith/1137…
Blain Smith (@blainsmith@fosstodon.org)
Collection of insane and fun facts about SQLite https://avi.im/blag/2024/sqlite-facts/ #SQLiteFosstodon
Lapo Luchini likes this.
reshared this
Lapo Luchini likes this.
Lapo Luchini reshared this.
Lapo Luchini likes this.
Lapo Luchini reshared this.
"Lights Out: Covertly turning off the ThinkPad webcam LED indicator":
powerofcommunity.net/poc2024/A…
(A 150-slide PowerPoint presentation converted to PDF - but, seriously, folks, check it out. This is NSA-level shit.)
Lapo Luchini likes this.
reshared this
Lapo Luchini likes this.
Time-lapse of the Sun circling the horizon at the South Pole during early March.
Video credit: Robert Schwarz
Source: vimeo.com/208466944
What does the sun do at the Pole !?
Only at the Pole - the sun circles around the horizon in 24h here is a time-lapse of nearly 5 days from March 08-13, 2017. So only a few days until sunset so in…Vimeo
Lapo Luchini likes this.
reshared this
How decentralized is Bluesky really? - by @cwebber
like this
reshared this
Future of Mozilla (and) Firefox
… but I am also more and more worried each and every time a new article about #Mozilla hits the news. 😞
(I look forward to #Servo too, but that's a partly different issue)
Matteꙮ Italia reshared this.
Lapo Luchini likes this.
reshared this
In my experience, most people model security issues as broken windows or loose locks, something easily fixed with some care and attention.
On the other hand, most security issues are better modelled as missing structural beams or sinking foundations, flaws that compromise the integrity of the entire structure and the safety people around and within.
Lapo Luchini likes this.
reshared this
Security design sometimes seems like a "Unwinnable by Design" scenario in a game where an early incorrect choice leads to a situation where it's impossible to win or rectify conditions in order to win.
Having to start all over from the ground up is rarely favored by management
Investors favor just patches that build technical debt & postpone the inevitable pain of the next data breach, system crash, or ransomware hack.
rustls outperforms OpenSSL and BoringSSL.
Security and performance: pick two!
memorysafety.org/blog/rustls-p…
Rustls Outperforms OpenSSL and BoringSSL
ISRG has been investing heavily in the Rustls TLS library over the past few years. Our goal is to create a library that is both memory safe and a leader in performance.www.memorysafety.org
Lapo Luchini likes this.
reshared this
Lapo Luchini likes this.
Lapo Luchini reshared this.
The Archive is back! (In read only mode). Get to the things you love, and we will continue our quest to be dependable, clean up the mess left behind, and be there for you.
Lapo Luchini likes this.
reshared this
LLMs can’t perform “genuine logical reasoning,” Apple researchers suggest
Irrelevant red herrings lead to "catastrophic" failure of logical inference.
arstechnica.com/ai/2024/10/llm…
LLMs can’t perform “genuine logical reasoning,” Apple researchers suggest
Irrelevant red herrings lead to “catastrophic” failure of logical inference.Kyle Orland (Ars Technica)
Lapo Luchini likes this.
Lapo Luchini reshared this.
There is a lot of alarmist stuff going around about .io ccTLD being "retired", fedi instances that use it having to move, etc. 👀
Keep calm. Here's the one thing you need to know about this right now:
👉 Even if .io ever gets "retired", it will take *years* for this to affect already delegated .io domains in any way at all.
I cannot stress this enough, we are talking years if not decades.
Soviet Union dissolved 33 years ago, but .su domains still resolve.
Deep breaths.
Carry on.
Lapo Luchini likes this.
reshared this
@fasnix
When I decided to use a .tv domain, I investigated to find out where that is and where the money is going: Island nation of Tuvalu -- a good deal for an atoll in an age of sea level rise.
I wonder if, similarly, the just thing to do with io wouldn't be to transfer the entirety of the (very profitable?) domain ownership to the displaced/repatriated islanders. Sounds like they could use the money.
🤔
@fasnix the context was people freaking out in my timeline that their fedi instances might disappear any day because of that.
And the point was to calm people down and remove some stress, as this is going to take years.
Just in case you need a NodeJS script to sort extended #ZSH history which doesn't break on multi-line entries:
#! /usr/bin/env node
const fs = require('fs');
const lines = fs.readFileSync(process.argv[2], 'utf8').split(/(?<=[^\\])\n/);
lines.sort((a, b) => a.split(/:/)[1] - b.split(/:/)[1]);
fs.writeFileSync(process.argv[2], lines.join('\n'), 'utf8');
Sort extended ZSH history (works with multi-line entries)
Sort extended ZSH history (works with multi-line entries) - zsh_history_sort.jsGist
In principle I could even see myself supporting Mozilla's advertising thing.
