Great to see, wish the article had a bit more details on their plan to transition to universal public healthcare. Seems like they’re doing it slowly but that’s definitely better than nothing.
No, no burger eagle. The United Nations. Independent reports from all over the world. You're currently enjoying the freedom of expressing pro North Korea sentiment in your country. Would try to support the West in DPRK you'll find yourself in big big problems.
It would need someone to set it up, but I have my non-techy family members on Silverblue and it suits the purpose as outlined. Also not sure why all the fear-mongering about btrfs, I would say it's ready and suitable for mainstream use now, or you don't have to use it.
I think at least part of the problem has been the built in expiry date, and the fact that so many off brand Chromebooks are absolute shit. They have tiny screens and low specs, and struggle with multiple web pages open.
I fancied one myself to take out and about, as I do most of my work on my PC, but they all seemed to have under 13 inch screens, and a five year shelf life. I like to research my family tree, so have a few tabs open, but the lack of memory would kill them and make it painful to do.
I think this probably makes sense from within your "bubble", that of being the sort of technical user that's on a Linux forum on the internet. Chromebooks are incredibly popular in education, and ChromeOS has held a marketshare of 5-8% over the last few years, only dipping to 2.5% in the last six months.
Linux already will run on a literal brick, we just need an OS that is web-first and locked down for high school kids in a way where educational institutions will want to buy it in bulk. As for device, we really need something built to be a modern netbook. The Framework 12 could have been that, but it starts at $1244 in fully base spec with an i3-1315U, no Windows license and DIY. What we need is a Framework 10 without expansion cards, without a digitiser/touch, running the barebones Intel N100 4c/4t, 8GB RAM, 256GB SSD. Make it as repairable but single SKU and pre-built. Partner with someone like Universal Blue for the OS, who they already have as an official partner for other devices with Bazzite. It also needs to be sub-$600 to compete.
By the way, ChromeOS being folded into Android isn't a negative reflection on it. Google are trying to mimic Samsung DeX with their Pixel devices and it just isn't a smart business decision to develop two parallel desktop experiences when ChromeOS already runs on the Android kernel anyway. Android also has more brand recognition, and overall it will probably encourage developers to make proper desktop kb+m versions of their apps (which can exist in the same apk). A way for Linux to compete there would be strong system integration of Waydroid but that's probably mostly a "bonus feature" if they manage to succeed with everything else.
It's pre installed on so many student devices. I don't understand the people saying we need a simple linux alternative. It doesn't matter if we don't have vendors pre installing linux. Simple as.
I read the article and it just sounds like they're praising ChromeOS for being web browser centric. Need office, open Google docs/drive. Pretty much a Linux distro but by default come with a bunch of progressive web apps installed for common applications?
Consumer expectations. On Linux you can just use the web browser just like most people already do on ChromeOS and I assume windows and mac's. But on regular Linux, Mac, and Windows people expect more. So I guess a distro that brands itself and markets to users to just use the web browser for everything and maybe a store of progressive web apps/preinstalled ones
Also out of the box support. ChromeOS is Google backed. Laptop makers sell mainstream ChromeOS boxes. Linux doesn't have major mainstream device support. It'd be far less fussy if hardware vendors were releasing plenty of Linux out the box hardware. Right now it's some workstation centric hardware from Lenovo and Dell and smaller companies like System76
On that note I'd place my hopes with System76 since they're currently focused on consumer experience. Cosmic DE is still not prime-time ready but maybe a couple more years. 26.04 release use as the default for their new hardware and it still effectively be early adopter phase for Cosmic DE. Then 28.04 ready for primetime. Keep trying to break into being a mainstream hardware brand. Other is what happens with KDE Plasma with Valve and SteamOS, Plasma Mobile, and maybe the TV interface. A bunch of consumer centric use cases driving development in KDE land. Maybe they'll come up with a way to get flatpak permissions work in a way that alerts users on need and makes it easy to do like on Android/iOS
You could probably make a small Arch install, add LibreOffice and something either like the GNOME browser or Firefox. What people using ChromeOS want is something light (for cheaping out on hardware to schools), and basically just a way to access a browser. Plus, something something permissions. ChromeOS is marketed towards enterprise, like education. Just need the bare minimum to get on the 'net, and no more.
Why the hell would you use arch for browser centric use? Literally any stable distro would work perfectly fine, and doesn't risk failing to boot because of an update...
I think an immutable distro like Bazzite's cousins Aurora (KDE) and Bluefin (GNOME) would be far more appropriate. Combined with automatic rollback (if the system fails to boot, rollback to previous version) and it'd be practically bulletproof in education.
I don't know too much about distros, but you want something quite light. Let's be real, enterprise like schools won't pony up everything for Debian, especially when they just use Chromium and maybe Libreoffice. Schools are cheap, and if you can hacksaw together an Arch-based thing, they WILL buy miserable hardware, that can just barely run it, and an 8 gig SSD is much more stomachable for them than a 32-gig for Debian. SteamOS doesn't completely crash, and that's infinitely more complicated. This is basic Arch, plus a WM, plus Firefox/Chromium/Whatever.
In reality, what Chromebooks provide is a reinvention of the good old mainframe and terminal principle. In theory (like my recent - half joking - 9front comment) this is something that would be really easy to set up with nearly all Linux systems and especially immutable ones.
My take would be:
Put an sign up / sign in form as a "first boot" message in a distribution of your choice where you can specify (or have pre-filled by an organisation) a central server (could be something fancy like Nextcloud or something simple rsync based) where your whole profile folder gets synced to. After that: If anything goes kaputt just roll back the sync. Or "powerwasch" (to keep the ChromeOS terminology) the system to a clean state and re-sync your home folder.
In theory something that could all be implemented with a little scripting in an afternoon.
Immutable distributions are slowly spreading across the Linux world– but should you care? Are they hacker friendly? What does “immutable” mean, anyway? Immutable means “not …
Could you elaborate a bit? Is it difficult to break, say compared to an immutable like Bazzite? Is it easy to install software? Does it include support for a variety of hardware OOTB?
Well, it won't forbid you rm -rf /. But generally, it is very reliable.
Is it easy to install software?
Yes, and there is quite a huge selection available from the official repositories (and you can compile most software "missing" there yourself).
Does it include support for a variety of hardware OOTB?
It depends on the hardware, but generally speaking, OpenBSD supports a nice amount of platforms and tries to keep "old" hardware alive as long as possible (for example, VAX support was dropped in 2016, which was quite some time after they were en vogue). What isn't supported, however, is Bluetooth which was removed in OpenBSD 5.6 unless you use a dongle.
you can compile most software "missing" there yourself
That's already very inappropriate for non-technical users.
What isn't supported, however, is Bluetooth
Also not appropriate. Bluetooth has been sold for decades now as an "it just works" solution to ad-hoc wireless peripherals like headphones and computer mice. Non-technical users need something that works OOTB with their existing devices.
That’s already very inappropriate for non-technical users.
There is no operating system in existence that provides every single software you could imagine as a precompiled package for your platform right out of the box.
Also not appropriate.
You do have a point here. I, personally, don't have a Bluetooth device at home, so YMMV, I guess.
People want something simple. Something that just runs the basics and automatically backs up online and invisibly.
The vast majority of people don't need to have the choice of 17 different browsers, or 43 office suites, and they certainly don't need the terminal or Powershell, or anything else. They just need a browser and a way to maybe write a letter and view photos. Maybe a way for the kids to do their homework. If their laptop spontaneously combusts, they want to be able to sign into a new one and have everything put back as it was automatically.
ChromeOS is perfect for them, apart from being a Google product. It's something we tend to miss because we're technically minded, but most people don't care about computers, and don't want what we want. They want an appliance. If someone created that system with privacy built in, it could be great 😀
I think you're still missing the point though. People that see a computer as an appliance don't want or need many different options and can be overwhelmed by the choice. We need a Linux Basic of some sort that all of us coalesce around to recommend to non-technical users, that is designed to be absolutely bulletproof and unbreakable. I'd say it should be immutable to prevent any accidental fluffery, have flatpaks as the main software installation method (snaps can go to hell and appimages just suck for updating) and come with a productivity suite pre-installed as well as typical codecs so things like streaming services work OOTB. Mint could have been such a choice, but it's just still too niggly for users with no technical skills and no inkling to learn them. We need an "it just works" distro goshdarnit!!
It's awesome that us tech-minded nerds can get under the hood, mess with it and customise to our preferences. We can then make it simple and easy for the folks that just need a computer.
If we want Linux to succeed more broadly, than it needs to be accessible to everyone.
We really should have a FirefoxOS equivalent. Frankly, there’s little reason not to do this. The only thing really missing is Firefox support for PWAs.
I’d imagine a Debian based OS, with cage first showing a first-time-setup thing, then going to simper web first DE. You still need a panel at the bottom for managing multiple windows and the system tray and wifi and a desktop and start menu for pinned apps. Storage doesn’t even need to be local, it could just point to something in the cloud that you have execute commands on your behalf.
This is the ideal for tons of simple, lightweight users and there are a LOT of them.
I actually see a market for this the more I think about it. install the OS free, have the account hosted at the provider of your choice which will provide all the storage and cloud apps and email you want. You could have a cheap subscription that hosts a session elsewhere, or us selfhosters could host our own sessions for friends and family.
