IN RICORDO DI ENZO TORTORA E DEI QUASI MILLE INNOCENTI PRIVATI OGNI ANNO DELLA PROPRIA LIBERTÀ 17 giugno 2025, ore 12:00, Piazzale Cimitero Monumentale, 20154 Milano Ai primi 30 under 30 che si registreranno e saranno con noi a Milano verrà regalata una copia di Storia della colonna infame
Every Thursday of the week, Bastian’s Night is broadcast from 21:30 CET (new time).
Bastian’s Night is a live talk show in German with lots of music, a weekly round-up of news from around the world, and a glimpse into the host’s crazy week in the pirate movement aka Cabinet of Curiosities.
Giorgia Meloni dopo il G7: «Cosa mi ha detto Macron? Vi giuro che non me lo ricordo»
che presidente del consiglio che abbiamo... a parte che potrebbe sembrare offensivo verso un capo di stato straniero, ma neppure si ricorda con chi parla... una curetta di fosforo prima di andare ai summit internazionali?
non è possibile che parli con la gente e non te ne ricordi...
L'articolo proviene da #StartMag e viene ricondiviso sulla comunità Lemmy @Informatica (Italy e non Italy 😁) Microsoft avrebbe investito finora in OpenAi almeno 19 miliardi di dollari, ma Sam Altman reclama più spazio e maggiore indipendenza. La geografia della software house sarà ridisegnata con la
" Donald Trump. Che ha intimato a Teheran di accettare «una resa incondizionata»"
boh... secondo me trump ha visto troppi film di guerra. e comunque a lui l'esercito serve per schiavizzare gli americani, mica può fare guerre. tipo putin (e infatti si vede come va).
@Informatica (Italy e non Italy 😁) È un meccanismo di accesso che unisce i concetti di ruolo e quelli di permesso. Il Role-Based Access Control (RBAC) è indicato in quelle organizzazioni che devono gestire una quantità di permessi differenti tra loro, distribuiti tra centinaia o migliaia di utenti L'articolo Scopriamo il Role-Based Access Control e
La Cina ha compiuto un altro passo nel suo programma spaziale. Alle 12:30 del 17 giugno, ora di Pechino, dal centro di Jiuquan è stato eseguito con successo un test di “pad abort” del nuovo veicolo spaziale con equipaggio Mengzhou. Il test ha
@Informatica (Italy e non Italy 😁) L’invasione dell’Ucraina e il suo ecosistema tecnologico hanno creato le condizioni per lo sviluppo di sistemi militari di intelligenza artificiale che stanno cambiando il volto della guerra presente e futura. L'articolo Cosa è il tecnopanico e perché non serve a criticare la tecnologia (e Big Tech) proviene da
@Informatica (Italy e non Italy 😁) La logorante guerra che intercorre tra Israele e Iran è stata caratterizzata, come prevedibile, anche da azioni compiute sul livello cyber. Proviamo ad approfondirne alcune per comprenderle al meglio. Colpire […] L'articolo Il dominio cyber nella guerra tra Israele e Iran proviene da Edoardo Limone.
Una vita difficile freezonemagazine.com/rubriche/… Nell’introduzione alla precedente puntata di Celluloide, dedicato a Le ragazze di Piazza di Spagna, abbiamo accennato ai tre filoni principali che caratterizzano (ovviamente tenendo presente tutte le sfumature e le varianti indipendenti) il panorama del grande cinema italiano del secondo dopoguerra: il neorealismo di impegno e denuncia sociale, il neorealismo rosa antropologico, che con locuzione Nell’introduzione
Ieri è scaduto il mio contratto di lavoro. Settimana scorsa mi è stato detto che me l'avrebbero prolungato fino a marzo 2026, con una percentuale lavorativa del 80%. Per me va bene. Nonostante diverse sollecitazioni da parte mia (e a diversi livelli) non ho ancora ricevuto il nuovo contratto. E, d'accordo col mio superiore, oggi non mi sono presentata al lavoro. Domani è festivo in Ticino. Venerdì cosa farò?
Per il resto è ancora tutto difficile.. problemi di salute (non miei), problemi familiari, problemi con l'appartamento, ... 😱
Stavamo pianificando le vacanze di agosto, ma aspetto il contratto.
Theoretically when you write a GUI-based application for Linux there are standards to follow, with these all neatly documented over at the Freedesktop website. However, in reality, Freedesktop is more of a loose collection of specifications, some of which are third-party specifications that have somehow become the de facto standard. One example of this is the StatusNotifierItem spec that provides a way for applications to create and manage a ‘system tray’ icon.
This feature incredibly useful for providing a consistent way to users to quickly access functionality and to see application status. Unfortunately, as [Brodie Robertson] notes in a recent video, not everyone agrees with this notion. Despite that Windows since 95 as well as MacOS/OS X and others provide similar functionality, Gnome and other Linux desktop environments oppose such system tray icons (despite a popular extension), with an inevitable discussion on Reddit as a result.
Although the StatusNotifierItem specification is listed on the Freedesktop website, it’s under ‘Draft specifications’ along with another, apparently internal-but-unfinished System tray proposal. Meanwhile DEs like KDE have integrated first-party support (KStatusNotifierItem) for the specification. There’s currently an active Freedesktop Gitlab discussion on the topic, whether StatusNotifierItem should even be in the list, or become an approved specification.
With the specification mired in bureaucracy and multiple camps pushing their own idea of what ‘the Linux desktop’ should look like, it feels like a real shame that the Linux Standard Base effort died a decade ago. Users and developers just want their desktop environment to come with zero surprises, after all.
This machine is for winding brushless motors because manual winding is highly labor intensive. The machine in turn is made from four brushless motors. He is using the SimpleFOC library to implement closed-loop angle control. Closed-loop torque control is also used to maintain correct wire tension.
