3000 less people than last week

It’s been allowed everywhere I have ever lived in the US.

The issues you’ll run into is they get all stupid about it if your service ever goes down. They’ll always blame your router/modem first. (Literally the entire neighborhood could be down and they’ll act like it’s something specific to your device). Sometimes they try to charge an install fee or a connection fee or other dumb shit.

I think their are local laws that require them to allow byod too. It depends on your area though.

He has a legit point that Steve did not give LTT a chance to comment. “He doesn’t have to!” Maybe. But he gave the other side a ton of airtime/chances to comment. It was very one sided and while GN made some good points, it felt like a hit piece. And Linux, imo rightfully, felt a little betrayed by a guy he’d worked with in the community.

His reaction wasn’t great but it was that of a guy who was defending his team and from someone he’d probably consider a ‘friend’ impugning his integrity and dragging them without giving them any opportunity to comment or even letting him know it was coming–two very common practices/norms.

A unflattering view of GN vid is that he felt threatened by LTT labs entering the space and he wanted to get out in front of that an expose"how unreliable" they are. He didn’t give LTT a heads up or allow them to comment because he knew they’d have a solid response. He blindsided him on purpose.

All that said, GN did Linus a favor. It accelerated his transition away from CEO and forced them to review their dumb production rates and the videos that are coming out now are better than ever.

Ironically, it left a sour taste in my mouth about Steve and I haven’t watched any of his videos since.

Sebatianalds

Linus got phished out of his twitter account recently.

Respect where it’s due. He owned it and was transparent so everyone can learn. Apparently he was at a pool party and just about to throw the burgers on the grill when he got an email that said his account was logged into from Turkey or Russia or someplace.

He panicked a bit, because of the last time his YouTube account was hacked he felt like acting quickly was the only thing that help it not be worse. I think he clicked the link in the email and “logged in” and boom. Got em.

Caught him at the right time and place and it all aligned to burn him.

Floatplane is Linus’ smartest decision he’s made. It’s going to be needed.

One thing that I’ve always found interesting is that silicon valley has a common start up strategy that is basically: do well enough to get bought buy your bigger competition. Basically, be a threat so your VCs can cash in when a Google, Facebook, etc buys you.

I’m other words, Silicon Valley has a start up culture that feeds an anticompetitive/anti-trust ecosystem. No one complains because they are all making money. It’s the users who slowly suffer and we end up were we are not with 5 companies running the modern web and Internet infrastructure.

They’d investigate the shit out of that but if someone broke into your house and stole your $2k TV they’d file a report and tell you to pay to change your locks.

There are dozens of us!!

Where is the list of products? It’s gotta be online somewhere.

Meh, not really. The risk with making it publicly available is that a nation state or leet hacker types can comb over it and find exploits or know what libraries/etc you are using so when a zero day pops up they can target you directly. Whereas without direct access to th source code they’d have to do their own enumeration and surveillance.

There is some security through obscurity.

Also, just want to point out: being open source doesn’t mean it’s more or less secure. There is plenty of vulnerable open source code out their.

Control Deez nuts

I don’t know exactly how crowd strike works, but this sounded like a “virus signatures” update (IE not a software update per se). And thats what caused the issue.

I think “real time virus protection” is why people use it so they expect the signatures to get updated asap/with little to no human intervention.

This is a crowd strike epic fail…for how they let their software blue screen systems with a virus signature update.

It depends on the software and situation of course, but if you are paying a contractor to develop/write a solution for you aka “government built” then the contractor that writes the code owns 0 of that code. It’s as if it was written by Uncle Sam himself.

Now, if the government buys software (licenses), the companies will retain ownership of their code. So if Uncle Sam bought Service Now licenses, the US doesn’t “own” service now. If service now extended capability to support the govt, the US still doesn’t own the license or that code in most cases.

Sometimes the government will even pay for a company to extend its software and that company can then sell that feature elsewhere. The government doesn’t get any benefit beyond the capability they paid for–ie they don’t own that code. That can work to the governments benefit though, because it can be used as a price negotiation point. “we know you can sell this feature to 50 different agencies if you develop it for us, so we only want to pay 25% of what you priced it at”.

But like it said, if it’s a development contract and the contractors build an app for the government, all of the contracts I’ve ever seen, have Uncle Sam owning it all. The govt could open source it if they wanted and the contractor would have no say.

That’s what we call GOTS products https://en.m.wikipedia.org/wiki/Government_off-the-shelf#:~:text=Government off-the-shelf (,for%20which%20it%20is%20created.

Vs COTS:

https://en.m.wikipedia.org/wiki/Commercial_off-the-shelf

With COTS, that’s where you’d see the ownership (depending on the contract/license agreement of course) remain with the vendor.

They explicitly do not, at least with every US federal contract I’ve ever seen. The govt owns the code that is written full stop.

Apple wants the next generation. Kids love their watches. Parents don’t want to spend $500+ on a kids watch.

This comment chain made me chuckle. It’s such an “internet comment section” …trope? I don’t know the right word.

I know.

My response was to the previous comment.

In a non Tesla, if someone is locked in a car, what happens? There isn’t some secret “let me in” button. You just break a window. This is a dumb story.

Then break the fucking window if it’s an actual emergency.

It highlighted some pretty glaring weaknesses in OSS as well. Over worked maintainers, unvetted contributers, etc etc.

The XZ thing seems like we got “lucky” more than anything. But that type of attack may have been successful already or in progress elsewhere. It’s not like people are auditing every line of every open source tool/library. It takes really talented devs and researchers to truly audit code.

I mean, I certainly couldn’t do it for anything semi advanced, super clever, or obfuscated the way the XZ thing was.

But I agree, that the fact we could audit it at all is a plus. The flip side is: an unvetted bad actor was able to publish these changes because of the nature of open source. I’m not saying bad actors can’t weasel their way into Microsoft, but that’s a much higher bar in terms of vetting.