It would not be a bad idea, in general, to have a privacy-preserving, ethical advertising network. It would serve as an alternative for vendors, and as an example to regulators that this is possible – and that banning targeted advertising can be done without hurting organizations that rely on ads to stay afloat.
Problem is, I don't trust Mozilla to hold up their side of this.
I used to, but not anymore.
Lapo Luchini likes this.
Lapo Luchini reshared this.
@BassRck5000 I'm not ignoring it, I just think that i prefer a lesser evil over more ones who've lost their moral compas decades ago.
Not agreeing with you, doesn't make me ignorant. It just means I evaluate it differently.
@dynom @BassRck5000 it's not about agreeing or not, it's about throwing around clichés like "running a profit is not a bad thing".
And I did not call you ignorant. I said you seem to be ignoring the context. That's a different thing, please don't twist my words like that.
OUTDATED⚠️
Mozilla bought the Android email app K-9 (which didn’t include any trackers) and integrated trackers as part of #Mozilla‘s rebranding under the #Thunderbird name.
They even made it opt-out instead of opt-in. Their defense for breaking the law: ”we wouldn’t have enough data if we obeyed the law.“
It doesn’t matter whether you ”anonymized“ the data or not: If you want to extract data from someone’s device to yours, you may do so only if they knowingly consented.
sigmoid.social/@davidculley/11…
Gibt sogar ein GitHub-Issue dazu. Money quote:»Unfortunately we cannot make this type of data collection opt-in because the limited data from voluntary reports wouldn’t provide enough insights to make informed product decisions. Opt-in data would come from a small, biased subset, leading to flawed conclusions.«
Datenschutz und Einwilligungen sind grundlegende Rechte der Nutzer, die respektiert werden müssen, selbst wenn dies die Datenerhebung erschwert.
github.com/thunderbird/thunder…
Expose the ability to mange Telemetry settings on first-time use · Issue #8199 · thunderbird/thunderbird-android
Checklist I have used the search function to see if someone else has already submitted the same bug report. I will describe the problem with as much detail as possible. App version 8.0b1 Where did ...GitHub
reshared this
Why laptop support, why now: FreeBSD’s strategic move toward broader adoption | FreeBSD Foundation
FreeBSD has long been a top choice for IT professionals and organizations focused on servers and networking, and it is known for its unmatched stability, performance, and security.Drew Gurkowski (FreeBSD Foundation)
Lapo Luchini likes this.
Lapo Luchini reshared this.
Around 2000, humankind split into two groups:
One who was convinced it needed expensive Content Management Systems to keep office documents.
And the other who had an unprecedented productive, global collaboration with repositories and text files.💁♂️
Lapo Luchini likes this.
Lapo Luchini reshared this.
I read that the official Mastodon instance of the Swiss government will be closing down.
They say there are few active users, low engagement, and minimal interaction, which seems quite plausible. Additionally, they claim that "on platforms like X or Instagram, the Federal Council and the Federal Administration have many more followers." I believe that too, of course.
However, I do not agree with their decision. I think a government shouldn’t be overly concerned about follower counts and interactions, but rather about providing free, autonomous communication that is independent of third-party companies. In my view, a government shouldn’t operate like a business focused on "numbers."
Still, I appreciate their experiment - many governments, like the Italian one, haven’t even tried.
Regarding costs and management effort: an instance with 5 users and 3,500 followers (numbers provided by them) can run on a VPS for €3 a month and doesn't require heavy moderation. The cost for them is nearly zero. Yet, the freedom of information and discussion, especially for a Neutral Country, should always be a priority.
I believe that maintaining control over one’s information channels is crucial, especially in today's world. But, I fear that decision-makers only consider the numbers, which often favor the flashiest - but worse - solutions.
Encouraging citizens to use closed platforms is, in my opinion, a wrong choice.
Thanks to the Swiss government for at least giving it a shot.
admin.ch/gov/it/pagina-inizial…
#Mastodon #FreedomOfSpeech #Switzerland #Fediverse #SocialNetworks
La Confederazione chiude la sua istanza su Mastodon
Aktuelle Informationen aus der Verwaltung. Alle Medienmitteilungen der Bundesverwaltung, der Departemente und Ämter.www.admin.ch
Lapo Luchini likes this.
reshared this
«I think a government shouldn’t be overly concerned about follower counts and interactions, but rather about providing free, autonomous communication that is independent of third-party companies. In my view, a government shouldn’t operate like a business focused on "numbers."»
