I use i3lock, which would mean attackers would have to find a way to get into /usr/bin to usurp my locker

Umm... No. Changing your PATH, setting LD_PRELOAD= or one of many other envs, changing Xsesson scripts or your WM's menu entries... Any of those would do just fine.

You also missed the entire point of the article, that an X11 screen-locker is just a normal user application like any other, a black image over top and only just TRIES to steal focus and input.

No, it doesn't. S/MIME, PGP-mail, etc. Of course that only works if the party you're e-mailing can also use client-side e-mail encryption.

Google is working on enabling OpenPGP-encrypted e-mail for Gmail with a Chrome extension: https://github.com/google/end-...

Meh. Everything is bigger than Hollywood.

Okay, that's a little bit of an exaggeration, but honestly, on the scale of major first-world institutions that people know and recognize, Hollywood is pretty small potatoes. Apple alone rakes in more than double the entire worldwide film industry's take. 2013 worldwide film industry revenues: $88B, and Hollywood is only about 2/3 of that. 2014 Apple revenues: $183B. IBM also is also bigger than Hollywood. Google is about as big as Hollywood. Ford is bigger than Hollywood. GM is bigger than Hollywood. Exxon Mobil is more than six times as large as Hollywoood.

The film industry is almost noise in the US national economy. It's chump change.

Where Hollywood is a heavyweight, though, is in politics. It has massively disproportionate power in comparison to its segment of the economy. Why? Simple: political power is about influence, not money, and Hollywood has direct access to the voters' brains. Large quantities of money can also buy access to said brains, but there is no amount of money that could buy as much political advertising as Hollywood can pack into its entertainment output. And any individual actor of note can stand up and say something and get press coverage that would cost tens of millions if purchased, free.

Luckily, Hollywood isn't politically homogeneous, so to a large degree the politics of our entertainment media reflect the same varied sets of opinions found in the nation as a whole. Not perfectly, but largely. There are some areas in which the interests of Hollywood are highly homogeneous, however, such as around copyright law, and there they wield incredible clout.

Anyway, my core point here isn't about that, it's just that Hollywood's visibility and influence makes it seem much bigger than its actual economic status.

I feel like I'm living in bizzarroland, where the shittiest, most customer-hostile companies are somehow the most profitable.

I can't remember when it wasn't like this.

Interesting story. One of the things I find most reassuring about the police service* in the UK is that they have long maintained, great consistency and at almost any rank, that good community relations are the heart of good policing. Officers who go out on patrol** have consistently and overwhelmingly said they do not want to routinely carry firearms, because that goes against the basic principle of policing by consent, and instead they tend to assume that the solution to local problems often starts with trying to improve those relations if they are failing. Concerns are also raised often by the police themselves about the balance between having officers patrolling in vehicles for rapid response and having officers literally walking the beat and actually making contact with the public. I get the feeling that police officers in certain other parts of the world have a very, very different attitude to their relationship with the public.

*I remember well that when the local police schools liaison officer visited us, he made a point of saying he didn't like the term "police force" because it had the wrong connotations before you even started to look at what the police did.

**It's curious how often police officers and politicians in some places refer to officers "on the front line", this being about as overt a military metaphor as I can think of (short of being "on the front line in the war against $ABSTRACT_NOUN" I suppose).

The key point from an ethical/legal point of view might be the warrant. The key safeguard from a practical point of view is that to plant those bugs someone has to actually visit the site and do something. This requires time, effort, and a risk of getting caught, which means it's potentially an option if you really do have a good reason to consider a specific individual to be a threat but it's prohibitively expensive to spy on everyone all of the time. As far as defending democracy is concerned, that is a much healthier balance than mass surveillance of the many by the few.

All agreed, though I am increasingly of the view that systemic bias in favour of the accused is not sufficient. Merely being dragged through the legal system even if ultimately found not guilty is sure to be stressful, time-consuming, and possibly costly in more ways than one. People who have committed even quite serious crimes are sometimes released immediately after conviction on the basis that they've already served as much or more time than their sentence -- but of course, someone who was entirely innocent and not convicted in court also served that time. Right now you're unlikely to get much financial compensation for any of that, and even less any obligation for those who caused the damage to do anything else to set the record straight or otherwise make things right as much as possible.

The more I've thought about these kinds of issues as I get older, the more I think our modern "justice" systems are no longer fit for purpose, if indeed they ever were. In particular, they take an absurd amount of time and resources to deal with trivial infractions, sometimes at a cost to all involved that is far greater than any damage done by the alleged act itself. For major cases, the court proceedings can cost millions and drag on for years, and by the time they are finally over the result is no longer relevant anyway.

I think we would probably do much better if we built on the kinds of distinction we already make about severity: misdemeanour vs. felony in the US, magistrates vs. crown courts here in the UK, small claims courts with less formal procedures for minor civil disputes, and so on. For example, I don't see why any very minor offence can't be fully tried and a judgement made within a single court session and within a matter of days after the alleged infraction. Either there is clear evidence to convict, or you acquit. If you convict in a fast track procedure, you have strict limits on the level of penalty that can be imposed.

