Free Software Directory meeting on IRC: Friday, October 18, starting at 12:00 EDT (16:00 UTC) [Planet GNU]
Join the FSF and friends on Friday, October 18 from 12:00 to 15:00 EDT (16:00 to 19:00 UTC) to help improve the Free Software Directory.
Pluralistic: Of course we can tax billionaires (15 Oct 2024) [Pluralistic: Daily links from Cory Doctorow]
Billionaires are pretty confident that they can't be taxed – not just that they shouldn't be taxed, but rather, that it is technically impossible to tax the ultra-rich. They're not shy about explaining why, either – and neither is their army of lickspittles.
If it's impossible to tax billionaires, then anyone who demands that we tax billionaires is being childish. If taxing billionaires is impossible, then being mad that we're not taxing billionaires is like being mad at gravity.
Boy is this old trick getting old. It was already pretty thin when Margaret Thatcher rolled it out, insisting that "there is no alternative" to her program of letting the rich get richer and the poor go hungry. Dressing up a demand ("stop trying to think of alternatives") as a scientific truth ("there is no alternative") sets up a world where your opponents are Doing Ideology, while you're doing science.
Billionaires basically don't pay tax – that's a big part of how they got to be billionaires:
https://www.propublica.org/series/the-secret-irs-files
By cheating on their taxes, they get to keep – and invest – more money than less-rich people (who get to keep more money than regular people and poor people, obvs). They get so much money that they can "invest" it in corrupting the political process, for example, by flushing vast sums of dark money into elections to unseat politicians who care about finance crime and replace them with crytpo-friendly lawmakers who'll turn a blind eye to billionaires' scams:
https://www.newyorker.com/magazine/2024/10/14/silicon-valley-the-new-lobbying-monster
Once someone gets rich enough, they acquire impunity. They become too big to fail. They become too big to jail. They become too big to care. They buy presidents. They become president.
A decade ago, Thomas Piketty published his landmark Capital in the 21st Century, tracing three centuries of global capital flows and showing how extreme inequality creates political instability, leading to bloody revolutions and world wars that level the playing field by destroying most of the world's capital in an orgy of violence, with massive collateral damage:
https://memex.craphound.com/2014/06/24/thomas-pikettys-capital-in-the-21st-century/
Piketty argued that unless we taxed the rich, we would attain the same political instability that provoked the World Wars, but in a nuclear-tipped world that was poised on the brink of ecological collapse. He even laid out a program for this taxation, one that took accord of all the things rich people would try to hide their assets.
Today, the destruction that Piketty prophesied is on our doorstep, and all over the world, political will is gathering to do something about our billionaire problem. The debate rages from France to dozen-plus US states that are planning wealth taxes on the ultra-rich.
Wherever that debate takes hold, billionaires and their proxies pop up to tell us that we're Doing Ideology, that there is no alternative, and that it is literally impossible to tax the ultra-rich.
In a new blog post, Piketty deftly demolishes this argument, showing how thin the arguments for the impossibility of a billionaire tax really is:
https://www.lemonde.fr/blog/piketty/2024/10/15/how-to-tax-billionaires/
First, there's the argument that the ultra-rich are actually quite poor. Elon Musk and Mark Zuckerberg don't have a lot of money, they have a lot of stock, which they can't sell. Why can't they sell their stock? You'll hear a lot of complicated arguments about illiquidity and the effect on the share-price of a large sell-off, but they all boil down to this: if we make billionaires sell a bunch of their stock, they will be poorer.
No duh.
Piketty has an answer to the liquidity crisis of our poormouthing billionaires:
If finding a buyer is challenging, the government could accept these shares as payment for taxes. If necessary, it could then sell these shares through various methods, such as offering employees to purchase them, which would increase their stake in the company.
Though Piketty doesn't say so, billionaires are not actually poor. They have fucktons of cash, which they acquire through something called "buy, borrow, die," which allows them to create intergenerational dynastic wealth for their failsons:
https://finance.yahoo.com/news/buy-borrow-die-rich-avoid-140004536.html
Billionaires know they're not poor. They even admit it, when they say, "Okay, but the other reason it's impossible to tax us is that we're richer and therefore more powerful than the governments that want to try it."
Piketty points out the shell-game at the core of this argument: the free movement of money that allows for tax-dodging was created by governments. They made these laws, so they can change them. Governments that can't exercise their sovereign power to tax the wealthy end up taxing the poor, eroding their legitimacy and hence their power. Taxing the rich – a wildly popular move – will make governments more powerful, not less.
Big countries like the US (and federations like the EU) have a lot of power. The US ended Swiss banking secrecy and manages to tax Americans living abroad. There's no reason that France couldn't pass a wealth-tax that applies to people based on their historical residency: a 51 year old French billionaire who decamps to Switzerland to duck a wealth tax after 50 years in France could be held liable for 50/51 of the wealth tax.
The final argument Piketty takes up is the old saw that taxing the rich is illegal, or, if it were made legal, would be unconstitutional. As Piketty says, rich people have taken this position every single time they faced meaningful tax enforcement, and they have repeatedly lost this fight. France has repeatedly levied wealth taxes, as long ago as 1789 and as recently as 1945.
Taxing the ultra-rich isn't like the secret of embalming Pharaohs – it's not a lost art from a fallen civilization. The US top rate of tax in 1944 was 97%. The postwar top rate from 1945-63 was 94%, and it was 70% from 1965-80. These was the period of the largest expansion of the US economy in the nation's history. These are the "good old days" Republicans say they want to return to.
The super-rich keep getting richer. In France, the 500 richest families were worth a combined €200b in 2010. Today, it's €1.2 trillion. No wonder a global wealth tax is at the top of the agenda for next month's G20 Summit in Rio.
Here in the US – where money can easily move across state lines and where multiple states are racing each other to the bottom to be the best onshore-offshore tax- and financial secrecy-haven – state-level millionaire taxes are kicking ass.
Massachusetts's 2024 millionaire tax has raised more than $1.8b, exceeding all expectations (it was originally benchmarked at $1b), by taxing annual income in excess of $1m at an additional 4%:
This is exactly the kind of tax that billionaires say is impossible. It's so easy to turn ordinary income in sheltered income – realizing it as a capital gain, say – so raising taxes on income will do nothing. Who are you gonna believe, billionaires or the 1.8 billion dead presidents lying around the Massachusetts Department of Revenue?
But say you are worried that taxing ordinary income is a nonstarter because of preferential capital gains treatment. No worry, Washington State has you covered. Its 7% surcharge on capital gains in excess of $250,000 also exceeded all expectations, bringing in $600m more than expected in its first year – a year when the stock market fell by 25%:
https://pluralistic.net/2023/06/03/when-the-tide-goes-out/#passive-income
Okay, but what if all those billionaires flee your state? Good riddance, and don't let the door hit you on the way out. All we need is an exit tax, like the one in California, which levies a one-time 0.4% tax on net worth over $30m for any individual who leaves the state.
Billionaires are why we can't have nice things – a sensible climate policy, workers' rights, a functional Supreme Court and legislatures that answer to the people, rather than deep-pocketed donors.
The source of billionaires' power isn't mysterious: it's their money. Take away the money, take away the power. With more than a dozen states considering wealth taxes, we're finally in a race to the top, to see which state can attack the corrosive power of extreme wealth most aggressively.
Legal complaint filed against Fifa's 'abuse of dominance' https://www.bbc.com/sport/football/articles/c981203e61qo
Stop Project 2025 Comic https://stopproject2025comic.org (h/t Sumana Harihareswara)
#15yrsago Why Your Idea to Save Journalism Won’t Work (a checklist) https://www.metafilter.com/85761/How-To-Save-Media#2776753
#15yrsago Brit copyright group says, “No laptops allowed in cinemas” https://memex.craphound.com/2009/10/15/brit-copyright-group-says-no-laptops-allowed-in-cinemas/
#15yrsago Complex derivatives are “intractable” — you can’t tell if they’re being tampered with https://freedom-to-tinker.com/2009/10/15/intractability-financial-derivatives/
#10yrsago Jean Baudrillard predicted the Pumpkin Spice Latte http://www.critical-theory.com/understanding-jean-baudrillard-with-pumpkin-spice-lattes/
#10yrsago Obama administration has secured 526 months of jail time for leakers https://www.aclu.org/news/free-speech/leak-prosecutions-obama-takes-it-11-or-should-we
#5yrsago Samuel Delany’s 1977 Star Wars review: why is the future so damned white and male? https://memex.craphound.com/2019/10/15/samuel-delanys-1977-star-wars-review-why-is-the-future-so-damned-white-and-male/
#5yrsago The rich poop different: measuring inequality with sewage https://www.pnas.org/doi/10.1073/pnas.1910242116
#5yrsago 1 in 14 Trump appointees is a former lobbyist, four times the rate under Obama https://www.propublica.org/article/we-found-a-staggering-281-lobbyists-whove-worked-in-the-trump-administration#169046
#5yrsago The first-ever mandatory California drug price report reveals Big Pharma’s farcical price-gouging https://californiahealthline.org/news/californias-new-transparency-law-reveals-staggering-rise-in-wholesale-drug-prices/
#5yrsago The far right is dominating the information wars through “keyword signaling” https://www.wired.com/story/devin-nunes-and-the-dark-power-of-keyword-signaling/
#5yrsago Medallion Status: comparison is the thief of joy, and John Hodgman is the thief-taker https://memex.craphound.com/2019/10/15/medallion-status-comparison-is-the-thief-of-joy-and-john-hodgman-is-the-thief-taker/
SOSS Fusion (Atlanta), Oct 22
https://sossfusion2024.sched.com/speaker/cory_doctorow.1qm5qfgn
Eagle Eye Books (Decatur), Oct 23
https://eagleeyebooks.com/event/2024-10-23/cory-doctorow
TusCon (Tucson), Nov 8-10
https://tusconscificon.com/
International Cooperative Alliance (New Delhi), Nov 24
https://icanewdelhi2024.coop/welcome/pages/Programme
ISSA-LA Holiday Celebration keynote (Los Angeles), Dec 18
https://issala.org/event/issa-la-december-18-dinner-meeting/
Was There Ever An Old, Good Internet? (David Graeber
Institute)
https://www.youtube.com/watch?v=T6Jlxx5TboE
Go Fact Yourself
https://maximumfun.org/episodes/go-fact-yourself/ep-158-aida-rodriguez-cory-doctorow/
"The Lost Cause:" a solarpunk novel of hope in the climate emergency, Tor Books (US), Head of Zeus (UK), November 2023 (http://lost-cause.org). Signed, personalized copies at Dark Delicacies (https://www.darkdel.com/store/p3007/Pre-Order_Signed_Copies%3A_The_Lost_Cause_HB.html#/)
"The Internet Con": A nonfiction book about interoperability and Big Tech (Verso) September 2023 (http://seizethemeansofcomputation.org). Signed copies at Book Soup (https://www.booksoup.com/book/9781804291245).
"Red Team Blues": "A grabby, compulsive thriller that will leave you knowing more about how the world works than you did before." Tor Books http://redteamblues.com. Signed copies at Dark Delicacies (US): and Forbidden Planet (UK): https://forbiddenplanet.com/385004-red-team-blues-signed-edition-hardcover/.
"Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin", on how to unrig the markets for creative labor, Beacon Press/Scribe 2022 https://chokepointcapitalism.com
"Attack Surface": The third Little Brother novel, a standalone technothriller for adults. The Washington Post called it "a political cyberthriller, vigorous, bold and savvy about the limits of revolution and resistance." Order signed, personalized copies from Dark Delicacies https://www.darkdel.com/store/p1840/Available_Now%3A_Attack_Surface.html
"How to Destroy Surveillance Capitalism": an anti-monopoly pamphlet analyzing the true harms of surveillance capitalism and proposing a solution. https://onezero.medium.com/how-to-destroy-surveillance-capitalism-8135e6744d59?sk=f6cd10e54e20a07d4c6d0f3ac011af6b) (signed copies: https://www.darkdel.com/store/p2024/Available_Now%3A__How_to_Destroy_Surveillance_Capitalism.html)
"Little Brother/Homeland": A reissue omnibus edition with a new introduction by Edward Snowden: https://us.macmillan.com/books/9781250774583; personalized/signed copies here: https://www.darkdel.com/store/p1750/July%3A__Little_Brother_%26_Homeland.html
"Poesy the Monster Slayer" a picture book about monsters, bedtime, gender, and kicking ass. Order here: https://us.macmillan.com/books/9781626723627. Get a personalized, signed copy here: https://www.darkdel.com/store/p2682/Corey_Doctorow%3A_Poesy_the_Monster_Slayer_HB.html#/.
Unauthorized Bread: a middle-grades graphic novel adapted from my novella about refugees, toasters and DRM, FirstSecond, 2025
Today's top sources:
Currently writing:
A Little Brother short story about DIY insulin PLANNING
Picks and Shovels, a Martin Hench noir thriller about the heroic era of the PC. FORTHCOMING TOR BOOKS FEB 2025
Latest podcast: Spill, part one (a Little Brother story) https://craphound.com/littlebrother/2024/10/06/spill-part-one-a-little-brother-story/
This work – excluding any serialized fiction – is licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.
https://creativecommons.org/licenses/by/4.0/
Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.
Blog (no ads, tracking, or data-collection):
Newsletter (no ads, tracking, or data-collection):
https://pluralistic.net/plura-list
Mastodon (no ads, tracking, or data-collection):
Medium (no ads, paywalled):
Twitter (mass-scale, unrestricted, third-party surveillance and advertising):
Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):
https://mostlysignssomeportents.tumblr.com/tagged/pluralistic
"When life gives you SARS, you make sarsaparilla" -Joey "Accordion Guy" DeVilla
Dirk Eddelbuettel: qlcal 0.0.13 on CRAN: Small Calendar Update [Planet Debian]
The thirteenth release of the qlcal package arrivied at CRAN today.
qlcal delivers the calendaring parts of QuantLib. It is provided (for the R package) as a set of included files, so the package is self-contained and does not depend on an external QuantLib library (which can be demanding to build). qlcal covers over sixty country / market calendars and can compute holiday lists, its complement (i.e. business day lists) and much more. Examples are in the README at the repository, the package page, and course at the CRAN package page.
This releases synchronizes qlcal with the QuantLib release 1.36 (made this week) and contains some minor updates to two calendars.
Changes in version 0.0.13 (2024-10-15)
Synchronized with QuantLib 1.36 released yesterday
Calendar updates for South Korea and Poland
Courtesy of my CRANberries, there is a diffstat report for this release. See the project page and package documentation for more details, and more examples. If you like this or other open-source work I do, you can sponsor me at GitHub.
This post by Dirk Eddelbuettel originated on his Thinking inside the box blog. Please report excessive re-aggregation in third-party for-profit settings.
Dirk Eddelbuettel: RcppDate 0.0.4: New Upstream Minor [Planet Debian]
RcppDate wraps the featureful date library written by Howard Hinnant for use with R. This header-only modern C++ library has been in pretty wide-spread use for a while now, and adds to C++11/C++14/C++17 what will be (with minor modifications) the ‘date’ library in C++20.
This release, the first in 3 1/2 years, syncs the code with the recent date 3.0.2 release from a few days ago. It also updates a few packaging details such as URLs, badges or continuous integration.
Changes in version 0.0.4 (2024-10-14)
Updated to upstream version 3.0.2 (and adjusting one pragma)
Several small updates to overall packaging and testing
Courtesy of my CRANberries, there is also a diffstat report for the most recent release. More information is available at the repository or the package page.
If you like this or other open-source work I do, you can sponsor me at GitHub.
This post by Dirk Eddelbuettel originated on his Thinking inside the box blog. Please report excessive re-aggregation in third-party for-profit settings.
New EFF Report Provides Guidance to Ensure Human Rights are Protected Amid Government Use of AI in Latin America [Deeplinks]
Governments increasingly rely on algorithmic systems to support consequential assessments and determinations about people’s lives, from judging eligibility for social assistance to trying to predict crime and criminals. Latin America is no exception. With the use of artificial intelligence (AI) posing human rights challenges in the region, EFF released today the report Inter-American Standards and State Use of AI for Rights-Affecting Determinations in Latin America: Human Rights Implications and Operational Framework.
This report draws on international human rights law, particularly standards from the Inter-American Human Rights System, to provide guidance on what state institutions must look out for when assessing whether and how to adopt artificial intelligence AI and automated decision-making (ADM) systems for determinations that can affect people’s rights.
We organized the report’s content and testimonies on current challenges from civil society experts on the ground in our project landing page.
The report comes amid deployment of AI/ADM-based systems by Latin American state institutions for services and decision-making that affects human rights. Colombians must undergo classification from Sisbén, which measures their degree of poverty and vulnerability, if they want to access social protection programs. News reports in Brazil have once again flagged the problems and perils of Córtex, an algorithmic-powered surveillance system that cross-references various state databases with wide reach and poor controls. Risk-assessment systems seeking to predict school dropout, children’s rights violations or teenage pregnancy have integrated government related programs in countries like México, Chile, and Argentina. Different courts in the region have also implemented AI-based tools for a varied range of tasks.
EFF’s report aims to address two primary concerns: opacity and lack of human rights protections in state AI-based decision-making. Algorithmic systems are often deployed by state bodies in ways that obscure how decisions are made, leaving affected individuals with little understanding or recourse.
Additionally, these systems can exacerbate existing inequalities, disproportionately impacting marginalized communities without providing adequate avenues for redress. The lack of public participation in the development and implementation of these systems further undermines democratic governance, as affected groups are often excluded from meaningful decision-making processes relating to government adoption and use of these technologies.
This is at odds with the human rights protections most Latin American countries are required to uphold. A majority of states have committed to comply with the American Convention on Human Rights and the Protocol of San Salvador. Under these international instruments, they have the duty to respect human rights and prevent violations from occurring. States’ responsibilities before international human rights law as guarantor of rights, and people and social groups as rights holders—entitled to call for them and participate—are two basic tenets that must guide any legitimate use of AI/ADM systems by state institutions for consequential decision-making, as we underscore in the report.
Building off extensive research of Inter-American Commission on Human Rights’ reports and Inter-American Court of Human Rights’ decisions and advisory opinions, we devise human rights implications and an operational framework for their due consideration in government use of algorithmic systems.
We detail what states’ commitments under the Inter-American System mean when state bodies decide to implement AI/ADM technologies for rights-based determinations. We explain why this adoption must fulfill necessary and proportionate principles, and what this entails. We underscore what it means to have a human rights approach to state AI-based policies, including crucial redlines for not moving ahead with their deployment.
We elaborate on what states must observe to ensure critical rights in line with Inter-American standards. We look particularly at political participation, access to information, equality and non-discrimination, due process, privacy and data protection, freedoms of expression, association and assembly, and the right to a dignified life in connection to social, economic, and cultural rights.
Some of them embody principles that must cut across the different stages of AI-based policies or initiatives—from scoping the problem state bodies seek to address and assessing whether algorithmic systems can reliably and effectively contribute to achieving its goals, to continuously monitoring and evaluating their implementation.
These cross-cutting principles integrate the comprehensive operational framework we provide in the report for governments and civil society advocates in the region.
Our report’s recommendations reinforce that states must ensure transparency at every stage of AI deployment. Governments must provide clear information about how these systems function, including the categories of data processed, performance metrics, and details of the decision-making flow, including human and machine interaction.
It is also essential to disclose important aspects of how they were designed, such as details on the model’s training and testing datasets. Moreover, decisions based on AI/ADM systems must have a clear, reasoned, and coherent justification. Without such transparency, people cannot effectively understand or challenge the decisions being made about them, and the risk of unchecked rights violations increases.
Leveraging due process guarantees is also covered. The report highlights that decisions made by AI systems often lack the transparency needed for individuals to challenge them. The lack of human oversight in these processes can lead to arbitrary or unjust outcomes. Ensuring that affected individuals have the right to challenge AI-driven decisions through accessible legal mechanisms and meaningful human review is a critical step in aligning AI use with human rights standards.
Transparency and due process relate to ensuring people can fully enjoy the rights that unfold from informational self-determination, including the right to know what data about them are contained in state records, where the data came from, and how it’s being processed.
The Inter-American Court recently recognized informational self-determination as an autonomous right protected by the American Convention. It grants individuals the power to decide when and to what extent aspects of their private life can be revealed, including their personal information. It is intrinsically connected to the free development of one’s personality, and any limitations must be legally established, and necessary and proportionate to achieve a legitimate goal.
Social participation is another cornerstone of the report’s recommendations. We emphasize that marginalized groups, who are most likely to be negatively affected by AI and ADM systems, must have a voice in how these systems are developed and used. Participatory mechanisms must not be mere box-checking exercises and are vital for ensuring that algorithmic-based initiatives do not reinforce discrimination or violate rights. Human Rights Impact Assessments and independent auditing are important vectors for meaningful participation and should be used during all stages of planning and deployment.
Robust legal safeguards, appropriate institutional structures, and effective oversight, often neglected, are underlying conditions for any legitimate government use of AI for rights-based determinations. As AI continues to play an increasingly significant role in public life, the findings and recommendations of this report are crucial. Our aim is to make a timely and compelling contribution for a human rights-centric approach to the use of AI/ADM in public decision-making.
We’d like to thank the consultant Rafaela Cavalcanti de Alcântara for her work on this report, and Clarice Tavares, Jamila Venturini, Joan López Solano, Patricia Díaz Charquero, Priscilla Ruiz Guillén, Raquel Rachid, and Tomás Pomar for their insights and feedback to the report.
Scarecrow’s 2024 Psychotronic Challenge: Day 15 [The Stranger]
"…If the gatekeeper permits." by Lindsay Costello
15. YOU TOO, SHALL PASS: …If the gatekeeper permits.
The BeyondAt the risk of a hot take, here's something I've realized after many Halloweens spent watching giallo films: If you think you want to see an Argento flick, what you're actually looking for is Fulci.
No shade to Argento—he's a master of style and atmosphere. (He might've even invented bisexual lighting by accident.) But Lucio Fulci delivered giallo at its best: His films are psychological, stylish, and, most importantly, brutal. Fulci told killer stories that aren't mired in misogyny or aesthetics, and he did it all with a fraction of Argento's budget and audience. Fulci's practical effects were grotesque and imaginative. (If melting faces or eyeball-chewing spiders aren't your thing, steer clear of his 1981 film The Beyond.)
The film shrieks to life with an old-timey, sepia-tinted crucifixion scene and grows gnarlier from there. When chill New Yorker Liza inherits an old New Orleans hotel (cool), she's startled to discover that it's a gateway to hell (not cool). Don't poke the portal, by the way: The hotel's maintenance workers fall off the roof and have their eyeballs gouged out by reanimated corpses.
Liza's neighbor Emily, a luminous and seemingly not-entirely-human blind woman, might be the only character who understands the hotel's past. With her German Shepherd service dog Dicky by her side, Emily plays a haunting piano motif that complements Fabio Frizzi's eerie, atmospheric synth soundscapes. (Word of warning: In the hell-realm of The Beyond, even the dog can't be trusted.)
Then, in a scene so drawn-out it's almost laughable, a man is paralyzed and has his face—eyes included—devoured by a swarm of spiders. Yeah, there's a lot of "eye stuff" in this film. Fulci might've been making a statement about vision and blindness and witnessing evil, but The Beyond is so drenched in a surreal, dreamy Southern haze that its deeper meaning doesn't need to be named. It washes over you. The Beyond is a somatic experience; it's a film that chills your bones while making you sweat.
I won’t spoil the ending entirely, but it drives my point home. Imagine spending eternity trapped in a painting of Hell—not the real thing, but close enough. A gateway to nothing. A bleak, gray wasteland that stretches endlessly in every direction. That's true terror.
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
Everybody's maxing out on Wordle today. I stopped with one step left. Stumped. I may lose my streak today. A lot of people are.
What's up with WordPress? [Scripting News]
A long time ago I ran a free service called weblogs.com. It was the early days of blogs. RSS didn't exist yet, so there was no way to find out which blogs had new stuff other than going through your blogroll and clicking links.
So I built a simple server, running in Frontier, that handled pings. When you updated your blog, you'd send a message to weblogs.com saying your blog updated. It would then read the HTML of the blog and verify that it changed, and it would be added to a list of blogs that updated, in reverse chronologic order. It also published an XML version of the update list called changes.xml, so if you wanted to run a search engine off the list, you could do that too.
There were several ways to send a ping. You could go to a web page and enter the URL of your blog. Or you could save the URL as a bookmark and click the bookmark when you updated. Or if you used blogging software like our Manila or Radio UserLand, or later EditThisPage.com or weblogs.com (which eventually hosted blogs itself), it could ping on your behalf, automatically.
Aside: Here's a snapshot of the weblogs.com site, preserved.
A number of search sites appeared. And we were happy, until another developer, funded by venture capitalists, who expected a return on their investment, built on our open and free changes.xml list, started asking for and receiving pings on their own, and (key point) they didn't make their change list public. This struck me as highly un-weblike and unfair, but they could do it and we had to live with it.
Based on what Matt has been saying it sounds to me like it's something like our experience. Except weblogs.com was a short term thing, and not a business, and it didn't last twenty years, and it didn't have a payroll to support.
But it still felt wrong that they weren't giving back as they received. If it had persisted like WordPress has, it would have eventually been a seriously diseconomic and unsustainable problem. And I can imagine I might write about it publicly as Matt has and maybe even get a famous lawyer like Neal Katyal to advise me. And here we are.
Have we heard anything from the other side, or anyone who is familiar with what their position might be. Do they not feel obligated to support the continued development of WordPress or maybe there's another issue we haven't heard about.
I can't imagine that Matt would make such a big deal out of this if it weren't actually a big deal. He probably knew in advance how disruptive this would be. And I imagine the others knew it would be too and counted on him not wanting to make a fuss.
I have gotten embroiled in these kinds of things in the past, and I don't like it. I love to make software and make users happy and then make more software, round and round. Anything that involves lawyers is not me doing what I was made to do.
And I do see a silver lining. As with twitter-like systems, I now see the possibilty to help WordPress serve writers better in the future. Before this, people didn't think change was possible in the WordPress world, like they didn't see the possibility of change with Twitter. But now Twitter has quite a bit of viable competition. I know that WordPress could be better tuned for writers, and the product has a very nice API that would make it possible for lots of writing tools to flourish. It is a strong platform that's debugged, scaled, documented and worked on for a long time, and they don't tend to break users. And where commercial vendors like Facebook and Twitter often have excellent technology, ultimately they are run by execs and bankers who don't believe in being open, where this is something that has been deeply ingrained in the WordPress culture from the beginning and would be hard to change and that's a good thing for users and developers.
Here's the exciting part -- between WordPress and Twitter lies a product that would bring the web back to life. Imagine a twitter-like system with the writers features of WordPress. Amazingly, we are on the cusp of that being a reality.
There's lots of opportunity to better serve writers here, and that's what I love to do, and honestly I think Ghost and Substack have left themselves open to a writing environment built on WordPress that doesn't try to lock users in. And at the same time, I think we can use this platform to help all the twitter-like services to support all kinds of writing, not just severely limited tweets typed into tiny little text boxes. Somewhere along the line they got the wrong idea that taking features out of the web was a good thing. I want to bring these features back so we can get going again with the web as a writer's platform.
Anyway, I don't need to think anyone is right or wrong here, and I don't think anyone else should either. I think this platform is very nicely open and we can do lots of interesting new stuff here. I hope to open a new thread here, focused on writers and the web. It's been too long.
LibreSSL 4.0.0 released [LWN.net]
Version 4.0.0 of the LibreSSL TLS/cryptography stack has been released. Changes include a cleanup of the MD4 and MD5 implementations, removal of unused DSA methods, changes in libtls protocol parsing to ignore unsupported TLSv1.1 and TLSv1.0 protocols, and many more internal changes and bug fixes.
Podcasts, columns, and more at Savage.Love. by Dan Savage I am a 28-year-old cisgender sex-repulsed asexual gay man. While some asexuals choose to have sex for the pleasure it provides their partner, sex-repulsed asexuals like me do not engage in sexual activity and do not wish to be exposed to it. As a sex-repulsed asexual gay man, I feel alienated when I enter gay spaces like bars, parties, clubs. Gay allosexuals don’t seem to be aware that hypersexualized spaces make asexual men like me feel unsafe and unwanted. We are forced to choose between being isolated or entering spaces where other gay men are kissing, grinding, or worse. Also, bartenders are often shirtless, there are go-go dancers, and even the posters on the walls feature sexually explicit imagery. When gay sex is foregrounded like this it makes gay men like me feel like we are not welcome in the gay community. And to answer the obvious question: I go…
[ Read more ]
Mayor Bruce Harrell’s Budget Could Make You Homeless [The Stranger]
The Mayor Rips Up the Social Safety Net but Readies the Broom to Sweep Away Anyone Who Falls Through by Hannah Krieg
In August, Mayor Bruce Harrell bragged that his #OneSeattle Homelessness Action Plan managed to decrease homelessness encampments by 61 percent over the last two years. At the same time, the 2024 Point-in-Time Count tallied more than 16,000 people experiencing homelessness in King County, the largest number ever reported in the survey and a 23 percent increase over the last two years.
The ideology that fed those disparate results lies bare in Harrell’s 2025-2026 budget proposal, wherein he defunds stuff that houses people in order to fund stuff that temporarily pushes homeless people around town, allowing homelessness to fester out of sight. Essentially, Harrell is giving the city council a choice as they rework his budget in the coming weeks—treat homelessness as an aesthetic issue, or treat it as a humanitarian crisis.
BTW We Are in CrisisIn case you’ve missed it: Seattle, along with most of the United States, is in a housing crisis. To dig the city out of the crisis, we need 112,000 new homes by 2044, according to a recent report from the Seattle Office of Housing (OH). That total includes more than 41,000 private market units for those making between 80 and 120 percent of the area median income (AMI), more than 42,000 subsidized units for people making between 0 and 80 percent AMI, and then about another 28,000 units of permanent supportive housing for those with high-acuity needs.
All that means Seattle needs to fund at least 2,100 units of affordable housing every year for the next 20 years. Harrell’s budget doesn’t do that, not even when combined with the couple hundred units the Housing Levy will pay for every year.
Instead, in his 2025-2026 budget proposal, the mayor defunds affordable housing by raiding $330 million from the JumpStart Payroll Expense tax, a tax on the city’s largest businesses that must reserve 62 percent of its revenue to affordable housing. Harrell's proposal does pump up affordable housing investments to a historic $342.2 million in 2025, representing a 2.5 percent increase from 2024. But, had he honored the legally mandated JumpStart spending plan, he would have allocated an additional $204 million to affordable housing.
Doing a little back-of-napkin math here, let’s assume a unit of affordable housing costs about $320,000, as estimated in the Housing Levy. In that case, Harrell’s "historic" budget funds about 1,068 units a year. If he hadn’t raided JumpStart, then he would have $526.2 million from all streams to fund about 1,706 affordable units in 2025. To fund the 2,100 units we need to do our part this year, he would need to allocate about $630 million total to affordable housing. If he really believed we were in a housing crisis, then he could reach that total by combining the money he budgets for housing this year, plus the affordable housing funds he stole from the JumpStart tax, plus the $100 million for new programming that he added this year to “activate” spaces and install CCTV cameras, mainly to show off to World Cup tourists in 2025. But he didn't.
Staying HousedAside from short-changing affordable housing construction funding, Harrell’s budget proposal also pokes holes in our social safety net, weakening the City’s ability to protect workers from their bosses and renters from their landlords.
Helping tenants stay in their homes, whether by protecting their wages so they can afford rent or by evening the playing field when it comes to evictions, can help prevent homelessness. On that former score, Harrell’s budget proposal cut more than $600,000 from the Office of Labor Standards (OLS), the City’s only mechanism to enforce its 19 unique labor laws, including the minimum wage ordinance, the wage theft ordinance, the Fair Chance Employment ordinance, four laws specifically protecting hotel workers, and three laws protecting gig delivery drivers.
The cuts include three full-time positions; $216,000 from general operating expenses, $100,000 from outreach to marginalized small business owners, and in 2026 Harrell plans to cut one-third of the funding dedicated to helping spread awareness of workers’ rights in partnership with community-based organizations. All of this limits the agency’s ability to enforce labor standards. According to the budget document, the mayor’s proposal “maintains core services” of OLS at a “reduced scale” in order to preserve “critical City services” in the face of the $250 million shortfall in 2025.
But labor leaders argue that OLS does provide “critical City services.”
MLK Labor Executive Secretary-Treasurer Katie Garrow said the nation recognizes Seattle as a vanguard for workers’ rights given its early adoption of the $15 minimum wage and its protections of gig delivery drivers. But none of those rights matter if the City does not enforce them, she says.
Garrow noted that every year employers steal a stunning $15 billion from workers in the United States. According to the Economic Opportunity Institute, the total value of property stolen through robberies, burglaries, and carjackings adds up to less than 4 percent of what bosses steal from their workers each year. Without enforcement from OLS, the City would allow companies to “continue this crime with impunity because a minimum wage worker does not have the money or time to litigate a claim against a multi-billion dollar corporation,” Garrow said.
And it's not like trimming a little fat from the already slim department will fill Harrell’s hole. In 2023, the City spent $8.4 million in total on the entire department, accounting for just 0.14 percent of the City’s operating budget. That year alone, OLS recouped more than $4.4 million in wages for workers who were wronged by their bosses. When the City gave the agency more money in 2022, about $12.1 million, it raked in even more for workers–about $7.7 million. In total, since its inception in 2014, OLS has recouped more than $42 million for workers.
So maybe labor law enforcement is not a “critical” service in Harrell’s eyes, but for the more than 94,000 workers with more money in their pockets thanks to the OLS, enforcement could mean the difference between making your rent on time and getting evicted, which often leads to homelessness.
The mayor’s budget also limits the City’s ability to protect renters, leaving them all the more vulnerable to eviction and homelessness. In his proposal, Harrell cut tenant services funding from $2.6 million in 2024 to just $1.8 million. And instead of renewing additional one-time funding of about $1 million for rental assistance, he only designated about $527,000 of the $1.8 million to pay rent for struggling tenants. That leaves tenant services at a measly $1.2 million.
Kate Rubin, the co-executive director of tenant advocacy group Be:Seattle, said $1.2 million is “nowhere near enough to support tenant education, organizing, counseling, and legal services,” all of which fall under the umbrella of “tenant services.”
The City contracts with organizations such as Be:Seattle to provide tenant services. Be:Seattle, with just two paid staff members, serves about 785 renters per year, according to Rubin.
“Renters typically come to us frustrated by unresolved issues,” Rubin said in an email to Council Member Tammy Morales’s staff. “We equip them with knowledge of their rights, guide them in navigating landlord-tenant relationships, and teach strategic organizing skills. This knowledge spreads through their communities, often reaching those who might not otherwise have access.”
Without funding this work, Rubin said “disputes would escalate, landlords would exploit renters unchecked, and more people would be at risk of displacement and homelessness.”
The mayor’s proposal also cuts $50,000 promised in a previous budget to establish a work group to help create an Office of Rental Housing Standards. That office would help author new renter protections and enforce existing ones. As Garrow said of labor standards, laws protecting renters mean little when they’re not strongly enforced.
Stop the SweepsAs he blamed the budget deficit for every cut to programs that benefit working people, Harrell found ways to increase spending for sweeps, seemingly his homelessness solution of choice.
His budget bolsters sweeps by adding $880,000 to the Unified Care Team (UCT), a cross-department team that conducts encampment removals. The new funds will pay for 11 new full-time positions and enable the UCT to conduct sweeps seven days a week rather than just five.
And boy does the UCT already make use of those five days. According to Real Change, the City of Seattle conducted a record-breaking 2,827 sweeps in 2023, an increase of 207 percent from the 922 conducted in 2022. That means the City conducted about 11.3 sweeps per day, excluding weekends and the 12 recognized City holidays. If the UCT kept that pace on their new seven-day schedule, then the City could theoretically conduct 4,000 sweeps a year.
But more sweeps does not mean less homelessness. At most, 11 percent of the City’s shelter referrals actually lead to people taking the offer, according to a report analyzing the UCT’s performance between July and September of 2023. Publicola reported that people often rejected the shelter referrals because the UCT offered them a stay at an overnight, congregate shelter rather than at a spot in a tiny shelter village, or, most desirably, in actual housing.
And that’s when the UCT makes the offer at all. According to Real Change, more than 99 percent of all sweeps conducted by the UCT in 2023 were considered “obstruction” sweeps, which means the City does not have to give three days notice or offer shelter upon removal.
Alison Eisinger, the executive director of the Coalition on Homelessness (Seattle/King County), tells The Stranger that investing in the sweeps team amounts to the “least effective and most cynical response to homelessness in our community.”
“Most people understand there is no magic wand,” says Eisinger. “It takes real and sustained work to help people get the housing, shelter, health care, and other supports they need.”
Eisinger says the City would see better results if Harrell or the council took the funding from sweeps and put it toward regional approaches that have more success.
For example, the state’s slower, more methodical Encampment Resolution Program has closed 47 encampments while bringing 70 percent of their residents–or about 1,200 people–inside. The model works particularly well in King County, which managed to close 18 encampments and bring 90 percent of the people inside. According to the Seattle Times, the Encampment Resolution Program found more success because it offered better, more permanent shelter options.
While the Mayor did not renew $2 million in one-time funding from 2023 to 2024 to CoLEAD, the group that conducts the slower, more effective sweeps, CoLEAD Director Lisa Daugaard said the State pays for the removals, and so the future of the program depends on who wins the gubernatorial race and who makes up the State Legislature.
From the MayorThe Mayor’s office disagrees with the framing that his budget perpetuates homelessness, and it argues that to say so is to neglect “the nuance of the homelessness crisis, the $250 million general fund deficit, and the full breadth of the mayor's work across all of these issues,” mayoral spokesperson Jamie Housen said in an email to The Stranger.
Housen noted that Harrell delivered historic investments to affordable housing in the face of the deficit and saved 300 existing shelter beds whose funding would have otherwise lapsed. Of course, the budget deficit excuse sort of falls flat when you consider he also added $100 million in new spending throughout the budget.
Housen also said Harrell attempted to increase housing supply outside of the budget. He streamlined the design review process, made it easier to build ADUs, supported a new redevelopment plan for affordable housing at Fort Lawton, and updated the City’s maritime and industrial lands policy to create more opportunities to build housing, he said. Those policies add capacity, but they do not fund housing. The Fort Lawton plan will allow for as many as 500 units. The maritime and industrial land update will allow for about 3,000 units over 20 years, according to the mayor’s press release.
He also mentioned Harrell’s One Seattle Comprehensive Plan, but that plan did not exactly impress anyone, as it only plans for about half the housing we need.
As for the UCT, Housen said the team receives a “fraction” of what the City invests into homelessness services, shelter, and permanent housing. Still, he said UCT’s approach is “making a difference.” Seattleites see fewer tent and RV encampments, less gun violence and fires related to homelessness, and more shelter referrals, he said.
Housen also casted doubt on the Point-In-Time survey, which found an increase in homelessness under Harrell’s watch. He claimed the count “lacks consistency” in its method, which “creates difficulties in comparing year-over-year data.”
He did not address the cuts to renter services and labor law enforcement or how they could threaten housing stability for working people.
“The mayor believes that it is inhumane for people to live outside, and our budget reflects an investment strategy to continue making progress bringing people indoors with the services to recover, using the resources we have available,” says Housen. “Ultimately, a significant budget deficit requires difficult decisions, and this proposal is now in the hands of the city council to review the budget, propose modifications, and complete the process.”
You can tell the city council how you feel about the budget at public comment Wednesday at 5 pm. Sign up opens an hour before the meeting.
Slog AM: Washington GOP Candidate Peddles Weather Conspiracy, Jill Stein in Seattle Tonight (Let's Get Drinks), Trump Bops to Ave Maria [The Stranger]
The Stranger's morning news roundup. by Ashley Nerbovig
Goood morning: I took a walk last night, because I'm on that steps grind, and goddamn it's a beautiful time of year. It might rain today, but if it does it'll be a sprinkle. The temperature will rise to 55 degrees. The sun will set at 6:20 pm. I hit 10,109 steps yesterday.
And now to other weather "news": A Republican Washington State House candidate appears to believe the government can control the weather. Carrie R. Kennedy, who's challenging Democratic State Representative Clyde Shavers up in the 10th Legislative District, which covers the islands, reposted a Bikers for America Facebook post about weather manipulation on October 13, which basically peddled the conspiracy theory that the US Government caused the recent East Coast hurricanes as part of an attempt to depopulate the country. None of that is true. She has posted similar conspiracies before on her Facebook and her X account. Keep in mind, this isn't some kooky challenger way behind in the polls. Shavers only won the primary with 52 percent of the vote share. She's got some juice.
After I reached out to Kennedy last night to ask about several of her weather manipulation posts, the Bikers for America post now no longer appears on her Facebook. Luckily we grabbed some screenshots.
Also missing from her feed is an October 8 repost of a post she wrote in 2020, which said, "If 'they' can create a virus, can 'they' control the weather?!!! Just sayin'". She captioned it, "From 2020..." with a scratching chin emoji and a woman crossing her arms in front of her. The repost no longer appears on her page, but the original post remains. She did not respond to my request for comment. I hate fact-checking this shit, but, just a heads up, the government cannot control hurricanes, and just because the government can do one kind of science does not mean it can do another.
Boeing plans to cut white collar workers: Boeing machinist jobs remain safe for now as the aerospace company plans to lay off 10 percent of its workforce. The cuts appear mostly focused on white collar employees, such as engineers, and other non-union staff "at all levels up to vice presidents," according to the Seattle Times. Boeing plans to notify the first wave of employees about the lay offs mid-November, with their final days planned for January 17.
The year without a Hilloween: The Broadway Business Improvement Area has cancelled the kids carnival on Broadway this Halloween, according to Capitol Hill Seattle Blog. Apparently, funding and sponsorship just failed to pan out this year. But there's still plenty of other good stuff to come for Hilloween this year, including a Haunted Soiree at the DAR Rainier Chapter House. I'm so mad I missed the pet costume parade—goddamn I love those.
Work from the waterfront: There is lots of open office space along the waterfront, according the Seattle Times. With the opening of the Overlook Walk, which connects Pike Place with the waterfront, real estate interests in the area hope to see a resurgence in businesses moving into the open commercial spaces. I'm not much of a back-to-the-office stan, but I went to the Overlook Walk over the weekend, and honestly I'd work from the office two days a week if I could eat lunch there.
Jill Stein comes to town tonight: The anti-war Green Party candidate plans to speak tonight alongside former Seattle City Council Member Kshama Sawant. The event starts at 5 pm at Washington Hall on 14th Avenue in Seattle. If you can't be there in person, it's going to be live-streamed. For any of you ready to complain about Sawant supporting someone other than Vice President Kamala Harris for President, be cool and watch Rich tell you why that's dumb. [Eds note: To be clear, he also thinks it's dumb for Sawant to support Stein.]
Trump does something silly: Two medical incidents at a Trump town hall derailed the event, and Trump played some music and "bopped and shimmied," as the Associated Press put it, to a really strange mix of songs, including Rufus Wainwright's cover of "Hallelujah" and "Ave Maria."
Hope he's okay. https://t.co/WGhGteFpjm
— Kamala Harris (@KamalaHarris) October 15, 2024
We need a shorter election cycle: The polls are tight. I'm depressed all the time, and, tbh, I'm one of those people who quits when shit gets tough. Good luck to everyone else. I'm following up on that promise from the Irish government that they'll pay you to take over a sheep farm or whatever. Shit looks dark. If y'all mount a resistance movement I'll send wool. [Eds note: Other options include spending some time phone-banking for Harris in battleground states, calling friends and family in battleground states to convince them to vote for Harris or to convince them to get off their asses and knock doors. But Ireland does sound nice.]
The geopolitical equivalent of blocking someone: North Korea blew up the some of the unused road and rail routes that used to connect it to South Korea, according to the Associated Press. Tensions rose a few days ago after North Korea accused South Korea of flying drones over Pyongyang. North Korean leader Kim Jong Un said the two countries are never, ever, getting back together.
I'm on a music strike until my computer speakers get better. Listening to anything on this laptop makes my teeth hurt.
Editor's note: This story was updated to correctly reflect the results in 10th Legislative District's 2024 state house primary race.
A quick introduction to return address protection technologies [The Old New Thing]
Return Oriented Programming (ROP) is a malware technique that takes advantage of a memory write vulnerability to populate the stack with synthesized return addresses, each of which points to a code fragment (known as a gadget) that executes a few instructions before performing a return instruction. The idea is that an attacker can gain arbitrary code execution by cobbling together these small sequences of instructions into a larger operation.
A common defense against ROP techniques is to use some form of return address protection by confirming that the return address that is about to be used matches the return address received at the start of the function. In the case of a ROP, the synthesized return addresses do not correspond to any call, and this gives the system an opportunity to detect that something bad has happened.
We saw some time ago that the AArch64 architecture contains hardware support for return address validation through the use of the pacibsp and autibsp pair of instruction which sign a return address and validate the signature, respectively.
Another approach is to use a shadow stack, which is another stack in memory into which copies of the original return addresses are recorded, and against which those return addresses are validated before being used.
There are two common patterns for shadow stacks, known as parallel shadow stacks and compact shadow stacks.
The compact shadow stack reserves another register to be used as a shadow stack pointer. For example, you might do this:
; function entry with return address on CPU stack ; assume r15 is the shadow stack pointer ; retrieve return address mov rax, [rsp] ; push onto shadow stack mov [r15-8], rax lea r15, [r15-8] ⟦ main function body goes here ⟧ ; before returning, pop the return address ; from the shadow stack mov r11, [r15] lea r15, [r15+8] ; and check that it matches the CPU stack cmp r11, [rsp] jnz fatal ret
This is called a compact shadow stack because all the return
addresses are stored in contiguous memory. The amount of memory
required for the shadow stack is sizeof(address)
× call depth.
CPU stack | shadow stack | ||
⋮ | ⋮ | ||
retaddr1 | retaddr1 | ||
local var | retaddr2 | ||
local var | retaddr3 | ← r15 | |
retaddr2 | |||
local var | |||
local var | |||
local var | |||
retaddr3 | |||
local var | |||
local var | ← rsp |
By comparison the parallel shadow stack allocates a block of memory the same size as the CPU stack, and there is a buddy system between each byte of the CPU stack and each byte of the shadow stack. Access to the shadow stack is usually mediated by an otherwise-unused selector.