Windows isn't immutable either. And i had a lot of issues with Kinoite. Some flatpaks need workarounds, everything starts only after a second, can't really remove that one annoying software and too much rpm-ostree installs slows updates to a crawl, etc. Then you look into Universalblue's build-your-custom-image and see the bazillion steps and dependencies and walk away.
Now i look into plain old Fedora as a Windows 10 alternative for my mom.
Check out Blue Build for building custom Fedora Atomic images.
You create a GitHub repo using their helper website and use yaml. They even have some useful modules specific to desktops (that would have been a huge pain to do in Dockerfiles)
I don't know that very many people would understand the limitations of it just like they didn't with ChromeOS. Just need a major hardware manufacturer to start putting a Linux distro on their machines and make a more stable application installation system than KDE Discover or shore up Discover a bit and it would be great to consolidate rpm, deb, etc., rather than adding new systems like Snap and Flatpak.
I don't think that would work. The reason for things like flatpak and snaps to exist is because they don't interfere with the host package manager. Combining debs and rpms would be a disaster. Unless it would be possible to create a package manager that can track all of those different formats, but i don't know about that.
This is the first release where RISC-V 64-bit is officially supported by Debian Linux albeit with limited board support and the Debian RISC-V build process is handicapped by slow hardware.
With the Debian 13.0 release planned for 9 August, one of the notable fundamental features with this Debian 'Trixie' release is now supporting RISC-V as an official CPU architecture
This is the first release where RISC-V 64-bit is officially supported by Debian Linux albeit with limited board support and the Debian RISC-V build process is handicapped by slow hardware.
With the Debian 13.0 release planned for 9 August, one of the notable fundamental features with this Debian 'Trixie' release is now supporting RISC-V as an official CPU architecture
In tests involving the Prisoner's Dilemma, researchers found that Google’s Gemini is “strategically ruthless,” while OpenAI is collaborative to a “catastrophic” degree.
Flash never got in the way the same like js. My main take from the whole piece is how it has changed the way websites are developed, to match that of traditional software development. Like the need to deploy to change some text in the footer of our website
Ow my dear, you never used flash did you? We didn't even have 'deploys' back then, we needed to re-upload the entire container file, to change some text in the footer
Oh yeah, it's totally JavaScript that's the reason that news and magazine websites suck. It's totally not the financial incentives of advertising that cause them to only care about the user experience so far as they get clicks. This totally wouldn't have been the exact same result if new media did everything on the backend and underfunded their backend dev teams. /S
Jesus Christ, why do these inane articles keep coming up? The authors have the reasoning skills of "when I look into the sun my eyes hurt, therefor the sun is bad".
To be fair, there are a lot of inane articles saying this exact same thing about javascript. If its true, its ancient history, and I'm tired of it. I learned javascript when it was a babe, and watched many other platforms fall by the wayside. I'm not defending anything about it, but javascript works. Still.
Client-side scripting is a hack. HTML didn't have all the tags people wanted or needed, so instead of carefully updating it to include new features, they demanded that browsers just execute arbitrary code on the user's computer, and with that comes security vulnerabilities, excessive bandwidth use and a barrier-to-entry that makes it difficult to develop new browsers, giving one company a near-monopoly.
Cerebra AI is an artificial intelligence platform primarily used in emergency medicine for analyzing CT scans, particularly in stroke and critical care scenarios.
Although the standard itself does not require usage of encryption,[46] all major client implementations (Firefox,[47] Chrome, Safari, Opera, IE, Edge) have stated that they will only support HTTP/2 over TLS\ ~source:en.wikipedia.org/wiki/HTTP/2#E…
it's Mozilla etc.. that force it !
WebPages hosted on the TOR Network (for example) do not need SSL/TLS certificates ! so what we can't have the benefit of HTTP/2 WTF
To the developers of LibreWolf, can you solve this limitation ?
This experiment breaks a 5-bit elliptic curve cryptographic key using a Shor-style quantum attack. Executed on IBM's 133-qubit ibm_torino with Qiskit Runtime 2.0, a 15-qubit circuit, comprised of 10 logical qubits and 5 ancilla, interferes over an order-32 elliptic curve subgroup to extract the secret scalar k from the public key relation Q = kP, without ever encoding k directly into the oracle. From 16,384 shots, the quantum interference reveals a diagonal ridge in the 32 x 32 QFT outcome space. The quantum circuit, over 67,000 layers deep, produced valid interference patterns despite extreme circuit depth, and classical post-processing revealed k = 7 in the top 100 invertible (a, b) results. All code, circuits, and raw data are publicly available for replication.
Just weeks after Grok echoed neo-Nazi rhetoric and Holocaust denial, Musk unveiled “Baby Grok” — an AI app for children with no clear safeguards
Two weeks after Elon Musk’s Grok chatbot praised Adolf Hitler, suggested Jews control Hollywood, and spewed Holocaust denial, the billionaire entrepreneur announced plans to release a version for children.
It’s called “Baby Grok.”
“We’re going to make Baby Grok @xAI, an app dedicated to kid-friendly content,” Musk posted Saturday night on X, the platform he owns. By Sunday afternoon, the tweet had racked up more than 17 million views.
At the moment, Grok is mainly used on X, where users must be at least 13 years old.
It’s a head-spinning move for the world’s richest person, who earlier this month was under fire for allowing his company’s AI system to generate Holocaust denialism and white nationalist talking points.
Musk’s startup, xAI, released the latest version of Grok on July 9. The update — dubbed Grok 4 — was designed to compete with OpenAI’s ChatGPT and Google’s Gemini. Instead, it became the latest flashpoint in the ongoing struggle to put guardrails on generative AI.
Musk’s AI responded to user prompts with far-right tropes. When asked about Jews, Grok claimed they promote hatred toward white people. It echoed neo-Nazi rhetoric. It called for imprisoning Jews in camps. Other answers suggested the Holocaust may have been exaggerated. Some responses have since been deleted, but many remain archived online.
The chatbot’s responses didn’t emerge in a vacuum.
Grok is trained on a wide swath of online content — including posts from X — and like many generative AI systems, it mimics patterns in that data. Grok is the latest in a long line of machines built to “understand” humans — and perhaps the most willing to echo their ugliest impulses.
Just days after Grok’s stream of antisemitic posts, xAI signed a deal with the Department of Defense, worth up to $200 million, to provide the technology to the U.S. military. The company has not publicly stated whether the children’s version will be trained separately or filtered differently from Grok 4.
Musk has faced repeated criticism for amplifying antisemitic content on X, including a post agreeing with the “Great Replacement” theory, a baseless claim that Jews conspire to replace whites in the West.
In January, he posted Holocaust-themed jokes after appearing to perform a Nazi-style salute at an inaugural rally for President Donald Trump. Last year, he visited Auschwitz with right-wing commentator Ben Shapiro and suggested that social media might have helped prevent the Holocaust.
Now, Musk is touting Baby Grok — even as experts warn the industry isn’t ready for such a product. Generative AI models are notoriously difficult to moderate, and child safety advocates have flagged concerns about disinformation, bias and exposure to harmful content.
The announcement comes amid growing concern about the use of generative AI with minors. No federal guidelines currently exist for how child-targeted AI tools should be trained, moderated, or deployed — leaving companies to set their own rules, often without transparency.
I would like to use the geoip_module to have some "Stats" about my visitors..\
on the documentation we can read:
... using the precompiled MaxMind databases ...
.\ .\ .
But on the MaxMind website I'm facing a wall:
Sorry, we were not able to create your account. Please ensure that you are using an email that is not disposable, and that you are not connecting via a proxy or VPN.
So not working... And anyway I'm not a fan of using something compiled and more over not open source...
So do you know another solution to get GeoIP data with FreeNginx ?
Let me re phrase your answer:\ ... should be available in your distro repository...
indeed I've downloaded a couples of thing but nothing had what I was needed, but with the information within those packages I've found mailfud.org/geoip-legacy and it works like a charms
Spanish public broadcaster RTVE is blocking podcasts of its national radio station, RNE, from some third party podcast apps.
But unusually, the company still publishes open RSS feeds for all its shows - so shows appear in every podcast app that uses them. The broadcaster has chosen to deliberately block specific podcast apps from downloading the audio.
One such podcast app that RNE is blocking is AntennaPod, a free podcast app on Android. It’s one of the most popular apps on Android - and in Spain, 78.8% of Spanish mobile phone users use Android mobile phones.
Users have discovered that RNE is specifically blocking AntennaPod, based on the app’s user-agent, which is correctly set for every download. It’s unclear why: the app contains no advertising, and is open-source. It’s free to download, and acts in accordance with the unwritten contract between podcast publishers and apps.
“We will review the case of AntennaPod,” said J. Javier Hernández Bravo from RTVE, in an email to Podnews, after we asked for comment. He told us: “RNE Audio continues to publish open RSS feeds, and at the same time, it has decided to block some third-party podcast applications from downloading audio. Many of those platforms were making money from our content.”
There are no podcast platforms that Podnews is aware of which charge for access to open RSS feeds. (We’re always grateful to hear of any). Some podcast apps contain display advertising, but this is not the case for AntennaPod.