Then for repeated minor offences within some defined time period or for more serious crimes (probably anything including violence that allegedly caused significant injury and/or damage needing repairs exceeding a certain cost, for example) you can extend the timescales involved to a degree to allow for more careful preparation of the case, perhaps increase the degree of scrutiny in terms of magistrates vs. judge and jury and allow the use of expert witnesses, and so on.

Crucial to all of this, in my ideal world, would be the idea that there was also proper compensation for anyone brought through the system at any given level but not ultimately found guilty, making it not cost effective to bring cases in the first place without a reasonable expectation of a conviction. No doubt experienced lawyers could come up with much better ideas for the specific details of any such system, but I think the idea of having more well-defined tiers with strict limits on applicability and proportionate compensation arrangements is basically a sound one.

I agree with your basic point about the need for balance. Of course there are bad people in the world and of course we need police and courts and the like.

I think the problem today is that many in our current political class don't recognise that need for balance so much as they see "them and us" and even start to forget whose side they are supposed to be on. The truly evil part of the situation is that this result seems almost inevitable. The people calling the shots are exactly the people who necessarily deal with the worst of humanity as part of their job. How could this not affect their perspective? They naturally want to trust their allies, who are the people who would be empowered under all these proposed security measures and aided by restrictions on the privacy and security of others. And of course being influential figures within the government, it is highly unlikely that they will personally ever find themselves on the wrong side of a government screw-up and unable to get the problem fixed very quickly.

I don't think these people are evil. On the contrary, I suspect most people in government, including their agents in the police and security services, are probably just normal people who have a job to do and who genuinely want to do the right thing. As with any large group, there will eventually be a few bad actors included as well and it is necessary to identify and contain them, but that isn't usually the main problem.

However, I do think we're talking about people who are heavily biased, even paranoid, because it would take a superhuman level of detachment not to be when you look at the kind of people they have to deal with at times. I also think in most cases they are ignorant about the technologies they are dealing with, and therefore unable to make rational, objective judgements about the likely effects of the technical measures they propose as policy. Finally, I think that the more senior these figures get within the government and its agencies, the more detached they tend to be from reality for average citizens and the more ignorant or dismissive they can become of how things tend to play out for innocent people in less privileged positions who are nevertheless caught up by the measures the politicians propose.

As the saying goes, power corrupts. It doesn't necessarily have to be malicious or intentional. Obviously in some cases it has been, but often I think the corruption is more of a slow but almost inevitable change in perspective caused by the situations you find yourself in when you have power to wield.

And so it is necessary for those who are looking from outside, those who don't spend disproportionate amounts of their time dealing with a particularly nasty minority of the human race, those who understand the technical issues, to speak out about what is happening and where it could lead. As with any issue of civilised government, in the long run you're going to get much further by educating people about relevant issues and promoting intelligent discourse than you are with wildly exaggerated rhetoric and extreme positions backed by intimidation and ultimately violence. The latter are seductive, and often appear quite effective in the short term, but I doubt they've ever truly solved much.

Virtually every *nix app runs over abstraction layers such as QT, GTK, Pango, Cairo etc. Assuming there are wayland backends for these layers then porting isn't as hard as you think. There may be vestigal bits of X to clean up and some edge cases that need more effort (screengrabbers, video players, browser plugins etc.) but porting the majority of apps will just port over. Aside from that, if you *did* have some ancient X app you could still fire up X over wayland just for that.

X will probably stick around as a core component for a few more years in most dists and then it'll be pushed off to the side as an optional package, available for those who want it but not installed otherwise because it won't be needed.

X11 is an arcane and largely obsolete framework. The fact it needs so many damned extensions to be any way functional is precisely the reason that developers are keen to get rid of it. It's not secure, it's filled with arcane and obsolete code and it's terribly inefficient both locally and remotely. Fortunately it'll be moved aside and replaced by wayland over the next few years.

Notice that I very carefully said secure against a certain attack in my previous post. You are talking about something different to breaking the encryption technically: the xkcd attack, which any large organisation with weapons can apply, but not covertly and not without consequences if they try to apply it systematically against innocent people.

Well, if it worked for Cardinal Richelieu...

It's not the viewing of the picture which is offensive, but the making of the picture. Distributing it is rubbing salt in the wounds, and makes the difference between a secret, private image of Muhammad (which were quite common in Islam), and a public spectacle. The secret, private images were tolerated because the owners would know that the image was not being worshipped or being used to degrade Muhammad. When it's public and all over the place, that security is lost.

It's just a respect thing - when a religion has been pushed into the corner by the meddling of other countries, often with no regard to their sensibilities, they will fight tooth and nail to secure that which is the most important thing to them. We've seen this with other religions and cultures, too, so it's not just an Islam thing.

If someone respects the hell out of something I'll not go out of my way to show how free I am to disrespect it, or show how much I dislike people being offended by disrespect, by disrespecting it - "told you so" is not productive. That's just me, though.

If you're locked up for years, despite having done nothing wrong, I'm not sure I see much difference.