Erm. I fail to see how this moves the needle unless usb-if is doing extreme firmware level source analysis and deterministic compiles and checking them against shipped firmware. Which I doubt is happening, with every atom in my body.
It's a policy control suggestion that's both low effort and immediately actionable by the typical tech-literate types sleuthing these channels.
When baseline consumer behavior is sort-by-price-low-to-high and select the cheapest item from random pop-up white label chinesium third-party vendor on Amazon, exercising an ounce of supply chain due diligence where none previously existed can go a long way.
To be sure, if you think you can economically defend against a coordinated supply chain attack by a speculative adversary willing to pony up real capital operating an otherwise legitimate facade for years building market goodwill only to burn it all down in one shot against a single worthwhile target...well, I've got a bridge to sell you.
Bruh. I mean this as a genuine ask. Have you heard of Nix and is there a reason it didn't land on your radar or was rejected?
Because what you want exists and has a thriving community, and a package set that outclasses, well, statistically every other package manager in existence.
I swear, it's a daily occurrence for me to see software engineering challenges posited here as damn near impossible that Nix has been solving for over a decade.
What if you could run a single command and have exact insight to the source you're using for every single package on your system with the context of the dependency graph it exists in.
I cannot wait for this wave to crash and for people to realize how much engineering effort is reduced by using Nix. And that all of these things they know they want for years, already exists. But hey, the syntax takes time to get used to and how do you compare that against the countless blog posts and hours and institutional knowledge you need to actually use docker properly. And then later on some Go-based SBOM tool made by a VC-backed startup that fundamentally still does an inferior job to Nix. Sigh.
Well anyway I guess nix will keep being used by hedge funds, algorithmic traders, "advanced defensive capabilities" companies, literal (launched, in space) satellites, wallet manufacturers, etc, while everyone else listens to the syntax decriers.
It means we can build the same thing and check the output hashes. In terms of deriving a method for trusting build infra, it's basically the end all-be-all. I almost don't know how to answer it.
I'm sure you've heard this before, and I'm sure you don't give a slim shit, but like 3 minors a year undergo gender reassignment surgery. After countless consultations with physicians, therapists, parents, etc. And hormone blockers aren't given out trivially either. But I have no doubt that you know this.
So, really, pretty laughably not comparable. And to directly answer your question, the answer is duh, no.
I'm sure you're equally upset about young kids being put in beauty pageants or the countless (Republican) states that have recently defended child marriage. Right? Right?
You know, someone had previously written that Meta should be held accountable. Which I guess I didn't consider too strongly.
I'm sorry, but Meta knows why "adult-run minor accounts" make them revenue. Fucking disgusting. I'd love to see some discovery on their internal metrics and how they build out that feature to drive up engagement from these horny creeps.
But have we weighed the social impact of teens not publishing themselves online to pervs? /s
This, like every other problem with pervasive brainrot technology, and hell good old fashioned ways to shut a brain off, will be talked about for years. Nothing will be done. Things in 10 years will feel normal and be unimaginable now. Thus is humanity for the 30 years I've been here so far.
Don't. Put. Your. Kids. On. The. Internet. I'd say "don't put unwitting strangers on the internet" too, but it's less targeted unless you're stalking a stranger, and I suspect too many HNers are Instagram users for that to be popular.
Also this is your too-often reminder that child beauty pageants are still popular in many places. Anyone taking attendance at those? Seriously, the status quo and what people are accustomed to biases people's norms in extreme ways and we just never seem to put that in context.
My point being, we have fucking pageants for children to get dolled up and pranced about for adults to watch, and here we are, off to the next horror-porn-horror travesty we all know is likely going to continue slowly getting more and more wack, as the norms shift.
I hate how 99% of the planet has no ability to consider long-term reprocussions of decisions, or worse, are incentivized to self-deluded about them. "Let's appeal to things that work in marketing and put our teenage daughter on the internet". Sounds like a god damn comedy sketch.
The parents rationalizing exposing their children to predators online seem almost as bad as the mealy-mouthed execs at Meta blaming their own software, as if they have no idea how to filter hashtags or block encrypted uploads.
I'd like to see Meta execs prosecuted and jailed for allowing this, and exposing the members of Congress taking money from Meta.
The counterpoint to this is that Americans are too sensitive about sex relative to other things, such as violence, with or without guns. Three year old little boys get to run around with toy weapons that shoot foam darts, and apparently that's perfectly fine. Meanwhile you're saying that a teenager apparently can't be trusted to make decisions about whom they show their own body to. That teenager might be old enough to have had sex already, and in times gone by might have been eligible for marriage. But if someone gets to see them -- with clothes on and at a safe distance -- let's call the Puritan Police and have them shamed publicly for their transgressions against good moral behaviour!
In the USA the Overton window for these two aspects of life have very little overlap with the rest of the world. In only a very small number of other places do you see fathers teaching their teenager daughters how to handle guns.
Its pretty simple. The parents almost surely would've been more cautious about their daughter getting married. But turning her into a marketing content mill on the internet was done with next to no consideration of the consequences.
And yeah, I guess if you don't care about tens of thousands of men perving on your daughter every day, upload away! Good thing men are never incredibly harassing or anything.
There's videos online of me doing stuff that would probably end my father's heartbeat in about 10 seconds. I'm not a prude. I'm someone that wishes people would think instead of playing this surprise Pikachu face constantly.
This general ignorance of long-term consequences, and this behavior of men... Neither are limited to Americans. I mean, I wish, it'd be an easy solution for me to avoid both, but alas.
I am not sure I will ever stop being weirded out, annoyed at, confused by, something... people asking these sorts of questions of an LLM. What, you want an apology out of the LLM?
That's an interesting point you're making. I wonder what the policy is regarding the questions people ask an LLM and the developers behind the service reading through the questions (with unsuccessful responses from the LLM?)
I almost want one of these, except I have no use for it nowadays. Ventoy didn't even work the one time I tried it, probably because it couldn't hook nixos's initrd properly.
But also, I'm insanely frustrated that (1) Google doesn't allow USB Gadget mode to do this from stock Android (2) the app that appeared to work for LineageOS/rooted devices is abandonware.
There's no good reason why your phone can't serve up ISOs with gadget mode.
I already travel with my ancient Pixel 3a as a backup (which has come in handy, clumsy me). It would be slick to have that as a portable ISO host, and backup phone. (Ignore the USB2 USB-C port, it's fine.)
I remember giving that a go many years ago. Not 100% successful, but when it worked, it was fantastic. It would be incredibly handy nowadays, especially for troubleshooting use cases. OS installation, memtest, clonezilla, portable Windows installation, and you'll always have them with you since you're already carrying your phone!
Huh? This entire subthread is about Freenet and moderating the medium. The analogy is that if USPS were trying to do so, it would be absurd.
It also highlights why I think this is nearly intractable. Distributed, censorship-resistant designs lend themselves to resiliency and permanence. I just have this gut feeling you don't get both. And frankly I think the people trying to shove the cat back into the bag are a bit naive.
But unsealing envelopes doesn’t work as an analogy with FreeNet or the web, which are largely not private communication. We’re talking about removing public content, not reading private messages. And my point is that, while the USPS will (presumably) not unseal envelopes, they will go after you if you send certain content via the postal service.
Uhhh. Look I think this is sort of an intractable problem. Technology is advancing. Humans are terrible. No technical or political solution is going to stop atrocities. That's of course not to say we shouldn't try to educate, prevent, serve justice, etc.
But... Are you implying that random people being unwittingly exposed to CSAM is somehow going to cause a reduction in production of CSAM? Because good lord, I'm not sure I can understand that train of thought.