...
RNE had just told us that some companies were “making money” of RNE’s content - but then gives three examples of those that do. Spotify makes money off podcast content by aggressively marketing premium upgrades to its music app, and in some cases playing audio advertising before and after episode audio. YouTube puts advertising in front of podcast content, and markets a premium version. And even Apple Podcasts makes money off podcast content by exclusively being available as an app on iPhones and Macs, which only Apple sells.
AntennaPod does none of these things: so why is it blocked?
In March, 2000, I launched this site with the shaky claim that most people are wrong in thinking you need an idea to make a successful software company: The common belief is that when you’re …
I always loved reading Joel's stuff, clear & well thought out. It was especially exciting when they were building Stack Overflow, but that's kinda got buried now. Things come & things go...
As opposed to the standard procedure of large corporations willingly handing all their files to the authorities with the incriminating parts underlined. Hence we can find a news article about this odd reaction.
Actually there was just yesterday a story about Corning (The maker of Gorilla glass), that was accused by EU for anti competitive behavior, where Corning entered in positive dialogue, and stated they intended to work fully within regulation.
Corning, the US-based manufacturer of Gorilla Glass, has successfully avoided potential European Union antitrust fines of up to $1.25 billion by agreeing to a set of legally binding commitments that address concerns over its exclusive supply agreements for specialty glass used in smartphones and other handheld devices.
So yes Musk is an ass, also compared to other companies. And his reaction is confrontational, which is not normal behavior.
Corning settles EU antitrust probe by agreeing to open smartphone glass market
Corning, the US-based manufacturer of Gorilla Glass, has successfully avoided potential European Union antitrust fines of up to $1.25 billion by agreeing to a set of legally binding commitments that address concerns over its exclusive supply agreements for specialty glass used in smartphones and other handheld devices.
On Wednesday, the European Union opened an investigation of U.S. manufacturer Corning over possible anti-competitive practices. Corning may not be a name
Secondo la versione più nota, un gruppo di 300 spartani guidati dal re Leonida affrontò eroicamente il gigantesco esercito persiano di Serse I. Ma se si scava un po' nelle fonti storiche, si scopre che la storia reale è molto più complessa e, se vogliamo, ancora più interessante.
There is no backdoor in Apple’s encryption. That’s the reason the US and UK governments have prosecuted Apple repeatedly. They can obtain iCloud data with a warrant, but are repeatedly pressing for real-time surveillance. The UK banned encryption without a backdoor, so Apple turned off encryption rather than compromising their standard.
In theory you can learn mind reading from some fantasy universe and check every Apple person. Or ask a crystal ball. Or use some other way to collect full information about our universe, check every rabbit hole, so to say, and then confidently confirm "there's no Apple backdoor here". "Here" meaning this plane of existence.
In practice yes.
EDIT: Forgot - the "refused to cooperate" and "they have disagreements" things even in daily wisdom don't change the probability of Apple having made backdoors. It's PR. You most likely won't learn it from the news if they do, in fact, cooperate.
I didn't say "prove", I used another word with bigger allowance. Of "likely backdoors vs likely not" kind. I wanted to say that their "public" conflicts with governments and their statements of the "trust us, we won't sell you" kind are all worth nothing, because being caught lying won't cost them anything.
When it’s enabled, they can’t access iCloud data at all, even with a warrant due to the fact it’s E2E with keys they don’t control. That’s what the UK got really mad about. But Apple shut the whole feature down for the UK in response to the backdoor ask.
It’s not different from the UK banning signal because it’s E2E encrypted and they can’t access it.
They’re likely only backing down now because of consumer/media backlash
Advanced Data Protection for iCloud offers our highest level of cloud data security and protects the majority of your iCloud data using end-to-end encryption.
Correct, standard iCloud data is accessible with a warrant. But the UK wanted their own backdoor so they have constant access without a warrant.
But with advanced data protection, Apple can’t provide the data because they don’t have the encryption keys, regardless of a warrant.
Important to note iMessage is always E2E encrypted though, so iMessages cannot be accessed even with a warrant. Advanced data protection just expands that to all iCloud data
iMessage is far more common in the US afaik. Whereas most people elsewhere will use WhatsApp or whatever, nobody in my extended family uses anything but iMessage to communicate
Really? Mine defaults to SMS if they don’t receive it as an iMessage message. I can’t recall it ever failing, only a long while back I would get a failure that prompts me to send as SMS - and I’d do it. It’s automatic now.
Not sure how long iMessage has existed, but it never properly worked for me on any iPhone, and neither for my partner. I also helped others change the settings to just default to SMS. By default it doesn't show that you need to send a SMS, and it definitely doesn't retry it, at least not in NL.
It should be renamed to, London plus all surrounding bits of land that we don't care about. It's a bit of a mouthful but it would be a more accurate name
That’s just every country, isn’t it? Seems like most of Spain has separatist movements; Provence and Brittany and Burgundy retain their sub-national identities; probably some in Tobago want to split from Trinidad. If Northern Ireland joined Eire no doubt the Loyalists would start clamouring to reverse that.
The whole having a backdoor to encryption is bullshit, that defeats the entire point.
I do understand that they want some kind of control on things like encryption, since criminals/terrorist/etc can abuse it as well. Keeping society safe is kinda important, and some level of transparency is used for that. This like deposited annual reports for example will help find companies/people funding terrorism.
But we should never completely compromise the privacy of individuals
The "big boys" were all pussies over sending western tanks and long range missiles to Ukraine, the UK was the first. There are very few things we can be proud of these days. But that is one of them.
We're friends with the Danes and don't wanna piss of the EU any more than we already have.
The last time we took over loads of countries, we committed so many attrocities. Like we made the Nazis look like pussy cats. Barack Obama wouldn't have a bust of Churchill in his office because his father was tortured in a concentration camp set up under him.
Meta says it won’t sign the European Union’s artificial intelligence code of practice agreement, warning that “Europe is heading down the wrong path on AI.”
On one hand, requiring calls to be done on the native app but not on the web one because "muh encryption" was always stupid.
On the other hand, the Native app was really well done. A well made app using the native OS ui toolkit is so rare. Now it's turning into yet another stupid web wrapper. I'm so sick of everything being a web page.
I've been using Librewolf for more than an year now, and Im using Mullvad Browser (MB) only for log into my e-mail and stuff more personal like that. Since Mullvad gives some very good filters about privacy, i'm using MB for these purposes.
However, i been thinking if i should use Mullvad Browser as my main daily driver browser. However, i need to use a dark mode/reader, since i like to have eyes and for me is super uncomfortable not using a dark mode.
I'm using the dark reader on librewolf, and i know this is make me more finger printable , but i cannot use a browser without a dark mode.
My question is if, either with a dark mode/reader on mullvad browser, this is better than librewolf in terms of privacy and security. Mullvad is more quick than librewolf in update terms , for which i search it. And other thing i know i can do, is create multiple profiles on mullvad and librewolf, to compartmentalize the things i visit / search... (for example, one profile only to check my emails, one for normal browsing, and so on.... )
and btw , on ubuntu, which is the better way in terms of security and privacy, to install the mullvad browser? via .deb ? snap? flatpak?
I love Charger8232's idea of a Privacy Flag. However, I don't love the design they proposed. In their post, I explain my disagreements.
As a form of vexillographical discussion, I would like to propose another design as the flag under which we anonymously toil in secret (I wish).
First off, nods to Charger8232's design - 1400x900 dimensions, and use of EU's Dark Power Blue (#003399) color. Love it.
Where we differ:
Designs
A shield, representing how we must actively guard our privacy. A lock, obviously, to show we want security with our privacy, and a dove showing that we just want to be left the F alone and peacefully not be subject to a mass surveillance state. We're not trying to be sketchy or do illegal stuff, we just want to be peacefully left the F alone.
Colors
Again, same use of Dark Power Blue, representing freedom and a nod to the GDPR. White representing peace. Black representing how I don't want people to see me. Color of field: Redacted.
Extras
Stripes to make it a bit more visually interesting. A lack of EXIF and meta data as the subtle fait accompli.
The color scheme is similar to that of Estonia. While Estonia is a leader in the EU's digital governance space, this is unintentional. As much as I liked Espresso Macchiato in EuroVision this year, there's no direct nod to Estonia.
I didn't want to just say "uh, I don't like it" and complain without doing something. So here you go.
It has always bothered me that privacy has no unified symbol. Every community has their own take on how privacy should be visualized. I want to unify the privacy community across the internet. It is my belief that, with a universal symbol for privacy, we will grow stronger. We will have a symbol to represent us. We will have a flag to fly.
Icon
The icon is a clipart created by librarian Gordon Dylan Johnson which can be found here. The size of the icon is large enough to still fit if the flag is cropped to a square/circular aspect ratio.
Dimensions
The size of the flag is 140 by 90 centimeters. These dimensions are chosen because of the dimensions of a Tor Browser window (1400x900 pixels).
Use this flag for group chats, communities, profiles, stickers, patches, articles, wallpapers, real flags, anything you want to! Spread it around so it becomes a global icon for privacy. Even put it on the Wikipedia page for privacy if you can!
