Show newer

Last Thursday we demonstrated #ActivityPub to European & national administrations with a live install & demonstration of #peertube and #mastodon by @how for the European Data Protection Supervisor (which aims to join the fediverse soon!). In case you missed it, here is the recording -> From the first install commands to sharing videos, moderating & comments in a little more than half an hour :amazing: 🤩

The 'problem' of course is not using it for everyday transactions but for 'speculation'.

However even here I haven't seen a good argument for:

a.) What can the cryptocurrencies themselves do to encourage spending daily for everyday transactions without massive corporate backers, like Facebook, which have perhaps even less trust than banks.

b.) Why more regular people speculating is bad/should only be confined to Wall St.? In a way this seems like gatekeeping, if unintentional.

Show thread

The Turkish government effectively banning crypto because their national currency is tanking, is imo just another proof that *some* form of an 'alternative' currency is in fact needed.

There's a lot of hate for crypto and while some of it has merit, it seems to not only discard PoW isn't the only algorithm out there, but also that 'blockchain is kind of meaningless as there are many types of databases because they don't all have the same properties.

I don't think tech is the problem here...

"Many of us think that we operate busy web servers; LWN's server, for example, sweats hard when keeping up with the comment stream that accompanies any article mentioning the Rust programming language. "


@MatejLach with HTTP/2, your connection would get dropped when going on or off of the VPN, with HTTP/3 it won't, with this id. Note however that with HTTP/2 (as for 1 and 1.1), this connection loss will make the browser reissue the same requests, including cookies (and possibly other identifying headers), so both sessions can be linked fairly easily by remote server. If using a VPN to hide your ip from a server, you should not go on and off your VPN, as it defeat the whole purpose.

@MatejLach this is the equivalent of a source/destination ip/port 4-tuple when using http/2 (http with connection multiplexing). Assuming browsers treat that in the same way (don't share connection between normal and "private browsing" tabs for instance), it should change pretty much nothing to the current tradeoff. It is not supposed to be a persistent id resisting a browser restart, or any sort of super-cookie

With becoming the default in soon, everyone's talking about the efficiency improvements, however to me the privacy tradeoffs aren't worth the gains i.e. (Wikipedia):

"QUIC includes a connection identifier which uniquely identifies the connection to the server regardless of source. This allows the connection to be re-established simply by sending a packet, which always contains this ID, as the original connection ID will still be valid even if the user's IP address changes."

How to opt your site out of Google's new FLoC user tracking programme with OpenBSD's relayd(8):

(1) add this one-liner to any "http protocol" block(s) in /etc/relayd.conf, and

(2) restart relayd

> match response header set "Permissions-Policy" value "interest-cohort=()"

Afterward you should see this in the HTTP header response:

$ curl -sI | grep Permissions-Policy
Permissions-Policy: interest-cohort=()


PSA: If you're posting a comment on a forum, GitHub, etc., and the service:
∙ lets you edit your comments
∙ notifies others about new comments

then please, please, don't use the editing feature for adding new information or thoughts into your already posted comments.

Use editing to fix typos, or fix formatting, or otherwise make your message nicer *while keeping the content*. If you think of something to add, post another comment instead.

People who rely on email and notifications will thank you.

@mobian wrote an interesting recap of the project after one year, and they forgot to toot about it here!

Hat tip to @linmob for mentioning it in their weekly roundup.

If I do a live online workshop on writing #Python modules using #rustlang, will you join it? It will be around 2 hours long at least. Reply to the thread if you want to join in. Please RT for more reach.

"I've learned something from this about how to be kind to people who have been hurt. In the future, that will help me be kind to people in other situations, which is what I hope to do."

So a question for the people removing their stickers and whatnot, is your goal to actually educate & change people, bring about a more just society etc. or is it just about being able to feel morally superior?

I also expect 0 people who claimed defended Epstein to apologize, but oh well.

Show thread

addresses the free software community

"False accusations -- real or imaginary, against me or against others -- especially anger me. I knew Minsky only distantly, but seeing him unjustly accused made me spring to his defense. I would have done it for anyone. Police brutality makes me angry, but when the cops lie about their victims afterwards, that false accusation is the ultimate outrage for me. I condemn racism and sexism, including their systemic forms [...]."

Show thread

addresses the free software community

"[...] For instance, I defended Professor Minsky on an M.I.T. mailing list after someone leaped to the conclusion that he was just guilty as Jeffrey Epstein. To my surprise, some thought my message defended Epstein. As I had stated previously, Epstein is a serial rapist, and rapists should be punished. I wish for his victims and those harmed by him to receive justice."

"Do you want protocols that look nice or protocols that work nice?''
-- Mike Padlipsky, Internet architect

Show older
Matej Lach's mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!