Submission + - Fifteen Years Later, Citizens United Defined the 2024 Election (brennancenter.org)
Comment Re:Could he be retried for one of the hit attempts (Score 1) 339
Submission + - Anti-Trump Searches Appear Hidden on TikTok (ibtimes.com)
Silk Road Creator Ross Ulbricht Pardoned (bbc.com) 339
"The scum that worked to convict him were some of the same lunatics who were involved in the modern day weaponization of government against me," Trump said in his post online on Tuesday evening. "He was given two life sentences, plus 40 years. Ridiculous!" Ulbricht was found guilty of charges including conspiracy to commit drug trafficking, money laundering and computer hacking. During his trial, prosecutors said Ulbricht's website, hosted on the hidden "dark web", sold more than $200 million worth of drugs anonymously.
Submission + - Trump Pardons Silk Road Founder (nypost.com)
Submission + - Decentralized Social Media Is the Only Alternative to the Tech Oligarchy (404media.co)
The problem with decentralized social media platforms thus far is that their user base is minuscule compared to platforms like TikTok, Facebook, and Instagram, meaning the cultural and political influence has lagged behind them. You also cannot directly monetize an audience on Bluesky or Mastodon—which, to be clear, is a feature, not a bug—but also means that the value proposition for an influencer who makes money through the TikTok creator program or a small business that makes money selling chewing gum on TikTok shop or a clothes brand that has figured out how to arbitrage Instagram ads to sell flannel shirts is not exactly clear. I am not advocating for decentralized social media to implement ads and creator payment programs. I’m just saying that many TikTok influencers were directing their collective hundreds of millions of fans to follow them to Instagram or YouTube, not a decentralized alternative.
This doesn’t mean that the fediverse or that a decentralized Instagram or TikTok competitor that runs on the AT.Protocol is doomed. But there is a lot of work to do. There is development work that needs to be done (and is being done) to make decentralized protocols easier to join and use and more interoperable with each other. And there is a massive education and recruitment challenge required to get the masses to not just try out decentralized platforms but to earnestly use them. Bluesky’s growing user base and rise as a legitimately impressive platform that one can post to without feeling like it’s going into the void is a massive step forward, and proof that it is possible to build thriving alternative platforms. The fact that Meta recently blocked links to a decentralized Instagram alternative shows that big tech sees these platforms, potentially, as a real threat.
Submission + - TikTok is censoring anti-Trump content (newsweek.com)
A post on X, formerly Twitter, which has received 4.5 million views at the time of reporting, claims that "TikTok is now region locking Americans from looking up things like "fascism" and "Donald Trump rigged election"."
The post includes two screenshots of the TikTok app. The screenshot is of the search page, and in both the search term is "Donald Trump rigged election." The post states that: "On the left are results from a device in America, and on the right are results from one in the UK."
The post on the left shows a results page stating "No results found," while on the left it shows two videos of the President.
Another post from the account Dustin Genereux said that, "Censorship on TikTok is at an all time high with accounts being deleted, posts going back years being flagged, people losing access to the creator fund for saying anything Anti-Trump, MAGA, Elon, etc. But free speech and all that right?"
Great Barrier Reef Hit By Its Most Widespread Coral Bleaching, Study Finds (theguardian.com) 15
Only 92 coral colonies escaped bleaching entirely and by July, when the analysis for the study ended, 193 were dead and a further 113 were still showing signs of bleaching. Prof Maria Byrne, a marine biologist at the University of Sydney and lead author of the study, has been researching and visiting the island for 35 years.
Brendan Carr is Officially in Charge of the FCC (theverge.com) 71
Carr's priorities might also be gleaned from a document you might have already heard about: Project 2025. That's because he authored the FCC chapter of the Heritage Foundation's wishlist for a Donald Trump presidency. In that chapter, Carr proposes actions including: limiting immunity for tech companies under Section 230 of the Communications Decency Act, requiring disclosures about how platforms prioritize content, requiring tech companies to pay into a program that funds broadband access in rural areas, and more, quickly approving applications to launch satellites from companies like Elon Musk's Starlink.