The system is controlled by an STM32G431 microcontroller. The motor driver used is the DRV8313. There are three GBM5208 75T Gimbal motors for close-loop angle control, and one BE4108 60T Gimbal motor for torque control. The torque control motor was built with this machine! [Yuchi] says that the Gimbal motors used are designed to be smooth, precise, and powerful at low speeds.
The components of the machine communicate with each other over a CAN bus. This simplifies wiring as components (such as motor controller boards) only require four connections.
questa settimana ci immergiamo nel vero sport del social web: mantenere le conversazioni leggibili una volta che iniziano a riprodursi come conigli decentralizzati. Allacciate le cinture, perché le catene di risposta sono un argomento di cui presto vorrete non sapere così tanto.
Welcome back to the Ghost Lab, where pull requests multiply faster than gremlins in the rain, and the phrase “just one more edge case, I swear” has been officially banned by HR (hi Beccy).
Last week, we swapped war stories about shipping ActivityPub; this week we’re diving into the true sport of the social web: keeping conversations readable once they start breeding like decentralized rabbits. Buckle up, because reply chains are a subject you're about to wish you didn't know so much about.
What's new with ActivityPub?
Discussions on the social web are surprisingly complex things, and recently we spent some time wrapping our paws around some of the finer details. The joy of this newsletter is that whenever we suffer, you get to share in that experience.
On the face of it, a discussion is just a chain of replies. You make a post, and someone else responds. You get a notification about the response, and that response shows up somewhere in the app, below the post you made.
All pretty straightforward. We know about your post, because it was made in Ghost, and we know about the replies, because they got sent directly into Ghost and they reference the post you made as what they're in response to.
So, a simple discussion is easy to render:
📍 Your original post
Reply to OP
Reply to OP
Discussions are rarely one-layer deep, though. When two people go back and forth with each other, each one of those responses is a new reply to a previous post.
Something you may have noticed in Ghost for the past few months, though, is that it took a lot of clicking to follow a discussion between two people. We'd only fetch the immediate replies to the post you're viewing, so for a long reply chain, you'd only see 1 level of replies below the current post. To see replies to the next level, you'd constantly need to click deeper into the discussion
📍 Your original post post you're viewing
Reply to OP you can see this
Reply to reply you can't see this, or below
Reply to reply-guy
Reply to that reply
Ok this is becoming a debate
No, you
Actually
As well as multiple layers of depth to a discussion, there might be multiple threads of discussion happening under your post. And this is where it starts to get interesting. You post from Ghost, someone replies to that post on Mastodon, someone else replies to the reply from Mastodon, on Mastodon. Now we're in a place where we (Ghost) aren't necessarily aware of all the replies taking place, because they're happening elsewhere.
📍 Your original post
Reply to OP
Reply to reply
Reply to reply-guy
Reply to reply
Reply to OP
Reply to reply
It doesn't stop there, though. Your original post might actually, itself, be a reply to a post that came before it. So when you view that post, you probably also want to see what it's in-reply-to, otherwise the context of the discussion is going to be hard to figure out.
If the first post is "That's the craziest thing I've ever heard" and the replies are all "I've heard crazier" – you're likely to have questions about the topic at hand.
Parent post
📍 Your original post
Reply to OP
Reply to reply
Reply to reply-guy
Reply to reply
Reply to OP
Reply to reply
And (you can probably see where this is going) that post you're replying to may, itself, be a reply to some other post. The discussion tree has infinite levels in both directions. Your post and its replies may be a tiny branch on the end of a far larger tree of conversation.
Great-grandparent post
Grandparent post
Parent post
Someone else's original post
Reply to OP
Reply to reply
Parent post
Grandparent post
Parent post
📍 Your original post
Reply to OP
Reply to reply
Reply to reply-guy
Reply to reply-guy
Reply to reply
Reply to reply guy
Reply to OP
All this to say, we've done a bunch of work in Ghost to crawl our way up and down the branches of a discussion, pull the most relevant posts around yours, and make them visible inline on the post you're viewing.
Now, rather than just seeing the immediate replies to a single post, you'll start to see larger chains of replies that have been surfaced to make it easier for you to follow a discussion.
Replies-to-replies are connected with a line: And when the discussion has even more levels available to explore, we show a link to allow you to expand that particular thread: The same is true when you click on a notification, where we'll load the post you clicked on and the 'parents' of that post, so you can scroll up to see the context of what came before.
It's not perfect, of course, but it's now much easier to get a feel for the conversation(s) happening in and around the posts you're viewing.
That’s the tour for this week’s code safari. Hit publish, poke the new threads, and let us know where the discussion tree still gets tangled.
Coming up next week (and you may have already seen some hints of this):
Il 6 giugno 2025, il Ministero della Difesa giapponese ha pubblicato le prime linee guida ufficiali sull’uso responsabile dell’intelligenza artificiale (IA) nelle apparecchiature militari. La notizia è stata riportata da NHK e Yonhap News Agency il 9 giugno.
Le “Linee guida per l’applicazione responsabile dell’intelligenza artificiale nello sviluppo di apparecchiature” nascono dalla “Politica di base per la promozione dell’applicazione dell’IA” introdotta nel luglio 2024. Il documento punta a massimizzare l’efficacia dell’IA nei sistemi di difesa, minimizzando i rischi etici e operativi.
Le Linee Guida propongono un sistema di classificazione del rischio per l’IA militare, suddividendo le apparecchiature in due categorie: “a basso rischio” e “ad alto rischio”. I sistemi a basso rischio richiedono comunque un intervento umano durante il processo d’attacco, mentre quelli ad alto rischio possono selezionare autonomamente i bersagli. Questi ultimi saranno sottoposti a una valutazione legale più rigorosa, anche per verificare se rientrano nella definizione di sistemi d’arma letali autonomi (LAWS), la cui realizzazione è vietata.