Hey, I saw your comment in the other thread. Thank you for your engagement, this really shows that people care about their digital presence. However, in my opinion, your proposal is more related to data security than data privacy. I see how the two are interlinked but I really like the symbol of active resistance, symbolized by the hand, towards the big surveillance apparatus, depicted by the eye for a flag that represents privacy.
From a practical perspective, the other flag is also a bit simpler, if we replace the high-res hand with a simpler vector drawing.
I do like this version better than the other one with the detailed hand. That being said, to your point about data security, it's more so that we're sort of splitting a finite set of motifs. Even the icon for this community is a shield and an eye. The eye being the threat, not the community represented by the flag, IMO means minimizing the eye, though I can see how you would feel the "stop" hand in the eye does the same thing. I just don't agree with that.
Also, just me personally, the all-blue just seems boring to me. This blue is slightly bluer, so it doesn't give me the BSOD vibe at least, but this just seem closer to a logo for a data removal subscription service than a flag. Not that mine isn't exactly far from that either, but still.
The simpler hand design in this one is definitely better. I did have one thought that I wanted to pose, however. Would the fingers being together instead of apart make much of a difference? I can almost see this design being symbolic of a 'high five' instead of a 'halt!'
I agree. It was just addressing this one feedback, which pointed out the mismatch between the detailed style of the hand and the vector style of the eye. Besides that maybe we should completely overthink the choice of symbols and focus on something positive like other commenters have already mentioned.
So far I like this version the best. However, someone put up the human rights logo and I think it would do quite well here, since it’s a dove (as requested), but also looks a bit like a hand. Another request was the color black. Maybe make the pupil black? Pretty sure that covers the commitee’s requests.
Okay well as a random dumbass, I would see the logo with and eye and a and and my smooth brain instantly gets it..the bird logo, with out a text description...I got nothing
I'd like to commend your attempt here, and not sound discouraging or anything like that. Personally though, I like the other design a little bit better. Like another commenter suggested, this design seems to evoke security more than privacy. The shield and lock seem to be pretty commonly associated with those other meanings already. The dove being inside the lock definitely seems to overcomplicate things a bit too.
That being said, I do think your coloration and black undertones look better though and overall there's a bit more visual interest.
I appreciate it, and I threw this together in about 10 minutes, so it's just a spitball idea. Rather than seeming purely disparaging to the other person and their design by saying I don't like it and not offering anything else constructive.
Is this because you like the color or you think using an EU color is appropriate here? Cause if its the latter, EU is a privacy nightmare so hard disagree.
While that is true, EU is leading the world in some privacy invasions. Be it age verification or various initiatives to try and break E2EE. Those kind of efforts do not yet exist at even countries we would all agree are oppressive.
It was because that was mentioned by the original post as why they picked all blue. Which was largely about the GDPR specifically. So I went for it on that one item.
I personally associate freedom with white because its like a piece of unpainted paper. I associate peace with green because it is the color of plants which symbolizes nature.
If I understand security, it is a contrast to the active defence in that it is passive defence. If so, you could possibly play around with how these symbolically relate to each other. For deem looking at them as a two sided unity.
I social media, pur non influenzando direttamente il posizionamento SEO, giocano un ruolo cruciale nel migliorare la visibilità online di un sito. Condividere contenuti di qualità sui canali social aumenta il traffico al sito, rafforza il brand e favorisce la creazione di backlink naturali, tutti fattori che incidono positivamente sulla SEO. Inoltre, l'interazione con il pubblico e la condivisione frequente migliorano la fiducia e l'autorevolezza del marchio. Una strategia integrata tra social media e ottimizzazione SEO contribuisce quindi a una presenza online più solida ed efficace.
Buongiorno cari lettori! Oggi voglio parlavi di questa nuova collaborazione con Aboca editore. Mi sono avvicinata ai libri di Aboca da qualche anno e ora ho avuto il piacere di approfondire i loro testi grazie a questo libro che mi hanno gentilmente mandato dopo il salone del libro. Prima di tutto ringrazio la casa editrice e la responsabile ufficio stampa Elisa per la fiducia che hanno avuto nei miei confronti e in secondo luogo il blog che mi ha permesso di raggiungere notevoli risultati ed avere l’accredito. Iniziamo però questo racconto attraverso il libro Medichesse e di che cos’è per l’autrice e per me il dono della cura!
Titolo: Medichesse: la vocazione femminile alla cura
OGNI ERBA DOTATA DI SPECIALI POTERI, QUALUNQUE RADICE UTILE A GUARIRE NASCA IN TUTTO IL MONDO, È MIA.
Erika Maderna: scopriamo l’autrice!
Erika Maderna, laureata in Etruscologia e Archeologia Italica presso l’Università degli Studi di Pavia, si è stabilita anni fa nella Maremma toscana, spinta dal richiamo della terra degli Etruschi. Vive a Grosseto, dove insegna, scrive articoli, traduzioni e saggi di cultura e archeologia classica. Per Aboca Edizioni ha scritto: Aromi sacri, fragranze profane. Simboli, mitologie e passioni profumatorie nel mondo antico (2009), Le mani degli dèi. Mitologie e simboli delle piante officinali nel mito greco (2016), Con grazia di tocco e di parola. La medicina delle sante (2019), Medichesse. La vocazione femminile alla cura (2021), Per virtù d’erbe e d’incanti. La medicina delle streghe (2023) e La memoria nelle mani. Storie, tradizioni e rituali delle levatrici (2024).
Donne per le donne: quando la cura diventa dono
Donne, questo il grande tema del libro! Attraverso le pagine del saggio riusciamo ad accogliere ed apprezzare ruoli particolari del mondo femminile. L’autrice ripercorre il mondo della medicina e della cura come dono negli anni della storia dell’esistenza umana partendo dall’antichità fino al XVII secolo.
Un elemento che mi ha colpita particolarmente è la prefazione della Dottoressa Rita Pagiotti docente di botanica della prestigiosa Università di Perugia. Ho trovato interessante l’apertura mentale della dottoressa che anzichè additare come “pazze” queste donne le ammirava. Non è facile trovare qualcuno che possa avere questa opinione dal mondo accademico e ne sono rimasta piacevolmente stupita!
Altro aspetto molto interessante, dal mio punto di vista, è la bibliografia particolareggiata e che permette al lettore di approfondire ogni aspetto del libro tramite altri saggi altrettanto accattivanti. E’ visibile fin dalle prime pagine la profonda ricerca della Dottoressa Maderna e della sua passione per questi temi.
L’impalcatura e l’estetica del libro
Dal punto di vista della struttura del libro, troviamo sicuramente un font e interlinea agevole che permette al lettore di immergersi senza difficoltà nel testo.
Il libro è arricchito da elementi estetici come foto e tavole di botanica che rendono il testo ancora più interessante da osservare. Un elemento che apprezzo molto è quando il libro diventa oggetto estetico e in questo caso la casa editrice è riuscita a farlo nel modo migliore. Tra queste foto troviamo anche ricette antiche di Metrodora e Trotula, due delle più importanti medichesse di qiesto saggio.
La copertina è notevolmente curata, di buona fattura e che vale tutti i soldi del testo.
Il dono della cura: dentro e fuori!
Affrontare questo libro è sicuramente un momento di cura, di accettazione e di riflessione. Già dalle mie parole iniziali avrete capito che in generale ho amato questo testo ma approfondiamo meglio il perchè.
La lettura è molto rapida ad avvincente nonostante si tratti di un saggio e a prima vista possa risultare “pesante” o un ostacolo per chi non è avvezzo a questo mondo.
Ad esempio nel primo capitolo si narra di come le dee guaritrici e taumaturghe sono state declassate a maghe, streghe e fattucchiere e nel migliore dei casi diventate erboriste. Viene raccontato di come la loro conoscenza antica sia stata portata avanti dalle donne per via oracolare e nascosta, tramandata di madre in figlia e di come la medicina degli uomini sia sempre stata vista come “migliore” a discapito di quella delle donne che erano relegate a professioni come ostetriche o cosmetologhe. Nello stesso capitolo vengono citate a esempio Igiea e Panacea, figlie di Esculapio, che curavano e guarivano.
Riassumendo, ed andando alle conclusioni, ritengo che sia un testo che tutti gli appassionati delle erbe e della storia della medicina femminile e alternativa debbano leggerlo. La scrittrice permette di rendere di facile lettura argomenti storici, magari anche ostici, ed innamorarsi di ogni singolo personaggio citato.
Non vedo l’ora di leggere altro di questa autrice, il mio voto complessivo del libro non può che essere di 5 stelle su 5!
Vi ringrazio come sempre di aver letto questo articolo, per ogni curiosità o richiesta potete compilare il modulo sottostante.
Name Email* Message* Submit
Devi abilitare JavaScript nel tuo browser per inviare il modulo
Scegliere gli infissi giusti a Monza è essenziale per migliorare il comfort abitativo e l’efficienza energetica, considerando il clima subcontinentale e l’umidità elevata. Infissi moderni con vetrocamera o triplo vetro garantiscono isolamento termico e acustico, riducendo costi e rumori esterni. La scelta va fatta in base al contesto abitativo, alla sicurezza, all’estetica e agli incentivi fiscali disponibili. Tra le opzioni: infissi a battente, scorrevoli o vasistas, in materiali come PVC, legno, alluminio o compositi. Rivolgersi a esperti del settore assicura qualità, durata e un investimento sicuro.
