• 0 Posts
  • 20 Comments
Joined 4 years ago
cake
Cake day: February 15th, 2021

help-circle
  • You share public keys when registering the passkey on a third party service, but for the portability of the keys to other password managers (what the article is about) the private ones do need to be transferred (that’s the whole point of making them portable).

    I think the phishing concerns are about attackers using this new portability feature to get a user (via phishing / social engineering) to export/move their passkeys to the attacker’s store. The point is that portability shouldn’t be so user-friendly / transparent that it becomes exploitable.

    That said, I don’t know if this new protocol makes things THAT easy to port (probably not?).



  • Is “intent” what makes all the difference? I think doing something bad unintentionally does not make it good, right?

    Otherwise, all I need to do something bad is have no bad intentions. I’m sure you can find good intentions for almost any action, but generally, the end does not justify the means.

    I’m not saying that those who act unintentionally should be given the same kind of punishment as those who do it with premeditation… what I’m saying is that if something is bad we should try to prevent it in the same level, as opposed to simply allowing it or sometimes even encourage it. And this can be done in the same way regardless of what tools are used. I think we just need to define more clearly what separates “bad” from “good” specifically based on the action taken (as opposed to the tools the actor used).


  • I think that’s the difference right there.

    One is up for debate, the other one is already heavily regulated currently. Libraries are generally required to have consent if they are making straight copies of copyrighted works. Whether we like it or not.

    What AI does is not really a straight up copy, which is why it’s fuzzy, and much harder to regulate without stepping in our own toes, specially as tech advances and the difference between a human reading something and a machine doing it becomes harder and harder to detect.


  • Content curated by “the core geeks and nerds” might appeal to “geeks and nerds”, not to those consumers.

    They want “consumer” content. And if one day they get tired of it then I doubt any amount of “steak” would have stopped them leaving anyway, since that was never what they were looking for. It’s not like reddit has to be the only place they visit in the internet, nor is the internet their only source of consumption. Just because you go to a snack bar does not mean that’s the only place you go for meals.


  • Saying that I dont trust a homophobe is not “sharing my political opinions”

    That’s true.

    However, you did not just say that. You mentioned how he supports some homophobic politics (ie. regulation against gay marriage), which you (and I’m sure a lot of people, me included) disagree with. That’s politics.

    You also shared your opinion about why you think privacy is important for our society. That’s also politics.

    I’m not saying that what you said is wrong… I’m saying that what you said is political. Sharing political opinions is ok. It’s not like talking about politics is somehow a bad thing. At least not in this context. A lot of what surrounds the choice of a web browser like this is political.


  • Ferk@lemmy.mltoProgrammer Humor@lemmy.mlWorst is UTC vs GMT
    link
    fedilink
    arrow-up
    7
    ·
    edit-2
    5 months ago

    You still call the period before when the sun is directly overhead “morning” and the period after “afternoon” and similarly with “evening”, “night”, “dawn”, “noon”, “midnight” etc.

    Note that the Sun position is not consistent throught the year and varies widely based on your latitude.

    In Iceland (and also Alaska) you can have the Sun for a full 24 hours in the sky (they call it “midnight sun”) during Summer solstice (with extremelly short nights the whole summer) and the opposite happens in Winter, with long periods of night time.

    I think it still makes the most sense to decide that the days of the week (“Monday”, “Tuesday”, etc) last from whatever time “midnight” is locally to the following midnight, again probably rounding to the nearest whole hour.

    Just the days of the week? you mean that 2024-06-30 23:59 and 2024-07-01 00:01 can both be the same weekday and at the same time be different days? Would the definition of “day” be different based on whether you are talking about “day of the week” vs “universal day”?


  • In that counter argument they are essentially admitting that 99% of their content was distributed without the copyright holder’s consent.

    In the CDL lawsuit, they have admitted that of the millions of books we have digitized, they themselves have only made about 33,000 available to libraries; only about 1% of what we have done, and only under restrictive and expensive license agreements. This is, they claim, the essence of their copyright rights: the ability to restrict access to information as they see fit, to further their theoretical economic interests, without regard to libraries traditional functions and the greater public good.

    Was it fair use in the past to redistribute reprints/format-conversions of works without the copyright holders consent?

    I agree that copyright law sucks… but that’s why it needs to change so it actually serves “the greater public good”. The judiciary system is not the right place to advocate for that (they don’t make the law, just interpret it), so I don’t really think there’s much hope in them winning this. Sadly.


  • If they really think there’s no reason to hide anything, why are they prosecuting Snowden for exposing something that was hidden?

    Before having surveillance on people, they should have it on themselves.

    Imagine how many corruption cases could have been prevented if the government was publicly monitored, with live streams from all offices, like a “big brother” show set up in the white house with live recordings of all calls and communications, so the voters can judge by themselves and monitor if the person they employed as the servant for the country is doing its job.


  • Ferk@lemmy.mltoTechnology@lemmy.ml*Permanently Deleted*
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    9 months ago

    This.

    I don’t understand the appeal of microblogging. The content is generally very low quality, the signal-to-noise ratio is horrible… I’m not interested in the shower thoughts of any particular individual …or in marketing stunts.

    The only individuals I’m interested on are my family & friends, and even for them I’d rather use a more private platform.

    And when I want to read a public post I’d rather it’s well thought and ideally not restricted by micro-limitations. Even better if it’s curated by a public voting process among a community of people with my same interests, or some other process that makes it so I don’t have to waste my time going through tons of content I’m not remotelly interested on.


  • I expect it would be technically possible to have lemmy-like or peertube-like services built on top of the AT protocol Bluesky uses, like with ActivityPub. And I expect if/when that happens the communication across services would probably work too.

    In fact, accounts being “portable” in the AT protocol can potentially make the integration more seamless across different services, not only might the posts be seen from different services, but you might be able to directly access those different services with the same account. Imagine if you could login in lemmy with a mastodon account or vice-versa.

    Bluesky is just one of the possible services. But as long as the invites are private and you can’t host your own instance, I wouldn’t even consider it an alternative. I think it’s a bit early to judge, both its positives and its negatives.



  • Wouldn’t it be easier and more direct to simply impose a tax to those external big tech services?

    I don’t understand why using protection against “bad actors” as an excuse is necessary at all if getting money from big tech were the ultimate goal. A lot of people within the EU would happily support such a tax targeting big US companies, it’s the privacy problems what we are pushing against, not the fees. So I’d expect a more direct and honest fee for external companies making business within the EU would be easier to pass if that were what they actually wanted, wouldn’t it?


  • I don’t think EVERYONE needs to understand / know about it. I mean, I remember when I was young most people had no idea how to use the internet (hell, they didn’t even know how to program a VHS), yet I was perfectly happy using that technology.

    I only need a specific set of people and specific communities to be there for it to be worth it. Like I said: I no longer use reddit, even though the fediverse has only a small fraction of the content existing in reddit… I would have expected people in the fediverse would be more receptive to unpopular but technologically/ethically superior alternatives.


  • Yes, but the question is: what does matrix need to establish itself as a solid alternative?

    You can’t answer that by saying “people don’t use it, change that” because that’s something only people can change, not matrix, that’d lead to a cyclic problem.

    Specially when that’s given as a counterpoint to justify not wanting to do the change for “this community”. It’s contradictory to want its popularity to be changed but accept the lack of change alone as a valid reason to justify your communities not changing.


  • like how not being able to sign up for something with tor and monero is a privacy violation, it’s not.

    Note that “secrecy” and “privacy” are often understood in Security lingo as different things. One protects confidentiality, the other one protects anonymity.

    It’s possible to have one and not the other…

    You can have a very private system through onion routing but have the contents of the messages exchanged be in plaintext, open to the public. Nobody will be able to know the one who wrote the message was you. But they can see the message. (then there is privacy, but not secrecy).

    Or you can have very strongly encrypted communications (say HTTPS) but have the DNS exchanges (or the TLS handshake, or the IP addresses) be in the clear, so people in the middle (eg. your ISP… or your workplace tech guys) can know exactly that the packages are sent by you and where you sent them, even if their content is encrypted. They can know which service you tried to access to, for how long and how many times (so you have secrecy, but not privacy).


  • But that’s cyclic reasoning. Nothing that you need/want will be on matrix if you (and everyone else) does not think it’s worth to make what you need/want be in matrix…

    I don’t need EVERYTHING to be in Matrix, just the things I’m interested in. So I’m happy when I see a push to have those specific things there. This is the same argument as to why I don’t use Reddit anymore, despite Lemmy/Kbin having only a fraction of the content.

    It also helps the fact that Matrix is very flexible when it comes to mirroring/proxying other protocols. I can easily access IRC communities from Matrix, for example. The integration in that direction is nicer than requiring discord channels to add bots that parrot an IRC chat.




  • In fact, it’s not unlikely that the behavioural data of people who pay to opt out of being spammed with ads will be more valuable to data brokers.

    True. This is why the AdNauseam extension doesn’t simply “hide” ads, but it goes out of its way to actually simulate clicks for ALL ads, causing algorithms to be unable to more accurately profile you and making the pay-per-click model fall on its face. If everyone did that, advertisers would have to pay for completely meaningless clicks making it no longer worth it to advertise this way.

    Though it’s still not a solution to privacy, since it still gives some insight on your tastes by allowing them to know what websites do you frequently visit.