Le apparecchiature a basso rischio, invece, saranno soggette a revisioni interne indipendenti, per garantire il rispetto degli standard di sicurezza e affidabilità. Nel caso dei sistemi ad alto rischio, la revisione include anche il rispetto delle normative internazionali, e sarà il Ministero stesso a vietarne lo sviluppo se superano determinate soglie critiche. Un aspetto centrale del processo è garantire che ogni tecnologia resti sotto controllo umano, evitando derive autonome incontrollabili.
A completare il quadro, è prevista una valutazione tecnica da parte di un team di esperti, che verificherà la sicurezza, la trasparenza e la responsabilità umana nel funzionamento dell’IA. I criteri di valutazione includono sette requisiti fondamentali, tra cui: la possibilità di attribuire le responsabilità, la prevenzione dei guasti, e la tracciabilità delle decisioni delle IA. Si tratta di un primo passo importante verso una difesa automatizzata ma responsabile, in un contesto geopolitico sempre più complesso.
We like USB-C here at Hackaday, but like all specifications it is up to manufacturers to follow it and sometimes… they don’t. Sick of commercial cables either don’t label their safe wattage, or straight up lie about it, [GreatScott!] decided to DIY his own ultimate USB-C-PD cable for faster charging in his latest video, which is embedded below.
It’s a very quick project that uses off-the-shelf parts from Aliexpress: the silicone-insulated cable, the USB-C plugs (one with the all-important identifier chip), and the end shells. The end result is a bit more expensive than a cable from Aliexpress, but it is a lot more trustworthy. Unlike the random cable from Aliexpress, [GreatScott!] can be sure his has enough copper in it to handle the 240W it is designed for. It should also work nicely with USB PPS, which he clued us into a while back. While [GreatScott!] was focusing here on making a power cable, he did hook up the low-speed data lines, giving him a trustworthy USB2.0 connection.
This isn’t the first time we’ve seen someone test USB gear and find it wanting, though the problem may have improved in the last few years. Nowadays it’s the data cables you cannot trust, so maybe rolling your own data cables will make a comeback. (Which would at least be less tedious than than DB-25 was back in the day. Anyone else remember doing that?) USB-C can get pretty complicated when it comes to all its data modes, but we have an explainer to get you started on that.
Il “Trump Phone” è praticamente un telefono cinese Wingtech REVVL 7 Pro 5G con qualche fronzolo dorato, venduto a 499 dollari contro i 171,65 del modello originale (un ricarico del 191% solo per dei loghi personalizzati e la colorazione patriottica).
Il lancio è stato un disastro: sito andato in tilt coi preordini, addebiti sbagliati e poi la gaffe epica della mappa di Trump Mobile che mostrava ancora “Golfo del Messico” invece del nuovo “Golfo d’America”. Mapbox non aveva ancora aggiornato la denominazione e Trump si è incazzato.
Un telefono made in China venduto a peso d’oro tutto “made USA” tranne il prodotto stesso.
Developers of the WordPress ActivityPub talks about how they plan to make WordPress websites a full member of the fediverse, videos of FediForum available, and bridging to Bluesky op a per-server basis.
Developers of the WordPress ActivityPub talks about how they plan to make WordPress websites a full member of the fediverse, videos of FediForum available, and bridging to Bluesky op a per-server basis.
I also run a weekly newsletter, where you get all the articles I published this week directly in your inbox, as well as additional analysis. You can sign up right here, and get the next edition this Friday!
The News
Fediforum has published the videos of the keynotes and the software demos. For a list of all the demos, you can check out the website. Some thoughts on some of the demoes that stood out to me. For some of the other cool demos (such as Bounce and Bandwagon), check out last week’s news.
The keynote by Christine Lemmer-Webber talks about how the social media style of the 2010s is no longer good enough. With this, she refers to both the fediverse as well as Bluesky. Lemmer-Webber makes the case we live in an age of surveillance, and both Bluesky and the fediverse do not meet the need for safety and privacy that comes with that. She says that shame is not an effective way to get people to use better platforms, and that we need to bring joy to the new platforms. Lemmer-Webber is now working on different protocols with the Spritely Institute, that use Object Capabilities. I’ll go into more detail on that once Spritely gets closer to public usage, but to hugely oversimplify: with Object Capabilities, you can enforce who has access to your data that you send out. Seeing one of the co-authors of ActivityPub actively advocating for further development of new open protocols indicates to what extend the space of the open social web is still in active development.
BadgeFed is a platform for issues badges using the Open Badges standard and ActivityPub protocol, where the badges can later be verified cryptographically. There are some interesting parallels with how people are developing badges on ATProto, and it seems to me that both networks are now in the stage that there are solid proofs that you can build systems for credentials on decentralised protocols. The next stage is seeing how people will start using these new systems.
For developers: ActivityFuzz is an upcoming project from Darius Kazemi, and builds upon the Fediverse Schema Observatory. These tools give a much greater insight into how all the different fediverse projects have implemented ActivityPub in practice, and shows all the differences. This makes building fediverse platforms that are compatible with other platforms more accessible.
Gobo is a client that allows people to post to multiple different platforms, including Mastodon and Bluesky. One of the challenges with cross-posting tools is that these platforms have different character limits, which Gobo has some nice ways of setting the cutoff-point for a longer text thats different for each platform.
Encyclia is a recently-announced project to make ORCID (Open Researcher and Contributor ID) records connected to the fediverse, with the demo providing a first view of what this looks like in practice.