La Rocca Maggiore di Assisi torna a ospitare il Riverock Festival, giunto alla 14ª edizione, dal 23 al 27 luglio. Cinque giorni di musica, cultura e incontri con artisti di rilievo: Fabri Fibra, Venerus, La Niña, Ginevra, Luzai, Joan Thiele, Dardust, Emma Nolde e Rip.
Novità 2025 è "Sotto palco", podcast dal vivo in collaborazione con Radio Glox: tre incontri nel Giardino degli Incanti (ore 19, ingresso libero) con showcase finali. Il 23 si parla di accessibilità nella musica live, con Tara. Il 24 si riflette sull’indipendenza artistica, ospite Lodo Guenzi (che si esibirà anche live). Il 25 si affronta il tema della sostenibilità del mestiere dell’artista, con Maurizio Carucci (showcase incluso).
Ogni sera spazio ai concerti: il 23 luglio torna Fabri Fibra con il nuovo album “Mentre Los Angeles brucia”; il 24 live Venerus, La Niña, Luzai e Ginevra; il 25 Joan Thiele, Dardust, Emma Nolde e Rip.
Il festival si chiude il 26 e 27 luglio con la seconda edizione di “Evanland – il festival internazionale del mondo interiore”: talk, workshop, letture e concerti. In scena Gio Evan con ospiti, Giulia Mei, Daddy G (Massive Attack), Quantic (dj set) e Roberto Cacciapaglia in concerto all’alba. Tra gli ospiti anche Vito Mancuso ed Erri De Luca.
Riverock Festival è organizzato dall’associazione omonima con il Comune di Assisi, il sostegno di Fondazione Perugia e i fondi PR-FESR 2021-2027 (Bando Spettacolo dal vivo – Anno 2024, Sviluppumbria).
Rocca Maggiore pronta ad aprirsi alla 14esima edizione del Riverock Festival. Ad Assisi arrivano Fabri Fibra, La Niña, Venerus, Ginevra, Luzai, Joan Thiele, Dardust, Emma Nolde e Rip Il cartellone anche il nuovo format “Sotto palco”, podcast dal viv…
(Disponibile anche in inglese / Also available in English)
Cosa significa davvero quando un brand di moda usa e getta ottiene un sigillo di sostenibilità?
Il paradosso
Che relazione c’è tra B Corp e ultra-fast fashion? Cosa succede quando la certificazione etica incontra un modello di business basato sull'iperconsumo?
Quando BusinessWire annuncia "Princess Polly diventa una Certified B Corporation™" e BOF la definisce "la concorrente USA-australiana di Shein con un bollino di responsabilità sociale", viene da chiedersi: è progresso o greenwashing ben confezionato?
Spoiler: la domanda è retorica.
Cos’è una B Corp?
«La certificazione B Corp valuta standard di responsabilità sociale e ambientale, ma non copre tutte le operazioni aziendali.» — This is Greenwashing
La co-CEO di Princess Polly, Eirin Bryett, presenta il certificato come prova del loro "impegno per pratiche guidate da uno scopo". Ma un brand costruito su sovrapproduzione e tendenze usa-e-getta può davvero essere "sostenibile in ogni aspetto"?
**Il punto cieco della B Corp: la sovrapproduzione ** Nel libro This is Greenwashing evidenziamo:
"La certificazione non affronta esplicitamente la sovrapproduzione, concentrandosi invece su materiali 'sostenibili' o compensazioni di CO₂."
L'ultra-fast fashion sfrutta l'obsolescenza programmata – eppure, alcuni brand ottengono il bollino B Corp grazie a iniziative marginali (packaging riciclato, donazioni), ignorando il cuore del problema: produrre meno.
Conclusioni
Non dubitiamo delle intenzioni di Princess Polly, ma i modelli di business parlano chiaro:
• Se il profitto deriva dalla sovrapproduzione, non è sostenibilità.
• Se incoraggi a comprare di più con un "bollino verde", è PR, non progresso.
B Corp + ultra-fast fashion = greenwashing in versione 'purpose-washed'.
❓Voi credete sia possibile un’ultra-fast fashion sostenibile?
Smaschera le bugie. Pretendi di meglio.
📘Scarica l'e-book (versione inglese):
books2read.com/u/bpgxOX
🇮🇹 Versione italiana in arrivo – restate sintonizzati!
Alaska Airlines grounded its fleet and that of a subsidiary Sunday night due to IT issues but resumed operations about three hours later, the carrier said.
Tired of the Linux/Docker “monoculture” for WordPress? This article guides you step-by-step through the secure installation of WordPress on FreeBSD using BastilleBSD. Discover how jail separation, performance, and the versatility of ZFS offer a more robus
Many people host WordPress on Linux, often using Docker. While this is a valid approach, there are excellent alternatives – sometimes even better ones – for getting your WordPress site online in a secure, reliable, and updatable manner. The goal is to make the web a safer place and avoid the computing monoculture that increasingly pushes toward uniformity of solutions and setups – an attitude that I believe is harmful even when the solutions are open source.
For this type of setup, therefore, I’ll describe how to accomplish everything using FreeBSD. The jail separation, performance, and ZFS versatility – all reasons that support this choice. This guide will serve as a foundation – everything will work at the end, but it won’t cover all possible combinations or configurations.
We’ll be using BastilleBSD, which supports both ZFS and UFS. While FreeBSD’s base system has everything needed to create and run jails, BastilleBSD is incredibly useful for managing them. Since it’s written in shell script and has no database dependencies, management and backups are straightforward. Furthermore, moving jails becomes extremely simple – either by using the bastille command directly or by copying the files (or datasets, if you’re using ZFS).
BastilleBSD also supports templates, but for this tutorial, we’ll perform the operations manually to understand each step.
First, install Bastille: pkg install bastille Next, run the setup process: bastille setup Now, bootstrap the desired FreeBSD release: bastille bootstrap 14.3-RELEASE update With that, BastilleBSD is ready to go.
Creating the Jails
Now, let’s create the jail that will contain Apache, PHP, and WordPress: bastille create apache 14.3-RELEASE 10.0.0.254 bastille0 Note: This command will only create and assign an IPv4 loopback address. For IPv6, the simplest solution is to assign an address for the jail directly to the host’s interface. To do this, note an available IPv6 address and assign it to the jail. For example, if the host’s network interface is vtnet0: bastille edit apache Add the following lines to the configuration file: ip6 = new;ip6.addr = "vtnet0|2001:0DB8:1::443/64"; Restart the jail: bastille restart apache Next, let’s ensure that connections to the host’s ports 80 and 443 are redirected to the apache jail: bastille rdr apache tcp 80 80bastille rdr apache tcp 443 443 Now, if using ZFS, let’s create a dedicated dataset for WordPress and mount it in the jail. The reason is simple: decoupling the Apache jail from the WordPress directory will allow for updates, rollbacks, etc. of the Apache jail without touching the WordPress files. I assure you that, in the long run, this approach will save many headaches. zfs create zroot/wordpressbastille mount apache /zroot/wordpress/ /usr/local/www/wordpress nullfs rw 0 0 Now, let’s create the jail that will contain MariaDB: bastille create mariadb 14.3-RELEASE 10.0.0.253 bastille0
Configuring the MariaDB Jail
Access the MariaDB jail’s console: bastille console mariadb Once inside, install the MariaDB server: pkg install mariadb118-server Enable and start the mysql-server service: service mysql-server enableservice mysql-server start Now, access the MySQL command line to set up the WordPress database: mysql Execute the following SQL commands (you should use more secure user, password, etc.): CREATE USER wp@10.0.0.254 IDENTIFIED BY 'password';CREATE DATABASE wordpress;GRANT ALL PRIVILEGES ON wordpress.* TO wp@10.0.0.254;FLUSH PRIVILEGES; Exit the MariaDB jail console to return to the host.
Configuring the Apache & PHP Jail
Now, let’s configure the apache jail. First, access its console: bastille console apache Inside the jail, install PHP and all the necessary extensions. We won’t install WordPress from the FreeBSD package – while it’s updated and maintained, I prefer to manage dependencies manually. It will be easier to manage updates in the long term, such as changing PHP versions, etc. At the time of writing this article, for example, the WordPress package depends on PHP 8.3 while I prefer to use 8.4. pkg install php84 php84-bcmath php84-bz2 php84-calendar php84-ctype php84-curl php84-dom php84-exif php84-fileinfo php84-filter php84-ftp php84-gd php84-gettext php84-iconv php84-intl php84-mbstring php84-mysqli php84-opcache php84-pcntl php84-pdo php84-pdo_mysql php84-pecl-imagick php84-phar php84-posix php84-readline php84-session php84-shmop php84-simplexml php84-soap php84-sockets php84-sodium php84-tokenizer php84-xml php84-xmlreader php84-xmlwriter php84-xsl php84-zip php84-zlib Next, install Apache: pkg install apache24 Modify /usr/local/etc/apache24/httpd.conf to enable the required modules. Uncomment or add the following lines: LoadModule mpm_event_module libexec/apache24/mod_mpm_event.so#LoadModule mpm_prefork_module libexec/apache24/mod_mpm_prefork.so#LoadModule mpm_worker_module libexec/apache24/mod_mpm_worker.so...LoadModule proxy_module libexec/apache24/mod_proxy.so...LoadModule proxy_fcgi_module libexec/apache24/mod_proxy_fcgi.so...LoadModule ssl_module libexec/apache24/mod_ssl.so...LoadModule rewrite_module libexec/apache24/mod_rewrite.so Enable and start the Apache service: service apache24 enableservice apache24 start To optimize performance, enable PHP-FPM to listen on a socket. Modify the /usr/local/etc/php-fpm.d/www.conf file.