; function entry with return address on CPU stack ; assume fs has a base address equal to the distance ; between the CPU stack and the shadow stack ; retrieve return address mov rax, [rsp] ; copy to shadow stack mov fs:[rsp], rax ⟦ main function body goes here ⟧ ; before returning, compare the return address ; to the shadow stack mov r11, fs:[rsp] cmp r11, [rsp] jnz fatal ret
This is called a parallel shadow stack because the two stacks run parallel to each other.
CPU stack | shadow stack | ||
⋮ | ⋮ | ||
retaddr1 | retaddr1 | ||
local var | |||
local var | |||
retaddr2 | retaddr2 | ||
local var | |||
local var | |||
local var | |||
retaddr3 | retaddr3 | ||
local var | |||
local var | ← rsp | ← fs:rsp |
Here’s a table of pros and cons:
Compact | Parallel | |
---|---|---|
Code size | Larger | Smaller |
Memory consumption | Smaller | Larger |
Register pressure | Greater | Smaller |
Although both the compact and parallel stacks require a new dedicated register, the compact stack takes the register from the general purpose registers, which makes it unavailable for code generation. The parallel stack uses a selector that would otherwise go unused.
A significant problem with software-based return address protection on x86-64 is that the return address is passed from the caller to the callee via memory, which opens a race condition (page 29) where an attacker can modify the return address in memory after it has been pushed by the call instruction but before it is loaded by the mov rax, [rsp] at the start of the called function. (This is not a problem for processors which use a link register to pass the return address.)
Intel Control-flow Enforcement Technology (CET) implements a compact shadow stack in hardware using a dedicated register not visible to user mode. When active, call instructions automatically push return addresses on to the shadow stack, and ret instructions automatically pop and validate return addresses from the shadow stack. Performing the shadow store as part of the call instruction removes the race condition.
Okay, that was a lot of stuff just to provide the required reading in anticipation of the real topic, which we’ll pick up next time.
Bonus chatter: Some versions of return address protection simply ignore the return address on the CPU stack and just use the value from the shadow stack. Corrupt the return address all you want; we don’t use it!
; compact shadow stack version ; on function entry, ; push return address onto shadow stack mov rax, [rsp] mov [r15-8], rax lea r15, [r15-8] ⟦ main function body goes here ⟧ ; return to the address on the shadow stack pop r11 ; discard CPU stack mov r11, [r15] ; fetch from shadow stack lea r15, [r15+8] ; pop from shadow stack jmp r11 ; go to where the shadow stack tells us ; parallel shadow stack version ; on function entry, ; copy return address to shadow stack mov rax, [rsp] mov fs:[rsp], rax ⟦ main function body goes here ⟧ ; return to the address on the shadow stack pop r11 ; discard CPU stack mov r11, fs:[rsp] ; fetch from shadow stack jmp r11 ; go to where the shadow stack tells us
You could go even further and remove the return address from the CPU stack entirely, which saves an instruction and also permits a more compact encoding.
; compact shadow stack version ; on function entry, ; pop return address from CPU stack ; and push to shadow stack pop rax mov [r15-8], rax lea r15, [r15-8] ⟦ main function body goes here ⟧ ; return to the address on the shadow stack mov r11, [r15] ; fetch from shadow stack lea r15, [r15+8] ; pop from shadow stack jmp r11 ; go to where the shadow stack tells us
Exercise: Why can’t we use the “transfer the return address to the shadow stack and remove it from the CPU stack” technique for parallel shadow stacks?
This technique has multiple downsides. One is that it makes building stack traces much harder since you have to consult the shadow stack to figure out who the caller is. And the jmp instruction at the end unbalances the return address predictor. And this technique does not play friendly with CET: The shadow stack just grows and grows because no ret instruction is ever executed. And finally, this technique is not compatible with the Windows x86-64 ABI, which requires that return addresses be on the CPU stack.
Answer to exercise: You might think you could transfer the return address to the parallel shadow stack like this:
; parallel shadow stack version ; on function entry, ; pop return address from CPU stack ; and copy to shadow stack pop rax mov fs:[rsp], rax ⟦ main function body goes here ⟧ ; return to the address on the shadow stack mov r11, fs:[rsp] ; fetch from shadow stack jmp r11 ; go to where the shadow stack tells us
However, this doesn’t work because it would mean that if your function consumes no stack space, then any function you call will overwrite your shadow stack entry with their return address.
Bonus bonus chatter: Shadow stacks adds another reason why Windows insists on allocating thread and fiber stacks rather than letting programs provide their own stack memory: A program-provided stack doesn’t have an associated shadow stack.
(We learned another reason some time ago: The Itanium’s backing store stack.)
The post A quick introduction to return address protection technologies appeared first on The Old New Thing.
The Big Idea: Nisi Shawl [Whatever]
Famous writers will tell you of their lives and the lives of those in their orbit. That framing, however, suggests those other lives are not on their own journeys through the universe. In this Big Idea for The Day & Night Books of Mardou Fox, author Nisi Shawl follows a woman who is on her own path, even as it intersects those who would claim her story as part of their own.
NISI SHAWL:
Did you know that Black people existed in the 1950s?
Well of course you did. But you can be forgiven if, like me, you’ve been thinking and acting as though they didn’t. Look, I’m Black, and I was alive and aware during at least part of the 1950s, and even I was surprised to learn that Beat-era author Jack Kerouac had a Black girlfriend. He fictionalized their months-long affair in his 1958 novella The Subterraneans. He called her Mardou Fox. He went on for paragraphs and paragraphs about how sad and mysterious and sexy she was.
In my twenties I hung out with folks who got me interested in Kerouac and his fellow denizens of the proto-hippy Beat scene of the 1950s and 60s: poet Allen Ginsberg, Neal Cassady, William S. Burroughs of Naked Lunch fame. But not until I attained 60 years of age did I learn that Alene Lee, the inspiration for Mardou Fox, was an author herself. She wasn’t just a sad and sexy piece of tail. Or a love interest or a side quest or a minority demographic-shaped slot to fill. Alene Lee was a writer, and a damn fine one, as you can judge for yourself by the excerpts published here, and here. Ginsberg considered her his peer.
The Day and Night Books of Mardou Fox is my attempt to give a voice to a marginalized writer, one unfairly relegated to the gender- and race-restricted roles very much in favor at that time, even among rebels. First, I created entries for a journal my character keeps in 1941, when she’s “nine-and-three-quarters years old.” Magic happens to her, but wary of being labelled crazy, she suppresses and denies it.
Next, I imagined and wrote entries from a later journal. By 1953, my Mardou Fox is hanging out with my Ginsberg, Burroughs, and Cassady analogues, reading poetry in bars and entertaining my Kerouac analogue in her Greenwich Village flat. And trying–successfully, in this alternate version of events–to get her work published.
Then come the entries dated 1963. By this point in her fictional life, my Mardou is married to a man based partly on another noteworthy Beat–Lucien Carr–and figuring out how to use her neglected magic to rescue one sister from the insane asylum and keep another sister, a lesbian activist, out of jail. Also to locate her lost love. Also to tear down the alibi of the murderer who framed said love for committing a homophobic hate crime.
Yeah, there’s a lot going on in this book. But it’s so short!
Short and sweet, and inspired by the truth. To some extent it’s inspired by the true events of 60 and 70 years ago–at least somewhat. At least as far as I’ve been able to learn about them. But inspired also by true events in my own magical life, in the lives of me and my queer friends, and especially in the life of my prickly, stubborn, marvelous Aunt Cookie, who wore black leotards and played the bongos and carved cool weird sculptures out of salt blocks.
Finally, it was inspired by music, too, as the book’s cover hints via its Impulse! Records-like font and colors. Jazz was a widely acknowledged area of Black excellence in the 1950s. Monk and Mingus, Morgan and Mobley–they were all revered as geniuses by the Beats, all hailed as the peak of hipness. Are still. Hard bop was the occult soundtrack of the Beat Era, and it’s the silent score synched under most of this novella.
The Day and Night Books of Mardou Fox brings us back to pre-Civil Rights Act, pre-Stonewall times. Times when, amazingly, Black people and queer people and queer Black people not only existed, we lived. We lived happily, however we could. We did things and said things to make the happy, magical lives we wanted real. We made up our own stories, too, and we wrote them down so we could share them with the world. We’re still writing them and sharing them. We’ll be writing and sharing them ever after.
The Day and Night Books of Mardou Fox: Little Shop of Stories|Sistah Scifi
Security updates for Tuesday [LWN.net]
Security updates have been issued by AlmaLinux (container-tools:rhel8, firefox, OpenIPMI, podman, and thunderbird), Debian (libapache-mod-jk, php7.4, and webkit2gtk), Fedora (edk2, koji, libgsf, rust-hyper-rustls, rust-reqwest, rust-rustls-native-certs, rust-rustls-native-certs0.7, rust-tonic, rust-tonic-build, rust-tonic-types, rust-tower, rust-tower-http, rust-tower-http0.5, and rust-tower0.4), Mageia (packages and thunderbird), Oracle (bind, container-tools:ol8, kernel, kernel-container, OpenIPMI, podman, and thunderbird), Red Hat (container-tools:rhel8, containernetworking-plugins, podman, and skopeo), SUSE (argocd-cli, bsdtar, keepalived, kernel, kyverno, libmozjs-115-0, libmozjs-128-0, libmozjs-78-0, OpenIPMI, opensc, php8, thunderbird, and xen), and Ubuntu (configobj, haproxy, imagemagick, nginx, and postgresql-10, postgresql-9.3).
[$] Zapping pointers out of thin air [LWN.net]
Paul McKenney gave a presentation at Kangrejos this year that wasn't (directly) related to Rust. Instead, he spoke about the work he has been doing in concert with many other contributors on improving the handling of subtle concurrency problems in C++. Although he cautioned that his talk was only an overview, and not a substitute for reading the relevant papers, he hoped that the things the C++ community is working on would be of interest to the Rust developers present as well, and potentially inform future work on the language. McKenney's talk was, as is his style, full of subtle examples of weird multithreaded behavior. Interested readers may wish to refer to his slides in an attempt to follow along.
Iustin Pop: Optical media lifetime - one data point [Planet Debian]
Way back (more than 10 years ago) when I was doing DVD-based backups, I knew that normal DVDs/Blu-Rays are no long-term archival solutions, and that if I was real about doing optical media backups, I need to switch to M-Disc. I actually bought a (small stack) of M-Disc Blu-Rays, but never used them.
I then switched to other backups solutions, and forgot about the whole topic. Until, this week, while sorting stuff, I happened upon a set of DVD backups from a range of years, and was very curious whether they are still readable after many years.
And, to my surprise, there were no surprises! Went backward in time, and:
I also found stack of dual-layer DVD+R from 2012-2014, some for sure Verbatim, and some unmarked (they were intended to be printed on), but likely Verbatim as well. All worked just fine. Just that, even at ~8GiB per disk, backing up raw photo files took way too many disks, even in 2014 😅.
At this point I was happy that all 12+ DVDs I found, ranging from 10 to 14 years, are all good. Then I found a batch of 3 CDs! Here the results were mixed:
isoinfo
-d
).I think the takeaway is that for all explicitly selected media - TDK, JVC and Verbatim - they hold for 10-20 years. Valid reads from summer 2003 is mind boggling for me, for (IIRC) organic media - not sure about the “TDK metallic” substrate. And when you just pick whatever (“Creation”), well, the results are mixed.
Note that in all this, it was about CDs and DVDs. I have no idea how Blu-Rays behave, since I don’t think I ever wrote a Blu-Ray. In any case, surprising to me, and makes me rethink a bit my backup options. Sizes from 25 to 100GB Blu-Rays are reasonable for most critical data. And they’re WORM, as opposed to most LTO media, which is re-writable (and to some small extent, prone to accidental wiping).
Now, I should check those M-Disks to see if they can still be written to, after 10 years 😀
CodeSOD: An Overloaded Developer [The Daily WTF]
"Oh, I see what you mean, I'll just write an overloaded function which takes the different set of parameters," said the senior dev.
That got SB's attention. You see, they were writing JavaScript, which doesn't have function overloading. "Um," SB said, "you're going to do what?"
"Function overloading," the senior dev said. "It's when you write multiple versions of the same method with different signatures-"
"I know what it is," SB said. "I'm just wondering how you're going to do that in JavaScript."
"Ah," the senior dev said with all the senior dev wisdom in the world. "It's a popular misconception that function overloading isn't allowed in JavaScript. See this?"
function addMarker(lat,lng,title,desc,pic,link,linktext,cat,icontype) {
addMarker(lat,lng,title,desc,pic,link,linktext,cat,icontype,false);
}
function addMarker(lat,lng,title,desc,pic,link,linktext,cat,icontype,external) {
/* preparation code */
if (external){
/* glue code */
} else {
/* other glue code */
}
}
This, in fact, did not overload the function. This
first created a version of addMarker
which called
itself with the wrong number of parameters. It then replaced that
definition with a new one that actually did the work. That it
worked at all was a delightful coincidence- when you call a
JavaScript function with too few parameters, it just defaults the
remainders to null
, and null
is
falsy.
Back in August, I cavalierly said that AI couldn’t design a car if it hadn’t seen one first, and I alluded to Henry Ford’s apocryphal statement “If I had asked people what they wanted, they would have said faster horses.”
I’m not backing down on any of that, but the history of technology is always richer than we imagine. Daimler and Benz get credit for the first automobile, but we forget that the “steam engine welded to a tricycle” was invented in 1769, over a hundred years earlier. Assembly lines arguably go back to the 12th century AD. The more you unpack the history, the more interesting it gets. That’s what I’d like to do: unpack it—and ask what would have happened if the inventors had access to AI.
If Nicolas-Joseph Cugnot, who created a device for transporting artillery over roads by welding a steam engine to a giant tricycle, had an AI, what would it have told him? Would it have suggested this combination? Maybe, but maybe not. Perhaps it would have realized that it was a poor idea—after all, this proto-automobile could only travel at 2.25 miles per hour, and only for 15 minutes at a time. Teams of horses would do a better job. But there was something in this idea—even though it appears to have died out—that stuck.
During the final years of the 19th century, Daimler and Benz made many innovations on the way to the first machine generally recognized as an automobile: a high-speed internal combustion engine, the four-stroke engine, the two-cylinder engine, double-pivot steering, a differential, and even a transmission. Several of these innovations had appeared earlier. Planetary gears go back to the Greek Antikythera mechanism; double-pivot steering (putting the joints at the wheels rather than turning the entire axle) had appeared and disappeared twice in the 19th century—Karl Benz rediscovered it in a trade journal. The differential goes back to 1827 at least, but it arguably appears in the Antikythera. We can learn a lot from this: It’s easy to think in terms of single innovations and innovators, but it’s rarely that simple. The early Daimler-Benz cars combined a lot of newer technologies and repurposed many older technologies in ways that hadn’t been anticipated.
Could a hypothetical AI have helped with these inventions? It might have been able to resurrect double-pivot steering from “steering winter.” It’s something that had been done before and that could be done again. But that would require Daimler and Benz to get the right prompt. Could AI have invented a primitive transmission, given that clockmakers knew about planetary gears? Again, prompting probably would be the hard part, as it is now. But the important question wasn’t “How do I build a better steering system?” but “What do I need to make a practical automobile?” And they would have to come up with that prompt without the words “automobile,” “horseless carriage,” or their German equivalents, since those words were just coming into being.
Now let’s look ahead two decades, to the Model T and to Henry Ford’s well-known quote “If I had asked people what they wanted, they would have said faster horses” (whether or not he actually said it): What is he asking? And what does that mean? By Ford’s time, automobiles, as such, already existed. Some of them still looked like horse-drawn buggies with engines attached; others looked recognizably like modern cars. They were faster than horses. So Ford didn’t invent either the automobile or faster horses—but we all know that.
What did he invent that people didn’t know they wanted? The first Daimler-Benz auto (still in a modified buggy format) preceded the Model T by 23 years; its price was $1,000. That’s a lot of money for 1885. The Model T appeared in 1908; it cost roughly $850, and its competitors were significantly more expensive ($2,000 to $3,000). And when Ford’s assembly line went into production a few years later (1913), he was able to drop the price farther, eventually getting it down to $260 by 1925. That’s the answer. What people wanted that they didn’t know they wanted was a car that they could afford. Automobiles had been firmly established as luxury items. People may have known that they wanted one, but they didn’t know that they could ask for it. They didn’t know that it could be affordable.
That’s really what Henry Ford invented: affordability. Not the assembly line, which made its first appearance early in the 12th century, when the Venetian Arsenal built ships by lining them up in a canal and moving them downstream as each stage of their manufacture was completed. Not even the automotive assembly line, which Olds used (and patented) in 1901. Ford’s innovation was producing affordable cars at a scale that was previously inconceivable. In 1913, when Ford’s assembly line went into production, the time it took to produce one Model T dropped from 13 hours to roughly 90 minutes. But what’s important isn’t the elapsed time to build one car; it’s the rate at which they could be produced. A Model T could roll off the assembly line every three minutes. That’s scale. Ford’s “any color, as long as it’s black” didn’t reflect the need to reduce options or cut costs. Black paint dried more quickly than any other color, so it helped to optimize the assembly line’s speed and maximize scale.
The assembly line wasn’t the only innovation, of course: Spare parts for the Model T were easily available, and the car could be repaired with tools most people at the time already had. The engine and other significant subassemblies were greatly simplified and more reliable than competitors’. Materials were better too: The Model T made use of vanadium steel, which was quite exotic in the early 20th century.
I’ve been careful, however, not to credit Ford with any of these innovations. He deserves credit for the biggest of pictures: affordability and scale. As Charles Sorenson, one of Ford’s assistant managers, said: “Henry Ford is generally regarded as the father of mass production. He was not. He was the sponsor of it.”1 Ford deserves credit for understanding what people really wanted and coming up with a solution to the problem. He deserves credit for realizing that the problems were cost and scale, and that those could be solved with the assembly line. He deserves credit for putting together the teams that did all the engineering for the assembly line and the cars themselves.
So now it’s time to ask: If AI had existed in the years before 1913, when the assembly line was being designed (and before 1908, when the Model T was being designed), could it have answered Ford’s hypothetical question about what people wanted? The answer has to be “no.” I’m sure Ford’s engineers could have put modern AI to tremendous use designing parts, designing the process, and optimizing the work flow along the line. Most of the technologies had already been invented, and some were well-known. “How do I improve on the design of a carburetor?” is a question that an AI could easily have answered.
But the big question—What do people really want?—isn’t. I don’t believe that an AI could look at the American public and say, “People want affordable cars, and that will require making cars at scale and a price that’s not currently conceivable.” A language model is built on all the text that can be scraped together, and, in many respects, its output represents a statistical averaging. I’d be willing to bet that a 1900s-era language model would have access to a lot of information about horse maintenance: care, disease, diet, performance. There would be a lot of information about trains and streetcars, the latter frequently being horse-powered. There would be some information about automobiles, primarily in high-end publications. And I imagine there would be some “wish I could afford one” sentiment among the rising middle class (particularly if we allow hypothetical blogs to go with our hypothetical AI). But if the hypothetical AI were asked a question about what people wanted for personal transportation, the answer would be about horses. Generative AI predicts the most likely response, not the most innovative, visionary, or insightful. It’s amazing what it can do—but we have to recognize its limits too.
What does innovation mean? It certainly includes combining existing ideas in unlikely ways. It certainly includes resurrecting good ideas that have never made it into the mainstream. But the most important innovations either don’t follow that pattern or make additions to it. They involve taking a step back and looking at the problem from a broader perspective: looking at transportation and realizing that people don’t need better horses, they need affordable cars at scale. Ford may have done that. Steve Jobs did that—both when he founded Apple and when he resuscitated it. Generative AI can’t do that, at least not yet.
Jonathan Dowland: Arturia Microfreak [Planet Debian]
Arturia Microfreak. © CC-BY-SA 4
I nearly did, but ultimately I didn't buy an Arturia Microfreak.
The Microfreak is a small form factor hybrid synth with a distinctive style. It's priced at the low end of the market and it is overflowing with features. It has a weird 2-octave keyboard which is a stylophone-style capacitive strip rather than weighted keys. It seems to have plenty of controls, but given the amount of features it has, much of that functionality is inevitably buried in menus. The important stuff is front and centre, though. The digital oscillators are routed through an analog filter. The Microfreak gained sampler functionality in a firmware update that surprised and delighted its owners.
I watched a load of videos about the Microfreak, but the above review from musician Stimming stuck in my mind because it made a comparison between the Microfreak and Teenage Engineering's OP-1.
I'd been lusting after the OP-1 since it appeared in 2011: a pocket-sized1 music making machine with eleven synthesis engines, a sampler, and less conventional features such as an FM radio, a large colour OLED display, and a four track recorder. That last feature in particular was really appealing to me: I loved the idea of having an all-in-one machine to try and compose music. Even then, I was not keen on involving conventional computers in music making.
Of course in many ways it is a very compromised machine. I never did buy a OP-1, and by now they've replaced it with a new model (the OP-1 field) that costs 50% more (but doesn't seem to do 50% more) I'm still not buying one.
Framing the Microfreak in terms of the OP-1 made the penny drop for me. The Microfreak doesn't have the four-track functionality, but almost no synth has: I'm going to have to look at something external to provide that. But it might capture a similar sense of fun; it's something I could use on the sofa, in the spare room, on the train, during lunchbreaks at work, etc.
On the other hand, I don't want to make the same mistake as with the Micron: too much functionality requiring some experience to understand what you want so you can go and find it in the menus. I also didn't get a chance to audition the unusual keyboard: there's only one music store carrying synths left in Newcastle and they didn't have one.
So I didn't buy the Microfreak. Maybe one day in the future once I'm further down the road. Instead, I started to concentrate my search on more fundamental, back-to-basics instruments…
More Details on Israel Sabotaging Hezbollah Pagers and Walkie-Talkies [Schneier on Security]
The Washington Post has a long and detailed story about the operation that’s well worth reading (alternate version here).
The sales pitch came from a marketing official trusted by Hezbollah with links to Apollo. The marketing official, a woman whose identity and nationality officials declined to reveal, was a former Middle East sales representative for the Taiwanese firm who had established her own company and acquired a license to sell a line of pagers that bore the Apollo brand. Sometime in 2023, she offered Hezbollah a deal on one of the products her firm sold: the rugged and reliable AR924.
“She was the one in touch with Hezbollah, and explained to them why the bigger pager with the larger battery was better than the original model,” said an Israeli official briefed on details of the operation. One of the main selling points about the AR924 was that it was “possible to charge with a cable. And the batteries were longer lasting,” the official said.
As it turned out, the actual production of the devices was outsourced and the marketing official had no knowledge of the operation and was unaware that the pagers were physically assembled in Israel under Mossad oversight, officials said. Mossad’s pagers, each weighing less than three ounces, included a unique feature: a battery pack that concealed a tiny amount of a powerful explosive, according to the officials familiar with the plot.
In a feat of engineering, the bomb component was so carefully hidden as to be virtually undetectable, even if the device was taken apart, the officials said. Israeli officials believe that Hezbollah did disassemble some of the pagers and may have even X-rayed them.
Also invisible was Mossad’s remote access to the devices. An electronic signal from the intelligence service could trigger the explosion of thousands of the devices at once. But, to ensure maximum damage, the blast could also be triggered by a special two-step procedure required for viewing secure messages that had been encrypted.
“You had to push two buttons to read the message,” an official said. In practice, that meant using both hands.
Also read Bunnie Huang’s essay on what it means to live in a world where people can turn IoT devices into bombs. His conclusion:
Not all things that could exist should exist, and some ideas are better left unimplemented. Technology alone has no ethics: the difference between a patch and an exploit is the method in which a technology is disclosed. Exploding batteries have probably been conceived of and tested by spy agencies around the world, but never deployed en masse because while it may achieve a tactical win, it is too easy for weaker adversaries to copy the idea and justify its re-deployment in an asymmetric and devastating retaliation.
However, now that I’ve seen it executed, I am left with the terrifying realization that not only is it feasible, it’s relatively easy for any modestly-funded entity to implement. Not just our allies can do this—a wide cast of adversaries have this capability in their reach, from nation-states to cartels and gangs, to shady copycat battery factories just looking for a big payday (if chemical suppliers can moonlight in illicit drugs, what stops battery factories from dealing in bespoke munitions?). Bottom line is: we should approach the public policy debate around this assuming that someday, we could be victims of exploding batteries, too. Turning everyday objects into fragmentation grenades should be a crime, as it blurs the line between civilian and military technologies.
I fear that if we do not universally and swiftly condemn the practice of turning everyday gadgets into bombs, we risk legitimizing a military technology that can literally bring the front line of every conflict into your pocket, purse or home.
It’s not easy to see time [Seth's Blog]
Consider a simple graph of the temperature of the Earth over time.
There’s nothing interesting about any frame of this graph. But when we pause for just a few seconds for it to load and render, we can see 150 years unfold and then the truth becomes apparent.
The snapshot is a useful way to capture a moment. But moments rarely offer as much insight as seeing something shift over time.
Is time hiding from us, or are we deliberately ignoring it?
Time and strategy are intertwined.
Lukas Märdian: Waiting for a Linux system to be online [Planet Debian]
Networking is a complex topic, and there is lots of confusion around the definition of an “online” system. Sometimes the boot process gets delayed up to two minutes, because the system still waits for one or more network interfaces to be ready. Systemd provides the network-online.target that other service units can rely on, if they are deemed to require network connectivity. But what does “online” actually mean in this context, is a link-local IP address enough, do we need a routable gateway and how about DNS name resolution?
The requirements for an “online” network interface depend very much on the services using an interface. For some services it might be good enough to reach their local network segment (e.g. to announce Zeroconf services), while others need to reach domain names (e.g. to mount a NFS share) or reach the global internet to run a web server. On the other hand, the implementation of network-online.target varies, depending on which networking daemon is in use, e.g. systemd-networkd-wait-online.service or NetworkManager-wait-online.service. For Ubuntu, we created a specification that describes what we as a distro expect an “online” system to be. Having a definition in place, we are able to tackle the network-online-ordering issues that got reported over the years and can work out solutions to avoid delayed boot times on Ubuntu systems.
In essence, we want systems to reach the following networking state to be considered online:
NetworkManager and systemd-networkd are two very common networking daemons used on modern Linux systems. But they originate from different contexts and therefore show different behaviours in certain scenarios, such as wait-online. Luckily, on Ubuntu we already have Netplan as a unification layer on top of those networking daemons, that allows for common network configuration, and can also be used to tweak the wait-online logic.
With the recent release of Netplan v1.1 we introduced initial functionality to tweak the behaviour of the systemd-networkd-wait-online.service, as used on Ubuntu Server systems. When Netplan is used to drive the systemd-networkd backend, it will emit an override configuration file in /run/systemd/system/systemd-networkd-wait-online.service.d/10-netplan.conf, listing the specific non-optional interfaces that should receive link-local IP configuration. In parallel to that, it defines a list of network interfaces that Netplan detected to be potential global connections, and waits for any of those interfaces to reach a globally routable state.
Such override config file might look like this:
[Unit]
ConditionPathIsSymbolicLink=/run/systemd/generator/network-online.target.wants/systemd-networkd-wait-online.service
[Service]
ExecStart=
ExecStart=/lib/systemd/systemd-networkd-wait-online -i eth99.43:carrier -i lo:carrier -i eth99.42:carrier -i eth99.44:degraded -i bond0:degraded
ExecStart=/lib/systemd/systemd-networkd-wait-online --any -o routable -i eth99.43 -i eth99.45 -i bond0
In addition to the new features implemented in Netplan, we reached out to upstream systemd, proposing an enhancement to the systemd-networkd-wait-online service, integrating it with systemd-resolved to check for the availability of DNS name resolution. Once this is implemented upstream, we’re able to fully control the systemd-networkd backend on Ubuntu Server systems, to behave consistently and according to the definition of an “online” system that was lined out above.
The story doesn’t end there, because Ubuntu Desktop systems are using NetworkManager as their networking backend. This daemon provides its very own nm-online utility, utilized by the NetworkManager-wait-online systemd service. It implements a much higher-level approach, looking at the networking daemon in general instead of the individual network interfaces. By default, it considers a system to be online once every “autoconnect” profile got activated (or failed to activate), meaning that either a IPv4 or IPv6 address got assigned.
There are considerable enhancements to be implemented to this tool, for it to be controllable in a fine-granular way similar to systemd-networkd-wait-online, so that it can be instructed to wait for specific networking states on selected interfaces.
Making a service depend on network-online.target is considered an antipattern in most cases. This is because networking on Linux systems is very dynamic and the systemd target can only ever reflect the networking state at a single point in time. It cannot guarantee this state to be remained over the uptime of your system and has the potentially to delay the boot process considerably. Cables can be unplugged, wireless connectivity can drop, or remote routers can go down at any time, affecting the connectivity state of your local system. Therefore, “instead of wondering what to do about network.target, please just fix your program to be friendly to dynamically changing network configuration.” [source].
Splitting Hairs On Hirsutism by Senna [Oh Joy Sex Toy]
Obliviator, Part Three [Penny Arcade]
After we did the last one, we couldn't stop. Anything as serious as Silent Hill is has seeds of silliness in it! That's just how it works.
Anh is just awful (writing awful people is fun)
Scarecrow’s 2024 Psychotronic Challenge: Day 14 [The Stranger]
"Made by an Indigenous filmmaker or has featured Indigenous cast members." by Megan Seling
14. HALLOWED GROUND: Made by an Indigenous filmmaker or has featured Indigenous cast members.
Slash/BackNyla Innuksuk’s Slash/Back has been on my to-watch list since at least last year when it was added to Hulu, but it wasn’t until I saw Scarecrow’s Day 14 prompt—watch a film “made by an Indigenous filmmaker or has featured Indigenous cast members”—that I finally sat down to watch it.
It was a blast! Thanks, Scarecrow!
Slash/Back is set and filmed in Nunavut (where one of my all-time favorite Nashville Predators players, Jordin Tootoo, is from!), in the small community of Pangnirtung. For a group of local girls, what starts out as just another day of breaking insignificant rules, getting harassed by cops, and avoiding annoying younger siblings, quickly devolves into a literal fight for their lives when what appears to be a zombified polar bear crashes their picnic. After some investigation—and some more of the monster’s murderous rampages—they discover that a parasitic creature has invaded their land, and it shows no sign of stopping until the whole town is sucked dry.
I won't spoil the ending, but, hell yes, there is a "prepare for battle" montage as well as a wicked scene involving an ulu knife. There are also a few sweet moments between the girls as they bond over their complicated relationships with their heritage and traditions and the relatable urge to leave home as soon as possible.
It's not reinventing the young adult sci-fi flick—comparisons to Attack the Block and Stranger Things are plentiful and unavoidable—but it’s still a fun-to-watch story about young people who have to save their town from violent, blood-sucking aliens because if they don’t do it, no one else will. It makes for a hell of a metaphor for colonialism, too… but, you know, with tentacles.
Best quote: “I cut open its throat with an ulu.” “Nasty! I love it.”
Snack suggestion: White chocolate-covered gummy polar bears
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
Freexian Collaborators: Monthly report about Debian Long Term Support, September 2024 (by Roberto C. Sánchez) [Planet Debian]
Like each month, have a look at the work funded by Freexian’s Debian LTS offering.
In September, 18 contributors have been paid to work on Debian LTS, their reports are available:
In September, we have released 52 DLAs.
September marked the first full month of Debian 11 bullseye under the responsibility of the LTS Team and the team immediately got to work, publishing more than 4 dozen updates.
Some notable updates include ruby2.7 (denial-of-service, information leak, and remote code execution), git (various arbitrary code execution vulnerabilities), firefox-esr (multiple issues), gnutls28 (information disclosure), thunderbird (multiple issues), cacti (cross site scripting and SQL injection), redis (unauthorized access, denial of service, and remote code execution), mariadb-10.5 (arbitrary code execution), cups (arbitrary code execution).
Several LTS contributors have also contributed package updates which either resulted in a DSA (a Debian Security Announcement, which applies to Debian 12 bookworm) or in an upload that will be published at the next stable point release of Debian 12 bookworm. This list of packages includes cups, cups-filters, booth, nghttp2, puredata, python3.11, sqlite3, and wireshark. This sort of work, contributing fixes to newer Debian releases (and sometimes even to unstable), helps to ensure that upgrades from a release in the LTS phase of its lifecycle to a newer release do not expose users to vulnerabilities which have been closed in the older release.
Looking beyond Debian, LTS contributor Bastien Roucariès has worked with the upstream developers of apache2 to address regressions introduced upstream by some recent vulnerability fixes and he has also reached out to the community regarding a newly discovered security issue in the dompurify package. LTS contributor Santiago Ruano Rincón has undertaken the work of triaging and reproducing nearly 4 dozen CVEs potentially affecting the freeimage package. The upstream development of freeimage appears to be dormant and some of the issues have languished for more than 5 years. It is unclear how much can be done without the aid of upstream, but we will do our best to provide as much help to the community as we can feasibly manage.
Finally, it is sometimes necessary to limit or discontinue support for certain packages. The transition of a release from being under the responsibility of the Debian Security Team to that of the LTS Team is an occasion where we assess any pending decisions in this area and formalize them. Please see the announcement for a complete list of packages which have been designated as unsupported.
Sponsors that joined recently are in bold.
The kitten loves the Mets! [Scripting News]
Scarlett Gately Moore: Kubuntu 24.10 Released, KDE Snaps at 24.08.2, and I lived to tell you about it! [Planet Debian]
Happy 28th Birthday KDE!
Sorry my blog updates have been MIA. Let me tell you a story…
As some of you know, 3 months ago I was in a no fault car accident. Thankfully, the only injury was I ended up with a broken arm. ER sends me home in a sling and tells me it was a clean break and it will mend itself in no time. After a week of excruciating pain I went to my follow up doctor appointment, and with my x-rays in hand, the doc tells me it was far from a clean break and needs surgery. So after a week of my shattered bone scraping my nerves and causing pain I have never felt before, I finally go in for surgery! They put in a metal plate with screws to hold the bone in place so it can properly heal. The nerve pain was gone, so I thought I was on the mend. Some time goes by and the swelling still has not subsided, the doctors are not as concerned about this as I am, so I carry on until it becomes really inflamed and developed fever blisters. After no success in reaching the doctors office my husband borrows the neighbors car and rushes me to the ER. Good thing too, I had an infection. So after a 5 day stay in the hospital, they sent us home loaded with antibiotics and trained my husband in wound packing. We did everything right, kept the place immaculate, followed orders with the wound care, took my antibiotics, yet when they ran out there was still no sign of relief, or healing. Went to doctors and they gave me another month supply of antibiotics. Two days after my final dose my arm becomes inflamed again and with extra spectacular levels of pain to go with it. I call the doctor office… They said to come in on my appointment day ( 4 days away ). I asked, “You aren’t concerned with this inflammation?”, to which they replied, “No.”. Ok, maybe I am over reacting and it’s all in my head, I can power through 4 more days. The following morning my husband observed fever blisters and the wound site was clearly not right, so once again off we go to the ER. Well… thankfully we did. I was in Sepsis and could have died… After deliberating with the doctor on the course of action for treatment, the doctor accepted our plea to remove the plate, rather than tighten screws and have me drive 100 miles to hospital everyday for iv antibiotics (Umm I don’t have a car!?) So after another 4 day stay I am released into the world, alive and well. I am happy to report, the swelling is almost gone, the pain is minimal, and I am finally healing nicely. I am still in a sling and I have to be super careful and my arm was not fully knitted. So with that I am bummed to say, no traveling for me, no Ubuntu Summit
I still need help with that car, if it weren’t for our neighbor, this story would have ended much differently.
Despite my tragic few months for my right arm, my left arm has been quite busy. Thankfully I am a lefty! On to my work progress report.
Kubuntu:
With Plasma 6! A big thank you to the Debian KDE/QT team and Rik Mills, could not have done it without you!KDE Snaps:
All release service snaps are done! Save a few problematic ones still WIP.. I have released 24.08.2 which you can find here:
https://snapcraft.io/publisher/kde
I completed the qt6 and KDE frameworks 6 content packs for core24
Snapcraft:
I have a PR in for kde-neon-6 extension core24 support.
That’s all for now. Thanks for stopping by!
Initiative-2117 is Dangerous to Your Health [The Stranger]
Healthcare professionals see firsthand the debilitating effects of dirty air and pollution-related diseases right here in Washington—from forest fire smoke, increasingly severe and prolonged heat waves, and longer, more potent allergy seasons. These impacts affect us all, but they disproportionately harm vulnerable populations like the young, the elderly, the poor, and communities of color. 1-2117 would rollback major progress to mitigate that impact. by Dr. Ken Lans
Did you hear the one about the hedge fund millionaire who moves up from California and spends millions of dollars to get a bunch of his right-wing initiatives on Washington’s November 2024 ballot? Turns out it’s not a joke.
All four initiatives on the November ballot would, if passed, be awful for the health of people here in Washington. But Initiative-2117, stands out for just how far-reaching its bad health consequences would be. The initiative would repeal Washington's Climate Commitment Act (CCA) and prohibit any policies involving carbon pricing in the future. In the service of a self-interested extremist, it dangerously and ridiculously halts and reverses important progress finally being made to combat air pollution and climate change. These dangers are fully detailed in a Washington Physicians for Social Responsibility (WPSR) report, ‘A Risk to our Health: An Analysis of the Threats to Health Posed by I-2117’.
Healthcare professionals see firsthand the debilitating effects of dirty air and pollution-related diseases. We’re also beginning to see, right here in Washington, more and more direct health impacts of climate change—from forest fire smoke, increasingly severe and prolonged heat waves, and longer, more potent allergy seasons. These impacts affect us all, but they disproportionately harm vulnerable populations like the young, the elderly, the poor, and communities of color.
The CCA is a cap-and-invest program which passed in 2021 and just took effect last year. It employs a form of carbon pricing where the maximum amount of total permissible CO2 is established and decreases each year, and permits to pollute up to that limit are sold at auction. The program is already beginning to have significant and beneficial impacts on our health through meaningful reductions in air pollution. And as more revenue is collected in future auctions, those benefits will grow. But all health gains—existing and potential—are threatened if I-2117 passes.
Addressing our Climate and our Health
Combustion of fossil fuels—gasoline, diesel, and natural gas—is the primary source of greenhouse gasses (primarily CO2) and air pollution (PM2.5 small particulate matter, sulfur dioxide and nitrogen dioxide). The World Health Organization (WHO) states, “Air pollution, primarily the result of burning fossil fuels, which also drives climate change, causes 13 deaths per minute worldwide.” Around the world, exposure to polluted air is the second highest risk of death for children 5 and under.
Major health-related impacts from air pollution include increased morbidity (illness) and mortality (death) from asthma and other respiratory illnesses, cardiovascular disease and stroke, cancer, and diabetes. We’re also concerned about mental health impacts, as PM2.5 can enter the brain via the olfactory nerve and bloodstream.
Medical studies make it clear that there is no safe level of PM2.5, no threshold point where harm starts. The more air pollution a person is exposed to, even starting at low doses, the more harm that can result (and the lower the exposure, the less harm). So all reductions in air pollution levels are good for health.
Supporters of I-2117 emphasize the dollars you could save, but we also need to recognize the increased costs we already pay, both in terms of actual dollars spent on healthcare and, maybe even more importantly, in terms of damage to our very health and well-being, from exposure to pollution and from the impacts climate change is already having.
These same emissions that release health-harming gasses also release climate-change causing CO2. The resulting environmental changes brought about by these dramatically increasing levels of CO2 in the atmosphere include more extreme weather events, more frequent, more severe, and longer lasting heat waves, and an increase in the number and severity of wildfires and their accompanying smoke — all of which put increasing burdens on the health of people throughout the state.
Air pollution and climate-related risks are cumulative. Added to the health impacts resulting from air pollution, direct impacts we’re seeing from climate change include, heat-related illnesses and deaths; asthma, lung cancer and other respiratory illnesses; cardiovascular disease, including heart attack and stroke; infectious diseases such as Lyme disease and encephalitis; mental health conditions, including increased depression and suicidality; violent behavior, including intimate partner violence; and lowered birth weight in infants.
Climate Change and Pollution Do Not Impact All People Equally
All these health conditions that are exacerbated by climate change and air pollution are experienced more frequently and with greater impact by vulnerable, marginalized, and disenfranchised populations. Not by chance, but due in large part to the long-term policies of “redlining” and zoning laws and other historical forms of discriminatory public policy and ongoing bias, poorer communities, tribal communities, and communities of color are far more likely to be located in close proximity to the sources of pollution, such as industrial sites, oil and gas refineries, ports, rail yards, and busy highways. They are also less likely to have adequate infrastructure and tree canopy to help mitigate the effects of extreme heat. Disadvantaged groups also include migrant workers, people with limited English proficiency, displaced persons, indigenous tribes, and those with pre-existing medical conditions, chronic illness, and disabilities.
The CCA is designed specifically to place environmental justice and equity at the center of climate policy. It implements and funds the HEAL (Healthy Environment for All) Act of 2021 that requires the State “to identify and address environmental health disparities in overburdened communities and for vulnerable populations.”
Because industries participating in the CCA will take some time to substantially reduce their pollution, especially in already overburdened communities, and will likely pass on as much of their increased costs as they can to the consumer, any equitable carbon pricing regimen must include investments in overburdened communities and energy subsidies to low income households. The CCA does just that. Of monies spent, 35-40% must benefit vulnerable populations in overburdened communities; 10% must be formally supported by Tribal resolution. Indeed, as of late spring, the Office of Financial Management estimated that, of total CCA investments made to that time, nearly $924 million, or 43%, were directed to overburdened communities and $155 million, or 7.3%, specifically to benefit Tribes.
Improving the Health and Well-being of ChildrenChildren with developing lungs are particularly vulnerable to air pollution, and can experience lifelong effects from inhaled particulates. In the home, CCA funds programs such as an expansion of weatherization and projects that improve indoor air quality through the replacement of gas stoves and gas and oil furnaces.
Studies show that diesel-emitting school buses expose children to harmful exposures both on and outside the buses—exposures that can decrease cognitive function, increase cardiovascular risks, and worsen respiratory health. The CCA is funding electric school buses to minimize these risks. It also funds free bus, ferry, and train rides for everyone under 18 and expands sidewalks and crosswalks so that children can safely access schools, parks and the outdoor environment.
CCA-funded expansion of our regional air quality monitoring network—a critical system for equipping parents of a child with asthma with real-time health information so they can make critical decisions around medication and exposure—would also be ended if I-2117 passes.
Finally, carbon emission reduction projects funded by the CCA, though admittedly small compared to worldwide emissions, still matter as all these reductions add up. Combined, they will help to reduce extreme weather events worldwide, including flooding — such as we’ve just seen from hurricane Helene — and heat waves. Such interventions are critical, as increased child and infant mortality have been associated with extreme heat events, as well as decreased cognitive abilities in children exposed to high heat. Even those still in the womb can experience negative health impacts from extreme heat. Climate resilience projects for schools, funded through the CCA, such as HVAC improvements and electrification, will directly help keep the children of Washington learning and growing through extreme heat.
My Prescription: Vote No on I-2117
To sum up why is it so urgent and important to defeat I-2117:
Voting ‘no’ becomes one of the most vital health decisions that you can make. So join me, my colleagues at WPSR, and concerned health professionals throughout the state (including the Washington State Medical Association, the Washington State Nursing Association, the Washington State Public Health Association, and the American Lung Association in Washington) in casting a critical vote to protect your health, your children’s health, and everyone’s health.
Dr. Ken Lans is a retired General Practice Physician and a founder and current Board President of Washington Physicians for Social Responsibility (WPSR).
Inkscape 1.4 released [LWN.net]
Version 1.4 of the Inkscape open-source vector-graphics editor has been released. Highlights of this release include a filter gallery, import for Affinity Designer files, internal links in exported PDFs, and more. See the release notes for all of the new features. LWN previewed the 1.4 release in early October.
[$] WordPress retaliation impacts community [LWN.net]
It is too early to say what the outcome will be in the ongoing fight between Automattic and WP Engine, but the WordPress community at large is already the loser. Automattic founder and CEO Matt Mullenweg has been using his control of the project, and the WordPress.org infrastructure, to punish WP Engine and remove some dissenting contributors from discussion channels. Most recently, Mullenweg has instituted a hostile fork of a WP Engine plugin and the forked plugin is replacing the original via WordPress updates.
The Top 52 Events in Seattle This Week: Oct 14–20, 2024 [The Stranger]
Kehlani, Indigenous Peoples' Day Citywide Celebration, and More by EverOut Staff
It's just another manic Monday, but we're here to sort out your weekly plans with event suggestions from Kehlani's CRASH WORLD TOUR to Brittany Howard & Michael Kiwanuka and from an Indigenous Peoples’ Day Citywide Celebration to Text Me Back! An Election Preview & Live Podcast Taping, and much more.
MONDAY INDIGENOUS PEOPLES' DAY
2024 Indigenous Peoples’ Day Citywide Celebration
There are events scattered all across the city for Indigenous
Peoples' Day. The day starts at 9:30 am at Pier 62 Waterfront Park,
where folks are invited to bring their drums and their tribal flags
and join the march along the waterfront to King Street Station,
where there will be a rally and round dance for peace at 1:30 pm.
Elsewhere around the city, you can see Khu.éex'
(featuring A+P star and renowned glass
artist Preston
Singletary) perform at Westlake Park at 11 am and join the
Daybreak Star Indian Cultural Center for dancing, dinner, and bingo
at 5 pm. See all the day's details
here. Unrelated: Remember that time in 2015 when Mayor Harrell,
a city council member at the time, wanted to proclaim
"Italian-American Heritage" Month on Indigenous Peoples' Day??? And
now he's mayor! What a ride. MEGAN
SELING
(Various
locations)
Upcoming Speaking Engagements [Schneier on Security]
This is a current list of where and when I am scheduled to speak:
The list is maintained on this page.