The Build Your Own Timeline Algorithm takes your Mastodon timeline and uses various customisable algorithms to create custom clusterings for the post, allowing you to sort your timeline into various different topics.
The team implementing the ActivityPub plugin for WordPress has posted a blog with a roadmap what they are working on. The team has plans to majorly expand the plugin, and make WordPress a full member of the fediverse. So far, the interaction has mainly focused on publishing to the fediverse, which will now be expanded to also be able to follow, read and interact with the rest of the fediverse directly via a WordPress account. The main feature will be a reader experience, which is effectively a timeline feed within WordPress. It places WordPress into even more direct competition with Ghost, who also offers a timeline reader as part of their ActivityPub integration.
The Social Web Foundation released a draft of their work to implement end-to-end encrypted (E2EE) messaging over ActivityPub. Their plan uses Messaging Layer Security (MLS), a protocol for encrypting messages, that is designed to be used in combination with other protocols for sending the encrypted messages. One of the parts that is missing for ActivityPub is the ability to send real private messages to each other, and an integration with MLS can help with that. It might take a while before it gets there, this first version of the draft is now ready for proof-of-concept implementations and interoperability testing.
Bridgy Fed, the bridging software that connects ActivityPub with ATProto, has gotten an update where server admins can opt-in to the bridge for their entire server. For some context: Bridgy Fed was originally designed to be opt-out, meaning that every fediverse account could automatically be bridged to the Bluesky network and visa versa. After massive pushback from the fediverse community, this was changed to opt-in, where people have to actively take action to have their account be connected to the other network. The debate laid bare to what extend the fediverse struggled with being a decentralised network, where decentralised means that there are different communities with values that at times are incompatible with each other. Instead the debate got largely framed in terms of what the value (opt-in or opt-out) should be for the entire network. However, with this latest update individual communities can now be independently decide for themselves if they want to be connected to other protocols by default.
The Links
Bonfire has added the ability to create a separate ‘Events’ feed for Mobilizon and Gancio events.
Canvas is a yearly fediverse event where people can paint on a shared canvas, one pixel at a time, for 48 hours. This year’s Canvas event will start on July 12th.
Mastodon has made some tweaks to smaller screen layouts on web.
That’s all for this week, thanks for reading! You can subscribe to my newsletter to get all my weekly updates via email, which gets you some interesting extra analysis as a bonus, that is not posted here on the website. You can subscribe below:
The donor laptop is an Amstrad ALT-286 with glorious 80s styling that [TME Retro] tried to save in a previous video. Even with help from the community there was no saving this unit, so we can put away the pitchforks and torches. This restomod is perhaps the best afterlife the old Amstrad could have hoped for.
At first [TME Retro] was going to try and fit an iPad Pro screen, but it turned out those don’t have the driver-board ecosystem the smaller iPads do, so he went with a non-retina LCD panel from Amazon instead. Shoving an LCD where an LCD used to live and sticking an expensive mini-PC inside a bulky 80s case is not the most inspiring of hacks, but that’s not all [TME Retro] did.
Clever dongles keep the original ports intact while allowing modern connectivity. First, they were able to save the original keyboard, thanks to the longevity of the PC/AT standard and a PS/2 dongle — after all, PS/2 is essentially AT with a different connector. Then they produced what has to be the world’s highest-bandwidth parallel-port dongle by routing the two gigabyte network ports through the original 25-pin connector. USB is a serial bus, so breaking out two USB ports via the pins one of the old serial ports makes thematic sense. The second serial port is set up to take a PS/2 mouse instead of the serial mouse you might have used in the 80s. USB-C is still available via an adapter that went into the original expansion slot.
We’ve seen this sort of modding before, of course, on everything from 1980s vintage Mac Classics and LCD-386 portable PCs to 1990s Jellybean iMac G3s, to the internet-famous Hotwheels PC. It’s always sad to see old hardware fail, but arguably these casemods are a lot more usable to their owners than the original hardware could ever be in 2025.
Torna la Festa della Fiom a Firenze: 4 serate alla Flog al Poggetto tra dibattiti, musica, teatro, cucina. Tra gli ospiti, i sindaci di Firenze, Prato e Pistoia ed Eugenio Giani. Chiusura con Michele
La popolare suite per ufficio LibreOffice si sta preparando per la prossima fase della sua evoluzione, e non sarà particolarmente adatta ai possessori di vecchi sistemi operativi. Ad agosto verrà rilasciato l’aggiornamento numero 25.8, in cui gli sviluppatori annunceranno l’abbandono di parte della precedente compatibilità con Windows e si concentreranno sulla transizione verso piattaforme moderne. Sullo sfondo dell’imminente fine del supporto per Windows 10, il progetto sta promuovendo attivamente un’alternativa, principalmente Linux.
La Document Foundation guida il progetto dal 2010. Ha preso LibreOffice sotto la sua ala protettiva dopo che Oracle ha definitivamente chiuso la sua divisione software per ufficio. Negli ultimi 15 anni, il codice sorgente è stato profondamente rivisto: molti componenti obsoleti sono stati ripuliti, è stato introdotto un nuovo ciclo di rilascio e l’architettura del prodotto è stata migliorata.
Il blog ufficiale della fondazione ha pubblicato un post in cui si suggerisce di considerare i sistemi liberi come un’alternativa a lungo termine, e fornisce anche un link alla campagna “End of 10” , supportata dalla comunità KDE. Il sito ha anche recentemente aggiunto una mappa interattiva per aiutare a trovare risorse locali, ma la sua struttura richiede ancora del lavoro.
Gli sviluppatori consigliano anche il servizio Distro Chooser, un sito che seleziona una distribuzione Linux adatta in base a una serie di domande. Tuttavia, il risultato è implementato con un livello di dettaglio eccessivo: l’elenco è lungo, gli elementi sono codificati in base al grado di conformità e, per una persona non preparata, questo complica notevolmente la scelta. Un elenco concentrato di due o tre opzioni consigliate sarebbe molto più utile.
