Show more

@kyle cheers to that - the 'freedom' part is exactly why I've supported @purism with my orders this year, and why every project I've worked on in 2020 is or licensed.

I guess I did release my vim config as "code" but... yeah

It's been long enough now that we are back to the pre-golden era world where people don't understand the risks of vendor lock-in and proprietary protocols. To me this means there's an opportunity for a new golden era, if we can get people to appreciate why the "freedom" part of FOSS is so important.

Show thread

The following era saw priority shift from "freedom" to "open" throughout FOSS. Linux webapp development was primarily done on Macs and that changed how FOSS development happened overall, as devs had to adapt to homebrew libraries instead of curated packages. Dev tools changed to solve the problem of inconsistent library versions between Mac and Linux distros, which ultimately led to docker. I believe the primary reason docker was created was to serve Linux webapp development on OSX.

Show thread

I'd love to see a history of FOSS in its "golden era" (early aughts) to the early teens. There was this great momentum at the time, giant advances in the Linux desktop and server, and a large focus worldwide on open standards (XMPP became, briefly, the standard chat protocol).

This progress stalled. My theory is that it's in large part due to OSX convincing FOSS developers "it's UNIX" and with FOSS devs on Macs, Linux desktop advances slowed down.

More than 2,000 law enforcement agencies across every state now have access to technology that allows them to extract data from confiscated phones.

A new report by @TeamUpturn details the dangerous growth of these tools: upturn.org/reports/2020/mass-e

@aral I'll have to admit that I am not fluent in Javascript. My worries were more triggered by the overall concept of data being stored as executable code that was evaled when reading, and what an attacker could do who could write to that database or bypass sanitization attempts, since they would, in theory, have the full range of JS capabilities at their disposal (arbitrary code exec) instead of the more limited set of standard DB queries (data leak).

@aral I have to admit I'm a bit concerned what my good friend Bobby Tables might do with a database that stores data as JS that gets evaled at run time.

Librem 5 phone + USB keyboard + USB touchpad + Bluetooth speaker + HDMI screen + Firefox + YouTube video

New Episode! Who controls your phone? Doc Searls, @katherined
@kyle and
Petros Koutoupis talk TikTok, censorship, user sovereignty and more. #podcast #newepisode #security #privacy #technology Episode link: reality2cast.com/41

@laura My favorite, as a noscript user, is when a paywall site uses JS to enforce a paywall pop-over but their content loads w/o JS.

#osk-sdl unlocking a LUKS rootfs running PureOS on the #purism #librem5 devkit.

osk-sdl is an initramfs touchscreen keyboard made originally for postmarketOS, for unlocking a LUKS rootfs on touchscreen devices with no physical keyboards.

The long unlocking time is due to the rootfs being encrypted on a big core desktop system (see `man 8 cryptsetup` /--iter-time)

External screen, keyboard and mouse attached to my phone running my favorite IDE - Qt Creator. Looking forward to try this setup on the first post-pandemic game jam :D @purism

It does make me feel good to know that all the articles I wrote for @linuxjournal since 2008 (I just checked my bibliography on kylerank.in/writing.html, I'm a few articles shy of 200) will still be around. I still refer back to them from time to time.

Show thread

This Blacklight tool by The Markup is great. While puri.sm got a clean score, it took us a lot of effort over years to get there. Tracking visitors is the industry default for web tools and I only wish this tool existed years ago. themarkup.org/blacklight/

I bet the client and attorney were coordinating their case over gmail and gdocs and realized Google gave itself the legal right to access that data. I wonder if Google did something in the case that would only be explained by that action?

Show thread

In summary, the company's ToS allow it to access user data to "protect Google" so does that extend to everyone involved in a legal case against Google? Interesting implications for people (and govts) who have brought cases against Google while using Google services.

Show thread
Show more
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml