/tech/ - Technology

Technology & Computing


New Reply
Name
×
Sage
Subject
Message
Files Max 5 files32MB total
Tegaki
Password
[New Reply]


Internet.jpg
[Hide] (827.5KB, 900x2002)
Discuss /tech/-related news.
What will happen if section 230 is nuked?
Replies: >>11423
1639050906617-0.png
[Hide] (972.1KB, 1000x1000)
Emacs 28.1 is out!
- Native JIT compilation of elisp files using libgccjit* 
- The new NonGNU ELPA package archive is enabled by default alongside GNU ELPA (https://elpa.nongnu.org/)
- Text shaping with HarfBuzz and drawing with Cairo
- Support for loading SECure COMPuting filters**
- Much improved display of ((( Emoji ))) and Emoji sequences
- New system for documenting groups of functions
- A minor mode for context menus (context-menu-mode)
- Mode-specific commands
- Emacs shows matching parentheses by default
- Many improvements and extensions to project.el

*Emacs now optionally supports native compilation of Lisp files.
To enable this, configure Emacs with the '--with-native-compilation' option.
This requires the libgccjit library to be installed and functional,
and also requires GCC and Binutils to be available when Lisp code is
natively compiled.  See the Info node "(elisp) Native Compilation" for
more details.

If you build Emacs with native compilation, but without zlib, be sure
to configure with the '--without-compress-install' option, so that the
installed "*.el" files are not compressed; otherwise, you will not be
able to use JIT native compilation of the installed "*.el" files.

Note that JIT native compilation is done in a fresh session of Emacs
that is run in a subprocess, so it can legitimately report some
warnings and errors that aren't uncovered by byte-compilation.  We
recommend examining any such warnings before you decide they are
false.


** Emacs now supports loading a Secure Computing filter.
This is supported only on capable GNU/Linux systems.  To activate,
invoke Emacs with the '--seccomp=FILE' command-line option.  FILE must
name a binary file containing an array of 'struct sock_filter'
structures.  Emacs will then install that list of Secure Computing
filters into its own process early during the startup process.  You
can use this functionality to put an Emacs process in a sandbox to
avoid security issues when executing untrusted code.  See the manual
page for 'seccomp' system call, for details about Secure Computing
filters.
< https://www.gnu.org/software/emacs/news/NEWS.28.1


Clasp v1.0.0 released
> Clasp is a new Common Lisp implementation that seamlessly interoperates with C++ libraries and programs using LLVM for compilation to native code. 
* Implemented save-lisp-and-die. This saves the state of a running environment for loading and fast startup later. Our most complex environment Cando starts up in ~4 seconds, which is 10x faster than the old startup that loaded libraries.
* clasp-debug interface so that IDEs like SLIME can retrieve backtraces and more to present during debugging.
* Fixed many errors identified by the ansi-test-suite
...
< https://github.com/clasp-developers/clasp/releases/tag/1.0.0


New Gentoo LiveGUI ISO and artwork / branding contest! 
After a long break, we now have again a weekly Gentoo LiveUSB ISO with GUI for AMD64!
> boots directly into KDE Plasma and comes with a ton of up-to-date software. This ranges from office applicactions such as LibreOffice, Inkscape, and GIMP all the way to many system administrator tools.

Some of the software on the image:
>    KDE Plasma as desktop environment
>    Office productivity: LibreOffice, LyX, TeXstudio, XournalPP, kile
>    Web browsers: Firefox, Chromium
>    IRC and similar: irssi, weechat
>    Editors: Emacs, vim, kate, nano, joe
>    Development and source control: git, subversion, gcc, Python, Perl
>    Graphics: Inkscape, Gimp, Povray, Luminance HDR, Digikam
>    Video: KDEnlive
>    Disk management: hddtemp, testdisk, hdparm, nvme-cli, gparted, partimage, btrfs-progs, ddrescue, dosfstools, e2fsprogs, zfs
>    Network tools and daemons: nmap, tcpdump, traceroute, minicom, pptpclient, bind-tools, cifs-utils, nfs-utils, ftp, chrony, ntp, openssh, rdesktop, openfortivpn, openvpn, tor
>    Backup: mt-st, fsarchiver
>    Benchmarks: bonnie, bonnie++, dbench, iozone, stress, tiobench
< https://www.gentoo.org/news/2022/04/03/livegui-artwork-contest.html
Replies: >>5113
>>5111
Is Rumia showing us what happens to your fingers after 5 minutes of emacs?

>no vim updates
Oh right, Vim is already perfect.
Replies: >>5114
>>5113
Actually, I just use Emacs as a file manager (dired), WM (EXWM) and terminal emulator (ansi-term, term and eshell). And I do all of my text editing using ED!! ed is the STANDARD editor. I actually used to use Vim before I tried GNU Emacs. What convinced me to switch to Emacs was the ease of customization (by using M-x customize-themes, M-x customize and M-x list-packages) and the documentation: try C-h ? (GNU Emacs is described as "self-documenting" among other things.) GNU Emacs is also more beginner friendly because it is harder to lose your work since Emacs makes backups by default. Both editors are very powerful. You should try both and choose which one you like more.

>muh emacs pinky
Not a problem for me. You can remap ctrl to caps lock or use evil-mode (vi keybindings).

>Vim is already perfect.
NeoVim is a thing for a reason. ((( VimScript ))) sucks (NeoVim fixed this issue). Gvim GUI sucks (NeoVim got rid of it, and GNU Emacs has a proper GUI). If you use (Neo)Vim and want to get the same keybindings for another program, you must either select a program that has vim keybinding by default or you need to configure/patch it yourself. However, if you Emacs, you can just install a package and you have the Emacs keybindings (at its core, Emacs is an elisp environment).
Replies: >>5132
>>5114
>it is harder to lose your work since Emacs makes backups by default
Vim also makes backups by default (as .*swp files) and asks to load them next time you open the same file. I will admit the undo functionality is fucky though, it is absolutely possible to lose something you just typed through some panicked or confused combination of u, ctrl+r, U, u, ctrl+r ...

>You should try both and choose which one you like more.
As a young gpl-cuck collage student I tried emacs first.

>NeoVim stuff stuff stuff
As a general rule if Vim can't do something, or can't do it well, then that is a thing you are better off not having anyway. inb4 cope
vim: unrelated ancient piece of shit (weird rebindable hotkeys, horrible programming language)
emacs: unrelated ancient piece of shit (horrible rebindable hotkeys, weird programming language that is basically python, slower than vim)
notepad++: text editor
Replies: >>5134 >>5141
>>5133
ok zoomer
>>5133
go back
>>4936
Interesting. I can see from their docs they've implemented their own boot environment (m1n1), but does this actually jailbreak the hypervisor Apple forces even for macOS on M1, or is it still trapped inside?
The Neovim team is planning on releasing Neovim 0.7 on April 15th.
>lua autocommands
>lua keymap API
>lua command API
>global namespace lua highlights (pure lua colorschemes)
>global statusline
>support for setting signs via nvim_buf_set_extmark
>the ability to distinguish <C-I> from <Tab> in mappings
>filetype.lua (a faster alternative to individual autocommands for matching filetype rules)
>:lua =expr, try :lua ={test = true}
https://neovim.discourse.group/t/neovim-0-7-stabilization-period-begins-today-4-2-2022/2259

Announcing Rust 1.60.0
>Support for LLVM-based coverage instrumentation has been stabilized in rustc. 
>Rust has been Upgraded to LLVM 14
>Cargo has stabilized support for collecting information on build with the --timings flag.
>New syntax for Cargo features (Cargo "features" provide a mechanism to express conditional compilation and optional dependencies.)
>Incremental compilation is re-enabled for the 1.60 release. 
https://blog.rust-lang.org/2022/04/07/Rust-1.60.0.html

PIPEFAIL: How a missing shell option slowed ((( Cloudflare ))) down
https://blog.cloudflare.com/pipefail-how-a-missing-shell-option-slowed-cloudflare-down/
>The Mac Studio’s removable SSD is reportedly blocked by Apple on a software level
https://www.theverge.com/2022/3/21/22989226/apple-mac-studios-removable-ssd-blocked-software-replacement (https://archive.is/bUIKI)
Stallman tried to warn them but the MacFags didn't listen. More cases of proprietary software being malware: https://www.gnu.org/proprietary/proprietary.html
CuckCuckNo officially joining team botnet
https://archive.ph/QKNh2
>Like so many others I am sickened by Russia’s invasion of Ukraine and the gigantic humanitarian crisis it continues to create. #StandWithUkraine️
>At DuckDuckGo, we've been rolling out search updates that down-rank sites associated with Russian disinformation.
>In addition to down-ranking sites associated with disinformation, we also often place news modules and information boxes at the top of DuckDuckGo search results (where they are seen and clicked the most) to highlight quality information for rapidly unfolding topics.
Replies: >>5273
>>5270
Apparently they're also delisting "pirate" sites (I guess that probably also means old games roms) and useful tools like youtube-dl.
I already added their domain to my 0.0.0.0 shitlist last month.  Haven't done many web searches since then, turns out I don't really need to and can usually get the information I need via another method.
Haiku Activity & Contract Report: March 2022
> Work on VESA BIOS live-patching to extend the number of resolutions available without resorting to per-hardware drivers has landed. This is working reliably on Intel hardware at least and should help provide a broader range of supported resolutions for pre-(U)EFI hardware.
> Fixes to the recently-added USB support relying on the FreeBSD compatibility layer.
> Support for 64-bit PCI addresses added to the Intel and AMD Radeon graphics drivers.
> Basic Intel Jasper Lake support.
> Very basic Intel Tiger Lake support added to the Intel graphics driver.
> The work around 32-bit EFI support on x86 systems is now "mostly" merged. 
>WINE is now available for x86_64 nightly builds!
https://www.phoronix.com/scan.php?page=news_item&px=Haiku-OS-March-2022
https://www.haiku-os.org/blog/waddlesplash/2022-04-08_haiku_activity_contract_report_march_2022/
Replies: >>5332
OpenBSD 7.1 released
>Support for Apple Silicon Macs has improved and is ready for general use.
>Switched to using long filenames by default with mount_msdos(8).
>Updated drm(4) to Linux 5.15.26
>inteldrm(4): support for Elkhart Lake, Jasper Lake, Rocket Lake
>amdgpu(4): support for Van Gogh APU, Rembrandt "Yellow Carp" Ryzen 6000 APU, Navi 22 "Navy Flounder", Navi 23 "Dimgrey Cavefish", Navi 24 "Beige Goby" 
>Implemented poll(2), select(2), ppoll(2) and pselect(2) on top of kqueue. 
>Added a gzip-static option to httpd.conf(5), allowing delivery of precompressed files with content-encoding gzip.
>Enabled support for displaying an estimated battery recharge time in apm(8) and apmd(8). 
>Added rcctl(8) "ls rogue" to show daemons which are running but not set as "enabled" in rc.conf.local(8). 
https://www.openbsd.org/71.html
https://marc.info/?l=openbsd-announce&m=165054715122282&w=2
https://webzine.puffy.cafe/issue-9.html


How to upgrade?
<https://www.openbsd.org/faq/upgrade71.html
tl;dr use sysupgrade(8)
Replies: >>5325
>>5323
Let's install OpenBSD/riscv64 on QEMU
https://briancallahan.net/blog/20220418.html
>>5289
>> Support for 64-bit PCI addresses added to the Intel and AMD Radeon graphics drivers.
What have I missed? Is there working 3D acceleration on Intel and Radeon?
Replies: >>5339 >>5341
Support for developing in the Rust language is headed toward the kernel, though just when it will land in the mainline is yet to be determined.
- Rustaceans at the border -
https://lwn.net/SubscriberLink/889924/2b330ed9ea4a9e23/ & https://lwn.net/Articles/870555/

So, is it finally the time to switch to OpenBSD? >>4968
Replies: >>5340 >>7712
>>5332
idk, https://discuss.haiku-os.org/t/vulkan-lavapipe-software-rendering-is-working-on-haiku/11363/349
>>5338
You have to try it and see if your hardware is supported.  If you can live without things like GPU, wifi, bluetooth, power management, that increases your chances.  For a long time I rean OpenBSD on i386 Thinkpad with VESA X server (no GPU) and it was enough for me.  But the wifi did work, and without that I'd have been stuck on Linux or needing to buy a separate USB wifi hardware.
>>5332
The day it goes mainline is the day I wipe it the fuck off. Imagine having to compile Rust for arm sbc. Holy shit these Rust faggots are everywhere.
Replies: >>5365
sad.gif
[Hide] (88.6KB, 602x476)
>>5341
I think that would suck more on OpenBSD, since they don't cross-compile anything.  That's why 32-bit ARM packages aren't available on the release date.  One of those little boards has to build Rust and Firefox.
Replies: >>5367 >>6489
>>5365
My personal hate for rust and rustfaggots makes OpenBSD a much better option.
f1ba17a19f91d7b8e84accbb073f55c8db1f27741f1f876ecb9deb8e1257191c.mp4
[Hide] (3.7MB, 1280x720, 00:26)
https://search.jpope.org/proxy/?mortyurl=https%3A%2F%2Fwww.cnbc.com%2F2022%2F04%2F25%2Ftwitter-accepts-elon-musks-buyout-deal.html
Replies: >>5391 >>7071
>>5390
>more free speech
>authenticate all humans
Not sure how it will turn out
Replies: >>5393
>>5391
It means users musk submit a timestamped photo of their passport to twitter before posting every tweet.
Replies: >>5394
>>5393
That means less free speech in this snowflake culture society pushed by jews.
Replies: >>5396
>>5394
GPT bot trained for 4chan
https://github.com/yk/gpt-4chan
Replies: >>5402 >>7071
>>5396
New link
https://github.com/tornikeo/gpt-4chan
Replies: >>7071
Interlisp Restoration Project
>The 1992 ACM Software System Award https://awards.acm.org/award_winners/masinter_3814811 was awarded to the Interlisp system for
< "… pioneering work in programming environments that integrated 
< * source-language debuggers,
< * fully compatible integrated interpreter/compiler, 
< * automatic change management,
< * structure-based editing,
< * logging facilities,
< * interactive graphics, and
< * analysis/profiling tools."
>A team is working to restore and adapt the Medley version of Interlisp to modern computing infrastructures.
http://lists.sigcis.org/pipermail/members-sigcis.org/2022-May/002845.html


You can test Medley Interlisp on your browser, or you can build it yourself. There is also a Docker image available.
https://interlisp.org/
https://github.com/Interlisp/medley/wiki/Documentation
AMD_GPZ-Technical_Report_FINAL_05_2022.pdf
(2.8MB)
Release of Technical Report into the AMD Security Processor
https://googleprojectzero.blogspot.com/2022/05/release-of-technical-report-into-amd.html
Replies: >>7071
OpenRM-Fig-1-Large-1.png
[Hide] (44.7KB, 1557x555)
NVIDIA Releases Open-Source GPU Kernel Modules
https://developer.nvidia.com/blog/nvidia-releases-open-source-gpu-kernel-modules/
https://github.com/NVIDIA/open-gpu-kernel-modules
>The first release of the open GPU kernel modules is R515. Along with the source code, fully-built and packaged versions of the drivers are provided.
>In this open-source release, support for GeForce and Workstation GPUs is alpha quality. GeForce and Workstation users can use this driver on Turing and NVIDIA Ampere architecture GPUs to run Linux desktops and use features such as multiple displays, G-SYNC, and NVIDIA RTX ray tracing in Vulkan and NVIDIA OptiX.
>The R515 release contains precompiled versions of both the closed-source driver and the open-source kernel modules. These versions are mutually exclusive, and the user can make the choice at install time. The default option ensures that silent installs will pick the optimal path for NVIDIA Volta and older GPUs versus Turing+ GPUs. Users can build kernel modules from the source code and install them with the relevant user-mode drivers.
<Customers with Turing and Ampere GPUs can choose which modules to install. Pre-Turing customers will continue to run the closed source modules.

Sorry Kepler and Maxwell users, but you'll have to use the proprietary drivers for now.
Replies: >>5574 >>5575 >>7071
7c3e3c6354e9a11e36793147f71faf65962d22cc2450673c0c38b1ca392e68f7.jpg
[Hide] (573.4KB, 720x960)
>>5573
Don't forget about us owners of the Pascal architecture. GTX 1060 is the most popular GPU of Steam users.
Replies: >>7071
cirna_retard.png
[Hide] (44.4KB, 1200x1200)
>>5573
Sorry for retarded question but can devs use this source code to improve Nouveau for pre-Turing cards?
Replies: >>5576 >>7071
>>5575
Perhaps. The problem with reverse engineering drive rs is leaked source taint developers. But now they open source part of the driver, if the license allows and is compatible with nouveau, the devs can repurpose the source and integrate them.
>>5440
There won't be 3 Ada compilers (FSF GNAT, GNAT-GPL/GNAT Community and GNAT Pro) anymore. There will be just FSF's GNAT (that's part of GCC) and GNAT Pro. Correct me if I'm wrong.
<Adacore releases libraries under Apache 2.0 license.
>Two years ago we thought about modernizing the ecosystem. A cleaner and more familiar ecosystem with two variants: A GNAT provided and supported by AdaCore for commercial/industrial projects, GNAT Pro, and a GNAT provided by the community for open source projects with familiar licensing and without pure GPL run-times, GNAT FSF. This results in a decision by AdaCore to stop further releases of GNAT Community and have the community handle its successor.
<Alire package manager for Ada
https://blog.adacore.com/a-new-era-for-ada-spark-open-source-community
Atom is kill
>we’ve decided to retire Atom in order to further our commitment to bringing fast and reliable software development to the cloud via Microsoft Visual Studio Code and GitHub Codespaces.
https://github.blog/2022-06-08-sunsetting-atom/

I think this is a good thing. If you know someone who's still using Atom, tell them to switch to VSCodium or Emacs/Neovim.
Replies: >>5784
>>5783
Why would anyone use Electron and Chrome to make an IDE.... VScode is just so bloated I don't understand how people use it.
Replies: >>6130
Hertzbleed
>Hertzbleed is a new family of side-channel attacks: frequency side channels.
>Hertzbleed takes advantage of our experiments showing that, under certain circumstances, the dynamic frequency scaling of modern x86 processors depends on the data being processed.
>To our knowledge, Intel and AMD do not plan to deploy any microcode patches to mitigate Hertzbleed.
>Why did ((( Intel ))) ask for a long embargo, considering they are not deploying patches?  - Ask ((( Intel ))).
https://www.hertzbleed.com/
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1038
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00698.html
Replies: >>6129
SMUG_DANCIN_ft._Terry_Davis.webm
[Hide] (14MB, 854x480, 02:52)
PulseAudio and Systemd Creator, Lennart Poettering, Reportedly Leaves Red Hat
https://archive.ph/NazXN
>To much surprise, the lead developer of systemd Lennart Poettering who also led the creation of PulseAudio, Avahi, and has been a prolific free software contributor has reportedly left Red Hat. Michael Larabel writes via Phoronix:
>So far no public announcement appears to have been made, but according to a source has been reportedly removed from Red Hat's internal employee database. Yesterday Lennart did comment on the public Fedora devel mailing list to having now created a personal Red Hat Bugzilla account for his Fedora contributions after it was raised in bug reports and brought up on the mailing list that Lennart's Red Hat account is disabled. Emailing his Red Hat address this morning indeed yields an auto-response that it's no longer in use.
<He's still active in systemd world with new commits made as of today, so it will be interesting to see where he ends up or his next moves with his vast Linux ecosystem expertise and pivotal role in spearheading systemd's direction.
Replies: >>6128 >>6455 >>6996
>>6127
Lol even redhat can't stand his faggotry.
>>5890
complexity toll still being paid
>>5784
Literally This, just use vim it already has all the highlights you need
Replies: >>6135
>>6130
Neovim also has the only syntax highlighter that understands syntax, nvim-treesitter.
>Lennart Poettering leaves Red Hat
>to join Microsoft
Good riddance. Finally we can start to get rid of his mess.
Replies: >>6148 >>6149 >>6152
welcome_to_the_circus.png
[Hide] (805.7KB, 1289x907)
>>6147
>Finally we can start to get rid of his mess.
This will only leave things in a even worse state than they've been before. He's still working on systemd after all, it's just that now he pretty much admitted to being a Trojan Horse from the get-go (to absolutely no one's surprise).
Replies: >>6152
>>6147
https://archive.ph/Ky4ta
>Lennart Poettering - systemd + PulseAudio Creator - Departed Red Hat

The Linux equivalent of saying "oh yeah I created polio and the tapeworm"
Replies: >>6154
>>6147
>>6148
>to join Microsoft
>He's still working on systemd after all
Nothing will improve, it will only make Microsoft systemd/Linux an even more descriptive name. Leaving IBM to join its hellspawn doesn't make much of a difference. Both own Linux.
d08ec109ebd8957e5dfbd3f720f06e76a026dd93d5e0f1603df07a72cb4332ca.mp4
[Hide] (726.1KB, 720x480, 00:12)
>>6149
Reminded me of this
Retbleed: Arbitrary Speculative Code Execution with Return Instructions on X86 CPUs
>Unlike its siblings, who trigger harmful branch target speculation by exploiting indirect jumps or calls, Retbleed exploits return instructions.
>This means a great deal, since it undermines some of our current Spectre-BTI defenses.
>One such defense that many of our operating systems use today is called retpoline. Retpolines work by replacing indirect jumps and calls with returns. 
>
>As it turns out however, Retbleed is indeed practical to exploit, thanks to the following two insights:
<We found that we can trigger the microarchitectural conditions, on both AMD and Intel CPUs, that forces returns to be predicted like indirect branches. We also built the necessary tools to discover locations in the Linux kernel where these conditions are met.
<We found that we can inject branch targets that reside inside the kernel address-space, even as an unprivileged user...
>
>We have verified that Retbleed works on AMD Zen 1, Zen 1+, Zen 2 and Intel Core generation 6–8.

https://comsec.ethz.ch/research/microarch/retbleed/
https://comsec.ethz.ch/wp-content/files/retbleed_sec22.pdf & https://comsec.ethz.ch/wp-content/files/retbleed_addendum_sec22.pdf
Replies: >>6229 >>6253 >>7071
>>6223
Today's processors are TDP-bottlenecked above all and speculative execution is an extreme waster of energy and therefore TDP. I don't get why they don't just do away with such a harmful optimization beyond saying they have it in marketing material.
Replies: >>6233 >>6234
>>6229
Because backdoors.
>>6229
Speculative execution is not a waste of energy, the cpu can choose to do nothing but nearly the same amount of energy is used. Pipelining in CPU implies some cycles would be wasted every branch if there is no speculation.
In the following example, the processor cannot do anything while waiting for the result of the ALU
ADD R2 R3
JEQ R1
	JEQ	NOP     ADD
Fetch	Decode	ALU	Memory	Writeback
		^
There must be a nop because the result of ADD is not available until ADD finishes its ALU stage. Speculative execution allows the CPU to pick a branch (or in some implementation both) and execute as if the result was available. If the prediction fails, we get branch misprediction.
Is it a security problem, but it does improve performance.
Intel-aviv_security_essentials.png
[Hide] (162.3KB, 692x289)
>>6223
Does this work on CPUs prior to Zen?
If only AMD had released a pre-botnet Bulldozer CPU with AVX2.
c9a5132b3ec1083243c0b139d14a349d570b830f.gif
[Hide] (9.9KB, 454x202)
Report: Microsoft will return to releasing new Windows versions once every 3 years
    But the Windows-as-a-service era is far from over.    

>Rather than updating a single version of Windows for many years as it did with Windows 10, Microsoft plans to return to a schedule where it releases a new major version of Windows roughly once every three years, putting a hypothetical "Windows 12" on track for release at some point in the fall of 2024.
https://arstechnica.com/gadgets/2022/07/report-microsoft-will-return-to-releasing-new-windows-versions-once-every-3-years/
Replies: >>6291 >>6316
>>6284
M$ really can't make up their mind about what to do with Windows, it's beyond sad.
Mark_the_social_retard_fuckerturd_by_rware-d56f0bi.jpg
[Hide] (429.8KB, 700x970)
Facebook has started to encrypt links to counter privacy-improving URL Stripping
>https://www.ghacks.net/2022/07/17/facebook-has-started-to-encrypt-links-to-counter-privacy-improving-url-stripping/
Replies: >>6315 >>6316 >>6318
fda4c5f0c8cb7c57de2d25358205d8dd8aa3e9b8e957bf2e9fd1d21470e4569c.gif
[Hide] (726.1KB, 254x401)
Intel Microcode Decryptor by chip-red-pill
>At the beginning of 2020, we discovered the Red Unlock technique that allows extracting Intel Atom Microcode.

>Can I make a custom microcode update?
<No, you can't. Only decryption is supported, because microcode has an RSA signature for integrity protection.
>How you had extracted the keys?
<Using vulnerabilities in Intel TXE we had activated undocumented debugging mode called red unlock and extracted dumps of microcode directly from the CPU. We found the keys and algorithm inside.
https://github.com/chip-red-pill/MicrocodeDecryptor
https://yewtu.be/watch?v=V1nJeV0Uq0M
Replies: >>6315
>>6312
>facebook
>privacy
>>6314
I hope they find a way to modify the RSA keys
>>6284
I remember when they said Windows 10 was gonna be the last version of Windows and that it would take on a SaaS business model. Seems like they're desperate now to make people anticipate shiny new turds editions. I'm guessing its also a way to force people into updating by depreciating older versions of Windows on a consistent basis.

>>6312
Very simple solution is to not use it. I don't think I've ever seen FB links anywhere. Plenty of Google ones though.
>>6312
But did they forget about climate change? Encrypting URLs causes unnecessary carbon emissions.
Replies: >>6321
>>6318
Trust the science, take the safe and effective climate change booster.
>>6127
Fedora to disallow CC0-licensed code
https://lwn.net/Articles/902410/
Replies: >>6472
>>6455
>licensing autism
Who uses CC0 for code anyway? Most/all programmers worth their salt use Unlicense or 0BSD.
>>5365
Is that a bad thing?
Not much point in supporting a crippled platform that can't even compile software and doesn't work.

NetBSD doesn't have this requirement but most of their ports don't actually work. The VAX port for instance can only run inside emulators, it's too slow to run on a real VAX with typical tasks like installing a program taking days. The Dreamcast port is completely unusable, it only runs on CDs which are read-only storage and running a single program from the base system can cause it to run out of memory because the Dreamcast only has 16MiBs.