Authors Seek Meta's Torrent Client Logs and Seeding Data In AI Piracy Probe (torrentfreak.com) 15
"By downloading through the bit torrent protocol, Meta knew it was facilitating further copyright infringement by acting as a distribution point for other users of pirated books," the amended complaint notes. "Put another way, by opting to use a bit torrent system to download LibGen's voluminous collection of pirated books, Meta 'seeded' pirated books to other users worldwide." Meta believed that the allegations weren't sufficiently new to warrant an update to the complaint. The company argued that it was already a well-known fact that it used books from these third-party sources, including LibGen. However, the authors maintained that the 'torrent' angle is novel and important enough to warrant an update. Last week, United States District Judge Vince Chhabria agreed, allowing the introduction of these new allegations. In addition to greenlighting the amended complaint, the Judge also allowed the authors to conduct further testimony on the "seeding" angle. "[E]vidence about seeding is relevant to the existing claim because it is potentially relevant to the plaintiffs' assertion of willful infringement or to Meta's fair use defense," Judge Chhabria wrote last week.
With the court recognizing the relevance of Meta's torrenting activity, the plaintiffs requested reconsideration of an earlier order, where discovery on BitTorrent-related matters was denied. Through a filing submitted last Wednesday, the plaintiffs hope to compel Meta to produce its BitTorrent logs and settings, including peer lists and seeding data. "The Order denied Plaintiffs' motion to compel production of torrenting data, including Meta's BitTorrent client, application logs, and peer lists. This data will evidence how much content Meta torrented from shadow libraries and how much it seeded to third parties as a host of this stolen IP," they write. While archiving lists of seeders is not a typical feature for a torrent client, the authors are requesting Meta to disclose any relevant data. In addition, they also want the court to reconsider its ruling regarding the crime-fraud exception. That's important, they suggest, as Meta's legal counsel was allegedly involved in matters related to torrenting. "Meta, with the involvement of in-house counsel, decided to obtain copyrighted works without permission from online databases of copyrighted works that 'we know to be pirated, such as LibGen," they write. The authors allege that this involved "seeding" files and that Meta attempted to "conceal its actions" by limiting the amount of data shared with the public. One Meta employee also asked for guidance, as "torrenting from a corporate laptop doesn't feel right."
Comment Re:Monolithic practices (Score 1) 81
No, it's not broken. In fact, I'll argue that the differences here make distros more resilient. If everything was done the same way under all distros, then we'll see a surge in malware, (successful) exploits/script kiddie shit, etc..
The differences between distros in fact break scripts that need to refer to these tools by their absolute paths, which includes anything called from cron where the value of PATH can be anything and systemd services, or any script where use of relative paths is risky for security reasons, exactly to avoid malware in
So for all sense and purposes, the current state is broken. Your suggestion that will foil script kiddies, while in theory plausible and potentially having occurred some times, is ridiculous and is an example of security through pseudo-obscurity. If your security relies on your script kiddie not knowing where update-alternatives is, your system lacks any security.
On the other hand, the fix will temporarily make things more broken, as now people referring to tools with absolute path and using Fedora (or Arch) will not know where the tools are supposed to be, even for tools where the path was previously consistent across distros and will hardcode
Comment Re:All UI file managers should be dual-pane (Score 1) 45
I did mention phones, because Nautilus is usable devices like tablets as it has touch-friendly navigation, with an adaptive interface that hides the sidebar on small screens like a phone. They've recently almost fixed the constant issue where the window would become too big to fit on a screen by adding a lot of ellipses, though some other parts of GNOME (the file picker, for example), would become too wide to fit any screen by simply navigating into a directory whose name is too long.
Comment Re:All UI file managers should be dual-pane (Score 2) 45
As an avid user of orthodox dual-pane file managers (far2l, Midnight Commander, Double Commander, and Krusader when using KDE), I am not sure of it. Allow us to have file managers that are best suited for the task at hand and best fulfilling the preferences and needs of the user.
Some tasks --- editing files, watching video files, managing files on a phone screen, rarely even some file organisation within subdirectories --- are best accomplished with a single directory view, without a second pane taking up your real estate. Opening a second window to take the job of a second pane is a minor hassle if suddenly required, and can be much more flexible --- sometimes you might need three of four, or to close and open more of them as needed. Some single-pane file managers even offer opening a second pane with F3 (Dolphin and pcmanfm, for example), and this is valuable, but it is neither that much significant improvement over opening a second window, nor does it offer the power of a primarily dual-pane manager like the ones I mentioned.