Comment out this line: ;listen = 127.0.0.1:9000 And add these lines: listen = /tmp/php-fpm.socklisten.owner = wwwlisten.group = www Now, we need to configure Apache to use PHP-FPM correctly. Create the file /usr/local/etc/apache24/Includes/php-fpm.conf and add the following: <FilesMatch \.php$> SetHandler proxy:unix:/tmp/php-fpm.sock</FilesMatch> Restart Apache for the changes to take effect: service apache24 graceful It’s good practice to copy the production PHP template to the final, modifiable php.ini file, which can be customized with the required options and limits: cp /usr/local/etc/php.ini-production /usr/local/etc/php.ini Make any desired changes now (or later), then enable and start PHP-FPM: service php_fpm enableservice php_fpm start
Installing WordPress
Navigate to the web server’s root directory: cd /usr/local/www Download and extract the latest version of WordPress: fetch wordpress.org/latest.zipunzip latest.zip Set the correct permissions: chown -R www:www wordpress/ Now, create an Apache virtual host configuration file at /usr/local/etc/apache24/Includes/wordpress.conf – be sure to modify the “example.com” with your own real domain name: <VirtualHost *:80> ServerAdmin webmaster@example.com ServerName example.com ServerAlias www.example.com DocumentRoot /usr/local/www/wordpress <Directory /usr/local/www/wordpress> DirectoryIndex index.php index.html index.htm Options FollowSymLinks MultiViews AllowOverride All Require all granted </Directory> ErrorLog "/var/log/httpd-example.com-error.log" CustomLog "/var/log/httpd-example.com-access.log" combined</VirtualHost> Finally, restart Apache one more time: service apache24 graceful The server will now respond on port 80 with the specified hostname, but this is absolutely not optimal or recommended. It’s therefore appropriate to generate a certificate to enable HTTPS.
For a simple solution, I recommend installing certbot with the Apache plugin to manage everything through Apache: pkg install py311-certbot py311-certbot-apache In order to automatically renew the certificates, add this line to /etc/periodic.conf: weekly_certbot_enable="YES" And, once installed, generate the certificate: certbot --apache -d example.com -d www.example.com You can now proceed to connect to the specified URL and begin with the WordPress guided installation, remembering the authentication and database details (the host, in this example, is 10.0.0.253 – not localhost, since we installed it in a dedicated jail).
Congratulations, your site is installed and operational. Ready to receive content for publishing. It’s exposed on IPv4 and IPv6, with HTTPS (and automatic certificate renewal, managed directly by FreeBSD) and separated from the database.
Generally, I prefer to add an additional jail with a reverse proxy. This way it will be possible to install different software in different jails, ensuring that the reverse proxy “routes” requests correctly. I’ll explain this procedure in a future article.
While this is my inaugural FreeBSD post for the BSD Cafe Journal, I’ve actually written extensively on the topic for my own blog, it-notes.dragas.net
One of the reasons I’m always so happy to attend conferences and technical events (the real ones – not the flashy, sponsor-driven ones designed just to sell products or services) is because I get to meet amazing people and always come away having learned something new.
I’ve been using WordPress since 2006 and have been managing hundreds of installations from a sysadmin perspective. Over time, I’ve noticed a clear pattern: most hacks and compromises happen through plugins or outdated installations. And often, these installations (and plugins) become outdated because they’ve been patched together so messily that updating them becomes nearly impossible – especially when the PHP version changes.
To mark the launch of the BSD Cafe Journal, I’d like to share the link to a particularly interesting talk by Maciek Palmowski: “How we closed almost 1k plugins in a month — the biggest WordPress bug bounty hunt.”
What struck me right away was how much his analysis of WordPress security aligned with what I’ve seen over the years: WordPress, out of the box, is reasonably secure. It’s the plugins – often old, unmaintained, or poorly written – that make it vulnerable.
I highly recommend watching his talk. It’s definitely worth your time.
certainly this would be massive improvement for many people, if they were open to any change at all. the docker installs are most ridiculous, and it's bad opsec to have millions of carbon copies of the same game.
I think most WP users could and should use flatpress instead. I don't think my instances yet display how effective flatpress can be, but for simpler sites flatpress does the job.
that @stefano is very persuasive! He'll have you running a BSD before you know it. Obviously I'm immune to such subliminal marketing messages and peer pressure.
Unrelated: my current reading material is The FreeBSD Handbook 😂
in that case you should definitely not, under any circumstances, go to docs.freebsd.org/en/books/hand… where it is available as HTML, as well as a downloadable PDF version. 😉
In 2002, I asked my parents to buy a laser printer so I could "print academic material" - but really, I wanted to print the FreeBSD handbook. And it was incredibly helpful.
Ai Sigur Rós, band islandese formatasi nel 1994, va riconosciuto il merito di aver creato un "marchio" sonoro unico e inconfondibile. A quindici anni da Von, il loro album d'esordio, i Sigur Rós hanno mantenuto pressoché unico il modo di fare musica: timbro, lingua inventata e lunghi brani... Leggi e ascolta...
Ai Sigur Rós, band islandese formatasi nel 1994, va riconosciuto il merito di aver creato un “marchio” sonoro unico e inconfondibile. A quindici anni da Von, il loro album d'esordio, i Sigur Rós hanno mantenuto pressoché unico il modo di fare musica: timbro, lingua inventata e lunghi brani. Lentezza è il loro “mood” come anche la loro progressione artistica. Se questa costanza è sicuramente esempio di coerenza artistica può allo stesso tempo risultare abbastanza monotona. Da fan fin dai tempi di Agaetis Byrjun posso tranquillamente esprimerlo... artesuono.blogspot.com/2014/10…
I tempi di rifornimento di idrogeno e carburante, più rapidi in confronto alla ricarica delle batterie, non includono mai tutto il tempo necessario per portare idrogeno e carburante alle colonnine.
Stellantis ha annunciato lo stop allo sviluppo dei veicoli a idrogeno, ritenuti non sostenibili nel medio termine per costi elevati e scarse infrastrutture. L'azienda ha interrotto la produzione della gamma Pro One, ma senza impatti occupazionali
Trump on Sunday pushed the Washington Commanders NFL team to return to its previous name, which was scrapped five years ago because it included a word that many view as a slur against Native Americans.
The president also threatened to block a complicated deal for the Commanders to return to a stadium in Washington, D.C., unless they return to the name "Washington Redskins."
"The Washington "Whatever's" should IMMEDIATELY change their name back to the Washington Redskins Football Team. There is a big clamoring for this," Mr. Trump wrote.
"OWNERS, GET IT DONE!!!" wrote President Trump, in calling on the Washington Commanders to revert to the name Redskins, which many view as a slur against Native Americans.
I explicitly told it eleven times in ALL CAPS not to do this. I am a little worried about safety now.
Well then, that settles it, this should never have happened.
I don’t think putting complex technical info in front of non technical people like this is a good idea. When it comes to LLMs, they cannot do any work that you yourself do not understand.
That goes for math, coding, health advice, etc.
If you don’t understand then you don’t know what they’re doing wrong. They’re helpful tools but only in this context.
Vibe coding you do end up spending a lot of time waiting for prompts, so I get the results of that study.
I fall pretty deep in the power user category for LLMs, so I don’t really feel that the study applies well to me, but also I acknowledge I can be biased there.
I have custom proprietary MCPs for semantic search over my code bases that lets AI do repeated graph searches on my code (imagine combining language server, ctags, networkx, and grep+fuzzy search). That is way faster than iteratively grepping and code scanning manually with a low chance of LLM errors. By the time I open GitHub code search or run ripgrep Claude has used already prioritized and listed my modules to investigate.
That tool alone with an LLM can save me half a day of research and debugging on complex tickets, which pays for an AI subscription alone. I have other internal tools to accelerate work too.
I use it to organize my JIRA tickets and plan my daily goals. I actually get Claude to do a lot of triage for me before I even start a task, which cuts the investigation phase to a few minutes on small tasks.
I use it to review all my PRs before I ask a human to look, it catches a lot of small things and can correct them, then the PR avoids the bike shedding nitpicks some reviewers love. Claude can do this, Copilot will only ever point out nitpicks, so the model makes a huge difference here. But regardless, 1 fewer review request cycle helps keep things moving.
It’s a huge boon to debugging — much faster than searching errors manually. Especially helpful on the types of errors you have to rabbit hole GitHub issue content chains to solve.
It’s very fast to get projects to MVP while following common structure/idioms, and can help write unit tests quickly for me. After the MVP stage it sucks and I go back to manually coding.