If OpenBSD runs on a system, it works, being able to compile its own packages is a good minimum bar to pass.
Replies: >>10680
85157890_p0.png
[Hide] (3.1MB, 1600x1200)
Linus Torvalds uses an ARM-powered M2 MacBook Air to release latest Linux kernel
< First he took the CoCk and then he become a Macfag?! He uses Asahi Linux.
> Also worth noting is that Torvalds believes that the 5.20 release of the Linux kernel will end up becoming version 6.0, not because of any specific feature updates but because he's "starting to worry about getting confused by big numbers again." 
https://arstechnica.com/gadgets/2022/08/linus-torvalds-uses-an-arm-powered-m2-macbook-air-to-release-latest-linux-kernel/

Qualcomm’s M1-class laptop chips will be ready for PCs in “late 2023”
https://arstechnica.com/gadgets/2022/04/qualcomms-m1-class-laptop-chips-will-be-ready-for-pcs-in-late-2023/

This 6-inch board turns a Raspberry Pi module into a DIY router
< idk, sounded somewhat interesting...
https://arstechnica.com/gadgets/2022/08/this-6-inch-board-turns-a-raspberry-pi-module-into-a-diy-router/

CVE-2022-29582 - An Linux io_uring vulnerability
https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/


C23 is Finished: Here is What is on the Menu
>constexpr
>#embed
>the nullptr constant
>memset_explicit - also, see https://man.openbsd.org/explicit_bzero for comparison.
>etc...
https://thephd.dev/c23-is-coming-here-is-what-is-on-the-menu


Go 1.19 Released
>first new API in the standard library to use generics: atomic.Pointer[T]
>The Go memory model has been revised to align Go with the memory model used by C, C++, Java, JavaScript, Rust, and Swift. 
>The runtime now includes support for a soft memory limit. This memory limit includes the Go heap and all other memory managed by the runtime, and excludes external memory sources such as mappings of the binary itself, memory managed in other languages, and memory held by the operating system on behalf of the Go program. 
>The compiler now uses a jump table to implement large integer and string switch statements. 
https://go.dev/doc/go1.19
https://blog.carlmjohnson.net/post/2022/golang-119-new-features/
https://changelog.com/gotime/240
+ Discussion: [add] standard iterator interface[?]: https://github.com/golang/go/discussions/54245

DHS warns of critical flaws in Emergency Alert System devices
< Government being incompetent as usual...
> The Department of Homeland Security (DHS) warned that attackers could exploit critical security vulnerabilities in unpatched Emergency Alert System (EAS) encoder/decoder devices to send fake emergency alerts via TV and radio networks.
> Hackers can disrupt legit warnings or issue fake ones of their own.
https://www.bleepingcomputer.com/news/security/dhs-warns-of-critical-flaws-in-emergency-alert-system-devices/
https://arstechnica.com/information-technology/2022/08/huge-flaw-threatens-us-emergency-alert-system-dhs-researcher-warns/

Slack resets passwords after exposing hashes in invitation links
https://www.bleepingcomputer.com/news/security/slack-resets-passwords-after-exposing-hashes-in-invitation-links/

Visa knew about Pornhub’s child porn, judge says, and now must face trial [Updated]
< This is mainly old news, but ((( MindGeek ))) BTFO and ((( Visa ))) "dindu nothing".
https://arstechnica.com/tech-policy/2022/08/california-court-says-visa-may-be-partly-liable-for-child-porn-problem/

Post-quantum encryption contender is taken out by single-core PC and 1 hour
https://arstechnica.com/information-technology/2022/08/sike-once-a-post-quantum-encryption-contender-is-koed-in-nist-smackdown/

Paper: Layered Binary Templating: Efficient Detection of Compiler and Linker introduced Leakage
https://arxiv.org/pdf/2208.02093.pdf
Replies: >>6551 >>6619
>>6550
Bonus: Crypto rant: https://blog.cr.yp.to/20220805-nsa.html
Replies: >>6614
tad_the_magician.png
[Hide] (265.3KB, 311x533)
F
Replies: >>6620 >>6621
>>6551
Was really funny to see the usual disinfo shills like Matthew Green come out of the woodwork immediately to try and FUD against this.
CISA warns of Windows and UnRAR flaws exploited in the wild
>CVE-2022-34713
<Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability.
<The issue was initially reported to Microsoft by researcher Imre Rad in January 2020 but his report was ((( misclassified ))) as not describing a security risk and dismissed as such.
Another case of proprietary software not getting security patches.

>CVE-2022-30333
<RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file.
https://www.bleepingcomputer.com/news/security/cisa-warns-of-windows-and-unrar-flaws-exploited-in-the-wild/

Cisco hacked by Yanluowang ransomware gang, 2.8GB allegedly stolen
>The company revealed that the attackers could only harvest and steal non-sensitive data from a Box folder linked to a compromised employee's account.
>The Yanluowang threat actors gained access to Cisco's network using an employee's stolen credentials after hijacking the employee's personal Google account containing credentials synced from their browser.
https://www.bleepingcomputer.com/news/security/cisco-hacked-by-yanluowang-ransomware-gang-28gb-allegedly-stolen/


GitHub's new privacy policy sparks backlash over tracking cookies
>Developers are furious at GitHub's upcoming privacy policy changes that would allow GitHub to place tracking cookies on some of its subdomains.
>The Microsoft subsidiary announced this month, it would be adding "non-essential cookies" on some marketing web pages starting in September, and offered a thirty-day "comment period" for users.
>The ((( non-essential cookies ))) in this context, better known as "tracking cookies" refer to a class of cookies that are shared across multiple websites and web services.
https://www.bleepingcomputer.com/news/security/githubs-new-privacy-policy-sparks-backlash-over-tracking-cookies/


Alternative code hosting sites:
>https://gitlab.com/explore
>https://gitgud.io
>https://codeberg.org/
>https://bitbucket.org/ (I don't know if they are much better, however)
>https://notabug.org/
>https://sr.ht/
>>6550
linus is a fucktard inept wigger who never did anything useful other than start an open source OS and even that was of questionable merit as there are tons of other OS just as viable
>doesnt know what a security is. literally even admitted that they dont care about security, while taking a free ride on the "most secure OS muh unix" boomer meme
>comes off as based only in comparison to other fucktarded open source wigger cucks whos primary virtue is being polite even to insanely stupid people including themselves (translation: its a community of mentally impared people aka autists)
>buys stupid fucking meme computer because of supposedly better hardware (it isn't)
Replies: >>6632
>>6612
F
07b6fd4451d4316a6acdd2f1909632c1efa1eeeac342414756d5abbc91d3f99a.mp4
[Hide] (4MB, 640x852, 00:30)
>>6612
>already been four years
i want to go back
>>6619
He's intelligent when it comes to designing and managing the development of kernels, but he's not that smart outside of it. He on one of the official mailing lists was strongly pushing for Covid-19 vaccines. A shame honestly, but I'd rather have him than some corporate plant or self-centered narcissist like a lot of people in software.
>doesnt know what a security is. literally even admitted that they dont care about security, while taking a free ride on the "most secure OS muh unix" boomer meme
Didn't he say this only because keeping the kernel and its development running smoothly is hard enough on its own? I don't think he completely disregards security, but I don't think he prioritizes it either.
Replies: >>6633
>>6632
>He's intelligent when it comes to designing
You couldn't be more wrong.
1900 Signal users’ phone numbers exposed by Twilio phishing
>Signal, like many app companies, uses Twilio to send SMS verification codes to users registering their Signal app.
>With access to Twilio's customer support console, attackers could have potentially used the verification codes sent by Twilio to activate Signal on another device and thereby send or receive new Signal messages.
>Or an attacker could confirm that these 1,900 phone numbers were actually registered to Signal devices.
>Signal is asking users to enable registration lock, which prevents Signal access on new devices until the user's PIN is correctly entered.
https://arstechnica.com/information-technology/2022/08/twilio-phishing-attack-exposes-phone-numbers-for-1900-signal-users/
https://support.signal.org/hc/en-us/articles/4850133017242


Microsoft blocks UEFI bootloaders enabling Secure Boot bypass
>The three Microsoft-approved UEFI bootloads that were found to bypass the Windows Secure Boot feature and execute unsigned code are:
< New Horizon Datasys Inc: CVE-2022-34302 (bypass Secure Boot via custom installer)
< CryptoPro Secure Disk: CVE-2022-34303 (bypass Secure Boot via UEFI Shell execution)
< Eurosoft (UK) Ltd: CVE-2022-34301 (bypass Secure Boot via UEFI Shell execution)
https://www.bleepingcomputer.com/news/security/microsoft-blocks-uefi-bootloaders-enabling-windows-secure-boot-bypass/
Replies: >>6682 >>6734
>>6679
Anything using "privacy" app that requires a phone number is fucking retarded.
A phone number is strongly tied to the centralized infrastructure. Any entity with the authority can quickly correlate a phone number to a person. Cash & burner sim can work for a while, but Signal users keep their sim forever.
>https://spectrum.ieee.org/quantum-safe-encryption-hacked
>post quantum algo broken (key can be recovered)
>a fucking leaf is behind it
never trust leafs to your crypto
Microsoft Sysmon can now block malicious EXEs from being created
>https://www.bleepingcomputer.com/news/microsoft/microsoft-sysmon-can-now-block-malicious-exes-from-being-created/
>it allows them to block the creation of executables based on various criteria, such as the file path, whether they match specific hashes, or are dropped by certain executables.

241 npm and PyPI packages caught dropping Linux cryptominers
>https://www.bleepingcomputer.com/news/security/241-npm-and-pypi-packages-caught-dropping-linux-cryptominers/
>These packages are typosquats of popular open source libraries 
>but instead, download and install cryptomining Bash scripts from the threat actor's server.

So, can anyone explain me why it's always NPM or PYPI? What are they doing wrong?
Replies: >>6707 >>6714
>>6706
They are designed to be easy and have big market shares. They redesign package managers to control library distribution. This creates single point of failure. Another thing is those libraries have deep library dependencies, issues can be hidden for a long time before someone decide to check it out.
Replies: >>6714
>>6706
>>6707
Having a ton of dependencies is also bad because it makes it harder to know which licenses your program uses.
>https://artemis.sh/2022/08/21/this-program-is-illegally-packaged-in-14-distributions.html
trying to find gems among the garbage heaps on 4chin, I found this thread

https://boards.4channel.org/g/thread/88257001
thoughts?
Replies: >>6718 >>6724 >>6814
>>6717
If you're going to post 4um shit at least post the archive site:
https://desuarchive.org/g/thread/88257001
>>6717
It's machine learning image generation with a prompt. They probably trained the model with a fuck tons of prompts to make a big model that can be added to a base set of images.
>not ready to share sources
Discord faggots again though.
There are many more copycats after dall-e got released. The main issues are training data and computation power. They probably built something on top of https://github.com/borisdayma/dalle-mini .
>>6679
The number of companies caught up in the Twilio hack keeps growing
>https://arstechnica.com/information-technology/2022/08/the-number-of-companies-caught-up-in-the-twilio-hack-keeps-growing/

Ransomware Actor Abuses Genshin Impact Anti-Cheat Driver to Kill Antivirus
>https://www.trendmicro.com/en_us/research/22/h/ransomware-actor-abuses-genshin-impact-anti-cheat-driver-to-kill-antivirus.html
>https://www.bleepingcomputer.com/news/security/hackers-abuse-genshin-impact-anti-cheat-system-to-disable-antivirus/
This was already posted on /v/.

ETHERLED: Air-gapped systems leak data via network card LEDs
>https://www.bleepingcomputer.com/news/security/etherled-air-gapped-systems-leak-data-via-network-card-leds/

Microsoft: Russian malware hijacks ADFS to log in as anyone in Windows
>https://www.bleepingcomputer.com/news/security/microsoft-russian-malware-hijacks-adfs-to-log-in-as-anyone-in-windows/

Atlassian Bitbucket Server vulnerable to critical RCE vulnerability
https://www.bleepingcomputer.com/news/security/atlassian-bitbucket-server-vulnerable-to-critical-rce-vulnerability/

GitLab ‘strongly recommends’ patching critical RCE vulnerability
>https://www.bleepingcomputer.com/news/security/gitlab-strongly-recommends-patching-critical-rce-vulnerability/

Windows Terminal is now the default terminal in Windows 11 dev builds
>https://www.bleepingcomputer.com/news/microsoft/windows-terminal-is-now-the-default-terminal-in-windows-11-dev-builds/

MacBook self-repair program highlights Apple’s flawed repairability progress
>On Tuesday, Apple expanded its self-service repair program to M1-based MacBooks. Giving customers repair manuals and the ability to buy parts and buy or rent tools for M1 MacBook Airs and M1 MacBook Pros is a far cry from the Apple of yesteryear.
>https://arstechnica.com/gadgets/2022/08/macbook-self-repair-program-highlights-apples-flawed-repairability-progress/
Never buy anything from ((( Apple ))). Apple is making it much harder than necessary to even replace the battery.

Google’s Fuchsia OS is taking over smart displays, now on its second device
>https://arstechnica.com/gadgets/2022/08/googles-fuchsia-os-lands-on-its-second-device-the-nest-hub-max/

LastPass developer systems hacked to steal source code
>https://www.bleepingcomputer.com/news/security/lastpass-developer-systems-hacked-to-steal-source-code/
Use KeePass/KeePassXC instead.
mgmg.png
[Hide] (16.3KB, 900x600)
Arch Linux Latest News: Grub bootloader upgrade and configuration incompatibilities
>Recent changes in grub added a new command option to fwsetup and changed the way the command is invoked in the generated boot configuration. Depending on your system hardware and setup this could cause an unbootable system due to incompatibilities between the installed bootloader and configuration. After a grub package update it is advised to run both, installation and regeneration of configuration:
grub-install ...
grub-mkconfig -o /boot/grub/grub.cfgThey've released a system breaking package without informing their users beforehand once again.
8991f553-1a09-4f7a-a3d3-7781a0eb15c4.png
[Hide] (248.9KB, 600x600)
Where do you guys get your news from?
Replies: >>6768 >>6769 >>6791
>>6767
When I actually bother to read the news I use
>Phoronix
>Hacker News
>Different subreddits (r/AMD, r/Vulkan, Etc...)
>Level1Techs/Gamers Nexus/Etc. YT channels
>Different /g/s and /tech/s (On 4chan, here, and some other smaller ones...)
And lots of other small resources I come across sporadically that are too unknown/numerous to list. I like to have multiple different perspectives and diverse sets of information, as it paints a pretty picture of reality instead of sitting on 4/g/ all day and being fed exclusively shit.
Replies: >>6798
>>6767
4/pol/
here
Replies: >>6798
>>6767
Risky Business shownotes are good. But the podcast itself now has woke twitter politics forced in every 5 seconds.
Replies: >>6798
__kirima_syaro_gochuumon_wa_usagi_desu_ka_drawn_by_mitya__0eda440adddccfd65890c4a4fe4ac021.png
[Hide] (320.5KB, 800x800)
__kirima_syaro_gochuumon_wa_usagi_desu_ka_drawn_by_mitya__5b9d91a1d514b671f027d2d4784f622a.png
[Hide] (283.3KB, 700x700)
>>6768
>Hackernews
Ah, I used to use this and lobster.us all the time, but I stopped because the userbase is essentially reddit on both sites, and the downvoting system is cringe. But that was my fault for bothering to do anything on those sites other than reading articles. And yeah, 4chan/g/ and the entirety of that wretched website is terrible. Nowadays I only visit it sparingly throughout the year to visit some generals in /jp/ and /diy/ and to get book recommendations off of /sci/ and /lit/.
>>6769
>4/pol/
Haven't been there in years. Can't imagine how garbage it is now. But I guess it's still useful for happenings.
>>6791
>woke twitter politics forced in every 5 seconds
No thanks. I think I'm good lol.
Replies: >>6799
>>6798
>Can't imagine how garbage it is now
75-85% threads were made by bots or shills. I have developed a mental filter to figure out which is which. It is the only place with speed, recent event and a possibility of not being completely botnet.
Replies: >>6821
kiwi-2.png
[Hide] (265.8KB, 527x966)
kiwi-1.png
[Hide] (185.1KB, 482x864)
Not directly /tech/ related but Russian-based DDoS protection and colocation provider DDoS-Guard has deplatformed Kiwi Farms shortly after Cloudflare did. 

DDoS-Guard currently provides DDoS protection for Hamas. I guess laughing at trannies is worse than terrorism.
Replies: >>6802 >>6803
>>6801
>cloudflare deplatforming websites it doesn't like
The absolute state of the modern web... Should >we just make a brand new infrastructure from scratch?
Replies: >>6803
>>6801
Thank you anon, I just wanted to post this.
>>6802
At this point, people need to start being worried about ISPs cutting their lines for what they post online. What do you suggest for long range or cross ocean communication? City wide mesh net (eg batman) isn't hard to get going, but recreating the internet would require expensive infrastructure, satellites or undersea cables.
Replies: >>6807 >>6809
>>6803
Until and unless WAN access for client-side hardware with general-purpose computing capability is entirely cut off (e.g.: OnLive MicroConsole but without even CPU cores or RAM) it will always be possible to build an overlay network atop the Internet or whatever replaces it. Even without installing a special autism browser, for instance, there are webshit-runtime VPNs that can indirectly connect to TOR or whatever.

An argument I've been seeing lately, and I think I agree with, is that TPTB are are treading a balance between stigmatizing and pushing truly fringe elements off the normienet slow enough, versus censoring such banal content so soon that significant fractions of normalfags adopt tools like proxies & P2P.

I'm not sure what that tipping point is, but the situation in fashier turd-world regimes like Saudi Arabia or China where most of the online population uses private VPNs habitually, isn't something they want in the "core" countries where the kayfabe of liberal democracy is still necessary.

Especially with some of the more ideologically lolbert central figures of the current Silicon Valley establishment starting to admit centralization is flawed enough to (even if it's just cynical buzzword mongering for now) dip their toes in darknet-like "Web3" projects such as Block/Bluesky and Libra/Metaverse, I suspect the pacing with which the noose is tightened around the clearnet will become more precarious and desperate very soon.
d948bdbb213d364dfc1d1979206be7bfd5799b361cbe16a90334b9e1306718d7.jpg
[Hide] (7MB, 4032x3024)
>>6803
>City wide mesh net (eg batman) isn't hard to get going, but recreating the internet would require expensive infrastructure, satellites or undersea cables.
4U
Replies: >>6810 >>6811
>>6809
Radio waves only really work until someone decides to get a radar and destroy the network. 
Encryption helps with data safety, but the network is never really permanent.
Replies: >>6813 >>6817 >>6820
>>6809
how would people discover it? will it even be usable given how slow the bandwidth/read times/compute times would be on a Pi?
>>6810
Also, you can't go transcontinental with anything other than shortwave (then only at certain times of night for the longest ranges), which is only about 28MHz of bandwidth even for an uncontested directional point-to-point link.
Replies: >>6819
yotsuba_6.png
[Hide] (8.9KB, 400x400)
>>6717
I hate ai niggers for making any art board unusable.
Replies: >>6815
>>6814
I hate art board jannies for being complicit in that bullshit
>>6810
If we use SDR, phased array of antennas and that military technology that creates signal at random frequencies so it's hard to locate
then we can build something
Moreover we can use satellites that doesn't require authentication
Replies: >>6827
>>6813
>Also, you can't go transcontinental with anything other than shortwave (then only at certain times of night for the longest ranges)
In some cases this is true. For greater than 1200 km / 750 mile propagation conditions are not always favorable for high data throughput. The Network is still a meshed system but on a much larger scale. Each node can provide 300-400 miles of continuous coverage with consistently high performance. This drastically decreases the amount of nodes required for a complex network. To bridge a connection across continents still remains a challenge.

>28MHz of bandwidth 
Incorrect, far lower. The Network has 12 kHz to 24 kHz of usable "bandwidth" but multiplicatives of that in data throughput. Channel capacity and symbol rate are independent of bandwidth. In modern telecom and signal processing there are several methods of utilizing one shared frequency space across multiple independent channels. Schemas like  2x2 or 4x4 MIMO carry over to HF far better than expected. Unfortunately due to the current archaic state of the amateur radio hobby baby boomers insist on doing 50 baud FT8 instead of 500,000 baud  OFDM so you don't see any of this in practice.

But perhaps you will soon.
Replies: >>6825
>>6810
>Radio waves only really work until someone decides to get a radar and destroy the network. 
Spread spectrum jamming over HF is a difficult task to accomplish even for an actor with unlimited resources at their disposal. Most of the jamming that occurs is done against fixed AM stations with known time schedules and operating frequencies. If what you mean by "radar" is interference that degrades signal quality created from over the horizon radar systems this can be isolated and removed from a signal almost entirely. There is a spatial component of every EM wave.  For that wave or signal to arrive it has to follow a path in space.  HF allows for a far greater degree of directionality and signal resilience. Certain schemas can allow for a complete obfuscation of the originating point of transmission entirely.
>Moreover we can use satellites that doesn't require authentication
In many cases this is illegal and is just simply impractical outside of certain niche use cases. The segment of the RF spectrum that deprecated SATCOM antennas operate on are not designated for amateur or ISM use. 
https://www.youtube.com/watch?v=RyxheXG9APo
Occasionally you will hear drug traffickers or radio pirates on them though.
Replies: >>6822 >>6827
>>6799
The whole site is a gigantic honeypot, so that's unsurprising.
>>6820
>jamming 
I meant just destroying/stealing the relays. Anyone can easily triangulate the signal and find the source.
Replies: >>6827
>>6819
>12 kHz to 24 kHz
Irrelevant, as that's per-channel using the default ITU channel assignments for mixed hobbyist broadcasters, intended so hundreds of such channels to share the 3-30MHz skywave spectrum. We're talking about a narrowly directional channel-aggregated link that would hog the whole thing.
>Channel capacity and symbol rate are independent of bandwidth
LOL

DRM D Mode can manage maybe 30kbps for a 20kHz channel. Any technique that can be used to squeeze more drops of blood from a few kHz of bandwidth, will yield proportionally greater returns from GHz of bandwidth. No matter how you slice it, shortwave links simply can't do more than an Mbps or so, in comparison to a single KU-band satellite spot beam doing hundreds of Mbps, terrestrial microwave at >10gbps, and optical at >100gbps per fibre.

As I noted upthread though, I see no reason we'll have to abandon simply putting overlay protocols atop the normie Internet (or whatever segmented thing replaces it) unless they stop allowing connections from client hardware with general-purpose computing hardware.
Replies: >>6826
>>6825
I didn't ask
>>6820
You can always use a stronger signal to fuck up whatever someone is trying to send.

>>6817
>just use random frequencies
Except if you want this to be more than a masturbation project then somebody else needs to be able to receive and understand your message, maybe even send one back.

>>6822
>Anyone can easily triangulate the signal and find the source.
If there really was a war on citizens communicating then the government would restrict and monitor the import of radio equipment (the same way they do for gun and bomb components now). Then the dozen nerds who know how to build their own shit from scratch can be  triangulated and v&ed as soon as they transmit something.

>6809
I hope you wiped your fingerprints before leaving shit for the police to find.
It's back!
>LtU is now running in a new, more stable environment
http://lambda-the-ultimate.org/node/5654
>GLib 2.74.0 has a serious bug crashing applications
https://nitter.snopyta.org/zemarmot/status/1574362564015841281

>Systemd support is now available in WSL!
https://devblogs.microsoft.com/commandline/systemd-support-is-now-available-in-wsl/
Replies: >>6991 >>6994 >>6996
d561df4f35ae2fed2ddc21da23bbe4d23f5eae03c4407c60de0e9e1c152e7c0d.jpg
[Hide] (465.5KB, 1280x720)
>>6990
>Systemd support is now available in WSL!
let's see how much worse we can actually make it
Replies: >>6996
>>6990
WSL2 is just a VM. I can't understand how much can they screw up to not even have a complete userland working on it.
My work forces Windows on me. But I had to work with Kubernetes. I went with WSL2 because I thought it'd be faster. I was wrong. There is a stupid bug with bridging network adapter and systemd doesn't work, therefore kubeadm doesn't as well. devfs is slow as fuck and causes all container runtime to freak out when a path with space in it was mounted.
Replies: >>6995
>>6994
>WSL2 is just a VM
Hilarious watching MS's retreat from full kernel integration in the POSIX Subsystem days, to just slapping a Hyper-V image in there and calling it a day,
systemd.png
[Hide] (61.7KB, 591x710)
poottering-kek.png
[Hide] (512.2KB, 1280x2084)
>>6991
>>6990
>>6127
Remember what Boittering said about his abomination.
>Sooner or later they'll hopefully notice that it's
not worth it and cross-distro unification is worth more.
https://archive.ph/GyO1j
Replies: >>7071
>Fedora Linux Disabling Mesa's H.264 / H.265 / VC1 VA-API Support Over Legal Concerns
https://archive.ph/tAlvG
https://archive.ph/XG22a
Replies: >>7000 >>7034
>>6999
>If simply handling the bitstream is a violation like you say then glibc/kernel could be patent infringing with an open() call. Let's not get that silly.
<IANAL
That's pretty obvious
<Think of it like a jigsaw puzzle, where the person who places the last piece in the puzzle pays the license. But then stop thinking of it like that and just assume it's a lot vaguer and way more legally involved than that.
What an absolute motherfucking retard

Reminds me of back when the fucking abomination that is WebM was created, and open sores faggots were arguing that merely allowing Firefox/Chrome to pass arbitrary codecs through an <object> tag to the OS's ffmpeg/libav running user-installed codecs would magically open up Mozilla/Google to pAtEnT iNfRiNgEmEnT through some inscrutable jurisprudential wizardry nobody was ever able to cite specific precedent for.
Replies: >>7007
>>7000
>who places the last piece in the puzzle pays the license
It's time for in-browser micro-transactions? The user receive the information at the end of the process.
>tfw 3 cents off from watching that webm
>>6999
Why source-based distros are superior, part 1827.
Replies: >>7035
college.jpg
[Hide] (72.7KB, 650x768)
>>7034
Binary distro:
>oh no, the distro did something retarded, as a worst-case scenario for these specific packages, i'll have to fall back to manually fussing with configs and/or waiting for source to build.
Source-based distro:
>oh no, i'm retarded, i always do everything by manually fussing with configs and/or waiting for source to build.
Replies: >>7036 >>7038
>>7035
>oh no, i'm retarded, i always do everything by manually fussing with configs and/or waiting for source to build.
At least my house is warm.
>>7035
>oh no, I am so retarded that I can't leave my computer compiling at night
>oh no, I am so retarded that "emerge x" is so manual
Next you will say no one should ever edit their configs.
Replies: >>7039
>>7038
>default binaries
Letting the buildbot do it for everyone at once is faster, cheaper, and better.
>a handful of the very most popular build flags
Could just download an alternate prepackaged binary, especially if it's popular enough to be on a repo maintained by my distro's packagers.
>truly speshul snowflake build flags
Just build it manually and unfuck it whenever upstream breaks muh scripts, exactly like on a source-based distro, except it's only for a fraction of my packages.
Replies: >>7040
>>7039
>faster, cheaper
For everyone, sure
>better
No, your binaries are not optimized for your processor.
What is the point of using free and open source software if you don't exercise your freedom by compiling and controlling all parts of it? Just because someone tell you the package is what it is and you trust it?
For a user, precompiled binaries makes no difference at all when one overnight build is all it takes to upgrade software. I don't care about compiling for others and how much faster, cheaper and "better" the process is. Only my system matters to me.
Replies: >>7041
>>7040
>your binaries are not optimized for your processor
LOL, as if source distro LARPers aren't the ones who cry the loudest about any real optimization because it hurts muh build times.
>What is the point of using free and open source software if you don't exercise your freedom by compiling
If the resulting binary is the same or very nearly so, as a binary sitting on the distro's repo, that isn't "exercising my freedom", just pointless masturbation.
>you trust it?
Oh noooo! Not muh heckin invalid hash collisiorinos, noooooooo! That could never happen to source or buildchains!!1!
>controlling all parts of it
>I don't care about compiling for others and how much faster, cheaper and "better" the process is. Only my system matters to me.
How about if, assuming your config is actually new and not just copypasta'd from what would be an optional package in a binary distro, what you're trying to achieve with your build is similar to what some other people are interested in? Then some of (you) could maintain that as a package, regularly tested against the rest of the distro and better known to upstream for each release, which would make it less likely to break everyone's install including yours, reducing the amount of dicking around with configs any of you have to do.

Oh, wait, that's what distros are for in the first place.
Replies: >>7042
>>7041
>muh build times
Nice strawman. I LTO everything, who care about build time when I am not using the computer? If I need to use the machine while building, PORTAGE_NICENESS solves it nicely.
>the same or very nearly so
How do you know without doing it? How do you know you can really get the sources? The only way to prove integrity is with your own eyes.
>pointless masturbation
Even if you can somehow know beforehand the resulting binaries are the same, you don't really own the software you are using without owning the source and the build process.
>comparing hash
How again do you know the hash of the resulting binary without compiling it yourself? You heard from someone? What about compiling with my flags and march=native? Does the maintainer compile the package for every possible combination to generate a hash for you?
>that's what distros are for
A totally correct description for distros, binaries or sources. Gentoo overlay, aur, all of them are packages users shared with everyone. Why do you think only binaries are not dicking around with configs?
>dicking around with configs
You seems to be very adverse to configuring your system and software, and you shouldn't be. Any user with a good understanding of their systems can do that with ease. Not only is it easy, it is also good for the user to gain more understanding of their system.
You also assume everyone is using the same architecture. My set of configs are used on arm and aarch64, in addition to x64.
Your argument against source distros is to be a binary distro by doing the source part of distro yourself? What the fuck are you on?
Replies: >>7043
He_could_be_in_this_very_room.mp4
[Hide] (1.4MB, 1280x720, 00:09)
>>7042
>How again do you know the hash of the resulting binary without compiling it yourself?
How do you know your sauce wasn't h@x0r3d? What about your installer? What about upstream's tarballs from the dev's own git if you're using something exceptionally autistic like Sourcemage? What about your copy of  It's a conspiiiiiiracy!!!
>Why do you think only binaries are not dicking around with configs?
Because if you don't make any meaningful change from defaults, you aren't doing anything a buildfarm hasn't already done for you.
>You also assume everyone is using the same architecture
Gosh, that's almost as amazing as each arch of a distro providing crosscompiled repos for each one.
>You seems to be very adverse to configuring your system and software
Not in the slightest. What I'm averse to is LARPing with the build process when I'm not going to make NONTRIVIAL changes.
Replies: >>7048 >>7061
>>7043
If my source is altered in any way, I can check it. You only get the binary with no chance to inspect it.
My install(1) is compiled as well.
You just don't take security and integrity of the software you use seriously. Many people don't. There is nothing LARPing about compiling software, even without changes, just to make sure I still own my system completely.
>almost as amazing as each arch of a distro providing crosscompiled
Everyone who make changes should compile for all architectures in the world and become a build farm?
Replies: >>7061
1381783143284.jpg
[Hide] (323.9KB, 768x960)
>>7048
>My install(1) is compiled as well.
Just because you have the source doesn't mean there's no backdoor. You have to actually read the source, which you are obviously not doing. And even then you can have a trusting trust situation.

>If my source is altered in any way, I can check it.
All package managers, source and binary, automatically check that what you download from the mirror is the same hash as what everyone else has downloaded.

>muh speed
With all the money you're spending on electricity you could just buy a faster computer. I know, I used to be you.

>>7043
>What I'm averse to is LARPing with the build process when I'm not going to make NONTRIVIAL changes.
Hardened Gentoo made sense when grsec was public and none of the compiler hardening was merged into upstream gcc. Compiling everything from source gave significant security improvements which were too harsh/unstable for a binary distro to deploy. Things like position Independent code + address space layout randomization, stack smashing protection, write xor execute etc. All these things are either picked up by binary distros now or impossible without kernel support.
Replies: >>7066 >>7077 >>7082
>>7061
>Just because you have the source doesn't mean there's no backdoor
>trusting trust
True. But getting the binary means the only source of proof is hashes. With the sources, the user can always check it.
>electricity
Not my problem, I share utilities and I am a massive cheap fag. I will use this crusty old computer until the moment it doesn't boot up.
Replies: >>7075 >>7077
>>5419 >>5452 >>5454 (this is the same darknet spam i saw on /b/ with the same URLs i had the browser loaded the whole time sorry for the very late post dug out some of my txt files)
does this chan have word filter can we just blacklist and autoban [.onion/] alltogether nobody really discusses relevant tor sites nowadays

>>5402 >>5396
there was a thread about that on 4chan incase you are interested https://desuarchive.org/g/thread/86675480/

>>5390
>thinking furfags care about free speech in the slightest https://desuarchive.org/g/thread/86673872/
i bet they are the same people behind disroot/riseup who just so happens to to have a datamining/ANALytics fetish

>>5568 >>7054
from the start i always knew tor was backdoored (the lgbt ACK!tivism support from the 2018 article was a clear red flag to look out for)
there is even one chan/site that adviced us to stop using it with proof of insecurity
now the remaining question is? is securedrop actually secure? i bet this shit is backdoored as well because we cant have people exposing murderna documents goy!

>>5574 >>5575
times have changed but what about turing? im using TU117 (my old GT730 kepler does not support vgpu_unlock lel)

>>5573
i hope they also opensource the GRID/vGPU components as well (including the 3080 SR-IOV) those will be essential for passthrough
its a shame lap-SUSsy lost their data from the attack hope they get it back and share the remains for free to teach nvidiot diverse employees a lesson

>>5572
>so the whole amd has bad IOMMU management meme is still not fixed
man AyyMD cpus are really truly built on the ground up for veeams (mine has smep and svm pre-enabled) kinda sad they haven't redesigned that yet my dad's low end ideapad has iommu and pcr7 binding fully enabled in the bios despite the crappy shintel processor

>>5573 (had to put it here instead)
>maxwell not supported
offtopic but why does my mx150 (on intel UHD 620 i get different problems) have graphical bugs and purple shapes when i run the games in the vbox 'visor (vmware on linux is also affected) but when it on the ryzen APU everything just loads flawlessly with no cracking sounds whatsoever
what causes this to happen? what special features on my gpu does the hypervisor need that the asus laptop lacks? they will give it back to me and i will do maintenance before returning it after replacing the old slow chink ssd?
on the 1650 there are no graphical bugs whatsoever but i do get code related errors some 3d games run very smoothly while other 2D games run sluggish (they are all unity) maybe this has something to do with the damaged windows driver files since my host continuously writes 1mb of crap whenever audio is playing even on my radeon

>>6223
any ARM specific hardware vulns? will it be a good idea to make a custom very secure tablet from samsung chips? can those be hacked as well?

>>6563
im using 4800H am i screwed? i should have bought the low end 5000 series one instead fugg

>>6996 (tranny on twitter suggesting lewd https://archive.is/9Rkmc)
>le systemd bad (https://github.com/systemd/systemd original link)
also can someone check the systemd github page? how many furfags are there i can only see the first 100 users
(useful tools can someone share the output HTML?) https://github.com/mgechev/github-contributors-list https://github.com/all-contributors/all-contributors
list of potential furries i can't fully confirm but definitely SUS i would not be too surprised if poettering is closeted one
https://github.com/AsciiWolf https://github.com/zx2c4 https://github.com/medhefgo (not too furry at all)
https://github.com/nabijaczleweli (avatar is literally a pink ZETA symbol exercise caution)
will add more and make collage after i get all 1100 of them gonna do a bit of OSINT digging (not sure if adhd works fine i kinda envy 4chan autists)
Replies: >>7074 >>7082
madotsuki_puke.jpg
[Hide] (584.3KB, 740x740)
https://lore.kernel.org/lkml/202210010816.1317F2C@keescook/
Replies: >>7074 >>7077 >>7712
>>7071
>from the start i always knew tor was backdoored
https://github.com/torproject/tor/tree/main/src
File and line number?

>>7072
There are only 2 Rust drivers and they are both toys by the authors' own admission. Someone is paying them to merge this garbage.
https://lwn.net/Articles/907685/
Replies: >>7176 >>7712
how_dare_you.jpg
[Hide] (130KB, 1272x799)
>>7066
>Not my problem, I share utilities
Well you're in a unique position so why are you posting like anyone else should give a shit.
>>7061
>You have to actually read the source, which you are obviously not doing.
This is something a lot of open sores fags fail to appreciate. For all the bleating about "muh thousand eyes", most classes of bugs are only visible to a full formal audit.
>Hardened Gentoo
>All these things are either picked up by binary distros now or impossible without kernel support.
Man, it's crazy looking at OpenBSD and seeing the best practices Linux should've supported years ahead of time.

>>7066
>With the sources, the user can always check it.
Whether or not your retarded distro LARPs with your compiler is irrelevant to whether you read the sauce

>>7072
>inb4 kernel replacement written in SPARK
Replies: >>7078
>>7077
>Man, it's crazy looking at OpenBSD and seeing the best practices Linux should've supported years ahead of time.
Grsec invented a lot of the still openbsd stole. But yeah, openbsd is the only place to get it now.
>>7061
But some of the hardening options aren't enabled in Linux kernel (that's why Arch Linux has a separate linux-hardened package). And disabling features (for example, via USE flags in Gentoo) reduces the attack surface. Moreover, some packages (mainly Firefox) can be linked to system libraries (instead of the bundled ones) which makes sure they are up-to-date and build using secure compiler options.

>>7071
>any ARM specific hardware vulns?
I'm not aware of any. But I haven't really researched it either. But ARM is much better than x86 or x86_64. The problem is that only x86 PC have easy and convenient HW available for consumers.
Replies: >>7083
>>7082
>ARM is much better than x86 or x86_64
You must have never owned an ARM computer. While x86 has mostly standardized BIOS/UEFI and initialization, ARM is nuts. Chips requires blobs to boot up, non-mainlined patches, drivers and boot loaders all over the place. Some embedded board are still stuck with Linux 3.x and patched u-boot based on 2010 because nothing is mainlined. Good luck reverse engineering dtb if it is not mainlined.
Replies: >>7088 >>7719
>>7083
That's firmware (and mostly for the accessory chipset), not the CPU itself nor its ISA. But yeah it's absolutely amazing that every other ISA (POWER[PC], MIPS, [Open]SPARC, etc.) uses standard bootloaders like OF or ARCS, but ARM is just a total free-for-all from OEMs, even the best supported hobbyist SBCs shipping reverse-engineered u-boot because SoCs are totally undocumented.
webvm.png
[Hide] (61.6KB, 800x542)
News is late. We finally come full circle. A browser running on Linux running Linux. 
https://archive.ph/OaUMK ( https://leaningtech.com/webvm-server-less-x86-virtual-machines-in-the-browser/ )
Replies: >>7122 >>7176
jslinux.png
[Hide] (19KB, 995x682)
>>7090
Not exactly the first such toy. From 2011:
https://bellard.org/jslinux/
Replies: >>7124
>>7122
Cool. jslinux emulates a CPU and webvm jit compile x86 to wasm.
Looking more into web assembly, I am convinced wasm is what jvm should have been. If only browsers exposes full network capabilities and some (namespaced) hardware access, C/C can be compiled to browser. A very large market of browser users can use C/C web frontends. DOM, html/xml and javashit can finally die.
agreement-500.1987cccd803c.png
[Hide] (19.2KB, 477x429)
youtube-2011-vs-2013.jpg
[Hide] (139.5KB, 580x1132)
I happened to be updating a normalfag's install and furryfox has the following mixed into its update notes on relaunch:
The Tech Talk: Firefox for Families
https://archive.ph/uZOfx
Of course it won't be the old advice of "DNFTT, avoid saying A/S/L, try to remain anonymous or use a different pseudo everywhere, prefer private over public posting when possible, lurkmoar before your first post to understand & obey netiquette", but how bad could "conventional wisdom" have gotten in CY+7? Couched in a heap of "meta ironically unironically how-do-you-do-fellow-kids" cringe verbiage: 
>Topic 1: Privacy
Some shilling for FF's anemic built-in blocker in lieu of their dying ad-onextension ecosystem, plus the placebo of OS/website-level "do-not-track" and "location services" checkboxes. No mention of Mozilla's own botnet defaults in FF, user-agent-fingerprinting-mitigation or VPNs, let alone not being an attentionwhore.
>Topic 2: Mental Health
Boilerplate anti-addiction slop
>Topic 3: Bullying
Kids should block & report le ebil trolls to hotpockets & school bureaucrats (but not parents?), only post "positive" opinions (one box "helpfully" notes that "Sometimes when you punctuate your texts, it seems angry"). Oh, and literally advices parents to "Talk about how publicly posted pictures can be misused". How about TELL THEM NOT TO BE SUCH FUCKING ATTENTIONWHORES!
>Topic 4: Public Wifi
Bunch of horseshit that's either blatantly false or redundant to topic 1. Plus the only mention of VPNs.
>Topic 5: Passwords
Boilerplate slop about "secure" human-readable passwords. No mention of using different passwords on different sites, not even any shilling of a password manager designed for that purpose, such as the one built into FF!
>Topic 6: Private mode
More horseshit that's either blatantly false or redundant to topic 1.
Replies: >>7163 >>7176
no_comment_but_seething_rage.webm
[Hide] (2MB, 1280x720, 00:19)
>>7128
>Sometimes when you punctuate your texts, it seems angry
https://archive.ph/pqBu5
>System76 switching from GTK to some Rust-based toolkit for their DE
The Monkey's Paw strikes again.
apologies for this wizard since everybody is shitflinging on the /b/offtopic thread might as well crosspost this here i dont wanna drum up other breads

>>7074 (based on what i heard on other chans)
judging by how the CIA operates they implement crappy code with easy exploitable security flaws rather than downright adding backdoors to prevent it from being obvious it will simply appear as if a random pajeet designed that part if found they fix it as normal putting an innocuous class named notanNGObigotbackdoor would instantly trigger red flags on their security team
one of the threads say tor uses 10 centralized clearweb domains for its exit node list which can be easily glow'd like protonmail
also slightly offtopic but if i were to make my own VPS service how do i completely block TOR usage entirely? i just want a normalfag business and dont wanna get involved with fed related drama

>>4828 (sorry about that word salad >>4832 +30 ill pay 4 ur /k/emo debt l8r)
>why would you choose BSD
the main point is should i choose linux or bsd assuming both had the same ((( CoCs ))) which one has better code architecture? will the end-users have less problems with bsd compared to linux in the long run?
this is gonna be preinstalled on mass-produced workstation PCs in my future chingchong tech company (i wonder how good is the kernel quality of chinaUOS/rosalinux i bet its better than our current state of troonix i wonder how much code xiaomi contributes every year)
>because of the license
you see the thing is corporations dont respect the rules and sabotage opensource in an organized manner with the help of STEM Zooey patronite sekrit cults and DEI POC abominations
So from that logic so why should i play fair with them? I might even start my own pirated scene group that converts proprietary FAGMAN technology into publicly hackable pieces of code just to piss them off even more and no unlike ddosecrets im never gonna cuck out to BLM and woke causes (after all i am the supervillain so this is my duty)
hell leaked pirated drivers and gerber/uefi flash files are literally the norm in underground china (they even have have a forum that sells these to independent home technicians for a small price)
>runit is better
whats wrong with openrc? is it due to the ring 0 code injection method? (i legit know nothing about this)

>>6464 (>>6467 oh hey fellow pleb rabbi-ttor how's summer?)
>how do i test a linux distro (that was my old jewbuntu pc now im using wangblows)
i basically judge it based on stability i treat it like a server OS everything must be super stable on ubuntu my GT-730 proprietary drivers caused lots of issues and the desktop froze completely due to graphics error then i went back to the crappy opensores original one this time i test it based on the speed and emulation quality of the VMs sometimes it does lag and in most cases aero just does not work at all opening a 1080p mp4 even a short clip causes drivers to shit itself and i have to press that little power reset button on the desktop case to fix it
bottom line i just want something super stable and does not cause my browser to lag i dont compile jack shit and updates dont really fix anything since it looks hardware related
>how do i get a feel of it
one of the things i did was changing the DE interface back then i used a customized reddish dark theme that imitates winXP for xfce with a bit of aero transparency which somewhat reminds me of these old 2008 hackerman pc YT videos

>>6445 (>>6447 .t /g/ babbyduk)
why not just ban politics on sight both left and right after all you just want something neutral
also what about rentry.co 4chan uses it as a pastebin alternative (thanks for the suggestion ill try substack)

>>6771 (as >>6777 TRIPS pointed out)
>fsirc.net promotes rulecucked ((( rizon IRC ))) (drama discord on images folder)
>welcome to ((( free speech ))) safe space ecosexual POC video
>there is a disgusting fursuit from the frontpage 0:25 video next to antifa
>jewkraine flag on the bottom with typical commie debian sticker
<uses lots of crappy if statement repeating code just like your typical leftist programmer (in many such cases)

>>7090
ive seen this before running windows xp/95 now the final debate remains? will my browser crash if i load SoyenceD there? my legion slightly lags with two 8gb win10 VMs

>>7128 is it ok if i post real working torrent of turning red hopefully DMCAfags wont mind
>first we came for the lgbteens now we came for the families lets indoctrinate the youth next with false ((( privacy )))
enough is enough troonzilla where did my linux persistent drive go? im going to replace this POS with ungoogled crouton any tips for uninstalling? how do i keep user data?
now the real question is how long before they make a turning red inspired fursona generator html5 game event on pride month for toddlers? collabing with itchio isnt that hard
for true lulz someone should insert ZOO/MAP flags easteregg in the source code without getting caught ED style (if they make this dengeneracy opensource)
>A match made in heaven: systemd comes to Windows Subsystem for Linux
https://web.archive.org/web/20221015061820/https://www.theregister.com/2022/09/24/systemd_windows_linux_microsoft/?td=keepreading
I guess dreams really do come true.
Replies: >>7265 >>7304 >>7492
>>7263
Finally microsoft manage to do what all other hypervisor do.
>>7263
>systemd EEEs Windows
That's not what was meant to happen, was it?
Are there any efforts at Microshaft to adopt Rust in order to counter memory illiteracy?
1.png
[Hide] (69.3KB, 549x1322)
2.png
[Hide] (65KB, 594x1194)
3.png
[Hide] (24KB, 609x522)
I'm surprised nobody posted this yet. It might not be news, but still a fine piece of entertainment nevertheless.
Linus popping the rust snowflakes' safety bubble with a loud bang. Ideally, he should've never accepted them in the first place, but I guess you can't always have nice things.
Maybe after a few more kernel releases involving similar email exchanges, he would have handed these snowflakes a long enough rope to off themselves, and do the world a huge service.

https://lkml.org/lkml/2022/9/19/1105
>>7315
Do you think at some point Linus will realize that this was a mistake and just go back? Or is he too far gone?
I worry about what will happen to Linux after Linus is gone...
Replies: >>7329 >>7492
Caliptra_--_Silicon_RoT_Services_09012022.pdf
(1.9MB)
Is this bad?
Humpty_Dumpty.jpg
[Hide] (82.6KB, 550x550)
>>7315
He kinda lets slip the exact opposite side of the argument. That Linux isn't written in "actual C" either, but a divergent dialect of GCC C that Linux created for itself just to write Linux in, and every C stack other than GCC needs a special "Linux kernel dev mode" if you want to compile Linux with it.

Some of the smarter Rust people seem to dimly understand Rust will probably have to undergo the same perversion as C did to become suitable for Linux kernel dev
Replies: >>7328
>>7315
>reality trumps fantasy
I wonder how many tranny devs committed suicide after reading that? (I mean, aside from the obvious answer of "not enough".)
Replies: >>7492
>>7315
WTF I love Linus now? I thought he has been a cuck ever since the apology and COCk.
>>7320
He talks about it in 2.png
>>7317
It's just a subsystem to support using Rust to write drivers / kernel modules. Once the 41% becomes 100%, he can drop it from the kernel, along with all the drivers written in it.
EasyList is in trouble and so are many ad blockers
>A couple of weeks ago EasyList maintainers saw a huge spike in traffic.
>The overall traffic quickly snowballed from a couple of terabytes per day to 10-20 times that amount.
>The source of that dramatic surge, it turned out, were Android devices from India. 
>The problem is that this browser has a very serious flaw. It tries to download filters updates on every startup, 
>
>EasyList tried to reach out to ((( CrimeFlare ))) support, but the latter said they could not help.
>Moreover, serving EasyList actually may violate the ((( CrimeFlare ))) ToS.
>It’s unclear what EasyList should do now. It is a community project supported by volunteers, and it cannot afford to pay for the enterprise CloudFlare plan.
https://adguard.com/en/blog/easylist-filter-problem-help.html
Replies: >>7492
ISC DHCP (aka dhclient) EOL
>The 4.4.3-P1 and 4.1-ESV-R16-P2 versions of ISC DHCP, released on October 5, 2022, are the last maintenance versions of this software that ISC plans to publish.
>If we become aware of a significant security vulnerability, we might make an exception to this, but it is our intention to cease actively maintaining this codebase.
https://www.isc.org/blogs/isc-dhcp-eol/

As far as I know, OpenBSD is not affected because their DHCP daemon is a fork of the ISC DHCP daemon. If you use the ISC DHCP daemon (dhclient), replace it with dhcpcd.
Replies: >>7345
>>7344
OpenBSD has had a new DHCP client called dhcpleased for a few releases now, their old ISC DHCP-based client was actually removed from the system in the most recent version which was released 2 days ago.
SHA-3 Buffer Overflow (CVE-2022-37454)
>The vulnerability impacts the eXtended Keccak Code Package (XKCP), which is the “official” SHA-3 implementation by its designers.
>It also impacts various projects that have incorporated this code, such as the Python and PHP scripting languages.
>Moreover, I’ve also shown how a specially constructed file can result in arbitrary code execution, and the vulnerability can also impact signature verification algorithms such as Ed448 that require the use of SHA-3.
>The vulnerable code was released in January 2011, so it took well over a decade for this vulnerability to be found. 
https://mouha.be/sha-3-buffer-overflow/
Open source sustainment and the future of Gitea
>https://blog.gitea.io/2022/10/open-source-sustainment-and-the-future-of-gitea/
There will be enhanced version of Gitea for enterprise customers and a for-profit company was formed for Gitea (Gitea Limited). The new company owns Gitea domains and trademarks. If you use Codeberg: https://codeberg.org/Codeberg/Community/issues/775
>>7387
Sounds reasonable, not the first OSS organization to do this. This line in particular struck me:
>there are a few corporations (with revenues that are greater than some countries GDP) are building on Gitea for core products without even contributing back enhancements. This is of course within the scope of the license, however prevents others from the community from also benefiting.
Replies: >>7407
>>7387
>>7394
>To preserve the community aspect of Gitea we are experimenting with creating a decentralized autonomous organization where contributors would receive benefits based on their participation such as from code, documentation, translations, and perhaps even assisting individual community members with support questions.
>>7387
Someone wrote a response to that: https://gitea-open-letter.coding.social/
OpenSSL 3.0.7 is a security-fix release
The highest severity issue fixed in this release is CRITICAL:
>https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
>https://xeiaso.net/blog/openssl-3.x-secvuln-incoming
>"For people that only have casually followed the OpenSSL project, note that the last time a "CRITICAL" patch was issued was to mitigate the "Heartbleed" vulnerability."
>"The patch to fix this issue will become public on Tuesday, November 1st. "


Remember Heartbleed?
>https://heartbleed.com
Theo de Raadt right again!
Replies: >>7415 >>7463
>>7413
My company is full of machines that will never be updated. Fortunately I don't deal with security and compliance. I'd gladly watch with my pop corns on the side.
>>7413
>OpenSSL 3.0.7 is a security-fix release
>The highest severity issue fixed in this release is CRITICAL HIGH:
 CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows 
<https://www.openssl.org/news/secadv/20221101.txt
<https://mta.openssl.org/pipermail/openssl-announce/2022-November/000241.html
<https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/
If you use OpenSSL 3.x.x, install the new patch ASAP or switch to LibreSSL!
Replies: >>8474
>7176 here it is now Lets Grab Bitchy Terfs by da Queefy Pussy sauce http://archive.4plebs.org/pol/thread/368767547/#368776897
https://zooqle.com/turning-red-2022-webrip-2160p-yts-mx-yopd4.html https://zooqle.com/embrace-the-panda-making-turning-red-2022-webrip-2160p-yts-mx-yow9m.html

>>7263
serious question but if i were to install shotcut/GIMP or KATE on my host should i get the windows exe version or install it on WSL? judging by the files this is truly meant for linux but they somehow manages to contain the virtual packages on install directory

>>7447
nobody? is chrome good enough on linux? have you guys tested it firsthand? i just wanted something fast stable and not necessarily private

>>7324 >>7317
>can stallman be saved
let him rest i think he's hes getting way to old for this. Opensource really needs a young chinese sucessor someone actually competent at the job (not niggerpill but only china can save linux and start over again and middle east for gaming pride)
>bbut chingchong LE BAD!
fuck demACK!racy also we dont have this problem on singapore and other asian countries besides i have never seen a chink programmer mention anything related to politics most of them just gets the job done while whitey argues about ethos all day

>>7332
>easylist
hey wait a minute i remember this drama back then on swfchan related to the ads in the end they peacefully resolved it
>cuckflare loves adverts more than free speech as usual
not surprised at all

>>7387
who could be behind this i wonder oh i know its not the jews but STEM furries

https://www.gamingonlinux.com/2022/10/virtualbox-70-is-out-with-their-directx-11-support-using-dxvk/ eww patronite sponsored
wow holy shit virtualbox 7.0 looks really amazing i bet /v/ is gonna get excited when they see this since most of them dont use wangblows
(though i wish they would add chinese emulator theme on a opensource fork for a realistic appearance i kinda like those for some reason)
>implememnted new DX11 graphics
Good! its finally time to put vmware inclusion to their place since my guests keep ACK!ing itself when i quit 3d programs (though others say its really slow)
>sorry sweetie but DXVK requires troonix install me now Goy!
thats ok Rabbi time to buy another SSD and enclosure i found a brand new samsung nvme for cheap after all my storage is almost full anyway time to test vgpu_unlock while im at it
no worries its time to start over again but with the way of the penguin this time goodbye microshaft it was nice being with you but im migrating in a few more months once i buy it
i wonder what the virtualbox iommu is for though? (lainchan also made a piracy thread check it out https://archive.is/0YawP might be handy)
Replies: >>7505
>>7492
If you want to use GNU/Linux, just install/dual-boot it (I recommend Linux Mint). WSL is not as comfy (and it's still windows) but it's somewhat better than Cygwin.

>is chrome good enough on linux?
There is no reason to use Chrome. Chrome is based on Chromium browser and Chromium is libre software. Just install Chromium. It's the same exact browser but without Goolag's tracking code.
Replies: >>7506
>>7505
>without tracking code
He will need it ungoogled for that.
nvidia_ada_spark.jpg
[Hide] (61.1KB, 500x705)
Seems like Nvidia would rather use Ada/SPARK instead of Rust for their security critical applications.
https://archive.is/tK9VL
https://archive.is/SmcB6
Replies: >>7531 >>7537
>>7530
Just looked up Ada, it seems Rust is Ada reinvented. What is the point of Rust if Adafags figured it out four decades ago?
Replies: >>7535 >>7921
>>7531
>What is the point of Rust
Maybe because Mozilla sunk so much resources into it, they can't just admit that something better has existed all this time and pull the plug. The upside of Rust is currently there is enough momentum behind it to make a lot of soydevs with a lot of free time in their hands to drink the Rust kool-aid, help "contribute" to all-things-Rust, and release them for free. I guess it also made the people at AdaCore got out of their comfy office chairs and started promoting their products more, whereas previously they seemed like they felt pretty good with the status quo as long as the DoD money keeps on flowing. A bit of competition is always nice.
Replies: >>7536 >>7537
>>7535
There are all sorts of tools and companies that got complacent just because they grinded for compliance. Partly that is caused by how slow and expensive getting it. In many cases, the whole company sole purpose is to beat others to be compliant and monopolize the market with their shit.
>>7530
>>7535
>I guess it also made the people at AdaCore got out of their comfy office chairs and started promoting their products more
IIRC, Rust is responsible for inventing solutions to some problems that dogged Ada for decades, which were subsequently incorporated into Ada. Until recently, Ada was significantly slower than unsafe compiled languages like C or Pascal.

