StarDreamer

Ankh-Morpork had dallied with many forms of government and had ended up with that form of democracy known as One Man, One Vote. The Patrician was the Man; he had the Vote.

– Terry Pratchett, Mort

is definitely on every normal user’s mind at all times.

That was the context. The problem wa connecting to Wireshark, which more and more people are doing thanks to general awareness of VPNs.

and last but not least people like you going ‘hmm yes but akshually’ in sort-of-defense-but-not-really of the deliberately malicious and billion-dollar company.

Huh? Where in my post did I defend MS? I was there when Balmer and crew decided to sue anyone with a pulse for using Linux. I was there when the Cathedral acquired the Bazaar (and I deleted my account for it), and I am still here using Linux and BSD for every single machine I own with the exception of one. I still hold a grudge against Mr. Bill “Jump on a roller to show how fit you are” Gates, and I refuse to purchase anything from their game catalog since 2011. Hopefully with this context, you would no longer misconstrue my point as “defending Microsoft”.

Alas, normal users care about neither. The computer is just a tool that allows them to do work which allows them to put food on the table. If your assistance is just “boo hoo use Linux”. That’s not productive to them nor us. Joe Shmoe isn’t gonna care that you should save your documents as ODT instead of DOCX. They need that document working with no hassle NOW.

Look at it this way: A normal dude with bad hair and questionable social intelligence isn’t getting up in the morning and deciding to fuck with a million or more users by making their computers unbootable. There is only good intentions.

Case in video game modding: 1. GShade, where the developer deliberately made people’s game segfault if compiled on their own after an update 2. MultiMC, where the developer personally threatened to sue for trademark violation after packaging the application for a Linux distro 3. Bukkit, where one dev decided to DMCA and take down all instances of the project.

Outside of video games: the entire university of Maryland, which attempt to inject backdoors into the Linux kernel that was not caught until they published a paper.

Also, for the “good dudes part”: regardless of intentions, if the damage is done, the harm is done. If a suitcase falls from an airplane and kills me tomorrow, I wouldn’t care whether it was intentional or not. I would be dead.

Going back to the original blog post: there is both a user problem and a technical problem here. The technical problem “could” be fixed by switching to Linux (assuming systemd or gnome doesn’t get to it first), but the user problem can’t. Calling out anyone who points out the user problem as “corpo drone” isn’t going to make it go away.

Grab your shovel, time to lucky 10000 some bash.org content!

Devil’s advocate here: switching to Linux wouldn’t help.

I recently had to set up a public web server for a org that I belonged to. The idea was that I would set everything up in the most secure and unbreakable way I can think of, write documentation on how to do everything, transfer ownership of all the “break glass” credentials and lock my own account once I’m done.

This turned out to be a huge mistake. What was supposed to be some free work for a hobby group turned into a massive pain every day at 3-4am (due to time zone differences)

The person in charge of managing access control couldn’t figure out how wg-easy works. She managed to give her own credentials to EVERYONE who needed access, which obviously didn’t work due to IP conflicts. When pointed out, she modified the IP in every config file, which of course, still didn’t work. It took forever to tell her NOT to share credentials and create new peers for each user.

The biggest problem is some how NOT windows or mac users. There is a single Linux user that is causing the most headaches. When I set up wireguard, I tested on both Linux and Windows, with Linux being what I used. I ran into some minor hiccups with getting split dns to work correctly, but it was relatively easy to fix in Network Manager. I assumed if there are other Linux users they would be able to fix it themselves. Obviously I was wrong.

Said person had DoH enabled in their browser that they didn’t know how to disable, running varieties of “I don’t know” for their network stack, DNS resolver, etc. almost every question for dig, cat /etc/resolv.conf descended into “what’s that?” or completely incorrect commands (e.g. resolving a http url in dig). I could not figure out what the person was running, the person themselves had no idea what was running (I think it was systemd-resolvd, but I still don’t know as of now). Eventually, after 3 workdays of trying to help fix this at 3-4am, I gave up. I can’t help with a personal device belonging to somebody that has no idea what they’re doing.

As for why I’m mentioning this story: switching to Linux wouldn’t help this lady with her problem. There are similar issues on linux that would prevent a login or a graphical session (there was an old work machine that ran VLC, where VLC threw GBs worth of QT errors, eventually causing systemd to crash on reboot when the drive was full). The problem here isn’t just the system, it’s the user. A lot of people seem to be allergic to providing more details than “it’s not working”, “I don’t know” and “I didn’t try anything”. If the general mindset is “I don’t know what’s wrong with no details”, there’s no savings the user from technical problems.

On a side note for “why the hell did I knowingly volunteer to set up a web server for someone else”: the whole project was already 5 months overdue. It was beneficial for everyone for the server to be up asap. Said person in charge didn’t think of anything (dns, hosting, software stack) other than ask a bunch of CS college students to design a Web app for her. Needless to say the students bailed on her (which is probably the best scenario? In terms of maintainability and security concerns). It also only took me 2 weeks to set everything up (lamp stack, K3S, crowdsec, openappsec, wireguard, etc)

What’s your emergency “break glass” policy?