Molti sono ancora scettici sia nei confronti di Linux che di LibreOffice. Ma il compito degli sviluppatori non è convincere nessuno: offrono un’alternativa: una suite per ufficio completa e open source , senza costi di licenza e restrizioni d’uso.
Per chi usa ancora OpenOffice, il blog offre un consiglio diretto: basta. Questo progetto è stato di fatto abbandonato da Oracle e trasferito alla Apache Foundation più di dieci anni fa. Da diversi anni non vengono rilasciate nuove versioni, e LibreOffice apre completamente gli stessi file ed è un aggiornamento costante su tutti i fronti.
Per chi è abituato all’interfaccia di Microsoft Office, LibreOffice offre una modalità ribbon per la visualizzazione dei comandi. E se il design non vi convince ancora, esistono alternative: OnlyOffice, WPS Office e soluzioni cloud come ThinkFree, che offre persino un piano gratuito. A proposito, questo servizio è attivo da 25 anni, il che di per sé ispira fiducia.
Ora, parliamo di cosa cambierà nella prossima versione. Con il rilascio della versione 25.8, il progetto interromperà il supporto per Windows 7, 8 e 8.1. Inoltre, lo sviluppo della build a 32 bit per Windows verrà interrotto: sarà ufficialmente considerata obsoleta. Ciò non significa che scomparirà immediatamente, ma chiarisce che le risorse del progetto saranno concentrate su configurazioni più pertinenti.
Windows 7 ha perso il supporto ufficiale nel 2020, sebbene una versione specializzata per i terminali POS sia rimasta disponibile fino al 2023. Nonostante ciò, il sistema rimane popolare in alcuni ambienti, e suscita persino una certa nostalgia in una parte della comunità.
Le cose si complicano con il suo successore, Windows 8. Questa piattaforma non è stata amata dagli utenti ed è stata silenziosamente sostituita dalla versione 8.1, il cui ciclo di vita si è concluso a gennaio 2023. L’utilizzo di queste versioni oggi rappresenta un serio rischio per la sicurezza , poiché non vengono più rilasciati aggiornamenti.
Per quanto riguarda l’architettura a 32 bit, nonostante la sua età, esistono ancora alcuni casi d’uso. Molti dei primi processori a 64 bit (come quelli dell’era Core 2 Duo) supportano solo RAM DDR2 e i moduli di capacità superiore a 4 GB sono costosi anche sul mercato dell’usato. Se la configurazione è limitata a 3-4 GB di memoria, la versione a 32 bit potrebbe funzionare in modo più efficiente di quella a 64 bit. Per questo motivo, è probabile che la build x86 rimarrà in uso per un po’ di tempo, almeno come compromesso tecnico.
Per chi utilizza ancora Windows 7, esiste un’opzione aggiuntiva. Oltre alle release principali, che escono due volte all’anno, il progetto offre una versione stabile con aggiornamenti meno frequenti e supporto esteso. Al momento della pubblicazione, la build stabile principale ha indice 24.8.7 ed è disponibile sulla pagina di download ufficiale .
Con il rilascio della versione 25.8, la 25.2, diventerà la nuova edizione stabile. Rimarrà compatibile con Windows 7 e probabilmente lo rimarrà per diversi anni a venire, consentendo agli utenti di prepararsi per un aggiornamento della piattaforma o una ricostruzione dell’infrastruttura.
E sebbene abbandonare i sistemi legacy possa sembrare un passo radicale, è perfettamente sensato. Il progetto punta alla sostenibilità e abbandonare il supporto per software obsoleti consente al team di concentrarsi su strumenti moderni.
From Daniel Ellsberg’s Pentagon Papers to Edward Snowden’s National Security Agency surveillance disclosures, whistleblowers have been behind some of the most impactful revelations in American history.
Both Ellsberg and Snowden risked their safety and personal freedom to leak documents to the press. While whistleblowers face similar risks today, they can protect their identities using modern whistleblowing platforms like SecureDrop — a project of Freedom of the Press Foundation (FPF) — and anonymity systems like the Tor Network.
To answer questions about how the public can safely share information with the press and use available tools to do so, FPF’s Chief Information Security Officer and Director of Digital Security Harlo Holmes and SecureDrop Staff Engineer Kevin O’Gorman engaged with Reddit’s r/IAmA community members on June 10 in a Q&A session.
The following select questions from various Reddit users, and Holmes and O’Gorman’s answers, have been edited for brevity and clarity. You can view the full thread here.
If I were a whistleblower with top-secret information, how would I get it to the newspapers without getting caught? What’s the high-level process like?
Harlo: There are a lot of variables that you’d have to consider and would only know of once you’re in that position! But, please know that whistleblowing is a hugely heroic act and there are always risks. Not only is there the possibility of “getting caught,” as you say, there is the prospect of retaliation down the line, loss of livelihood, and a lot of trauma that comes with making such a huge decision.
Other higher-level processes have to do with the aftermath. In a newsroom, journalists and their editorial team deliberate a lot about how best to write the story with what the whistleblower has supplied them. This may mean weighing matters of security, reputation, and the protection of everyone involved.
About a year ago, Signal introduced phone number privacy and usernames, effectively enabling Signal users to be (almost) anonymous if they want to. And major news outlets like The New York Times and The Guardian accept tips through Signal. Can you tell me how SecureDrop is more secure and better at protecting the privacy of the whistleblower?