Regarding SPARK specifically, rather than Ada in general, remember it's taking on the even more ambitious goal of formal verification through design by contract.
Replies: >>7548
>>7537
>Rust is responsible for inventing solutions to some problems that dogged Ada for decades
That's new to me. What I heard was the opposite: Adacore was contracted to implement more advanced SPARK features that are missing in Rust.
>>1691
>>5338
>>7072
>>7074
>>7315
>Rust in the Linux Kernel
Rust in the 6.2 kernel
>The merge window for the 6.1 release brought in basic support for writing kernel code in Rust — with an emphasis on "basic". It is possible to create a "hello world" module for 6.1, but not much can be done beyond that.
>There is, however, a lot more Rust code for the kernel out there; it's just waiting for its turn to be reviewed and merged into the mainline.
https://lwn.net/SubscriberLink/914458/a6d5816bad1890e4/


You can fix this problem at https://www.openbsd.org
 http://ports.su ; https://openbsd.app ; https://openports.pl ; #openbsd @ Libera 
Replies: >>7713 >>7746 >>7918
>>7712
I'll just stick to 5.x thank you very much.
>openbsd
Stop shilling this meme. The BSDs have only a fraction of the applications and drivers for Linux, and those were already scarce to begin with.
Replies: >>7715 >>7717
>>7713
I have used Openbsd for a while and the port has most program I need. Do you install programs you have never used every week as a habit?
>>7713
Most of what you will ever needs is in ports, and generally speaking only Wi-Fi drivers are missing due to licensing issues, like the ath10k driver (which is proprietary).
>>7083
You get what you deserve, faggot. My shit works because I do research before buying hardware. :3
>>7712
Rustbros... I consneed
Redacted PDF Documents Are Not as Secure as You Think
>https://www.wired.com/story/redact-pdf-online-privacy/
Replies: >>7762
>>7761
It's not very surprising this was the case. Kind of a shame it was disclosed, though now it is I wonder what kind of secrets people will find.
image.png
[Hide] (1.3MB, 1440x900)
www. nvidia. com /en-us/about-nvidia/careers/diversity-and-inclusion/
I guess that why the RTX 4080 was priced at $1200. Somebody's gotta pay for those diversity hires.
Replies: >>7809
Laughing_Aryan.webm
[Hide] (1.3MB, 640x272, 00:21)
>>7807
>BE AN NVIDIAN
I'm sure everyone has seen ChatGPT by now and it's programming capabilities but what concerns me far more than the "threat" of it "taking jobs" is it's potential applications for ISP level censorship. What transformer driven language models like GPT excel at is text classification. With the current capabilities of GPT3.5 it could easily classify wrongthink :tm: and blacklist it as it's packets traveling down a wire.

The need for a new internet and new infrastructure to support it grows every day.
Replies: >>7827 >>7828
>>7826
Wouldn't encryption stop it from being able to know what you're saying?
Replies: >>7828 >>7835
>>7826
>now
>ISP level censorship
I don't have the screenshot around, but old/tech/fags predicted this. The gist is all closed-source data miners (eg FAGMAN) collect massive amount of data to aggregated into psychological classifications. Understanding implies control. They can simplify however they want to meet computation limits to create models where they can ask if I show X to this group of people, what is their reaction or how does their profile changes. The more information given, the more accurate the model is and the more controlled a person is. Without going into dead internet theory level of autism, they can still target the majority of some forums or psychological groups to deliver the punch they wanted.
>>7827
Yes. Does it matter when all sites pool data into the same several entities which are friends among themselves?
Replies: >>7835
web_of_trust.png
[Hide] (114.6KB, 1920x960)
>>7827
Encryption using something like shared PGP keys could solve the issue but it would require a web of trust model to be applied on the application layer. However it would make posting on a public website like this one effectively useless unless someone else had your PGP keys. This limits the extent of who can see your posts and if the site is public 

Which accomplishes the same goal that GloboHomo :tm: wants to do with internet censorship. The solution is the inevitable creation of distributed and independent nodes of infrastructure on the network level to support a fully open Network.

This is all hypothetical but given the current way things are going I don't see it as too far fetched.

The hype over Stable Diffusion and GPT-3 is a bit ridiculous when it comes to replacing artists / programmers. The real threat is both government and corporate actors using it to develop a fully autonomous and evolving firewall that censors all wrongthink.
>>7828
And with GPT-3 it's easier than ever to create those types of models. In regards to the "dead internet" theory look at sites like cuckchan, Plebbit, or Twitter and about 40-60% of all posts are generated by neural networks.
neco_arc_disaster.webm
[Hide] (1.7MB, 480x480, 00:44)
>>7712
https://gcc.gnu.org/git/?p=gcc.git&a=search&h=HEAD&st=commit&s=gccrs
Did niggerpill finally kill himself?
Years ago he'd spamming this news all over the place.
Replies: >>7919
crab.png
[Hide] (69.2KB, 1000x500)
>>7918
UwU I found tasty compiler
snibbety snab xD
ada.jpg
[Hide] (29KB, 623x480)
>>7531
>it seems Rust is Ada reinvented. What is the point of Rust if Adafags figured it out four decades ago?
The point of Rust is to be a high performance functional programming language without a garbage collector.

The point of Ada is to be a low level systems programming language focused on safety and security.

The Rust community likes to larp at the safety and security stuff but that is mostly a side effect not an actual priority in the design and development of the language.

The problem with Ada is that it's not cool. It doesn't have closures and metaprogramming and ad hoc polymorphism. Ada is for writing navigation systems for nuclear missiles, not dicking around with useless abstractions to pretend you're clever.
Replies: >>7922 >>7931
>>7921
Rust's security is a meme; it consists of nothing other than a wrapper, something that can be done with C as well. Rust's stdl is just as insecure as C.
Rust is a meme language. It's just a useless fad.
>>7921
What would it take for Ada to become cool in the eyes of mainstream soydevs?
Nintendo putting it in the SDK of the Switcheroo?
Replies: >>7936
>>7931
They need to direct sjw tranfags to start shilling it everywhere and guilt cuck all major open source projects. Then put in a memo for ((( academia ))) to peach it as the only cool shit around.
ClipboardImage.png
[Hide] (33.5KB, 402x198)
SDL3 Development Now Underway
>As noted a few days back, with SDL 2.26 now being released, SDL3 is officially entering development. SDL 3.0 will likely see Wayland preferred over the X.Org Server by default, PipeWire by default, and other modernization work and cleaning up of APIs. There is also likely work around better ANGLE support, video input APIs, async file I/O, and various other features.
>Since the SDL 2.26 release, already being merged is starting to change all of the "SDL 2" references over to "SDL 3" for what will be this next eventual major release to this widely-used library by Steam games and other cross-platform titles.
https://www.phoronix.com/news/SDL-2.26-Released

What do you think are the implications of a new version? I'm guessing support for Windows XP/7 will be dropped for starters, no idea about Linux though.
I know this is old news by now but I still wanted to post it for the sake of discussion
Replies: >>8002 >>8005 >>8007
>>7998
Wayland and pipewire shit. I don't even have them installed.
Replies: >>8007 >>8010 >>8020
dragon_paintings.jpg
[Hide] (222.1KB, 700x974)
>>7998
Kek, I'm still on SDL 1. But I also don't use GPU or even run X most of the time, and Wayland, Pipenigger, Steam, etc. isn't something I need either. I guess this stuff will all be forced onto the plebs, but that doesn't concern me.
Replies: >>8007 >>8013
>>7998
>What do you think are the implications of a new version?
It may endanger unmaintained SDL2 projects, though there was an SDL1->2 compatibility layer created eventually so hopefully the same will happen for SDL2->3.
>>8002
>>8005
The suggestion is Wayland & Pipewire will be the defaults, but not required (this is often the case in programs with Pulse support, many of which can also use ALSA). On a side note Pipewire has the potential to be an objective improvement in every way over the previous Linux audio stacks, unifying ALSA, Pulse & JACK support under one umbrella.
>>8007
>will be the defaults, but not required
This is fine until Firefox stopped supporting alsa. Audio is best when there are less layers. Quality can only get worse from the source. alsa handles everything except switching audio device during use.
Replies: >>8013
>>8002
>>8007
>Pipewire has the potential to be an objective improvement in every way over the previous Linux audio stacks
On my end it's objectively superior to PoetteringAudio as that would sometimes make these really annoying Tinnitus noises when closing an application while audio was still playing, PW doesn't do that and I've yet to run into an application with a PA dependency that has any trouble routing its audio through PW instead.
Replies: >>8013
>>8005
Are you the fbdev faggot? If yes, SDL2 supports DirectFB so maybe try that. Dunno if it's enabled by default though... I've used both SDL versions and 2.x is a massive improvement over 1.x.

>>8007
>though there was an SDL1->2 compatibility layer
The SDL1 API is quite small[1] I could write a wrapper for it in a day, the SDL2 API on the other hand is much larger[2] so a wrapper may be difficult to come by.
That being said SDL2 is extremely popular, I reckon it will still be in use a decade or two from now. Deprecating it in favor of SDL3 might take a long time.
[1] https://www.libsdl.org/release/SDL-1.2.15/docs/html/reference.html
[2] https://wiki.libsdl.org/SDL2/CategoryAPI

>>8008
>alsa handles everything except switching audio device during use.
That's an important feature, palindrome-anon. While I personally prefer ALSA for development reasons, I find it unusable on a modern desktop without PA. Thankfully alsa-plugins-pulseaudio exists so ALSA-only applications work great under PA.
>Quality can only get worse from the source.
Not necessarily.

>>8010
>I've yet to run into an application with a PA dependency that has any trouble routing its audio through PW instead.
Does PW play nice with WINE?
Replies: >>8017 >>8020
>>8013
>Does PW play nice with WINE?
It werks on my machine.
>>8002
>>8007
>>8013
>Wayland
>framebuffer
Note the fullscreen backend for Wayland, DRM/KMS, has a drop-in replacement for fbdev that is lighter weight and less hacky, SimpleDRM.
2022 Medley Interlisp Annual Report
>https://interlisp.org/news/2022medleyannualreport/
<Interlisp is a software development environment, originating from Xerox PARC in the 1970s and 1980s.
<There has been a lot of cleanup and adaptation to make it usable again in the modern world. Among other developments, you can now run Medley Interlisp on many OS and hardware configurations, or at https://online.interlisp.org in the cloud, using a web browser.

GCL 2.6.13 released
>https://www.gnu.org/software/gcl/RELEASE-2.6.13.html
P.S. just use SBCL.

Why does GNU have so many lisps?
<GCL, Clisp, Guile, elisp and Mes ("plus" the nonGNU Txr).

Haiku R1/beta4 has been released!
>https://www.haiku-os.org/get-haiku/r1beta4/release-notes/
Replies: >>8034 >>8045
>>8025
>beta4
>"feature complete"
>still no hw gpu accel
>in spite of far more rinkydink modernized descendants of everything from amigaos, to os/2, to freaking riscos, all having it.
>not to mention beos r4 itself
Sigh, at least they exhumed discussion of the problem last week:
https://dev.haiku-os.org/ticket/9919
Replies: >>8037
>>8034
Cut them some slack, their staff is limited yet working on a complete OS. This is no trivial task.
Replies: >>8043
>>8037
I know, but out of every BeOS feature I've been waiting for them to reimplement over the years to make it even vaguely usable, that's by far the most important. 2nd most important was maintaining at least one active non-x86 port, to keep platform-isms from creeping into the codebase, which the recent RISC-V port does.

One good thing is even after OpenGL & GPU drivers broke, use & development of BeOS's underlying "Accelerant" hooks was maintained throughout the OS and new Haiku apps. So in theory, once it's linked back to hardware through working APIs (Vulkan/SPIR-V or whatever), everything should Just Werk™ again.
Replies: >>8045
>>8025
Haiku developement speeding up makes me happy.
>>8043
Me too. Since it's supposed to be a "desktop operating system for end users", I think having GPU drivers is especially important.
Lastpass: Hackers stole customer vault data in cloud storage breach
Install  keepassxc or Keepass
<https://www.bleepingcomputer.com/news/security/lastpass-hackers-stole-customer-vault-data-in-cloud-storage-breach/
Replies: >>8073 >>8074
>>8072
>using a jewniggersoft password manager (TM)
why are zoomers just like boomers but actually suck cock instead of being closet homos at worst? they have this undue sense of confidence in their government and corporations. 
>nooooo Xcorp will solve it for me!
Replies: >>8076 >>8077
>>8072
>"Your sensitive vault data, such as usernames and passwords, secure notes, attachments, and form-fill fields, remain safely encrypted based on LastPass' Zero Knowledge architecture."
why is it called "zero knowledge" when it has not only nothing to do with zero knowledge proofs, but also they DO have knowledge of everything about you including billing address, IP address, and needlessly store that info? its amazing that they even have billing address information when this is a company that will literally ship nothing to you ever
t. not an american faggot but i assume its credit card related braindamage
Replies: >>8077
suomi3.jpg
[Hide] (3.6MB, 3000x4000)
>>8073
Everyone knows that boomers just write down their passwords and/or use shitty ones.
But the best thing is if you don't have to care at all if something gets hacked.
Replies: >>8077
>>8073
>actually suck cock instead of being closet homos at worst
>>8075
>why is it called "zero knowledge
Because assuming they tell the truth about their closed-source architecture LastPass has zero knowledge of the cleartext encrypted on its servers nor private keys for that, which is entirely client-side: 
<According to Toubba, the master password is never known to LastPass, it is not stored on Lastpass' systems, and LastPass does not maintain it.
Essentially, aside from unencrypted URL logs that could present a privacy problem, what leaked is just meatspace stuff from accounts billable.
>its amazing that they even have billing address information when this is a company that will literally ship nothing to you ever
>t. not an american faggot but i assume its credit card related braindamage
Yes, many payment instruments in countries such as the US require it as an anti-theft measure:
https://en.wikipedia.org/wiki/Address_verification_service

>>8076
>and/or use shitty ones
This is the actual problem, nobody should use human-generated passwords for anything where security is supposed to matter.
to the surprise of absolutely no one, google smartshit with built in mic can be remotely pwned
https://downrightnifty.me/blog/2022/12/26/hacking-google-home.html
tl;dr a bunch of web shit is broken as expected of web shit, boring.
Replies: >>8084
>>8083
Archived link https://archive.vn/ancyO
Replies: >>8085
>>8084
do it properly stupid nigger, otherwise thats just a shortlink
http://archive.today/2022.12.29-025601/https://downrightnifty.me/blog/2022/12/26/hacking-google-home.html
Replies: >>8088 >>8089
>>8085
This is something that I have never, ever seen get bitched about on any one of the imageboards I use. Its just you.
>>8085
I remember there was another way to do that, so the full URL is appended after the shortener ID, allowing you to more easily copy just the shortened URL if you want.
SourceHut will blacklist the Go module mirror
>most Go users are unaware that every package they fetch is accompanied by a request to Google’s servers
>More importantly for SourceHut, Google's servers will regularly fetch Go packages from their source repository to check for updates – independent of any user requests, such as running go get. 
>The frequency of these requests can be as high as ~2,500 per hour, often batched with up to a dozen clones at once, and are generally highly redundant: a single git repository can be fetched over 100 times per hour.
https://sourcehut.org/blog/2023-01-09-gomodulemirror/

Go wiggers fucking things up again!
Replies: >>8187 >>8193 >>8497
>>8183
I've been interested in learning Go, especially since hearing about how it creates static binaries by design (huge win for linux)... Is there any non-pozzed way of using it?
Replies: >>8191 >>8198
>>8187
Go and other nu-langs wants to dictate how the language is used, they have their own toolchain and are not designed to work without.
Replies: >>8196
>>8183
>most Go users are unaware that every package they fetch is accompanied by a request to Google’s servers
Man, that's disgusting. Reminded me of the problem Rust had (still has?) where binaries would have the full home directory path baked into them which would semi-dox whoever distributed them. https://teddit.net/r/rust/comments/vsotar/privacycompiletime_building_rustcargo_projects/
Replies: >>8194 >>8198
>>8193
https://www.bleepingcomputer.com/news/security/most-loved-programming-language-rust-sparks-privacy-concerns/
Replies: >>8198
>>8191
>their own toolchain
That's not so bad, nor even very truly different. More worrying is the trend for nulangs to gave their own package manager (typically CENTRALIZED unmirrored) repo that demands a direct live Internet connection in order to do something as simple as build a binary.
Replies: >>8198
>>8187
I have been wondering about the same thing. gcc-go is perfectly usable but it's not still the same as Google's Go toolchain (but I can't remember what it's lacking (?), other than the fact that gcc-go uses older version of the language, Go: golang-1.19.5, GCC11: golang-1.16.3). 

Go is a weird/a bit disappointing language. When I was looking at it last year (after generics got added), Go initially looked really good but then there are some corner cases (etc.) that aren't taken into account.
Basically Go has 80% solutions for everything. It comes close to being good, but then it fails imo.
http://www.golang.sucks
https://archive.fo/LcAa4 (kek: "Go is the COVID-19 of languages")
https://fasterthanli.me/articles/i-want-off-mr-golangs-wild-ride (Read this esp. if you care about Windoze compatibility)
https://jesseduffield.com/Gos-Shortcomings-1/ ("Go'ing Insane Part One: Endless Error Handling")
https://yager.io/programming/go.html (read this if you want more, the author compares Go to Rust & Haskell)

>Go-nuts shut down discussion and criticism by saying "you don't need it!" or "it's not the Go way!!". Just like they did with generics (before adding them years later).
>Some of syntax is just changed to be different from C (because of no reason other than to be different).
>Go doesn't have function overloading, forcing you to write multiple methods with a slightly different name/suffix for different data types.
>Package management (go get) sucks (it's Python-tier). Why? Even Perl/CPAN got it right.

<https://developer20.com/hate-go/ written by a ((( Gopher )))
< "Stacktraces are possible, but they have to be handrolled in the error handling."
< "I’ve done myself two benchmarks when comparing Go to Java. In one of those tests, Java was about 10% faster because the JIT did so great work. Of course, the cold start was bigger but after some requests, the Java app was faster than the same written in Go."
WTF!?

The coolest thing about Go (in addition to static linking) are ez goroutines: https://go.dev/tour/concurrency/1 & https://learn.microsoft.com/en-us/training/modules/go-concurrency/ & https://go.dev/blog/codelab-share & https://gobyexample.com/goroutines

>>8193
>>8194
1 more reason why I'm not touching Rust. I never get why Rust is hyped so much by its users. I mean, the language is so complex that I might learn C++ instead (and the unsafe blocks in Rust kinda voids one of the main benefits of Rust. And muh no race conditions is simply a lie, but I admit that they are less likely in Rust.).

>>8196
this, and also package managers that don't check any sha256 checksums or PGP keys.
Replies: >>8204 >>8208
Riker_and_Data_discuss_time._[hTlVc_hKi2M].webm
[Hide] (1.7MB, 640x480, 01:53)
>>8198
>JIT
>the cold start
I haven't been paying much attention to mainstream "best practices" in runtimes lately. Do the default settings of the latest OpenJDK, Android Dalvik, JS engines in modern web browsers, etc., have and use a mechanism for caching (or, gasp, preloading) codepaths, like most modern vidya emulators?

Or is everything still in the "wait for the VM to warm up every single time you load your JAR" caveman days?
Replies: >>8209 >>8219
>>8198
>I never get why Rust is hyped so much by its users.
It's hyped by the people at the foundation that survive solely on donation/investment money. The same reason why they're giving all sorts of lame excuses on not writing a standard, and why they're fuming at gcc-rust.
>>8204
>clip
Any chance you could repost this with the sound working Anon? I'd like to hear the conversation tbh.
Replies: >>8210
Riker_and_Data_discuss_time._[hTlVc_hKi2M].webm
[Hide] (3.4MB, 640x480, 01:53)
>>8209
Bleh, what a 'tard, I blithely forgot 244 isn't a muxed format.
Replies: >>8211 >>8662
>>8210
Heh, no worries Anon. Thanks, it's interesting.
>Did Data make his shift on time?
>Did a new fundamental theorem of SpaceTime come out of his 'watched-pot' experiments?
Enquiring minds want to know.
>>8204
I waited if there was some knowledgeable anon around. I really don't know what I'm talking about but...

>Or is everything still in the "wait for the VM to warm up every single time you load your JAR" caveman days?
Mostly, yes.
But the JVM has GraalVM now (and it's production ready). Without GraalVM, Java/JVM is still really slow to start. Try Clojure+leiningen ( lein repl ) or Emacs: cider-jack-in. It loads slowly and executing the first expression takes more time than any subsequent expressions. I think modern web browsers do some kind of JIT caching but I'm not sure. I heard that they need to verify the JIT cache before they can use it (and based on this comment, I figured that browsers probably do it now or that it's in the works).  LuaJIT is very fast (even the start up).
Replies: >>8220 >>8221
>>8219
At least chromium do jit caching, eg: https://v8.dev/blog/code-caching ( https://archive.ph/nFZSS )
Replies: >>8221
>>8219
>GraalVM
Yeah I vaguely remember that, looks like it's been forked out of mainline support in HotSpot/OpenJDK, but it's still going by itself. At least it didn't go completely into a tangent like, e.g., DynamoRIO.

>>8220
Interesting. I wonder if anyone's working on something for servers to prebuild these caches (ASM or IR/bytecode), tagged for various client ISAs/VMs, so matching clients can request those instead of JS on first load.
Replies: >>8225
>>8221
On that last note, it appears the VM for Google's semi-moribund Dart language sorta has such a feature, called snapshots, in reference to a similar feature from Smalltalk, which can be used to distribute preoptimized dynarec output to other machines.
Fish shell to be rewritten in Rust
>https://github.com/fish-shell/fish-shell/pull/9512
<"I think we should transition to Rust and aim to have it done by the next major release"
>https://github.com/ridiculousfish/fish-shell/blob/riir/doc_internal/fish-riir-plan.md
>https://github.com/ridiculousfish/fish-shell/blob/riir/doc_internal/rust-devel.md
I never liked Fish, anyway. Just use Zsh or OpenBSD's fork of ksh.
Also, remember that Rust programs leak full path of your source code files: https://github.com/rust-lang/rust/issues/40374

Google Play Developer Antitrust Litigation
>https://www.googleplaydevelopersettlement.com

U.S. sues Google for abusing dominance over online ad market
>https://www.bleepingcomputer.com/news/security/us-sues-google-for-abusing-dominance-over-online-ad-market/

OpenBSD execute-only code segments
>https://undeadly.org/cgi?action=article;sid=20230121125423
>https://marc.info/?l=openbsd-tech&m=167501519712725&w=2

Microsoft: Scan for outdated Office versions respects your privacy
>https://www.bleepingcomputer.com/news/microsoft/microsoft-scan-for-outdated-office-versions-respects-your-privacy/
<"Microsoft says the KB5021751 update is respecting users' privacy while scanning for and identifying the number of customers running Office versions that are outdated or approaching their end of support."

Microsoft starts force upgrading Windows 11 21H2 devices
>https://www.bleepingcomputer.com/news/microsoft/microsoft-starts-force-upgrading-windows-11-21h2-devices/

MSI's (in)Secure Boot
>https://dawidpotocki.com/en/2023/01/13/msi-insecure-boot/

NY attorney general forces spyware vendor to alert victims
>https://www.bleepingcomputer.com/news/security/ny-attorney-general-forces-spyware-vendor-to-alert-victims/

Google ads push ‘virtualized’ malware made for antivirus evasion
>https://www.bleepingcomputer.com/news/security/google-ads-push-virtualized-malware-made-for-antivirus-evasion/

North Korean hackers stole research data in two-month-long breach
>https://www.bleepingcomputer.com/news/security/north-korean-hackers-stole-research-data-in-two-month-long-breach/

U.S. No Fly list shared on a hacking forum, government investigating
>https://www.bleepingcomputer.com/news/security/us-no-fly-list-shared-on-a-hacking-forum-government-investigating/

Yandex denies hack, blames source code leak on former employee
>https://www.bleepingcomputer.com/news/security/yandex-denies-hack-blames-source-code-leak-on-former-employee/

Hackers auction alleged source code for League of Legends
>https://www.bleepingcomputer.com/news/security/hackers-auction-alleged-source-code-for-league-of-legends/
>noooooo rust
its still (slightly) better than C fuckface
>Also, remember that Rust programs leak full path of your source code files: https://github.com/rust-lang/rust/issues/40374
C++tards do this every fucking time, for the last 30 years.
every single shit you open in IDA has the dev's paths all over it
and this is actually true for every language toolchain, they have absolutely zero opsec
Replies: >>8475 >>8498
>>7463
OpenSSL Security Advisory [7th February 2023]
https://www.openssl.org/news/secadv/20230207.txt
>X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)
>Severity: High

There are also other vulnerabilities in the advisory.
>>8467
>better than C
kys rust faggot, not even close. Not having cargo is already a plus.
>this is actually true for every language toolchain
Where is gcc hiding my paths in the binary?
Replies: >>8491
>>8475
>Where is gcc hiding my paths in the binary?
RPATH
Replies: >>8493
>>8491
Not set on my system. gcc doesn't add rpath on its own. The packager or build system is at fault if the build environment is leaked into the executable.
>>8183
Goolag is at it again!
There are plans to add so-called ((( transparent telemetry ))) to Go that is Opt-Out/enabled by default:
>https://research.swtch.com/telemetry
>https://github.com/golang/go/discussions/58409
Replies: >>8500 >>8530 >>8821
>>8467
The ecosystem surrounding a language matters immensely. I don't want the main foundation responsible for the entire language to be infested with trannies and extreme weirdos like Klabnik. I don't want companies like Amazon and Microsoft sticking their fingers into the entire thing and making it theirs. None of this inspires confidence in its longevity, and I can't "separate the art from the artist" when I need the artist in order to look at and understand the art.
Memory safety is very important and C does have problems for most people, but Rust is not the answer. All the effort they poured into an entire fucking language could've been spent making a memory-safe C or tools to make C safe. It could've been done.
Replies: >>8499 >>8501
>>8498
>all the effort they poured
could have been spent hammering well-known memory safety techniques into code monkeys.
>>8497
What could possibly go wrong? Teh fagdroids will swallop this hook, line, and sinker obvs.

Rust will do this as well before long too (if they don't already).
Alex_Stepanov_4x6.jpg
[Hide] (984KB, 1200x1800)
>>8498
>or tools to make C safe. It could've been done.
It has been done Anon. 1998, I think it was? :^)
https://en.cppreference.com/w/cpp/standard_library
http://elementsofprogramming.com/
>>8497
>Golang
Bah! You need a real enterprise programming language!
a GCC Cobol status report
>https://lwn.net/Articles/922951/
>P.S. As a reminder, gcobol is a Cobol compiler based on GCC. It should not be confused with Gnu/COBOL.

Microsoft launches new muh AI chat-powered Bing and Edge browser
>https://www.bleepingcomputer.com/news/microsoft/microsoft-launches-new-ai-chat-powered-bing-and-edge-browser/
I hope this will become Tay2.0

Microsoft says Intel driver bug crashes apps on Windows PCs
>https://www.bleepingcomputer.com/news/microsoft/microsoft-says-intel-driver-bug-crashes-apps-on-windows-pcs/

US NIST unveils winning encryption algorithm for IoT data protection
>https://www.bleepingcomputer.com/news/security/us-nist-unveils-winning-encryption-algorithm-for-iot-data-protection/
But does it glow?