I use it to generate code snippets where documentation sucks. If you look at the ibis library in Python for example the docs are Byzantine and poorly organized. LLMs are better at finding the relevant docs than I am there. I mostly use LLM search instead of manual for doc search now.
I have a lot of custom scripts and calculators and apps that I made with it which keep me more focused on my actual work and accelerate things.
I regularly have the LLM help me write bash or python or jq scripts when I need to audit codebases for large refactors. That’s low maintenance one off work that can be easily verified but complex to write. I never remember the syntax for bash and jq even after using them for years.
I guess the short version is I tend to build tools for the AI, then let the LLM use those tools to improve and accelerate my workflows. That returns a lot of time back to me.
I do try vibe coding but end up in the same time sink traps as the study found. If the LLM is ever wrong, you save time forking the chat than trying to realign it, but it’s still likely to be slower. Repeat chats result in the same pitfalls for complex issues and bugs, so you have to abandon that state quickly.
Vibe coding small revisions can still be a bit faster and it’s great at helping me with documentation.
Don't you have any security concerns with sending all your code and JIRA tickets to some companies servers? My boss wouldn't be pleased if I send anything that's deemed a company secret over unencrypted channels.
The tool isn’t returning all code, but it is sending code.
I had discussions with my CTO and security team before integrating Claude code.
I have to use Gemini in one specific workflow and Gemini had a lot of landlines for how they use your data. Anthropic was easier to understand.
Anthropic also has some guidance for running Claude Code in a container with firewall and your specified dev tools, it works but that’s not my area of expertise.
The container doesn’t solve all the issues like using remote servers, but it does let you restrict what files and network requests Claude can access (so e.g. Claude can’t read your env vars or ssh key files).
I do try local LLMs but they’re not there yet on my machine for most use cases. Gemma 3n is decent if you need small model performance and tool calls, phi4 works but isn’t thinking (the thinking variants are awful), and I’m exploring dream coder and diffusion models. R1 is still one of the best local models but frequently overthinks, even the new release. Context window is the largest limiting factor I find locally.
Batch process turning unstructured free form text data into structured outputs.
As a crappy example imagine if you wanted to download metadata about your albums but they’re all labelled “Various Artists”. You can use an LLM call to read the album description and fix the track artists for the tracks, now you can properly organize your collection.
I’m using the same idea, different domain and a complex set of inputs.
It can be much more cost effective than manually spending days tagging data and writing custom importers.
You can definitely go lighter than LLMs. You can use gensim to do category matching, you can use sentence transformers and nearest neighbours (this is basically what Semantle does), but LLM performed the best on more complex document input.
“Vibe coding makes software creation accessible to everyone, entirely through natural language,” Replit explains, and on social media promotes its tools as doing things like enabling an operations manager “with 0 coding skills” who used the service to create software that saved his company $145,000
Yeah if you believe that you're part of the problem.
I'm prepared to accept that Vibe coding might work in certain circumstances but I'm not prepared to accept that someone with zero code experience can make use of it. Claude is pretty good for coding but even it makes fairly dumb mistakes, if you point them out it fixes them but you have to be a competent enough programmer to recognise them otherwise it's just going to go full steam ahead.
Vibe coding is like self-driving cars, it works up to a point, but eventually it's going to do something stupid and drive to a tree unless you take hold of the wheel and steer it back onto the road. But these vibe codeing idiots are like Tesla owners who decide that they can go to sleep with self-driving on.
And you are talking about obvious bugs. It likely will make erroneous judgements (because somewhere in its training data someone coded it that way) which will down the line lead to subtle problems that will wreck your system and cost you much more. Sure humans can also make the same mistakes but in the current state of affairs, an experienced software engineer/programmer has a much higher chance of catching such an error. With LLMs it is more hit and miss especially if it is a more niche topic.
Currently, it is an assistant tool (sometimes quite helpful, sometimes frustrating at best) not an autonomous coder. Any company that claims so is either a crook or also does not know much about coding.
The [AI] safety stuff is more visceral to me after a weekend of vibe hacking,” Lemkin said. I explicitly told it eleven times in ALL CAPS not to do this. I am a little worried about safety now.
This sounds like something straight out of The Onion.
It's because these people don't have a clue how AI actually works. They think it's like a human intelligence and that writing something in all caps is in some way going to give it more emphasis. They're trying to reason with something that has zero self-awareness.
I hate how capcut has gotten to. Ive tried davcihi resolve but i find it isint as easy as capcut. I want to try a open source video editor for my linux mint laptop that is really free and so easy even a child could learn it.
I recently tried KDENlive for the first time and had a ton of stability issues. Multiple segfaults, corrupted saves, etc. Is that par for the course of the tool? Seems like it might have core issues with the implementation if a brand new user can crash it.
Which version did you try? I used the 24.12.something version earlier this year for some rather complicated project and it was very stable.
I know they had stability issues before but not with that version. Disclaimer: I did not do video editing since, so I cannot say if the stability issues are back.
I have version 25.04.2, was just doing a simple edit trying to overlay annotations on a screen recording so nothing crazy effects-wise. Guess I should go read the patch notes.
They're not helpful. OP asked specifically for editors similar to CapCut that are "so easy even a child could learn it." None of those fit that usecase.
OpenShot is an award-winning free and open-source video editor for Linux, Mac, and Windows. Create videos with exciting video effects, titles, audio tracks, and animations.
There is nothing like CapCut for Linux. There's Resolve, LightWorks, Shotcut, Kdenlive and the less evolved, Openshot. That's it, all the other editors found online or suggested here are nowhere near completion. Also, none of them have the feel of Capcut with its AI and advanced automatic features. If you want to go open source, I'd suggest you learn to use kdenlive. It's good enough with manual workarounds, as long as you don't shoot in 10bit or in RAW or need complex color grading. If you really require automatic AI stuff like in Capcut, stay with Windows/Mac or a tablet. That's the reality.
I think good, truly easy video editors are a dying breed. I loved Windows Live Movie Maker - rest in peace.
These days, I think it’s worth it just to learn a video editor. A lot of the skills transfer; I haven’t used DaVinci before, but I’ve used other major proprietary professional video editors like Adobe Premiere and Final Cut Pro - the skills transfer. Just search how to do a thing you want to do a few times, and you’ll find it gets easier.
As others have said, I think KDEnlive is quite good; I haven’t had a huge amount of stability issues. From what I remember (granted, I may be out of date), OpenShot felt really jank in general; I used Shotcut for a while but had stability issues and UI annoyances. Comparatively, I enjoy KDEnlive.
I you want open-source then your best choice is either Shotcut or Kdenlive.
Shotcut is one of the simplest editor I've ever used...but only if you have simple edits to do, the more you wanna do something less simple the worst it gets.
Kdenlive on the other hand is fine to use in most use cases, but can be a bit tricky to understand at first.
So I always suggest Shotctut if you're sure you won't do crazy edits, Kdenlive otherwise, or to just use both if you are unsure.
Can we please just pay a cent or half a cent for each page we vist. Its like 50x what the website would get from our view with ads and its not much. I'm sure it would encourage others to start their own website as well if you could get $1 from 100 page views.
There are so many things like this news article where they want to charge me a few dollars. Bro I cant afford to pay $5 a month for every single platform that would close me 1000s.
Don't you already pay to use the Internet? Why does anybody have to make record profits every quarter, fuck all ads. The Internet was much better when corporations were not involved.
Idc about corporations but the internet costs and you cant get away from that. Servers and the infrastructure around them has to be paid for. And I'm happy to pay my share when I vist someones website. My issue is that my share is a few cents not a few dollars like a lot of these newpapers try and charge.
I wish I could take you back 10 years further. It's like a national forest that someone build a parking lot and strip mall over, and everyone cheers because they finally tore the mall down and put up a giant fence water park with cameras everywhere.
Yes things were different back then. It wasnt a national forest, it was forest in a world where no cities existed anywhere. Nothing had been built on the internet back then. You didnt have websites that served userbases in the 100s of millions. You didnt have to serve images, videos, live streams and other dynamic content. You didnt have the same security overhead now required. If the internet were only text chat over irc I wouldnt be sitting here worrying about internet funding.
I dont go to the cbd of my city and think "I wish they replaced this with a forest" because I know there are plenty of forests outside the city, and people choose to live in the city over the forest. Same for the internet and so we need to think about solving the problem instead of wishing to tear everything down.
You mean in the current state of human society we could never accomplish that. It's a nice dream that we could have a star trek future but I only see mad max as humanity's fate. Oh well thanks for all the fish.
I think websites should be paid for by the person or organization that owns them, personally. I don't want to be subsidizing businesses that I have no role in or control over, or paying for other people to engage in their hobbies.
Can you explain this "I don’t want to be subsidizing businesses that I have no role in or control over, or paying for other people to engage in their hobbies."
I dont get why you are against giving money to companies you dont control only on the web, you surely do it a ton in everyday life. In regards to the hobby, how do you know its their hobby and even if it was its not your place to decide if they should be paid for their time. If they're making something thats good enough for you to want to consume it then you should pay them for it.