Harlo: They’re both good. It’s all about “right-sizing” your tipline support. SecureDrop can be beyond the budget or bandwidth for some small newsmakers, and that’s why we at FPF can help in building a solution that fits. Fundamentally, a newsroom should ensure confidentiality and encryption. Both tools will get you there.
Kevin: Further to Harlo’s point, Signal’s approach is definitely better at scale and in general, while SecureDrop is designed to solve a more specific problem. That said, SecureDrop has some advantages for leaking to the press.
Signal requires a dedicated app, which leaves traces of its use. A source facing potential seizure and examination of their devices will leave fewer traces using Tor Browser. SecureDrop relies on an airgap to protect its decryption key, which protects journalists and sources by quarantining file submissions and makes it harder to target journalists with malware.
There are always trade-offs in play between security and ease of use, Signal is a solid choice and, from a purely cryptographic perspective, there’s no faulting it.
The Democrats released their own “whistleblowing” form a few months back for federal workers. That seems like a supremely bad idea, yes? It just looks like a Google form. Are there any big failures that you are aware of?
Harlo: Not my show, not my monkeys. We work with the press and are restricted from working with political parties. That said, we can share some tips regarding safer whistleblowing practices that anyone can adopt if they’re building a platform for intake!
First off, “be available everywhere.” In the past, whistleblowers have been burned because their web histories pointed directly to when and where they reached out to their journalist. So, use the commons of the internet to give people the information they need to securely establish first contact. If you’re running a tipline advertisement on your own website, use an encrypted and safe URL that will not indicate that the public has visited your explicit whistleblowing instructions.
Third-party services like Google are not your friend for the most sensitive of data. Google can definitely be subpoenaed for all the juicy whistleblower details. Find an alternative. Make your submission portals available over Tor, too! Visiting an onion address can make a huge difference.
Lastly, encrypt all the things. This means data in transit as well as at rest. If you are going to plop the next Panama Papers on your hard drive, encrypt that computer like your life depends on it.
As we have recently seen in some dramatic examples, all of the world’s encryption can’t help if the users misuse it. When you help news orgs set up SecureDrop, doesn’t this basically mean that you have to be giving them constant support to them and to whistleblowers on how to use it?
Kevin: This is the gig 😀
By design, we have no contact with whistleblowers using SecureDrop. A key property of the system is that it is self-hosted with no subpoenable third parties in the loop, including us.
But we do journalist digital security training, publish guides for whistleblowers, and work with newsrooms to ensure they’re providing prospective sources with good operational security guidelines via their sites.
On the administration side, once set up, SecureDrop instances are actually pretty low-maintenance in terms of support — most updates are automated, for example. We run a support portal available to all administrators, but probably only about half of instances ever need to reach out. The system’s applications do need frequent security updates, and while the codebase is mature at this stage we do regular audits and make changes as a result, so there is an ongoing development effort there.
What do you all think about the security of good ol’ postal mail for whistleblowers, especially if they have a hard drive or doc trove to share? Is it always better to go with a secure digital solution or is there still a utility to the old-fashioned tactics like mail and IRL dead drops?
Kevin: A lot of newsrooms still offer postal mail as an option for tips, and there are definitely cases where it makes sense. If you’re dropping multiple gigabytes worth of files for example, systems using Tor are going to be slow and prone to network issues. (SecureDrop has a hard limit of 500MB on individual submissions, partially for this reason).
But it’s important that sources remember they still need to take steps to protect their anonymity when using postal mail. Obviously, adding a return address that is associated with the source in any way is a bad idea, as is mailing it from a post office or a mailbox somewhere you spend any amount of time. So sources should be posting their tips from mailboxes somewhere they don’t normally go.
L’immediata presa di posizione a favore di Israele da parte delle prime tre “potenze” europee (Francia, Germania, Regno Unito) e dei membri del G-7 con dichiarazioni di stampo orwelliano, se non appare per nulla una sorpresa, rivela nel modo più chia…
Can you teach an old typewriter new tricks? You can, at least if you’re [maniek-86]. And a word to all you typewriter fanatics out there — this Optima SP 26 was beyond repair, lacking several internal parts.
Image by [maniek-86] via redditBut the fully available keyboard was a great start for a gaming typewriter. So [maniek-86] crammed in some parts that were just laying around unused, starting with a micro-ATX motherboard.
But let’s talk about the keyboard. It has a standard matrix, which [maniek-86] hooked up to an Arduino Lenoardo. Although the keyboard has a Polish layout, [maniek-86] remapped it to English-US layout.
As you’ll see in the photos of the internals, this whole operation required careful Tetris-ing of the components to avoid overheating and ensure the cover could go back on.
The graphics were a bit of a challenge, since the motherboard had no PCI-E x16 slot. To address this, [maniek-86] used a riser cable, probably connected to a PCI-E x1 slot with an adapter, in order to use an NVIDIA GT 635 GPU. It can’t run AAA games at 4k, but you can bet that it’ll play Minecraft, Fortnite, or Dota 2 just fine.
Parkinson’s Keyboard Design Starts With the Human Body
This is OnCue, designed by [Alessandra Galli]. For Andrea, design is a “vehicle for care, inclusion, and meaningful social impact,” and these values are evident in her creation.
Image by [Alessandra Galli] via Design WantedWhat makes OnCue different? Lots of things. For one, there’s a pair of wearable cuffs which use haptic feedback and visual cues to help alleviate symptoms of Parkinson’s disease. The keycaps are like little trays for your fingers, so it’s much harder to accidentally hit neighboring keys while typing.
The keys themselves have haptic feedback as well as the cuffs. AI-driven visual cues light up the most likely next letters, which is interesting. And everybody deserves a split layout.