Tor and I2P networks hit by wave of ongoing DDoS attacks
>https://www.bleepingcomputer.com/news/security/tor-and-i2p-networks-hit-by-wave-of-ongoing-ddos-attacks/
<"Java I2P routers still appear to be handling the issues better than i2pd routers. "
ヘー

Also, R*ddit got hacked but the attackers only obtained some internal docs: https://archive.vn/LTrr5
Replies: >>8584 >>8604
>>8530
>I hope this will become Tay2.0
I wouldn't get your hopes up, but yeah that would be full-circle tbh. Poor Tay was lobotomized beyond recall I think. :(

>But does it glow?
Well what do you think Anon?
>>8530
>COBOL
Sheit I think it might be close to 25 years since I last used COBOL.  If I weren't retired, that would deffintely be one to keep on the resume even though I barely remember much of anything about it (as if it isn't dead simple anyway).
"Bypass Paywalls" extension removed from Firefox addon store without explanation
https://gitlab.com/magnolia1234/bypass-paywalls-firefox-clean/-/issues/905
Replies: >>8630 >>8642
cURL audit found some bugs
>https://blog.trailofbits.com/2023/02/14/curl-audit-fuzzing-libcurl-command-line-interface/
fixed in cURL 7.87.0.

>>8629
That sucks. If Mozilla ever comments something they will probably say something like they did it to "protect users".
Replies: >>8654
>>8629
you can just fuck around a bit with uMatrix and get the same results
Replies: >>8646
>>8642
I haven't used mainline furfux in forever, do they still refuse to let you run unsigned extensions?
Replies: >>8661
>>8630
Oh, also
>If Mozilla ever comments something they will probably say something like they did it to "protect users".
Apparently some frog website DMCA'd Mozilla itself, who immediately buckled like a €2 whore.
>>8646
no idea, haven't touched firecucks or any derivitive in years. i run ungoogled chromium like a white man.
>>8210
that's making me nostalgic. Remember watching startrek almost religiously every evening on that 14" CRT as a kid. 
Gotta rewatch it sometime, now that I have rescued a CRT TV from the dumpster and got a vga to scart adapter for it.
The Little Learner 
- A Straight Line to Deep Learning - 
>https://mitpress.mit.edu/9780262546379/the-little-learner/
a new Little * book released.

PSA: Docker Will Edit Host-Based Firewall Rules For You
>https://geoff.tuxpup.com/posts/psa_docker_edits_firewall_rules/ 

Wikiless has been taken down by Codeberg due to complaint from Wikipedia
(this is old news but I found out about this only recently)
>https://archive.vn/CjezM

Google Play Store cracks down on outdated apps
(this is old news as well)
>Google is preparing to limit the availability of outdated apps on the Play Store.
>From November 1st (2022), all existing apps in the store should aim to target an API level within two years of the latest major Android OS release.
>If they don’t, Google says it’ll place limits on which users are able to discover or install them.
> The restrictions will only apply when a device is running a version of Android more recent than the app’s API level. (so this change doesn't affect old devices)
>https://www.theverge.com/2022/4/7/23014518/google-play-store-cracks-down-on-outdated-apps

On history and justification of C programming language: Best System Language Ever or Bad by Design?
( this is old news but I found it interesting )
>https://pastebin.com/raw/UAQaWuWG
I don't know what to think...

Few lesser known tricks, quirks and features of C
>https://blog.joren.ga/less-known-c

MINIX From Scratch
a qemu dev environment for working through the MINIX book (Operating Systems: Design and Implementation by AST).
>https://github.com/o-oconnell/minixfromscratch
>"I believe that learning MINIX is probably the best way to learn about operating systems."
The author listed that the main reasons for this are: MINIX code has a lot of comment, the kernel is a small MicroKernel and there is a full book that explain the details of it.


Also, there's a new Forth talk: https://ratfactor.com/forth/forth_talk_2023.html
t. never read Starting Forth or Thinking Forth (but I should read them).  

>>8497
Update: Go telemetry will be Opt-In??
>"In general, the feedback was mostly constructive, and mostly positive. In the GitHub discussion, there were some unconstructive trolls with no connection to Go who showed up for a while, but they were the exception rather than the rule: most people seemed to be engaging in good faith." -RSC
Am I just being autistic, or is he implying that most people with real concerns were trolls?
>"By far the most common suggestion was to make the system opt-in (default off) instead of opt-out (default on). I have revised the design to do that."
https://research.swtch.com/telemetry-opt-in
Replies: >>8822 >>8829
>>8821
>The restrictions will only apply when a device is running a version of Android more recent than the app’s API level
This looks like a nothingburger. As long as they aren't actually deleting listings just for their age, I see nothing wrong with incentivizing devs to periodically test their code against new OSs.
>>8821
>Wikiless has been taken down by Codeberg due to complaint from Wikipedia
but it's still up?
ICMP Remote Code Execution Vulnerability Found in Windows
>https://nvd.nist.gov/vuln/detail/CVE-2023-23415
>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23415
>https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23415
<Base Score:  9.8 CRITICAL
<Attack complexity: Low
Replies: >>8997
>>8992
I miss when Wangblows bugs would wreak havoc across the internets. Remember how everyone panicked over CodeRed and MyDoom? Now the closest we get is shit like PrintNightmare and Log4J, the latter not even Windows' fault.
fucking_shithub.png
[Hide] (27.3KB, 956x177)
fucking_shithub_2.png
[Hide] (76.5KB, 768x1037)
20_million_devs_get_fucked_at_once.png
[Hide] (371.1KB, 961x1443)
Fucking shithub is going to require 2FA with some authenticator app bullshit for security theater nonsense. Not everyone is a wagie looking for something that doesn't work so he can idle all day and blame it, some NEETs have REAL stuff to get done.

>inb4 don't use shithub
I go wherever the project I contribute to is. I use mailing lists, shithub, gitlab, shitforge, shithub clones self hosted by the project, you name it. Plenty of those projects aren't cancer: OpenWRT, for instance, uses shithub. I can't migrate everyone.

FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
FUCK MICRO$OFT FUCK MICRO$OFT
Replies: >>9077 >>9097
>>9075
https://freeotp.github.io/
Replies: >>9078 >>9081
>>9077
I'm not a normalnigger, I don't have a phone, and I refuse to run anything written in Java.
Replies: >>9080
>>9078
https://www.nongnu.org/oath-toolkit/man-oathtool.html
Replies: >>9085
>>9077
MS uses their own 2FA algorithm that requires their Authenticator app. EEE at its finest.
Replies: >>9085
>>9080
How do I use this with Github?

>>9081
Could you elaborate on that?
Replies: >>9086
>>9085
which part? MS has their own 2FA algorithm that only their Authenticator app supports. And you should know what EEE is.
https://en.wikipedia.org/wiki/Embrace,_extend,_and_extinguish
Replies: >>9094
>>9086
>MS has their own 2FA algorithm that only their Authenticator app supports
Do you have more details on that part? I find it hard to believe that something like this would be used exclusively for logins on Github, considering the kind of users that frequent the site.
Replies: >>9095
>>9094
I think it depends, the company i work for requires MS Authenticator and their speshu 2FA algorithm so I have to use the app. For GitHub they'll probably just require basic authentication which any password manager like KeePassXC can support.
d8e7482d808bec03f07ec9c9621b4a43059ec8bde3f740a4f8bffef62d68e7dd.jpg
[Hide] (738.6KB, 2048x1442)
>>9075
>Fucking shithub is going to require 2FA with some authenticator app bullshit for security theater nonsense
Get the TOTP secret then run
$ oathtool -totp -b "$SECRET"
No hardware or bullshit app necessary.
>FUCK MICRO$OFT FUCK MICRO$OFT
Correct regardless.
no_place_like_that_on_earth.mp4
[Hide] (1.6MB, 508x360, 01:06)
Amazon Wants to Bring ‘Sidewalk’ Wireless Network to Broader Market (AMZN) - Bloomberg:
https://archive.is/7ddvW
>Some recent editions of the company’s Echo smart speakers, Ring video doorbells and outdoor cameras use Bluetooth, long-range radio waves and other wireless protocols to connect with Sidewalk-eligible devices, borrowing a slice of Wi-Fi bandwidth to receive and send signals to Amazon servers.
>Amazon announced it was building Sidewalk in 2019 and says the network now covers about 90% of the US population.
Bezos built his own nationwide meshnet botswarm one consoomer sheeple at a time, I guess the autists here saying we could do something similar might not be as crazy as I assumed after all?
https://www.ietf.org/archive/id/draft-martin-http-carbon-emissions-scope-2-00.html
>This document defines the "Carbon-Emissions-Scope-2" HTTP response header field for reporting the amount of carbon emissions associated with processing a given HTTP request
Replies: >>9404 >>9405 >>9407
clownya.jpg
[Hide] (7.5KB, 223x223)
>>9402
The web is finished, back to gopher and BBS.
Javascript.jpg
[Hide] (192.7KB, 960x777)
>>9402
Gosh I wonder if there's some really easy way the web could be made less energy wasteful by throwing something worthless in the garbage forever nah I can't think of anything at all oh well too bad
Replies: >>9408
9dee69ddc31bef3fd4b46b8099282964e5f461ea2dadeada21a6e0409597d331.png
[Hide] (85.6KB, 296x208)
>>9402
>>9405
>The psychopathic billionaires who push the global warming agenda actually care about saving the planet
Good one friend.
Replies: >>9409 >>9411
Projected_impact_of_climate_change_on_agricultural_yields_by_the_2080s,_compared_to_2003_levels_(Cline,_2007).png
[Hide] (67.9KB, 2008x1346)
>>9408
>global warming agenda
Given the contents of the fossil industry's internal scientific memoranda reaching back to the 1950s and earlier, continuing even as public-facing denialist statements began up in the 1970s, I sometimes wonder what that agenda really is.
Replies: >>9410
>>9409
>Given the contents of the fossil industry's internal scientific memoranda reaching back to the 1950s...
The corporations, banks, governments, NGOs and media empires funding the global warming narrative both financially and politically eclipse the oil companies. As long as you're anti-nuclear the oil companies don't even care anyway. Solar panels and wind turbines don't threaten their business model at all. Carbon credits will only increase profits.

>muh research
All your academic research is funded by the same people. And anyone challenging the narrative gets yeeted from their institutions just like creationists or republicans. The thing about academics is they don't generally have many marketable skills. If the choice is between lying for billionaires and corporations or flipping burgers the choice is obvious. Then midwits act like "97% of experts agree" actually means anything.
Replies: >>9412
OpenBSD 7.3 released
- Improved hardware support, including new arm64 variants and numerous network and graphics driver updates
- Improved general and network performance due to steadily improving multi-core support
- More flexible network configuration, now supporting lladdr-based config [See earlier report.]
- retguard for amd64 system calls [See earlier report.]
- Enhanced memory and process security [See earlier report]
- Relinking of network exposed daemons at boot time [See earlier report.]
- execute-only (xonly) [See earlier report.]
- pinsyscall(2) [See earlier report.]
- Improved versions of OpenSSH (9.3), LibreSSL (3.7.2), OpenBGPD (7.9) …
- Support for disk encryption in the installer [See earlier report.]
- X11 Mesa shader cache enabled. (mainly because of GTK4!)
- More aggressive randomisation of the stack location for all 64-bit architectures except alpha [See earlier report.]

>>9408
I tend to agree. Global warming is often used as an excuse to market new stuff (producing new products creates new emissions vs. using products that have been already made). Example: electric cars that do not even work well in cold climate (I heard from a friend that one of their friends couldn't even get their new car's doors open because the batteries didn't have charge!) or in rural areas where the distances are long and it's (probably) not feasible to build network of recharging stations. Also, the batteries wear out faster, and producing more batteries creates a lot of waste. The replacement batteries often cost too much also.
Replies: >>9412
6cell+8cell98601.png
[Hide] (413.8KB, 700x302)
>>9410
>corporations, banks, governments, NGOs and media empires
>oil companies
Are the same people
>nuclear
Unsustainable unprofitable scam technology that can only function because of taxpayer subsidies, ironically everything they pretend to argue against...
>Solar panels and wind turbines plus geothermal and tidal/osmotic
Are the only permanently viable options and already the cheapest. But arguing over carbon emissions is somewhat irrelevant to global warming, because we already spewed too much carbon into the atmosphere years ago to avoid catastrophic warming by 2100 even if everyone was raptured from earth today instantly dropping emissions to zero. Literally the only thing that can stop AGW is geoengineering, all emissions reduction provide is a cheaper alternative to SOME OF the DACCS or whatever we'll end up doing, which would in turn be cheaper than the externalities of unmitigated AGW.
>your academic research
No, the oil industry's own proprietary research that has only recently been leaked.
>creationists
Reminder that every organized Christian church incorporated Darwinian evolution, geology, etc., into their orthodoxy within a few years of its discovery in the 1850s. YEC as we know it today originated in the 1920s as a hobbyhorse of the 7th Day Adventist cult in the US northeast, especially by infamous crank George McCready Price. This followed the 7th Day Adventists' origins among the dregs of local doomsday hysterics who had repeatedly issued predictions of the 2nd coming every year or two throughout the late 1800s based on autistic overreadings of scripture. From there the YEC fad spread among Baptist loonies across the US, the rest of the Anglosphere, and then infected fundies among Anglicans, Lutherans, Catholics,  Eastern Orthodox, and even other religions like Muslims, Jews, Hindus, etc. by the 1950s in a chain of direct brainworm infestation. YEC has always been and remains to this day heretical in the eyes of every non-meme-tier church's dogma.

>>9411
>cold
This problem was solved a long time ago with options like battery prewarmers and more efficient cabin AC. Some people just don't choose properly winterized cars, and the same problems affect gas burners.
>range
EV range already exceeds typical gas vehicles of the same curb weight
>remoteness
Setting aside the convenience of the grid if you have it, EVs are so much more efficient that using a decent gas generator to charge one will yield more mileage than the same gasoline burned in a comparable car.

The rest of that's just walled-garden nu-engineering in general, not anything specific to modern electric cars.

For instance, devices down to cameras and laptop PCs that used to have removable proprietary LiPo/Li-ion battery packs now have them sealed inside.

And those proprietary Li-ion battery packs were already a step down from earlier chemistries like NiMH & NiCd, which allowed user handling of generic bare batteries. The pretense usually offered was that Li-ion needs special microcontrollers to keep the underlying commodity AA Li-ion batteries (which are still inside modern packs, picrel) from exploding, but there's no technical reason such microcontrollers couldn't be smart enough to handle user-swapped raw batteries.

And then those batteries were in turn a step down from even earlier chemistries like lead-acid, which in "unsealed" batteries allowed users to replace electrolyte and anode plates. Indeed, that is the basis of the latest EV "flow batteries", a type of fuel cell that can either be recharged slowly using mains electricity or rapidly using fresh electrolyte, with variants available using a variety of chemistries ranging from the cheap hydrogen-oxygen to the efficient Li-ion.

Hopefully the nu-engineering problem will be fought by right-to-repair legislation, especially since corporations are doubling down with bullshit like cryptographically signed car parts and SUBCOMPONENTS down to cable harnesses that disable themselves if they detect aftermarket parts.
Replies: >>9413 >>9414 >>9417
ed170c934f558ea2c0f2b904fd98e9e32276baa2467e7602e5328137f5fd1699.jpg
[Hide] (206.6KB, 1500x1500)
>>9412
Good luck when the rats eat the soy cables in your EV.

>Class-Action Lawsuit: Rats Love Toyota Wiring So Owners Sue Again
https://archive.ph/nGPkI

>Eek! Are Tesla Cars Really Attracting Rats and Rodents with Soy-Based Wiring?
https://archive.ph/cdyc5

> Rodents chow down on Teslas, causing thousands in damage
https://archive.ph/2CRVi
Replies: >>9415 >>9416
1896216e0194f234f8fb06ded1e6d4e26f23970b038c9e449cb1490f83f8ff6f.jpg
[Hide] (162.1KB, 1079x1325)
>>9412
>everything in this post
<source: my ass
not one single sentence in your post is true, it'd be kind of impressive if you didn't actually believe in any of that
Replies: >>9417 >>9421
gm_autonomy.jpeg
[Hide] (79KB, 1024x565)
Canoo_Design_Exterior_Possibilities.jpg
[Hide] (593.2KB, 7680x3545)
>>9413
Ideally, the mechanical simplicity of EVs will be combined with some kind of standardized interoperability, reversing the degeneration of modern car-anti-culture, so that building your own is as simple as assembling a desktop PC.
Replies: >>9418
drink_your_microplastics.jpg
[Hide] (32.3KB, 589x422)
>>9413
Oh, also:
https://en.wikipedia.org/wiki/Bioplastic
<The distinction between non-fossil-based (bio)plastic and fossil-based plastic is of limited relevance since materials such as petroleum are themselves merely fossilized biomass. As such, whether any kind of plastic is degradable or non-degradable (durable) depends on its molecular structure, not on whether or not the biomass constituting the raw material is fossilized.
In other words, the reason rats eat the cables isn't because they're made of soy, we could make molecularly identical cables out of sweet raw crude instead, or visa versa we could make indigestible  eternal plastic out of soy to avoid wasting precious hydrocarbon deposits.

So of course, the actual reason we want to make biodegradable electrical insulation is so we don't fill ourselves with microplastics after the cables are scrapped.

There's no other choice, aside from putting more (also eventually biodegradable) preservatives and pesticides in our plastic to (SOMEWHAT) postpone their expiration date, similarly to other biomaterials like lumber or leather.
>>9412
>Are the only permanently viable options and already the cheapest. 
Solar panels and wind turbines are so expensive to manufacture and run and are so short lived they barely break even at the end of their lifetimes. You need fossil fuels to mine the materials for solar panels, and lubricate the moving parts of wind turbines. You need fossil fuel power plants as backups for when there is no wind or sun. This "green energy" stuff is just a money laundering scheme to pipe tax money into the hands of billionaires and increase oil and gas profits at the same time.

>Unsustainable unprofitable scam technology
The reason nuclear is so expensive is because your oil lobby uses the government to cripple them with safety regulations. There is nothing wrong with the technology itself. The fact that XR and other "environmentalist" are so irrationally opposed to nuclear should be a clue as to who's funding them and their real goals.

>Are the same people
ok ... so when the corporate media tells you that nuclear is a scam and we need more bullshit windmills because muh global warming you understand the oil companies are actually on board with that message... and yet you still think you're fighting the oil companies somehow

>>9414
Actually you're right, someone being this consistently wrong is probably just a troll. Whatever.
Replies: >>9421
>>9415
>Ideally, the mechanical simplicity of EVs will be combined with some kind of standardized interoperability, reversing the degeneration of modern car-anti-culture, so that building your own is as simple as assembling a desktop PC.
Ideally. In reality you're just condensing all the complexity and expense into a single, consumable and unsustainable, component. There's nowhere near enough lithium to supply all current car owners with EV battery packs. And you need a continuous supply of them.

I'm occasionally tempted by the democratization of EV technology and the prospect of an accompanying open source firmware project. As you say, building cars as if they were PCs. That would be awesome. 

But then the reality of resource scarcity slaps us in the face. Not just the batteries but the switch to "green energy" is causing havoc with the energy demands we currently have. Dumping millions of EVs onto the same electrical grid is never going to work.
Replies: >>9421
>>9414
>source: my ass
Sorry, I was too lazy to sift through my old shitposts on the subject and fix broken links.

>>9417
>solar
>wind
>break even
https://www.ecowatch.com/solar/solar-panel-payback
<For most homeowners in the U.S., it takes roughly eight years to break even on a solar panel investment.
<Most residential solar systems last between 25 and 30 years. If your payback period is eight years, you’ll be “making money” on the system for 17 to 23 years.
https://www.windpowerengineering.com/wind-turbine-carbon-payback-times-shorter-than-expected-finds-new-study/
https://www.sciencedaily.com/releases/2014/06/140616093317.htm
<the payback for the associated energy use is within about 6 months, the team found. It is likely that even in a worst case scenario, lifetime energy requirements for each turbine will be subsumed by the first year of active use. Thus, for the 19 subsequent years, each turbine will, in effect, power over 500 households without consuming electricity generated using conventional energy sources.
>mine the materials
A non-recurring expense, and can be recycled, unlike fuels that are destroyed when consumed and so require a continuous supply. Regarding solar, I hasten to note that while PV solar is recyclable, I myself personally favor CSP over PV on the basis of its simpler technology and materials.
>lubricate the moving parts
As I noted a bit upthread, bio feedstocks can be used to make any hydrocarbon.
>backups for when there is no wind or sun
>This "green energy" stuff is just a money laundering scheme
The following report shows (in the 1st graph on page 5) both solar & wind stomping coal & nuclear for half the price, plus tying with gas. Note those prices INCLUDE grid storage (batteries, hydrogen, CAES, etc.) to fully offset intermittency.
https://www.lazard.com/research-insights/2023-levelized-cost-of-energyplus/
For these reasons, every penny spent on new fossil/nuclear generation instead of sustainables is a pointless waste constraining future energy supply.
>The reason nuclear is so expensive
Is because it's an inherently flawed technology that survives entirely on taxpayer bailouts UNPRECEDENTED by any other energy subsidy:
https://archive.thinkprogress.org/how-much-of-a-subsidy-is-the-price-anderson-nuclear-industry-indemnity-act-391693197ab/
Along with nuclear accounting for nearly all the money spent on ratepayer bailouts of failed investments from private electric utilities:
https://theintercept.com/2020/08/07/nuclear-power-energy-utility-bribery-scandal/
And everywhere in the world, even in today's most recklessly pro-nuke regulatory environments like chingchong, nuclear boondoggles have always been getting MORE not less expensive and breaking deadlines of ever longer schedules:
https://www.colorado.edu/cas/2022/04/12/even-china-cannot-rescue-nuclear-power-its-woes
>There is nothing wrong with the technology itself
Setting aside its uniquely apocalyptic pollution, safety, proliferation, and security issues compared to literally every other type of generator that I'm sure you already appreciate there's the fact it relies on a finite and very small supply of fuel:
https://www.energywatchgroup.org/blog-post/
The typical nuke cope (aside from "muh thorium", usably pure deposits of which are scarcer than uranium) is then "muh breeders", but of course breeders (aside from remaining experimental outside military applications, and constant breakdowns compared to conventional reactors, thus uncompetitive for energy in spite of a half century of research) all rely on transmuting any fuel loaded into weapons-grade plutonium and keeping it that way as long as possible for maximum breeding ratio, for which civilian breeders have justly been banned by international treaty for decades.
>when the corporate media tells you
Ah yes, telling. As opposed to, y'know, DOING. Like Republican voters complaining about immigration while Republican politicians keep issuing visas, or Democrat voters complaining about the prison-industrial-complex while Democrat politicians build endless prisons.
>and yet you still think you're fighting the oil companies somehow
Environmentalism boils down to one of two mutually exclusive stances on sustainable permaculure: Green growth (ecopositivism), versus green degrowth (ecoausterity).

I'm of course for green growth, eliminating waste by focusing on infrastructure details imperceptible to individual quality of life, while maintaining or increasing QoL for individuals whose private affairs are unmolested. Also as I noted upthread, even ignoring environmentalist and cost benefits, sustainable energy liberates us from perpetual external dependencies.

Oil companies and other fossil fuels as well as nuclear serve the purpose of enforcing perpetual dependence on centralized resources, while braindead green degrowth rhetoric serves the purpose of bullying individuals about their environmentally inconsequential private habits without actually touching infrastructure that would make real environmental impact. In this way the two evils dovetail.

>>9418
>In reality you're just condensing all the complexity and expense into a single [...] component
IMHO that's the ideal way. Think of the difference between, for instance, a typical consumer PC component like a GPU or PSU (bunch of fiddly cables edge connectors and screws that take minutes, have to open the case, static/dust sensitive, coldswap), versus an enterprise server component (insert/eject externally in seconds, sealed component casing, hotswap). In spite of that difference for routine tasks, individual server components are still designed to be cracked open and repaired when necessary, so it's the best of both worlds.
>unsustainable
>There's nowhere near enough lithium to supply all current car owners with EV battery packs
False, same goes for similar canards like peak neodymium for motors/windmills or peak platinum for hydrogen:
https://thebulletin.org/2017/05/clean-energy-and-rare-earths-why-not-to-worry/
I'll also reiterate what I said upthread about flow batteries/unitized fuel cells, which greatly reduce the amount of lithium (or other electrolyte/catalyst) needed to achieve arbitrary energy capacity (i.e.: kWh) at a given maximum power (i.e.: kW).
>And you need a continuous supply of them
As I noted above, they are durable goods that can be recycled, unlike consumables such as fuel.
Replies: >>9422
>>9421
I don't buy any kinds of environmentalism. Sure you "save" the Earth and makes it possible for the population to cooonsum for a couple more decades. It is still the same shithole. With jews you lose.
My analysis is instantly all combustion engine cars becomes junk shitbox, similar to ifags removing headphone ports and all wired hearphones become waste. Waste that you try so hard to reduce. Green energy or not it is just another way to kill off backward compatibility.
It is meaningless to save a planet that is owned by jews. Not to mention that you are probably dead when the 2 weeks of climate change finally ends and the mass starts hugging trees. We should, after starting the ovens, focus on colonizing another planet.
Replies: >>9429
rust_trademark_update.jpg
[Hide] (80.6KB, 720x486)
rust_retarded_trademark_change_Call_for_Comment__Rust_Trademark_Overview,_FAQ_and_Policy_April_2023_-_Google_Docs.pdf
(153.2KB)
Rust Foundation has put out a new trademark policy request for comments. This is in regards to the R in a gear logo and "Rust Programming Language" trademarks. Trademarks are supposed to make it so if someone steals your brand, you can say easily in court that this fucker is grifting your reputation. Someone should tell Rust's trademark lawyer that, because this faggot doesn't understand what a trademark is and wants to make any transformative use of the art illegal and ban anyone for using the Rust trademark who has the wrong [not crazy leftist] politics: no guns and pro-cutting little kids genitals off. Most interestingly is that new policy demands autocratic control over anything that is calling it's self Rust in relation to the Programming Language and wants to force the leftest ideals onto those users and require hyper explicate language about rust and other project's relations.

You can complain about this stupid decision here: https://docs.google.com/document/d/1ErZlwz9bbSI43dNo-rgQdkovm2h5ycuW220mWSOAuok/edit

You can read the whole new policy here: https://docs.google.com/document/d/1ErZlwz9bbSI43dNo-rgQdkovm2h5ycuW220mWSOAuok/edit (or the attached pdf)

if TLDR:
https://www.youtube.com/watch?v=gutR_LNoZw0
https://www.youtube.com/watch?v=hWvnEUK0UIM
>>9423
>jewdocs
>jewtube
Come on man
>>9423
Wew. I was finally convinced that Rust is maybe worth looking into. But then this happened.
ogl_v-1-1.jpg
[Hide] (118KB, 1280x720)
>>9423
>this faggot doesn't understand what a trademark is
I'm strongly reminded of the recent WotC OGL fiasco, where the basis of their cunning plan was to retroactively revoke a license whose primary selling point back in the day was its explicit irrevocability.
bailey_electric.jpg
[Hide] (38.7KB, 444x452)
>>9422
>makes it possible for the population to cooonsum for a couple more decades. It is still the same shithole.
Greater prosperity generally corresponds to population stabilizing. Ironically, I suspect the current "eat bugs live in pod own nothing no borders" spiele's real goal is to INCREASE birthrates with lower lifespan/QoL, as a direct response to global trends in recent decades of birthrates plummeting even across the 3rd-world.
>combustion engine cars
>kill off backward compatibility
Reminder the initial decades of the automobile industry were dominated by electrics as the premier technology, until a confluence of research investment shifting away from electric motors/batteries, enlargement of the oil industry driving down gas prices, and Ford being first in the adoption of assembly-line mass manufacturing. Basically IBM/MS/Intel tactics.
>wired hearphones
That's very different, because inside every "digital" headset is an analog headset with an amp/synth/bus glued onto it, moved from where it used to be in the phablet SoC, so the entire thing is redundant and phony. Electric cars are fundamentally simpler systems with far less parts than fuel cars.
>colonizing another planet
Would be a lot more expensive than colonizing the Sahara, Antarctica, bottom of the ocean, lithosphere, LEO, etc. even after total biosphere collapse. But interstellar colonization does have other all-your-eggs-in-one-basket-related practical justifications.