It might be prudent to have such mode in all file managers, but even when everything in my life is dual-pane I seldom use it, because every operation in a truly dual-pane manager is aimed at the presence of exactly two panes. Copy, move, symlink are aimed at the opposite pane (as opposed to drag & drop with windows, or with an F3 split), macro actions can be created that reference the active and inactive pane, or left and right pane (useful for making diffs), comparison and directory synchronisation features may be also provided. That's the true value of the design, so simply splitting the view does little to give you that.
On the other hand, single views --- splitable or not --- are great for what they do. Sometimes you just need smaller window, sometimes you just need independent views where a dual pane wouldn't be the best fit, sometimes you even more than two. I've even been in a situation where I needed to run multiple instances of a certain dual-pane FM (because of the macros I had in them, or the ability to use them over SSH), and all operated in a single directory, the second pane sitting there eating screen space for no reason.
Comment Re:Hmmmm (Score 2) 18
Perhaps you forgot to check that argumentum ad populatum is still a logical fallacy in 2021.
My company makes up some of those 80% powered by PHP, I make my salary supporting PHP web sites and coding PHP code myself, I even like some of the overall language, and PHP happens to be the first language in which I coded any non-toy programs.
Yet it is still pretty much THE shitty language. A primer on how you DO NOT create a programming language, from security hell to just absurd language features that trip you on every step. You wouldn't need to look past what kind of absolute crap has to be fixed with breaking changes in each major release that's came out in recent years. For example, the recently released PHP 8 fixes the absolute insanity of PHP comparison operators: https://www.php.net/manual/en/...
Before this change (and since PHP 8 compatibility is not here yet in popular libraries, you can say it is still the case), you would struggle with BASIC things like checking for an empty string:
if ($s == '')
if ($s === '')
if (!$s)
if ((string) $s == '')
That's what we're fixing in 2020/2021. In the decades, it's a language that brought absolute wonders like magic quotes, which would any mangle any input string with C-style escapes, in the false belief that this protected you from SQL injections. SQL injections resulted from this, yet it also brought the joy of web sites in which passwords containing " or ' or \ would not work, because they would be “escaped”, and your password would differ from what you actually typed.
Mind you, when that was happening, the default MySQL library didn't even contain the ability to pass parameters to queries. And when parameters were added with MySQLi, it happened with an over-engineered complicated system that totally discourages you from using it. Now, to add query parameters, you individually bind each of your query parameters to a variable, which it now references, and can set to whatever value you want. That's powerful, but complicates code for passing simple parameters, thus discouraging people from doing so, and still writing vulnerable code. To this day.
And if you're going to say that these are things of the distant past, think again. MySQL has been fixed, but shell commands still haven't been - on POSIX, there's no way to safely run a command composed out of execl() arguments, it always goes through the shell. Not only that invoked shell vulnerabilities like shellshock in the past, it means you have to carefully escape every argument, individually, with escapeshellarg(), which breaks badly on different locales, and is still prone to the programmer forgetting an argument, as with SQL queries without parameters.
To make it all harder, changes brought to fix these gaping holes of the language have been done in ways that would be disruptive to existing code, and done so often, all the while support for earlier releases have been made short. In other words, we break your code, and break it often. When magic quotes was removed, so was the ability to turn it off, making attempts to do so a fatal error, and complicating the upgrade between two versions that both lack the stupid thing.
Or, along with wanted fixes to the comparison operators, PHP 8 decided to make the signatures of methods during inheritance mandatory. Now, that technically makes sense, but in a language where you can dynamically take and pass the arguments, the new PHP version rejects code that does so with a fatal error, thereby breaking scripts that are correct. It's probably still the correct change, but add that to the fixes for outstanding issues that are also breaking, you're looking at a never-ending stream of breaking changes. And all code needs to be updated within a couple of years, because support for the PHP versions without the breakage is dropped fast. It's better than the Python 2 to 3 transition, which was one big pain in the ass, but at least that one you could put behind you. The PHP breakage is an ongoing process, and I have no confirmation it is done yet.
And let's not forget that the majority of GNU/Linux malware happens on PHP installations. And while the bad security of PHP scripts is not a fault of the language (except when it is, see above), and while the tendency of PHP users to download outdated unauthorized copies of commercial software even less so, PHP has become nesting grounds for malware. That's on top of the database leaks in which it has been complicit.