Although wrist-based haptic feedback was the most well-received feature based on user feedback, it’s interesting to note that no single feature stood out as preferred by all. Users found the haptic feedback calming and relaxing, which is a huge win compared to the usual keyboard experience faced by users with Parkinson’s disease. Because the overall Parkinson’s experience is different for everyone, [Alessandra] took a modular approach to designing the customization software. Users can adjust the settings based on routines, preferences, and intensity of symptoms. And plus it looks to me like there’s a haptic feedback slider right there on the keyboard.
The Centerfold: Bonsai? Banzai!
Image by [mugichanman] via redditAgain, isn’t this just nice? The overall look, of course. I wouldn’t be able to use that keyboard or probably that mouse, but maybe that keyboard hiding on the right would work.
Regarding the real bonsai on the right shelf, [mugichanman] keeps it outside for the most part. It only comes indoors for a little while — three days at the absolute most. If you’re interested in the care and feeding of these tiny trees, check out this bonsai master class in a book.
Do you rock a sweet set of peripherals on a screamin’ desk pad? Send me a picture along with your handle and all the gory details, and you could be featured here!
Historical Clackers: the Columbia Index Typewriter
Remember the Caligraph? Probably not, so I’ll wait. Well, apparently inventor Charles Spiro was hellbent on building a better Caligraph after he saw one being used. But he couldn’t raise enough capital to create such a large machine, so instead he went down to the basement and came up with the Columbia Index Typewriter. Image via The Antikey Chop If you’ll recall, index typewriters are like label makers — you must choose each character using an index of some kind. Operating this machine was no different.
One simply turned the straight handle on the right side to choose the character, which was highlighted by a small hand. Then the user would just press down on the handle to print it, and this action locked the typewheel so it wouldn’t slip and print something different.
Interestingly, the Columbia was the first typewriter with proportional spacing. That means that the carriage advanced based on the width of individual characters.
Columbia typewriters were only made for three years, from 1884-87. Three models were produced — Nos. 1 and 2, followed by an improved No. 2. The Columbia shown here is a No. 1, which typed in uppercase only. The 2 came out in March 1885 and could do upper and lowercase. The improved No. 2 was more robust and better mechanically, as well as being easier on the eyes. By 1887, Spiro was working on the Bar-Lock typewriter.
Finally, One-Handed Keyboard Does It Flat Out
The journey toward the keyboard you see here began with an email to [HTX Studio]. It came from a father who wanted to see his daughter be digitally independent again after an accident took the use of her right hand.
Image by [HTX Studio] via Yanko DesignHe asked the company to build a one-handed keyboard with a built-in trackball mouse, and even included a drawing of what he envisioned.
After several iterations, each tested by the daughter, the result is a compact, 61-key affair in a fanned-out arrangement for ease of use. Everything is within close reach, with special consideration given to the location of Space and Delete.
One of the early iterations had the user moving the entire keyboard around to mouse. While that’s definitely an interesting solution, I’m glad that everyone settled on the nicely exposed trackball with left and right click buttons above Space and Delete.
Another thing I’m happy about is that [HTX Studio] not only built 50 more of these in both left- and right-handed models and gave them away to people who need them, they went ahead and open-sourced it (Chinese, translated). Be sure to check out their fantastic video below.
@Informatica (Italy e non Italy 😁) L’ascesa fulminea di DeepSeek ha messo in evidenza una quantità elevata di rischi nascosti nell’ombra. La Shadow AI indica un uso dell’intelligenza artificiale che sfugge ai controlli aziendali. Ecco i rischi che corrono le aziende e come mitigarli L'articolo Shadow AI, i rischi per le aziende e
@Informatica (Italy e non Italy 😁) Una recente ricerca ha segnalato oltre 40mila videocamere di sicurezza esposte a Internet senza alcuna protezione, con streaming sempre attivi e accessibili a chiunque. Ci sono ospedali, case private e aziende di ogni
Nel contesto del progressivo mutamento degli equilibri geopolitici globali e della ridefinizione delle rotte strategiche per l’approvvigionamento energetico e lo scambio di merci, il corridoio Imec (India-Middle East-Europe Corridor) rappresenta una delle più rilevanti iniziative
New data obtained by 404 Media also shows California cops are illegally sharing Flock automatic license plate reader (ALPR) data with other agencies out of state, who in turn are performing searches for ICE.#FOIA
In an industry full of grifters and companies hell-bent on making the internet worse, it is hard to think of a worse actor than Meta, or a worse product that the AI Discover feed.#AI #Meta
Meta Invents New Way to Humiliate Users With Feed of People's Chats With AI
I was sick last week, so I did not have time to write about the Discover Tab in Meta’s AI app, which, as Katie Notopoulos of Business Insider has pointed out, is the “saddest place on the internet.” Many very good articles have already been written about it, and yet, I cannot allow its existence to go unremarked upon in the pages of 404 Media.
If you somehow missed this while millions of people were protesting in the streets, state politicians were being assassinated, war was breaking out between Israel and Iran, the military was deployed to the streets of Los Angeles, and a Coinbase-sponsored military parade rolled past dozens of passersby in Washington, D.C., here is what the “Discover” tab is: The Meta AI app, which is the company’s competitor to the ChatGPT app, is posting users’ conversations on a public “Discover” page where anyone can see the things that users are asking Meta’s chatbot to make for them. This includes various innocuous image and video generations that have become completely inescapable on all of Meta’s platforms (things like “egg with one eye made of black and gold,” “adorable Maltese dog becomes a heroic lifeguard,” “one second for God to step into your mind”), but it also includes entire chatbot conversations where users are seemingly unknowingly leaking a mix of embarrassing, personal, and sensitive details about their lives onto a public platform owned by Mark Zuckerberg. In almost all cases, I was able to trivially tie these chats to actual, real people because the app uses your Instagram or Facebook account as your login. In several minutes last week, I saved a series of these chats into a Slack channel I created and called “insanemetaAI.” These included:
entire conversations about “my current medical condition,” which I could tie back to a real human being with one click
details about someone’s life insurance plan
“At a point in time with cerebral palsy, do you start to lose the use of your legs cause that’s what it’s feeling like so that’s what I’m worried about”
details about a situationship gone wrong after a woman did not like a gift
an older disabled man wondering whether he could find and “afford” a young wife in Medellin, Colombia on his salary (“I'm at the stage in my life where I want to find a young woman to care for me and cook for me. I just want to relax. I'm disabled and need a wheelchair, I am severely overweight and suffer from fibromyalgia and asthma. I'm 5'9 280lb but I think a good young woman who keeps me company could help me lose the weight.”)