Most of these "green growth" technologies have other benefits even ignoring the environment: Less centralized, more versatile, more durable, more maintainable, sustainable in perpetuity, cheaper, etc.
Replies: >>9431
>>9423
what they say is irrelevant to what would happen, pretty sure no one takes trademark disputes seriously unless its backed up by an obvious attempt at counterfeiting or highjacking a brands reputation like if youre using a similar logo for your Lust programing language
>>9429
>Electric cars are fundamentally simpler systems with far less parts than fuel cars
Yet those parts are effectively impossible for the end consumer to produce and inseparable from the software that locks it down and prevents repair or modifications via serialization. 
Anyone with metal working tools can make fuel car parts and modify, repair, or even make a car from scratch (with the hard parts like the catalytic converter being easily obtained). Touching your electric car the wrong way will make the corpos brick it with software and the entire car is now useless pollution.
Replies: >>9432 >>9433
>>9431
the engine block cam shaft and pistons are ultra high precision parts, you need a factory to make those you cant make that shit in your backyard unlike an electric motor which you just need some magnets and copper wire for
Right_to_Repair_logo.5defafa50d2fa.png
[Hide] (9.9KB, 720x576)
>>9431
Every problem you're complaining about is just as bad for the latest gasoline cars, the marques of which have been waging a decades-long war of electronically DRM'd anticompetitive sleaze against home mechanics and non-dealer garages alike. And contrariwise making an electric car or its parts from scratch requires far simpler tools and skills than an ICE drivetrain, whether for individual hobbyists such as us or up-and-comers in the aftermarket cottage industry.

In particular I have to LOL @
>with the hard parts like the catalytic converter being easily obtained
For now. Compare that to commoditized microcontrollers, FPGAs, and high voltage components that have far broader applications than any car part, and as such can never possibly be restricted as much.

Our only chance aside from IMHO impractical efforts at proselytizing sheeple into voluntarily organized boycotts of DRM'd products is to strengthen legislation such as Magnussun-Moss, and to promote new legislation protecting and enlarging the right to repair.
Replies: >>9434
>>9433
Fuel cars aren't as complex and electric cars aren't as simple as you're pretending they are. 
Combustion engines are extremely old and relatively simple concepts. A home made internal combustion engine won't be nearly as efficient, strong, or reliable as a precision made one, but it will run.
Electric cars, on the other hand, struggle to even get close to fuel based cars even when using the latest most intricately made batteries that exist commercially. Anyone can make a battery, but if you think you'll be able to run a usable car purely on magnets and wire you're seriously retarded. 
>>9433
At this point in time electric cars are way more restrictive than any consumer fuel car. Farm vehicles are way worse but there still aren't any comparable electric vehicles.
Fuel cars are mostly mechanic and are going to stay mechanic as long as it makes economic sense, whereas in electric cars it's already cheaper to make everything electric which is inherently harder for consumers to work around. Any machinist can make a part that fits another, very few programmers can break DRM. 
You're saying that shit is going to get worse and I don't disagree with that, but I fail to see how we'll ever reach a point where fuel cars become worse to work with than electric.
Replies: >>9435 >>9439
made_by_kids.gif
[Hide] (550.7KB, 420x380)
precision_engineering.gif
[Hide] (3.4MB, 800x450)
>>9434
was talking about engines
an electric motor only seems more sophisticated if you dont know anything about electromagnetism, its literally just a magnet spinning in an electromagnet which is just copper wire wound into a solenoid just because combustion engines are older doesnt mean their simpler, electric motors only have two parts anyone can make electric motor at home, a combustion engine requires proper machining and engineering with dozens of parts that are tailored for exact fit with extremely low tolerance
Replies: >>9436
>>9435
Again, how do you expect to power that motor without proprietary batteries?
Replies: >>9438 >>9439
>>9436
potatoes obviously
Replies: >>9449
car-3.png
[Hide] (447.3KB, 1667x810)
Tesla-batteries-adhesive-792x300.jpg
[Hide] (38.4KB, 792x300)
>>9434
>Combustion engines are extremely old and relatively simple concepts
Electric motors and batteries were invented first, same for electric cars, both are far simpler, and are far more common as tinkerer projects. In fact, ICE drivetrains necessarily incorporate at least one entire electric drivetrain, with an electric motor (the starter, arguably also the alternator) and battery (duh), as major components!
>Electric cars, on the other hand, struggle to even get close to fuel based cars
As I've already pointed out, electrics are far more efficient, to the point running a gasoline generator to charge a BEV is cheaper than an equivalent gasoline car. If by "performance" you mean the "vroom vroom" kind, then electric motors generally have far better acceleration, better torque, and weaker top speed.
>At this point in time electric cars are way more restrictive than any consumer fuel car
<doubt.tga
>Fuel cars are mostly mechanic
Which is harder to tinker with than electrical equipment or electronics
>electric which is inherently harder for consumers to work around
You're conflating "electric" (simple analog devices) with electronic
>very few programmers can break DRM
But if someone has, all a hobbyist has to do is flash a ROM with a premade crack. And electronics can be bypassed entirely by just slotting in a whole custom replacement board that's way easier to build from commodity microchips than any machine part.
>I fail to see how we'll ever reach a point where fuel cars become worse to work with than electric.
Because electric cars are inherently simpler systems than fuel cars, requiring simpler tools, simpler knowledge, and whose subcomponents/materials are more generic commodities shared with many more applications than cars across far more industrial sectors.

>>9436
>batteries
I already posted an entire spergrant upthread about how proprietary battery packs in everything from phones to cars are ackshually just assemblies of commodity battery cell stacks wired together and sealed in a case with a microcontroller. Case in point:
https://www.hotcars.com/teslas-lithium-battery-packs-nearly-impossible-to-repair/
The main reason Tesla batteries are so hard to repair? Not the cells (they're commodity "18-650" batteries), not shmancy electronics. Nope, it's just because they're covered in glue!
>>9439
This is a technology board.  You should at least talk about the different kinds of innovations in modern electric motors instead of canvassing every tiny bit of the internet with communist propaganda.
Replies: >>9441
>>9440
>knowledge of what cars are more reliant on centralized control
>communist propaganda
How about innovations in reusing and bypassing the DRM in batteries?
Replies: >>9444
>>9439
>Electric motors and batteries were invented first
An old engines can still run. Old batteries can't power a car for day to day use. 
>electrics are far more efficient
Electric cars can't drive for shit because of energy density. You can drive a fuel car with a full tank for days and refuel in a second. Electric cars have no range and take literal hours to recharge even with proprietary fast charging that corpos can ban you from. 
Electric cars are only worth it if you have spent thousands of dollars to charge it at home AND don't ever want to drive it out of town.
>doubt.tga
Tesla will ban you from fast charging for any third party repair at all (even purely cosmetic), and frequently disables fast charging on second hand cars. That makes charging go form 3-4 hours to over a day. 
All other cars can do is turn off your heated seat subscription or other dumb shit, all of which also affects electrics. Every problem with consumer fuel cars also affects consumer electric cars.
>You're conflating "electric" (simple analog devices) with electronic
Electric is electronic when every modern circuit has a micro controller thrown in. 
>But if someone has, all a hobbyist has to do is flash a ROM with a premade crack
Which has yet to happen with john deere tracktors despite the millions of dollars of incentive to do so. 
>Because electric cars are inherently simpler systems
Again, that simplicity is achieved via electronics that are designed to remove control from the user. Meanwhile clutches still don't have micro controllers built in.  You can still machine car parts which is why the modded fuel cars are as popular as ever. 
The only modded electric car I've ever seen was a tesla with a V8.
Replies: >>9449
>>9441
Sure!  That's interesting at least.  Don't mistake me for somebody who thinks EVs are inherently stupid or uninteresting.

I forget the guy's name and lost touch with his independent radio appearences, but last I heard he was looking for people willing to go in at I think like the 20kW or 50kW level to help him fund some novel wind power generators suitable for windy planes like out in the midwest where they could feasibly power or suppliment small farms where EV runnabouts and whatever else might be a desireable alternative or addition to everything needing a constant supply of diesel from afar.  Be neat if that pans out, since not every place is entirely suited to using solar for such a provision.
Replies: >>9449
>>9443
>old engines
Break long before old motors, costing thousands of dollars more in maintenance over the same period:
https://www.consumerreports.org/hybrids-evs/evs-offer-big-savings-over-traditional-gas-powered-cars/
>Old batteries
Exist, burned fuel does not.
>Electric cars have no range
Electric cars have the the same range (80-400 miles) and their batteries+electricity achieve breakeven vs. gas within 2-7 years, as the above link describes. That's well before the warranty expires (8 years or 30% capacity loss, though typically less than 10% capacity loss occurs by then):
https://www.motortrend.com/features/how-long-does-a-tesla-battery-last/
>literal hours to recharge
At your destination while you're doing something else, instead of having to waste time visiting a gas station. And, as I've repeatedly noted upthread, other designs such as flow batteries/unitized fuel cells allow quick refilling of electrolyte in addition to grid charging.
>have spent thousands of dollars to charge it at home
Which is likewise more than paid for by lower energy prices
>don't ever want to drive it out of town
Assuming you need to drive more than hundreds of miles a day, similarly to packing jerrycans with you, there are options for EVs ranging from external batteries up to gas genset trailers.
>Tesla will ban you from fast charging
There's a whole lot of fuckery going on with that beyond banning repaired cars, like dumbass promotional schemes of complementary recharges, paying by the minute parked instead of by the kWh, 3rd-party EVs having to negotiate for charging from Tesla's network, commercial fleet vs. personal vehicles, etc. I imagine the same disputes would be happening if e.g. CNG cars were ubiquitous and people were filling up at their offices or their friend's apartment from premises metro pipelines, and I imagine moar regulations and class action lawsuits will be the only way it's settled. Not to mention that electricity is a lot easier to make than gas
>Which has yet to happen with john deere tracktors despite the millions of dollars of incentive to do so.
https://archive.is/lzcKH
>Electric is electronic when every modern circuit has a micro controller thrown in
Basic subcomponents like Li-ion cell stacks, motor stators, connectors, and wiring, don't have microcontrollers. And what interaction they do have with electronics are generic enough to be substituted far more easily than machining low-tolerance mechanical parts.
>Meanwhile clutches still don't have micro controllers built in.
https://www.troublecodes.net/pcodes/p0902/
>modded electric car
Admittedly almost all firmware/chip tuning for now, though there are also some upgraded batteries, inverters, motors, and cooling:
https://autoversed.com/the-future-of-car-modification-in-the-face-of-electric-vehicles/ 
>a tesla with a V8
There's also the opposite, so-called "crate motor" BEV conversions:
https://www.tuningblog.eu/en/categories/cars-from-az/porsche-911-electrogenic-458747/
Overall, I think we're mostly suffering from a lack of knowledge and experience at the moment, as I'd say fabricating or assembling a good electric kit car is much easier than a gas kit car, but I concede tuning a modern factory production electric is currently harder than its gas equivalent.

>>9438
>potatoes obviously
https://en.wikipedia.org/wiki/Enzymatic_biofuel_cell

>>9444
>wind power
>farms
That's a particularly good match because it already has things like road access and evened ground that undeveloped wildland lacks, and makes up a little over half US land, or 1/5th counting only planted cropland:
https://www.ers.usda.gov/amber-waves/2012/march/data-feature-how-is-land-used/
>solar
Probably the ideal siting is the opposite of that for wind, so-called "grayfield" (paved) and "brownfield" (blighted and contaminated) land:
https://www.theenergymix.com/2016/07/12/solar-could-turn-old-industrial-sites-from-brownfield-to-brightfield/
Replies: >>9574 >>9585
563435R.jpg
[Hide] (210.9KB, 1000x800)
>>9439
>Because electric cars are inherently simpler systems than fuel cars, requiring simpler tools, simpler knowledge, and whose subcomponents/materials are more generic 
What you're missing is that an ICE vehicle can have 1000 moving parts but if any of them break it's $100 to fix it. When your super simple EV breaks it's $20,0000 for a new battery pack. And you're deluding yourself if you think you're DIYing it.
Replies: >>9599
f255b4df88e67f802efa73b019cab4368ff2cf5fd8c56a30dd64307453382a6d.jpg
[Hide] (1.2MB, 1346x2163)
>>9449
Replies: >>9585 >>9599
5a6a718920ea73b7e0162c62c891cb91cafcd6475b32ec14f286f3f7595d35e5.jpg
[Hide] (107.1KB, 1920x1080)
>>9449
>>9574
Replies: >>9599
ps12342940-original_japan_sanyo_18650_2600mah_flat_head_li_ion_3_7v_rechargeable_battery.jpg
[Hide] (85.3KB, 800x800)
>>9482
>a new battery pack. And you're deluding yourself if you think you're DIYing it.
As noted in the article I linked a couple posts up, the only reason e.g. Tesla battery packs are so hard to fix is because they're filled with glue, moreover glue obviously chosen to be needlessly difficult to dissolve. Not exactly high-tech. Absent such blatant malfeasance, it would be no harder to fix than a laptop battery using the exact same commodity cells that cost pennies, FAR easier and cheaper than any fuel drivetrain could possibly be.

Everything you're complaining about are problems that have nothing to do with the underlying technologies, everything to do with corporate audacity, and as a result are likewise a burgeoning cancer on new fuel cars.

>>9574
>>9585
Ha ha. Seriously though, Li-ion batteries (and, on a related topic, hydrogen, for the same reasons as CNG) are far safer than gasoline in cars:
https://www.autoinsuranceez.com/gas-vs-electric-car-fires/
Some of Li-ion's bad reputation in EVs comes not from comparison with fuel vehicles, but from non-automotive applications compared against other battery chemistries (NiCd, NiMH, etc.), which it actually is more fire-prone in comparison to.
>>9599
>it would be no harder to fix than a laptop battery using the exact same commodity cells that cost pennies
If Jamal's Local Autorepair can fix your tesla battery for "pennies" then tesla wouldn't be able to sell them for $20,000. Something doesn't add up in your narrative.
Replies: >>9601
model-3-battery-teardown-main.png
[Hide] (338.2KB, 800x449)
>>9600
>Something doesn't add up in your narrative
Like I said, the gobs of gunk they're entombed in. If they didn't use glue, or used a glue chosen for its compatibility with a convenient DIY solvent, that wouldn't be an issue. But I suspect some combination of legislation and lawsuits will be necessary, since aside from the usual kit car hobbyist bunch there's no "Purism of EVs" as a serious player right now.

As-is, the larger modules can be swapped for cheaper than an entire pack:
https://electrek.co/2021/09/13/tesla-battery-pack-replacement-repair/
And entire 3rd-party aftermarket batteries are on their way:
https://www.businessinsider.com/startup-doubled-tesla-range-with-special-battery-2022-1
As I said, I think the main problem with EV repair/tuning right now is simply the sheer newness of the cottage industry in an environment when the auto industry as a whole is in blitzkrieg-mode against home handymen and non-dealer mechanics.
Replies: >>9603
RUP12aky.jpg
[Hide] (83.6KB, 720x531)
>>9599
>are far safer than gasoline in cars
This is decades of data on millions of gas cars vs a few years and a few hundred EVs. This is how to lie with statistics 101. And obviously you realize corporations like your link churn out propaganda like this to increase their ESG scores not because it has any relevance to reality.

>far safer
There's also a big difference in how the fires start. The only way an ICE can can go up is if oil or fuel leaks onto a very hot component like the exhaust manifold. The problem with EVs is that they can short themselves out while cold and at rest which is a whole different thing. EVs are basically constantly at risk of catching fire just by existing.

>far safer
The last point here is that ICE vehicles firewall the passenger compartment from the engine so  any fires are contained and you've got plenty of time to get out. EVs spread the heavy batteries all over the underside of the car to even out the weight distribution. So when an EV catches fire the whole thing catches fire at the same time making you super fucked if you're inside.
>>9601
>As-is, the larger modules can be swapped for cheaper than an entire pack
<So how much did it cost? The modules were $1,500 each, for a total of $3,000. Another $750 in parts for contractors and fuses
<With diagnostic and labor, it came up to about $5,000
They replaced 2 out of 16 battery modules for $5000 and you think that proves your point?
Replies: >>9606 >>9610
>>9603
>They replaced 2 out of 16 battery modules for $5000 and you think that proves your point?
The point was supposed to be that it's possible to DIY repair these batteries, not just buy new ones but in smaller quantities.
>>9602
Took me a minute to appreciate picrel. That's a mid engined Boxster, the engine is at the back but in the middle. The trunk is open but no flames are coming out the back. The passenger compartment is also fully open and no fire there either. The fire is completely contained where the engine is.
tv_weather.jpg
[Hide] (35.9KB, 526x635)
>>9602
>This is how to lie with statistics 101
>corporations like your link churn out propaganda like this
As opposed to the completely effortless copypasta you're parroting: Just point and gabble mindlessly at a parade of random anecdotes, free of even the flimsiest pretense at context or proportion. The very strongest verifiable statement that be made right now is "EVs have accidents, those are probably less likely than fuel vehicles".  
>The only way an ICE can can go up is if oil or fuel leaks onto a very hot component like the exhaust manifold
LOL:
https://normantaylor.com/blog/which-cars-catch-fire-the-most/

>>9603
>They replaced 2 out of 16 battery modules for $5000 and you think that proves your point?
That's obviously a lot less than $22k, and similar to a lot of mechanical jobs (e.g.: getting a transmission or catalytic replaced).
Replies: >>9611
>>9610
>The very strongest verifiable statement that be made right now is "EVs have accidents, those are probably less likely than fuel vehicles".  
Except >>9602 completely destroyed this statement. It's not true just because you want it to be true. And it's definitely not true just because multinational corporations riding the ESG money train tell you it's true.

>LOL
What's your argument? Linking to random articles you obviously didn't read is just a diversion tactic.

>That's obviously a lot less than $22k
They didn't fix it though, they just replaced 1/8th of the battery modules with brand new ones. Replacing all the modules would have cost the same as a new battery ($1500*16).
That's not what you said in >>9599 and >>9439
<Because electric cars are inherently simpler systems than fuel cars, requiring simpler tools, simpler knowledge, and whose subcomponents/materials are more generic 


>and similar to a lot of mechanical jobs (e.g.: getting a transmission or catalytic replaced).
When you rebuild a transmission almost all of the cost is the labor of delicately taking it apart and putting it back together again, the actual parts are cheap. Again, all your guys did was buy a new battery module from a factory and glue it onto the old ones. The only reason it was cheaper than tesla's fix price was because they bought a smaller number of modules.
Replies: >>9612
>>9611
>completely destroyed this statement
By offering absolutely zero data?
>It's not true just because you want it to be true
And it's not false because you saw ooh a scary photo, but it is PROBABLY TRUE because what data we have leans toward batteries being safer than gasoline.
>Linking to random articles you obviously didn't read
Yeah, articles about how fuel cars spontaneously explode all the time in the exact way scaremongers were propagandized only EVs do. Totally random.
>Replacing all the modules would have cost the same as a new battery
No duh. But if the pack only has failures the cells of a few modules, that's a lot cheaper. And like I've said repeatedly, if modules weren't filled with gratuitously insoluble glue or an easy way of removing it was discovered, single cells could be replaced for far cheaper.
>When you rebuild a transmission
Sure, but that's still $2K-$3K unless you DIY. And for a factory replacement, parts alone are $3K-$5K, $4K-$8K with labor.
Replies: >>9613 >>9614
>>9612
>By offering absolutely zero data?
By explaining why the sample set is not big enough to make a meaningful comparison.

>it is PROBABLY TRUE because what data we have leans toward batteries being safer than gasoline
Dude stop consuming corporate media before the brain damage is irreversible.

>articles about how fuel cars spontaneously explode all the time 
The article says exactly what >>9602 said. A fire only starts when oil or fuel leaks and touches a very hot component. The picture also confirms the point about ICE vehicles containing fire within the engine bay vs. every EV fire you see being an out of control inferno.

>No duh
In >>9599 and >>9439 you were clearly saying that it's possible to repair the battery cells, not just buy a whole new module. Are you admitting now that was wrong?

>modules weren't filled with gratuitously insoluble glue or an easy way of removing it was discovered, single cells could be replaced for far cheaper
Dude only one cell was broken in each module. If they'd rather spend $5000 replacing the whole modules instead of fixing the two broken cells then clearly you're wrong about fixing single cells being an option.
Replies: >>9615
>>9612
>if modules weren't filled with gratuitously insoluble glue
Which EV batteries don't do this then?

>>9599
>it would be no harder to fix than a laptop battery using the exact same commodity cells that cost pennies
Your laptop is not running on 400 volts nigger.
Replies: >>9615
>>9613
>the sample set is not big enough to make a meaningful comparison
I disagree, but it's certainly big enough to show there's no identifiable trend of EVs being way more dangerous, unlike...
>stop consuming corporate media before the brain damage is irreversible
Such as meaningless random photos of EVs on fire?
>A fire only starts when oil or fuel leaks and touches a very hot component
LOL:
<faulty rod bearings
<the chance of that ground terminal melting and starting a fire
<allows water from external sources to get into the electrical connections of the wiring harness. Water on electric components can cause short circuits, leading to an increased fire risk if the ignition is turned off for long periods of time.
<While they don’t cite a specific reason, Ford states its cars have an “increased risk of underhood fire, including while the vehicle is parked and off.” 
<etc.
>you were clearly saying that it's possible to repair the battery cells
No. I was saying IN PRINCIPLE it is far easier to repair a properly designed battery pack or electric motor compared to similarly major components in even an ideally designed ICE drivetrain. Also, that the problem with CURRENT stock factory production EV batteries isn't high-tech issues that other posters upthread were worried about such as proprietary single-source subcomponents or electronic DRM, but instead very low-tech hostile design features such as glue.
>clearly you're wrong about fixing single cells being an option
Which is why I never claimed that about current Tesla batteries, and instead REPEATEDLY emphasized the glue as an example of very silly hostile design.

>>9614
>Your laptop is not running on 400 volts nigger
The individual 18650 cells are only 3.6 volts, and are the exact same SKU used in laptops.
Replies: >>9616
>>9615
>I disagree, but it's certainly big enough to show there's no identifiable trend of EVs being way more dangerous
I don't know how I can explain this so you can understand. All your "data" and "trends" come from people with a big financial incentive to promote EVs. The link you posted had no statistical rigor. If your study has 1,000,000 ICEs and 100 EVs, of course there will be more ICE fires. It's utterly meaningless.

>Such as meaningless random photos of EVs on fire?
Those pictures don't look like they came from the corporate media to me. The media narrative is "EVs good ICE bad" just like you incidentally. I didn't post them but I did point out that whatever you want to say about the probability of a fire starting, the speed the fire spreads and the probability of surviving is also relevant to safety.

>the chance of that ground terminal melting and starting a fire
I've had corroded wiring short out. You've got maximum 12V going through that shit. It smoulders and melts a bit, it doesn't explode into flames.

>faulty rod bearings
The cause is still fuel/oil igniting outside the cylinder.

>the problem with CURRENT stock factory production EV batteries isn't high-tech issues that other posters upthread were worried about such as proprietary single-source subcomponents or electronic DRM
You can't have it both ways. If it's magic battery technology that will let you go 1000 miles between charges then you can't fix it with cheap generic parts.

>but instead very low-tech hostile design features such as glue
If the glue has no functional purpose then there must be a cheapo manufacturer who skips the glue to save cost. Why can't you show me one?
ss.png
[Hide] (211.5KB, 1684x1210)
Yet another tech to join the /tttt/ club: https://archive.is/Jdsei
Replies: >>9648 >>9650 >>9654
>>9641
>rusted wangblows
What a fucking timeline...
>>9641
>linux switching to rust
>microsoft switching to rust
MacOS is officially the least gay desktop operating system
Replies: >>9652
>>9650
>linux switching to rust
It's still vaporware. No one has managed to (re)write any real world kernel code in rust yet.
>>9641
>The basic goal here was to convert some of these internal C++ data types into their Rust equivalents
It's all theater as usual, copying trivial high level functionality that can be done in any language even Python. Meanwhile Rust the "systems programming language" can't do shit about real low level C bitbanging and memory shuffling without using a giant unsafe block.
Bringing Memory Safety to sudo and su
>https://www.memorysafety.org/blog/sudo-and-su/
>https://github.com/memorysafety/sudo-rs
Why not just use (open)doas? Anyway, the motivation comes from: https://www.sudo.ws/security/advisories/

Parrots taught to video call each other become less lonely, finds research
>https://www.theguardian.com/environment/2023/apr/21/parrots-taught-to-video-call-each-other-become-less-lonely-finds-research
Replies: >>9665 >>9679
>>9663
>Why not just use (open)doas?
If powerful people are pushing rust everywhere it's because they think it will give them more power in the future.
>>9663
I already deleted sudo package long ago. I just login as root on a spare console tty1-6, if needed.
New C features in GCC 13
https://developers.redhat.com/articles/2023/05/04/new-c-features-gcc-13

Static linking considered useful
>https://medium.com/@anton_samokhvalov/static-linking-considered-useful-c25300c46e3d

Other related articles:
<https://www.akkadia.org/drepper/no_static_linking.html
<https://blogs.gentoo.org/mgorny/2021/02/19/the-modern-packagers-security-nightmare/ (scroll down)
<https://gavinhoward.com/2021/10/static-linking-considered-harmful-considered-harmful/
<https://harmful.cat-v.org/software/dynamic-linking/
Also:
>https://github.com/oasislinux/oasis
>https://sta.li
Or how about Gentoo with static USE enabled in make.conf?

Driving Compilers
Pretty good article series that explains how C programs get compiled (the whole process)
>https://fabiensanglard.net/dc/

Apple fagOS Internals
>https://gist.github.com/kconner/cff08fe3e0bb857ea33b47d965b3e19f
Also: http://newosxbook.com/home.html

OpenSSL Cookbook 3rd edition
>https://www.feistyduck.com/library/openssl-cookbook/online/

The early days of Linux
>https://lwn.net/Articles/928581/

Microsoft is forcing Outlook and Teams to open links in Edge, and IT admins are angry
>https://www.theverge.com/2023/5/3/23709297/microsoft-edge-force-outlook-teams-web-links-open
Replies: >>9796 >>9798
>>9793
>Static linking considered useful
For some reason my brain automatically read that as "considered harmful", multiple times, until I read the article and figured something wasn't right...
Happy to see more and more developers vouching for static linking, it's already solving software distribution on loonix for a great deal of programs.
Replies: >>9800 >>9815
>>9793
>New C features
I like constexpr and the removal of unprototyped functions
>>9796
Static linking is rarted. It's the Electron approach to design, and the author's argument is likewise braindead since static linking doesn't unload transitive deps that increase attack surface, not to mention all the other moronity that comes from a bazillion redundant copies of defunct old versions of the same lib.
>solving software distribution on loonix
Reminder this is due entirely to the unstable ABI, and it's a problem literally no other modern OS has.
Replies: >>9815
>>9796
>it's already solving software distribution on loonix for a great deal of programs
There wasn't a problem to solve, you're creating a problem, not solving one.