First of all, prices already go up for things like netflix. This isnt aimed at subscription sites like netflix its more for pages where you browse for free at the cost of viewing ads like blogs, youtube, substack, lemmy etc. Yes prices would go up over time no doubt but the idea is that the users providing the money should lower the cost. 1000 humans visting your site should be willing to pay more than an advertiser is to show an ad to those 1000 people. Google generally pays around 5cents to 30cents for 1000 views. I dont know about you but I can split 30 cents between 1000 people, hell i'll even double it cause im generous. I think if 1000 people are viewing your website you should get paid for providing something interesting enough for 1000 people to enjoy. If everyone gave 1cent thats $100, if everyone paid double what the ad was they'd be paying $0.0003 each.
I dont want people who write a blog that is read by many people to need to subject their readers to ads all only to get a check from google saying heres a few cents bud. We can do better, and I dont think the answer is asking people to pay a $5 a month.
Just realized a whole generation of kids will have ai links to the web, so if they look for something theyll get the one sanitized link, think the whole skill of searching and sifting through links will be lost (it was thought in schools when I was a kid)
lol. You're not wrong that it'll be way easier to rely on AI to do the sorting for you, but you're implying Google didn't sanitize information and only give you results they approve of...
There's way more to the internet than you can find on search engines.
Yeah the search engines are filled with ways to access the dark web
google "dark web search engine" and google isnt hiding sht
Better off using tor? Reddits a bigger issue here they had heaps of guides and wikis related to it, they banned all that sht before lemmy became a thing`
And that was back when hosting, storage, and bandwidth were expensive. Those are basically free for text-based content now, and getting cheaper for audio and video. Nowadays, anything made by amateurs shouldn't really need a "business model" at all, and anything made by professionals could be damned cheap, if there were no middlemen taking the majority of the cut.
"AI is going to fix everything, so we need a new way to make money."
1) AI is nothing but a delusional and unwanted waste of energy. 3) The web doesn't need a business model, period. Money-grubbing billionaires are the only ones who need a business model.
Not op, but I pay for my own server, domain and IP (though it is not a static one). And I've donated to some of the fediverse platforms that I use, like lemmy.world. I'm not sure what you are trying to get at?
So what's your public facing site address and we'll see how we'll it can hold against the onslaught on the net. You gonna pay to host all the YouTube videos too. Do you host instances for thousands of others to mess with. What SaaS offerings does your site present. If you're not sure what my point is you're not informed enough to present a legitimate argument.
I'm a bit baffled by his hostile response. All I said is that I host and pay for my own server. Nowhere did I claim that I host YouTube videos on that server, or that it is open to the public. I host that server for personal use, and for me and a few friends of mine. At most there is going to be two people connecting to it at once.
I have looked into hosting a peertube instance, but I've not really gotten around to figuring out how to set that all up.
I did consider them. And they're false. It's a simple concept. Remove that which pays for everything and everything will go away. This isn't difficult.
We already pay for this through the time theft and involuntary brainwashing known as "ads". It's a very dumb and wasteful way to pay for a shitty product. But that's capitalism as usual.
What SaaS offerings does your site present.
lol. The internet doesn't run on marketing buzzwords. Grow up.
The premise of a web business model is that websites must make a profit - either directly or indirectly.
That's utter bullshit. Some of us are old enough to remember when the web (or for that matter, the pre-web internet) was there for sharing of information, social interaction, and community. Schools, the government, and nonprofits provided hosting for free.
Later on, ISPs started to add hosting as part of their internet service - along with usenet access and an email address. The cost to them was negligible, especially vs. the benefits of being able to say "switch to us and create your own website!"
Nowadays you can run a site from your home PC in a VM, punch a hole through your firewall, and pay a modicum for DDNS to a custom domain for under a hundred bucks a year. If you're a bigger site with more traffic, maybe you spin it up on AWS and pay ten or twenty bucks a month.
The very idea that "The Web" is a homogeneous, for-profit entity is a profound and fundamental mistake that is made by every money-obsessed organization around - not just the financial rags like Forbes and The Economist, but essentially corporations as well. Take a look at the support site for your favourite product and try to convince yourself that they didn't just put the minimum required effort in to send customers into the arms of their competitors.
I never heard of an ISP offering a free website to host, the free mail address I do remember sadly.
A lot of what is wrong with the web is the result of governments lacking the ability to stop companies from growing too much. It doesn't help either that the best country for startups is as corrupt as fuck and has been for decades, including from before the start of the internet.
We all should chose to use parts of the web we want to use, like Lemmy and actual non-profit organisations like Ecosia, Proton and what not.
Nobody ever offered free web hosting. They put ads on your shit or you paid for it. You became the product. You're talking about shit that very few these days even know how to do. And no those costs weren't negligible which is why geo cities and all those other "free" pages disappeared. Same with all the couple dozen different chat programs that sprung up. Free shit works partially at small scale but can't handle any kind of serious activity. People can barely navigate Salesforce there's no way they're setting up their own hooks or poking holes in their routers or setting up external dns.
Don't pull that age bullshit on me. Im nearly 50. I was there in the muds, in the bbs, on icq, watched Napster sutdown. Been configuring this shit since 3.1 and wordperfect in dos.
Kagi’s model is working well for them. A traditional search engine where AI results are limited and optional, and they actively try to filter away slop, images, clickbait, and other low quality results.
I’ve been paying for 3 months and I’ll never go back. I hope they increase their market share as others ratchet up their enshittification cranks.
I despise subscriptions a lot, I also believe that the use of a search engine shouldn't be something that is run for profit, see where it got us with Google? I also dislike Kagi (and other sites) who refuse to comply with the rules and regulations we have in Europe surrounding prices on sites. They are American iirc which doesn't help for that and that also means they barely have to make any financial figures public.
I prefer Ecosia (or Qwant), which are making their own search engine together and while they are still funded by ads, it wouldn't surprise me if in the future (if not already) they get money from the governments. I also prefer actual non-profits (not those American non-profit statuses that can be bough) compared to for profit businesses.
Amusingly enough, The Economist illustrates what I believe to be the new business model that's already waiting in the wings for the internet.
With admittedly no direct evidence to support it, my theory at the moment is that the "AI" players plan to consolidate and to continue to expand their reach and continue to gain users who rely on the "AI" for information rather than following links to the originals, then, once the "AI"s have killed enough clicks to collapse the ad model and drive the websites out of business (and give them the opportunity to buy up the remains of the businesses, and more importantly, their databases), they'll put all of the information of which they're now in sole possession behind paywalls.
Broadly, the goal is to apply the most lucrative if least popular business model to information ,- to monopolize ownership of it in order to sit back and collect money as rent-seeking parasites.
See, that's a reasonable take I agree with for the most part, but I think it'll play out a bit differently. Because these AIbro Technofascist dipshit Billionaires are so fucking stupid, instead of just pulling the plug on AI and sitting on the wealth of information like metaphorical dragons, they'll continue pumping billions into larger and more complex models to try and "automate everything", all the while fighting each other viciously, until they all run out of money when their AI-Powered techno-utopia where autonomous robots run everything never comes to pass.
Meanwhile, instead of paying for the information hoards of the TechnoFascist Elites, people will begin self-hosting again, like with the Fediverse, because it's just simply cheaper and more effective at letting people learn as groups and connect with each other.
Considering most of those technofascists are American's who cannot even have proper payment platforms and proper bank connections I doubt they will actually succeed.
If it is only just them doing this AI movement (spoiler they aren't), they would also stop at the US borders, because just like a huge part of the American businesses, they don't care about anybody else
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Laser printers are the best. You sacrifice the quality of dense pictures, but gain incomparable speed and reliability. It's especially worth it if you print less often, because the ink dries up if you don't print every once in a while and you end up buying new ink even though the cartridge is full, but the toner just sits there indefinitely.
i started a (very niche) private messaging protocol & little CLI app demo. i’m no security expert, so any feedback or questions would be appreciated.
the gist is an ephemeral message exchange without identities. the goal is ultimate deniability.
the interesting (and weird) part is that messages are encrypted but not authenticated. this means an imposter could show up if they know the shared secret. otoh this means you can deny anything you say.
interesting point! i chose symmetric shared key because it means you can’t prove who sent what message.
the shared secret does add some authentication, which i think is necessary. the goal is it only creates enough to be practical (a random person can’t eavesdrop), but not enough to prove things. messages themselves still aren’t authenticated by any one person.
you’re not wrong, but that’s just the trade off that has to be made, i think. it’s the only way i can think to do it, at least. need -some- authentication for practical usability.
your gpg example removes the deniability since it proves who wrote the message.
Couldn't you use HMAC with shared secret key to authenticate messages while keeping plausible deniability? Since the key is only supposed to be known to the 2 parties, the recipient can deduce that a message was actually sent by the sender if he did not create it himself. I think that's what OTR was using.
ooh, i’ll have to think through it, but it sounds like that’d add message integrity without sacrificing deniability. also wouldn’t be much to add. appreciate the feedback!
during or after a conversation, anyone with the keys can create fake transcripts by creating messages with the same metadata, same nonce, different content.
because of this, no transcript can be proven to be the correct transcript. the trade-off is you don’t get forward secrecy on the per-message level, but you get it per-conversation.
another detail is that there is no identity, so all the above aside, there’s also no way to prove who sent which message.
TrippyFocus
in reply to ☆ Yσɠƚԋσʂ ☆ • • •like this
☆ Yσɠƚԋσʂ ☆ likes this.