Is it a bottle of whiskey?

Yes. But the chances of harassment went from accidentally provoking someone on 4ch (approximately the probability of getting hit by a flying brick while walking down the street) to looking at your classmate a bit funny. There’s too much personal information out there. You no longer need a shovel to dig up dirt.

Who’s forcing this kids to exist on their devices all the time?

Schools making social media part of the curriculum, where homework involves designing social media content for learning purposes.

And the fact that being the “odd one out” means social death. There are no more teen friendly skate parks to go to or malls to hang out at. Whatever public spaces remain are unsafe due to people driving 60 down a public road with minimum sidewalks. You’re either online with your friends or you’re alone.

Who’s giving them access to cyber bullying?

It’s the three body problem: putting three stellar objects in close proximity to each other will always result in a unstable system.

Also like how do you stop bullying in an era where the public elects bully’s to run the world; and the corporations make money promoting your kids being bullied.

No idea. I’m no expert here. But the first step is to recognize there’s an issue and talk about it. And not just here on lemmy, but everywhere.

I mean. That’s why I’m not interested in kids or parenting at all.

I think there are a lot of gremlins out there with zero compassion and consideration for others. If parents were more vigilant about what was happening (and less dismissive of what other kids are saying) a lot of people would not have been hurt. Including myself.

I think the bare minimum is parents need to know (1) what your children’s hobbies are (2) where your children are when leaving the house (3) what social media platforms/games does your child access. And I’m not saying this in a technical “surveillance” way, I mean the kids should be made to feel comfortable enough to provide this information to said adults. If kids are unwilling to provide this information, or even deliberately provide fake or masking information then you have a problem.

It’s not involved.

But the personal data involved for most individuals has increased dramatically, which increases the risks of harm dramatically. Most people’s online identities are now intricately tied to their daily lives for better or worse.

It requires the same basic knowledge and precautions.

Which some of us learn the hard way. I don’t think I’ve seen anyone value privacy prior to being burned themselves first. But at that point, the damage is already done.

It’s also unreasonable to expect everyone to know everything. For example, I don’t drive. I wouldn’t know how to stop a car from the backseat if the driver were to have a medical emergency.

it involves vigilant parents and an involved school system.

Parents couldn’t track where their kids were doing 24/7 prior to the Internet. What makes you think they can do that now?

As a side note: do post-2020 work schedules allow parents to communicate with their children sufficiently?

We didn’t solve bullying we embraced it.

As someone who’s been hurt and hurt people back in the day this is NOT the way to do things. Whoever thinks it’s possible to “tough it out” has not been through systemic bullying for years, nor know of the physical and mental medical toll it has decades after the original incidents. I do not wish this upon anybody.

Quite frankly, I am sick of people downplaying these issues because the “bullying” issue no longer affects them while chat control and age verification does. There should be a platform to discuss both these problems without downplaying the consequences of ignoring either.

They don’t. Undeniably the social media landscape has changed, especially for younger folks. It’s no longer people spamming chatrooms, starting flamewars, or calling random names in a CoD/PlayOnline lobby. Things are more targeted now. You can easily look up information (especially someone who is ill prepared to protect it) and make much more personal attacks. The old mudslinging used to slide right off since it was just generic provocative comments. Besides, the worst thing that could happen is you have to change your irc nick. But what happens when your school Gmail gets leaked, that is also what you use to sign in to various services?

I agree that matrix is a slow and buggy hot mess, but its issues mainly lie with scaling. As long as your instance is small it works well enough. Imo this is architectural and will never be fixed with synapse.

As for no alternatives for discord. I think the problem is that people have come to expect a certain level of QoS with hosted services that are expensive to maintain for hobbyists (cdn, load balancing, nat traversal, ddos protection, etc). I think this is fundamental to how we’re abusing IP when it’s way past its prime and on life support using middle boxes. If we want to reclaim this space, the best way forward would be something like NDN, but the transition would be astronomical that nobody wants to do it.

Our minds like to process entities/companies like Google as human beings, which allows us to assign emotions to these things. But the truth is, they are nothing but a glorified Chinese room experiment.

People made the largest browser engine and operating system, not Google. Without people, the company is nothing. A company like Google is nothing but a set of self operating rules.

I love/loathe Google just as much as I love/loathe my weekly /tmp cleaning cron job. Even if it accidentally nukes my files, it’s just doing as it’s designed to do.

You design a system to maximize shareholder value, it will do exactly that without caring a single thing about human ethics.

1. They were ALREADY scanning your data using AI… And banning people for simply discussing certain topics.
2. How do people even notice these things? I honestly couldn’t tell. (Edit: okay, I forgot about the domain)

Anyways, I’m trying to get people in specific vulnerable communities to switch to matrix. But the amount of people refusing to do so out of convenience (and even refusing to setup MFA or using different passwords for their online accounts, including discord) is staggering.