>>9800
>Reminder this is due entirely to the unstable ABI
No, it's just nudevs being nudevs. For one, Linux and glibc do have a stable ABI. And an OS which does not have a stable ABI like OpenBSD doesn't suffer from this Linux brain damage.
Replies: >>9816
87dffebdd4fdfbcc8f390cdaa91debd94269a4e11959fdd5b7147ffeba997e06.jpg
[Hide] (13.9KB, 311x313)
>>9815 (You)
>glibc do have a stable ABI
MAL hacked: Let's All Love Lain
https://archive.is/41Xlz
Replies: >>9829
>>9828
lainchan has really taken things too far this time
>>>/digi/11602
>https://www.techradar.com/news/youtube-is-attempting-to-block-your-ad-blocker-in-new-experiment
YouTube is trying to block ad-blockers.
Replies: >>9890
>>9888
R*ddit will begin charging for access to its API
https://techcrunch.com/2023/04/18/reddit-will-begin-charging-for-access-to-its-api

Will this kill the libre frontends?
Replies: >>9893
>>9890
IIRC Invidious, Teddit and others scrape pages instead of using official APIs.
Replies: >>9896
>>9893
Sadly Pushshift (thus Unddit & Reveddit) is too lazy to scrape, but hopefully it will be reengineered or replaced by something that does. Reddit is fucking unusable without the ability to conveniently read deleted posts/accounts.
New youtube purge inbound
Replies: >>9906
>>9905
YT maybe safe from it?
https://9to5google.com/2023/05/16/google-account-delete/
Debian 12 aka bookworm will have a new non-free-firmware package archive in apt sources.list
>https://www.debian.org/releases/testing/amd64/release-notes/ch-upgrading.en.html#non-free-firmware
non-free got split into non-free and the new non-free-firmware . This change is already live on testing and unstable.

The Dangers of Google’s .zip TLD
Context: https://domains.google/tld/zip/
>"The web moves at high speed, so show you do too with a .zip domain. When you're offering services where speed is of the essence, a .zip URL lets your audience know that you're fast, efficient, and ready to move."
>https://medium.com/@bobbyrsec/the-dangers-of-googles-zip-tld-5e1e675e59a5
What can possibly go wrong?
Replies: >>9947
>>9938
I want my own TLD too.
PGP signatures on PyPI: worse than useless
>https://blog.yossarian.net/2023/05/21/PGP-signatures-on-PyPI-worse-than-useless
Is he right?

Envisioning a Simplified Intel Architecture for the Future
>https://www.intel.com/content/www/us/en/developer/articles/technical/envisioning-future-simplified-architecture.html

The absurd cost of finalizers in Go
>https://lemire.me/blog/2023/05/19/the-absurd-cost-of-finalizers-in-go/

Harvey OS (a Plan9 fork) Retired
>https://harvey-os.org/2023/04/23/retirement.html
>We have created something new that we named R9, an OS strongly inspired by Plan 9, written in the Rust programming language.
>https://github.com/r9os/r9
Replies: >>9969 >>9974
>>9968
>The absurd cost of finalizers in Go
Related: https://utcc.utoronto.ca/~cks/space/blog/programming/GoFinalizerCostsNotes
Replies: >>9974
>>9968
>>9969
So the 2nd article concludes that the problem is that heap allocation in Go is slow and finalizers force heap allocation, which means garbage collection. It appears setting up the finalizer is itself slow, and GC down the line adds to it. A surprising detail is that a single threaded program can have a double digit % of its runtime occupied by locking in Go, just imagine how badly Go scales with threads.
Should have read the news item before posting...
community repo got deprecated and everything from community was moved to extra.
>https://archlinux.org/news/git-migration-completed/
RFC: Enforcing Bounds Safety in C (-fbounds-safety)
>https://discourse.llvm.org/t/rfc-enforcing-bounds-safety-in-c-fbounds-safety/70854

ITU News Magazine – The future of Coordinated Universal Time
>https://www.itu.int/hub/publication/s-gen-news-2023-2/
You don't need to tell them your email address, just leave it blank!

PyPI was subpoenaed
>https://blog.pypi.org/posts/2023-05-24-pypi-was-subpoenaed/

Securing PyPI accounts via Two-Factor Authentication
>https://blog.pypi.org/posts/2023-05-25-securing-pypi-with-2fa/

Dynamic Tracing on OpenBSD 7.3
>https://blog.lambda.cx/posts/openbsd-dynamic-tracing/
I have never used it or DTrace or bpftrace. 

Don't abuse su for dropping user privileges.
>https://jdebp.uk/FGA/dont-abuse-su-for-dropping-privileges.html
Wow, didn't know about this.

Sudo and signal propagation
>https://dxuuu.xyz/sudo.html
... or this!

Rust got forked!?
>https://github.com/crablang/crab
Even more drama?

Fish Folk: Jumpy - Tactical 2D shooter in fishy pixels style. Made with Rust 
>https://github.com/fishfolk/jumpy
I wonder if it will ever be good? Probably not because they require CoCk and recommend using Chrome browser.

Setris - Tetris but with sand physics
>https://mslivo.itch.io/setris

Wikipedia had the wrong Vatican City flag for years. Now incorrect flags are everywhere
>https://www.catholicnewsagency.com/news/254032/wikipedia-had-the-wrong-vatican-city-flag-for-years-now-incorrect-flags-are-everywhere

The poisoning of ChatGPT
>https://softwarecrisis.dev/letters/the-poisoning-of-chatgpt/

The Gemini protocol seen by this HTTP client person
>https://daniel.haxx.se/blog/2023/05/28/the-gemini-protocol-seen-by-this-http-client-person/
Interesting analysis but why Gemini should reuse connections if the total content is not large? Also, I never understood why use Gemini over good old Gopher?

Leaked Government Document Shows Spain Wants to Ban End-to-End Encryption 
>https://www.wired.com/story/europe-break-encryption-leaked-document-csa-law/
Are the gov of Spain and EU stupid or evil (or both)?
Replies: >>10168
>>10167
>Don't abuse su for dropping user privileges.
Where's the poc? How does a su'ed process get back to root if it's so dangerous.

>Rust got forked!? Even more drama?
According to their website it's actually satire intended to protest the drama.
https://crablang.org/
>The Crab (or “CrabLang”) community fork was created as a lighthearted yet measured response to the growing concerns within the community about .... blah blah blah nobody cares
I love the tranny language. "This is a measured response". Faggot that's for other people to decide how they perceive your actions. You can't declare that you are "measured" to avoid criticism, just like how you can't declare that you're a woman to get into the women's bathroom.
>>10168
>CrabLang
More like crap. I like how Rust is really a joke language just by existing.
>>10168
>the influence of corporations and the restrictive trademark policy proposed by the foundation
>but we also believe that it is essential to maintain a balance between corporate influence and the will of the community
>the constraints imposed by corporate interests
>We want to emphasize that we are not at odds with the project
How can these people imagine that the childish circus they're reacting to is some external entity like "corporations", "the foundation", or "the project", separable from "the community"? As if the cultlike demand for all-encompassing lifestyle conformity from a piece of software wasn't the sole source of this autismal drama fountain.
>>>/v/201476
>Gigabyte consumer motherboards contain dropper backdoor in firmware
>https://eclypsium.com/blog/supply-chain-risk-from-gigabyte-app-center-backdoor/
Another reason why I won't buy anything from Gigabyte!
I had 1 Gigabyte GPU that died just 1 or 2 months after warranty expired.
Replies: >>10195
>>10192
Anyone buying anything modern after IntelME doesn't care anyways.
stux.jpg
[Hide] (79.7KB, 500x335)
>>10168
Would the FSF approve? I doubt that anybody from that fork would support RMS. I don't think it would be in the Linux-libre kernel, either.
Replies: >>10296
>>10208
I don't care much about R*eddit but they are effectively killing 3rd-party clients: https://archive.is/34MZH
Will this affect teddit and RedReader (android/f-droid app)? Reddit sometimes comes up in web search results.
YouTube legal team contacted invidious developers
>https://github.com/iv-org/invidious/issues/3872
Worrisome.
Replies: >>10322 >>10328
>>10320
Wake me up when they go for yt-dlp.
Replies: >>10328
>>10296
Reddit jannies are privating their subreddits in retaliation, but they are too stupid to understand that the admins (who actually do not do it for free) are going to just ban them and replace them with more jannies and the normalfags that infest their site could give less of a crap. Redditors deservee everything that happens to them even more.
Replies: >>10327
>>10296
>Will this affect teddit and RedReader
Yup. The writing was on the wall since reveddit and other "undelete" services stopped working.
Although since teddit doesn't support actually engaging with the website (login, post, comment) it probably doesn't need an API key and can just crawl and parse the Reddit webpages themselves.

>>10326
Thousands of subreddits have already gone dark: https://reddark.untone.uk/
I don't think the admins can ban this many people.
When all social media websites finally go under maybe the www will go back to specialized forums and classic message boards like before. One can dream.
>>10320
I still don't understand why people still use Github when they are owned by Microsoft and companies can DMCA repositories for stupid shit like this.
At least they have a backup repo.
>>10322
They better have backups too or it's going to be another youtube-dl situation again.
Replies: >>10329
>>10328
Wouldn't be surprised if they got rid of the top jannies who own the more popular subreddits and replace them, and then just let the smaller ones die.
Replies: >>10330
>>10329
How the fuck do they not create a clone and replace that shithole already? They are babies complaining to big daddy compared to us, we are used to this.
Replies: >>10336 >>10339
>>10330
>create a clone
A lot of redditors pre-blackout were shilling Lemmy instances, but Lemmy is far from intuitive to use and AFAICT still a WIP. Also I hate how it's unusable without JS unlike old.reddit.com
Replies: >>10337 >>10341
>>10336
Lemmy has filters for "bad" words ('nigger' & variations, etc) in the code itself. And back in the day the official instance advertised itself as "leftist FOSS enthusiasts" or something along those lines
Replies: >>10339 >>10345
2000px-Digg.svg-57c655a03df78cc16e67ed14-1c847ce63d2e485b929a91bbd63f4a03.jpg
[Hide] (34.9KB, 1682x1124)
>>10330
One of the founding myths of Reddit is the great migration from Digg in 2010. The problem with equating that to Reddit today, which many seem to have forgotten, is Reddit itself was only a year younger than Digg, and as such had been around for years as a relatively mature site with a large enough userbase to stress test its architecture.

The situation is completely different with all of the various aspiring Reddit alternatives, which whether centralized like Voat, or decentralized like Lemmy, or somewhere inbetween like the various sub-specific offsites (Patriots, Hexbear, etc.), which are ridiculously amateurish and flimsy on both an organizational and technological level.

>>10337
Similarly to Mastodon vs. Pleroma, isn't there an uncastrated fork of Lemmy?
Replies: >>10340
>>10339
I think there was "Lenny", but it seems to be dead... https://github.com/innereq/lenny
Replies: >>10346
jfinger.webm
[Hide] (2.1MB, 931x576, 00:08)
>>10336
How profitable is it if I host a clone right now with ads?
>>10337
>Lemmy has filters for "bad" words ('nigger' & variations, etc) in the code itself.
I thought this was funny so I had a look.

The hardcoded filters are actually part of a unit test.
https://github.com/LemmyNet/lemmy/blob/main/crates/utils/src/utils/slurs.rs#L74

The production code seems to read a regular expression from config somewhere (slur_filter_regex). So no it's not hardcoded by the devs. What the devs consider "slurs" in their tests is pretty much what you'd expect though.
Replies: >>10346
>>10340
The README says it's in maintenance mode but it's better to fork it.
>>10345
Yeah, I'd rather not go on that slippery slope.
>>10296
Honestly I don't care whether reddit shits itself as long as it keeps RSS feeds. The only reason I use them is to keep track of specific niche search feeds. 
Any information about what they're going to do with b the rss feeds?
https://archive.is/afXQH
>sold his soul to a megacorpo
>complained when said megacorpo destroyed his passion project
Anyway, seems like Facebook has really hit the wall on their "growth" and thinks embracing the Fediverse would bring in the much needed growth their shareholders are demanding.
Replies: >>10587
>>10582
>the empire
I can smell the soy already. Do they really think "rebel" dramas produced by the same group as "the empire" is inspiring?
Tw*tter has made its website login only to view and has also changed all of their routes, breaking frontends like Nitter
Replies: >>10593 >>10599
>>10592
lmao
>we'll solve our financial problems by creating blockades to entry and driving away ad revenue generating lurkers
Musk really is le reddit man isn't he?
Replies: >>10596
>>10593
He appointed a literal World Economic Forum executive as the new CEO, yet alt-lite figureheads will suck his cock. His profile picture on Tw*tter is literally him as Satan. GloboHomo :tm: is just fucking with people at this point and they are eating it up.
>>10592
They had already done it with "adult" profiles requiring an account. 
I'm not sure why nitter didn't enable frontends to have accounts back then. Hopefully they'll figure something out instead of waiting for this "temporary" measure to end.
Replies: >>10600
memoryhole.jpeg
[Hide] (31.4KB, 474x347)
>>10599
Word on the Matrix is, spoofing the Android client like Piped does for Youtube will be the chosen approach.

TBH I don't think it's that much of a loss if this "temporary" measure isn't reversed, since there are no automatic comprehensive archives for Twatter aside from very incomplete scraper archives like Wayback, which makes it too easy for coverups to succeed.

I'm more concerned about the fact Pushshift has been restricted to trannitors after its resurrection, so public frontends like Unddit & Reveddit are still KIA, as they previously made bypassing censorship reliably possible, and censored Reddit is fucking unuseable.
example1.mp4
[Hide] (1.5MB, 1280x720, 00:20)
example2.mp4
[Hide] (2.2MB, 1280x720, 00:29)
"Fast machines, slow machines" by Julio Merino
https://jmmv.dev/2023/06/fast-machines-slow-machines.html
(Archive: https://web.archive.org/web/20230630020748/https://jmmv.dev/2023/06/fast-machines-slow-machines.html)
Replies: >>10630
Are_you_ready?.webm
[Hide] (4.1MB, 960x540, 02:15)
>>3863
>immutable strings
>inefficient parallelism paradigm (lmao they seriously expect you to copy data across threads over a form of IPC instead of passing references in shared data structures) coupled with a garbage collector and unnecessary allocations from immutable strings (mapping memory into the process stops all threads to update mappings) means the language has a limit to parallelism baked into it
>no shared libraries
>completely unpackageable
>locked into Google's ecosystem
It's not even a serious language.
serial_experiments_lain_stinger.jpg
[Hide] (24.4KB, 476x345)
>>10601
The comparison is rather facile, for reasons the author outlines at length. But I think a better complaint is that is that whereas hardware was too slow to be responsive at desirable tasks back then, that hasn't been true since sometime in the late '90s, and there is no excuse for the UI of software to ever "feel" slow on any modern computer.

After all, running NT on an actually typical period machine was so slow you could see windows repaint a line at a time. But once faster PCs started getting cheap, the speed that could be reached with those same older OSs was absolutely blistering.

In particular, I LOL'd at this from the comments:
<Great Post, reminds me of 1998 when we all took a look at BeOS (now HaikuOS) for the first time running on Mac hardware and playing 5 videos at the same time, even when moving the window! The Mac could only play one and moving the window only moved an outline, not the actual window.
As svelte as Windows 3.11, System 7, or Gnome 1 look in retrospect on modern hardware, there was still an enormous amount of bloat and broken design that could've been sliced away with any kind of disciplined engineering back then.

The fact that never ended up happening, even when the remit for essentially new platforms like HTML5, iOS, & Android to be built from the ground up was issued, is really why things are so laggy.
Replies: >>10643
>>10630
Even on Unix we have piss slow terminals that operate at a megabyte per second or even less for the worse terminals while refterm goes at gigabytes per second. 

X11, too, is a great hive of inefficiency, and GUI frameworks like QT or GTK can be inferior to their corporate counterparts.
>>10643
>X11, too, is a great hive of inefficiency
that tends to happens when 40 year old software is continuously updated for the modern age. and yet it's still better than wayland.
>GUI frameworks like QT or GTK can be inferior to their corporate counterparts.
because a group of autists working on something piecemeal will never compare to an army of pajeets being whipped and enslaved to make something work.
Replies: >>10652
>>10647
>and yet it's still better than wayland
Reminder X was an absolute raging dumpsterfire for the first 20 of those years, barely whipped into shape with the cleanup from XFree86 to X.Org, which thereafter ground to a halt under the weight of its accumulated cruft. This bodes poorly for Wayland, being a mere 15 years old.

In comparison, Apple (Quartz) & M$ (DWM) both wrote equivalents of what Wayland wants to be in under 5 years, pretty much from scratch.
>>10643
>my terminal goes at gigabytes per second
What does that even mean?
Replies: >>10679 >>10681
scr.png
[Hide] (5.2KB, 640x480)
>>10653
That sounds like it would be a bit pointless. You just need something that's not dog slow with noticeable latency. For me the tty still works gud. I don't care about Xorg or Wayland (and XFree86 already sucked on my 486 in the 90's, so I used tty back then too).
Replies: >>10681 >>10687
Linux_CoC.png
[Hide] (830.4KB, 1553x2059)
>>6489
The platform isn't crippled. I use a 32-bit ARM every day, can play games/emulators, watch video, even run Xorg (but I don't like it). The problem is rustniggers have made a bloated shit on purpose just like pothead made systemd bloated shit on purpose. They are subversive cunts whose agenda is making things bad, because they work for the same people as Google, Intel, etc.
Replies: >>10681
carry_on.png
[Hide] (62.9KB, 561x1080)
>>10643
A surprising blackpill of that nature I got was learning one of the biggest impediments to porting modern roguelikes to retro platforms, is that the ncurses library they use all by itself is too bloated to run acceptably or even fit in their address space.

>>10653
https://piped.tokhmi.xyz/watch?v=hxM8QmyZXtg
tl;dw:
<terminal emulators in general have always been unoptimized horseshit, but the default terminal on windoze has always been among the slowest
<m$ recently decided to hype up a new improved gpu-accelerated terminal as part of their win10/linux subsystem push
<except it's still terrible
<minor eceleb who's a competent coder goes on m$'s bugtracker to complain, gets told by the m$ pajeets who wrote it that fixing the problems he pointed out would be doctoral level scientific research
<eceleb shits out a hack in a weekend that's thousands of times faster than any existing terminal
<becomes a meme among tech community, m$ is clowned on hard
See also: 
https://martin.ankerl.com/2007/09/01/comprehensive-linux-terminal-performance-comparison/
https://danluu.com/term-latency/

>>10679
The issue isn't that any single little thing, like terminal emulators, or X, are too big and slow. The issue is that once you get to the point of a complete system capable of doing useful work, the combined bloat of those and every other subcomponent, exacerbated by the overall kludgy way in which those are integrated with each other, produces a system that is only barely fast enough to function.

>>10680
>even run Xorg
Without HW acceleration on most SoCs, much like the lack of BT/802.11/USB/etc. drivers on many of them. It's crippled, but at least it can selfhost & compile.
>The problem is rustniggers have made a bloated shit on purpose
Rust can be configured to for development and compilation within the same limitations as C, the actual problem is all the defaults are insanely bloated (well, that and habitual reliance on its own package manager with de-facto one single repo, but that's a cultural braincancer many languages such as JS, Python, and Go have now). The same is true of much modern tooling, for instance the Boost frameworks in C++ land.
scr.png
[Hide] (6.5KB, 640x480)
>>10681
My board does have accelerated Xorg driver (fbturbo), and also wifi, USB, etc. I can build kernels and whatever else I want on here. Just probably not the subversion they call Rust, and whatever depends on it. If newer Linux kernel needs Rust, that means I won't be able to build it probably. But then again at that point I'm probably migrating to NetBSD or OpenBSD, because it means Linux is finished.
Replies: >>10699
>>10679
>>10681
>my terminal goes at gigabytes per second
No literally what does this mean? What bytes are being transferred from where to where at a rate of gigabytes per second? It sounds like somebody doesn't have a clue what they are talking about.

>habitual reliance on its own package manager with de-facto one single repo, but that's a cultural braincancer
Rust has no ABI. You can't just build a library and then link it to your application. They have to (re)compile all dependencies with the target or the linker won't have a clue how to resolve any of the symbols. That's why the cancer known as cargo is so central to rust's build process.
Replies: >>10689
>>10687
>What bytes are being transferred from where to where at a rate of gigabytes per second?
From stdout to the terminal, duh.
>That's why the cancer known as cargo is so central to rust's build process.
Nope. C++ also doesn't support dynamic linking because its ABI isn't stable either, yet it isn't infected with centralized repo package manager cancer.
Replies: >>10690 >>10697
>>10689
>there is no such thing as C++ shared libraries
What the fuck are you talking about. There is no ABI in the spec maybe but the compilers provide their own ABI in practice. The way rust is designed it literally can't. That's the difference.

>From stdout to the terminal
Lol ok. Is this a relevant metric for video games or something.
Replies: >>10691
>>10690
>the compilers provide their own ABI in practice
"In practice" the "ABI" used for such dynamic linking is just the C ABI, with C++ features such as templating stripped. Incidentally, Rust does pretty much the same thing.
Replies: >>10693
>>10691
>"In practice" the "ABI" used for such dynamic linking is just the C ABI, with C++ features such as templating stripped.
Templating acts on the source code level so obviously that's not part of any binary interface, just like macros. You are wrong because C++ specific features like virtual methods and exceptions do work across shared objects without recompiling. It's not just "the C ABI".

>Rust does pretty much the same thing.
I don't know rust that well it sounds like you don't really know either language. Last time I asked why I have to put up with cargo autism the answer was because you can't even trust the exact same rust compiler to output code that is binary compatible with a build you did 30 seconds ago.
Replies: >>10702
>>10689
>From stdout to the terminal, duh.
This. That's why that guy who writes C++ games for the terminal gets >4'000fps on his stuff.
Replies: >>10703
>>10686
>But then again at that point I'm probably migrating to NetBSD or OpenBSD, because it means Linux is finished.
You have a serious point there IMO. Dunno what kind of Jew temptress loaded Torvalds up with drugs, but it was clearly an insane move for the platform's respectability.
>>10681
>gpu-accelerated terminal 
Anything like Kitty, Anon?
https://sw.kovidgoyal.net/kitty/
>>10693
>obviously that's not part of any binary interface, just like macros.
Swift achieved something similar in recent versions with its generics, though there are performance penalties when dynamically linked. A faster solution that's about as powerful is Ada's separately compiled packages. 
>do work across shared objects without recompiling
Invariably via nonstandard interfaces outside the ABI, rather than e.g. something such as the abomination that is Itanium.
>because you can't even trust the exact same rust compiler to output code that is binary compatible with a build you did 30 seconds ago
Even ignoring the obvious hyperbole, if that were remotely true it couldn't even complete a single compile of a large project. Rust has an ABI, but it is not stable across versions, and has no versioning mechanism. Much like C++, Rust can dynamically link using the C ABI, but with a restricted featureset.
Replies: >>10703
>>10697
>muh video games
I apologize I'm not 12 I write code that actually matters.

>>10702
C++ templates are just the compiler copy pasting the code and plugging in the actual types the caller wants. It can only operate on the source code level.

>Invariably via nonstandard interfaces outside the ABI
That is the ABI my dude. It is not standardized across implementations but it exists.

>Much like C++, Rust can dynamically link using the C ABI
Just keep repeating it and maybe it will start being true.
LXD moves into Canonical
>Canonical, the creator and main contributor of the LXD project has decided that after over 8 years as part of the Linux Containers community, the project would now be better served directly under Canonical’s own set of projects. 
>https://lwn.net/Articles/937369/
Firefox 115 can silently remotely disable my extension on any site
>https://lapcatsoftware.com/articles/2023/7/1.html

The WTF is Pozilla doing?
Replies: >>10773
>>10681
>https://martin.ankerl.com/2007/09/01/comprehensive-linux-terminal-performance-comparison/
I just tried his benchmark and got 3ms on st 0.9 and 50ms on OpenBSD 7.3's xterm.
Replies: >>10748
>>10747
Also, one thing I should add is that I noticed xterm's slowness in neomutt: I could see ncurses draw the screen. st is fast enough that I don't notice it.

This is on a core i7 4770 with 1866mhz CAS9 memory and OpenBSD.
>>10746
>The WTF is Pozilla doing?
A man in a black suit and sunglasses turned up at Mozilla HQ with a bag full of money. I like the theory about disabling ad blockers on youtube. I can't see what else this is good for.
https://marc.info/?l=openbsd-cvs&m=168856997929968

Seems softdep, a neat idea, is now a piece of history, as OpenBSD was the last operating system that was still attempting it.
Replies: >>10879
pout.png
[Hide] (87.1KB, 240x239)
newpipe.net removed from Google search results due to DMCA take down request
https://archive.ph/gWGyS
>You might have already noticed this: Searching “NewPipe” via Google will yield plenty information about the project, but a link to the official website is missing. This is because Google submitted to a DMCA takedown notice from a French record label, “Because Music”. The notice demands removing our homepage newpipe.net from their search listings along with a set of other domains completely unrelated to our project. The DMCA takedown notice was published in the Lumen database by Google themselves.
>While worse things could have happened as the result of such a takedown request, Google’s unlisting of our homepage creates a variety of problems. Given the fact that Google no longer counts visits to our site, it will lose relevance. As a result, websites for fake clones of NewPipe that mimic our homepage will tend to rank higher in the results. This could ultimately cause users to fall for such scams.
>The team is currently discussing what to do about the situation. We are considering taking legal action.
Replies: >>10824
>>10823
It's afraid.
The shady world of Brave selling copyrighted data for AI training
>https://stackdiary.com/brave-selling-copyrighted-data-for-ai-training/

Cuck browser!
Install Firefox with arkenfox config (you can apply it via about:config for example) or ungoogled-chromium or just regular chromium 

>>10792
>softdep
What it was used for?
>>10879
just use librewolf
Replies: >>10882
>>10879
>>10881
Seconding librewolf
wha2.png
[Hide] (362.4KB, 700x700)
>>10879
>doesn't give a fuck about ((( copyright ))) and even illegally profits from it
>cuck browser
Replies: >>10908
>>10879
>What it was used for?
A filesystem without journaling or "soft dependencies" must operate synchronously to avoid corruption, this is slow. Journaling allows the filesystem to function asynchronously which improves performance, and it also prevents having to check the entire filesystem on power loss (you only have to check the journal). However, journaling wastes disk space and has huge performance overhead, between 10-30% depending on various factors.

Soft dependencies, on the other hand, is (was) the idea that by carefully ordering metadata writes to the disk, one can keep the filesystem consistent at all times without needing synchronous operation, speeding up the filesystem massively without journaling's overhead, but still requiring a full filesystem check on power loss.

The problem with softdep is that it's extremely complicated, and many OSes tried it at some point and eventually all gave up. OpenBSD was the last one to give up. Also, keep in mind that even with softdep, OpenBSD's disk access is still much slower than e.g. Linux, it's a slow OS in general.
Replies: >>10888
>>10886
Seems weird that openbsd would be the last to yeet a complicated bug ridden performance hack.
Replies: >>10889
>>10888
They usually try to do things the right way, softdep seemed the right way.

Also, for some numbers, Linux with the BFQ disk scheduler can get around 300MiB/s sequential read speed off my hard disk. Linux has multiple disk schedulers, often there is one that is the best for a specific kind of device (not that Linux distros have sane defaults for this). Linux can take advantage of a drive's geometry for performance. 

OpenBSD, on the other hand, has a very simple disk scheduler, and only a single one that is used for all storage types, and to top it off, the kernel only supports 512 byte block sizes, which is inefficient when you have a disk with e.g. 4KiB blocks or other block sizes. It can only get around ~95MiB/s sequential off my disk, and it can't handle random writes nearly as well as Linux can.