“What counties [sic] do younger women like older white men? I need details. I am 66 and single. I’m from Iowa and am open to moving to a new country if I can find a younger woman.”
“My boyfriend tells me to not be so sensitive, does that affect him being a feminist?”
Rachel Tobac, CEO of Social Proof Security, compiled a series of chats she saw on the platform and messaged them to me. These are even crazier and include people asking “What cream or ointment can be used to soothe a bad scarring reaction on scrotum sack caused by shaving razor,” “create a letter pleading judge bowser to not sentence me to death over the murder of two people” (possibly a joke?), someone asking if their sister, a vice president at a company that “has not paid its corporate taxes in 12 years,” could be liable for that, audio of a person talking about how they are homeless, and someone asking for help with their cancer diagnosis, someone discussing being newly sexually interested in trans people, etc.
Tobac gave me a list of the types of things she’s seen people posting in the Discover feed, including people’s exact medical issues, discussions of crimes they had committed, their home addresses, talking to the bot about extramarital affairs, etc. “When a tool doesn’t work the way a person expects, there can be massive personal security consequences,” Tobac told me.
“Meta AI should pause the public Discover feed,” she added. “Their users clearly don’t understand that their AI chat bot prompts about their murder, cancer diagnosis, personal health issues, etc have been made public. [Meta should have] ensured all AI chat bot prompts are private by default, with no option to accidentally share to a social media feed. Don’t wait for users to accidentally post their secrets publicly. Notice that humans interact with AI chatbots with an expectation of privacy, and meet them where they are at. Alert users who have posted their prompts publicly and that their prompts have been removed for them from the feed to protect their privacy.” Since several journalists wrote about this issue, Meta has made it clearer to users when interactions with its bot will be shared to the Discover tab. Notopoulos reported Monday that Meta seemed to no longer be sharing text chats to the Discover tab. When I looked for prompts Monday afternoon, the vast majority were for images. But the text prompts were back Tuesday morning, including a full audio conversation of a woman asking the bot what the statute of limitations are for a woman to press charges for domestic abuse in the state of Indiana, which had taken place two minutes before it was shown to me. I was also shown six straight text prompts of people asking questions about the movie franchise John Wick, a chat about “exploring historical inconsistencies surrounding the Holocaust,” and someone asking for advice on “anesthesia for obstetric procedures.”
I was also, Tuesday morning, fed a lengthy chat where an identifiable person explained that they are depressed: “just life hitting me all the wrong ways daily.” The person then left a comment on the post “Was this posted somewhere because I would be horrified? Yikes?”
Several of the chats I saw and mentioned in this article are now private, but most of them are not. I can imagine few things on the internet that would be more invasive than this, but only if I try hard. This is like Google publishing your search history publicly, or randomly taking some of the emails you send and publishing them in a feed to help inspire other people on what types of emails they too could send. It is like Pornhub turning your searches or watch history into a public feed that could be trivially tied to your actual identity. Mistake or not, feature or not (and it’s not clear what this actually is), it is crazy that Meta did this; I still cannot actually believe it. In an industry full of grifters and companies hell-bent on making the internet worse, it is hard to think of a more impactful, worse actor than Meta, whose platforms have been fully overrun with viral AI slop, AI-powered disinformation, AI scams, AI nudify apps, and AI influencers and whose impact is outsized because billions of people still use its products as their main entry point to the internet. Meta has shown essentially zero interest in moderating AI slop and spam and as we have reported many times, literally funds it, sees it as critical to its business model, and believes that in the future we will all have AI friends on its platforms. While reporting on the company, it has been hard to imagine what rock bottom will be, because Meta keeps innovating bizarre and previously unimaginable ways to destroy confidence in social media, invade people’s privacy, and generally fuck up its platforms and the internet more broadly.
If I twist myself into a pretzel, I can rationalize why Meta launched this feature, and what its idea for doing so is. Presented with an empty text box that says “Ask Meta AI,” people do not know what to do with it, what to type, or what to do with AI more broadly, and so Meta is attempting to model that behavior for people and is willing to sell out its users’ private thoughts to do so. I did not have “Meta will leak people’s sad little chats with robots to the entire internet” on my 2025 bingo card, but clearly I should have.
AI 'influencers' on Instagram have racked up hundreds of thousands of followers and millions of views by stealing reels from real women to make the AI seem more "believable."
The list of sites in the suspect's notebook, which can easily reveal where someone lives, are a simple Google search away, have been for years, and lawmakers could make changes if they wanted. They have before.
The list of sites in the suspectx27;s notebook, which can easily reveal where someone lives, are a simple Google search away, have been for years, and lawmakers could make changes if they wanted. They have before.#News
The list of sites in the suspect's notebook, which can easily reveal where someone lives, are a simple Google search away, have been for years, and lawmakers could make changes if they wanted. They have before.
Flavio Borgna
in reply to Informa Pirata • • •Informa Pirata likes this.
reshared this
Informatica (Italy e non Italy 😁) e Informa Pirata reshared this.