Absolutely 👏
Exactly this. A closed platform should never be supported; Facebook and Twitter are now severely limited of you don't hav an account, to thr point where most posts are not viewable. "But creating an account is free" is not the solution, obviously.
They missed the point there, I think, and as stated they didn't really push it in any form.
CC: @stefano@bsd.cafe
"What were you asked, and offered?" the dragon said.
"To drive you off, to receive the hand of the princess and half the kingdom," the knight replied.
"Very well, I'll go."
"Wait, what?"
"There once was a huge empire, that was halved..." The dragon laughed. "I'll go. For now."
Lapo Luchini likes this.
Lapo Luchini reshared this.
Lapo Luchini likes this.
reshared this
And they did it in TLS as well:
openssl s_client -connect signed.bad.horse:443 -servername signed.bad.horse
Lapo Luchini likes this.
JavaScript™
Oracle, it's time to free the JavaScript trademark. Join us in asking Oracle to release the trademark, and helping us file a Petition for Trademark Cancellation with the USPTO.JavaScript™
Lapo Luchini likes this.
reshared this
Hey folks, so the Quantum Witch demo has been released :) It lets you explore a few locations from the beginning of the story, and even get up to the first big story event!
I hope you enjoy it, and all boosts and very appreciated :)
store.steampowered.com/app/310…
Quantum Witch on Steam
Wake up lovely, you've got things to do! First, find your lost flock of faer. Then find your wife, she'd look so cute wearing that flower you found. And if you have time, attack and dethrone god. Ok? Don't worry about that portal.store.steampowered.com
reshared this
often frowned upon
in reply to domi (networking witch) • • •somehow it's more suprising to me that it's on cloudflare.
(which also means it doesn't actually point to that address and has A records too. loving it.)
domi (networking witch)
in reply to often frowned upon • • •my page is at meow.6.0.0.8.0.0.b.e.d.0.a.2.i… w/o cloudflare. I'm using CF here because that's the only way I found to get TLS certificates - all providers I tried either crashed after domain verification or disallowed it from the start.
I would genuinely pay for a TLS cert if I had the guarantee that their UI wouldn't crash on me after payment
sdomi's webpage
meow.6.0.0.8.0.0.b.e.d.0.a.2.ip6.arpaoften frowned upon
in reply to domi (networking witch) • • •given how many things broke when I was setting up 2038.host and .io (a totally sane and valid domain name that wasn't meant to break anything) I'm surprised you got anything working.
I bet if anyone at CF learns about it they'll be surprised it works.
domi (networking witch)
in reply to often frowned upon • • •crt.sh | ip6.arpa
crt.shdomi (networking witch)
in reply to often frowned upon • • •crt.sh | ip6.arpa
crt.shClemens reshared this.
likeable animal, the server
in reply to domi (networking witch) • • •domi (networking witch)
in reply to likeable animal, the server • • •Michael Lucas
in reply to domi (networking witch) • • •Jessie Nabein
in reply to domi (networking witch) • • •Haelwenn /элвэн/
in reply to Jessie Nabein • • •domi (networking witch)
in reply to Haelwenn /элвэн/ • • •yes, i asked my ISP really nicely and they delegated it to me :3c
i love bgp.wtf/ they're the best
bgp.wtf
bgp.wtfHaelwenn /элвэн/
in reply to domi (networking witch) • • •domi (networking witch)
in reply to Haelwenn /элвэн/ • • •yeah, I haven't found another sure-working way for ARPA domains. considering buying a TLS certificate for it, but every place wants the domain name *after* I pay, not before, so it comes with a risk of being rejected :(
I'll likely write up all my shenanigans with this in some blogpost next month or so ^^
Michael Lucas
in reply to domi (networking witch) • • •please do write this up!
I started poking at what it would take to put a web site at 3.82.139.23.in-addr.arpa. Seems like there's a lot of annoying footgun protection here...
achill
in reply to domi (networking witch) • • •domi (networking witch)
in reply to achill • • •Jannis
in reply to domi (networking witch) • • •domi (networking witch)
in reply to Jannis • • •regretful devops
in reply to domi (networking witch) • • •Forgive me I'm 12 and what is this?
I've clearly stumbled into something *way* over my head
Michael Lucas
in reply to regretful devops • • •basic DNS has two "modes:" map names to IP (forward), and map IP to name (reverse).
Web sites use forward DNS. Always. That's why we have DNS, so you can remember a hostname rather than a horrible hex string.