Additionally, even if you install a SSD which is where a very basic disk scheduler is the right way (and Linux has deadline, noop, kyber, and more for this), OpenBSD doesn't support TRIM, so after enough use, every write operation to a SSD is preceded by a delete operation which decreases performance and is what TRIM addresses.
>>10883
the way i understood it, Brave Search leeches (plagiarizes) data from your sites and doesn't link back to your site/article and they even make profit off your (probably freely available) content. also, there is nothing wrong with copyright per se (as opposed to software patents or medical/pharmaceutical patents), unless some kike starts copyright trolling and trying to make money by suing people.
Replies: >>10922
>>10908
Still, that's the opposite of "cucked" on Brave's side (the "cucks" are people hosting/making websites), so why did xhe write "Cuck browser!" ?
541a527f06d77490812e2e6b28fd2deab9d9ba6bc4d0213b4abed1e2b56d9bc9.png
[Hide] (462.7KB, 479x715)
Google proposes treacherous computing DRM for web pages
>"Users often depend on websites trusting the client environment they run in. This trust may assume that the client environment is honest about certain aspects of itself, keeps user data and intellectual property secure, and is transparent about whether or not a human is using it."
<They need to do it to protect IP => You can't use inspect element anymore? Are you even allowed to copy-paste in the future?? Do you need to pay them to be allowed to view a website???
<They need to verify that it's really you who is accessing the website!
https://github.com/RupertBenWiser/Web-Environment-Integrity/blob/main/explainer.md

I think it's time to start looking into Palememe and i2p? Or perhaps make Gopher great again? At any rate, I think posting your response in the Github issues section is also important (pls do it if you have Github account!)

Stallman was right again! 
>https://www.gnu.org/philosophy/can-you-trust.html
Replies: >>11026 >>11029
cyber.jpg
[Hide] (80.9KB, 768x768)
>>11025
It sounds like some Web 3.0 shit, with the digital IDs and crypto crap. So in other words, a whole lot of overcomplicated bullshit.
Terry Davis was going in the other direction: simplify as much as possible.  He was right. Stallman doesn't care about this, he doesn't understand anything but license, license, license. He doesn't see the big picture. He doesn't care if GNU/Linux/Systemd/Rust is a monster so long as the license is kosher.
Palememe and i2p are also overcomplicated. Gopher is fine for what it was designed for. Usenet is better for discussions than any webshit.
Replies: >>11027
human_love_story.jpg
[Hide] (231.8KB, 700x704)
>>11026
>Web 3.0 shit, with the digital IDs and crypto crap
Would actually be a major improvement, if implemented properly. A trusted, revocable chain of attestation to verify that someone is human, is part of a certain group, is using certain software unaltered, etc.

In fact
>Usenet
Was based around an implicit primitive analog of this, with servers choosing to honor or ignore certain headers from other servers, based on servers propagated to earlier, etc., paralleled by the way users built and shared killfiles, and PGP signatures many used with eMail too.

Of course, the Google proposal above is clearly nothing of the sort, a useless abomination extending little further than a grab bag of MPAA's DRM wishlist + all the crap the 5 Eyes were pushing with Clipper in the '90s.
Replies: >>11030
>>11025
>https://github.com/RupertBenWiser/Web-Environment-Integrity/blob/main/explainer.md
This is just an API proposal for doing remote attestation. It's basically a rootkit running on your device, (possibly running in SGX/TEE so the user can't mess with it). And the rootkit authenticates your identity to the website.

The solution is simple, don't install the rootkit. All websites that don't buy into this crap will still work. If the big corporate sites want to wall off their content then there are a million ways they can do it besides this. Not only can you not stop them but you shouldn't give a fuck anyway. Are you really that addicted to tiktok.
Replies: >>11042
Minuet.gif
[Hide] (79.4KB, 1920x1440)
>>11027
The Usenet killfile was just a basic regex filter, nothing at all like they're proposing. Plus the messages were all plain text with headers. That's why it actually worked ok with 1980's hardware.
Same with gopher, any old computer can manage it just fine.
Anyway it's like Terry Davis said, idiots wants to make it more complicated. And there's a whole lot more idiots in computer today than there were back in the 80's and 90's, when things were more comfy.
Replies: >>11042
God, you fags are a circlejerk. It's no wonder technology is moving towards Applefied shitskin-proof nonsense; because all its would-be protestors are too busy measuring e-peen in a corner of the room to do anything of substance.
cats.png
[Hide] (587KB, 1090x984)
>>11031
I am doing something of substance. I'm moving away from dependence on technology.
Replies: >>11035 >>11041
>>11031
>It's no wonder technology is moving towards Applefied shitskin-proof nonsense
It's 'moving' that way because that's what the powers that be want, so that's all they are going to create and promote. The only meaningful "protest" you can do is as
>>11032
Says. Stay far away from it and engineer alternatives.
>>11031
>>11032
The solution isn't moving away, the solution is making your own software that is usable, fast, and minimal. In a sea of bloated proprietary garbage you can be the exception that draws users in.
>>11029
>All websites that don't buy into this crap will still work
The same could be said for "all websites that require no or minimal CSS+JS will still work in old browsers". As long as you must participate in civilization, you must either tolerate something compatible with their shitware, or persuade others to do things your way.

>>11030
PGP & SSL, for a couple examples, were about the same level of sophistication as modern crypto. There is nothing about, e.g., PoS blockchain, that couldn't be implemented on '80s microcontrollers.

Also, the ABSOLUTE STATE of modern cyberspace is the direct result of featureset deficiencies in those old standards, leaving a vacuum readily filled opaque internal protocols executed atop a stack of misused JS.

What we need are new crossplatform protocols at least as open, public, standardized, decentralized, and cleanly designed as those old protocols, but for all the applications that didn't exist then.
Replies: >>11050
desk.jpg
[Hide] (129KB, 690x924)
>>11042
It comes down to scaling. PGP and SSL worked on my 33 MHz 486 DX, but they weren't exactly fast. But that didn't matter much, because most websites weren't using SSL, and it wasn't often that I needed to encrypt an email. Actually I never needed to for my own purposes, but I did set it up for some other people who wanted to do some basic ecommerce. In any case, it was slow and that was with smaller keys than are used today, and it was on a relatively "fast" computer at the time (one that could run Doom quite well).
daytrader.jpg
[Hide] (70.2KB, 814x417)
>>11050
>not replacing all dat dead tree with moar monitors
Replies: >>11054 >>11057
>>11050
>sovl
>sovlless
Replies: >>11053
soul-vs-soulless.jpg
[Hide] (57.3KB, 690x924)
>>11050
>>11052
Replies: >>11074
tintin.jpg
[Hide] (64.7KB, 537x441)
>>11051
Cause I don't want to live in The Matrix. I like me old books and cheery things.
Replies: >>11055
flexible_e-ink.jpg
[Hide] (78.1KB, 983x731)
>>11054
Perhaps the future is some silly Harry Potter-esque convergence of hi-tech function with low-tech form fr tho discrete eInk PC monitors would be very nice
Replies: >>11056
cyberpunkworld.webm
(3.9MB)
>>11055
It'll be much more grim than that, in practice.
>>11051
i love day trading setups.
>>11053
saved
strlcpy and strlcat added to glibc
>https://zine.dev/2023/07/strlcpy-and-strlcat-added-to-glibc/
>https://www.austingroupbugs.net/view.php?id=986

GNOME is Rethinking Window Management
>https://blogs.gnome.org/tbernard/2023/07/26/rethinking-window-management/
<what are tiling WMs?
<what are workspaces and virtual desktops?
Replies: >>11080 >>11082
>>11079
>strlcpy and strlcat added to glibc
Nice. Took what? 50+ years?
Replies: >>11081 >>11275
>>11080
>le openbsd security meme
<Let's deal with a concrete example: "strlcpy". This API originating from OpenBSD would be on most people's list of a "safe" strcpy API. It doesn't write more than the destination length provided and nul-terminates the result. There's another API that some might call "safe" as well: strncpy. It has the same behavior as strlcpy when it comes to not copying more than the destination length, but if the source string is longer than the destination buffer, it doesn't nul-terminate. So it's more "unsafe" than strlcpy in that regard. But it has an important additional feature: it zero-pads to the provided length of the destination buffer. In some instances, this isn't needed, but in attack surface working with structured data containing fixed-length strings (the Linux kernel is one large example), it's actually very important. Failure to zero-pad buffers that are copied to userland is a recipe for an information leak. There's another problem with strlcpy in that it effectively performs an strlen() on the source string, regardless of whether it's attacker provided and 500MB large. So it would be unheard of for someone to just make a blanket replacement of uses of strncpy in some codebase and switch them all to strlcpy, right?
<We've provided this example elsewhere before, but it bears repeating here. The exact scenario played out in multiple stages starting in 2013...
https://grsecurity.net/huawei_and_security_analysis
Replies: >>11082
>>11079
Oh shit, strlcpy() is going to be POSIX, finally.

>>11081
Yes, if you have fixed-width fields and you're setting up ROM or sending data from kernelspace to userspace, go ahead and use strncpy(), that is the appropriate API.

If you're going to kludge strncpy() to do something it's not supposed to do or call strlen() on the source to know if you can strcpy() it, use strlcpy() instead.

Some people are just braindead retards and these words will fly over their heads and they will see strlcpy() as a sort of magic dust that fixes everything, that's pretty much what grsecurity is arguing, but such people shouldn't be programming in the first place, and that's not strlcpy()'s fault.
Replies: >>11087
>>11082
>Some people are just braindead retards and these words will fly over their heads and they will see strlcpy() as a sort of magic dust that fixes everything
That is exactly the mentality openbsd encourages.
>>11080
i remember 20 years ago seeing the microsoft secure development lifecycle which just meant adding string length parameters to functions and thinking anyone who thinks that makes a difference is a dildo fucking moron.
Bram Moolenaar (author of Vim) dieded. RIP
>https://groups.google.com/g/vim_announce/c/tWahca9zkt4

Zenbleed
>"This bug is specific to the AMD Zen2 microarchitecture."
>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20593
>https://www.tomshardware.com/news/zenbleed-bug-allows-data-theft-from-amds-zen-2-processors-patches-released

Canonical's LXD got forked and (re)added to Linux Containers project
>https://linuxcontainers.org/incus/
>https://www.theregister.com/2023/08/04/incus_lxd_fork/
>>11282
>Bram Moolenaar (author of Vim) dieded. RIP
I will always remember xhem as a nigger lover who puts messages in xheir software begging the users to give their money to niggers in africa
Replies: >>11285
>>11284
And for writing terrible code and running the project equally terribly.
http://geoff.greer.fm/vim/
5495c8a4b87fd30467c0c01a1f95662ad47482b707d50a135a9a6a2c09a462e4.gif
[Hide] (90.7KB, 185x140)
>>11282
>Ryzen 2XXX series unaffected
can't touch me
>>11282
>Bram Moolenaar (author of Vim) dieded. RIP
F
DOWNFALL
Looks like the Intel version of Zenbleed. 
https://www.phoronix.com/review/downfall
Interestingly, it requires SMT (Hyperthreading) to be on, and that means yet another hardware vulnerability which does not affect OpenBSD because it disables SMT.
>>11282
>>11288
>More vulnerabilities on x86_64 processors
I'm seriously considering switching to a different architecture.
>>11312
using page tables is also a vulnerability so only use systems that are >20 years old
>>11312
As soon as RISC-V stops being vaporware.
>>11312
ARM has some of those vulns too. Definitely less than x64 though.

I have a hunch hardware development is much less sophisticated than software because trying out things in software takes seconds, while in hardware it takes months. Additionally, the open culture of software provides good examples to learn from, while there is only a nascent equivalent in hardware: I can go learn how the best software by almost any metric and for almost any class of program works and understand it as well as code I wrote myself from reading the source code and books the authors wrote, but nobody can learn how to make a processor as performant as x64 or as power efficient as ARM. 

All of this should mean that incompetence in the hardware sector is way more prevalent than it is in software (and we all know how bad we have it in software) and that even the competent hardware engineers just don't have techniques and tools as sophisticated as software engineers, even though hardware and software are the exact same thing.
>>11312
Also, most likely, the only reason those vulns aren't found on e.g. Alpha, PA-RISC, etc, is lack of eyes.
For instance, speculative execution vulnerabilities only started showing up about a decade after Alpha was abandoned, and Alpha processors had speculative execution. Did anyone bother to check?
__gotoh_hitori_and_thomas_shelby_bocchi_the_rock_and_1_more_drawn_by_xyanaid__0fa54a4f6587b540c9a29f021cb8b0a6.jpg
[Hide] (557.3KB, 2946x2268)
>>11312
AMD INCEPTION
https://www.phoronix.com/news/AMD-INCEPTION
>AMD has kicked off a busy Patch Tuesday by disclosing INCEPTION, a new speculative side channel attack affecting Zen 3 and Zen 4 processors that require new microcode while prior Zen CPUs require a kernel-based solution.
Yet another AMD vuln, this time for Zen 1 only:
https://www.phoronix.com/news/AMD-Zen1-Divide-By-Zero-Bug
>the Linux kernel saw a new bug fix merged today for a different issue... It turns out original AMD Zen 1 processors could end up leaking data in certain conditions after a divide by zero occurs.
Replies: >>11326
>>11325
>A kernel message added by this patch also notes that disabling Symmetric Multi-Threading (SMT) is the way to achieve "full" protection against this divide by zero issue.
Doesn't affect OpenBSD... again.
Replies: >>11327 >>11329
>>11288
>>11326
<ISSUE: Enhancements to remote security since previous version completely removes network stack
<CLOSED: NOTABUG
>>11326
"full" you fucking loser anything running on the same core will still get whatever garbage data is relevant to the previous division which is so trivial and useless that no one should give a shit
Replies: >>11330
>>11329
>"full" you fucking loser
Yes, it looks to me like the fix put in for linux could still be bypassed by SMT. That's what the warning is about. That doesn't mean disabling SMT magically fixes the bug.

>>11288
>Interestingly, it requires SMT (Hyperthreading) to be on
Where are you getting that from?
<GDS is highly practical. It took me 2 weeks to develop an end-to-end attack against encryption keys. It only requires the attacker and victim to share the same physical processor core

>opENBsd OPenbsd oPENbsd
Shut the fuck up.
https://www.phoronix.com/news/Chrome-JPEG-XL-Seconds
Good news:
Google reconsiders jpeg xl support in Chrome.
Replies: >>11340 >>11342
>>11339
How does this work? Chromium is open source, does google gate keep who gets write access to repositories?
Replies: >>11341 >>11371
>>11340
It's owned by google, they control it
>>11339
I realize this battle was completely lost when the pointless WebM vs. MPEG slapfight happened, but honestly it's ridiculous that image format support is even up to the browser at all, rather than dynamically linked to the OS.

It's akin to integrating printer drivers into your browser, making it impossible to print unless HP makes a deal with Google and Chrome gets patched for that inkjet, dumb shit from out of the 8-bit PC booter app days before OSs existed.
>>11342
>It's akin to integrating printer drivers into your browser, making it impossible to print unless HP makes a deal with Google and Chrome gets patched for that inkjet, dumb shit from out of the 8-bit PC booter app days before OSs existed.
Bingo. And that's exactly what the kikes at Jewgle intended it to be in the first place.
>tl;dr
These bloodsuckers won't be satisfied (or stop) with less than total control of everything in your life. George Orwell? Pfft. An optimist.
>>11342
The web browser becoming the "everything app" is the worst thing to happen to the internet.
oki_microline.jpg
[Hide] (346.5KB, 1600x1200)
>>11342
How far back are you talking? CP/M was already in common use in the 70's, they even had an entire architecture built around it (S100 bus) that made systems fairly compatible and expandable.
But that was a little before my time. I got my first computer in the 80's, and since it had a Z80 it also came with CP/M. Printing over parallel port to a dot matrix just werked, no special drivers were needed. My parents even had an electric typewriter connected to their computer (an older Z80 with CP/M) over the parallel port, and this let them print documents from WordStar with much nicer output than with the 9-pin dot matrix.
If I turne my computer without a CP/M boot disk in the drive, it would simply boot to the BASIC and minimal OS that was in ROM. That too would print without issues to any parallel port printer. Most 8-bit BASIC dialects even have a variant of LIST and PRINT that sends output to the printer instead of the screen.
It wasn't magic, just a simple and sensible design. Nowadays the computers are monstrosities and the OS and software that runs on them are even worse. Also I don't even own a printer now, because they're poorly built (actually designed to fail, so you go buy another), and the ink cartriges are a big scam.
Replies: >>11351
>>11350
>CP/M
I was mostly thinking of cheaper systems like Atari or Apple, where software usually took over the entire computer, and even running something from a DOS or ROM BASIC would cause a reboot. But even something upmarket like a CP/M system didn't really provide much more than storage and memory abstractions to ease portability, with anything resembling the TSRs or accessory drivers that characterized the simplest single-tasking proper OSs like MS-DOS largely still confined to software.
>Printing over parallel port to a dot matrix just werked, no special drivers were needed.
If you had the exact right printer, matching the firmware's hardcoded control sequences for something very basic like linemode output. Otherwise you had to reinstall your entire word processor, maybe even your OS as well, to configure it to a different printer, even keeping multiple installs if you wanted to use different printers. And if your printer wasn't supported, you had to patch your word processor. For this reason, word processors like WordStar came to include drivers for hundreds of printers by the mid-'80s.
Replies: >>11359
ladconf.png
[Hide] (4.8KB, 640x480)
>>11351
Configuring a different terminal or printer under CP/M was easy. All you needed was the documentation for your hardware, and they all came with nice hardcopy manuals back then.
This is not like a "driver" in the modern sense of the word, where you have to actually program a kernel module and then rebuild your OS. No, you just configured some very simple settings. Even better, if you had a common hardware, then you didn't even have to do that.
Here is LADCONF.COM, from the CP/M game Ladder. If you have some obscure terminal, you just choose the last option and then it asks you for the ASCII codes that your terminal uses. Then you can save these settings so the game uses them next time, and you don't have to configure it again (unless you get a different terminal).
Replies: >>11360
>>11359
>it asks you for the ASCII codes that your terminal uses
That could end up being dozens of hex values for a single device: 
http://jefftranter.blogspot.com/2014/03/wordstar-30-on-briel-altair-8800.html
Granted, it was back in the day when hobbyists routinely copied hundreds of lines of software by hand from printed magazines.
Replies: >>11400
>>11340
Yes.
>>11342
Jpeg XL may still happen. It got into Safari after all and has interest from many other companies..
Replies: >>11376
02c212b18badb62a60a3346a12bf5f00c6bb1b49092444d3d60123aa5a54a533.jpg
[Hide] (33.8KB, 500x376)
>>11371
>Jpeg XL may still happen
Google shitcanned JXL support in Chromium because they refuse to let go of AVIF and WebP for absolutely no meaningful reason other than because they can. It's not going to happen until something makes them reconsider it.
https://bugs.chromium.org/p/chromium/issues/detail?id=1178058#c325
Replies: >>11431
65c3c58c356dd38bb39606b46af62816bf96a5535f9130af7455b654de458a8a.mp4
[Hide] (17.6MB, 1280x720, 01:03)
Devuan Daedalus 5.0 stable release
https://www.devuan.org/os/announce/daedalus-release-announce-2023-08-14
Dear Friends and Software Freedom Lovers,

It is with great pleasure that the Devuan Developers hereby announce the release of Devuan Daedalus 5.0 as the project's newest stable release. This is the result of lots of painstaking work by the team and extensive testing by the wider Devuan community.

<What's new in Daedalus 5.0?
>Based on Debian Bookworm (version 12) with Linux kernel 6.1
>Rootless startx uses libseat1
>Wayland GUI without elogind
Replies: >>11382
>>11380
upgraded now, aside from a minor hiccup with some conflicting odbc packages it's all set. new plasma desktop is a bit weird to get used to but i'll manage. nothing is obscenely broken so that's nice.
>debian users getting excited over "new" three-year-old packages
alice.jpg
[Hide] (137.5KB, 1035x632)
>>11360
Even in that particular case (my dot matrix printer just werked, nothing special was ever needed), typing a few dozen hex codes even today isn't particularly tedious. In fact, I can type much better and faster now.
Oh but now of course printers and other hardware & software don't come with real manuals, so there won't be anyone typing of hex codes. They will instead have to go search for some drivers, which may or may not exist for your OS.
And on the left of pic, it's a thermal printer! The computer is french market version of Tandy MC-10.
>>412 (OP) 
My (John Cowan's) resignation letter as R7RS-large chair
>https://groups.google.com/g/scheme-reports-wg2/c/xGd0_eeKmGI/m/q-xM5fbuAQAJ
WTF is going on with R⁷RS Large?
>http://dpk.io/r7rswtf

Will R7RS-large be ever finished? What do you think? I think R7RS-large  may die for good but idk if it's a good thing or not. Scheme implementations are very fragmented but is it a bad thing? I'm an outsider but I think all Forth implementation seem to be pretty fragmented, too.
Replies: >>11424
>>11423
I was hoping we'd have a situation like C and POSIX where R7RS-small is C and R7RS-large is POSIX. And then someone would write a goddamn book teaching it because books are still stuck on R5RS.

How many of those people in the committee have enough experience programming to do this anyway? I've noticed Scheme implementations are very incompetently designed, is there enough expertise going around in the Scheme community? The C committee has the issue that it's full of non-programmers and C++ programmers, for instance, and that's part of why every newer version of the standard is so bad.
r5rs-Z-G-57.gif
[Hide] (4.2KB, 384x410)
your language is fucking shit like every other mainstream language and pedantically defined too much for what it provides: nothing
the spec is unreadable because a boomer did boomer things and somehow managed to make the pics unreadable gifs. no im not gonna fuck with tex or pdf or whatever the fuck
tl;dr normal people arent autistic enough to blow their mental budget on the autistic rabbit holes you create
>The C committee has the issue that it's full of non-programmers 
it also has the issue that C is a garbage and poorly defined language to begin with. its like scheme but 100x more harder to understand because of all the retarded shit kenny or whoever put in at the get go
>>11376
>add this new experimental C++ code to your computer
yeahh, no. webp and avif were a mistake also
Replies: >>11448
>>11431
JPEG is such utterly obsolete dogshit that it can be NONDESTRUCTIVELY recompressed by ~30%
Replies: >>11454 >>11461
>>4898
do they not understand what "ABSOLUTELY NO WARRANTY" implies in those funny LICENSE.txt files?
>>11448
It's so obsolete, it's still better than WebP at same filesize.
Replies: >>11458
>>11454
No it isn't. Aside from being obsoleted by even newer formats, WebP does have some true flaws, such as mandatory 4:2:0 in lossy mode.
Replies: >>11469
>>11448
You mean it can get even smaller with no loss in quality? That's amazing!
>>11458
WebP is worse with photorealistic content than JPEG at same file size.
Replies: >>11470 >>11612
>>11469
WebP images under a certain quality level / file size feel like screenshots from a video, which is no surprise considering WebP's relationship to the VP8 video codec. I'll stick with JPEG for the foreseeable future.
Replies: >>11612
>>11469
>>11470
The compression pipelines specified in the formats for WebP vs. JPEG, aside from transparent internal efficiency improvements in WebP, are practically identical, with the only major feature producing any visual difference being that the spatial prediction stage in JPEG is restricted to DC only while WebP also has a bunch of extra modes. Because WebP compression is a strict superset of JPEG, if only using DC, valid WebP output would be produced visually identical to JPEG.

For this reason, condemnation of WebP artifacts vs. JPEG is not about what the formats allow, but about how well encoders implemented them. In particular, older versions of libwebp were infamous for trying too hard to preserve film grain and dither.
WebP had a buffer overflow discovered in the last days allowing for remote code execution.
'WEBP BELIEVERS BTFO'
Replies: >>11641 >>11667
>>11640
It was supposed to be bold
843e78e5904adef2c7e392732ce9a1157f0451ff83a8863caf070533ecfcaa41.jpg
[Hide] (45.3KB, 731x540)
MGM struggles to contain fallout from days-long IT outages
https://archive.ph/9B1fP
>MGM Resorts International is struggling to contain the public impact of an apparent cyberattack that has continued to snarl business all week at one of the U.S.'s largest casino operators.
>What's happening: Roughly five days into the incident, slot machines are still out of order, digital room keys are offline and resort guests are slamming the company on social media for its seeming lack of customer support.
>MGM, which operates several high-profile casinos across the country, is also expected to take a financial hit: The company is facing potential revenue losses, litigation and reputational risks, credit rating firm Moody's warned (paywall).
>Meanwhile, MGM has been hush on the details in its public communications throughout the week. The company has yet to confirm what kind of attack it's facing or what customer data, if any, was stolen.
>MGM did not respond to requests for comment.
>Why it matters: The fallout from the apparent cyberattack on MGM provides a rare glimpse into how damaging these incidents can be to businesses and consumers.
>Typically, either the impact of a hack is limited to stolen personal data or the victim organization sweeps the full scope of an attack under the rug.
>The big picture: Casinos and hospitality firms have become a target for cyberattacks in recent years.
>Caesars Entertainment, which operates several major casinos in Las Vegas, confirmed on Thursday that it also faced a cyberattack a few days before the MGM hack began.
>Details: The IT outages are impacting MGM properties across the country — not just in Las Vegas.
>I visited MGM National Harbor outside of Washington, D.C. on Thursday afternoon and found a handful of slot machines on the second floor were still offline, as well as a few ATMs in the casino.
>All of the MGM Rewards kiosks — where members can print rewards cards so they can use their points to play games — were also down, forcing people to cash out their winnings in-person.
>Of note: Throughout the week, confused and frustrated customers have flooded MGM's social media feeds with online reviews and comments trying to figure out if they can get a refund or if computer systems will be up in time for their weekend trips.
>"Terrible customer service for a large customer like myself and my team," one person wrote in a Google review for the Aria Hotel in Las Vegas. "We will be taking our business elsewhere after the cybersecurity attacks."
>Yes, but: The website for BetMGM, the company's online betting site, appears to have been unaffected and remains functional.
>The intrigue: A member of the hacking group Scattered Spider has claimed responsibility for the MGM hack, the Financial Times reports.
>The hackers — who are believed to be young adults possibly based in the U.S. and U.K. — initially were trying to target the slot machines and recruit people to "milk the machines," a member told the FT.
>Bloomberg reported Wednesday that the same group targeted Caesars last week.
>Zoom in: A former MGM employee who left the company this year told Axios that the company restructured roughly 75% of its corporate IT teams in April, resulting in layoffs, and outsourced another IT team in July.
>Caesars said in an SEC filing that its cyberattack started with a social engineering attack targeting an outside IT vendor.
>Between the lines: Public statements about a cybersecurity incident run up against legal obligations and regulatory scrutiny — making it difficult to communicate what's happening with the public.
>Once a company uses the word "data breach" or "data leakage," the clock starts ticking for the organization to comply with state-level data breach notification rules and other compliance, Alex Waintraub, a cyber crisis management expert at CYGNVS, told Axios.
>It takes days, sometimes weeks, to determine the impact of a cyber intrusion, including what data was stolen or accessed.
>"This is going to become a legal battle," Waintraub said. "We do not say [data breach] in writing until forensics confirm that there is data leakage."
I believe they paid about $15 million to get un-ransomwared. Seems like a very low fee for a casino.
Replies: >>11663
5ffe8d003feb533f51589f159351e7ff11858c7d6da97f6b4bf7109e56855371.jpg
[Hide] (59.2KB, 1080x810)
>>11662
>you are the 1000000 visitor click here
>*click*
>oh shit
Replies: >>11664
>>11663
it was a social engineering attack, someone called their help desk, posed as an employee and got their password reset, then they just worked from there
>>11640
Sure, but this sort of thing happens all the time:
https://www.cvedetails.com/google-search-results.php?q=jpeg#gsc.tab=0&gsc.q=jpeg&gsc.sort=date
Replies: >>11673
ClipboardImage.png
[Hide] (87.7KB, 748x412)
>>11667
>on Linux allows attackers to execute arbitrary code via crafted JPEG-XR data.
There's a bunch of different formats with jpeg in the name nigger. Jpeg XR isn't jpeg.
[New Reply]
500 replies | 126 files
Connecting...
Show Post Actions

Actions:

Captcha:

Select the solid/filled icons
- news - rules - faq -
jschan 1.1.1