Slog AM: Bombs on the Roads in Seattle, US Arms Israel, NRA Chief Tortured and then Killed a Cat [The Stranger]
The Stranger's morning news roundup. by Nathalie Graham
Two students dead in 24 hours at Western: Two Western Washington University students died last week in unconnected incidents. On Wednesday, an 18-year-old student died from a fall off a residence hall. The medical examiner ruled it a death by suicide. The second student, also 18, was found unresponsive in their residence hall Thursday morning from a suspected drug overdose.
Did you drop your improvised explosive device? Maybe you last saw it in Burien? On Friday evening, a boom and blast rattled drivers at the intersection of South 116th Street and 1st Avenue South. Officers found what was left of an improvised explosive device they say was tossed onto the road. No one was injured, but authorities wonder whether the explosion is related to Saturday's I-90 bomb scare.
That I-90 bomb threat: If you sat in snared I-90 traffic on Saturday it's because two idiots fled a police traffic stop and threw what police suspected were explosive devices out their window as they zoomed away. Authorities shut down traffic in both directions on I-90 in Mercer Island for over two hours so they could locate and detonate the explosives.
EXPLOSIVE DEVICES SAFELY DETONATED
— Dave Detling (@DetlingFOX13) October 13, 2024
Bellevue PD saying the bomb squad safely disarmed 2 of the 3 devices found. The 3rd was described as an elongated firework.
Below is a picture of the explosive device. Police telling @fox13seattle the suspect attempted to light and throw it… pic.twitter.com/XWfJC9kzuO
Just take the bus: Parking fees are going up across the city. In central Ballard and Columbia City, expect to pay $6 per hour. It'll cost $6.50 per hour to park in Fremont or the Pike-Pine area of Capitol Hill. I can already feel the gripes from the car-clingers among you. You can find cheaper rates in places where not a lot of people are driving and parking. Or, you could pay $2.75 for a bus ride.
The weather: I hoped you spoiled brats enjoyed your balmy weekend. It'll be chilly, cloudy, and drizzly today. Let the real fall weather reign.
Charity for homeless youth shuts down: The privately funded charity A Way Home Washington, which focuses on reducing youth homelessness, announced it will be closing its doors since philanthropic donations have run dry. In concert with similar government programs, A Way Home Washington contributed to a 40 percent reduction in youth and adult homelessness between 2016 and 2023, according to the Seattle Times. Despite success, the money has stopped flowing, so the charity must die. This is why we can't look to philanthropy to replace government programs. It's nice to get private money to fill in gaps and fund services ... until those funds turn fickle.
Israel keeps slaughtering Gazans: Over the weekend, Israel aimed strikes at Al Aqsa Martyrs Hospital, where people displaced from the war had been sheltering. The strike and the fires it lit that engulfed tents in the encampment killed four people and injured dozens more. Separate from that atrocity, Israel struck a school compound overnight where families were sheltering and where a polio vaccination site had been planned. Those attacks killed 20 people. This is genocide.
— Drop Site (@DropSiteNews) October 14, 2024
Starvation as a weapon: According to the World Food Programme, no food has entered Gaza since October 1. Additionally, Israeli Prime Minister Benjamin Netanyahu wants to seal off all humanitarian aid into Gaza, trapping hundreds of thousands of people without food, water, or other basic necessities.
And, yet the US pledged even more arms and forces to Israel. The Pentagon announced Sunday it would send "an advanced missile defense system to Israel, along with about 100 American troops to operate it." The move comes as Israel plans a retaliatory attack against Iran, which launched a volley of 200 missiles at Israel on October 1. Additionally, over the weekend, a Hezbollah drone attack at an Israeli base killed four soldiers and injured 61. Israel already responded to that strike by killing civilians in Lebanon—a strike targeting an apartment building killed 18. So, the US will become even more complicit in this killing.
Protesters shut down Wall Street:
BREAKING: A group of Jewish-led protesters in Lower Manhattan just stormed the New York Stock Exchange.
— Noah Hurowitz (@NoahHurowitz) October 14, 2024
They’re calling for an end to Israel’s genocide in Gaza and to war profiteering by companies like Raytheon and Lockheed Martin pic.twitter.com/YcjBCJNxFX
Right to bear arms and kill cats: The new chief of the National Rife Association, Douglas Hamlin, was charged with a misdemeanor for brutally torturing and murdering the cat at his fraternity house. Hamlin, who was president of Alpha Delta Phi at the University of Michigan, was charged alongside four of his frat bros in 1980 for the abuse of their cat, BK. I really don't want to recount the abuse here since it makes my stomach churn, but this is the guy helming the NRA, and his atrocities are worth knowing. When their frat's cat, BK, didn't use its litter box, Hamlin and company cut off its paws, strung it up, and then lit it on fire. Hamlin and the rest of the accused were expelled from the school, but their charges were expunged after completing community service.
Another assassination attempt? A man with false press and VIP passes toting a loaded shotgun, handgun, and high-capacity magazine was intercepted at a checkpoint a half-mile from the entrance of Donald Trump's rally in Coachella Valley, California on Saturday. The local sheriff said he believed the man was gunning to gun down Trump, but that it was all speculation. The suspect claimed he was a Trump supporter and brought the guns for his own safety.
Balloon fiesta fiasco: Albuquerque's annual hot air balloon festival had a few big kinks this year. One balloon caught on fire after it flew into power lines and then landed in a construction site. A different balloon knocked over a radio tower. Still another balloon hit a tree while trying to land on a golf course. A passenger in that balloon suffered a head injury and two other passengers had to be rescued since the balloon's basket remained stuck in the tree 25 feet above ground.
A song for your Monday: As a rehabilitated Southern Californian, I like to listen to this song whenever the rains start again in Seattle.
[$] Debian's "secret" sauce [LWN.net]
While Debian's "sauce" is not actually all that secret, it is
not particularly well-known either, Samuel Henrique said at the
start of his DebConf24
talk. There is a lot of software-engineering effort that has been
put in place by the distribution in order to create and maintain
its releases, but "loads of people are not aware
" of it.
That may be due to the fact that all of that is not really
documented anywhere in a central location that he can just point
someone to. Recognizing that is what led him to give the talk;
hopefully it will be a "first step toward
" helping solve the
problem.
Pluralistic: Dirty words are politically potent (14 Oct 2024) [Pluralistic: Daily links from Cory Doctorow]
Making up words is a perfectly cromulent passtime, and while most of the words we coin disappear as soon as they fall from our lips, every now and again, you find a word that fits so nice and kentucky in the public discourse that it acquires a life of its own:
http://meaningofliff.free.fr/definition.php3?word=Kentucky
I've been trying to increase the salience of digital human rights in the public imagination for a quarter of a century, starting with the campaign to get people to appreciate that the internet matters, and that tech policy isn't just the delusion that the governance of spaces where sad nerds argue about Star Trek is somehow relevant to human thriving:
https://www.newyorker.com/magazine/2010/10/04/small-change-malcolm-gladwell
Now, eventually people figured out that a) the internet mattered and, b) it was going dreadfully wrong. So my job changed again, from "how the internet is governed matters" to "you can't fix the internet with wishful thinking," for example, when people said we could solve its problems by banning general purpose computers:
https://memex.craphound.com/2012/01/10/lockdown-the-coming-war-on-general-purpose-computing/
Or by banning working cryptography:
Or by redesigning web browsers to treat their owners as threats:
https://www.eff.org/deeplinks/2017/09/open-letter-w3c-director-ceo-team-and-membership
Or by using bots to filter every public utterance to ensure that they don't infringe copyright:
https://www.eff.org/deeplinks/2018/09/today-europe-lost-internet-now-we-fight-back
Or by forcing platforms to surveil and police their users' speech (aka "getting rid of Section 230"):
Along the way, many of us have coined words in a bid to encapsulate the abstract, technical ideas at the core of these arguments. This isn't a vanity project! Creating a common vocabulary is a necessary precondition for having the substantive, vital debates we'll need to tackle the real, thorny issues raised by digital systems. So there's "free software," "open source," "filternet," "chat control," "back doors," and my own contributions, like "adversarial interoperability":
https://www.eff.org/deeplinks/2019/10/adversarial-interoperability
Or "Competitive Compatibility" ("comcom"), a less-intimidatingly technical term for the same thing:
https://www.eff.org/deeplinks/2020/12/competitive-compatibility-year-review
These have all found their own niches, but nearly all of them are just that: niche. Some don't even rise to "niche": they're shibboleths, insider terms that confuse and intimidate normies and distract from the real fights with semantic ones, like whether it's "FOSS" or "FLOSS" or something else entirely:
https://opensource.stackexchange.com/questions/262/what-is-the-difference-between-foss-and-floss
But every now and again, you get a word that just kills. That brings me to "enshittification," a word I coined in 2022:
https://pluralistic.net/2022/11/28/enshittification/#relentless-payola
"Enshittification" took root in my hindbrain, rolling around and around, agglomerating lots of different thoughts and critiques I'd been making for years, crystallizing them into a coherent thesis:
https://pluralistic.net/2023/01/21/potemkin-ai/#hey-guys
This kind of spontaneous crystallization is the dividend of doing lots of work in public, trying to take every half-formed thought and pin it down in public writing, something I've been doing for decades:
https://pluralistic.net/2021/05/09/the-memex-method/
After those first couple articles, "enshittification" raced around the internet. There's two reasons for this: first, "enshittification" is a naughty word that's fun to say. Journalists love getting to put "shit" in their copy:
https://www.nytimes.com/2024/01/15/crosswords/linguistics-word-of-the-year.html
Radio journalists love to tweak the FCC with cheekily bleeped syllables in slightly dirty compound words:
https://www.wnycstudios.org/podcasts/otm/projects/enshitification
And nothing enlivens an academic's day like getting to use a word like "enshittification" in a journal article (doubtless this also amuses the editors, peer-reviewers, copyeditors, typesetters, etc):
That was where I started, too! The first time I used "enshittification" was in a throwaway bad-tempered rant about the decay of Tripadvisor into utter uselessness, which drew a small chorus of appreciative chuckles about the word:
https://twitter.com/doctorow/status/1550457808222552065
The word rattled around my mind for five months before attaching itself to my detailed theory of platform decay. But it was that detailed critique, coupled with a minor license to swear, that gave "enshittification" a life of its own. How do I know that the theory was as important as the swearing? Because the small wave of amusement that followed my first use of "enshittification" petered out in less than a day. It was only when I added the theory that the word took hold.
Likewise: how do I know that the theory needed to be blended with swearing to break out of the esoteric realm of tech policy debates (which the public had roundly ignored for more than two decades)? Well, because I spent two decades writing about this stuff without making anything like the dents that appeared once I added an Anglo-Saxon monosyllable to that critique.
Adding "enshittification" to the critique got me more column inches, a longer hearing, a more vibrant debate, than anything else I'd tried. First, Wired availed itself of the Creative Commons license on my second long-form article on the subject and reprinted it as a 4,200-word feature. I've been writing for Wired for more than thirty years and this is by far the longest thing I've published with them – a big, roomy, discursive piece that was run verbatim, with every one of my cherished darlings unmurdered.
That gave the word – and the whole critique, with all its spiky corners – a global airing, leading to more pickup and discussion. Eventually, the American Dialect Society named it their "Word of the Year" (and their "Tech Word of the Year"):
https://americandialect.org/2023-word-of-the-year-is-enshittification/
"Enshittification" turns out to be catnip for language nerds:
https://becauselanguage.com/90-enpoopification/#transcript-60
I've been dragged into (good natured) fights over the German, Spanish, French and Italian translations for the term. When I taped an NPR show before a live audience with ASL interpretation, I got to watch a Deaf fan politely inform the interpreter that she didn't need to finger-spell "enshittification," because it had already been given an ASL sign by the US Deaf community:
https://maximumfun.org/episodes/go-fact-yourself/ep-158-aida-rodriguez-cory-doctorow/
I gave a speech about enshittification in Berlin and published the transcript:
https://pluralistic.net/2024/01/30/go-nuts-meine-kerle/#ich-bin-ein-bratapfel
Which prompted the rock-ribbed Financial Times to get in touch with me and publish the speech – again, nearly verbatim – as a whopping 6,400 word feature in their weekend magazine:
https://www.ft.com/content/6fb1602d-a08b-4a8c-bac0-047b7d64aba5
Though they could have had it for free (just as Wired had), they insisted on paying me (very well, as it happens!), as did De Zeit:
https://www.zeit.de/digital/internet/2024-03/plattformen-facebook-google-internet-cory-doctorow
This was the start of the rise of enshittification. The word is spreading farther than ever, in ways that I have nothing to do with, along with the critique I hung on it. In other words, the bit of string that tech policy wonks have been pushing on for a quarter of a century is actually starting to move, and it's actually accelerating.
Despite this (or more likely because of it), there's a growing chorus of "concerned" people who say they like the critique but fret that it is being held back because you can't use it "at church or when talking to K-12 students" (my favorite variant: "I couldn't say this at a NATO conference"). I leave it up to you whether you use the word with your K-12 students, NATO generals, or fellow parishoners (though I assure you that all three groups are conversant with the dirty little word at the root of my coinage). If you don't want to use "enshittification," you can coin your own word – or just use one of the dozens of words that failed to gain public attention over the past 25 years (might I suggest "platform decay?").
What's so funny about all this pearl-clutching is that it comes from people who universally profess to have the intestinal fortitude to hear the word "enshittification" without experiencing psychological trauma, but worry that other people might not be so strong-minded. They continue to say this even as the most conservative officials in the most staid of exalted forums use the word without a hint of embarrassment, much less apology:
I mean, I'm giving a speech on enshittification next month at a conference where I'm opening for the Secretary General of the United Nations:
https://icanewdelhi2024.coop/welcome/pages/Programme
After spending half my life trying to get stuff like this into the discourse, I've developed some hard-won, informed views on how ideas succeed:
First: the minor obscenity is a feature, not a bug. The marriage of something long and serious to something short and funny is a happy one that makes both the word and the ideas better off than they'd be on their own. As Lenny Bruce wrote in his canonical work in the subject, the aptly named How to Talk Dirty and Influence People:
I want to help you if you have a dirty-word problem. There are none, and I'll spell it out logically to you.
Here is a toilet. Specifically-that's all we're concerned with, specifics-if I can tell you a dirty toilet joke, we must have a dirty toilet. That's what we're all talking about, a toilet. If we take this toilet and boil it and it's clean, I can never tell you specifically a dirty toilet joke about this toilet. I can tell you a dirty toilet joke in the Milner Hotel, or something like that, but this toilet is a clean toilet now. Obscenity is a human manifestation. This toilet has no central nervous system, no level of consciousness. It is not aware; it is a dumb toilet; it cannot be obscene; it's impossible. If it could be obscene, it could be cranky, it could be a Communist toilet, a traitorous toilet. It can do none of these things. This is a dirty toilet here.
Nobody can offend you by telling a dirty toilet story. They can offend you because it's trite; you've heard it many, many times.
https://www.dacapopress.com/titles/lenny-bruce/how-to-talk-dirty-and-influence-people/9780306825309/
Second: the fact that a neologism is sometimes decoupled from its theoretical underpinnings and is used colloquially is a feature, not a bug. Many people apply the term "enshittification" very loosely indeed, to mean "something that is bad," without bothering to learn – or apply – the theoretical framework. This is good. This is what it means for a term to enter the lexicon: it takes on a life of its own. If 10,000,000 people use "enshittification" loosely and inspire 10% of their number to look up the longer, more theoretical work I've done on it, that is one million normies who have been sucked into a discourse that used to live exclusively in the world of the most wonkish and obscure practitioners. The only way to maintain a precise, theoretically grounded use of a term is to confine its usage to a small group of largely irrelevant insiders. Policing the use of "enshittification" is worse than a self-limiting move – it would be a self-inflicted wound. As I said in that Berlin speech:
Enshittification names the problem and proposes a solution. It's not just a way to say 'things are getting worse' (though of course, it's fine with me if you want to use it that way. It's an English word. We don't have der Rat für englische Rechtschreibung. English is a free for all. Go nuts, meine Kerle).
Finally: "coinage" is both more – and less – than thinking of the word. After the American Dialect Society gave honors to "enshittification," a few people slid into my mentions with citations to "enshittification" that preceded my usage. I find this completely unsurprising, because English is such a slippery and playful tongue, because English speakers love to swear, and because infixing is such a fun way to swear (e.g. "unfuckingbelievable"). But of course, I hadn't encountered any of those other usages before I came up with the word independently, nor had any of those other usages spread appreciably beyond the speaker (it appears that each of the handful of predecessors to my usage represents an act of independent coinage).
If "coinage" was just a matter of thinking up the word, you could write a small python script that infixed the word "shit" into every syllable of every word in the OED, publish the resulting text file, and declare priority over all subsequent inventive swearers.
On the one hand, coinage takes place when the coiner a) independently invents a word; and b) creates the context for that word that causes it to escape from the coiner's immediate milieu and into the wider world.
But on the other hand – and far more importantly – the fact that a successful coinage requires popular uptake by people unknown to the coiner means that the coiner only ever plays a small role in the coinage. Yes, there would be no popularization without the coinage – but there would also be no coinage without the popularization. Words belong to groups of speakers, not individuals. Language is a cultural phenomenon, not an individual one.
Which is rather the point, isn't it? After a quarter of a century of being part of a community that fought tirelessly to get a serious and widespread consideration of tech policy underway, we're closer than ever, thanks, in part, to "enshittification." If someone else independently used that word before me, if some people use the word loosely, if the word makes some people uncomfortable, that's fine, provided that the word is doing what I want it to do, what I've devoted my life to doing.
The point of coining words isn't the pilkunnussija's obsession with precise usage, nor the petty glory of being known as a coiner, nor ensuring that NATO generals' virgin ears are protected from the word "shit" – a word that, incidentally, is also the root of "science":
https://www.arrantpedantry.com/2019/01/24/science-and-shit/
Isn't language fun?
Privacy Policies of Sex Worker Directories https://sexworkersear.ch/2024/09/11/privacy-policies/
"Small Yard, High Fence": These four words conceal a mess https://www.programmablemutter.com/p/small-yard-high-fence-these-four
#15yrsago Finland makes broadband a right https://www.cnet.com/tech/services-and-software/finland-makes-1mb-broadband-access-a-legal-right/
#10yrsago Dead Set: Richard Kadrey’s young adult horror novel https://memex.craphound.com/2014/10/14/dead-set-richard-kadreys-young-adult-horror-novel/
#10yrsago Gamergate as a hate-group https://memex.craphound.com/2014/10/14/gamergate-as-a-hate-group/
#10yrsago Lamar “SOPA” Smith dispatches GOP commissars to National Science Foundation https://gizmodo.com/the-gop-intensifies-its-attacks-on-the-national-science-1645733575
#10yrsago Paolo Bacigalupi’s “The Doubt Factory” https://memex.craphound.com/2014/10/14/paolo-bacigalupis-the-doubt-factory/
#5yrsago What it would cost to build Trump’s snake-and-alligator border moat https://www.defenseone.com/ideas/2019/10/snake-and-alligator-border-moat-budget-analysis/160350/
#5yrsago German bank robber staged a 5-day fillibuster with his legally guaranteed right to a post-sentencing “final word” https://www.cnn.com/2019/10/09/europe/bank-robbery-five-day-speech-intl-scli-grm/index.html
#5yrsago Apple told TV Plus showrunners to avoid plots that might upset Chinese officials https://www.buzzfeednews.com/article/alexkantrowitz/apple-china-tv-protesters-hong-kong-tim-cook
#5yrsago China’s new cybersecurity rules ban foreign companies from using VPNs to phone home https://memex.craphound.com/2019/10/14/chinas-new-cybersecurity-rules-ban-foreign-companies-from-using-vpns-to-phone-home/
#5yrsag Orban humiliated: Hungary’s crypto-fascist Fidesz party suffers string of municipal election defeats https://www.theguardian.com/world/2019/oct/13/opposition-parties-candidate-wins-budapest-mayoral-race
#5yrsago Proof-of-concept supply-chain poisoning: tiny, undetectable hardware alterations could compromise corporate IT https://memex.craphound.com/2019/10/14/proof-of-concept-supply-chain-poisoning-tiny-undetectable-hardware-alterations-could-compromise-corporate-it/
#1yrago Leaving Twitter had no effect on NPR's traffic https://pluralistic.net/2023/10/14/freedom-of-reach/#ex
SOSS Fusion (Atlanta), Oct 22
https://sossfusion2024.sched.com/speaker/cory_doctorow.1qm5qfgn
Eagle Eye Books (Decatur), Oct 23
https://eagleeyebooks.com/event/2024-10-23/cory-doctorow
TusCon (Tucson), Nov 8-10
https://tusconscificon.com/
International Cooperative Alliance (New Delhi), Nov 24
https://icanewdelhi2024.coop/welcome/pages/Programme
ISSA-LA Holiday Celebration keynote (Los Angeles), Dec 18
https://issala.org/event/issa-la-december-18-dinner-meeting/
Was There Ever An Old, Good Internet? (David Graeber
Institute)
https://www.youtube.com/watch?v=T6Jlxx5TboE
Go Fact Yourself
https://maximumfun.org/episodes/go-fact-yourself/ep-158-aida-rodriguez-cory-doctorow/
"The Lost Cause:" a solarpunk novel of hope in the climate emergency, Tor Books (US), Head of Zeus (UK), November 2023 (http://lost-cause.org). Signed, personalized copies at Dark Delicacies (https://www.darkdel.com/store/p3007/Pre-Order_Signed_Copies%3A_The_Lost_Cause_HB.html#/)
"The Internet Con": A nonfiction book about interoperability and Big Tech (Verso) September 2023 (http://seizethemeansofcomputation.org). Signed copies at Book Soup (https://www.booksoup.com/book/9781804291245).
"Red Team Blues": "A grabby, compulsive thriller that will leave you knowing more about how the world works than you did before." Tor Books http://redteamblues.com. Signed copies at Dark Delicacies (US): and Forbidden Planet (UK): https://forbiddenplanet.com/385004-red-team-blues-signed-edition-hardcover/.
"Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin", on how to unrig the markets for creative labor, Beacon Press/Scribe 2022 https://chokepointcapitalism.com
"Attack Surface": The third Little Brother novel, a standalone technothriller for adults. The Washington Post called it "a political cyberthriller, vigorous, bold and savvy about the limits of revolution and resistance." Order signed, personalized copies from Dark Delicacies https://www.darkdel.com/store/p1840/Available_Now%3A_Attack_Surface.html
"How to Destroy Surveillance Capitalism": an anti-monopoly pamphlet analyzing the true harms of surveillance capitalism and proposing a solution. https://onezero.medium.com/how-to-destroy-surveillance-capitalism-8135e6744d59?sk=f6cd10e54e20a07d4c6d0f3ac011af6b) (signed copies: https://www.darkdel.com/store/p2024/Available_Now%3A__How_to_Destroy_Surveillance_Capitalism.html)
"Little Brother/Homeland": A reissue omnibus edition with a new introduction by Edward Snowden: https://us.macmillan.com/books/9781250774583; personalized/signed copies here: https://www.darkdel.com/store/p1750/July%3A__Little_Brother_%26_Homeland.html
"Poesy the Monster Slayer" a picture book about monsters, bedtime, gender, and kicking ass. Order here: https://us.macmillan.com/books/9781626723627. Get a personalized, signed copy here: https://www.darkdel.com/store/p2682/Corey_Doctorow%3A_Poesy_the_Monster_Slayer_HB.html#/.
Unauthorized Bread: a middle-grades graphic novel adapted from my novella about refugees, toasters and DRM, FirstSecond, 2025
Today's top sources:
Currently writing:
A Little Brother short story about DIY insulin PLANNING
Picks and Shovels, a Martin Hench noir thriller about the heroic era of the PC. FORTHCOMING TOR BOOKS FEB 2025
Latest podcast: Spill, part one (a Little Brother story) https://craphound.com/littlebrother/2024/10/06/spill-part-one-a-little-brother-story/
This work – excluding any serialized fiction – is licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.
https://creativecommons.org/licenses/by/4.0/
Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.
Blog (no ads, tracking, or data-collection):
Newsletter (no ads, tracking, or data-collection):
https://pluralistic.net/plura-list
Mastodon (no ads, tracking, or data-collection):
Medium (no ads, paywalled):
Twitter (mass-scale, unrestricted, third-party surveillance and advertising):
Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):
https://mostlysignssomeportents.tumblr.com/tagged/pluralistic
"When life gives you SARS, you make sarsaparilla" -Joey "Accordion Guy" DeVilla
Highly recommend today's Olbermann podcast. I've seen video of a recent press interview where Trump said he's use the military to arrest and in some cases kill Americans, starting with but not limited to Hispanics. This is not being reported in the major news orgs. We can't wait for them to fix it, we have to create new channels for news flow that have credibility and work, and we need it before the election. People need at least have a chance of understanding what they are voting for.
On naming things: The tension between naming something for what it is, what it does, or how it is used [The Old New Thing]
There is a tension in the problem of naming things: Do you name something for what it is? Do you name it for what it does? Or do you name it for how it is used?
Previously, we saw
std::type_identity
, which is named after what it is. One
reaction was that the class should have been named something like
std::non_deduced
, which names it after how it is used:
To prevent template type deduction.
template<typename...Args>
void enqueue(
std::function<void(std::non_deduced_t<Args>...)> const& work,
Args...args)
{
enqueue([=] { work(args...); });
}
We have the opposite problem with
std::in_place
: The in_place
types are named
after how they are used, rather than what they are. They are tags
that are used by some constructors of variant-like types to
indicate what they should hold.
in_place
: Hold the primary thing (as opposed to
nothing, or the alternate thing)in_place_type<T>
: Hold the thing of type
T
in_place_index<I>
: Hold the thing at index
I
But when
we used it as a tag type in our example, it was used not to
indicate what the class itself should hold, but rather what the
class should hold a reference to. Perhaps it could be named after
what it is: std::type_tag<T>
and
std::index_tag<I>
.
Though what about std::in_place
? Maybe we leave
that one alone?
And then we have
std::monostate
, which is named after what it is,
rather than how it is used. In other languages, this type goes by
the name unit
, which to me feels like a name chosen
with category-theory-colored glasses. (Also, the name
unit
could be misinterpreted as having to do with
systems of
measurement.)
Bonus chatter: Note that none of the examples are named after what they do, because none of them do anything!
The post On naming things: The tension between naming something for what it is, what it does, or how it is used appeared first on The Old New Thing.
Celebrating Maialata With Plates & Pages [Whatever]
Maialata was a term I’d never heard before until I saw that Five on Vine and Household Books was having another Plates & Pages event, and that was the theme. Based on my fantastic experience last year with this event, I knew immediately I had to get myself a ticket.
If you didn’t catch my post over Plates & Pages last year, it’s an amazing event consisting of a five course dinner, hosted at a restaurant in Cincinnati called Five on Vine, that comes with wine pairings and literary pairings provided by Household Books, a bookstore also located in Cincinnati (which I also did a post over!). Last year, the wines were all from different places and different estates, but this year Five on Vine partnered with Two Mountain Winery out in Yakima, Washington, and they provided all the wines for this event’s pairings. The winery is also doubly certified sustainable through RULES for Sustainable Wine Growing and Sustainable WA.
If you’re like me and had never heard of Maialata before, it’s an Italian celebration of pig. Every dish you are about to see could not have been possible without the noble pig.
But before we get to the courses themselves, let me start by pointing out that last time I noted how friendly and welcoming the staff were, and that was even more true this time. I had not been back to Five on Vine since the event last year, so this was only my second time there. Despite that, the first person that greeted me said she remembered me from last time, and complimented my dress. Throughout the night she even checked in with me several times and made me feel so valued.
The night started off the same as last year, with a welcome glass of champagne and a perusal of the pop-up bookshop set up in the bar area. There were cookbooks, art books, rare books, books over Italy, a nice variety to be certain. I ended up picking up a paperback copy of Under the Tuscan Sun, which I was assured was a good read, and there’s even a movie adaptation! I thought it was a very fitting choice, given the theme of the evening.
As was the case last year, though I had come alone I was not dining alone, as they sat me at a table with several other guests, one of whom I sat next to last year. It was nice to see a familiar face, and I was equally excited to make new friends this time around.
While we were sipping on our champagne, the kitchen gifted us with an amuse-bouche of toasted focaccia with coppa that was served with truffle honey and olive oil.
This was the most crispity, crunchity, scrumptious piece of focaccia that has ever graced my tastebuds. The honey was rich, sticky gold atop the salt and Calabrian chili-cured coppa. If you were intimidated by the words “honey” and “truffle” being put together, let me ease your worries by telling you how pleasantly mild the truffle taste was. It lent its distinct flavor to provide a riveting complexity to this simple yet effective dish, without overwhelming it.
And here was the line-up for the rest of the evening:
Starting the first course, we were served Two Mountain Sauvignon Blanc 2023 alongside Napoleon de Porc, a dish consisting of three components of pork: a liver mousse, a country pate, and a truffle sausage, served with macerated stone fruit and micro dijon.
This Neapolitan of pork was a wild ride of texture, with the mousse being a velvety-creaminess that melted in your mouth, the pate being lusciously fatty, and the sausage providing a bit more of a solid bite. There was no way you could consider this dish monotonous. In terms of flavor, it was certainly a meat-lover’s dream. Rich with porky goodness and flavored nicely with herbs, the fruit helped cut through this dense, luxuriant first course.
Which made the wine pairing a perfect contrast, as it was a crisp white that was light and extremely sippable. Matthew, the winemaker, and one of the owners of Two Mountain Winery, told us all the details behind the making of this wine, such as its high elevation, thin soil, temperature swings from day to night, and no humidity. I was told it has notes of kiwi, pineapple, sort of a tropical fruit vibe, with a slight grassy taste. Usually when I’m told that wine tastes like something, I don’t find it to be true, but in this case I did actually get those flavors! I got what Matthew was saying, and that was surprising because usually wine just tastes like, well, wine. I would’ve been happy to have another glass of this one.
As for the quote that accompanied this course, it is one from Dave Eggers’s memoir, A Heartbreaking Work of Staggering Genius:
“Because secrets do not increase in value if kept in a gore-ian lockbox, because one’s past is either made useful or else mutates and becomes cancerous. We share things for the obvious reasons: it makes us feel un-alone, it spreads the weight over a larger area, it holds the possibility of making our share lighter. And it can work either way – not simply as a pain-relief device, but, in the case of not bad news but good, as a share-the-happy-things-I’ve-seen/lessons-I’ve-learned vehicle. Or as a tool for simple connectivity for its own sake, a testing of waters, a stab at engagement with a mass of strangers.”
Personally, I really loved this quote because I think it speaks to one of the biggest things that makes humans human, and that’s a need, or maybe even a love, to share. Share experiences, share thoughts, memories, ideas, works of art, sharing is just essential to connecting with others. I especially loved that I was in fact, surrounded by strangers, and we were all sharing in this meal, in this experience. Truly a beautifully chosen quote.
Course two was Pork Sugo. Apparently sugo just means sauce in Italian, so basically pork sauce over fileja pasta, served with Two Mountain Lemberger 2021.
(photo courtesy of Five on Vine)
We were told the pasta was made fresh in house that same day. The sauce consisted of the pork in a sofrito, which is like an Italian mirepoix: garlic, celery, carrots, onions, tomatoes, all that good stuff. There was also cinnamon and a smidge of cocoa in this dish which ended up being very present flavor-wise and added some great warmth overall. The pasta was soft without being mushy, and the veggies in the sauce were perfectly cooked down. I really liked the unique shape of the pasta, you could tell it was hand-rolled with love.
As for the Lemberger, I’d actually never heard of this type of wine before, but it was described as a poor man’s Pinot Noir. And if you know me, you know I don’t tend to enjoy dry reds. Though not exactly loving this wine, I did appreciate the thought and intention behind the pairing of it with this pasta, as a dry red alongside a bowl of fresh-made pasta seemed extra wonderfully Italian.
Speaking of being transported to Italy, the second quote of the night comes from The Godfather:
“Yet, he thought, if I can die saying, ‘Life is so beautiful,’ then nothing else is important. If I can believe in myself that much, nothing else matters.”
Do we not all possess a hope that when our time comes, we’ll be able to look back at our lives and see something truly beautiful? I know I have that hope.
The third course of the evening was pork shoulder, spoon cornbread, a late-harvest succotash, topped with an opal basil salsa verde. This was served with Two Mountain Cabernet Franc Reserve.
(photo courtesy of Five on Vine)
People often joke that when you go to fancy dinners like this, that you still leave hungry. This portion of pork shoulder was no joke. It was a hefty chunk of meat, but it was so tender you didn’t need a knife. Spoon cornbread is one of my favorite side dishes, and this one was soft and moist, a perfect carb to accompany the late-summer veggies in the succotash. The basil salsa verde was much like a chimichurri, adding a bright freshness to the succulent pork and a wonderful pop of color to the dish overall. As delicious as this dish was, I knew that if I finished this course I wouldn’t have any room left for the following two courses, so I sadly had to leave some behind.
For the cabernet that accompanied this dish, I’ve actually never heard of a Cabernet Franc before. When I think cab, I just think cab, so I was surprised to learn there are different varieties of it. Then again, it makes sense I didn’t really realize there were different ones considering I try to avoid cabs. Anyways, I ended up not finishing this wine, and poured most of it into the dump bucket. But I did give it a couple sips just to be fair! And boy oh boy was it definitely a dry red. Funnily enough, though, I kind of enjoy when a dry red is served as the pairing, because I like hearing how much everyone else at the table loves it. I sort of am the odd one out when it comes to big, bold, beautiful reds, and I am happy that others enjoy it.
The quote that accompanied this dish was one that I’ve actually heard several times before, and it’s from Mary Oliver’s Wild Geese:
“You only have to let the soft animal of your body love what it loves.”
This quote is so wholesome to me. Permission to simply love what you love, and feel no shame in it. To unabashedly embrace what makes you happy and what makes you feel good. It’s nice. I like it.
The final savory course of the evening was this porchetta with bordelaise and a bitter greens salad, paired with one of Two Mountain’s special Brothers Reserve Blend #9 2019.
Throughout the entire meal, everyone at the table would take a bite of each new dish, and immediately convene about how incredible it was. This course was even more noteworthy, with nearly everyone saying that this was their favorite course so far, and that it was unbelievably good. If you’re someone who prefers chewy bacon over crispy, this is the dish for you. This slab of porchetta was the epitome of decadence, an absolute pinnacle of overindulgent luxuriousness. The fat practically melted like butter in your mouth, contrasted beautifully by the crisp, bitter greens.
All this being said, this was actually my least favorite dish of the night. Which is not the same thing as saying I didn’t like it, because obviously I did. In fact, I thought it was absolutely delicious, but it just didn’t do it for me the same way the other courses did, and I didn’t finish it because I was so stuffed.
So what makes this particular wine “special” compared to the others? This red blend is from The Brothers Reserve Collection, which is from the early days when Two Mountain consisted of only the two brothers who currently own and operate it, Matt and Patrick Rawn. It’s a limited production line. This particular blend is 79% Merlot, 11% Cabernet Sauvignon, and 10% Cabernet Franc. It was just as rich and bold as the dish it accompanied. It was another one that I did not finish, but I still appreciate the vision.
Our fourth quote is the shortest of all, and yet might just be my favorite. It is from Station Eleven by Emily St. John Mandel:
“Survival is insufficient.”
Yes, it certainly is, isn’t it. Damn well said. I feel that I am always saying this, but usually in a much less concise and efficient way. A lot of the things I do are very unnecessary. Like going to artist’s markets and buying candles and crocheted plushies, sending letters to my friends and adorning them with stickers and washi tapes, baking tiramisu brownies, trying to perfect the art of making charcuterie boards, seeing movies in the theater, or attending five course wine dinners. These types of things are not conducive to survival, and yet they are entirely necessary for living. They are what helps to make my life a life and not just an existence. And while I could cut it all out and live as basically as possible, it simply wouldn’t be sufficient.
For our sweet finish, we had an apple pie, served with Two Mountain Riesling 2023.
(photo courtesy of Five on Vine)
I like pie. A lot. So when I say this was the best apple pie I’ve ever had in my life, you can trust that that is high praise. You’re probably thinking, how does this pie fit in with the whole pork thing going on? Well, the crust is made from lard! For all you lard haters out there, you are seriously missing out, lard totally rocks. This pie was topped with a goat’s milk gelato and a lovely streusel topping. I felt that I had been transported to a sweet Italian grandmother’s kitchen. I was slightly speechless upon taking the first bite of this, as I knew in that moment that it was the single best bite of the evening, and the perfect thing to end such an amazing meal.
I was happy to finish on a white, as I had had my fill of reds at this point. This Riesling was an excellent choice to balance out the sweet, buttery (or I guess lardy?) goodness of the apple pie. It was crisp, had a sort of tart green grape flavor, and was nicely acidic.
Our final quote of the evening is from The English Patient by Michael Ondaatje:
“We die containing a richness of lovers and tribes, tastes we have swallowed, bodies we have plunged into and swum up as if rivers of wisdom, characters we have climbed into as if trees, fears we have hidden in as if caves.”
All that we are is everything we have done and everyone that we have connected with throughout our life. I am grateful that I can add the experience I had at this event, and all the people I connected with, to my ever growing list of things I contain.
After everything was said and done, I left happy, full, enriched, and with a new book. It was a great night.
I also left with some questions in mind, and I had the opportunity to talk to Five on Vine’s social media manager, Livia, who was kind enough to answer some of these questions for me.
I was curious about how Plates & Pages started in the first place, like who had thought to combine books and a wine dinner? It’s certainly something I’ve never seen done before, so how did it come to be? Livia informed me that the owner of Household Books, Bobby, used to be a server at Five on Vine’s sister restaurant, Losanti. He’s the one who originally had the vision for this event even before he opened his bookstore.
I was also wondering if we could expect this type of event at any of the sister restaurants, like Losanti, in the future. The answer is that Five on Vine sort of has the best space for accommodating this type of event, the interior just works really well for it, so it will probably be the only space they have this event in.
Last year when I attended Plates & Pages, it didn’t have a theme, so I was surprised to see that this one’s theme was Maialata, and was curious why Maialata was chosen, and if there would be more themes moving forward. Livia’s response was very detailed and informative, so I won’t paraphrase her response:
“This dinner was partnered with Young Buck, the newest addition to Crown Restaurant Group, our Deli concept. Young Buck is also a CRG commissary kitchen. It is where all our whole-animal butchery happens for all five sister restaurants, and in the evening, where all our fresh handmade pasta is made. Chef Brain Young and his partner, Cailtin Young are behind the Young Buck concept. We wanted to highlight Chef’s Brian craft of whole animal butchering, and sustainability.
“That led to the theme Maialata. The Italian celebration of the pig. Chef Brian Young wanted to showcase that tradition with the changing of the seasons, Fall to winter. That is also why Young Buck hosted the separate whole animal butchering demo event. It showcased Chef Brian breaking down the pig at Young Buck that would end up being used for the Plates & Pages dinner. Cincinnati is also known as the Swine City, so we thought the theme was fitting.
“Moving forward, the theme happened organically with everyone involved, from the chefs to the winemakers, so we can’t preplan. We create the events playing off everyone’s creativity together to come up with the concept so we do not have the next one laid out yet.”
In a similar vein, I had been wondering why Five on Vine decided to partner specifically with Two Mountain Winery for all the wines of the evening. It turns out, sort of following the theme of Maialata, they wanted to emphasize sustainability, and Two Mountain Winery was the perfect choice to highlight sustainability.
It’s so cool to see just how much thought goes into everything, and really see just how many moving parts and how many people are involved in these kinds of events.
What dish looks the best to you? Are you a fan of dry reds? Have you read any of the books the quotes are from? Let me know in the comments, and be sure to follow Five on Vine, Household Books, and Two Mountain Winery on Instagram, and have a great day!
-AMS
Security updates for Monday [LWN.net]
Security updates have been issued by Debian (docker.io, libreoffice, node-dompurify, python-reportlab, and thunderbird), Fedora (buildah, chromium, kernel, kernel-headers, libgsf, mosquitto, p7zip, podman, python-cramjam, python-virtualenv, redis, rust-async-compression, rust-brotli, rust-brotli-decompressor, rust-libcramjam, rust-libcramjam0.2, rust-nu-command, rust-nu-protocol, rust-redlib, rust-tower-http, thunderbird, and webkit2gtk4.0), Oracle (.NET 6.0, .NET 8.0, e2fsprogs, firefox, golang, openssl, python3-setuptools, systemd, and thunderbird), SUSE (chromium, firefox, java-jwt, libmozjs-128-0, libwireshark18, ntpd-rs, OpenIPMI, thunderbird, and wireshark), and Ubuntu (firefox, python2.7, python3.5, thunderbird, and ubuntu-advantage-desktop-daemon).
Representative Line: Ripping Away the Mask [The Daily WTF]
Jason was investigating a bug in a bitmask. It
should have been set to 0b11
, but someone had
set it to just plain decimal 11
. The line responsible
looked like this:
byte number = (byte) 11;
This code takes the decimal number 11, casts it to a byte, and stores it in a byte, leaving us with the decimal number 11.
Curious, Jason checked the blame and saw that one of their senior-most devs was responsible. Figuring this was a good opportunity to poke a little fun at the dev for a silly mistake like this, Jason sent them a message about the difficulties of telling apart decimal values and binary values when the decimal value only contained ones and zeroes.
"What are you talking about?" the dev replied back. "The
(byte)
operator tells the compiler that the number
is in binary."
Concerned by that reply, Jason started checking the rest of the code. And sure enough, many places in the code, the senior dev had followed this convention. Many of them were wrong, and just hadn't turned into a bug yet. One of two were coincidentally setting the important bits anyway.
Now, in a vague "defense" of what the senior dev was trying to
do, C doesn't have a standard way of specifying binary literals.
GCC and Clang both have a non-standard extension which lets you do
0b11
, but that's not standard. So I
understand the instinct- "there should be an easy way to do this,"
even if anyone with more than a week's experience *should have
known better*.
But the real moral of the story is: don't use bitmasks
without also using constants. It never should have been
written with literals, it should have been written as byte
number = FLAG_A | FLAG_B
. The #define
for the
flags could be integer constants, or if you're feeling spicy about
it, bitshift operations: #define FLAG_A = (1 <<
1)
. Then you don't need binary literals, and also
your code is actually readable for humans.
It was difficult to track down all the places where this
misguided convention for binary literals was followed, as it was
hard to tell the difference between that and a legitimate cast to
byte
. Fortunately, there weren't that many
places where bitmasks were getting set.
Perfectl Malware [Schneier on Security]
Perfectl in an impressive piece of malware:
The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said. It can also exploit CVE-2023-33246, a vulnerability with a severity rating of 10 out of 10 that was patched last year in Apache RocketMQ, a messaging and streaming platform that’s found on many Linux machines.
The researchers are calling the malware Perfctl, the name of a malicious component that surreptitiously mines cryptocurrency. The unknown developers of the malware gave the process a name that combines the perf Linux monitoring tool and ctl, an abbreviation commonly used with command line tools. A signature characteristic of Perfctl is its use of process and file names that are identical or similar to those commonly found in Linux environments. The naming convention is one of the many ways the malware attempts to escape notice of infected users.
Perfctl further cloaks itself using a host of other tricks. One is that it installs many of its components as rootkits, a special class of malware that hides its presence from the operating system and administrative tools. Other stealth mechanisms include:
- Stopping activities that are easy to detect when a new user logs in
- Using a Unix socket over TOR for external communications
- Deleting its installation binary after execution and running as a background service thereafter
- Manipulating the Linux process pcap_loop through a technique known as hooking to prevent admin tools from recording the malicious traffic
- Suppressing mesg errors to avoid any visible warnings during execution.
The malware is designed to ensure persistence, meaning the ability to remain on the infected machine after reboots or attempts to delete core components. Two such techniques are (1) modifying the ~/.profile script, which sets up the environment during user login so the malware loads ahead of legitimate workloads expected to run on the server and (2) copying itself from memory to multiple disk locations. The hooking of pcap_loop can also provide persistence by allowing malicious activities to continue even after primary payloads are detected and removed.
Besides using the machine resources to mine cryptocurrency, Perfctl also turns the machine into a profit-making proxy that paying customers use to relay their Internet traffic. Aqua Security researchers have also observed the malware serving as a backdoor to install other families of malware.
Something this complex and impressive implies that a government is behind this. North Korea is the government we know that hacks cryptocurrency in order to fund its operations. But this feels too complex for that. I have no idea how to attribute this.
Philipp Kern: Touch Notifications for YubiKeys [Planet Debian]
When setting up your YubiKey you have the option to
require the user to touch the device to authorize an operation (be
it signing, decrypting, or authenticating). While web browsers
often provide clear prompts for this, other applications like SSH
or GPG will not. Instead the operation will just hang without any
visual indication that user input is required. The YubiKey itself
will blink, but depending on where it is plugged in that is not
very visible.
yubikey-touch-detector (fresh in unstable) solves this issue by providing a way for your desktop environment to signal the user that the device is waiting for a touch. It provides an event feed on a socket that other components can consume. It comes with libnotify support and there are some custom integrations for other environments.
For GNOME and KDE libnotify support should be sufficient, however you still need to turn it on:
$ mkdir -p ~/.config/yubikey-touch-detector
$ sed -e 's/^YUBIKEY_TOUCH_DETECTOR_LIBNOTIFY=.*/YUBIKEY_TOUCH_DETECTOR_LIBNOTIFY=true/' \
< /usr/share/doc/yubikey-touch-detector/examples/service.conf.example \
> ~/.config/yubikey-touch-detector/service.conf
$ systemctl --user restart yubikey-touch-detector
I would still have preferred a more visible, more modal prompt. I guess that would be an exercise for another time, listening to the socket and presenting a window. But for now, desktop notifications will do for me.
PS: I have not managed to get SSH's no-touch-required to work with
YubiKey 4, while it works just fine with a YubiKey 5.
Grrl Power – Dabbler’s Science Corner #6 [Grrl Power]
It’s been decided to keep Deus’s supposed revelations about the nature of Superpowers mum at the moment, mostly due to the assumed “gold rush” of scientists playing god with live human specimens. Since human DNA is the only known way to interact with the Superion field, there’s no animal testing possible, or, really any other laboratory experiments, other than seeing if anything that’s extremely close to human DNA might also work, and also what the limitations are when it comes to the field’s interaction with “living” specimens. Like, could a vial of a Super’s blood also somehow summon lightning the same way the Super it came from can?
No, if the information got out, everyone who has a working knowledge of human history or human nature or just a functional brain realizes that a bunch of low-level Supers are going to wind up in dungeons, hoosegows, gulags, and centre pour peines aménagées. Okay, maybe not the last one. That’s French for “Center for reduced sentences” but the first time I read that my brain saw “Center for penis ménages” as in ménage à trois, but exclusively for penises. And the image my brain conjured wasn’t a gay ménage, either, but like, literally just for penises, so it’d be a room full of guys walking around with sandwich boards, only the board extends up over their faces, and the phalluses stick out of a hole in the board like each guy is an ambulatory glory hole. That’s all totally irrelevant to my comment, just thought I would inflict upon you how my brain works.
Anyway… Oh, right, dungeons full of low-level supers being experimented on, probably forcibly bred, you know, all the usual tropes.
The new vote incentive is up!
Dabbler went somewhere tropical, in a very small bikini. As you might guess, it doesn’t stay on for long, which of course, you can see over at Patreon. Also she has an incident with “lotion,” and there’s a bonus comic page as well.
Double res version will be posted over at Patreon. Feel free to contribute as much as you like.
Some simple rules for source control [Seth's Blog]
Collaborating on documents and projects has never been easier, which is why we screw it up so often. Sharing and interacting with intent will save you heartache and wasted time. Some things to consider:
Naming: Begin by naming your file with a digit and concept and a date. Something like “1 Book Presentation October 24”.
And then, with each substantial edit, hit SAVE AS and increment the number. It’s very clear that “3 Book Presentation October 24” is a more recent edit.
Never name a file with “Final” because, as we all know, final is an elusive construct.
Who has the conn? While some cloud-based services like Google docs do a pretty good job of allowing shared edits, it pays to announce who has the controlling, official document. When two people edit different versions of a document at the same time, all that work is wasted. “Cheryl, it’s yours now, I won’t touch it until you send it back.”
Suggested edits: In Google docs, the default is to edit the document (the little pencil). You can switch this (top right corner) to the option for ‘suggesting.’ The beauty of this is that it allows the controlling editor to see the changes that are being offered and to accept or reject them. It creates a more thoughtful flow to creation. Endless conversations via the comments panel almost always lose important information.
A shared doc is better than an email thread: If you know that you’re working toward something, start a Google doc and outline the proposition. Then invite others to edit and improve it. This will lead to a final agenda or outline or proposal. The problem with email threads with multiple contributors is that nuance is lost and contradictions persist.
The original format: The original document is better than a PDF, and a PDF is better than a screenshot. If you start with a spreadsheet, take a screenshot, put the image in a Powerpoint and then email it to someone as a PDF, you’ve pretty much guaranteed that editing it going forward is going to be a mess. Always include a folder of the underlying documents, properly named.
I’d ask for edits and improvements to this post, but this is the wrong format for that. Feel free to copy and paste and share… you have the conn.
Obliviator, Part Three [Penny Arcade]
New Comic: Obliviator, Part Three
Hidden in the detail of the UK’s carbon capture and storage scheme are unlimited financial liabilities and huge environmental costs.
By George Monbiot, published in the Guardian 11th October 2024
This will be Keir Starmer’s HS2: a hugely expensive scheme that will either be abandoned, scaled back or require massive extra funding to continue, after many billions have been spent. The government’s plan for carbon capture and storage (CCS) – catching carbon dioxide from major industry and pumping it into rocks under the North Sea – is a fossil fuel-driven boondoggle that will accelerate climate breakdown. Its ticket price of £21.7bn is just the beginning of a phenomenal fiscal nightmare.
There might be a case for a CCS programme if the following conditions were met. First, that the money for cheaper and more effective projects had already been committed. The opposite has happened. Labour slashed its green prosperity plan from £28bn a year to £15bn, and with it a sensible and rational programme for insulating 19m homes.
The government boasts that its CCS scheme will be “the equivalent of taking around 4m cars off the road”. But at far lower cost, through a rational transport policy, it could remove millions of real cars from the roads, while improving our mobility, cutting air pollution and releasing land for green spaces and housing.
It could also launch a programme for the mass restoration of nature in the UK. The rewilding of land and sea would draw down vast amounts of carbon from the atmosphere while simultaneously reversing our ecological catastrophe. All these are cost-effective ways of eliminating greenhouse gas emissions. And all of them, unlike CCS, have “co-benefits”: they achieve more than one good thing.
That £21.7bn is the budget for construction only. To judge by decades of expensive CCS failures, it’s likely to be highly optimistic. The UK’s three previous attempts at CCS (the 2005 Peterhead plan, the 2011 demonstration project and the 2012 funding competition) were all cancelled as a result of cost escalation.
An analysis by Oxford University’s Smith School shows that a heavy reliance on CCS massively increases the costs of cutting emissions. By contrast to other technologies such as solar, wind and batteries, its costs have not fallen at all in 40 years. When I asked the government what guarantee it could provide that construction costs would be capped at £21.7bn, it gave me a woolly answer about “value for money”, but no such reassurance.
And this is just the start of it. Buried in an obscure ancillary document is a government commitment to pay a “premium” for the hydrogen component of the CCS programme for 15 years. How much will the total cost of this be? Again, no clear answer. Cutting cost-effective measures in favour of an open-ended, staggeringly expensive programme is the very definition of fiscal irresponsibility.
The second condition is that CCS will accelerate or complete the UK’s decarbonisation. But there’s a reason why oil and gas companies have lobbied so forcefully for this policy: it licenses continued fossil fuel production. The government’s CCS decision has been sold to us as a way to deliver blue hydrogen. This means hydrogen made from fossil gas, as opposed to green hydrogen, which is made by electrolysis with renewable electricity.
An analysis by the climate experts Carbon Tracker shows that the additional gas demand caused by the UK’s CCS blue hydrogen programme will greatly increase overall emissions. It would exhaust the UK’s domestic gas supply, which would then necessitate importing liquefied gas (LNG) from the US and other sources. The government knows this, which is why it intends to approve the construction of an LNG terminal at Teesside.
LNG from the US, thanks to the impacts of fracking, liquefaction and leakage, releases higher greenhouse gas emissions than coal. Blue hydrogen produced from LNG massively exceeds the low carbon hydrogen standard with which the entire programme is justified. Far from accelerating decarbonisation, Labour’s CCS scheme locks in high emissions and fossil fuel dependency for decades to come.
Don’t take it from me. Take it from the government. There’s a rule applied to all such spending, called “principle H”. It says: “subsidies for the decarbonisation of emissions linked to industrial activities in the UK shall achieve an overall reduction in greenhouse gas emissions.” Uniquely, the government has decided that principle H is “not applicable” to its CCS programme.
Otherwise, it notes, the scheme could not proceed, because “liquified natural gas is associated with increased upstream emissions of greenhouse gases”. The breathtaking excuse it gives for rescinding this principle is that the state will “subsidise the construction” of CCS plants but “not their operation”. This is both untrue and nonsensical. Labour ministers are spending £21.7bn on an alleged climate project that will increase emissions, and they know it.
The third condition is an audit of the carbon emissions that cannot be eliminated by other means. The government tells me there are “no viable alternatives” to CCS for “decarbonising key industrial sectors (eg cement)”. But what if there are? What if conventional cement production were replaced with geopolymeric cement? What if green hydrogen were used to make steel? What if thermal power plants were no longer required for electricity production? No such audit has been conducted. Already, as Carbon Tracker has shown, the assumptions behind the CCS programme are outdated. The decision to deploy CCS comes before an attempt to determine whether it is necessary. That’s what happens when fossil fuel lobbyists drive government policy.
When I asked the Department for Energy Security and Net Zero for background documents, all those it sent me were published by the previous government. None had been updated since Labour took office. This, in other words, is Tory policy. My guess is that Labour feared that dropping the Tory programme, with its massive handouts to corporations, would trigger a concerted attack by lobby groups and the billionaire press, alleging it was “anti-business”. Our money is being used for political purposes.
Starmer campaigned on a platform of “change”. But there has been no change from this demented Tory policy, no change in the influence of the fossil fuel industry, no change in the perverse justifications. And, I suspect, there will be no change from £50bnfor this profligate CCS scheme.
The chancellor, Rachel Reeves, talks of a fiscal “black hole” of £21.9bn. But this is a real black hole: a long tunnel into the rocks, down which £21.7bn and more will be poured. A more reliable and cost-effective means of sequestering carbon would be to bundle up the money (roughly 1,100 tonnes in £20 notes) and shove it down the pipe.
www.monbiot.com
Secrets, p7 [Ctrl+Alt+Del Comic]
Check out these Console War pins we’ve created as an add-on for the new book Kickstarter!
The post Secrets, p7 appeared first on Ctrl+Alt+Del Comic.
Study Break! – DORK TOWER 14.10.24 [Dork Tower]
This or any DORK TOWER strip is now available as a signed, high-quality print, from just $25! CLICK HERE to find out more!
HEY! Want to help keep DORK TOWER going – join the DORK TOWER Patreon and ENLIST IN THE ARMY OF DORKNESS TODAY! (We have COOKIES!) (And SWAG!) (And GRATITUDE!)
Girl Genius for Monday, October 14, 2024 [Girl Genius]
The Girl Genius comic for Monday, October 14, 2024 has been posted.
Comic Strip for Monday, October 14, 2024 [General Protection Fault: Comic Updates]
Current Story: Chapter Thirteen
Choo choo
Kernel prepatch 6.12-rc3 [LWN.net]
The 6.12-rc3 kernel prepatch is out for testing.
So the diffstat looks a bit odd, because one of the fixes here caused the UTF tables to be regenerated, and an effective one-liner change turned into 6703 lines of diff.But if you ignore that effect, everything looks normal.
Andy Simpkins: The state of the art [Planet Debian]
A long time ago a computer was a woman (I think almost exclusively a women, not a man) who was employed to do a lot of repetitive mathematics – typically for accounting and stock / order processing.
Then along came Lyons, who deployed an artificial computer to perform the same task, only with fewer errors in less time. Modern day computing was born – we had entered the age of the Digital Computer.
These computers were large, consumed huge amounts of power but were precise, and gave repeatable, verifiable results.
Over time the huge mainframe digital computers have shrunk in size, increased in performance, and consume far less power – so much so that they often didn’t need the specialist CFC based, refrigerated liquid cooling systems of their bigger mainframe counterparts, only requiring forced air flow, and occasionally just convection cooling. They shrank so far and became cheep enough that the Personal Computer became to be, replacing the mainframe with its time shared resources with a machine per user. Desktop or even portable “laptop” computers were everywhere.
We networked them together, so now we can share information around the office, a few computers were given specialist tasks of being available all the time so we could share documents, or host databases these servers were basically PCs designed to operate 24×7, usually more powerful than their desktop counterparts (or at least with faster storage and networking).
Next we joined these networks together and the internet was born. The dream of a paperless office might actually become realised – we can now send email (and documents) from one organisation (or individual) to another via email. We can make our specialist computers applications available outside just the office and web servers / web apps come of age.
Fast forward a few years and all of a sudden we need huge data-halls filled with “Rack scale” machines augmented with exotic GPUs and NPUs again with refrigerated liquid cooling, all to do the same task that we were doing previously without the magical buzzword that has been named AI; because we all need another dot com bubble or block chain band waggon to jump aboard. Our AI enabled searches take slightly longer, consume magnitudes more power, and best of all the results we are given may or may not be correct….
Progress, less precise answers, taking longer, consuming more power, without any verification and often giving a different result if you repeat your question AND we still need a personal computing device to access this wondrous thing.
Remind me again why we are here?
(time lines and huge swaves of history simply ignored to make an attempted comic point – this is intended to make a point and not be scholarly work)
A Google breakup is on the table, say DOJ lawyers [OSnews]
Next up in my backlog of news to cover: the US Department of Justice’s proposed remedies for Google’s monopolistic abuse.
Now that Judge Amit Mehta has found Google is a monopolist, lawyers for the Department of Justice have begun proposing solutions to correct the company’s illegal behavior and restore competition to the market for search engines. In a new 32-page filing (included below), they said they are considering both “behavioral and structural remedies.“
That covers everything from applying a consent decree to keep an eye on the company’s behavior to forcing it to sell off parts of its business, such as Chrome, Android, or Google Play.
↫ Richard Lawler at The Verge
While I think it would be a great idea to break Google up, such an action taken in a vacuum seems to be rather pointless. Say Google is forced to spin off Android into a separate company – how is that relatively small Android, Inc. going to compete with the behemoth that is Apple and its iOS to which such restrictions do not apply? How is Chrome Ltd. going to survive Microsoft’s continued attempts at forcing Edge down our collective throats? Being a dedicated browser maker is working out great for Firefox, right?
This is the problem with piecemeal, retroactive measures to try and “correct” a market position that you have known for years is being abused – sure, this would knock Google down a peg, but other, even larger megacorporations like Apple or Microsoft will be the ones to benefit most, not any possible new companies or startups. This is exactly why a market-wide, equally-applied set of rules and regulations, like the European Union’s Digital Markets Act, is a far better and more sustainable approach.
Unless similar remedies are applied to Google’s massive competitors, these Google-specific remedies will most likely only make things worse, not better, for the American consumer.
Scarecrow’s 2024 Psychotronic Challenge: Day 13 [The Stranger]
"…As long as it isn’t a Part 1." by Lindsay Costello
13. ALL THINGS BEING SEQUEL: …As long as it isn’t a Part 1.
The Texas Chainsaw Massacre 2One thing to know about me going into this review is that I largely agree with this tweet, which, unsurprisingly, had people frothing at the mouth.
Not only for horror but maybe one of the five best American films ever made, yeah https://t.co/7QQ6t2lyno
— Brandon Streussnig (@BrndnStrssng) October 10, 2024
The Texas Chain Saw Massacre is the perfect New Hollywood film. It's moody, atmospheric, lo-fi, anti-establishment, and thoroughly imaginative, wrenching the slasher genre from its hiding place in the dark of night and shoving it into the bright Texas sunshine. Gas stations, chickens, pick-up trucks, and the entire state of Texas have been freaky since the day this film was released in 1974. Its detached grittiness coaxed the rise of found-footage horror decades later, and Sally Hardesty's maniacal laughter revealed the psychological toll on the final girl for the first time, a theme that's repeated with Halloween's Laurie Strode, Scream's Sidney Prescott, and countless other slasher survivors.
I would posit that only Alien has had a wider cultural impact on horror, but Ridley Scott actually cited TCM as an influence on his film.
The Texas Chain Saw Massacre's sequel, however, is something completely different. And by "completely different" I mean that Tobe Hooper directed a black comedy, and it's awesome.
The Texas Chainsaw Massacre 2 opens with two high schoolers prank-calling a radio station as they cruise down a rural highway, soon to be slaughtered by Leatherface. The murder is overheard (and recorded) by local disc jockey Stretch. Former Texas Ranger Lefty (Dennis Hopper!) gets involved when he catches wind of the recording. Turns out he's got skin in the game—he's the uncle of Sally and Frank Hardesty, two of Leatherface's previous targets.
When Stretch plays the recording on her radio show to drum up public response, she accidentally summons Leatherface and his psychotic, hippie-adjacent relative Chop-Top, who had a metal plate grafted onto his skull during the Vietnam War. The pair show up at the radio station to kill her, a protracted scene in which Chop-Top hollers the film's most important line: "Lick my plate, you dog dick!"
The central thrust of TCM 2 is that Leatherface is horny now. He illustrates this by positioning a chainsaw dangerously close to Stretch's (jeanshorted, thankfully) vulva. Against a soundtrack of Oingo Boingo, Concrete Blonde, and the Cramps' "Goo Goo Muck," Stretch is forced to use her sweet Texan charm to fend off Leatherface's chainsaw, which is exactly as awkward and gross as it sounds. It also only works for so long. Soon, Stretch tumbles down a slide into the Sawyer clan's subterranean hell dungeon, where she has other psycho-killers (like silent, hammer-wielding Grandpa) to contend with.
There are surprisingly few kills in this sequel, but lots to love. It had roughly 39 times the budget of the original (TCM filmed for around $120,000; TCM 2 for $4.7 million), so the sets are far out, and the gore is squelchy. Hooper also crafts something pretty unusual in the slasher horror genre: The sequel is funny and bizarre, of course, but balances that weirdness with more of his relentless, imaginative gnarliness. If you're keen to check in on Leatherface without quite the isolated brutality of the original, The Texas Chainsaw Massacre 2 is a prime cut.
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
I was DJing an after party last night, as I occasionally do, and Krissy was there to dance along with me while we were there. At one point I got out my phone to capture her mid-head bang. She was singing along with the song while holding a mic stand, so it looked pretty rock star. It made for a pretty great photo, I have to say. More than one, actually.
— JS
BTW, why doesn't Netflix buy Metacritic and integrate their ratings aggregator in their user interface. I predict I'd watch far more stuff on Netflix than I do now. Or Apple TV, Max, Hulu, Disney, etc. The idea that such a valuable resource is not part of the user experience is crazy imho. What a waste. What reminded me of this is Plex has integrated the equivalent of Bingeworthy in their service, which is also a good idea and will glue communities of users to you. The idea is to systematize recommendations. If I know a specific friend liked a movie or a show is valuable information for me, not just advertisers.
Someday I have to reboot Bingeworthy, it's the software snack I miss the most. It broke when Twitter broke their identity system.
Conceptual models of space colonization [Charlie's Diary]
I'm thinking morose thoughts about the practical prospects for space colonization (ahem: stripped of the colonialist rhetoric, manifest destiny bullshit, "the Earth's too fragile and vulnerable to keep all our eggs in one basket", and the other post-hoc attempts at justification) and trying to sort them out in case I ever feel inclined to go back to writing the sort of medium term SF epic that Kim Stanley Robinson nailed in his Mars trilogy in the 1980s.
And what I'm nibbling on is, to paraphrase Oliver Cromwell, the big question of what if all our models or paradigms for how to structure a colony effort are wrong?
While the strong form of the Sapir-Whorf hypothesis is evidently invalid, a weaker version—that language influences thought—is much harder to argue against. When we talk about a spaceship, a portmanteau word derived from "[outer] space" and "ship", we bring along certain unstated assumptions about shipping that are at odds with the physical parameters of a human-friendly life support environment for traversing interplanetary distances. Ships, in the vernacular, have captains and a crew who obey the captain via a chain of command, they carry cargo or passengers, they travel between ports or to a well-defined destination, they may have a mission whether it be scientific research or military. And of these aspects, only the scientific research angle is remotely applicable to any actually existing interplanetary vehicle, be it a robot probe like Psyche or one of the Apollo program flights.
(Pedant's footnote: while the Apollo crews had a nominal commander, actual direction came from Mission Control back on Earth and the astronauts operated as a team, along lines very similar to those later formalized as Crew Resource Management in commercial aviation.)
Anyway, a point I've already chewed over on this blog is that a spaceship is not like a sea-going vessel, can't be operated like a sea-going vessel, and the word "ship" in its name feeds into various cognitive biases that may be actively harmful to understanding what it is.
Which leads me to the similar term "space colony": the word colony drags in all sorts of historical baggage, and indeed invokes several models of how an off-Earth outpost might operate, all of which invoke very dangerous cognitive biases!
First cognitive bias on the chopping blog: the word "colony" usually implies a self-sufficient settlement, that can "live off the land" and reproduce almost anything the humans living there need, including more human workers raised from infancy. We don't, for example, talk of McMurdo Station in Antarctica as a colony even though it has a population of up to 1500 people at different times of year because it's entirely resupplied from other land masses and nobody is born there (and hopefully nobody dies there either). McMurdo Station doesn't have kindergartens, schools, universities, retirement homes, farms, factories, and a resident political apparatus to set policy.
Dilbert Stark's bloviation about a Mars colony aside, I don't expect we'll see an off-Earth colony that meets the self-sufficiency criterion any time in the next century—at least not without major technical breakthroughs in the life sciences and in automated manufacturing. Unless you can run a space colony with a 17th century level of education and specialization (not to mention infant mortality) you can't make it self-sufficient with less than millions of people because no environment in the solar system is compatible with human life in the absence of high technology life support.
The American model of colonization—a cognitive bias that underpins both the American and Russian space programs' associated ideological drive towards human expansion—is biased towards an unpopulated or underpopulated terrestrial biome with breathable air, plentiful sources of water and minerals, a biosphere that naturally turns sunlight into biomass that can be directly eaten or fed to food animals, and so on. To use a simile, it's like pitching a tent on the roof of a fifty story high skyscraper (with working electricity and water supplies) and announcing you've constructed a dwelling. To extend this into a metaphor, for space colonization you're going to build a cement factory and get a degree in structural engineering first.
In addition to the "camping in the garden is the new Lewis and Clarke expedition" cognitive bias, the word "colony" comes with a number of other associations:
The military model
When we talk about colonies it's a hop, skip, and a jump to colonialism, with its model of military outposts on the edge of the known/civilized world, and a mission to bring civilisation to the unruly indigenes at gunpoint. It's in all our cultural tropes relating to colonies, especially in those nations that used to run overseas empires (or evolved from such empires). This in turn implies a military chain of command with enforcement via military discipline, and a military mission, which almost invariably requires an adversary and some sort of exit strategy (even if the exit strategy is "make a wasteland, call it peace, come home").
I have no idea how Star Trek has evolved since I last watched it (I hit my throw-book-at-wall point halfway through the pilot episode of TNG and refuse to give it a second chance) but ST at least superficially started out from the military model, in a universe with copious adversaries so no shortage of possible military missions.
It is difficult for me to conceive of how a military colonization model might apply unless we succeed in taking our dysfunctional social structures into deep space and well beyond Low Earth Orbit. (In LEO, all you need are ground-launched weapons platforms: not a colony.)
The homesteader model
In which, like our marcher empire colonists from the US frontier and the Siberian expansion, our colonists are given title to forty acres and a mule, or a bunk in a penal colony, and go forth to play live-action Stardew Valley. Heinlein wrote this a lot, for example in Farmer in the Sky and in the background of Space Family Stone, and in one of the novella-sized chunks of Time Enough for Love. Star Trek by some accounts started as "wagon train in space", riffing off the Western genre TV series of that name.
As noted above: the homesteader novel approximates to erecting a tent on top of a skyscraper and declaring victory. More to the point, an awful lot of homesteader settlers died, and that was with a very low bar to success at self-sufficiency because they were settling inside a biosphere, the spacegoing equivalent of colonizing the downstairs bathroom.
Homesteading tended to be a family sized enterprise, and a patriarchal family culture at that with a high rate of population growth (kids are livestock who can herd other livestock, not dangerous liabilities who sometimes fiddle with the airlock controls when they get bored). They are, at most, tribal enterprises where the colony approximates Dunbar's Number, on which note, a quick review of the history of the Donner Party is instructive. (The Donner Party had the misfortune to get stuck high in the Sierra Nevada mountains by an early snowfall without having laid down enough supplies to last through winter: if I was going to write a sequel to Tom Godwin's The Cold Equations I can think of few better topics to choose than a bunch of starry-eyed settlers on the high frontier getting trapped in the coffin corner of a three axis constraint diagram with axes representing delta vee, energy, and consumables.)
The corporate model
Do I really need to explain why Company Towns are bad places to live, and a company town in spaaaaace is pretty much the ultimate dystopia?
Yes, yes I do! In a nutshell: companies are artificial social constructs that offload all their externalities onto the state they are embedded in. If the company is the entire habitat, then it can only offload "useless eaters" via the airlock. Babies are useless eaters—they don't change their own diapers! So.
(For a less grotesque critique of capitalism in space, read just about any American or British SF set on a space colony written in the past 30 years: Luna by Ian Macdonald is a good starting point (although his premise—a mining colony grinding up the Lunar regolith to extract 3He for fusion reactors on Earth—is based on junk science). In particular, two words should strike fear into your heart: oxygen tax.)
The Pilgrim Fathers model
Otherwise known as theocracy in space. Worryingly, religious belief rather than economics seems the most plausible incentive for space colonization. (I consider the argument that "the Earth's too fragile to keep all our eggs in one basket" to be part of this category: it's based on the "be fruitful and multiply" command from Genesis, and its explicitly religious roots stem from Russian Cosmism and the writings of the 19th century theologian Nikolai Fyodorovich Fyodorov.)
Religious colonies can in fact get shit done in harsh environments, as witness the Plymouth Colony. The things they get done can include witch hunts and mass executions of unbelievers, poisoning the neighbours with smallpox infested blankets, going full Jonestown, and experimentally verifying the feasibility of building The Republic of Gilead in orbit around Jupiter, only now with 100% less escape routes to Canada.
The Polynesian model
Build small boats, move to the next island just on the horizon, fish, farm, then chop down trees to build more boats, and move on in the unexplored direction. It worked for the Easter Islanders, it got the Maori to Aotearoa, why couldn't it work?
In a nutshell, the Polynesian model suffers from a combination of the failure modes of the homesteader model and (pick any combination of) all the others—the Religious retreat, the company town, the military expedition: living off the land is really hard when there's not actually any land, nor a supply chain able to manufacture spacecraft, nor a biosphere to overrun. It might work, in the far future, if the unit of settlement isn't an outrigger trimaran (or group thereof) but a self-propelled city state with enough millions of people to sustain a technology base (including educating the educators for the next generation of niche specialties). But that begs the question of the management or political governance of such a city-state. The people in such a colony live there: it's no more a colony than this island Earth we all live on today is a colony—it's a closed cycle world, just a lot smaller than this one.
To go back to sarcastic similes, it's as if England circa 1606 decided to colonize North America by physically packing up London and the surrounding hundred kilometre radius of villages and farms and plonking them down on Long Island. At which point, yeah, you've got enough human capital in place to stick around and enough food supplies to make it work, assuming they survive the first harsh continental winter (the origins of the annual US Turkey holocaust day are instructive in this respect). Congratulations! James Blish ran this riff in his Cities in Flight tetralogy, and it looks superficially plausible at first glance, although it eerily parallels the aerospace engineering nostrum that if you strap enough thrust to a concrete block you can make anything fly.
Anyway, this leads up to my question for this blog entry: what do all these models fail to account for? Are there other, better models for how to build and run a space colony? If not, why not—what are the universal points of failure (other than "human beings")?
PS/Administrative Note: All comments referring by his given name to a certain multi-billionaire of South African origins who owns his own space program will be deleted by the moderators (I don't want the world's richest man to sue me for libel, or to be dogpiled by his glassy-eyed fans doing a google search). If you can't think of your own nickname for him, feel free to call him "Space Karen" or "Dilbert Stark".
I am totally having a blast with my hybrid blog, built by textcasting WordPress and Mastodon. Just wrote a post about the day the NYT signs off, finally realizing how fcuked we are if Trump is elected or manages to steal the election next month. Their final headline in this story is GOOD LUCK AMERICA.
Textcasting shows up as a slight blip (or less) on Google Trends.
Internet Archive hacked and victim of DDoS attacks [OSnews]
Internet Archive’s “The Wayback Machine” has suffered a data breach after a threat actor compromised the website and stole a user authentication database containing 31 million unique records.
News of the breach began circulating Wednesday afternoon after visitors to archive.org began seeing a JavaScript alert created by the hacker, stating that the Internet Archive was breached.
“Have you ever felt like the Internet Archive runs on sticks and is constantly on the verge of suffering a catastrophic security breach? It just happened. See 31 million of you on HIBP!,” reads a JavaScript alert shown on the compromised archive.org site.
↫ Lawrence Abrams at Bleeping Computer
To make matters worse, the Internet Archive was also suffering from waves of distributed denial-of-service attacks, forcing the IA to take down the site while strengthening everything up. It seems the attackers have no real motivation, other than the fact they can, but it’s interesting, shall we say, that the Internet Archive has been under legal assault by big publishers for years now, too. I highly doubt the two are related in any way, but it’s an interesting note nonetheless.
I’m still catching up on all the various tech news stories, but this one was hard to miss. A lot of people are rightfully angry and dismayed about this, since attacking the Internet Archive like this kind of feels like throwing Molotov cocktails at a local library – there’s literally not a single reason to do so, and the only people you’re going to hurt are underpaid librarians and chill people who just want to read some books. Whomever is behind this are just assholes, no ifs and buts about it.
Andrew Cater: Mini-DebConf Cambridge 20241013 1300 [Planet Debian]
LATE NEWS
I haven't blogged until now: I should have done from
Thursday onwards.
It's a joy to be here in Cambridge at ARM HQ. Lots of people I
recognise from last year here: lots *not* here because this
mini-conference is a month before the next one in Toulouse and many
people can't attend both.
Two days worth of chatting, working on bits and pieces, chatting
and informal meetings was a very good and useful way to build
relationships and let teams find some space for themselves.
Lots of quiet hacking going on - a few loud conversations. A new
ARM machine in mini-ITX format - see Steve McIntyre's blog on
planet.debian.org about Rock 5 ITX.
Two days worth of talks for Saturday and Sunday. For some people,
this is a first time. Lightning talks are particularly good to
break down barriers - three slides and five minutes (and the chance
for a bit of gamesmanship to break the rules creatively).
Longer talks: a couple from Steve Capper of ARM were particularly
helpful to those interested in upcoming development. A couple of
the talks in the schedule are traditional: if the release team are
here, they tell us what they are doing, for example.
ARM are main sponsors and have been very generous in giving us
conference and facilities space. Fast network, coffee and
interested people - what's not to like :)
[EDIT/UPDATE - And my talk is finished and went fairly
well].
Taavi Väänänen: Bulk downloading Wikimedia Commons categories [Planet Debian]
Wikimedia Commons, the Wikimedia project for freely licensed media files, also contains a bunch of photos by me and photos of me at various events. While I don't think Commons is going away anytime soon, I would still like to have a local copy of those images available on my own storage hardware.
Obviously this requires some way to query for photos you want to download. I'm using Commons categories for this, since that's easy to implement and works for both use cases. The Commons community tends to come up with very specific categories that you can use, and if not, you can usually categorize the files yourself.
There is almost an existing tool for this: Sam Wilson's mwcli project has support for exporting images one has uploaded to Commons. However I couldn't use that to upload photos of me others have uploaded, plus it's written in PHP and I don't exactly want to deal with the problem of figuring out how to package it in a way I could neatly install it on my NAS.
So I wrote my own tool for it, called comload
.
It's written in Python because Python is easy to deploy (I can just
throw it in a .deb
and upload it to my internal repository), and because
I did not find a Go library to handle Action API pagination for me.
The basic usage is like this:
$ comload --subcats "Taavi Väänänen"
This will download any files in Category:Taavi Väänänen and its sub-categories to the current directory. Former image versions, as well as the image description and SDC data, if any, is also included. And it's smart enough to not download any files that are already there on future runs, so you can just throw it in a systemd timer to get any future files. I'd still like it to handle moved files without creating a duplicate copy, but otherwise I'm really happy with the current state.
comload
is available from PyPI and from my Git server
directly, and is licensed under the GPLv3.
What went wrong with Starmer’s Gray matter? | David Mitchell [David Mitchell | The Guardian]
Appointing the person most associated with Partygate to a partisan Labour role seemed like a mistake from the start
When Sue Gray resigned as the prime minister’s chief of staff last week, she said it was because she “risked becoming a distraction to the government’s vital work of change”. They always say something like that. Don’t become the story – that’s supposedly the rule for pretty much anyone other than the prime minister.
The prime minister is allowed to be the story, good or bad, because, by definition, what the prime minister does isn’t a distraction, it’s the thing itself. But anyone else can plead the blameless fact that they’re accidentally distracting everyone from more important things. “Talk of my private life”, “widespread press reports of my cronyism and embezzlement”, “my cut-price hair transplant that went hilariously wrong”, “the relentless clip-clop of my amazing shoes” – such things can become a distraction thanks to the silly media and their inability to just sit still and listen to the barrage of sensibleness that the government is trying to present.
Continue reading...Amplifying the fringes [Seth's Blog]
Culture is: “People like us do things like this.”
We might even have a chance to choose our group. Hipsters do this, hippies do that. People in this town wear this outfit, students at this school hang out here on Saturdays…
We might be born into a culture. Less agency, but just as much identity.
There’s a built-in status quo here. Most groups want stability and the peace of mind that comes from being in sync. That’s why we join a group in the first place.
Of course, every culture also has neophiliacs, folks that find status and affiliation in embracing the new. They are most comfortable with novelty, not tradition.
Ideas spread from the ones who embrace the new to the folks who want to stay in sync.
But some cultures change more quickly than others. Some stagnate, others accelerate.
When change happens too fast, the culture gets stressed.
One factor in the speed of cultural change is the control of the media and distribution.
In an authoritarian environment, gatekeepers and censorship ensure that the culture changes very slowly. This includes most scientific journals, large organizations and spectrum-limited forms of media. This is a country with state-controlled media, but it’s also a community where the people who are most fearful of change also have power.
If there are only a few TV channels or radio stations, the programmers are going to become conservative, because they don’t want to lose market share. If the cost of being seen as too edgy is perceived as very high, the gatekeepers will stay in the center.
The Billboard Top 40 and pop music exists because a jukebox couldn’t hold every record, and radio stations didn’t want to risk losing a listener who wanted to hear what everyone else was listening to.
The other factor is the algorithm. How is attention parceled out?
You can probably see where this is heading.
The newspaper and the radio station determined the algorithm. A few surprising items, but mostly, the center.
And then social media arrived. And they intentionally turned the algorithm inside out.
They tweak what gets promoted and spread based on what is likely to grab our attention, to play with our emotions, to generate outrage or surprise. They do this without regard for truth or the stress that the idea might cause. They simply want to drive short-term attention.
The fringe. That’s where outrage and fear and novelty live.
And so creators of content responded. They discovered that in order to get the attention they craved, they had to run from the center and toward the edges. Even if they didn’t believe in what they were saying, or especially then.
The fringe, amplified, stops being the fringe.
So the next wave of fringe must be even fringier.
This is a fundamental shift in the world as we know it. One where a flywheel of ever more challenging cultural change continues to arrive, without balance.
It’s no wonder people feel ill at ease. Instead of the ship adding ballast to ensure a smooth journey, the crew is working hard to make the journey as rocky as possible.
I finally seem to be recovering from a nasty flu that is now wreaking havoc all across my tiny Arctic town – better now than when we hit -40 I guess – so let’s talk about something that’s not going to recover because it actually just fucking died: Windows 7.
For nearly everyone, support for Windows 7 ended on January 14th, 2020. However, if you were a business who needed more time to migrate off of it because your CEO didn’t listen to the begging and pleading IT department until a week before the deadline, Microsoft did have an option for you. Businesses could pay to get up to 3 years of extra security updates. This pushes the EOL date for Windows 7 to January 10th, 2023.
Okay but that’s still nearly 2 years earlier than October 8th, 2024?
↫ The Cool Blog
I’d like to solve the puzzle! It’s POSReady, isn’t it? Of course it is! Windows Embedded POSReady’s support finally ended a few days ago, and this means that for all intents and purposes, Windows 7 is well and truly dead. In case you happen to be a paleontologist, think of Windows Embedded POSReady adding an extra two years of support to Windows 7 as the mammoths who managed to survive on Wrangel until as late as only 4000 years ago.
Windows 7 was one of the good ones, for sure, and all else being equal, I’d choose it over any of the releases that cam after. It feels like Windows 7 was the last release designed primarily for users of the Windows platform, whereas later releases were designed more to nickle and dime people with services, ads, and upsells that greatly cheapened the operating system. I doubt we’ll ever see such a return to form again, so Windows 7 might as well be the last truly beloved Windows release.
If you’re still using Windows 7 – please don’t, unless you’re doing it for the retrocomputing thrill. I know Windows 8, 10, and 11 are scary, and as much as it pains me to say this, you’re better off with 10 or 11 at this point, if only for security concerns.
Urgent: guns at polling places [Richard Stallman's Political Notes]
US citizens: call on Congress to ban carrying guns at polling places.
Meaningful dialogue [Richard Stallman's Political Notes]
US universities are confused and conflicted about how to deal with strongly opinionated students and their disagreeing view.
Escalation with Iran [Richard Stallman's Political Notes]
Since Iran's missiles have shown they can hit Israel and do damage, further escalation by Israel could result in a long war of attrition
55,000 Bibles [Richard Stallman's Political Notes]
Oklahoma Republicans have found a clever way to corrupt the election: by buying bibles from the corrupter's campaign. The price will be over 3 million dollars.
They don't openly admit that the purchase has to be from his campaign, but they make that inevitable by specifying details that other printed bibles don't fit.
Government purchases coming directly or indirectly from electoral campaigns ought to be illegal.
Brett Kavanaugh [Richard Stallman's Political Notes]
Accusing the wrecker of restraining the FBI from thoroughly investigating the rape accusation against Brett Kavanaugh when he was nominated for the Supreme Court.
Energy industry [Richard Stallman's Political Notes]
The head of the UK "energy industry" has been chosen as the new head of the "Climate Change Committee.
I know nothing more about her besides that point about her previous experience, but that one point is enough to make me suspect that the fox is now in charge of keeping us chickens safe.
Obliviator, Part Two [Penny Arcade]
I always do a couple of these ahead of time because I'm about to enter a Midnight Realm that I feel confident will prepare me for the mind-rending terrors of Friday Night's Arkham Horror game.
Learning Warhammer 40k Tenth Edition! [Penny Arcade]
I had joined the Games Workshop fandom at the tail end of 9th edition. I started out learning standard Warhammer 40k and ended up choosing the Black Templars as my army. While attempting to learn that, I was shown Kill Team which of course I also bought a rule book for and tried to learn. Around this time I discovered they had a whole nother game called Age Of Sigmar with even more armies and so I had to check that out. Then they hit me with Boarding Actions and finally 10th edition. I think I blew some sort of fuse in my brain at that point and had to check out of all of it. I never really felt like I had a firm grasp of the rules for any of those games. It was just too much too quickly.
Project 2025 [Richard Stallman's Political Notes]
*Project 2025 would "unequivocally" lead to more hurricane deaths, experts warn.*
Activist’s visa [Richard Stallman's Political Notes]
An Australian official is moving to revoke the visa of a visiting Palestinian who said, speaking in an event this Oct 7, that it was the occasion for “considerable celebration” as the anniversary of HAMAS's hostage taking and killings. Now the Australian is considering revoking his visa on grounds that he advocated terrorism.
The official said, "But he did prove the point that many of us are making in the lead up to the rallies on Monday, which is that the only reason you would organize a pro-Palestinian protest on Monday, is if you thought it was worthy of celebration." This seems to be valid.
Both HAMAS and subsequently Israel were responding to terror attacks. Both had grounds for belligerence if it were in accord with international humanitarian law. Both entities' retaliations instead violated that law, committing atrocities.
I defend freedom of speech in a very firm way. I don't think anyone, whether citizen or visitor, should be prohibited to express those views, even though I strongly disagree with those views.
Shasta county [Richard Stallman's Political Notes]
A Republican official, extreme right-wing by the standards of 2022, is now organizing the fight to defend some basic idea of truth and justice against the wave of trumpery.
Lead Pipe Rule [Richard Stallman's Political Notes]
The corrupter ordered the US to adopt a nearly no-op rule about poisonous lead and copper pipes. Now it has been replaced with a plan to eliminate nearly all lead in American's faucet water.
Harris Medicare plan [Richard Stallman's Political Notes]
*Harris announces plan for Medicare to cover long-term care at home.*
This would be a big help for partially or completely disabled Americans, and not just those 65 years old or older.
Dirty Truth Report [Richard Stallman's Political Notes]
*Utilities Only Planning Enough Clean Energy to Replace Half of Fossil Fuel Generation by 2035, New Sierra Club Report Finds.*
They still plan to build lots of gas-fired power plants. Using fossil gas cause more global heating than coal.
This demonstrates that existing laws, plus existing pressure from well-informed public opinion, are not sufficient to decarbonize rapidly.
Environmental reforms [Richard Stallman's Political Notes]
A government can be far better than blatant plutocracy and still be weak in resisting plutocracy's destruction of the eco-sphere. Australia's Labor Party seems to be an example.
Chris Minns’ plan [Richard Stallman's Political Notes]
*NSW [(a state in Australia)] premier says police should be able to ban pro-Palestine protests because they are too expensive.*
This has met with opposition.
Bravo for resisting this.
I agree that we should avoid the terms "pro-Israel" or "pro-Palestine" because those terms tend to push society into a dichotomous choice.
My wish is well-being, peace and freedom for both peoples.
Decades ago, large demonstrations were run by organizations, and the organizations appointed and trained Marshalls to keep the protest on the track of nonviolence. I am sure that practice greatly reduced the cost of policing, as well as the probability that the official thugs would go on a rampage against protesters.
That isn't 100% effective at preventing rampages,
but it surely helps.
Deforestation [Richard Stallman's Political Notes]
*Demand for beef, soy, palm oil and nickel hindering efforts to halt demolition by 2030, global report finds.*
Maim and kill [Richard Stallman's Political Notes]
Robert Reich described how Bridgestone defeated the US government legal effort to compel Bridgestone keep its factory workers safe. Bridgestone responded by saying it would shut the factory rather than install the safety measures.
It announced that threat by making a false assertion: that it would be "uneconomical" to run the plant if it had safety measures. With the usual meaning of those words, that was not true: Bridgestone would have made a profit even with the safety measures installed. But it might have made less from that plant than from a hypothetical replacement plant somewhere else, without the safety measure.
To put an end to this sort of practice, we need laws that will prevent businesses from winning disputes in that way. Reich explains other changes that would have strengthened his hand.
Timor Sea gas project [Richard Stallman's Political Notes]
Australia and East Timor were formerly very hostile, but now they are making joint plans to collaborate in planet roasting by extracting undersea fossil gas.
The world must hope that they can't come to agreement on the details.
Narges Mohammadi [Richard Stallman's Political Notes]
Narges Mohammadi has been imprisoned in Iran since 3 years ago. A year ago she received Nobel peace prize, and the screws made her imprisonment harsher.
Gut Environmental Law [Richard Stallman's Political Notes]
*An Oil Giant Railroads Its SCOTUS Connection To Gut Environmental Law.*
Vehicle-To-Everything [Richard Stallman's Political Notes]
Engineers are proposing a system for every car to communicate constantly with every other nearby car, as well as with nearby pedestrians (does that mean, their snoop-phones?) and local non-mobile surveillance systems.
The result would be total surveillance of everyone.
It may be possible to design such a system such that it doesn't identify any car or any person. That could be safe as well as beneficial. But we cannot expect the manufacturers of today's "connected cars" to value their customers' privacy.
If I were going to buy a "connected" car such as are made today, I would choose a model that people know how to disconnect. I expect that each antenna needs to be either removed or covered with a Faraday cage such that it cannot receive or transmit.
COP29 [Richard Stallman's Political Notes]
The contract for holding the COP29 conference in Azerbaijan does not protect the human rights of the participants from Azerbaijan's repressive state.
It also does not protect the conference's goal from Azerbaijan's planet-roasting state. Planet-roasters, including fossil fuel companies, dominate this series of conferences so completely that they are not fit for the purpose any more.
UN peacekeepers [Richard Stallman's Political Notes]
*UN peacekeepers in Lebanon say Israel has fired on their bases deliberately.*
It did this in two different places at around the same time. In one, a drone reconnaissance seems to have been preparation for the attack. Meanwhile, a number of Israeli tanks drove up to a UN peacekeepers' position, apparently to threaten the peacekeepers into pulling out.
I would switch to any podcatcher that let me edit my subscription list outside their app, because I use that list in different contexts, also because I’d like to share my list with others, and would like that to be a dynamic connection, so I could add feeds as I learn about them, or remove feeds that have stopped updating. Also because there are lots of others, aka influencers who’d like to too. You’d own the market if you did this.
The common denominator between journalism, business and politics is that none of them have any respect for people. To rise in influence, money or power you have to give up imagination, and be ruled by cynicism. If you don’t believe this, show me a journalist who listens, a business that makes products for thinkers, or a politician who lets individual people lead them.
Jonathan Dowland: Code formatting in documents [Planet Debian]
I've been exploring typesetting and formatting code within text documents such as papers, or my thesis. Up until now, I've been using the listings package without thinking much about it. By default, some sample Haskell code processed by listings looks like this (click any of the images to see larger, non-blurry versions):
It's formatted with a monospaced font, with some keywords highlighted, but not syntactic symbols.
There are several other options for typesetting and formatting code in LaTeX documents. For Haskell in particular, there is the preprocessor lhs2tex, The default output of which looks like this:
A proportional font, but it's taken pains to preserve vertical
alignment, which is syntactically significant for Haskell. It looks
a little cluttered to me, and I'm not a fan of nearly everything
being italic. Again, symbols aren't differentiated, but it has
substituted them for more typographically pleasing alternatives:
->
has become →
, and
\
is now λ
.
Another option is perhaps the newest, the LaTeX package minted, which leverages the Python
Pygments program. Here's
the same code again. It defaults to monospace (the choice of font
seems a lot clearer to me than the default for
listings
), no symbolic substitution, and liberal use
of colour:
An informal survey of the samples so far showed that the minted output was the most popular.
All of these packages can be configured to varying degrees. Here are some examples of what I've achieved with a bit of tweaking
All of this has got me wondering whether there are straightforward empirical answers to some of these questions of style.
Firstly, I'm pretty convinced that symbolic substitution is
valuable. When writing Haskell, we write ->
,
\
, /=
etc. not because it's most legible,
but because it's most practical to type those symbols on the most
widely available keyboards and popular keyboard layouts.1 Of the three options listed here, symbolic
substitution is possible with listings and
lhs2tex, but I haven't figured out if minted can
do it (which is really the question: can pygments do
it?)
I'm unsure about proportional versus monospaced fonts. We
typically use monospaced fonts for editing computer code, but
that's at least partly for historical reasons. Vertical alignment
is often very important in source code, and it can be easily
achieved with monospaced text; it's also sometimes important to
have individual characters (.
, etc.) not be
de-emphasised by being smaller than any other character.
lhs2tex, at least, addresses vertical alignment whilst using proportional fonts. I guess the importance of identifying individual significant characters is just as true in a code sample within a larger document as it is within plain source code.
From a (brief) scan of research on this topic, it seems that proportional fonts result in marginally quicker reading times for regular prose. It's not clear whether those results carry over into reading computer code in particular, and the margin is slim in any case. The drawbacks of monospaced text mostly apply when the volume of text is large, which is not the case for the short code snippets I am working with.
I still have a few open questions:
∈
instead of
elem
, ≠
instead of /=
.
Sadly, it's not possible to replace the denotation for an anonymous
function, \
, with λ
this
way.↩Scarecrow’s 2024 Psychotronic Challenge: Day 12 [The Stranger]
"Insert zombie joke here." by Megan Seling
12. THE LIVING IMPAIRED: Insert zombie joke here.
One Cut of the DeadWatch One Cut of the Dead.
That’s it. That’s all I’m going to say. I swear it’s not a cop-out! I’m not being lazy! I actually L-O-V-E to hear myself talk! (Er, uh, watch myself type?) But the less you know going into this masterpiece, the better. If you’re going to watch a zombie movie, watch this zombie movie. Thank you.
Best quote: “It’s coming out…” “What is it?” “Poop.” “That’ll be a blooper.”
Snack suggestion: Gnocchi in tomato sauce (they look like little brains!).
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
Pluralistic: Quinque gazump linkdump (12 Oct 2024) [Pluralistic: Daily links from Cory Doctorow]
It's Saturday and any fule kno that this is the day for a linkdump, in which the links that couldn't be squeezed into the week's newsletter editions get their own showcase. Here's the previous 23 linkdumps:
https://pluralistic.net/tag/linkdump/
Start your weekend with some child's play! Ada & Zangemann is a picture book by Matthias Kirschner and Sandra Brandstätter of Free Software Foundation Europe, telling the story of a greedy inventor who ensnares a town with his proprietary, remote-brickable gadgets, and Ada, his nemesis, a young girl who reverse engineers them and lets their users seize the means of computation:
https://fsfe.org/activities/ada-zangemann/index.en.html
Ada & Zangemann is open access – you can share it, adapt it, and sell it as you see fit – and has been translated into several languages. Now, there's a cartoon version, an animated adaptation that is likewise open access, with digital assets for your remixing pleasure:
https://fsfe.org/activities/ada-zangemann//movie
Figuring out how to talk to kids about important subjects is a clarifying exercise. Back in the glory days of SNL, Eddie Murphy lampooned Fred "Mr" Rogers style of talking to kids, and it was indeed very funny:
https://snl.fandom.com/wiki/Mr._Robinson
But Mr Rogers' rhetorical style wasn't as simple as "talk slowly and use small words" – the "Fredish" dialect that Mr Rogers created was thoughtful, empathic, inclusive, and very effective:
Lots of writers have used the sing-songy fairytale style of children's stories to make serious political points (see, e.g. Animal Farm). My own attempt at this was my 2011 short story "The Brave Little Toaster," for MIT Tech Review's annual sf series. If the title sounds familiar, that's because I nicked it from Tom Disch's tale of the same name, as part of my series of stolen title stories:
https://locusmag.com/2012/05/cory-doctorow-a-prose-by-any-other-name/
My Toaster story is a tale of IoT gone wild, in which the nightmare of a world of "smart" devices that exert control over their owners is shown to be a nightmare. A work colleague sent me this adaptation of the story as part of an English textbook, with lots of worksheet-style exercises. I'd never seen this before, and it's very fun:
http://ourenglishclass.net/wp-content/uploads/sites/6/2024/09/bravetoaster.pdf
If you like my "Brave Little Toaster," you'll likely enjoy my novella "Unauthorized Bread," which appears in my 2019 collection Radicalized and is currently being adapted as a middle-grades graphic novel by Blue Delliquanti for Firstsecond:
Childlike parables have their place, but just because something fits in a "just so" story, that doesn't make it true. Cryptocurrency weirdos desperately need to learn this lesson. The foundation of cryptocurrency is a fairytale about the origin of money, a mythological marketplace in which freely trading individuals who struggled to find a "confluence of needs." If you wanted to trade one third of your cow for two and a half of my chickens, how could we complete the transaction?
In the "money story" fairy tale, we spontaneously decided that we would use gold, for a bunch of nonsensical reasons that don't bear even cursory scrutiny. And so coin money sprang into existence, and we all merrily traded our gold with one another until a wicked government came and stole our gold with (cue scary voice) taaaaaaxes.
There is zero evidence for this. It's literally a fairy tale. There is a rich history of where money came from, and the answer, in short is, governments created it through taxes, and money doesn't exist without taxation:
https://locusmag.com/2022/09/cory-doctorow-moneylike/
The money story is a lie, and it's a consequential one. The belief that money arises spontaneously out of the needs of freely trading people who voluntarily accept an arbitrary token as a store of value, unit of account, and unit of exchange (coupled with a childish, reactionary aversion to taxation) inspired cryptocurrency, and with it, the scams that allowed unscrupulous huxters to steal billions from everyday people who trusted Matt Damon, Spike Lee and Larry David when they told them that cryptocurrency was a sure path to financial security:
https://pluralistic.net/2024/02/15/your-new-first-name/#that-dagger-tho
It turns out that private money, far from being a tool of liberation, is rather just a dismal tool for ripping off the unsuspecting, and that goes double for crypto, where complexity can be weaponized by swindlers:
https://pluralistic.net/2022/03/13/the-byzantine-premium/
We don't hear nearly as much about crypto these days – many of the pump-and-dump set have moved on to pitching AI stock – but there's still billions tied up in the scam, and new shitcoins are still being minted at speed. The FBI actually created a sting operation to expose the dirtiness of the crypto "ecosystem":
They found that the exchanges, "market makers" and other seemingly rock-ribbed institutions where suckers are enticed to buy, sell, track and price cryptos are classic Big Store cons:
http://www.amyreading.com/the-9-stages-of-the-big-con.html
When you, the unsuspecting retail investor, enter one of these mirror-palaces, you are the only audience member in a play that everyone else is in on. Those vigorous trades that see the shitcoin you're being hustled with skyrocketing in value? They're "wash trades," where insiders buy and sell the same asset to one another, without real money ever changing hands, just to create the appearance of a rapidly appreciating asset that you had best get in on before you are priced out of the market.
This scam is as old as con games themselves and, as with other scams- S&Ls, Enron, subprime – the con artists have parlayed their winnings into social respectability and are now flushing them into the political system, to punish lawmakers who threaten their ability to rip off you and your neighbors. A massive, terrifying investigative story in The New Yorker shows how crypto billionaires stole the Democratic nomination from Katie Porter, one of the most effective anti-scam lawmakers in recent history:
https://www.newyorker.com/magazine/2024/10/14/silicon-valley-the-new-lobbying-monster
Big Tech – like every corrupt cartel in history – is desperate to conjure a kleptocracy into existence, whose officials they can corrupt in order to keep the machine going until they've maximized their gains and achieved escape velocity from consequences.
No surprise, then, that tech companies have adopted the same spin tactics that sowed doubt about the tobacco-cancer link, in order to keep the US from updating its anemic privacy laws. The last time Congress gave us a new consumer privacy law was 1988, when they banned video store clerks from disclosing our VHS rental history to newspapers:
https://en.wikipedia.org/wiki/Video_Privacy_Protection_Act
By preventing confining privacy law to the VCR era, Big Tech has been able to plunder our data with impunity – aided by cops and spies who love the fact that there's a source of cheap, off-the-books, warrantless surveillance data that would be illegal for them to collect.
Writing for Tech Policy Press, the Norcal ACLU's Jake Snow connects the tobacco industry fight over "pre-emption" to the modern fight over privacy laws:
In the 1990s, Big Tobacco went to war against state anti-smoking laws, arguing that the federal government had the right – nay, the duty – to create a "harmonized" national system of smoking laws that would preempt state laws. Strangely, politicians who love "states' rights" when it comes to banning abortion, tax-base erosion and "right to work" anti-union laws suddenly discovered federal religion when their campaign donors from the Cancer-Industrial Complex decided that states shouldn't use those rights to limit smoking.
This is exactly the tack that Big Tech has taken on privacy, arguing that any update to federal privacy law should abolish muscular state-level laws, like Illinois's best-in-class biometric privacy rules, or California's CPPA.
Like Big Tobacco, Big Tech has "funded front groups, hired an armada of lobbyists, donated millions to campaigns, and opened a firehose of lobbying money," with the goal of replacing "real privacy laws with fake industry alternatives as ineffective as non-smoking sections."
Whether it's understanding the origin of money or the Big Tobacco playbook, knowing history can protect you from all kinds of predatory behavior. But history isn't merely a sword and shield, it's also just a delight. Internet pioneer Ethan Zuckerman is road-tripping around America, and in August, he got to Columbus, IN, home to some of the country's most beautiful and important architectural treasures:
https://ethanzuckerman.com/2024/08/29/road-trip-the-company-town-and-the-corn-fields/
The buildings – clustered in within a few, walkable blocks – are the legacy of the diesel engine manufacturing titan Cummins, whose postwar president J Irwin Miller used the company's wartime profits to commission a string of gorgeous structures from starchitects like the Saarinens, IM Pei, Kevin Roche, Richard Meier, Harry Weese, César Pelli, Gunnar Birkerts, and Skidmore. I had no idea about any of this, and now I want to visit Columbus!
I'm planning a book tour right now (for my next novel, Picks and Shovels, which is out in February) and there's a little wiggle-room in the midwestern part of the tour. There's a possibility that I'll end up in the vicinity, and if that happens, I'm definitely gonna find time for a little detour!
#20yrago Monsanto stole patented wheat from Indian farmers https://www.gmwatch.org/en/news/archive/2004/7403-monsantos-indian-wheat-patent-withdrawn-in-europe-4102004
#15yrsago Meet the 42 lucky people who got to see the secret copyright treaty https://www.keionline.org/39045
#15yrsago Airlines that charge fees lost more money than airlines that didn’t https://joe.biztravelife.com/09/042309.html
#15yrsago EFF comes to the rescue of Texas Instruments calculator hackers https://www.eff.org/press/archives/2009/10/13
#10yrsago How state anti-choice laws let judges humiliate vulnerable teens https://www.motherjones.com/politics/2014/10/teen-abortion-judicial-bypass-parental-notification/
#10yrsago One weird legal trick that makes patent trolls cry https://memex.craphound.com/2014/10/13/one-weird-legal-trick-that-makes-patent-trolls-cry/
#10yrsago Hong Kong’s pro-democracy websites riddled with malware https://www.volexity.com/blog/2014/10/09/democracy-in-hong-kong-under-attack/
#1yrago Microsoft put their tax-evasion in writing and now they owe $29 billion https://pluralistic.net/2023/10/13/pour-encoragez-les-autres/#micros-tilde-one
OKFN Tech We Want Online Summit (Remote), Oct 18
https://okfn.org/en/events/the-tech-we-want-online-summit/
SOSS Fusion (Atlanta), Oct 22
https://sossfusion2024.sched.com/speaker/cory_doctorow.1qm5qfgn
Eagle Eye Books (Decatur), Oct 23
https://eagleeyebooks.com/event/2024-10-23/cory-doctorow
TusCon (Tucson), Nov 8-10
https://tusconscificon.com/
International Cooperative Alliance (New Delhi), Nov 24
https://icanewdelhi2024.coop/welcome/pages/Programme
ISSA-LA Holiday Celebration keynote (Los Angeles), Dec 18
https://issala.org/event/issa-la-december-18-dinner-meeting/
Was There Ever An Old, Good Internet? (David Graeber
Institute)
https://www.youtube.com/watch?v=T6Jlxx5TboE
Go Fact Yourself
https://maximumfun.org/episodes/go-fact-yourself/ep-158-aida-rodriguez-cory-doctorow/
"The Lost Cause:" a solarpunk novel of hope in the climate emergency, Tor Books (US), Head of Zeus (UK), November 2023 (http://lost-cause.org). Signed, personalized copies at Dark Delicacies (https://www.darkdel.com/store/p3007/Pre-Order_Signed_Copies%3A_The_Lost_Cause_HB.html#/)
"The Internet Con": A nonfiction book about interoperability and Big Tech (Verso) September 2023 (http://seizethemeansofcomputation.org). Signed copies at Book Soup (https://www.booksoup.com/book/9781804291245).
"Red Team Blues": "A grabby, compulsive thriller that will leave you knowing more about how the world works than you did before." Tor Books http://redteamblues.com. Signed copies at Dark Delicacies (US): and Forbidden Planet (UK): https://forbiddenplanet.com/385004-red-team-blues-signed-edition-hardcover/.
"Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin", on how to unrig the markets for creative labor, Beacon Press/Scribe 2022 https://chokepointcapitalism.com
"Attack Surface": The third Little Brother novel, a standalone technothriller for adults. The Washington Post called it "a political cyberthriller, vigorous, bold and savvy about the limits of revolution and resistance." Order signed, personalized copies from Dark Delicacies https://www.darkdel.com/store/p1840/Available_Now%3A_Attack_Surface.html
"How to Destroy Surveillance Capitalism": an anti-monopoly pamphlet analyzing the true harms of surveillance capitalism and proposing a solution. https://onezero.medium.com/how-to-destroy-surveillance-capitalism-8135e6744d59?sk=f6cd10e54e20a07d4c6d0f3ac011af6b) (signed copies: https://www.darkdel.com/store/p2024/Available_Now%3A__How_to_Destroy_Surveillance_Capitalism.html)
"Little Brother/Homeland": A reissue omnibus edition with a new introduction by Edward Snowden: https://us.macmillan.com/books/9781250774583; personalized/signed copies here: https://www.darkdel.com/store/p1750/July%3A__Little_Brother_%26_Homeland.html
"Poesy the Monster Slayer" a picture book about monsters, bedtime, gender, and kicking ass. Order here: https://us.macmillan.com/books/9781626723627. Get a personalized, signed copy here: https://www.darkdel.com/store/p2682/Corey_Doctorow%3A_Poesy_the_Monster_Slayer_HB.html#/.
Unauthorized Bread: a middle-grades graphic novel adapted from my novella about refugees, toasters and DRM, FirstSecond, 2025
Today's top sources: Super Punch (https://www.superpunch.net/), John Naughton (https://memex.naughtons.org/), Hayley Tsukayama (https://www.hayleytsukayama.com/), Dave Maass (https://twitter.com/maassive).
Currently writing:
A Little Brother short story about DIY insulin PLANNING
Picks and Shovels, a Martin Hench noir thriller about the heroic era of the PC. FORTHCOMING TOR BOOKS FEB 2025
Latest podcast: Spill, part one (a Little Brother story) https://craphound.com/littlebrother/2024/10/06/spill-part-one-a-little-brother-story/
This work – excluding any serialized fiction – is licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.
https://creativecommons.org/licenses/by/4.0/
Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.
Blog (no ads, tracking, or data-collection):
Newsletter (no ads, tracking, or data-collection):
https://pluralistic.net/plura-list
Mastodon (no ads, tracking, or data-collection):
Medium (no ads, paywalled):
Twitter (mass-scale, unrestricted, third-party surveillance and advertising):
Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):
https://mostlysignssomeportents.tumblr.com/tagged/pluralistic
"When life gives you SARS, you make sarsaparilla" -Joey "Accordion Guy" DeVilla
Cynicism isn’t always the right explanation. Sometimes people just want to share something good with you, that doesn’t necessarily mean they’re stupid, maybe they just like you.
Why is this possible now? [Scripting News]
BTW, the reason there's such a confluence of power between WordPress and Mastodon is this.
WordPress has a complete, debugged, deployed, scaled and frozen API. It's been around since 2016 or so.
In contrast Mastodon, while they're doing excellent work, is trying to wrangle an already large community into a set of consistent interfaces. It's very hard for an outsider like myself to approach, esp when you're overloaded with your own work (which we all are).
Meanwhile, Automattic has a small team whose only job is to make WordPress work with Mastodon.
So I can build software that works with Mastodon without venturing into the rough seas of Mastodon-land. I can stay on the cruise-liner, which is the WordPress API.
I didn't even know they had this API until last summer. My jaw dropped when I first saw it. It even works with Node.js. And now that I'm on the other side, I haven't hit any insurmountable obstacles or had to wait for something to be decided.
This is the proper way to build interop. Implementors make things work, not W3C committees (I say that with decades of experience with this, btw).
I thought it deserved an explanation.
Payback time for the Dodgers [Scripting News]
Well we know who the Mets are facing, starting tomorrow, in the National League championship series.
Last time we played the Dodgers in the postseason we kicked their ass. And now they have the nerve to show up again. Geez some people never learn.
And we haven't forgotten how Chase Utley broke Rubin Tejada's leg, deliberately, basically ending his major league career. We thought he should have been arrested for that, no kidding -- it was a vicious un-baseball assault. He and the Dodgers showed no remorse.
Update: The Jankees are playing Cleveland in the ALCS, and while some people with limited imaginations wish for a Subway Series betw the the two NY teams, I do not. I have a rule, I always root for the team the Jankees are playing. Thus I hope to see a World Series between the Mets and so-called "Guardians." And of course the Mets would be heavily favored in that contest because the Cleveland team has changed their name to something impossible to pronounce, ethically. When you change your name, like tearing down your stadium (something that took the Mets a long time to recover from) you basically put a hex on your team making it virtually impossible for your philosophy to prevail. So Mets v Guardians, while not necessarily what I predict, rather is something I hope for, and as long as the game is played with philosophy, that's the real victory! So get em METS and never forget there's always next year. ❤️
“Please create more tension” [Seth's Blog]
This rarely comes up in focus group data.
It doesn’t come up when a school talks to students, or a conductor asks the orchestra. It doesn’t come up when the gym owner surveys potential members or when a chef or playwright thinks about building something new.
But of course, that’s what we remember.
That’s what changes us. Tension is the feeling we experience just before we grow.
Ironically, it’s what we seek, at the very same time we avoid it.
bugz-mode and a68-mode now in sourcehut [Planet GNU]
I have decided to start using sourcehut for a few of my projects. The first projects landing there are bugz-mode and a68-mode, two Emacs modes. The first implements a quite efficient and comfortable interface to bugzilla. The second is a programming mode for Algol 68.
Let's see how it goes!
This Week in Seattle Food News [The Stranger]
Sourdough, Waffle Sandwiches, and Krabby Patties by EverOut Staff This week is all about fig pistachio cake, Krabby Patties, fresh hop beers, and bodega snacks. Plus, visit the newly opened Salmonberry Green Grocer and look forward to savory waffle sandwiches and the triumphant return of Marjorie. For more ideas, check out our guide to fall treats and our food and drink guide. NEW OPENINGS & RETURNS
Salmonberry Green Grocer
The beloved farmers market staple Salmonberry Goods, known for
sourdough, bagels, kombucha, and baked goods made with local
ingredients, soft
opened its new Sunset Hill store last Saturday. You'll be able
to find prepared meals, pantry items, and produce alongside the
bakery offerings.
Ballard
Scarecrow’s 2024 Psychotronic Challenge: Day 11 [The Stranger]
"More than make up, this one is when practical effects masters employ their crafting skills directly to making the whole damn movie." by Megan Seling
11. BREAKING THE MOLD: More than make up, this one is when practical effects masters employ their crafting skills directly to making the whole damn movie.
FreakedReally great art slips through the cracks every single day. Music, books, and movies better than anything you’ve ever known are constantly getting swept away in the crushing firehouse of cultural output before they have a chance to land in the welcoming arms of an adoring audience. Case in point: Freaked, the 1993 special effects masterpiece written and directed by Alex Winters and Tom Stern.
Combine the visual enchantment of Pee-wee's Playhouse with the gross-out factor of The Ren & Stimpy Show, and you have Freaked, a movie about a mad scientist who uses obscene experimental technology to turn kidnapped humans into deformed acts for his roadside attraction called Freek Land.
Look at this cast: Alex Winter, Michael Stoyanov, Randy Quaid, Megan Ward, William Sadler, Bobcat Goldthwait, Mr. T, Keanu Reeves, Brooke Shields, Derek McGrath, and Morgan Fairchild.
Look at this soundtrack: Butthole Surfers, Parliament Funkadelic, and Henry Rollins and Blind Idiot God.
This, my friend, is early-’90s ✨gold.✨And 20th Century Fox knew it, too—Winters later said in an interview that the studio was so stoked they agreed to dump $12 million into the movie before the script was even done!
And yet, after a leadership shakeup at the studio resulted in much of the film’s post-production funding and promotional budget getting slashed (at least according to Wikipedia), Freaked hardly saw any advertising, and landed with a thud. It reportedly made just $6,957 on opening weekend, relegated to cult status at best. And that is a goddamn shame because Freaked is fucking delightful.
It’s funnier than you’d expect, it’s smarter than it needs to be, and the makeup effects used to turn people into talking, human-sized cows, worms, dogs, and other creatures were done by big-timers including Tony Gardner, Bill Corso, and Steve Johnson with a multi-million dollar budget. It should’ve been huge! Alas. Don’t let the fact that the studio shit all over Freaked before it had a chance to thrive fool you into thinking it’s a flop. It’s not; Freaked is fantastic.
As far as I can tell, the film isn’t available for (legal) streaming, so you’ll have to buy the DVD or head to Scarecrow to rent it, and wouldn’t you know, at the time of this writing, they have multiple copies available in both DVD and Blu-Ray format.
Best quote: “Hey, I’m okay!”
Snack recommendation: Jelly Belly Bean Boozled jelly beans. I can’t explain why, it just makes sense.
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
Summarizing the last 18 years on the web. Between Twitter and Google Reader, the web was cut into two, and they didn't get along. We may now be on the cusp of fixing that. Why? Because WordPress and Mastodon work with each other in unforeseen ways. We got lucky, because I don't think this was done consciously by the developers of either product.
FSD meeting recap 2024-10-11 [Planet GNU]
Check out the important work our volunteers accomplished at today's Free Software Directory (FSD) IRC meeting.
Indian Fishermen Are Catching Less Squid [Schneier on Security]
Fishermen in Tamil Nadu are reporting smaller catches of squid.
How can I explicitly specialize a templated C++ constructor? [The Old New Thing]
C++ allows constructors to be templated, but there is no syntax for explicitly specializing the constructor. Here’s a rather artificial example:
// Assume derived classes by convention have a constructor // whose first parameter is an ObjectManager&. struct CommonBase { virtual ~CommonBase(){} virtual void initialize(int reason) = 0; }; struct ObjectManager { // Concrete should derive from CommonBase template<typename Concrete, typename...Args> ObjectManager(int reason, Args&&...args) : m_base(std::make_unique<Concrete>( *this, std::forward<Args>(args)...)) { m_base->initialize(reason); } std::unique_ptr<CommonBase> m_base; };
The idea here is that you have some type, and you want to templatize the constructor. It is legal to have a templated constructor, but there is no way to explicitly specialize a constructor.
struct Widget : CommonBase { Widget(int param); ⟦ ... ⟧ }; // This is not allowed¹ auto manager = ObjectManager::ObjectManager<Widget>(42);
So how do you tell the constructor, “I want you to use
this type for Concrete
?”
Your only option is type inference, so you’ll have to make it inferrable from a parameter.
Enter std::in_place_type
and friends.
We start with std::in_place_type_t
, which is an
empty type that takes a single type as a template parameter. You
can use this as a dummy parameter and deduce the template type
parameter from it.
struct ObjectManager
{
// Concrete should derive from CommonBase
template<typename Concrete, typename...Args>
ObjectManager(int reason,
std::in_place_type_t<Concrete>,
Args&&...args) :
m_base(std::make_unique<Concrete>(
*this, std::forward<Args>(args)...))
{
m_base->initialize(reason);
}
std::unique_ptr<CommonBase> m_base;
};
// Example usage:
auto manager = ObjectManager(9, std::in_place_type_t<Derived>{}, 42);
The in_place_type_t
is an empty class that is
default-constructible. As a convenience, the standard library also
defines a premade value:
template<T> inline constexpr std::in_place_type_t in_place_type{};
Which lets you simplify the usage to
auto manager = ObjectManager(9, std::in_place_type<Derived>, 42);
Note that there is no member type type
inside the
std::in_place_type_t
, so you have to use deduction to
pull it out. You can’t say
// Concrete should derive from CommonBase template<typename Trait, typename...Args> ObjectManager(int reason, Trait, Args&&...args) : m_base(std::make_unique<typename Trait::type>( *this, std::forward<Args>(args)...)) { m_base->initialize(reason); }
You might be tempted to use
std::type_identity
² as the type holder:
// Concrete should derive from CommonBase
template<typename Concrete, typename...Args>
ObjectManager(int reason,
std::type_identity<Concrete>,
Args&&...args) :
m_base(std::make_unique<Concrete>(
*this, std::forward<Args>(args)...))
{
m_base->initialize(reason);
}
but that is not allowed.
According to the C++ standard, std::type_identity
is a Cpp17TransformationTrait, and [meta.rqmts]
spells out the requirements of various trait types in the standard
library.
Trait | Constructible? | Copyable? | Special member |
---|---|---|---|
Cpp17UnaryTypeTrait | Yes | Yes | value |
Cpp17BinaryTypeTrait | Yes | Yes | value |
Cpp17TransformationTrait | No | No | type |
Since a Cpp17TransformationTrait is not constructible, and the
language does not provide any pre-made instances, there is no legal
way of gaining access to an instance of a Cpp17TransformationTrait.
An implemention would be within its rights to define
type_identity
as
template<typename T> struct type_identity { using type = T; // not constructible type_identity() = delete; // not copyable type_identity(type_identity const&) = delete; }
¹ Another place you cannot specialize a templated function is operator overloading.
struct ObjectMaker { ObjectMaker(std::string name) : m_name(std::move(name)) {} template<typename Concrete> Concrete operator()() { return Concrete(m_name); } std::string m_name; }; void sample() { ObjectMaker maker("adam"); // You can't do this auto thing1 = maker<Thing1>(); auto thing2 = maker<Thing2>(); }
You have to use more cumbersome syntax to specialize the overloaded operator:
void sample() { ObjectMaker maker("adam"); // You have to write it like this auto thing1 = maker.operator()<Thing1>(); auto thing2 = maker.operator()<Thing2>(); }
It’s cumbersome, but at least it’s possible.
But if you’re going to do that, you may as well give it a name:
struct ObjectMaker { ObjectMaker(std::string name) : m_name(std::move(name)) {} template<typename Concrete> Concrete make() { return Concrete(m_name); } std::string m_name; }; void sample() { ObjectMaker maker("adam"); auto thing1 = maker.make<Thing1>(); auto thing2 = maker.make<Thing2>(); }
² For further reading: What’s
the deal with std::type_identity
?”
The post How can I explicitly specialize a templated C++ constructor? appeared first on The Old New Thing.
Rock the Riddle That’ll Make Your Body Rock [The Stranger]
To the hip hip-hop and you don't stop. by Megan Seling
History will be made on Friday, October 18, when Charles Mudede and hiphop professor Daudi Abe perform their Stranger piece "Anatomy of a Song: The Sugarhill Gang’s 'Rapper’s Delight' (1979)" live! Onstage! At Clock-Out Lounge!
The world has never seen a performance like this before!
As they wrote in our latest Art + Performance issue, "Rapper's Delight" made hiphop accessible to the world. It's the track "that made it possible for Dr. Dre and Jay-Z to be billionaires, Snoop and Martha Stewart’s world-famous friendship not only achievable but profitable, and a bad breakdancer at the Olympics go viral."
If you haven't read read it, YOU NEED TO RIGHT NOW.
At the show, Mudede and Abe will interject the tune with their annotations and expand on the song's place in history while also exploring some of the samples featured in the song and the tracks that followed in "Rapper's Delights" footsteps. Special guest DJ Vitamin D will provide the soundtrack. It will be a hiphop show, it will be a history lecture, and it will be a dance party—you don't want to miss it.
The fun starts at 9 pm, but you'll want to arrive early to grab some Stevie's Pizza, which now has a location inside Clock-Out and has been deemed "Rhodes Scholar-level pizza" by food writer Meg van Huygen. 🍕
Flirting in the Sky and Killer Dinner Parties [The Stranger]
The Seattle Queer Film Festival is back with both in-person and virtual screenings through October 20. by Chase Hutchinson
The Seattle Queer Film Festival is back this week with both in-person and virtual screenings through October 20. Following last year’s impressive lineup, which made it one of the festival’s absolute best, this year has a shorter in-person component, running for just four days as opposed to 10. But it still boasts some solid programming from around the world, with films that are sad and sexy and silly (sometimes all at the same time!) and stories that include sensual sky-flirting and murderous dinner parties.
Passes and a full schedule are available here. To help you jump in, I’ve rounded up five highlights you won’t want to miss:
Power Alley (Levante)Brazil/France/Uruguay, 2023, 99 min., dir. Lillah Halla
Kicking things off is a thoughtful slice-of-life drama about the young Sofia, played with real presence by Ayomi Domenica Dias. Sofia is a talented volleyball player living in São Paulo and she dreams of using the sport to get a scholarship in Chile. But when the 17-year-old gets pregnant and attempts to get an abortion, she finds herself targeted by a cruel conservative group that will stop at nothing to control her life. The film becomes a story about the community that Sofia forms with her team—including a newfound romance with her teammate—and how they support her when few others will.
The film is directed with patience in its most intimate moments and incisive energy in the rebellious ones, mixing the triumphs of the team with the pain of the world they’re stuck in. That it’s director Lillah Halla’s first feature is quite remarkable as she confidently crafts a portrait that is as gentle as it is grounded, never glossing over the repressive realities that the young athletes face while finding moments of grace that endure through it all.
Fri Oct 11 at 8 pm at AMC Pacific Place 11 - Theatre 2
High TideUnited States, 2024, 105 min., dir. Marco Calvani
High Tide is a focused feature debut that sneaks up on you. Written and directed by Marco Calvani, with a subtle, quietly moving lead performance by Marco Pigossi, the film is all about the ways the beautiful, queer destination of Provincetown, Massachusetts is not always so simple for those who live there. Namely, the lonely Lourenço (Pigossi), a Brazilian immigrant whose life is informed by precarity as his visa is expiring. As if trying to find a way to stay in the United States wasn’t enough, Lourenço is also dealing with a sudden breakup that motivates him to figure out what he wants in his life. When he connects with Maurice (James Bland), a charming and confident man with secrets of his own, their chemistry crackles and lights up the screen. As this meet cute becomes more melancholic, the film juxtaposes beautiful landscapes with the more fraught emotions contained therein. Just as importantly, it finds an understated resonance in every small detail, from shots of a face shifting in emotion to a figure being left behind in the distance. It ensures you, too, will likely fall in love with Lourenço and Maurice, though the film’s beauty comes in knowing that it can’t last.
Sat Oct 12 at 2 pm at AMC Pacific Place 11 - Theatre 1. Not available as a virtual screening.
GondolaGeorgia/Germany, 2024, 82 min., dir. Veit Helmer
In Director Veit Helmer’s Gondola, the characters speak not a word, but it still shouts from a world above the rooftops with vibrant cinematic joy. The story follows cable car conductors Iva (Mathilde Irrmann) and Nina (Nini Soselia) as they zig and zag their way across the sky in the mountains of western Georgia. What begins with a game of chess, proving once more it's the most romantic of all board games, soon evolves into flirting, serenading, and sharing the most sensually charged exchanges to ever take place on a gondola. The strongest part of the experience is getting to see the duo’s shenanigans in the sky grow increasingly creative. The more Gondola it keeps its head high up in the clouds, the more we get swept up in the journey.
Sat Oct 12 at 8 pm at AMC Pacific Place 11 - Theatre 1. Available to screen virtually starting Oct 14.
The Astronaut LoversArgentina/Spain, 2024, 116 min., dir. Marco Berger
Films built around deception are common, but trust me when I say you have never seen one like Marco Berger’s ambling yet affectionate The Astronaut Lovers. This dramedy revolves around Pedro (Javier Orán) and Maxi (Lautaro Bettoni), two childhood friends who are now adults and haven’t seen each other in years. Over the course of only a few summer days at a gorgeous Argentina getaway, the two start to take part in a game where they pretend to be a couple. Pedro is openly gay, but Maxi seems to be doing it on a lark to see what his now ex-girlfriend will make of it all. At least initially. As they continue to spend time with each other, the conversations shift from gleeful sexual teasing to serious reflection as they contemplate their connection and what it is they are looking for. The story has relaxed pacing, though the chemistry of Orán and Bettoni injects it with emotional electricity. It’s a film that makes plenty of cheeky sex jokes about space while exploring a whole host of deeper ideas about attraction, performance, and societal expectations, managing to blast off just as it sticks the landing.
Sun Oct 13 at 2 pm at AMC Pacific Place 11 - Theatre 1. Not available as a virtual screening.
Mother Father Sister Brother FrankCanada, 2024, 85 min., dir. Caden Douglas
Last but definitely not least is the most darkly absurd film of the festival. Trapping us in a chaotic family dinner to end all family dinners, the scrappy comedy Mother Father Sister Brother Frank starts out with a suburban gathering where everyone has a secret. After an unexpected guest comes knocking, the evening takes a violent turn, and this dysfunctional family will have to come together to deal with the bloody aftermath. It’s a film that, much like the disruptive character at its center, is always in danger of overstaying its welcome but is still just clever enough to get away with it. With each escalation and swerve it serves up, the commitment of the cast, as well as a clever script, ensures it remains light on its feet, even as its characters constantly stumble over what to do. It’s a silly yet substantive meal of a movie worth seeing with the whole family so you can all fight about it afterward.
Sun Oct 13 at 4 pm at AMC Pacific Place 11 - Theatre 1. Not available as a virtual screening.
More on My AI and Democracy Book [Schneier on Security]
In July, I wrote about my new book project on AI and democracy, to be published by MIT Press in fall 2025. My co-author and collaborator Nathan Sanders and I are hard at work writing.
At this point, we would like feedback on titles. Here are four possibilities:
What we want out of the title is that it convey (1) that it is a book about AI, (2) that it is a book about democracy writ large (and not just deepfakes), and (3) that it is largely optimistic.
What do you like? Feel free to do some mixing and matching: swapping “Will Transform” for “Will Improve” for “Can Transform” for “Can Improve,” for example. Or “Democracy” for “the Republic.” Remember, the goal here is for a title that will make a potential reader pick the book up off a shelf, or read the blurb text on a webpage. It needs to be something that will catch the reader’s attention. (Other title ideas are here).
Also, FYI, this is the current table of contents:
Introduction
1. Introduction: How AI will Change Democracy
2. Core AI Capabilities
3. Democracy as an Information SystemPart I: AI-Assisted Politics
4. Background: Making Mistakes
5. Talking to Voters
6. Conducting Polls
7. Organizing a Political Campaign
8. Fundraising for Politics
9. Being a PoliticianPart II: AI-Assisted Legislators
10. Background: Explaining Itself
11. Background: Who’s to Blame?
12. Listening to Constituents
13. Writing Laws
14. Writing More Complex Laws
15. Writing Laws that Empower Machines
16. Negotiating LegislationPart III: The AI-Assisted Administration
17. Background: Exhibiting Values and Bias
18. Background: Augmenting Versus Replacing People
19. Serving People
20. Operating Government
21. Enforcing RegulationsPart IV: The AI-Assisted Court
22. Background: Being Fair
23. Background: Getting Hacked
24. Acting as a Lawyer
25. Arbitrating Disputes
26. Enforcing the Law
27. Reshaping Legislative Intent
28. Being a JudgePart V: AI-Assisted Citizens
29. Background: AI and Power
30. Background: AI and Trust
31. Explaining the News
32. Watching the Government
33. Moderating, Facilitating, and Building Consensus
34. Acting as Your Personal Advocate
35. Acting as Your Personal Political ProxyPart VI: Ensuring That AI Benefits Democracy
36. Why AI is Not Yet Good for Democracy
37. How to Ensure AI is Good for Democracy
38. What We Need to Do Now
39. Conclusion
Everything is subject to change, of course. The manuscript isn’t due to the publisher until the end of March, and who knows what AI developments will happen between now and then.
EDITED: The title under consideration is “Rewiring the Republic,” and not “Rewiring Democracy.” Although, I suppose, both are really under consideration.
Pluralistic: Lina Khan's future is the future of the Democratic Party – and America (11 Oct 2024) [Pluralistic: Daily links from Cory Doctorow]
On the one hand, the anti-monopoly movement has a future no matter who wins the 2024 election – that's true even if Kamala Harris wins but heeds the calls from billionaire donors to fire Lina Khan and her fellow trustbusters.
In part, that's because US antitrust laws have broad "private rights of action" that allow individuals and companies to sue one another for monopolistic conduct, even if top government officials are turning a blind eye. It's true that from the Reagan era to the Biden era, these private suits were few and far between, and the cases that were brought often died in a federal courtroom. But the past four years has seen a resurgence of antitrust rage that runs from left to right, and from individuals to the C-suites of big companies, driving a wave of private cases that are prevailing in the courts, upending the pro-monopoly precedents that billionaires procured by offering free "continuing education" antitrust training to 40% of the Federal judiciary:
https://pluralistic.net/2021/08/13/post-bork-era/#manne-down
It's amazing to see the DoJ racking up huge wins against Google's monopolistic conduct, sure, but first blood went to Epic, who won a historic victory over Google in federal court six months before the DoJ's win, which led to the court ordering Google to open up its app store:
Google's 30% App Tax is a giant drag on all kinds of sectors, as is its veto over which software Android users get to see, so Epic's win is going to dramatically alter the situation for all kinds of activities, from beleaguered indie game devs:
https://antiidlereborn.com/news/
To the entire news sector:
https://www.eff.org/deeplinks/2023/06/save-news-we-must-open-app-stores
Private antitrust cases have attracted some very surprising plaintiffs, like Michael Jordan, whose long policy of apoliticism crumbled once he bought a NASCAR team and lived through the monopoly abuses of sports leagues as an owner, not a player:
https://www.thebignewsletter.com/p/michael-jordan-anti-monopolist
A much weirder and more unlikely antitrust plaintiff than Michael Jordan is Google, the perennial antitrust defendant. Google has brought a complaint against Microsoft in the EU, based on Microsoft's extremely ugly monopolistic cloud business:
Google's choice of venue here highlights another reason to think that the antitrust surge will continue irrespective of US politics: antitrust is global. Antitrust fervor has seized governments from the UK to the EU to South Korea to Japan. All of those countries have extremely similar antitrust laws, because they all had their statute books overhauled by US technocrats as part of the Marshall Plan, so they have the same statutory tools as the American trustbusters who dismantled Standard Oil and AT&T, and who are making ready to shatter Google into several competing businesses:
Antitrust fever has spread to Canada, Australia, and even China, where the Cyberspace Directive bans Chinese tech giants from breaking interoperability to freeze out Chinese startups. Anything that can't go on forever eventually stops, and the cost of 40 years of pro-monopoly can't be ignored. Monopolies make the whole world more brittle, even as the cost of that brittleness mounts. It's hard to pretend monopolies are fine when a single hurricane can wipe out the entire country's supply of IV fluid – again:
https://prospect.org/health/2024-10-11-cant-believe-im-writing-about-iv-fluid-again/
What's more, the conduct of global monopolists is the same in every country where they have taken hold, which means that trustbusters in the EU can use the UK Digital Markets Unit's report on the mobile app market as a roadmap for their enforcement actions against Apple:
And then the South Korean and Japanese trustbusters can translate the court documents from the EU's enforcement action and use them to score victories over Apple in their own courts:
https://pluralistic.net/2024/04/10/an-injury-to-one/#is-an-injury-to-all
So on the one hand, the trustbusting wave will continue erode the foundations of global monopolies, no matter what happens after this election. But on the other hand, if Harris wins and then fires Biden's top trustbusters to appease her billionaire donors, things are going to get ugly.
A new, excellent long-form Bloomberg article by Josh Eidelson and Max Chafkin gives a sense of the battle raging just below the surface of the Democratic Power, built around a superb interview with Khan herself:
The article begins with a litany of tech billionaires who've gone an all-out, public assault on Khan's leadership – billionaires who stand to personally lose hundreds of millions of dollars from her agency's principled, vital antitrust work, but who cloak their objection to Khan in rhetoric about defending the American economy. In public, some of these billionaires are icily polite, but many of them degenerate into frothing, toddler-grade name-calling, like IAB's Barry Diller, who called her a "dope" and Musk lickspittle Jason Calacanis, who called her an all-caps COMMUNIST and a LUNATIC.
The overall vibe from these wreckers? "How dare the FTC do things?!"
And you know, they have a point. For decades, the FTC was – in the quoted words of Tim Wu – "a very hardworking agency that did nothing." This was the period when the FTC targeted low-level scammers while turning a blind eye to the monsters that were devouring the US economy. In part, that was because the FTC had been starved of budget, trapping them in a cycle of racking up easy, largely pointless "wins" against penny-ante grifters to justify their existence, but never to the extent that Congress would apportion them the funds to tackle the really serious cases (if this sounds familiar, it's also the what happened during the long period when the IRS chased middle class taxpayers over minor filing errors, while ignoring the billionaires and giant corporations that engaged in 7- and 8-figure tax scams).
But the FTC wasn't merely underfunded: it was timid. The FTC has extremely broad enforcement and rulemaking powers, which most sat dormant during the neoliberal era:
https://pluralistic.net/2023/01/10/the-courage-to-govern/#whos-in-charge
The Biden administration didn't merely increase the FTC's funding: in choosing Khan to helm the organization, they brought onboard a skilled technician, who was both well-versed in the extensive but unused powers of the agency and determined to use them:
https://pluralistic.net/2022/10/18/administrative-competence/#i-know-stuff
But Khan's didn't just rely on technical chops and resources to begin the de-olicharchification of the US economy: she built a three-legged stool, whose third leg is narrative. Khan's signature is her in-person and remote "listening tours," where workers who've been harmed by corporate power get to tell their stories. Bloomberg recounts the story of Deborah Brantley, who was sexually harassed and threatened by her bosses at Kavasutra North Palm Beach. Brantley's bosses touched her inappropriately and "joked" about drugging her and raping her so she "won’t be such a bitch and then maybe people would like you more."
When Brantley finally quit and took a job bartending at a different business, Kavasutra sued her over her noncompete clause, alleging an "irreparable injury" sustained by having one of their former employees working at another business, seeking damages and fees.
The vast majority of the 30 million American workers who labor under noncompetes are like Brantley, low-waged service workers, especially at fast-food restaurants (so Wendy's franchisees can stop minimum wage cashiers from earning $0.25/hour more flipping burgers at a nearby McDonald's). The donor-class indenturers who defend noncompetes claim that noncompetes are necessary to protect "innovative" businesses from losing their "IP." But of course, the one state where no workers are subject to noncompetes is California, which bans them outright – the state that is also home to Silicon Valley, an IP-heave industry that the same billionaires laud for its innovations.
After that listening tour, Khan's FTC banned noncompetes nationwide:
https://pluralistic.net/2024/04/25/capri-v-tapestry/#aiming-at-dollars-not-men
Only to have a federal judge in Texas throw out their ban, a move that will see $300b/year transfered from workers to shareholders, and block the formation of 8,500 new US businesses every year:
https://www.npr.org/2024/08/21/g-s1-18376/federal-judge-tosses-ftc-noncompetes-ban
Notwithstanding court victories like Epic v Google and DoJ v Google, America's oligarchs have the courts on their side, thanks to decades of court-packing planned by the Federalist Society and executed by Senate Republicans and Reagan, Bush I, Bush II, and Trump. Khan understands this; she told Bloomberg that she's a "close student" of the tactics Reagan used to transform American society, admiring his effectiveness while hating his results. Like other transformative presidents, good and bad, Reagan had to fight the judiciary and entrenched institutions (as did FDR and Lincoln). Erasing Reagan's legacy is a long-term project, a battle of inches that will involve mustering broad political support for the cause of a freer, more equal America.
Neither Biden nor Khan are responsible for the groundswell of US – and global – movement to euthanize our rentier overlords. This is a moment whose time has come; a fact demonstrated by the tens of thousands of working Americans who filled the FTC's noncompete docket with outraged comments. People understand that corporate looters – not "the economy" or "the forces of history" – are the reason that the businesses where they worked and shopped were destroyed by private equity goons who amassed intergenerational, dynastic fortunes by strip-mining the real economy and leaving behind rubble.
Like the billionaires publicly demanding that Harris fire Khan, private equity bosses can't stop making tone-deaf, guillotine-conjuring pronouncements about their own virtue and the righteousness of their businesses. They don't just want to destroy the world – they want to be praised for it:
"We are taught to judge the success of a society by how it deals with the least able, most vulnerable members of that society. Shouldn’t we judge a society by how they treat the most successful? Do we vilify, tax, expropriate and condemn those who have succeeded, or do we celebrate economic success as the engine that propels our society toward greater collective well-being?" -Marc Rowan, CEO of Apollo
"Achieve life-changing money and power," -Sachin Khajuria, former partner at Apollo
Meanwhile, the "buy, strip and flip" model continues to chew its way through America. When PE buys up all the treatment centers for kids with behavioral problems, they hack away at staffing and oversight, turning them into nightmares where kids are routinely abused, raped and murdered:
https://www.nbcnews.com/news/us-news/they-told-me-it-was-going-be-good-place-allega-tions-n987176
When PE buys up nursing homes, the same thing happens, with elderly residents left to sit in their own excrement and then die:
https://www.politico.com/news/magazine/2023/12/24/nursing-homes-private-equity-fraud-00132001
Writing in The Guardian, Alex Blasdel lays out the case for private equity as a kind of virus that infects economies, parasitically draining them of not just the capacity to provide goods and services, but also of the ability to govern themselves, as politicians and regulators are captured by the unfathomable sums that PE flushes into the political process:
https://www.theguardian.com/business/2024/oct/10/slash-and-burn-is-private-equity-out-of-control
Now, the average worker who's just lost their job may not understand "divi recaps" or "2-and-20" or "carried interest tax loopholes," but they do understand that something is deeply rotten in the world today.
What happens to that understanding is a matter of politics. The Republicans – firmly affiliated with, and beloved of, the wreckers – have chosen an easy path to capitalizing on the rising rage. All they need to do is convince the public that the system is irredeemably corrupt and that the government can't possibly fix anything (hence Reagan's asinine "joke": "the nine most terrifying words in the English language are: 'I'm from the Government, and I'm here to help'").
This is a very canny strategy. If you are the party of "governments are intrinsically corrupt and incompetent," then governing corruptly and incompetently proves your point. The GOP strategy is to create a nation of enraged nihilists who don't even imagine that the government could do something to hold their bosses to account – not for labor abuses, not for pollution, not for wage theft or bribery.
The fact that successive neoliberal governments – including Democratic administrations – acted time and again to bear out this hypothesis makes it easy for this kind of nihilism to take hold.
Far-right conspiracies about pharma bosses colluding with corrupt FDA officials to poison us with vaccines for profit owe their success to the lived experience of millions of Americans who lost loved ones to a conspiracy between pharma bosses and corrupt officials to poison us with opioids.
Unhinged beliefs that "they" caused the hurricanes tearing through Florida and Georgia and that Kamala Harris is capping compensation to people who lost their homes are only credible because of murderous Republican fumble during Katrina; and the larcenous collusion of Democrats to help banks steal Americans' homes during the foreclosure crisis, when Obama took Tim Geithner's advice to "foam the runway" with the mortgages of everyday Americans who'd been cheated by their banks:
If Harris gives in to billionaire donors and fires Khan and her fellow trustbusters, paving the way for more looting and scamming, the result will be more nihilism, which is to say, more electoral victories for the GOP. The "government can't do anything" party already exists. There are no votes to be gained by billing yourself as the "we also think governments can't do anything" party.
In other words, a world where Khan doesn't run the FTC is a world where antitrust continues to gain ground, but without taking Democrats with it. It's a world where nihilism wins.
There's factions of the Democratic Party who understand this. AOC warned party leaders that, "Anyone goes near Lina Khan and there will be an out and out brawl":
https://twitter.com/AOC/status/1844034727935988155
And Bernie Sanders called her "the best FTC Chair in modern history":
https://twitter.com/SenSanders/status/1843733298960576652
In other words: Lina Khan as a posse.
Wealth distribution in the United States https://www.righto.com/2024/10/wealth-distribution-in-united-states.html (h/t JWZ)
Cards Against Humanity Pays You to Give a Shit https://www.apologize.lol
#20yrsago Entertainment companies bent on wholesale slaughter of Betamax, puppies https://web.archive.org/web/20041010092552/https://www.eff.org/deeplinks/archives/001987.php
#15yrsago What’s wrong with Search Engine Optimization http://https://powazek.com/posts/2090
#15yrsago Gag order blocks Guardian from reporting on Parliament https://www.theguardian.com/media/2009/oct/12/guardian-gagged-from-reporting-parliament
#15yrsago Copyright vs. folk music https://web.archive.org/web/20091016014623/https://freemusicarchive.org/member/stevenarntson/blog/The_Absent_Second_An_Explanation
#15yrsago xkcd: volume 0 https://memex.craphound.com/2009/10/12/xkcd-volume-0/
#10yrsago Chinese Supreme Court makes service providers liable for “human flesh search engine” https://archive.shine.cn/national/Rules-to-protect-personal-rights-online/shdaily.shtml
#10yrsago NSA agents may have infiltrated the global communications industry https://web.archive.org/web/20141011080630/https://firstlook.org/theintercept/2014/10/10/core-secrets/
#10yrsago Librarians on the vanguard of the anti-surveillance movement https://www.washingtonpost.com/news/the-switch/wp/2014/10/03/librarians-wont-stay-quiet-about-government-surveillance/
#5yrsago AT&T hikes business customers’ bills by up to 7%, charging them to recoup its own property taxes https://arstechnica.com/tech-policy/2019/10/att-raises-prices-7-by-making-its-customers-pay-atts-property-taxes/
#5yrsago Google continues to funnel vast sums to notorious climate deniers https://www.theguardian.com/environment/2019/oct/11/google-contributions-climate-change-deniers
#5yrsago Mayor accused of failing to fullfil road maintenance promises is dragged through the streets by angry voters https://www.bbc.com/news/world-latin-america-49984987
#5yrsago CBC sues Canada’s Conservative Party for using short debate clips in campaign materials https://www.michaelgeist.ca/2019/10/cbc-sues-the-conservative-party-of-canada-for-copyright-infringement-citing-campaign-video-posting-debate-excerpts-on-twitter/
OKFN Tech We Want Online Summit (Remote), Oct 18
https://okfn.org/en/events/the-tech-we-want-online-summit/
SOSS Fusion (Atlanta), Oct 22
https://sossfusion2024.sched.com/speaker/cory_doctorow.1qm5qfgn
Eagle Eye Books (Decatur), Oct 23
https://eagleeyebooks.com/event/2024-10-23/cory-doctorow
TusCon (Tucson), Nov 8-10
https://tusconscificon.com/
International Cooperative Alliance (New Delhi), Nov 24
https://icanewdelhi2024.coop/welcome/pages/Programme
ISSA-LA Holiday Celebration keynote (Los Angeles), Dec 18
https://issala.org/event/issa-la-december-18-dinner-meeting/
Was There Ever An Old, Good Internet? (David Graeber
Institute)
https://www.youtube.com/watch?v=T6Jlxx5TboE
Go Fact Yourself
https://maximumfun.org/episodes/go-fact-yourself/ep-158-aida-rodriguez-cory-doctorow/
"The Lost Cause:" a solarpunk novel of hope in the climate emergency, Tor Books (US), Head of Zeus (UK), November 2023 (http://lost-cause.org). Signed, personalized copies at Dark Delicacies (https://www.darkdel.com/store/p3007/Pre-Order_Signed_Copies%3A_The_Lost_Cause_HB.html#/)
"The Internet Con": A nonfiction book about interoperability and Big Tech (Verso) September 2023 (http://seizethemeansofcomputation.org). Signed copies at Book Soup (https://www.booksoup.com/book/9781804291245).
"Red Team Blues": "A grabby, compulsive thriller that will leave you knowing more about how the world works than you did before." Tor Books http://redteamblues.com. Signed copies at Dark Delicacies (US): and Forbidden Planet (UK): https://forbiddenplanet.com/385004-red-team-blues-signed-edition-hardcover/.
"Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin", on how to unrig the markets for creative labor, Beacon Press/Scribe 2022 https://chokepointcapitalism.com
"Attack Surface": The third Little Brother novel, a standalone technothriller for adults. The Washington Post called it "a political cyberthriller, vigorous, bold and savvy about the limits of revolution and resistance." Order signed, personalized copies from Dark Delicacies https://www.darkdel.com/store/p1840/Available_Now%3A_Attack_Surface.html
"How to Destroy Surveillance Capitalism": an anti-monopoly pamphlet analyzing the true harms of surveillance capitalism and proposing a solution. https://onezero.medium.com/how-to-destroy-surveillance-capitalism-8135e6744d59?sk=f6cd10e54e20a07d4c6d0f3ac011af6b) (signed copies: https://www.darkdel.com/store/p2024/Available_Now%3A__How_to_Destroy_Surveillance_Capitalism.html)
"Little Brother/Homeland": A reissue omnibus edition with a new introduction by Edward Snowden: https://us.macmillan.com/books/9781250774583; personalized/signed copies here: https://www.darkdel.com/store/p1750/July%3A__Little_Brother_%26_Homeland.html
"Poesy the Monster Slayer" a picture book about monsters, bedtime, gender, and kicking ass. Order here: https://us.macmillan.com/books/9781626723627. Get a personalized, signed copy here: https://www.darkdel.com/store/p2682/Corey_Doctorow%3A_Poesy_the_Monster_Slayer_HB.html#/.
Unauthorized Bread: a middle-grades graphic novel adapted from my novella about refugees, toasters and DRM, FirstSecond, 2025
Today's top sources: Naked Capitalism (https://www.nakedcapitalism.com/).
Currently writing:
A Little Brother short story about DIY insulin PLANNING
Picks and Shovels, a Martin Hench noir thriller about the heroic era of the PC. FORTHCOMING TOR BOOKS FEB 2025
Latest podcast: Spill, part one (a Little Brother story) https://craphound.com/littlebrother/2024/10/06/spill-part-one-a-little-brother-story/
This work – excluding any serialized fiction – is licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.
https://creativecommons.org/licenses/by/4.0/
Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.
Blog (no ads, tracking, or data-collection):
Newsletter (no ads, tracking, or data-collection):
https://pluralistic.net/plura-list
Mastodon (no ads, tracking, or data-collection):
Medium (no ads, paywalled):
Twitter (mass-scale, unrestricted, third-party surveillance and advertising):
Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):
https://mostlysignssomeportents.tumblr.com/tagged/pluralistic
"When life gives you SARS, you make sarsaparilla" -Joey "Accordion Guy" DeVilla
Empowering Future Game Developers: Celebrating Our Partnership with the Girls Make Games Scholarship Fund [Humble Bundle Blog]
Today, on International Day of the Girl this October, we are proud to highlight our partnership with the Girls Make Games Scholarship Fund (GMGSF). Founded in 2014 as a corporate initiative by LearnDistrict, Girls Make Games has been dedicated to empowering young women and nonbinary individuals in the gaming industry through workshops, summer camps, and educational resources. Recognizing the ongoing challenges faced by its alumni …
The post Empowering Future Game Developers: Celebrating Our Partnership with the Girls Make Games Scholarship Fund appeared first on Humble Bundle Blog.
Seattle's Only News Quiz [The Stranger]
Seattle's Only News Quiz by Sally Neumann & Leah Caglio
The Best Bang for Your Buck Events in Seattle This Weekend: Oct 11–13, 2024 [The Stranger]
Fresh Hop Fest, Howl-O-Ween Dog Parade, and More Cheap & Easy Events Under $15 by EverOut Staff
The weekend awaits, as do fun ways to spend it, from Howl-O-Ween Dog Parade to Outsider Comics' Goblin Art Market and from the Beer Junction's Fresh Hop Fest to Twilight Soundtrack Halloween. For more ideas, check out our roundup of this week's top events and get some inspo for your next movie night by reading through our recs for Scarecrow Video's 2024 Psychotronic Challenge.
FRIDAY
The Skylark Benefit Show: Rain City Rewind, Pirate Radio, and The
Justin DePoala Band
In case you didn't hear, the beloved West Seattle club the Skylark
is being forced to
relocate due to the expansion of the Sound Transit light rail.
To raise funds for the upcoming move, local bands including grunge
tribute Rain City Rewind, Pirate Radio, and the Justin Depaola Band
will rock the house with a donation-based concert. AUDREY
VANN
(Skylark Cafe & Club, West Seattle, Suggested Donation
$10)
Should I Use My State’s Digital Driver’s License? [Deeplinks]
A mobile driver’s license (often called an mDL) is a version of your ID that you keep on your phone instead of in your pocket. In theory, it would work wherever your regular ID works—TSA, liquor stores, to pick up a prescription, or to get into a bar. This sounds simple enough, and might even be appealing—especially if you’ve ever forgotten or lost your wallet. But there are a few questions you should ask yourself before tossing your wallet into the sea and wandering the earth with just your phone in hand.
In the United States, some proponents of digital IDs
promise a future where you can present your phone to a clerk or
bouncer and only reveal the information they need—your
age—without revealing anything else. They imagine everyone
whipping through TSA checkpoints with ease and enjoying simplified
applications for government benefits. They also see it as a way to
verify identity on the internet, a system that
likely censors everyone.
There are real privacy and security trade-offs with
digital IDs, and it’s not clear if the benefits are big
enough—or exist at all—to justify them.
But if you are curious about this technology, there are still a few things you should know and some questions to consider.
Can I even use a Digital ID anywhere?
The idea of being able to verify your age by just tapping your phone against an electronic reader—like you may already do to pay for items—may sound appealing. It might make checking out a little faster. Maybe you won’t have to worry about the bouncer at your favorite bar creepily wishing you “happy birthday,” or noting that they live in the same building as you.
Most of these use cases aren’t available yet in the United States. While there are efforts to enable private businesses to read mDLs, these credentials today are mainly being used at TSA checkpoints.
For example, in California, only a small
handful of convenience stores in Sacramento and
Los Angeles currently accept digital IDs for purchasing
age-restricted items like alcohol and tobacco. TSA
lists airports that support mobile
driver’s licenses, but it only works for TSA PreCheck and
only for licenses issued in eleven states.
Also, “selective disclosure,” like revealing just your age and nothing else, isn’t always fully baked. When we looked at California’s mobile ID app, this feature wasn’t available in the mobile ID itself, but rather, it was part of the TruAge addon. Even if the promise of this technology is appealing to you, you might not really be able to use it.
Is there a law in my state about controlling how police officers handle digital IDs?
One of our biggest concerns with digital IDs is that people will unlock their phones and hand them over to police officers in order to show an ID. Ordinarily, police need a warrant to search the content of our phones, because they contain what the Supreme Court has properly called “the privacies of life.”
There are some potential technological protections. You
can technically get your digital ID read or scanned in the Wallet
app on your phone, without unlocking the device completely. Police
could also have a special reader like at some retail
stores.
But it’s all too easy to imagine a situation where police coerce or trick someone into unlocking their phone completely, or where a person does not even know that they just need to tap their phone instead of unlocking it. Even seasoned Wallet users screw up payment now and again, and doing so under pressure amplifies that risk. Handing your phone over to law enforcement, either to show a QR code or to hold it up to a reader, is also risky since a notification may pop up that the officer could interpret as probable cause for a search.
Currently, there are few guardrails for how law
enforcement interacts with mobile IDs. Illinois
recently passed a law that at least attempts
to address
mDL scenarios with law enforcement, but as
far as we know it’s the only state to do anything so
far.
At the very minimum, law enforcement should be prohibited from leveraging an mDL check to conduct a phone search.
Is it clear what sorts of tracking the state would use this for?
Smartphones have already made it significantly easier for governments and corporations to track everything we do and everywhere we go. Digital IDs are poised to add to that data collection, by increasing the frequency that our phones leave digital breadcrumbs behind us. There are technological safeguards that could reduce these risks, but they’re currently not required by law, and no technology fix is perfect enough to guarantee privacy.
For example, if you use a digital ID to prove your age to
buy a six-pack of beer, the card reader’s verifier might make
a record of the holder’s age status. Even if personal
information isn’t exchanged in the credential itself, you may
have provided payment info associated with this transaction. This
collusion of personal information might be then sold to data
brokers, seized by police or immigration officials, stolen by data
thieves, or misused by employees.
This is just one more reason why we need a federal data privacy law: currently, there aren’t sufficient rules around how your data gets used.
Do I travel between states often?
Not every state offers or accepts digital IDs, so if you travel often, you’ll have to carry a paper ID. If you’re hoping to just leave the house, hop on a plane, and rent a car in another state without needing a wallet, that’s likely still years away.
How do I feel about what this might be used for online?
Mobile driver’s licenses are a clear fit for online age verification schemes. The privacy harms of these sorts of mandates vastly outweigh any potential benefit. Just downloading and using a mobile driver’s license certainly doesn’t mean you agree with that plan, but it’s still good to be mindful of what the future might entail.
Am I being asked to download a special app, or use my phone’s built-in Wallet?
Both Google and Apple allow a few states to use their
Wallet apps directly, while other states use a separate app. For
Google and Apple’s implementations, we tend to have better
documentation and a more clear understanding of how data is
processed. For apps, we often know less.
In some cases, states will offer Apple and Google Wallet
support, while also providing their own app. Sometimes,
this leads to different experiences around
where a digital ID is accepted. For example, in Colorado, the Apple
and Google Wallet versions
will get you through TSA. The
Colorado
ID app cannot be used at TSA, but can be used
at some traffic
stops, and to access some services. Conversely,
California’s mobile ID
comes in an app, but
also supports Apple and Google Wallets. Both
California’s app and the Apple and Google Wallets are
accepted at TSA.
Apps can also come and go. For example, Florida removed its app from the Apple App Store and Google Play Store completely. All these implementations can make for a confusing experience, where you don’t know which app to use, or what features—if any—you might get.
For now, the success or failure of digital IDs will at least partially be based on whether people show interest in using them. States will likely continue to implement them, and while it might feel inevitable, it doesn’t have to be. There are countless reasons why a paper ID should continue to be accepted. Not everyone has the resources to own a smartphone, and not everyone who has a smartphone wants to put their ID on it. As states move forward with digital ID plans, privacy and security are paramount, and so is the right to a paper ID.
Slog AM: SPS Will Soon Announce Schools Slated for Closure, Budget Will Cut Tenant Services, Oregon Names Utility Company in Climate Change Suit [The Stranger]
The Stranger's morning news roundup. by Nathalie Graham
Schools still face closure: Since Seattle Public Schools' budget deficit isn't going anywhere thanks to a historic underfunding of our schools here in the Evergreen state, Superintendent Brent Jones will still need to close some elementary schools next school year. By the end of the month, he's going to announce the up to five schools that will close—which, while still bad, is a tad better than the between 17 and 21 school closures initially proposed. Jones will also release the rest of his financial plan so SPS can "regain its financial footing." More school closures could be on the horizon beyond just this year. It will be fun to go to school with the threat of closure hanging over head like a budgetary Sword of Damocles.
Deadly downtown crash: At around 1 am Friday morning, a black SUV barreling through Westlake ran a red light and smashed into a white sedan at 4th Avenue and Pine Street before striking a street pole. The driver and passenger in the SUV were killed. The sedan's driver and passenger survived unscathed.
Mystery bullet: A bullet went through a second-story window at Nova High School in the Central District on Thursday. It's unclear where the bullet came from or whether the second-story Nova window was its intended target. Please refrain from shooting in or at schools.
Seahawks keep sucking: Bad news, Seattle's football team doesn't seem to be faring very well. Despite starting the season on a winning streak, the Hawks are now on a big fat losing streak with their loss last night to the dreaded San Francisco 49ers.
A bit of borealis: Did you catch the Northern Lights last night? Or were you a loser like me and didn't see shit?
We've got some low clouds approaching the office so our views might be gone soon. But this flare up of the the #aurora was easily spotted without any optical assistance around 12:45 AM PST. #wawx pic.twitter.com/bfwClFilal
— NWS Seattle (@NWSSeattle) October 11, 2024
Another Bruce Harrell budget victim: Harrell and the Seattle City Council could slash funding for tenant services in half based on the proposed city budget. Those services fund tenant hotlines, counseling programs, and legal aid services. In case you needed another reminder, this is not a city government that cares about renters.
Oh, I bet he hates this: A judge has ruled that redacted evidence tied to a brief in Donald Trump's federal election interference case can be released. Trump and his team have seven days to try to block the disclosure. Trump has so far been doing an effective job of keeping his multitudinous federal indictments from progressing until after the November election. This disclosure could throw a wrench in that.
Foggy for now: A spooky little fall fog will cling to Seattle this morning. The rest of the day should be boring and cloudy.
We're seeing some dense fog on some of the higher hills around Puget Sound this morning. This will stick around through much of the morning. Take it easy out there and plan some extra time to get to your destination. #wawx pic.twitter.com/gm6RjPcuEX
— NWS Seattle (@NWSSeattle) October 11, 2024
A miner problem: An equipment malfunction at the historic Mollie Kathleen Gold Mine near Cripple Creek, Colorado killed one person and stranded 12 others 1,000 feet underground for hours. The mine, which regularly hosts tours, said the issue involved the elevator, which malfunctioned at the tour's midway point. It's unclear exactly how the elevator malfunctioned or how the one fatality occurred, though four people sustained minor injuries related to back and neck pain.
Icebox icon: Coast guards rescued a man clinging to an icebox 30 miles off the coast of Longboat Key, Florida. Hurricane Milton stranded his boat and he clung for his life on the icebox through the night in the middle of the ocean, withstanding winds of 75-90 mph and waves up to 25 feet. “This man survived in a nightmare scenario for even the most experienced mariner,” coast guard official Dana Grady told The Guardian. At least 13 people have died in incidents related to Hurricane Milton. Millions of people remain without power.
Do not go gentle into that good night: A crew with National Oceanic and Atmospheric Administration dropped the ashes of climate scientist Peter Dodge directly into Hurricane Milton. Dodge flew into the eyes of hundreds of hurricanes through his work.
Wildlife in decline: It's bleak out there for global wildlife populations. Recent reports say critters worldwide have declined in population by 73% on average in 50 years. Certain places in the world have much steeper wildlife declines. In Latin America and the Caribbean, for instance, there's been a 95% reduction. Humans, and our encroachment on the natural world, are to blame. The good news is that scientists are optimistic that nature can recover given the chance.
Get their asses, Multnomah County: Oregon officials in Multnomah County have filed a $50 billion lawsuit against fossil fuel companies for contributing to climate change. The suit includes the normal villains in the space, such as Shell and Exxon, but it was recently expanded to include NW Natural, the county's utility company. The complaint against NW Natural alleges that it "knew that the burning of natural gas contributed to global warming but misled its customers about the consequences."
Girl, so embarrassing: Elon Musk, the world's richest man, is simping hardcore for Donald Trump. Aside from relentless ad campaigns on Twitter for Trump and funding a Super PAC with tens of millions of dollars, Musk attended a Pennsylvania rally with Trump last week and has now moved his base of operations to the Keystone State to help win the election in the pivotal swing state. How badly do you want those Trump tax breaks, Elon? Embarrassing! I hate both of these guys.
Is this how you would wield power? Hackers tapped into and took control of dozens of robot vacuums in multiple US cities. They used the hacked robots to yell slurs.
A song for your Friday: The Airborne Toxic Event is playing at the Showbox this weekend, so here's their song about storms since those are pretty topical this week.
Reproducible Builds (diffoscope): diffoscope 280 released [Planet Debian]
The diffoscope maintainers are pleased to announce the release
of diffoscope version 280
. This version
includes the following changes:
[ Chris Lamb ]
* Drop Depends on deprecated python3-pkg-resources. (Closes: #1083362)
You find out more by visiting the project homepage.
The web lives in WordPress and Mastodon [Scripting News]
I have a morning ritual which begins with breakfast and iced coffee, and my laptop, on the kitchen table, to review the news, sports, whatever. Write a few tweets or share a few links. Usually with WNYC playing in the background until I find something I want to read carefully, then I shout at Alexa to go away. When done, I head upstairs where the work begins, often with a blog post, as I'm writing now, and sometimes with a bit of code, but that usually waits until my brain is warmed up.
But today I had a different assignment. Instead of tweeting, I wrote a few wordpress/mastodon posts, a new hybrid, a medium that I may well be the first person to explore, to do actual writing in.
I have a writing tool I call wordLand, it connects directly to WordPress, and from there, one of my sites is hooked up to Mastodon via ActivityPub. I choose to view it that way, to keep from going crazy. I know that it's hooked up to the "fediverse" -- meaning my writing can be viewed by any other app that supports the protocol Masotodon supports which is kind of ActivityPub+ -- where the + is the Mastodon API. Not sure what the ratios are, and I don't care. In this context I am a user, and happy to be that. The developers at Automattic are taking care of the technical details.
Here's the conclusion that appeared in one of the posts I wrote in my kitchen this morning -- "I am more excited about the web than I have been in a lonnnnng time." I am. I explained why in one of my posts, but it comes down to this. I have most of the features I asked for in textcasting (!) and I am typing in a respectable editing window, where I retain copies of my writing, and there's no freaking tiny little text box. And because I'm hooking in through a protocol (here's the punchline) this writing can go anywhere. Anywhere. Let me say that again. Any. Where.
Like I said the other day, I doubt if Automattic knows what they have. I seriously doubt it. But in a few years, we're going to look back on this as the moment when Twitter stopped controlling our writing, as they have since 2006.
No more character limits. Posts can have titles, or not. We can use links, as many as we like. Styling works. We can edit our posts. And the really big payoff, I can use a writing tool I love and you can use a tool you love and they work together perfectly well. And if one day you feel like using mine, and I feel like using yours, it just works. So in one step, we turn the clock back to 1994, when the web had all the features a writer could want.
Links to the stories I wrote earlier, on Mastodon:
WordPress versions are linked to from the Mastodon posts.
Enter this in the address box: @daveverse.wordpress.com to follow this blog in Mastodon.
Steve McIntyre: Rock 5 ITX [Planet Debian]
It's been a while since I've posted about arm64 hardware. The last machine I spent my own money on was a SolidRun Macchiatobin, about 7 years ago. It's a small (mini-ITX) board with a 4-core arm64 SoC (4 * Cortex-A72) on it, along with things like a DIMM socket for memory, lots of networking, 3 SATA disk interfaces.
The Macchiatobin was a nice machine compared to many earlier systems, but it took quite a bit of effort to get it working to my liking. I replaced the on-board U-Boot firmware binary with an EDK2 build, and that helped. After a few iterations we got a new build including graphical output on a PCIe graphics card. Now it worked much more like a "normal" x86 computer.
I still have that machine running at home, and it's been a reasonably reliable little build machine for arm development and testing. It's starting to show its age, though - the onboard USB ports no longer work, and so it's no longer useful for doing things like installation testing. :-/
So...
I was involved in a conversation in the #debian-arm IRC channel a few weeks ago, and diederik suggested the Radxa Rock 5 ITX. It's another mini-ITX board, this time using a Rockchip RK3588 CPU. Things have moved on - the CPU is now an 8-core big.LITTLE config: 4*Cortex A76 and 4*Cortex A55. The board has NVMe on-board, 4*SATA, built-in Mali graphics from the CPU, soldered-on memory. Just about everything you need on an SBC for a small low-power desktop, a NAS or whatever. And for about half the price I paid for the Macchiatobin. I hit "buy" on one of the listed websites. :-)
A few days ago, the new board landed. I picked the version with 24GB of RAM and bought the matching heatsink and fan. I set it up in an existing case borrowed from another old machine and tried the Radxa "Debian" build. All looked OK, but I clearly wasn't going to stay with that. Onwards to running a native Debian setup!
I installed an EDK2 build from https://github.com/edk2-porting/edk2-rk3588 onto the onboard SPI flash, then rebooted with a Debian 12.7 (Bookworm) arm64 installer image on a USB stick. How much trouble could this be?
I was shocked! It Just Worked (TM)
I'm running a standard Debian arm64 system. The graphical installer ran just fine. I installed onto the NVMe, adding an Xfce desktop for some simple tests. Everything Just Worked. After many years of fighting with a range of different arm machines (from simple SBCs to desktops and servers), this was without doubt the most straightforward setup I've ever done. Wow!
It's possible to go and spend a lot of money on an Ampere machine, and I've seen them work well too. But for a hobbyist user (or even a smaller business), the Rock 5 ITX is a lovely option. Total cost to me for the board with shipping fees, import duty, etc. was just over £240. That's great value, and I can wholeheartedly recommend this board!
The two things that are missing compared to the Macchiatobin? This is soldered-on memory (but hey, 24G is plenty for me!) It also doesn't have a PCIe slot, but it has sufficient onboard network, video and storage interfaces that I think it will cover most people's needs.
Where's the catch? It seems these are very popular right now, so it can be difficult to find these machines in stock online.
FTAOD, I should also point out: I bought this machine entirely with my own money, for my own use for development and testing. I've had no contact with the Radxa or Rockchip folks at all here, I'm just so happy with this machine that I've felt the need to shout about it! :-)
Here's some pictures...
[$] FFI type mismatches in Rust for Linux [LWN.net]
At Kangrejos, Gary Guo wanted to discuss three problems with the way Rust and C code in the kernel interact: mismatched types, too many type casts, and the overhead of helper functions. To fix the first two problems, Guo proposed changing the way the kernel maps C types into Rust types. The last problem was a bit trickier, but he has a clever workaround for that, based on tricking the compiler into inlining the helper functions across language boundaries.
Security updates for Friday [LWN.net]
Security updates have been issued by AlmaLinux (.NET 6.0, .NET 8.0, and openssl), Debian (firefox-esr), Fedora (firefox), Mageia (php, quictls, and vim), Red Hat (buildah, container-tools:rhel8, containernetworking-plugins, firefox, podman, skopeo, and tomcat), Slackware (mozilla), SUSE (apache-commons-io, kernel, and xen), and Ubuntu (golang-1.17, libgsf, and linux-aws-6.8, linux-oracle-6.8).
Error'd: You Don't Need A Weatherman [The Daily WTF]
...to know which way the wind blows. This week, it's been an ill one. Two of our readers sent us references to the BBC's reports on unusual weather in Bristol - one from the web, and one mobile. Maybe that will help you deduce the source of this error.
Frist, Graham F. shared a screenshot of the beeb's mobile app, bellowing "I know Milton is hitting the US hard right now but that's nothing compared to the 14,000 mph winds here!"
Snecod, Jeremy P. confirms the story and provides some details from the web page. "BBC weather is clipping windspeed making it look like it's only 5909mph and not 15909mph... At least they realise something is wrong."
Some anonymous American shared a snap of their weather station, which was worth a little chuckle. "Whether you like it or not, it's the weather, sort of. And, no, this wasn't during the recent eclipse." It would have been worse if the crescent had been a "sunny and clear" icon, though, given the time of day that the snap was taken. All in all, I have to call this "not an error'd".
We had to dig into the surplus bin to pad out the theme with this pair from Stuart H. He opens with "I can only assume that the forecast is for Hell or a point between the surface and the center of the Sun! I think I need to turn the aircon up a few notches."
"And following on from the forecast on the front-page - it's even worse for the rest of the world!"
Finally Eric K. reported a temperature extreme "Hellfire or extinguished sun? My weather app seems unsure of which type of apocalyptic weather conditions we're currently experiencing." But I also note this represents an unusually high level of humidity. I haven't checked but maybe one of our readers will look up these coordinates and let us know which burg has been obliterated.
To the Person Actively Trying to Get Into My WordPress Account [Whatever]
Quit it. It’s annoying.
— JS
IronNet Has Shut Down [Schneier on Security]
After retiring in 2014 from an uncharacteristically long tenure running the NSA (and US CyberCommand), Keith Alexander founded a cybersecurity company called IronNet. At the time, he claimed that it was based on IP he developed on his own time while still in the military. That always troubled me. Whatever ideas he had, they were developed on public time using public resources: he shouldn’t have been able to leave military service with them in his back pocket.
In any case, it was never clear what those ideas were. IronNet never seemed to have any special technology going for it. Near as I could tell, its success was entirely based on Alexander’s name.
Turns out there was nothing there. After some crazy VC investments and an IPO with a $3 billion “unicorn” valuation, the company has shut its doors. It went bankrupt a year ago—ceasing operations and firing everybody—and reemerged as a private company. It now seems to be gone for good, not having found anyone willing to buy it.
And—wow—the recriminations are just starting.
Last September the never-profitable company announced it was shutting down and firing its employees after running out of money, providing yet another example of a tech firm that faltered after failing to deliver on overhyped promises.
The firm’s crash has left behind a trail of bitter investors and former employees who remain angry at the company and believe it misled them about its financial health.
IronNet’s rise and fall also raises questions about the judgment of its well-credentialed leaders, a who’s who of the national security establishment. National security experts, former employees and analysts told The Associated Press that the firm collapsed, in part, because it engaged in questionable business practices, produced subpar products and services, and entered into associations that could have left the firm vulnerable to meddling by the Kremlin.
“I’m honestly ashamed that I was ever an executive at that company,” said Mark Berly, a former IronNet vice president. He said the company’s top leaders cultivated a culture of deceit “just like Theranos,” the once highly touted blood-testing firm that became a symbol of corporate fraud.
There has been one lawsuit. Presumably there will be more. I’m sure Alexander got plenty rich off his NSA career.
The cheap chocolate system [Seth's Blog]
The first step in building a successful and elegant strategy is to see the systems that are part of our lives.
October is a fine month to take a moment to look closely at one: the system that brings us cheap chocolate.
Like most systems, it’s largely invisible. The people in it don’t mean to do harm, they’re simply making choices that feel like their best option. And most of all, the system works to defend itself, to create culture that defends the status quo.
The giant chocolate companies want cocoa beans to be a commodity. They don’t want to worry about origin or yield–they simply want to buy indistinguishable cheap cacao. In fact, the buyers at these companies feel like they have no choice but to push for mediocre beans at cut rate prices, regardless of the human cost.
As a result, trees are bred not for flavor or resilience, but for yield. Farming methods ignore regeneration and are maximized for short-term output. And most tragically, labor (especially children) is exploited and suffers. The farmer, feeling powerless, feels as though they have no choice but to make what the buyer wants.
The cheap beans are made into reliable, cheap chocolate. Chocolate that doesn’t melt in the store, or in your hands. Chocolate that’s sweet, not delicious. But cheap. The merchant stocking the shelves feels as though they have little choice–they buy the usual kind, the one that’s well promoted and inexpensive.
And this convenient, prevalent chocolate becomes the normal kind. The regular kind. The kind kids get on Halloween, in bulk.
It’s easier, sometimes, to just go with the system.
We’re not stuck in traffic, we are traffic. If we see a system, we can work to change it. Our strategy can use elements of the system to alter it.
The chocolate we buy at the supermarket furthers the goals of the system, and directly harms the lives of the impoverished farmers who grow the cacao.
My friend Shawn Askinosie has written about this eloquently, and I’m thrilled to be working with him and his daughter to create a collectible chocolate bar. You can find the details here.
Or consider the chocolate from French Broad. They were hit hard by the hurricane in North Carolina, but their warehouse survived. A few bars purchased from them make an impact.
The folks at Original Beans offer a Porcelana bar that is, honestly, too good to share with your friends, and certainly over the top for a trick or treater.
There’s an adorable store in New York that can ship you ethical and delicious bars from all over the world… proof that the system can change.
The team at Tony’s have figured out how to make an honest, fair trade bar that’s also in your local market at a good price.
And consider Chocolate Rebellion, a group of Caribbean and African producers coordinated by Gillian Goddard of Sun Eater.
The system responds.
Don’t buy cheap chocolate. We can see the system if we look for it.
PS I’m going live with Lawren and Shawn at 10:15 ET this morning. We’ll be taking your questions about chocolate and about systems, and the recording will be archived. Here’s the link.
Secrets, p6 [Ctrl+Alt+Del Comic]
Our Kickstarter for the Volume 2 set is trucking along; we’ve passed another stretch goal adding 4 extra pages to the Analog and D-Pad book which will include a look at Omnitropolis, the role of super heroes in the city and some of the rules and hierarchy involved! You’d think I’d have my hands full […]
The post Secrets, p6 appeared first on Ctrl+Alt+Del Comic.
Obliviator, Part Two [Penny Arcade]
New Comic: Obliviator, Part Two
Final Destination – DORK TOWER 11.10.24 [Dork Tower]
This or any DORK TOWER strip is now available as a signed, high-quality print, from just $25! CLICK HERE to find out more!
HEY! Want to help keep DORK TOWER going – join the DORK TOWER Patreon and ENLIST IN THE ARMY OF DORKNESS TODAY! (We have COOKIES!) (And SWAG!) (And GRATITUDE!)
Podcast Episode Rerelease: So You Think You’re A Critical Thinker [Deeplinks]
This episode was first released in March 2023.
With this year’s election just weeks away, concerns
about disinformation and conspiracy theories are on the
rise.
We covered this issue in a really enlightening talk in
March 2023 with Alice
Marwick, the director of research at Data &
Society, and previously the cofounder and principal researcher at
the Center for Information, Technology and Public Life at the
University of North Carolina, Chapel Hill.
We talked with Alice about why seemingly ludicrous
conspiracy theories get so many followers, and when fact-checking
does and doesn’t work. And we came away with some ideas for
how to identify and leverage people’s
commonalities to stem disinformation, while making sure that the
most marginalized and vulnerable internet users are still empowered
to speak out.
We thought this is a good time to re-publish that episode,
in hopes that it might help you make some sense of what you might
see and hear in the next few months.
If you believe conversations like this are important, we
hope you’ll consider voting for How to Fix the Internet in
the “General - Technology” category of the Signal
Awards’ 3rd Annual Listener's Choice competition.
Deadline for voting is Thursday, Oct. 17.
This episode was first published on March 21,
2023.
The promise of the internet was that it would be a tool to
melt barriers and aid truth-seekers everywhere. But it feels like
polarization has worsened in recent years, and more internet users
are being misled into embracing conspiracies and cults.
You can also find this episode on the Internet Archive and on YouTube.
From QAnon to anti-vax screeds to talk of an Illuminati bunker beneath Denver International Airport, Alice Marwick has heard it all. She has spent years researching some dark corners of the online experience: the spread of conspiracy theories and disinformation. She says many people see conspiracy theories as participatory ways to be active in political and social systems from which they feel left out, building upon beliefs they already harbor to weave intricate and entirely false narratives.
Marwick speaks with EFF’s Cindy Cohn and Jason Kelley about finding ways to identify and leverage people’s commonalities to stem this flood of disinformation while ensuring that the most marginalized and vulnerable internet users are still empowered to speak out.
In this episode you’ll learn about:
Alice Marwick is director of research at Data & Society; previously, she was an Associate Professor in the Department of Communication and cofounder and Principal Researcher at the Center for Information, Technology and Public Life at the University of North Carolina, Chapel Hill. She researches the social, political, and cultural implications of popular social media technologies. In 2017, she co-authored Media Manipulation and Disinformation Online (Data & Society), a flagship report examining far-right online subcultures’ use of social media to spread disinformation, for which she was named one of Foreign Policy magazine’s 2017 Global Thinkers. She is the author of Status Update: Celebrity, Publicity and Branding in the Social Media Age (Yale 2013), an ethnographic study of the San Francisco tech scene which examines how people seek social status through online visibility, and co-editor of The Sage Handbook of Social Media (Sage 2017). Her forthcoming book, The Private is Political (Yale 2023), examines how the networked nature of online privacy disproportionately impacts marginalized individuals in terms of gender, race, and socio-economic status. She earned a political science and women's studies bachelor's degree from Wellesley College, a Master of Arts in communication from the University of Washington, and a PhD in media, culture and communication from New York University.
ALICE MARWICK
I show people these TikTok
videos that are about these kind of outrageous conspiracy theories,
like that the Large Hadron Collider at CERN is creating a
multiverse. Or that there's, you know, this pyramid of tunnels
under the Denver airport where they're trafficking children and
people kinda laugh at them.
They're like, this is silly. And then I'm like, this has 3 million views. You know, this has more views than probably most of the major news stories that came out this week. It definitely has more views than any scientific paper or academic journal article I'll ever write, right? Like, this stuff has big reach, so it's important to understand it, even if it seems kind of frivolous or silly, or, you know, self-evident.
It's almost never self-evident. There's always some other reason behind it, because people don't do things arbitrarily. They do things that help them make sense of their lives. They give their lives meaning these are practices that people engage in because it means something to them. And so I feel like my job as a researcher is to figure out, what does this mean? Why are people doing this?
CINDY COHN
That’s Alice Marwick. The
research she’s talking about is something that worries us
about the online experience – the spread of conspiracy
theories and misinformation. The promise of the internet was that
it would be a tool that would melt barriers and aid truth-seekers
everywhere. But sometimes it feels like polarization has worsened,
and Internet users are misled into conspiracies and cults. Alice is
trying to figure out why, how – and more importantly, how to
fix it.
I’m Cindy Cohn, the Executive Director of the Electronic Frontier Foundation.
This is our podcast series: How to Fix the Internet.
This is a topic that many of us have a personal connection to – so we started off our conversation with Alice by asking what drew her into this area of research.
ALICE MARWICK
So like many other
people I got interested in missing disinformation in the run up to
the 2016 election. I was really interested in how ideas that had
formerly been like a little bit subcultural and niche in far right
circles were getting pushed into the mainstream and circulating
really wildly and widely.
And in doing that research, it sort of helped me understand disinformation as a frame for understanding the way that information ties into marginalization, I think more broadly and disinformation is often a mechanism by which people who are marginalized the stories that the dominant culture tells about those marginalized people, the way that it circulates.
JASON KELLEY
I think it's been a
primary focus for a lot of people in a lot of ways over the last
few years. I know I have spent a lot of time on alternative social
media platforms over the last few years because I find the topics
kind of interesting to figure out what's happening there. And also
because I have a friend who has kind of entered that space and, uh,
I like to learn, you know, where the information that he's sharing
with me comes from, essentially, right. But one thing that I've
been thinking about with him and and with other folks is, is there
something that happened to him that made him kind of easily
radicalized, if you will? And I, I don't think that's a term that,
that you recommend using, but I think a lot of people just assume
that that's something that happens.
That there are people who, um, you know, grew up watching the X-files or something and ended up more able to fall into these misinformation and disinformation traps. And I'm wondering if that's, if that's actually true. It seems like from your research, it's not.
ALICE MARWICK
It's not, and that's
because there's a lot of different things that bring people to
disinformation, because disinformation is really deeply tied to
identity in a lot of ways. There's lots of studies showing that
more or less, every American believes in at least one conspiracy
theory, but the conspiracy theory that you believe in is really
based on who you are.
So in some cases it is about identity, but I think the biggest misconception about [00:04:00] disinformation is that the people who believe it are just completely gullible and that they don't have any critical thinking skills and that they go on YouTube and they watch a video or they listen to a podcast and all of a sudden their entire mindset shifts.
CINDY COHN
So why is
radicalization not the right term? How do you think about this term
and why you've rejected it?
ALICE MARWICK
The whole idea of
radicalization is tied up in this countering violent extremism
movement that is multinational, that is tied to this huge
surveillance apparatus, to militarization, to, in many ways, like a
very Islamophobic idea of the world. People have been researching
why individuals commit political violence for 50 years and they
haven't found any individual characteristics that make someone more
susceptible to doing something violent, like committing a mass
shooting or participating in the January 6th insurrection, for
example. What instead that we see is that there's a lot of
different puzzle pieces that can contribute to whether somebody
takes on a set, an ideology, and whether they commit acts of
violence and service of that ideology.
And I think the thing that's frustrating to researchers is sometimes the same thing can have two completely different effects in people. So there's this great study of women in South America who were involved in guerilla warfare, and some of those women, when they had kids, they were like, oh, I'm not gonna do this anymore.
It's too dangerous. You know, I wanna focus on my family. But then there was another set of women that when they had kids, they felt they had more to lose and they had to really contribute to this effort because it was really important to the freedom of them and their children.
So when you think about radicalization, there's this real desire to have this very simplistic pathway that everybody kind of just walks along and they end up a terrorist. But that's just not the way the world works.
The second reason I don't like radicalization is because white supremacy is baked into the United States from its inception. And white supremacist ideas and racist ideas are pretty foundational. And they're in all kinds of day-to-day language and media and thinking. And so why would we think it's radical to be, for example, anti-black or anti-trans when anti-blackness and anti-transness have like these really long histories?
CINDY COHN
Yeah, I think
that's right. And there is a way in which radicalization makes it
sound as if, um, that's something other than our normal society.
Iin many instances, that's not actually what's going on.
There's pieces of our society, the water we swim in every day that are getting, um, that are playing a big role in some of this stuff that ends up in a very violent place. And so by calling it radicalization, we're kind of creating an other that we're not a part of that I think will mean that we might miss some of the, some of the pieces of this.
ALICE MARWICK
Yeah, and I think
that when we think about disinformation, the difference between a
successful and an unsuccessful disinformation campaign is often
whether or not the ideas exist in the culture already. One of the
reasons QAnon, I think, has been so successful is that it picks up
a lot of other pre circulating conspiracy theories.
It mixes them with anti-Semitism, it mixes them with homophobia and transphobia, and it kind of creates this hideous concoction, this like potion that people drink that reinforces a lot of their preexisting beliefs. It's not something that comes out of nowhere. It's something that's been successful precisely because it reinforces ideas that people already had.
CINDY COHN
I think the other thing that I
saw in your research that might have been surprising or at least
was a little surprising to me, is how participatory Q-Anon
is.
You took a look at some of the Q-Anon. Conversations, you could see people pulling in pieces of knowledge from other things, you know, flight patterns and, and unexplained deaths and other things. It's something that they're co-creating, um, which I found fascinating.
ALIVE MARWICK
It's really similar
to the dynamics of fandom in a lot of ways. You know, any of us who
have ever participated in, like, a Usenet group or a subreddit
about a particular TV show, know that people love putting theories
together. They love working together to try to figure out what's
going on. And obviously we see those same dynamics at play in a lot
of different parts of internet culture.
So it's about taking the participatory dynamics of the internet and sort of mixing them with what we're calling conspiratorial literacy, which is sort of the ability to assemble these narratives from all these disparate places to kind of pull together, you know, photos and Wikipedia entries and definitions and flight paths and you know, news stories into these sort of n narratives that are really hard to make coherent sometimes, ‘cause they get really complicated.
But it's also about a form of political participation. I think there's a lot of people in communities where disinformation is rampant, where they feel like talking to people about Q-Anon or anti-vaxing or white supremacy is a way that they can have some kind of political efficacy. It's a way for them to participate, and sometimes I think people feel really disenfranchised in a lot of ways.
JASON KELLEY
I wonder because you
mentioned internet culture, if some of this is actually new, right?
I mean, we had satanic panics before and something I hear a lot of
in various places is that things used to be so much simpler when we
had four television channels and a few news anchors and all of them
said the same thing, and you couldn't, supposedly, you couldn't
find your way out into those other spaces. And I think you call
this the myth of the epistemically consistent past. Um, and is that
real? Was that a real time that actually existed?
ALICE MARWICK
I mean, let's think
about who that works for, right? If you're thinking about like
1970, let's say, and you're talking about a couple of major TV
networks, no internet, you know, your main interpersonal
communication is the telephone. Basically, what the mainstream
media is putting forth is the narrative that people are
getting.
And there's a very long history of critique of the mainstream media, of putting forth a narrative that's very state sponsored, that's very pro-capitalist, that writes out the histories of lots and lots of different types of people. And I think one of the best examples of this is thinking about the White Press and the Black Press.
And the Black Press existed because the White Press didn't cover stories that were of interest to the black community, or they strategically ignored those stories. Like the Tulsa Race massacre, for example, like that was completely erased from history because the white newspapers were not covering it.
So when we think about an. Epistemically consistent past, we're thinking about the people who that narrative worked for.
CINDY COHN
I really appreciate
this point. To me, what was exciting about the internet and, you
know, I'm a little older. I was alive during the seventies, um, and
watched Walter Cronkite and, you know, this idea that, you know,
old white guys in New York get, decide what the rest of us see,
which is, that's who ran the networks, right.
That, that, you know, and maybe we had a little pbs, so we got a little Sesame Street too.
But the promise of the Internet was that we could hear from more and more diverse voices, and reduce the power of those gatekeepers. What is scary is that some people are now pretty much saying that the answers to the problems of today’s Internet is to find four old white guys and let them decide what all the rest of us see again.
ALICE MARWICK
I think it's really
easy to blame the internet for the ills of society, and I, I guess
I'm a digital critic, but I'm ultimately, I love the internet, like
I love social media. I love the internet. I love online community.
I love the possibilities that the internet has opened up for
people. And when I look at the main amplifiers of disinformation,
it's often politicians and political elites whose platforms are
basically independent of the internet.
Like people are gonna cover, you know, leading politicians regardless of what media they're covering them with. And when you look at something like the lies around the Dominion voting machines, like, yes, those lies start in these really fringy internet communities, but they're picked up and amplified incredibly quickly by mainstream politicians.
And then they're covered by mainstream news. So who's at fault there? I think that blaming the internet really ignores the fact that there's a lot of other players here, including the government, you know, politicians, these big mainstream media sources. And it's really convenient to blame all social media or just the entire internet for some of these ills, but I don't think it's accurate.
CINDY COHN
Well, one of the things
that I saw in your research and, and our friend, Yochai Benkler has
done in a lot of things is the role of amplifiers, right? That
these, these these places where people, you know, agree about
things that aren't true and, and converse about things that aren't
true. They predate the internet, maybe the internet gave a little
juice to them, but what really gives juice to them is these
amplifiers who, as I think you, you rightly point out, are some of
the same people who were the mainstream media controllers in that
hazy past of yore, um, I think that if this stuff never makes it to
more popular amplifiers. I don't think it becomes the kind of thing
that we worry about nearly so much.
ALICE MARWICK
Yeah, I mean, when I
was looking at white supremacist disinformation in 2017,
someone I spoke with pointed out that the mainstream media is the
best recruitment tool for white supremacists because historically
it's been really hard for white supremacists to recruit. And I'm
not talking about like historically, like in the thirties and
forties, I'm talking about like in the eighties and nineties when
they had sort of lost a lot of their mainstream political
power.
It was very difficult to find like-minded people, especially if people were living in places that were a little bit more progressive or were multiracial. Most people, in reading a debunking story in the Times or the Post or whatever, about white supremacist ideas are going to disagree with those ideas.
But even if one in a thousand believes them and is like, oh wow, this is a person who's spreading white supremacist ideas, I can go to them and learn more about it. That is a far more powerful platform than anything that these fringe groups had. in the past, and one of the things that we've noticed in our research is that often conspiracy theories go mainstream precisely because they're being debunked by the mainstream media
CINDY COHN
Wow. So there's two
kinds of amplifiers. There's the amplifiers who are trying to
debunk things and accidentally perhaps amplify. But there are,
there are people who are intentional amplifiers as well, and that
both of them have the same effect, or at least both of them can
spread the misinformation.
ALICE MARWICK
Yeah. I mean, of
course, debunking has great intentions, right? We don't want
horrific misinformation and disinformation to go and spread
unchecked. But one of the things that we noticed when we were
looking at news coverage of disinformation was that a lot of the
times the debunking aspect was not as strong as we would've
expected.
You know, you would expect a news story saying, this is not true, this is false, the presumptions are false. But instead, you'd often get these stories where they kind of repeated the narrative and then at the end there was, you know, this is incorrect. And the false narrative is often much more interesting and exciting than whatever the banal truth is.
So I think a lot of this has to do with the business model of journalism, right? There's a real need to comment on everything that comes across Twitter, just so that you can get some of the clicks for it. And that's been really detrimental, I think, to. journalists who have the time and the space to really research things and craft their pieces.
You know, it's an underpaid occupation. They're under a huge amount of economic and time pressure to like get stories out. A lot of them are working for these kind of like clickbaity farms that just churn out news stories on any hot topic of the day. And I think that is just as damaging and dangerous as some of these social media platforms.
JASON KELLEY
So when it comes to
debunking, there's a sort of parallel, which is fact checking. And,
you know, I have tried to fact check people, myself, um,
individually. It doesn't seem to work. Does it work when it's, uh,
kind of built into the platform as we've seen in different, um, in
different spaces like Facebook or Twitter with community notes
they're testing out now?
Or does that also kind of amplify it in some way because it just serves to upset, let's say, the people who have already decided to latch onto the thing that is supposedly being fact checked.
ALICE MARWICK
I think fact
checking does work in some instances. If it's about things that
people don't already have, like a deep emotional attachment to. I
think sometimes also if it's coming from someone they trust, you
know, like a relative or a close friend, I think there are
instances in which it doesn't get emotional and people are like,
oh, I was wrong about that, that's great. And then they move
on.
When it's something like Facebook where, you know, there's literally like a little popup saying, you know, this is untrue. Oftentimes what that does is it just reinforces this narrative that the social platforms are covering things up and that they're biased against certain groups of people because they're like, oh, Facebook only allows for one point of view.
You know, they censor everybody who doesn't believe X, Y, or Z. And the thing is that I think both liberals and conservatives believe that, obviously the narrative that social platforms censor conservatives is much stronger. But if you look at the empirical evidence, conservative stories perform much better on social media, specifically Facebook and Twitter, than do liberal stories.
So it, it's kind of like, it makes nobody happy. I don't think we should be amplifying, especially extremist views or views that are really dangerous. And I think that what you wanna do is get rid of the lowest hanging fruit. Like you don't wanna convert new people to these ideas like you, there might be some people who are already so enmeshed in some of these communities that it's gonna be hard for them to find their way out. But let's try to minimize the number of people who are exposed to it.
JASON KELLEY
That's interesting.
It sounds like there are some models of fact checking that can
help, but it really more applies to the type of information that's
being, uh, fact checked than, than the specific way that the
platform kind of sets it up. Is that what I'm hearing? Is that
right?
ALICE MARWICK
Yeah, I mean, the
problem is with a lot of, a lot of people online, I bet if you ask
99 people, if they consider themselves to be critical thinkers, 95
would say, yes, I'm a critical thinker. I'm a free
thinker.
JASON KELLEY
A low estimate, I'm
pretty sure.
ALICE MARWICK
A low estimate. So
let's say you ask a hundred people in 99 say they're critical
thinkers. Um, you know, I, I interview a lot of people about who
have sort of what we might call unusual beliefs, and they all claim
that they do fact checking and that they, when they hear something,
they want to see if it's true.
And so they go and read other perspectives on it. And obviously, you know, they're gonna tell the researcher what they think I wanna hear. They're not gonna be like, oh, I saw this thing on Facebook and then I, like, spread it to 2000 people. And then it, you know, it turned out it was false. Um, but especially in the communities like Q-Anon, or anti-vaxxers, they already think of themselves as like researchers.
A lot of people who are into conspiracy theories think of themselves as researchers. That's one of their identities. And they spend quite a bit of time going down rabbit holes on the internet, looking things up and reading about it. And it's almost like a funhouse mirror held up to academic research because it is about the pleasure of learning, I think, and the joy of sort of educating yourself and these sort of like autodidactic processes where people can kind of learn just for the fun of learning. Um, but then they're doing it in a way that's somewhat divorced from what I would call sort of empirical standards of data collection or, you know, data assessment.
CINDY COHN
So, let's flip it
around for a second. What does it look like if we are doing this
right? What are the things that we would see in our society and in
our conversations that would indicate that we're, we're kind of on
the right path, or that we're, we're addressing this?
ALICE MARWICK
Well, I mean, the
problem is this is a big problem. So it requires a lot of
solutions. A lot of different things need to be worked on. You
know, the number one thing I think would be toning down, you know,
violent political rhetoric in
general.
Now how you do that, I'm not sure. I think it comes from, you know, there's this kind of window of discourse that's open that I think needs to be shut, where maybe we need to get back to slightly more civil levels of discourse. That's a really hard problem to solve. In terms of the internet, I think right now there's been a lot of focus on the biggest social media sites, and I think that what's happening is you have a lot of smaller social sites and it's much more difficult to play whack-a-Mole with a hundred different platforms than it is with three.
CINDY COHN
Given that we think
that a pluralistic society is a good thing and we shouldn't all be
having exactly the same beliefs all the time. How do we nurture
that diversity without, you know, without the kind of violent
edges? Or is it inevitable? Is there a way that we can nurture a
pluralistic society that doesn't get to this us versus them, what
team are you on kind of approach that I think underlies some of the
spilling into violence that we've seen?
ALICE MARWICK
This is gonna sound
naive, but I do think that there's a lot more commonalities between
people than there are differences. So I interviewed a woman who's a
conservative evangelical anti-vaxxer last week, and you. She and I
don't have a lot in common in any way, but we had, like, a very
nice conversation and one of the things that she told me is be she
has this one particular interest that's brought her into
conversation with a lot of really liberal people.
And so because she's interacted with a lot of them, she knows that they're not like demonic or evil. She knows they're just people and they have really different, they have really different opinions on a lot of really serious issues, but they're still able to sort of chat [00:32:00] about the things that they do care about.
And I think that if we can trace those lines of inclusion and connectivity between people, I think that's much, that's a much more positive, I think, area for growth than it is just constantly focusing on the differences. And that's easy for me to say as a white woman, right? Like it's much harder to deal with these differences if the difference in question is that the person thinks you're, you know, genetically inferior or that you shouldn't exist.
Those are things that are not easy. You can't just kumbaya your way out of those kinds of things. And in that case, I think we need to center the concerns of the most vulnerable and of the most marginalized, and make sure they're the ones whose voices are getting heard and their concerns are being amplified, which is not always the case, unfortunately.
JASON KELLEY
So let's say that we
got to that point and um, you know, the internet space that you're
on isn't as polarized, but it's pluralistic. Can you describe a
little bit about what that feels like in your mind?
ALICE MARWICK
I think one thing to
remember is that most people don't really care about politics. You
know, a lot of us are kind of Twitter obsessed and we follow the
news and we see our news alerts come up on our phone and we're
like, Ooh, what just happened? Most people don't really care about
that stuff. If you look at a site like Reddit, which gets a bad
rap, but I think Reddit is just like a wonderful site for a lot of
reasons.
It's mostly focused around interest-based communities, and the vast, vast majority of them are not about politics. They're about all kinds of other things. You know very mundane stuff. Like you have a dog or a cat, or you like the White Lotus and you wanna talk about the finale. Or you, you know, you live in a community and you want to talk about the fact that they're building a new McDonald's on like Route Six or whatever.
Yes, in those spaces you'll see people get into spats and you'll see people get into arguments and in those cases, there's usually some community moderation, but generally I think a lot of those communities are really healthy and positive. The moderators put forth like these are the norms.
And I think it's funny, I think some people would say Reddit uplifting, but I think you see the same thing in some Facebook groups as well, um, where you have people who really love, like quilting or I'm in dozens and dozens of Facebook groups on all kinds of weird things.
Like, “I found this weird thing at a thrift store,” or “I found this painting, you know, what can you tell me about it?” And I get such a kick out of seeing people from all these walks of life come together and talk about these various interests. And I do think that. You know, that's the utopian ideal of the internet that I think got us all so into it in the eighties and nineties.
This idea that you can come together with people and talk about things that you care about, even if you don't have anyone in your local immediate community who cares about those same things, and we've seen over and over that, that can be really empowering for people. You know, if you're an LGBTQ person in an area where there aren't that many other LGBTQ people, or if you're a black woman and you're the only black woman at your company, you know, you can get resources and support for that.
If you have an illness that isn't very well understood, you know, you can do community education on that. So, You know, these pockets of the internet, they exist and they're pretty big. And when we just constantly focus on this small minority of people who are on Twitter, you know, yelling at each other about stuff, I think it really overlooks the fact that so much of the internet is already this place of like enjoyment and, you know, hope.
CINDY COHN
Oh, I, that is so right
and so good to be reminded of, um, that, that, that it's not that
we have to fix the internet, it's that we have to grow the part of
the internet that never got broken. Right. That is
fixed.
JASON KELLEY
Let’s take a quick
moment to say thank you to our sponsor.
“How to Fix the Internet” is supported by The Alfred P. Sloan Foundation’s Program in Public Understanding of Science and Technology. Enriching people’s lives through a keener appreciation of our increasingly technological world and portraying the complex humanity of scientists, engineers, and mathematicians.
CINDY COHN
Now back to
our conversation with Alice Marwick. In addition to all of her
fascinating research on disinformation that we’ve been
talking about so far, Alice has also been doing some work on
another subject very near and dear to our hearts here at EFF
– privacy.
Alice has a new book coming out in May 2023 called The Private is Political – so of course we couldn’t let her go without talking about that.
ALICE MARWICK
I wanted to look at how you
can't individually control privacy anymore because all of our
privacy is networked because of social media and big data. We share
information about each other, information about us as collected by
all kinds of entities.
You know, you can configure your privacy settings till the cows come home, but it's not gonna change whether your photo gets swept up in, you know, some AI that then uses it for other kinds of purposes. And the second thing is to think about privacy as a political issue that has big impacts on everyone's lives, especially people who are marginalized in other areas.
I interviewed, oh, people from all kinds of places and spaces with all sorts of identities, and there's this really big misconception that people don't care about privacy. But people care very deeply about privacy and the way that they. Show that care manifest in like so many different kinds of creative ways.
And so I'm hoping, I'm looking forward to sharing the stories of the people I spoke with.
CINDY COHN
That's great. Can you
tell us one or I, I don't wanna spoil it, but -
ALICE MARWICK
Yeah, no. So I spoke
with Jazz in North Carolina. These are all pseudonyms. And Jazz is
an atheist, gender queer person, and they come from a pretty
conservative Southern Baptist family and they're also homeless.
They have a child who lives with their sister and they get a little
bit of help from their family, like, not a lot, but enough that it
can make the difference between whether they get by or
not.
So what they did is they created two completely different sets of internet accounts. They have two Facebooks, two Twitters, two email addresses. Everything is different and it's completely firewalled. So on one, they use their preferred name and their pronouns. On the other, they use the pronouns they were assigned at birth and the name that their oarents gave them. And so the contrast between the two was just extreme. And so Jazz said that they feel like their real, their Facebook page that really reflects them, that's their “me” page. That's where they can be who they really are because they have to kind of cover up who they are in so many other areas of their lives.
So they get this sort of big kick out of having this space on the internet where they can be like fiery and they can talk about politics and gender and things that they care about, but they have a lot to lose if the, if that, you know, seeps into their other life. So they have to be really cognizant of things like who does Facebook recommend that you friend, you know, who might see my other email address, who might do a Google search for my name?
And so I call this privacy work. It's the work that all of us do to maintain our privacy and we all do it. Um, and, but it's just much more intense for some kinds of people. Um, and so I see in jazz, you know, a lot of these themes, somebody who is. Suffering from intersectional forms of marginalization, but is still kind of doing the best they can.
And, you know, moving forward in the world, somebody who's being very creative with the internet, they're using it in ways that none of the designers or technologists ever intended, and they're helping it work for them, but they're also not served well by these technologies because they don't have the options to set the technologies up in ways that would fit their life or their needs.
Um, and so what I'm really calling for here is to, rather than thinking about privacy as individual, as something we each have to solve, as seeing it as a political and a structural problem that cannot be solved by individual responsibility or individual actions.
CINDY COHN
I so support that. That
is certainly what we've experienced in the world as well, you know,
the fight against the Real Names policy, say at Facebook, which,
which really impacted, um, LGBTQ and trans community, especially
because people are, they're changing their names, right? And that's
important.
This real names policy, you know, first of all it's based on not good science. This idea that if you attach people's names to what they say, they will behave better. Which is, you know, belied by all of Facebook. Um, and, and, you know, it doesn't have any science behind it at all. But also these negative effects for, for, for people who, you know, for safety, you know, we work with a lot of domestic violence victims, you know, being able to separate out. One identity from another is tremendously important. And, and again, can, can matter for people's very lives. Or it could just be like, you know, when I'm Cindy at the dog park, I, I, I'm not interested in being, you know, Cindy, who's the ED of EFF, and being able to segment out your life and show up as, as different people, like, there's, there's a lot of power in that, even if it's not, you know, um, necessary to save your life.
ALICE MARWICK
Yeah, absolutely.
Sort of that, that ability to maintain our social roles and to play
different aspects of ourselves at different times. That's like a
very human thing, and that's sort of fundamental to privacy. It's
what parts of yourself do you wanna reveal at any given time. And
when you have these huge sites like Facebook where they want a real
name and they want you to have a persistent identity, it makes that
really difficult.
Whereas sites like Reddit where you can have a pseudonym and you can have 12 accounts and nobody cares, and the site is totally designed to deal with that. You know, that works a lot better with how most people, I think, want to use the internet.
CINDY COHN
What other things do
you think we can do? I mean, I'm assuming that we need some legal
support here as well as technical, um, uh, support for, uh, more
private internet, really More privacy protective
internet.
ALICE MARWICK
I mean, we need
comprehensive data privacy laws.
CINDY COHN
Yeah.
ALICE MARWICK
The fact that every
different type of personal information is governed differently and
some aren't governed at all. The fact that your email is not
private, that, you know, anything you do through a third party is
not private, whereas your video store records are
private.
That makes no sense whatsoever. You know, it's just this complete amalgam. It doesn't have any underlying principle whatsoever. The other thing I would say is data brokers. We gotta get 'em out. We gotta get rid of them. You shouldn't be able to collect data in one for one purpose and then use it for God knows how many other purposes.
I think, you know, I was very happy under the Obama administration to see that the FTC was starting to look into data brokers. It seems like we lost a lot of that energy during the Trump administration, but you know, to me they're public enemy number one. Really don't like 'em.
CINDY COHN
We are with you.
And you know this isn’t new – as early as 1973 the
federal government developed something called the Fair
Information Practice Principles that included recognizing that it
wasn’t fair to collect data for one purpose and then use it
for another without meaningful consent – but that’s the
central proposition that underlies the data broker business model.
I appreciate that your work confirms that those ideas are still
good ones.
ALICE MARWICK
Yeah, I think
there's sort of a group of people doing critical privacy critical
surveillance studies, um, a more diverse group of people than we've
typically seen studying privacy. For a long time it was just sort
of the domain of, you know, legal scholars and computer scientists.
And so now that it's being sort of opened up to qualitative
analysis and sociology and other forms, you know, I think we're
starting to see a much more comprehensive understanding, which
hopefully at some point will, you know, affect policy making and
technology design as well.
CINDY COHN
Yeah, I sure hope so. I
mean, I think we're in a time when our US Supreme Court is really
not grappling with privacy harms and is effectively making it
harder and harder to at least use the judicial remedies to try to
address privacy harm. So, you know, this development of the rest of
society and people's thinking about eventually, I think, will leak
over into, into the judicial side.
But it's one of the things that a fixed internet would give us is the ability to have actual accountability for privacy harms at a level that much better than what we have now. And the other thing I hear you really developing out is that maybe the individual model, which is kind of inherent in a lot of litigation, isn't really the right model for thinking about how to remedy all of this either.
ALICE MARWICK
Well, a lot of it is
just theatrical, right? It reminds me of, you know, security
theater at the airport. Like the idea that by clicking through a
75-page, you know, terms of service change that's written at, you
know, a level that would require a couple of years of law school,
that it would take years if you spent, if you actually sat and read
those, it would take up like two weeks of your life every
year.
Like that is just preposterous. Like, nobody would sit and be like, okay, well here's a problem. What's the best way to solve it? It's just a loophole that allows companies to get away with all kinds of things that I think are, you know, unethical and immoral by saying, oh, well we told you about it.
But I think often what I hear from people is, well, if you don't like it, don't use it. And that's easy to say if you're talking about something that is, you know, an optional extra to your life. But when we're talking about the internet, there aren't other options. And I think what people forget is that the internet has replaced a lot of technologies that kind of withered away. You know, I've driven across country three times, and the first two times was kind of pre-mobile internet or a pre, you know, ubiquitous internet. And you had a giant road atlas in your car. Every gas station had maps and there were payphones everywhere. You know, now most payphones are gone, you go to a gas station, you ask for directions, they're gonna look at you blankly, and no one has a road atlas. You know, there are all these infrastructures that existed pre-internet that allowed us to exist without smartphones in the internet. And now most of those are gone. What are you supposed to do if you're in college and you're not using, you know, at the very least, your course management system, which is probably already, you know, collecting information on you and possibly selling it to a third party.
You can't pass your class. If you're not joining your study group, which might be on Facebook or any other medium, or WhatsApp or whatnot. Like, you can't communicate with people. It's absolutely ridiculous that we're just saying, oh, well, if you don't like it, don't use it. Like you don't tell people, you know.
If you're being targeted by like a murderous sociopath, oh, just don't go outside, right? Just stay inside all the time. That's just not, it's terrible advice and it's not realistic.
CINDY COHN
No, I think that is
true and certainly trying to find a job. I mean, there are
benefits to the fact that all of this stuff is networked, but it
really does shine a light on the fact that, that this terms of
service approach to things as if this is a contract, like a freely
negotiated contract like I learned in law school with two equal
parties, having a negotiation and coming to a meeting of the minds
like this is, it's a whole other planet from that
approach.
And to try to bring that frame to, you know, whether you enforce those terms or not, is, it's jarring to people. It's not how people live. And so it feels this way in which the legal system is kind of divorced from, from our lives. And, and if we get it right, the legal terms and the things that we are agreeing to will be things that we actually agree to, not things that are stuffed into a document that we never read or we really realistically can't read.
ALICE MARWICK
Yeah, I would love
it if the terms of service was an actual contract and I could sit
there and be like, all right, Facebook, if you want my business,
this is what you have to do for me. And make some poor entry level
employees sit there and go through all my ridiculous demands. Like,
sure, you want it to be a contract, then I'm gonna be an equal
participant.
CINDY COHN
You want those green m
and ms in the green room?
ALICE MARWICK
Yeah, I want, I want
different content moderation standards. I want a pony, I want
glittery gifs on every page. You know, give it all to
me.
CINDY COHN
Yeah. I mean, you know,
there's a, there's a way in which a piece of the fed-averse
strategy that I think, uh, we're kind of at the beginning of, uh,
perhaps, uh, in this moment is, um, is that a little bit, you have
a smaller community, you have people who run the servers, um, who
you can actually interact with.
I mean, I don't know that, again, I don't know that there's ponies, but, um, but you know, one of the things that will help get us there is smaller, right? We can't do content moderation at scale. Um, and we can't do, you know, contractual negotiations at scale. So smaller might be helpful and I don't think it's gonna solve all the problems.
I'm, you know, but I think that there, there's a way in which you can at least get your arms around the problem. If you're dealing with a smaller community that then can inter, inter-operate with other communities, but isn't beholden to them with one rule to rule them all.
ALICE MARWICK
Yeah, I mean, I
think the biggest problem right now is we need to get around
usability and ux and these platforms need to be just as easy to use
as like the easiest social platform. You know, it needs to be
something that if you aren't, you know, if you don't have a college
education, if you're not super techy, if you aren't familiar with,
you know, if you're only familiar with very popular social media
platforms, you still be, are able to use things like
Mastodon.
I don't think we're quite there yet, but I can see a future in which we get there.
CINDY COHN
Well thank you so much
for continuing to do this work.
ALICE MARWICK
Oh, thank you. Thank
you, Cindy. Thank you, Jason. It was great to chat
today.
JASON KELLEY
I'm so glad we got to
talk to Alice. That was a really fun conversation and one that I
think really underscored a point that I've noticed, um, which is
that over the last, I don't know, many years we've seen Congress
and other legislators try to tackle these two separate issues that
we talked with Alice about.
One being sort of like content on the internet and the other being privacy on the internet. And when we spoke with her about privacy, it was clear that there are a lot. Obvious and simple and direct solutions to kind of informing how we can make privacy on the internet something that actually exists compared to content, which is a much stickier issue.
And, and it's, it's interesting that Congress and other legislators have consistently focused on one of these two topics, or let's say both of them at the expense of, of the one that actually is fairly direct when it comes to solutions. That really sticks out for me, but I'm, I'm wondering, I've blathered on, what do you find most interesting about what we talked with her about? There was a lot there.
CINDY COHN
Well, I think that
Alice does a great service to all of us by pointing out all the
ways in which the kind of easy solutions that we reach to,
especially around misinformation and disinformation and easy
stories we tell ourselves are not easy at all and not empirically
supported. So I think one of the things she does is just shine a
light on the difference between the kind of stories we tell
ourselves about how we could fix some of these problems and the
actual empirical evidence about whether those things will work or
not.
The other thing that I appreciated is she kind of pointed to spaces on the internet where things are kind of fixed. She talked about Reddit, she talked about some of the fan fiction places she talked about. Facebook groups and pointing out that, you know, sometimes we can be overly focused on politics and the darker pieces of the internet, and that these places that are supportive and loving and good communities that are doing the right thing, they already exist.
We don't have to create them, we just have to find a way to foster them, um, and build more of them. Make the, make more of the internet. That experience. But it, it's, it's refreshing to realize that, you know, Massive pieces of the internet were never broken, um, and don't need to be fixed.
JASON KELLEY
That is 100%
right. We're sort of tilted, I think, to focus on the worst things,
which is part of our job at EFF. But it's nice when someone says,
you know, there are actually good things. And it reminds us that a
lot of, in a lot of ways it's working and we can make it better by
focusing on what's working.
Well that’s it for this episode of How to Fix the Internet.
Thank you so much for listening. If you want to get in touch about the show, you can write to us at podcast@eff.org or check out the EFF website to become a member, donate, or look at hoodies, tshirts, hats and other merch, just in case you feel the need to represent your favorite podcast and your favorite digital rights organization.
This podcast is licensed Creative Commons Attribution 4.0 International, and includes music licensed Creative Commons Attribution 3.0 Unported by their creators. You can find their names and links to their music in our episode notes, or on our website at eff.org/podcast.
Our theme music is by Nat Keefe of BeatMower with Reed Mathis
How to Fix the Internet is supported by the Alfred P. Sloan Foundation's program in public understanding of science and technology.
We’ll see you next time in two weeks
I’m Jason Kelley
CommonGround by airtone featuring: simonlittlefield
Additional beds and alternate theme remixes by Gaëtan Harris
Comic Strip for Friday, October 11, 2024 [General Protection Fault: Comic Updates]
Current Story: Chapter Thirteen
Girl Genius for Friday, October 11, 2024 [Girl Genius]
The Girl Genius comic for Friday, October 11, 2024 has been posted.
The Northern Lights, once again visible in Ohio. Twice in one year after never seeing them before in my life. And from my house at that. 2024 has that going for it at the very least.
— JS
Gunnar Wolf: Started a guide to writing FUSE filesystems in Python [Planet Debian]
As DebConf22 was coming to an end, in Kosovo, talking with Eeveelweezel they invited me to prepare a talk to give for the Chicago Python User Group. I replied that I’m not really that much of a Python guy… But would think about a topic. Two years passed. I meet Eeveelweezel again for DebConf24 in Busan, South Korea. And the topic came up again. I had thought of some ideas, but none really pleased me. Again, I do write some Python when needed, and I teach using Python, as it’s the language I find my students can best cope with. But delivering a talk to ChiPy?
On the other hand, I have long used a very simplistic and limited filesystem I’ve designed as an implementation project at class: FIUnamFS (for “Facultad de Ingeniería, Universidad Nacional Autónoma de México”: the Engineering Faculty for Mexico’s National University, where I teach. Sorry, the link is in Spanish — but you will find several implementations of it from the students 😉). It is a toy filesystem, with as many bad characteristics you can think of, but easy to specify and implement. It is based on contiguous file allocation, has no support for sub-directories, and is often limited to the size of a 1.44MB floppy disk.
As I give this filesystem as a project to my students (and not as a mere homework), I always ask them to try and provide a good, polished, professional interface, not just the simplistic menu I often get. And I tell them the best possible interface would be if they provide support for FIUnamFS transparently, usable by the user without thinking too much about it. With high probability, that would mean: Use FUSE.
But, in the six semesters I’ve used this project (with 30-40 students per semester group), only one student has bitten the bullet and presented a FUSE implementation.
Maybe this is because it’s not easy to understand how to
build a FUSE-based filesystem from a high-level language such as
Python? Yes, I’ve seen several implementation examples and
even nice web pages (i.e. the
examples shipped with thepython-fuse
module Stavros’
passthrough filesystem,
Dave Filesystem based upon, and further explaining,
Stavros’, and several others) explaining how to provide
basic functionality. I found a particularly
useful presentation by Matteo Bertozzi presented ~15 years ago
at PyCon4… But none of those is IMO followable enough by
itself. Also, most of them are very old (maybe the world
is telling me something that I refuse to understand?).
And of course, there isn’t a single interface to work from. In Python only, we can find python-fuse, Pyfuse, Fusepy… Where to start from?
…So I setup to try and help.
Over the past couple of weeks, I have been slowly working on my own version, and presenting it as a progressive set of tasks, adding filesystem calls, and being careful to thoroughly document what I write (but… maybe my documentation ends up obfuscating the intent? I hope not — and, read on, I’ve provided some remediation).
I registered a GitLab project for a hand-holding guide to writing FUSE-based filesystems in Python. This is a project where I present several working FUSE filesystem implementations, some of them RAM-based, some passthrough-based, and I intend to add to this also filesystems backed on pseudo-block-devices (for implementations such as my FIUnamFS).
So far, I have added five stepwise pieces, starting from the
barest possible
empty filesystem, and adding system calls (and functionality)
until (so far) either a
read-write filesystem in RAM with basicstat()
support or
a
read-only passthrough filesystem.
I think providing fun or useful examples is also a good way to get students to use what I’m teaching, so I’ve added some ideas I’ve had: DNS Filesystem, on-the-fly markdown compiling filesystem, unzip filesystem and uncomment filesystem.
They all provide something that could be seen as useful, in a
way that’s easy to teach, in just some tens of lines. And, in
case my comments/documentation are too long to read, uncommentfs
will
happily strip all comments and whitespace automatically!
😉
So… I will be delivering my talk tomorrow (2024.10.10, 18:30 GMT-6) at ChiPy (virtually). I am also presenting this talk virtually at Jornadas Regionales de Software Libre in Santa Fe, Argentina, next week (virtually as well). And also in November, in person, at nerdear.la, that will be held in Mexico City for the first time.
Of course, I will also share this project with my students in the next couple of weeks… And hope it manages to lure them into implementing FUSE in Python. At some point, I shall report!
Update: After delivering my ChiPytalk, I have uploaded it to YouTube: A hand-holding guide to writing FUSE-based filesystems in Python. I will also upload it in Spanish after JRSL. will be available
Scarecrow’s 2024 Psychotronic Challenge: Day 10 [The Stranger]
"A slice and dice set in the city so nice they named it New York." by Megan Seling
10. NEW YORK NEW YORK: A slice and dice set in the city so nice they named it New York
Basket CaseBasket Case, Frank Henenlotter’s1982 directorial debut, has been called a lot of things: “an ultra-cheap monster film” (Variety), “E.T. as written and directed by a psychopath” (Detroit Free Press), and a “hilariously gory cult classic” (Dread Central). But do you know what else it is? High art.
The story revolves around conjoined twins Duane and Belial, who were crudely separated against their will by a crew of devious doctors when they were 12 years old. While Duane was a “normal” boy, Belial looked “like a squashed octopus” growing out of Duane’s side—medical professionals questioned whether or not he was even human, and his father, widowed after the twins’ mother died during childbirth, refused to acknowledge that he existed. Belial defied the odds and survived the risky surgery. After growing more and more resentful over the years, Duane packs the blobbish, hamburger-loving Belial in a basket, and the two leave their home in upstate New York to seek revenge on the doctors who forced them apart.
Their kill list brings them to an early 1980s New York, New York. It’s seedy and full of questionable characters with secrets. They fit right in… until the murders start.
The beast in the basket attacks his prey, steals panties, and sulks in a toilet with a combination of puppetry and stop-motion that is more fun than frightening, but that—along with the amateur acting and low-budget special effects—just makes Basket Case an even more delightfully gory and goofy watch. And the art experts at the Museum of Modern Art agree! MoMA restored the film in 2017 with the blessing of Henenlotter, who wrote on Facebook at the time, “I’ve already given them all the film elements for preservation, and they’ll be doing an all-new restoration in the upcoming months. … (And, yes, I asked them if they actually watched the film and they assured me they did.)”
I’m pretty sure that makes it the ultimate high-brow/low-brow horror movie. If it’s good enough for MoMA’s permanent collection, it’s good enough for you.
Best quote: The long, exaggerated, piercing scream Dr. Judith Kutter (Diana Browne) lets out during her kill scene.
Snack recommendation: Hot dogs. Uncooked, without buns, and served in a picnic basket.
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
Lights, Incense, Spontaneous Abstraction! [The Stranger]
This show was one of the strangest ever in the Paramount's classy confines—and the best-smelling one, too. by Dave Segal
André 3000's not in the Dirty South anymore, literally or figuratively. The Grammy-winning ATLien rapper moved to LA, lost his urge to rhyme (at least with words), got heavily into flutes, and found some deep jazz cats in his area to augment his epic, enigmatic jams on the surprise 2023 album, New Blue Sun. Nearly a year later, André Lauren Benjamin's taking the spirit of that very un-hip-hop record on a North American tour, which hit the Paramount on Wednesday night.
Every track on New Blue Sun has between two and 10 million streams on $p0t1fy, which is kind of shocking for such an uncommercial record on which the average song length is nearly 11 minutes. But those stats are also a tribute to the loyalty that the 49-year-old star has earned over the last 30 years as a rapper/producer for OutKast.
Before the show, birdsong-enhanced New Age played over the PA. When the lights dimmed, the disembodied, deep voice of André asked the audience to "stay in the zone without cell-phone distraction." So far, so refreshing.
However, seconds after the band—percussionists Carlos Niño and Deantoni Parks and keyboardist Surya Botofasina—strolled onstage, some asshole shouted "Erykah Badu" (the lauded musician with whom André had a messy breakup after a three-year relationship in the late '90s). André appeared not to be fazed by this rudeness. Instead, he proceeded to revel in his newfound freedom from hip-hop's routines.
With Niño shaking a branch full of leaves and maracas and hitting cymbals with mallets and Parks thumping his floor tom, André played a beautifully mournful tune on a wooden flute as Botofasina channeled goose-bump-inducing, Lonnie Liston Smith-like keyboard tones. (I expected to see guitarist/multi-instrumentalist Nate Mercereau, but he was absent.) The bandleader later picked up a digital wind instrument to blurt bold, declamatory statements over rumbling toms. Even later, he achieved some fantastically rich and mellifluous timbres with a long wooden flute that may have been from South America. (Western concert flutes were AWOL.) Momentous crescendos occurred, as André kneeled to beat a rotund metallic vessel with a drumstick and tickle some chimes. All of the busy percussion didn't nullify the predominantly tranquil atmosphere. Occasionally, André blew a bird whistle and emitted guttural "HUH"s. When he warned, "no bars," he damn well meant it.
An eerie minimalism pervaded the 24-minute opening piece, making me think of the title of Brian Eno's "Juju Space Jazz" as well as Don Cherry's contributions to the soundtrack of The Holy Mountain. Along with the incense burning on Botofasina's keyboard table and a laser light piercing diagonally across the stage in various colors representing the seven chakras, the vibe was ceremonial and chill. This show was shaping up to be perhaps the strangest ever in the Paramount's classy confines—and the best-smelling one, too.
During the first "song" break, André thanked the crowd for bringing their energy from "your jobs, families, relationships... We are absorbing all that and composing on the spot." He then introduced the group and memorably attributed Parks with "heartbeat management."
As the performance progressed, it became clear that André was no Yusef Lateef or Bobbi Humphrey—or even relative newcomer Shabaka Hutchings—on the flute. Mr. Benjamin's still learning; he's still more about creating interesting abstractions than catchy melodies. And that had some heads nodding, but not in time to any beats. Some eyes were closed, not in soulful appreciation of the music, but in slumber. Some folks left early, including the couple in front of me. Early on, the blinged-out dude from that couple shouted, "Three Stacks," so maybe he was expecting OutKast's greatest hits?
Whatever the case, André did finesse a variety of gripping and poignantly sublime sounds from his panoply of instruments, as well as some shrill, unpleasant ones. He's still a work in progress. He didn't seem to be plumbing the depths of his soul so much as testing his skill levels and his fan base's devotion, by privileging spontaneous creativity and the often alienating meandering that that entails. So, while André may not be ready yet for the concert hall, he is bravely venturing into uncharted (and non-charting) territory.
Near set's end, André spoke to the crowd, his voice hilariously warped with effects, in a weird, imaginary tongue that he called "Kweeku" (I think). "You should've seen y'all's faces," he laughed. It was yet another WTF? moment, but better this than another pandering shout-out to [insert city here] and marijuana. After that bizarre interlude, the band headed into an ominous finale that carried Judgment Day undertones. Going out on a grim note, André and crew remained baffling and uncompromising to the end.
Special mention must be given to the lighting engineer, who kept things subtly beautiful throughout the 95-minute performance. This wizard managed to keep the players in intriguing shadows, proving that André had no desire for the spotlight. He may be a superstar in many rap fans' minds, but in his own, he is merely a cog in this sonic-mental-health machine.
The night opened with Brooklyn solo vocalist/musician serpentwithfeet (aka Josiah Wise), who wore a floor-length coat that gave him the appearance of having four arms. His 30-minute set on keyboard and laptop was dominated by vaporous, emotionally vulnerable R&B songs about Black gay love and lust, sung mostly in a melismatic falsetto. His parting words to the Paramount were "I hope that when you leave the show, you feel a little more gentle and a little more kind."
Ticket Alert: John Legend, Kylie Minogue, and More Seattle Events Going On Sale This Week [The Stranger]
Plus, Nikki Glaser and More Event Updates for October 10 by EverOut Staff
R&B crooner John Legend is coming to town this December to serve holiday cheer, Christmas carols, and special stories. Potty-mouthed blonde and legendary roaster Nikki Glaser will serve up something crass on her Alive And Unwell tour. Plus, don’t forget to grab tickets for Australian national treasure Kylie Minogue as she promotes her Tension album and its upcoming sequel, Tension II. Read on for details on those and other newly announced events, plus some news you can use.
Tickets go on sale at 10 am unless otherwise noted.
ON SALE FRIDAY, OCTOBER 11MUSIC
A R I Z O N A
Showbox SoDo (Feb 24, 2025)
Caravan Palace
Showbox SoDo (Mar 28, 2025)
On sale at 7
am
Eric Bellinger
The Showbox (Jan 31, 2025)
10 Seasonal Treats to Try in Seattle This Fall [The Stranger]
Pumpkin Fritters, Sweet Potato Cake, and More by EverOut Staff At last, a crisp chill has permeated the air, trees have begun to shed their leaves, and Seattle cafes and bakeries have begun to serve pumpkin everything. Pull on a cable-knit sweater and indulge your secret Christian Girl Autumn side with seasonal delicacies like pumpkin cheesecake lattes, sweet potato cake, and chai mochi doughnuts. For more ideas, check out our guide to harvest season and our food and drink guide.
Bang
Bang Cafe and
Bang Bang Kitchen
Sisters Yuki and Miki Sodos used to serve the most
delightful mini pumpkin pies
topped with torch-brûléed marshmallows at the erstwhile
Cafe
Pettirosso (RIP), and now they've brought the seasonal treats
back to their homey Belltown spot Bang Bang Cafe and its Othello
sibling Bang Bang Kitchen.
Belltown
The Real Final Rose Is the Friends We Made Along the Way [The Stranger]
Captain Kim Sightings: 0 by Megan Burbank
Last week, Seattle’s Captain Kim was eliminated from the competition for Joan Vassos’s heart (or at least 80% of it) on The Golden Bachelorette, and I have to say, I missed his antics this week. Men Tell All can’t come soon enough!
I’m writing this from Palm Springs, a thematically appropriate location for the Bachelor franchise, which loves to fly people from LA to the Coachella Valley on private jets (see: facing your fear of heights, covered last week). Also, among Vassos’s contestants this season is retired finance executive Gary, 65, from Palm Desert. Topical!
So grab a drink and a pool floatie! It’s time for some Eli Lilly ads and men trying to impress a woman with stories about their divorces!
It’s week four, and Joan is struggling with the central tension of this show, which is that it forces people to do polyamory who wouldn’t under any other circumstances. Falling in love with more than one person is “like a kid thing,” says Joan dismissively, and I am concerned about how she’s going to survive the rest of the season.
At the mansion, Pascal, a 69-year-old man, is finally learning to do his own laundry (now that Gregg is gone, he has to). Girl dad Keith is hoping to get a one-on-one date with Joan. So are ER doctor Guy and insurance executive Chock.
The date card arrives, and only Guy gets what he wants. He and senior sales executive Jordan are getting one-on-ones. Everybody else is going on a group date to the Avalon nightclub, where Joan greets them wearing a truly terrible short-sleeved (!) leather jacket (!!) which makes me think—not for the first time—that Bachelor franchise stylist Cary Fetman should be fired. Former Bachelorette Kaitlyn Bristowe is there, too, as are a bunch of Chippendales, because the men are going to put on a striptease performance for a cancer charity.
Looks like Gary was ready after all. COURTESY OF ABC“Holy cow, I’m not ready for this!” says Gary when he hears this news, and honestly, neither am I. Chock wants three chardonnays to dispel his pre-show jitters. Shipping consultant Jonathan has a stripper persona named “Sergeant Sexy.” “I hope they throw money,” says Keith. “I’m keeping it!”
After learning to body-roll, the men commit to the compulsory nudity of it all, dancing gamely if inexpertly to Lady Gaga. Jonathan, who loves not wearing a shirt and is the only one with any real stage presence, is placed in the front line for the opening number. “I’m doing my little butt thing,” says Gary. Chock, who looks more and more like a game show host every time I see him (I think it’s the hair), says, “It’s all about fun” and “Ladies like the tush.”
At the after-party, Chock gets the group date rose. And then, abruptly, something is very wrong: Chock is crying because he just found out his mother has died of cancer, and he obviously has to rush home. Joan, who left her own season of The Golden Bachelor after a family emergency, is understanding and supportive, although sad that a man she actually likes is leaving. “He’s a really nice human being,” says Keith, getting teary. Keith!
Despite the life-and-death situation Chock is facing, this show can’t be serious for more than five minutes, even when it’s the right thing to do, so now Joan has to go on a date with Jordan. Jordan is nervous for his one-on-one, and I’m gonna be honest: I had forgotten who he was.
Joan and Jordan go ice skating, and Jordan falls. Joan laughs, then feels bad for laughing. She says he’s happy to see Jordan’s “silly side,” which is kind of a mean thing to say about someone who isn’t trying to be funny at all but just isn’t very good at what they’re doing.
They drink hot chocolate and champagne until they’re surprised with a private concert. I would consider this to be a kind of hell, but the Bachelor franchise loves getting some not-very-famous country act to sing a song for exactly two people, so that the lead has to keep a straight face as they say something like “Dylan Patchwork is an amazing musician. I was so happy to hear him play ‘Leave Room for Jesus.’”
RESNOW Speedwagon, amirite? COURTESY OF ABCAnyway, somehow this private concert is a band I’ve heard of: REO Speedwagon! They play “I Can’t Fight This Feeling” as Joan and Jordan dance on the ice on what look like Yaktrax. The couple that trax together yaks together! I get paid to write these.
Jordan tells Joan he’ll have bruises from falling down for just a few weeks, “but I’ll remember this for the rest of my life,” and because Joan is all about Vulnerability and Opening Up, Jordan gets the rose. Fake snow falls from the ceiling like it’s The Nutcracker, and I find myself feeling sad there’s never been a ballet date on this show.
Jordan got the rose after falling down and getting back up. Good job, Jordan. COURTESY OF ABCAt the mansion ahead of his date with Joan, Guy is having a pensive moment while Joan has her own pensive moment at Sun House Malibu, which you can rent on Airbnb. Giuliana is a SuperHost!
“I’ve become smitten with her,” he says (Joan, not Giuliana), and wow, I did not know Guy was living in a romance novel, although he is a handsome ER doctor, so I shouldn’t be.
At Sun House Malibu (6 bedrooms! 5.5 baths!), Joan and Guy make lemon baked ziti, which sounds terrible, and Guy is having a hard time zesting a lemon. Joan finds this curious, because Guy is an ER doctor, so I guess Joan has never met someone who is competent at work but not in the kitchen. Not that I know anyone like that either!
They bond over forcing their families to eat dinner without the TV on, and Guy says the ziti “is definitely not Chef Boyardee.” They also make cupcakes, or at least decorate them, and Guy licks frosting off of Joan’s mouth, which I feel like is none of my business and I shouldn’t be seeing it happen.
I hope the ziti tastes good, because it doesn’t photograph very well. Guy says he and his ex-wife didn’t have open and honest communication, and Joan is charmed by his transparency. Guy gets the rose! “My brain is secreting so many endorphins… Dopamine surge!” says Guy.
Back at Sun House Malibu (free parking on the premises!), Joan is walking slowly beside the pool against a backdrop of mist. “If Chock doesn’t return, he will always be a question,” says Joan. Don’t worry, Joan. I think an answer is coming.
At the cocktail party, Joan says she called home, and her mom, who was also sick recently, is doing better. The men are away from their families, says Joan, “and I am so, so appreciative” of this sacrifice. For what seems like the millionth time, they toast to finding love.
But you know who isn’t being all that supportive? Pascal, who, despite being adaptable enough to learn how to do his laundry after all (tres bien fait!), has been acting uninterested in Joan, because he likes to be the center of attention and struggles in group environments, which is normal but a bad quality to have if you’re on reality TV. Joan reads this as an “air of indifference which I think is a little bit French.” But I think it’s actually just a little bit rude. As usual, Joan is interpreting obnoxious behavior in the most generous way possible, and I have concerns!
But the worst is yet to come because Jonathan’s time with Joan is—and I cannot stress this enough—Cheerios product placement! He and Joan eat heart-healthy™ Cheerios out of heart-shaped bowls with a cereal box prominently displayed for the cameras, and this is maybe one of the top five dumbest things I’ve ever seen on this show, which includes the fight over whether itching is “low-level pain” that unfolded on season eight of Bachelor in Paradise.
