Hans-Christoph Steiner @eighthave@librem.one
Joined Aug 2019
Hans-Christoph Steiner
boosted
Later this week, Let's Encrypt will stop including the cross-sign from Identrust's Root CA in our API by default. That cross-sign will expire later this year, so this is the first step in preparation for that.
This means devices which haven't gotten an updated root CAs that added Let's Encrypt may get errors. This mostly affects a small number of old Android devices (Version 7.0 and before), as most other operating systems update root CAs by default.
For most people, no action is necessary. To continue supporting old clients, or to control your rollout of this change, your ACME client can be configured to explicitly choose a chain to serve until June at which point we'll stop serving the cross-signed chain.
You can read all the details on our blog post at https://letsencrypt.org/2023/07/10/cross-sign-expiration.html
If you have any questions, happy to answer them over on our Community forum: https://community.letsencrypt.org/t/questions-regarding-shortening-the-lets-encrypt-chain-of-trust/201581
@roptat thanks for your nice visualization of #l18n in apps in #FDroid
https://i18n.lepiller.eu/i18n.html it is interesting to see which languages are the most active. If you're interested in more data sources, there are a lot of public data sources:
https://f-droid.org/docs/All_our_APIs/
For example, you might enjoy looking at the most popular search queries with the included language and country data:
https://fdroid.gitlab.io/metrics/search.f-droid.org/2024-01-29.json
Hans-Christoph Steiner
boosted
A week ago someone around here mentioned the #Android app StreetComplete, an app made to help people add data points that are missing on #OpenStreetMap ("Wikipedia for geographical information").
The app is super smooth and I fell down the rabbit hole hard - there's so much information missing for #Calgary #yyc! You walk around, you pay more attention to urban features, do it for a few days and you somehow end up in the worldwide top 50 this week 😯
Do it! It's fun!
#opensource #FOSS #OSM
Hans-Christoph Steiner
boosted
Think tank funded by Big Tech argues #AI’s climate impact is nothing to worry about - https://www.theregister.com/2024/02/07/ai_climate_impact/ it's the "cryptocurrencies don't use much energy" argument all over again...
Hans-Christoph Steiner
boosted
As part of #ISRG's work towards memory-safe infrastructure for the internet, @cpu has opened a merge request that implements TLS ECH support on the client side:
https://github.com/rustls/rustls/pull/1718
We agree that "the ECH spec is very challenging to implement and required a lot of trial/error" and we are working with #DEfO to help implementers. Please reach out if that is you:
https://defo.ie/#contact
Hans-Christoph Steiner
boosted
Mozilla added scanning of data broker sites to its privacy protecting Mozilla Monitor
Hans-Christoph Steiner
boosted
The White House just announced visa restrictions on those involved in spyware misuse. Are you a family member of someone misusing or facilitating spyware? You can be sanctioned as well! Great step to further delegitimise the highly invasive surveillance industry!
Hans-Christoph Steiner
boosted
The election year focus on 'deep fakes' is a distraction, conveniently ignoring the documented role of surveillance ads--or, the ability to target specific segments to shape opinion. This's a boon to Meta/Google, who've rolled back restrictions on political ads in recent years.
Put another way, a deep fake is neither here nor there unless you have a platform + tools to disseminate it strategically.
Hans-Christoph Steiner
boosted
Do you share F-Droid repos with the NFC feature in our client app?
Background: the support for Android NFC Beam was removed in Android 14, so we probably have to remove this feature in the future. We want to know if anybody is impacted by this.
Hans-Christoph Steiner
boosted
Hello #FOSDEM, this guy, Alberto Marti, announced 3bn euros for this open source European cloud project with an explicit focus on interoperability.That’s more than 2x the funding announced here back in December. Is there a link online for more info?
Did the other 2bn come from private sector investors?
I am not a lawyer. #CRA is #CyberResilienceAct and #PLD is #ProductLiabilityDirective.
After #FOSDEM my current understanding of how #EU #CRA and #PLD affects #FDroid and anyone who contributes to it:
* F-Droid org makes the "product" so it would be liable
* F-Droid is currently entirely non-commercial, handles no money
* Volunteer contributors are very clearly exempt from all this
* Donation funded contributions are also exempt
* Contracted contributors are helping build the regulated product, so the legal entities of the contractors would not be liable for F-Droid's "product"
Hans-Christoph Steiner
boosted
This week in F-Droid (TWIF) was published again.
Our highlight this week:
F-Droid and F-Droid Basic were updated to the stable version 1.19.0. It brings automatic background updates and a new and better workflow for adding repositories. Please note: this version is not yet the suggested version, so you need to enable beta updates, if you don't want to wait any longer.
Also we talk about notable updates oft some apps and the ongoing spring cleaning.
Hans-Christoph Steiner
boosted
EU to delay new green rule in bid to appease protesting farmers - https://www.theguardian.com/environment/2024/jan/31/eu-delays-biodiversity-rules-amid-rising-protests-from-farmers stupid move: you shouldn't give in to blackmail, they will just do it again...
I'm working on a small project on the history of built-in "app stores". My hypothesis is that this idea actually originates from #GNULinux distros like #Debian. That was my personal experience of it. I started using computers in 1981 and have used DOS, Apple ][, C64, OS/2, GEM, Windows, MacOS, NeXTSTEP, MacOSX, Solaris, AIX, IRIX, OpenBSD, FreeBSD, and many distros starting with Slackware. I know the history of Debian, iOS, and Android well. Anyone have any other examples I might have missed?
Hans-Christoph Steiner
boosted
Study finds that once people use cargo bikes, they like their cars much less - https://arstechnica.com/cars/2024/01/study-finds-that-once-people-use-cargo-bikes-they-like-their-cars-much-less/ "Even some one-car households ditched vehicles in favor of cargo bike-sharing." #transport
If people get together and build themselves a really nice neighborhood that is pretty, fun to be in, good people nearby, effective services, etc. is it then inevitable that it gets turned over to mass tourism? Or gets sold out to foreign oligarchs? Both of these outcomes ruin the place. Those are both true for the places where some of my family are from, where I grew up, where I went to university, the city I lived for 20 years before returning to said city where some family live.
#SovereignTechFund provides an alternate model that fits better: fund essential free software from taxes, which companies cannot avoid paying, then everyone gets the benefits without worrying about sustainability. Kudos to Red Hat for making a market-driven approach work as well as it has for decades, but it is clearly not the best solution for funding infrastructural software.
4/
At the same time, RedHat has been a major funder of free software development, with key contributions to GNOME, Linux, GNU and more. Oracle is very unlikely to contribute anything near those levels, yet Oracle is a thread to RHEL. The non-profit RHEL forks might be able to raise real amounts of dev funding, but as much as I like that model, it is far from proven.
/3
Markets are a useful tool but they are not always the best tool for sustainable funding. #RedHat's recent decision to restrict access to source code provides a good example of that. #FreeSoftware via RHEL is the foundation for so many large companies but market-driven companies work to avoid paying for anything extra, even when they clearly benefit from it.
/2
Joined Aug 2019