@domi has beat on things until we can use a reverse DNS lookup to find a web site.
regretful devops
in reply to Michael Lucas • • •@domi
Michael Lucas
in reply to regretful devops • • •GaySteve🏳️🌈
in reply to domi (networking witch) • • •See rfc 3172. .arpa domain is not usable within public infrastructure for typical forward name resolution - theatrically though you could run an entirely private DNS infrastructure using any tld you wanted. However, bridging this with public infrastructure would require some kind of bridge translation at the edges. Also, pedantically speaking, public fedi instances are hosted within the .in-addr.arpa zones - just not for forward lookups.
rfc-editor.org/rfc/rfc3172
RFC 3172: Management Guidelines & Operational Requirements for the Address and Routing Parameter Area Domain ("arpa")
www.rfc-editor.orgdomi (networking witch)
in reply to GaySteve🏳️🌈 • • •Pa
in reply to domi (networking witch) • • •Sensitive content
domi (networking witch)
in reply to Pa • • •it's a static IP, I have that range on my agreement :3
2a0d:eb00:8006::/48 for lyfe
artemist
in reply to domi (networking witch) • • •famfo (Ipv6 A record edition)
in reply to artemist • • •artemist
in reply to famfo (Ipv6 A record edition) • • •April The Pink ⋆☾╶⃝⃤☽⋆
in reply to artemist • • •i alr tried with DE. we can get one, technically, it would cost probably more than 100€ depending on what a registrar charges us, cause id be manual labour. see my infodumping over at donotsta.re/notice/AqaEz7hlSmy…
i dont wanna discuss my strategy publicly but im up for sharing my knowledge on who to ask, in DMs. its not forbidden, i just dont want any Registrar to try to capitalise off of it.
April The Pink ⋆☾╶⃝⃤☽⋆ (@april@donotsta.re)
donotsta.redomi (networking witch)
in reply to April The Pink ⋆☾╶⃝⃤☽⋆ • • •April The Pink ⋆☾╶⃝⃤☽⋆
in reply to domi (networking witch) • • •domi (networking witch)
in reply to April The Pink ⋆☾╶⃝⃤☽⋆ • • •Michael Lucas
Unknown parent • • •Pète-o-Roskai
in reply to domi (networking witch) • • •Pète-o-Roskai
in reply to Pète-o-Roskai • • •famfo (Ipv6 A record edition)
in reply to Pète-o-Roskai • • •Pète-o-Roskai
in reply to famfo (Ipv6 A record edition) • • •domi (networking witch)
in reply to Pète-o-Roskai • • •Michael Lucas
Unknown parent • • •YOU CAN????
Huh. I guess it works, thank you.
🆘Bill Cole 🇺🇦
in reply to domi (networking witch) • • •Buttered Jorts
in reply to domi (networking witch) • • •remmy
Unknown parent • • •Benjamin Sonntag-King
in reply to domi (networking witch) • • •Thanks for the idea!
Works perfectly from here :)
I want to test this even further on something like
whynot.32.34.185.in-addr.arpa
Because since we have a NS delegation this should work, right?
(I am just not sure if the RIPE forbid using those for anything else than IP and PTR...)
domi (networking witch)
in reply to Benjamin Sonntag-King • • •remmy
Unknown parent • • •Elias Mårtenson
in reply to domi (networking witch) • • •Lauren Weinstein
in reply to Elias Mårtenson • • •Richard Levitte
in reply to Lauren Weinstein • • •Bah. All that happens is that you get a bidirectional self-referencing host. Nothing to see.
But, it's not very helpful for humans....
Richard Levitte
in reply to Richard Levitte • • •Karl Fredrik
in reply to domi (networking witch) • • •domi (networking witch)
in reply to Karl Fredrik • • •Leszek
in reply to Karl Fredrik • • •Karl Fredrik
in reply to Leszek • • •fun fact, LE won't give you a cert for .arpa -- very few actially will. LE cites[0] an RFC[1] for this decision,
> In particular, the "arpa" domain is not to be used in the same manner (e.g., for naming hosts) as other generic Top Level Domains are commonly used.
No RFC2119 keywords are used in this recommendation, though, and nothing strictly forbidding experimentation.
[0] community.letsencrypt.org/t/ex…
[1] datatracker.ietf.org/doc/html/…
Exemption for rDNS (ip6.arpa) domain
Let's Encrypt Community Supportdomi (networking witch)
in reply to Karl Fredrik • • •oh, you actually managed to find an RFC that suggests against this! I tried and came up empty before.
wrt LE - it at least errors out properly! i've tried a variety of other certificate providers and most of them have errored out in a terrible, unverbose manner. I'm describing this in detail in my upcoming blogpost.