“Tonight is SO special,” says Joan, and it is for Cheerios, but it isn’t for girl dad Keith, who is struggling to connect with Joan on a romantic level, so I guess he hasn’t figured out that most leads are only interested in a few people and just kinda fake it with everyone else. Did you know reality TV… isn’t real?
Even though his mother had just died, Chock returned to the show to claim his rose. That's dedication or something. COURTESY OF ABCAnd wow, that was fast: Chock is back! He says “it’s been a crazy week,” which is a gross understatement, that he got home the night his mother died and “there was no way I was not coming back,” so I hope Joan really likes him because she definitely has to pick him now. I’m sorry I made fun of your name two weeks ago, Chock. I hope you and Joan are very happy together.
Things aren’t looking so good for the other Mansion Men, because it’s rose ceremony time! Joan says the men started out as strangers, but now she’s standing in front of “11 people who are part of my life now” even though they won’t be for long. As the tense instrumentals begin, Joan rewards Pascal’s rudeness with the first rose, followed by roses for Jonathan, Mark, and Keith.
That may be good news for Joan, who will no longer have to pretend to be romantically interested in as many men she considers Just Good Friends (except for Keith), but it’s devastating for the rest of us because it means we’re saying good-bye to one of the real stars of this season, Charles L., whose emotional journey has been—I’m sorry to say it—much more interesting than Joan’s. I was sure they’d keep Charles on for at least another week just because he’s good TV, but I can’t wait to see what he gets up to at Men Tell All. Gil is also leaving, which is probably for the best given what comes up when you google his name, and so is rosy-faced private investor Dan. “Dan, goodbye!” say the men plaintively as he leaves. “Love you, man!”
In his exit interview, Dan is sad because he lives alone and he’s really enjoyed living with the Mansion Men. Men! They need friends! Our Palm Desert pal Gary is also on his way out, taking his cool glasses, handwritten prayers, and positive attitude with him.
As for Charles L., he puts into words what I’m always saying about this show, which has a terrible success rate if you’re counting lasting marriages but produces many enduring pairs of BFFs. The real final rose is the friends we made along the way!
“The remaining friends, we bonded together,” says Charles. He considers them “all gorgeous people.” Mark gets to come outside the mansion to say goodbye to Charles, which isn’t usually allowed, but has been happening an awful lot this season, and I think it should become a regular thing. “It’s a different form of love,” says Charles. “I did find it.”
Captain Kim Sightings: 0
This week’s rating, out of 10 anchor emojis: ⚓⚓⚓⚓⚓⚓ (for the Charles L. content alone)
Memorable TV-watching moments [Scripting News]
A tweet that says something that's obviously true until you realize it's not. "No kid remembers their best day in front of the TV." In fact I have four memories from my youth, watching TV.
Executive director Zoë Kooyman speaks on free software being the tech we want at The Tech We Want Online Summit on October 17 at 13:30 UTC [Planet GNU]
Executive director Zoë Kooyman will be speaking on a panel at The Tech We Want Online Summit on Thursday, October 17 at 13:30 UTC.
Pluralistic: Cars bricked by bankrupt EV company will stay bricked (10 Oct 2024) [Pluralistic: Daily links from Cory Doctorow]
There are few phrases in the modern lexicon more accursed than "software-based car," and yet, this is how the failed EV maker Fisker billed its products, which retailed for $40-70k in the few short years before the company collapsed, shut down its servers, and degraded all those "software-based cars":
https://insideevs.com/news/723669/fisker-inc-bankruptcy-chapter-11-official/
Fisker billed itself as a "capital light" manufacturer, meaning that it didn't particularly make anything – rather, it "designed" cars that other companies built, allowing Fisker to focus on "experience," which is where the "software-based car" comes in. Virtually every subsystem in a Fisker car needs (or rather, needed) to periodically connect with its servers, either for regular operations or diagnostics and repair, creating frequent problems with brakes, airbags, shifting, battery management, locking and unlocking the doors:
https://www.businessinsider.com/fisker-owners-worry-about-vehicles-working-bankruptcy-2024-4
Since Fisker's bankruptcy, people with even minor problems with their Fisker EVs have found themselves owning expensive, inert lumps of conflict minerals and auto-loan debt; as one Fisker owner described it, "It's literally a lawn ornament right now":
This is, in many ways, typical Internet-of-Shit nonsense, but it's compounded by Fisker's capital light, all-outsource model, which led to extremely unreliable vehicles that have been plagued by recalls. The bankrupt company has proposed that vehicle owners should have to pay cash for these recalls, in order to reserve the company's capital for its creditors – a plan that is clearly illegal:
https://www.veritaglobal.net/fisker/document/2411390241007000000000005
This isn't even the first time Fisker has done this! Ten years ago, founder Henrik Fisker started another EV company called Fisker Automotive, which went bankrupt in 2014, leaving the company's "Karma" (no, really) long-range EVs (which were unreliable and prone to bursting into flames) in limbo:
https://en.wikipedia.org/wiki/Fisker_Karma
Which raises the question: why did investors reward Fisker's initial incompetence by piling in for a second attempt? I think the answer lies in the very factor that has made Fisker's failure so hard on its customers: the "software-based car." Investors love the sound of a "software-based car" because they understand that a gadget that is connected to the cloud is ripe for rent-extraction, because with software comes a bundle of "IP rights" that let the company control its customers, critics and competitors:
https://locusmag.com/2020/09/cory-doctorow-ip/
A "software-based car" gets to mobilize the state to enforce its "IP," which allows it to force its customers to use authorized mechanics (who can, in turn, be price-gouged for licensing and diagnostic tools). "IP" can be used to shut down manufacturers of third party parts. "IP" allows manufacturers to revoke features that came with your car and charge you a monthly subscription fee for them. All sorts of features can be sold as downloadable content, and clawed back when title to the car changes hands, so that the new owners have to buy them again. "Software based cars" are easier to repo, making them perfect for the subprime auto-lending industry. And of course, "software-based cars" can gather much more surveillance data on drivers, which can be sold to sleazy, unregulated data-brokers:
https://pluralistic.net/2023/07/24/rent-to-pwn/#kitt-is-a-demon
Unsurprisingly, there's a large number of Fisker cars that never sold, which the bankruptcy estate is seeking a buyer for. For a minute there, it looked like they'd found one: American Lease, which was looking to acquire the deadstock Fiskers for use as leased fleet cars. But now that deal seems dead, because no one can figure out how to restart Fisker's servers, and these vehicles are bricks without server access:
It's hard to say why the company's servers are so intransigent, but there's a clue in the chaotic way that the company wound down its affairs. The company's final days sound like a scene from the last days of the German Democratic Republic, with apparats from the failing state charging about in chaos, without any plans for keeping things running:
https://www.washingtonpost.com/opinions/2023/03/07/east-germany-stasi-surveillance-documents/
As it imploded, Fisker cycled through a string of Chief Financial officers, losing track of millions of dollars at a time:
https://techcrunch.com/2024/05/31/fisker-collapse-investigation-ev-ocean-suv-henrik-geeta/
When Fisker's landlord regained possession of its HQ, they found "complete disarray," including improperly stored drums of toxic waste:
And while Fisker's implosion is particularly messy, the fact that it landed in bankruptcy is entirely unexceptional. Most businesses fail (eventually) and most startups fail (quickly). Despite this, businesses – even those in heavily regulated sectors like automotive regulation – are allowed to design products and undertake operations that are not designed to outlast the (likely short-lived) company.
After the 2008 crisis and the collapse of financial institutions like Lehman Brothers, finance regulators acquired a renewed interest in succession planning. Lehman consisted of over 6,000 separate corporate entities, each one representing a bid to evade regulation and/or taxation. Unwinding that complex hairball took years, during which the entities that entrusted Lehman with their funds – pensions, charitable institutions, etc – were unable to access their money.
To avoid repeats of this catastrophe, regulators began to insist that banks produce "living wills" – plans for unwinding their affairs in the event of catastrophe. They had to undertake "stress tests" that simulated a wind-down as planned, both to make sure the plan worked and to estimate how long it would take to execute. Then banks were required to set aside sufficient capital to keep the lights on while the plan ran on.
This regulation has been indifferently enforced. Banks spent the intervening years insisting that they are capable of prudently self-regulating without all this interference, something they continue to insist upon even after the Silicon Valley Bank collapse:
https://pluralistic.net/2023/03/15/mon-dieu-les-guillotines/#ceci-nes-pas-une-bailout
The fact that the rules haven't been enforced tells us nothing about whether the rules would work if they were enforced. A string of high-profile bankruptcies of companies who had no succession plans and whose collapse stands to materially harm large numbers of people tells us that something has to be done about this.
Take 23andme, the creepy genomics company that enticed millions of people into sending them their genetic material (even if you aren't a 23andme customer, they probably have most of your genome, thanks to relatives who sent in cheek-swabs). 23andme is now bankrupt, and its bankruptcy estate is shopping for a buyer who'd like to commercially exploit all that juicy genetic data, even if that is to the detriment of the people it came from. What's more, the bankruptcy estate is refusing to destroy samples from people who want to opt out of this future sale:
https://bourniquelaw.com/2024/10/09/data-23-and-me/
On a smaller scale, there's Juicebox, a company that makes EV chargers, who are exiting the North American market and shutting down their servers, killing the advanced functionality that customers paid extra for when they chose a Juicebox product:
https://www.theverge.com/2024/10/2/24260316/juicebox-ev-chargers-enel-x-way-closing-discontinued-app
I actually owned a Juicebox, which ultimately caught fire and melted down, either due to a manufacturing defect or to the criminal ineptitude of Treeium, the worst solar installers in Southern California (or both):
https://pluralistic.net/2024/01/27/here-comes-the-sun-king/#sign-here
Projects like Juice Rescue are trying to reverse-engineer the Juicebox server infrastructure and build an alternative:
This would be much simpler if Juicebox's manufacturer, Enel X Way, had been required to file a living will that explained how its customers would go on enjoying their property when and if the company discontinued support, exited the market, or went bankrupt.
That might be a big lift for every little tech startup (though it would be superior than trying to get justice after the company fails). But in regulated sectors like automotive manufacture or genomic analysis, a regulation that says, "Either design your products and services to fail safely, or escrow enough cash to keep the lights on for the duration of an orderly wind-down in the event that you shut down" would be perfectly reasonable. Companies could make "software based cars" but the more "software based" the car was, the more funds they'd have to escrow to transition their servers when they shut down (and the lest capital they'd have to build the car).
Such a rule should be in addition to more muscular rules simply banning the most abusive practices, like the Oregon state Right to Repair bill, which bans the "parts pairing" that makes repairing a Fisker car so onerous:
Or the Illinois state biometric privacy law, which strictly limits the use of the kind of genomic data that 23andme collected:
https://www.ilga.gov/legislation/ilcs/ilcs3.asp?ActID=3004
Failing to take action on these abusive practices is dangerous – and not just to the people who get burned by them. Every time a genomics research project turns into a privacy nightmare, that salts the earth for future medical research, making it much harder to conduct population-scale research, which can be carried out in privacy-preserving ways, and which pays huge scientific dividends that we all benefit from:
https://pluralistic.net/2022/10/01/the-palantir-will-see-you-now/#public-private-partnership
Just as Fisker's outrageous ripoff will make life harder for good cleantech companies:
https://pluralistic.net/2024/06/26/unplanned-obsolescence/#better-micetraps
If people are convinced that new, climate-friendly tech is a cesspool of grift and extraction, it will punish those firms that are making routine, breathtaking, exciting (and extremely vital) breakthroughs:
Molly White at XOXO https://www.youtube.com/watch?v=MTaeVVAvk-c
FTC Findings on Commercial Surveillance Can Lead to Better Alternatives https://www.eff.org/deeplinks/2024/10/ftc-findings-commercial-surveillance-can-lead-better-alternatives
#15yrsago Hallowe’en is safe https://freerangekids.wordpress.com/2009/10/12/goodbye-halloween-hello-safety/
#15yrsago Big Entertainment’s century-long technophobic binge https://arstechnica.com/tech-policy/2009/10/100-years-of-big-content-fearing-technologyin-its-own-words/
#10yrsago Laura Poitras’s Citizenfour: the real story of Edward Snowden https://www.hollywoodreporter.com/movies/movie-news/nyff-edward-snowden-doc-citizenfour-740060/
#10yrsago There’s no back door that only works for good guys https://www.theguardian.com/technology/2014/oct/09/crypto-wars-redux-why-the-fbis-desire-to-unlock-your-private-life-must-be-resisted
#10yrsago Buzz Lightyear cited in legal brief https://www.loweringthebar.net/2014/10/how-to-cite-buzz-lightyear.html
#5yrsago Bruce Schneier makes the case for “public interest technologists” https://www.youtube.com/watch?v=U2jn4pXDZn0
#5yrsago Computer historians crack passwords of Unix’s early pioneers https://inbox.vuxu.org/tuhs/87bluxpqy0.fsf@vuxu.org/
#5yrsago Apple’s capitulation over Hong Kong protest app isn’t new; and the NBA is racing it to the bottom https://memex.craphound.com/2019/10/10/apples-capitulation-over-hong-kong-protest-app-isnt-new-and-the-nba-is-racing-it-to-the-bottom/
#5yrsago The Sacklers come to Sesame Street as a muppet is revealed to have had an addicted mother https://thehill.com/blogs/blog-briefing-room/news-other-healthcare/465124-sesame-street-to-reveal-muppets-mom-suffered/
#5yrsago Verizon dumps another Oath property for peanuts: RIP, Mapquest https://searchengineland.com/a-eulogy-for-mapquest-322945
#5yrsago Hiding secrets in online text with zero-width characters https://web.archive.org/web/20200516062538/https://git.planetrenox.com/inzerosight/browser-extension
#5yrsago Ikea’s founder was a Nazi, and never stopped praising the Nazi leader he called “Best Brother” https://lithub.com/on-the-far-right-past-of-ingvar-kamprad-founder-of-ikea/
#5yrsago Kelly Link and Gavin Grant have bought a bookstore! https://www.bookweb.org/news/author-kelly-link-gavin-j-grant-open-book-moon-easthampton-massachusetts-574432
#5yrsago Part two of my novella “Martian Chronicles” on Escape Pod: who cleans the toilets in libertopia? https://escapepod.org/2019/10/10/escape-pod-701-martian-chronicles-part-2/
#5yrsago 13 years later, World of Warcraft is STILL telling queer guilds they’re not allowed to advertise their queerness https://memex.craphound.com/2019/10/11/%E2%80%8B13-years-later-world-of-warcraft-is-still-telling-queer-guilds-theyre-not-allowed-to-advertise-their-queerness/
#5yrsago Fatboy Slim mashes up Greta Thunberg’s UN speech https://twitter.com/Independent/status/1181950192960131074
#1yrago Stellantis wants to make scabbing woke https://pluralistic.net/2023/10/11/equal-opportunity-class-war/#inclusive-scabbing
#1yrago Underground Empire: Henry Farrell and Abraham Newman's must-read account of "How America Weaponized the World Economy" https://pluralistic.net/2023/10/10/weaponized-interdependence/#the-other-swifties
OKFN Tech We Want Online Summit (Remote), Oct 18
https://okfn.org/en/events/the-tech-we-want-online-summit/
SOSS Fusion (Atlanta), Oct 22
https://sossfusion2024.sched.com/speaker/cory_doctorow.1qm5qfgn
Eagle Eye Books (Decatur), Oct 23
https://eagleeyebooks.com/event/2024-10-23/cory-doctorow
TusCon (Tucson), Nov 8-10
https://tusconscificon.com/
International Cooperative Alliance (New Delhi), Nov 24
https://icanewdelhi2024.coop/welcome/pages/Programme
ISSA-LA Holiday Celebration keynote (Los Angeles), Dec 18
https://issala.org/event/issa-la-december-18-dinner-meeting/
Go Fact Yourself
https://maximumfun.org/episodes/go-fact-yourself/ep-158-aida-rodriguez-cory-doctorow/
The great decline of everything online (Lately podcast)
https://www.theglobeandmail.com/podcasts/lately/article-cory-doctorow-podcast-interview/
"The Lost Cause:" a solarpunk novel of hope in the climate emergency, Tor Books (US), Head of Zeus (UK), November 2023 (http://lost-cause.org). Signed, personalized copies at Dark Delicacies (https://www.darkdel.com/store/p3007/Pre-Order_Signed_Copies%3A_The_Lost_Cause_HB.html#/)
"The Internet Con": A nonfiction book about interoperability and Big Tech (Verso) September 2023 (http://seizethemeansofcomputation.org). Signed copies at Book Soup (https://www.booksoup.com/book/9781804291245).
"Red Team Blues": "A grabby, compulsive thriller that will leave you knowing more about how the world works than you did before." Tor Books http://redteamblues.com. Signed copies at Dark Delicacies (US): and Forbidden Planet (UK): https://forbiddenplanet.com/385004-red-team-blues-signed-edition-hardcover/.
"Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin", on how to unrig the markets for creative labor, Beacon Press/Scribe 2022 https://chokepointcapitalism.com
"Attack Surface": The third Little Brother novel, a standalone technothriller for adults. The Washington Post called it "a political cyberthriller, vigorous, bold and savvy about the limits of revolution and resistance." Order signed, personalized copies from Dark Delicacies https://www.darkdel.com/store/p1840/Available_Now%3A_Attack_Surface.html
"How to Destroy Surveillance Capitalism": an anti-monopoly pamphlet analyzing the true harms of surveillance capitalism and proposing a solution. https://onezero.medium.com/how-to-destroy-surveillance-capitalism-8135e6744d59?sk=f6cd10e54e20a07d4c6d0f3ac011af6b) (signed copies: https://www.darkdel.com/store/p2024/Available_Now%3A__How_to_Destroy_Surveillance_Capitalism.html)
"Little Brother/Homeland": A reissue omnibus edition with a new introduction by Edward Snowden: https://us.macmillan.com/books/9781250774583; personalized/signed copies here: https://www.darkdel.com/store/p1750/July%3A__Little_Brother_%26_Homeland.html
"Poesy the Monster Slayer" a picture book about monsters, bedtime, gender, and kicking ass. Order here: https://us.macmillan.com/books/9781626723627. Get a personalized, signed copy here: https://www.darkdel.com/store/p2682/Corey_Doctorow%3A_Poesy_the_Monster_Slayer_HB.html#/.
Unauthorized Bread: a middle-grades graphic novel adapted from my novella about refugees, toasters and DRM, FirstSecond, 2025
Today's top sources:
Currently writing:
A Little Brother short story about DIY insulin PLANNING
Picks and Shovels, a Martin Hench noir thriller about the heroic era of the PC. FORTHCOMING TOR BOOKS FEB 2025
Latest podcast: Spill, part one (a Little Brother story) https://craphound.com/littlebrother/2024/10/06/spill-part-one-a-little-brother-story/
This work – excluding any serialized fiction – is licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.
https://creativecommons.org/licenses/by/4.0/
Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.
Blog (no ads, tracking, or data-collection):
Newsletter (no ads, tracking, or data-collection):
https://pluralistic.net/plura-list
Mastodon (no ads, tracking, or data-collection):
Medium (no ads, paywalled):
Twitter (mass-scale, unrestricted, third-party surveillance and advertising):
Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):
https://mostlysignssomeportents.tumblr.com/tagged/pluralistic
"When life gives you SARS, you make sarsaparilla" -Joey "Accordion Guy" DeVilla
I'm posting development notes on the wordland product in my wordpress/mastodon account. I'm starting to like using the new editor. Today I switched the format we save drafts in from HTML to Markdown. More consistent with my belief that Markdown is the ideal subset of web writing features for the social web.
New IPANDETEC Report Shows Panama’s ISPs Still Lag in Protecting User Data [Deeplinks]
Telecom and internet service providers in Panama are
entrusted with the personal data of millions of users, bearing a
responsibility to not only protect users’ privacy but also be
transparent about their data handling policies. Digital rights
organization IPANDETEC has
evaluated how well companies have lived up to their
responsibilities in ¿Quien Defiende Tus
Datos? (“Who Defends Your Data?”)
reports released in 2019, 2020, and 2022, which showed persistent
deficiencies.
IPANDETEC’s new Panama report, released
today, reveals that, with a few notable exceptions, providers in
Panama continue to struggle to meet important best practice
standards like publishing transparency reports, notifying users
about government requests for their data, and requiring authorities
to obtain judicial authorization for data requests, among other
criteria.
As in its prior reports, IPANDETEC assessed mobile
phone operators Más Móvil, Digicel, and Tigo. Claro,
assessed in earlier reports, was acquired by Más Móvil in
2021 and as such was dropped. This year’s report also ranked
fixed internet service providers InterFast Panama, Celero Fiber,
and DBS Networks.
Companies were evaluated in nine categories,
including disclosure of data protection policies and transparency
reports, data security practices, public promotion of human rights,
procedures for authorities seeking user data, publication of
services and policies in native languages, and making policies and
customer service available to people with disabilities. IPANDETEC
also assessed whether mobile operators have opposed mandatory
facial recognition for users' activation of their
services.
Companies are awarded stars and partial stars for meeting
parameters set for each category. Más Móvil scored
highest with four stars, while Tigo received two and one-half stars
and Digicel one and a half. Celero scored highest among fixed
internet providers with one and three-quarters stars. Interfast and
DBS received three-fourths of a star and one-half star,
respectively.
The report showed progress on a few fronts:
Más Móvil and Digicel publish privacy policy for their
services, while Más Móvil has committed to follow
relevant legal procedures before providing authorities with the
content of its users’ communications, a significant
improvement compared to 2021.
Tigo maintains its commitment to require judicial
authorization or follow established procedures before providing
data and to reject requests that don’t comply with legal
requirements.
Más Móvil and Tigo also stand out for
joining human rights-related initiatives. Más Móvil is a
signatory of the United Nations Global Compact and belongs to
SUMARSE, an organization that promotes Corporate Social
Responsibility (CSR) in Panama.
Tigo, meanwhile, has projects aimed at digital and
social transformation, including Conectadas: Empowering Women in
the Digital World, Entrepreneurs in Action: Promoting the Success
of Micro and Medium-sized Enterprises, and Connected Teachers: The
Digital Age for teachers.
All three fixed internet service providers
received partial credit for meeting some parameters for digital
security.
Still, the report showed that internet providers in Panama
have a long way to go to incorporate best practices in most
categories. For instance, no company published transparency reports
with detailed quantitative data for Panama.
Both mobile and fixed internet telecommunications
companies are not committed to informing users about requests or
orders from authorities to access their personal data, according to
the report. As for digital security, companies have chosen to
maintain a passive position regarding the promotion of digital
security.
None of the mobile providers have opposed
requiring users to undergo facial recognition to register or access
their mobile phone services. As the report underlines, companies'
resignation "marks a significant step backwards and affects human
rights, such as the right to privacy, intimacy and the protection
of personal data." Mandating face recognition as a condition to use
mobile services is "an abusive intrusion into the privacy of users,
setting a worrying precedent with the supposed objective of
fighting crime," the report says.
No company has a website or relevant documents
available in native languages. Likewise, no company has a
declaration and/or accessibility policy for people with
disabilities (in physical and digital environments) or important
documents in an accessible format.
But it's worth noting that Más Móvil has
alternative channels for people with sensory disabilities and
Contact Center services for blind users, as well as remote control
with built-in voice commands to improve accessibility. Tigo,
too, stands out for being the only company to have a section on its
website about discounts for retired and disabled people.
IPANDETEC’s Quien Defiende
Tus Datos series of reports is part of a
region-wide
initiative, akin to EFF’s Who Has Your
Back project, which tracks and rates ISPs’
privacy policies and commitments in Latin America and
Spain.
I Saw U: At the Emergency Room in Burien, Wearing Mushroom Socks, and Wishing You Could Find Shorter Pants [The Stranger]
See someone? Say something! by Anonymous
St Anne ER in Burien
I was on crutches, not well. We made eye contact after I was done checking in and you wished me well. I’d love to know more about you.
at a ballard cafe
I was at my barista job. You liked my Ghost t-shirt and we chatted about tattoos for a bit. Wish I’d had the courage to ask you out!!
Sexy TA studying Urban Planning
You sat across me in the Teaching Assistant orientation. Your mustache and research interests got me. I was too shy to ask - find me in office hours?
Birthday Girl on the Dock 10/6
Gasworks Brewing: you, behind me, blue socks; touched my shoulder, said happy birthday, left on a boat with the guys. Come back and help me celebrate?
Whats your chipotle order?
You were in line at the chipotle on 4th Ave , then i saw you again at target... was this a sign? If so.. do you want to grab lunch at chipotle?
book fair babe
i complimented your mushroom socks, but what i really wanted to say was: you’re so pretty, want to be friends?
Long Hair, Short Legs: Hiking Pant Woes
Your bright red ponytail caught my attention at the hike-a-thon launch, and we shared a long glance about never finding pants short enough….
A Murder Of Two
You, the raven haired beauty making art - we chatted briefly, and I felt seen. Let's be crows together and live inside the city's skull.
Is it a match? Leave a comment here or on our Instagram post to connect!
Did you see someone? Say something! Submit your own I Saw U message here and maybe we'll include it in the next roundup!
OS/2 TCPBEUI name resolution [OSnews]
Sometimes I have the following problem to deal with: An OS/2 system uses NetBIOS over TCP/IP (aka TCPBEUI) and should communicate with a SMB server (likewise using TCPBEUI) on a different subnet. This does not work on OS/2 out of the box without a little bit of help.
↫ Michal Necasek
My 40° fever certainly isn’t helping, but goes way over my head. Still, it seems like an invaluable article for a small group of people, and anyone playing with OS/2 and networking from here on out can refer back this excellent and detailed explanation.
Ubuntu 24.10 released [LWN.net]
Version 24.10 of the Ubuntu distribution is out. This release includes GNOME 47, Linux 6.11, security enhancements for managing Personal Package Archives (PPAs), experimental security controls for Snap packages, and more.
Slog AM: BIG NEWS...Offering Housing Helps End Homelessness, Scarecrow Saved for Two Years, Hurricane Milton Makes Landfall [The Stranger]
The Stranger's morning news roundup. by Ashley Nerbovig
The coldest of takes: Shocker! If you offer people housing instead of just sweeping them, sometimes you might actually be able to help people escape the cycle of homelessness! The Seattle Times wrote about Washington's Encampment Resolution Program, a strategy where the state offers subsidized housing to the people they're sweeping from highways. Of the 18 encampments the state closed in King County under this program since 2022, 90 percent of the people moved inside, which amounts to about 420 people, and 74 percent have remained housed. Now, of course, the program's funding is potentially in danger. Seattle sees less success with its strategy of declaring an encampment an "obstruction" and offering people an overcrowded shelter that may not meet their needs.
Scarecrow stays open another two years: The beloved video store, Scarecrow Video, raised more than $600,000 from community donations since announcing earlier this year that it was in danger of shutting down. The money should be enough to keep it in business for another two years, according to KING 5. More people keep turning up to rent videos as well. Scarecrow Executive Director Kate Barr said she hopes that the store manages to raise a total of $1.8 million to stay in business longer than just the two years.
Speaking of Scarecrow: If you haven't checked out our Scarecrow Psychotronic Challenge series yet, you should. Every October, Scarecrow compiles a list of some scary stuff for the Halloween season. This year, in solidarity with the video store, our staff has started watching the movies and sharing daily recommendations.
Pissing off the trash pandas: A woman in Washington had to call the Kitsap County Sheriff's Office after the family of raccoons she'd started feeding became aggressive and turned up in a horde of 50-100 hungry little beasts, according to the Associated Press. Great follow-up to If You Give a Moose a Muffin. The video is incredible. They must talk to each other.
she knows what she did https://t.co/DsH6kwZJVs
— Brett Hamil (@BrettHamil) October 10, 2024
Ok, what's up with the Northern Lights? We're supposed to be able to see them again tonight, and now the National Weather Service has a Northern Lights forecast page. I'm not going to look up whats going on with them, and neither should you. But can we just talk about it? Is it that we've always been able to see them from here, or ... Okay, I couldn't help it, I just went and looked it up. Apparently the sun's magnetic field reaches its peak every 11 years, and that makes the Northern Lights more visible. Is that OK? Are we OK?
Oh, speaking of the Weather Service: High of 60 today, mostly sunny, the perfect Fall day.
Consent Decree might end: The US Department of Justice predicts an end to federal oversight of the Seattle Police Department in the next few months, according to the Seattle Times. If true, that would release the City from spending literally hundreds of thousands of dollars a year on monitoring fees and return more power over the police department to the people. On the other hand, it could potentially mean that the one thing semi keeping the City barely paying lip service to accountability finally ends. Federal Judge James Robart said he would not lift the decree unless the City made serious progress to implement accountability measures in the new Seattle Police Officers Guild contract. The City made some measly improvements to accountability in the new contract, but not much. The City's scheduled to appear before Robart next week to plead their case.
Hurricane Milton makes landfall: Milton hit Florida last night, causing more than two million homes to lose power and ravaging the coastal state as a Category 3 storm, according to the Associated Press. At least four people died, and the storm caused more than 100 tornados.
The right-wing really loses it: These kooks. Marjorie Taylor Greene is out here claiming the government controls the weather, according to the Associated Press. President Joe Biden's trying to clamp down on this, but honestly how do you stop people from believing what they want to believe? Meanwhile, Biden's administration has prepared millions of meals and liters of water as well as prepped military search and rescue teams in anticipation of the storm.
Inflation deflates: The Consumer Price Index shows inflation has dropped to its lowest level since 2021. Good for the economy! Benefits everybody! Remember that? It's at three percent now, which is close to the Federal Reserve's ideal inflation rate of two percent. Good job everybody on going so broke again that we can't all just be at home, ordering food from restaurants, and eagerly searching out suppliers of different-colored masks.
Israel and Iran: Israel's security cabinet meets Thursday evening to figure out their response to a missile attack from Iran on October 1, according to the Washington Post. Israel has continued to pepper Iran with airstrikes.
My computer speakers continue to be totally fucked: Someone let me know if this song is any good.
Quick note about last night's Mets win over Philly. The series is over, the next game on Sunday will be against the winner in the west, either San Diego or Los Angeles. Last night's game was stressful, low scoring, until the Mets star shortstop hit a freaking grand slam home run, and that was all the scoring we needed. The Mets are the hottest team in baseball. It doesn't feel like a long time since 2015 when they got to the World Series before crashing. Who knows how far we'll get this year, honestly -- I'm surprised (and pleased) we got this far. And in the meantime, I caught a tiny bit of last night's preseason game between the Knicks and some other team I don't care about. They have two new stars to add to the roster after losing one star as a free agent, and trading two others for the second new star. All in all, very enticing. New York has some excellent sports teams, which is unusual, because it isn't just the Jankees this time, a team I will, I promise, never root for. Quite the opposite. I will root for whoever they are playing. You can probably tell I don't like them. 😄
Twelve days until the first worldwide strategy meetup [Seth's Blog]
There are now 280 cities being organized.
You can find the list and all the details by clicking here.
It’s free, and it works better when you become a part of it.
Find the others. Connect, inspire and lead. It’s a great excuse to organize some friends and colleagues and have a conversation that can make a difference.
The site we’re working with has upgraded the software and it’s easier to use now. There are more than a thousand people signed up already, and I hope you can join us.
A correction to the awaitable lock for C++ PPL tasks [The Old New Thing]
Some time ago, I created an awaitable lock for PPL tasks. But it turns out that there’s a bug in that code.
The idea behind the awaitable lock was that everybody who was awaiting the lock subscribed to a completion event, and when the owner of the lock released the lock, the code signaled the completion event, which then woke up all of the waiters, one of whom would get the lock and proceed, and the others would loop back and wait some more.
The code that releases the lock enters a private mutex, marks the lock as available, swaps in a new completion event, and then signals everyone waiting on the old one.
void Release() { std::lock_guard<std::mutex> guard(mutex); locked = false; auto previousCompletion = completion; completion = Concurrency::task_completion_event<void>(); previousCompletion.set(); }
Unfortunately, there’s a bug here: The previous subscribers are woken while still holding the private mutex. This means that you are now running arbitrary code while holding a private mutex, which is a bad idea. In particular, one of the items that was waiting for the completion might try to enter that same mutex from the same thread, and now we have an illegal recursive acquisition.¹
We need to drop the lock before signaling the completion.
void Release() { Concurrency::task_completion_event<void> previousCompletion; { std::lock_guard<std::mutex> guard(mutex); locked = false; previousCompletion = completion; completion = Concurrency::task_completion_event<void>(); } previousCompletion.set(); }
This could be tightened up to
void Release() { auto previousCompletion = [&] { auto guard = std::lock_guard(mutex); locked = false; return std::exchange(completion, {}); }(); previousCompletion.set(); }
or if you’re really in a mood:
void Release() { [&] { auto guard = std::lock_guard(mutex); locked = false; return std::exchange(completion, {}); }().set(); }
The original article has been retroactively updated.
¹ Indeed, we know that all of them will try to enter the same mutex, because that’s the point! What we don’t know is what thread it will happen on.
The post A correction to the awaitable lock for C++ PPL tasks appeared first on The Old New Thing.
100,000 Followers On Bluesky and Other Notes [Whatever]
Today feels like a bit of an auspicious day for my social media: I’ve gotten to 100,000 followers on Bluesky, which is at the moment the place on social media where I hang out the most. It took me about 18 months to accrue that number, which is less than half the time it took for me to get the same number on Twitter. In a world where random people can get hundreds of thousands of followers on Instagram or TikTok, the 100K figure is relatively modest, but that number is still roughly twice the population of the whole county I live in. It’s not bad, you know?
More importantly (to me, anyway), the 100K followers I have on Bluesky are mostly actual live humans, which is a thing that was not guaranteed with the former Twitter, where bots and fake accounts abound. To be clear, there are fake accounts on Bluesky, they just don’t get as much traction thanks to the site’s social architecture (which eschews algorithms) and the general site ethos of blocking obvious bots and shill accounts. I like talking to mostly actual live humans! It makes the site more fun.
Social media nerds, and there are some out there, will point out that the size of Bluesky is relatively modest with just under 11 million users (compare with the former Twitter at 300 million users, or Threads with 175 million); Bluesky is a “niche” site, if you will. And that’s true, but it’s a niche I enjoy hanging out in. And anyway, as science fiction writer, I am well versed in occupying a “niche.” Niches are doing okay for me in my life. The people who are on Bluesky are (mostly) interesting and enjoyable to be among, and for social media, which I use rather more for personal entertainment and socialization rather than “building my brand,” that’s really what I want out of it. I don’t need to make money off my social media experience. I need to enjoy myself on it.
And indeed, I do enjoy myself on Bluesky. It’s not the only social media site I use — I am also pretty active on Threads, and somewhat active on Mastodon — but it’s the place I go to “hang out” online when I’m not, you know, here. A lot of people who left the former Twitter are there now, and there are some people I got to know through Bluesky itself without a former connection on another site. It’s its own thing, not a substitute for other places.
If you’re looking for another and different place to be online, I can recommend it. Check it out. You know I’ll be there.
— JS
[$] On Rust in enterprise kernels [LWN.net]
At the recently concluded Maintainers Summit, it was generally agreed that the Rust experiment would continue, and that the path was clear for more Rust code to enter the kernel. But the high-level view taken at such gatherings cannot always account for the difficult details that will inevitably arise as the Rust work proceeds. A recent discussion on the nouveau mailing list may have escaped the notice of many, but it highlights some of the problems that will have to be worked out as important functionality written in Rust heads toward the mainline.
Updating Firefox is highly recommended [LWN.net]
Mozilla has released Firefox versions 131.0.2, ESR 128.3.1, and ESR 115.16.1. These updates address a severe, remotely exploitable code-execution vulnerability that is evidently already being exploited. Updating to a fixed release seems like a wise thing to do.
Freexian Collaborators: Debian Contributions: Packaging Pydantic v2, Reworking of glib2.0 for cross bootstrap, Python archive rebuilds and more! (by Anupa Ann Joseph) [Planet Debian]
Contributing to Debian is part of Freexian’s mission. This article covers the latest achievements of Freexian and their collaborators. All of this is made possible by organizations subscribing to our Long Term Support contracts and consulting services.
Pydantic is a useful library for validating data in Python using type hints: Freexian uses it in a number of projects, including Debusine. Its Debian packaging had been stalled at 1.10.17 in testing for some time, partly due to needing to make sure everything else could cope with the breaking changes introduced in 2.x, but mostly due to needing to sort out packaging of its new Rust dependencies. Several other people (notably Alexandre Detiste, Andreas Tille, Drew Parsons, and Timo Röhling) had made some good progress on this, but nobody had quite got it over the line and it seemed a bit stuck.
Colin upgraded a few Rust libraries to new upstream versions, packaged rust-jiter, and chased various failures in other packages. This eventually allowed getting current versions of both pydantic-core and pydantic into testing. It should now be much easier for us to stay up to date routinely.
Simon McVittie (not affiliated with Freexian) earlier
restructured the libglib2.0-dev
such that it would
absorb more functionality and in particular provide tools for
working with .gir
files. Those tools practically
require being run for their host architecture (practically this
means running under qemu-user
) which is at odds with
the requirements of architecture cross bootstrap. The
qemu
requirement was expressed in package dependencies
and also made people unhappy attempting to use
libglib2.0-dev
for i386
on
amd64
without resorting to qemu
. The use
of qemu
in architecture bootstrap is particularly
problematic as it tends to not be ready at the time bootstrapping
is needed.
As a result, Simon proposed and implemented the introduction of
a libgio-2.0-dev
package providing a subset of
libglib2.0-dev
that does not require
qemu
. Packages should continue to use
libglib2.0-dev
in their Build-Depends
unless involved in architecture bootstrap. Helmut reviewed and
tested the implementation and integrated the necessary changes into
rebootstrap.
He also prepared a patch for libverto to use the new
package and proposed adding forward
compatibility to glib2.0.
Helmut continued working on
adding cross-exe-wrapper to architecture-properties and
implemented autopkgtests later improved by Simon. The
cross-exe-wrapper
package now provides a generic
mechanism to a program on a different architecture by using
qemu
when needed only. For instance, a dependency on
cross-exe-wrapper:i386
provides a
i686-linux-gnu-cross-exe-wrapper
program that can be
used to wrap an ELF executable for the i386
architecture. When installed on amd64
or
i386
it will skip installing or running
qemu
, but for other architectures qemu
will be used automatically. This facility can be used to support
cross building with targeted use of qemu
in cases
where running host code is unavoidable as is the case for GObject
introspection.
This concludes the joint work with Simon and Niels Thykier on
glib2.0
and architecture-properties
resolving known architecture bootstrap regressions arising from the
glib2.0
refactoring earlier this year.
As Guillem Jover (not affiliated with Freexian) continues to
work on adding metadata tracking to dpkg
, the question
arises how this affects existing packages. The dedup.debian.net infrastructure
provides an easy playground to answer such questions, so Helmut
gathered file metadata from all binary packages in unstable and
performed an explorative analysis. Some results include:
/usr
-merge is not the only cause for aliasing
problems in Debian.
Guillem also performed a cursory analysis and reported other
problem categories such as mismatching directory permissions for
directories installed by multiple packages and thus gained a better
understanding of what consistency checks dpkg
can
enforce.
Last month Stefano started to write some tooling to do
large-scale rebuilds in debusine,
starting with finding packages that had already started to fail to
build from source (FTBFS) due to the removal of setup.py
test
. This month, Stefano did some more rebuilds, starting
with experimental versions of dh-python
.
During the Python 3.12 transition, we had added a dependency on python3-setuptools to dh-python, to ease the transition. Python 3.12 removed distutils from the stdlib, but many packages were expecting it to still be available. Setuptools contains a version of distutils, and dh-python was a convenient place to depend on setuptools for most package builds. This dependency was never meant to be permanent. A rebuild without it resulted in mass-filing about 340 bugs (and around 80 more by mistake).
A new feature in Python 3.12, was to have unittest’s test runner exit with a non-zero return code, if no tests were run. We added this feature, to be able to detect tests that are not being discovered, by mistake. We are ignoring this failure, as we wouldn’t want to suddenly cause hundreds of packages to fail to build, if they have no tests. Stefano did a rebuild to see how many packages were affected, and found that around 1000 were. The Debian Python community has not come to a conclusion on how to move forward with this.
As soon as Python 3.13 release candidate 2 was available, Stefano did a rebuild of the Python packages in the archive against it. This was a more complex rebuild than the others, as it had to be done in stages. Many packages need other Python packages at build time, typically to run tests. So transitions like this involve some manual bootstrapping, followed by several rounds of builds. Not all packages could be tested, as not all their dependencies support 3.13 yet. The result was around 100 bugs in packages that need work to support Python 3.13. Many other packages will need additional work to properly support Python 3.13, but being able to build (and run tests) is an important first step.
Carles prepared the update of python-pyaarlo package to a new upstream release.
Carles worked on updating python-ring-doorbell to a new upstream release. Unfinished, pending to package a new dependency python3-firebase-messaging RFP #1082958 and its dependency python3-http-ece RFP #1083020.
Carles improved po-debconf-manager. Main new feature is that it can open Salsa merge requests. Aiming for a lightning talk in MiniDebConf Toulouse (November) to be functional end to end and get feedback from the wider public for this proof of concept.
Carles helped one translator to use po-debconf-manager (added compatibility for bullseye, fixed other issues) and reviewed 17 package templates.
Colin upgraded the OpenSSH packaging to 9.9p1.
Colin upgraded the various YubiHSM packages to new upstream versions, enabled more tests, fixed yubihsm-shell build failures on some 32-bit architectures, made yubihsm-shell build reproducibly, and fixed yubihsm-connector to apply udev rules to existing devices when the package is installed. As usual, bookworm-backports is up to date with all these changes.
Colin fixed quite a bit of fallout from setuptools
72.0.0 removing setup.py test
, backported a large
upstream patch set to make buildbot work with
SQLAlchemy 2.0, and upgraded 25 other Python packages to new
upstream versions.
Enrico worked with Jakob Haufe to get him up to speed for managing sso.debian.org
Raphaël did remove spam entries in the list of teams on tracker.debian.org (see #1080446), and he applied a few external contributions, fixing a rendering issue and replacing the DDPO link with a more useful alternative. He also gave feedback on a couple of merge requests that required more work. As part of the analysis of the underlying problem, he suggested to the ftpmasters (via #1083068) to auto-reject packages having the “too-many-contacts” lintian error, and he raised the severity of #1076048 to serious to actually have that 4 year old bug fixed.
Raphaël uploaded zim and hamster-time-tracker to fix issues with Python 3.12 getting rid of setuptools. He also uploaded a new gnome-shell-extension-hamster to cope with the upcoming transition to GNOME 47.
Helmut sent seven patches and sponsored one upload for cross build failures.
Helmut uploaded a Nagios/Icinga plugin check-smart-attributes for monitoring the health of physical disks.
Helmut collaborated on sbuild
reviewing and
improving a MR for refactoring the unshare backend.
Helmut sent a patch fixing coinstallability
of gcc-defaults
.
Helmut continued to monitor the evolution of the
/usr
-move. With more and more key packages such as
libvirt
or fuse3
fixed. We’re
moving into the boring long-tail of the transition.
Helmut proposed updating the meson buildsystem in debhelper to use env2mfile.
Helmut continued to update patches maintained in rebootstrap.
Due to the work on glib2.0
above, rebootstrap moves a
lot further, but still fails for any architecture.
Santiago reviewed some Merge Request in Salsa CI, such as: !478, proposed by Otto to extend the information about how to use additional runners in the pipeline and !518, proposed by Ahmed to add support for Ubuntu images, that will help to test how some debian packages, including the complex MariaDB are built on Ubuntu.
Santiago also prepared !545, which will make the reprotest job more consistent with the result seen on reproducible-builds.
Santiago worked on different tasks related to DebConf 25. Especially he drafted the fundraising brochure (which is almost ready).
Thorsten Alteholz uploaded package libcupsfilter
to
fix the autopkgtest and a dependency problem of this package. After
package splix
was abandoned by upstream and
OpenPrinting.org adopted its maintenance, Thorsten uploaded their
first release.
Anupa published posts on the Debian Administrators group in LinkedIn and moderated the group, one of the tasks of the Debian Publicity Team.
Anupa helped organize DebUtsav 2024. It had over 100 attendees with hand-on sessions on making initial contributions to Linux Kernel, Debian packaging, submitting documentation to Debian wiki and assisting Debian Installations.
CodeSOD: Idtoic Mistakes [The Daily WTF]
Working at a company where the leadership started as technical people has its advantages, but it can also carry costs. Arthur is in one such environment, and while it means that management and labor have a common vocabulary, the company leadership forgets that they're not in a technical role anymore. So they still like to commit code to the project. And that's how things like this happen:
if( this.idtoservice != null )
{
sOwner = this.idtoservice.Common.Security.Owner;
}
else if( this.idtoservice != null )
{
sOwner = this.idtoservice.Common.Security.Owner;
}
else if( this.idtoservice != null )
{
sOwner = this.idtoservice.Common.Security.Owner;
}
This isn't one commit from the CEO, it's 4 different commits. It seems like the CEO, perhaps, doesn't understand merge conflicts?
This particular bit of bad code is at least absolutely harmless and likely gets compiled out, but it doesn't mean that Arthur doesn't feel the urge to drink every time his CEO makes a new commit.
New stable kernels released [LWN.net]
Greg Kroah-Hartman has announced the release of the 6.11.3, 6.10.14, 6.6.55, and 6.6.56 stable kernels. The
6.6.56 release fixes a problem with building perf in 6.6.55; "If
you do not use the perf tool in the 6.6.y tree, there is no need to
upgrade.
". Meanwhile, 6.10.14 is the last of the 6.10.y series,
so users should now be moving to 6.11.y. Other than 6.6.56, they
contain the usual long list of important fixes throughout the
kernel tree.
Security updates for Thursday [LWN.net]
Security updates have been issued by Debian (chromium), Fedora (firefox, koji, unbound, webkit2gtk4.0, and xen), Red Hat (glibc, net-snmp, and tomcat), Slackware (mozilla), SUSE (apache-commons-io, buildah, cups-filters, liboath-devel, libreoffice, libunbound8, podman, and redis), and Ubuntu (cups-browsed, cups-filters, edk2, linux-raspi-5.4, and oath-toolkit).
Deebot Robot Vacuums Are Using Photos and Audio to Train Their AI [Schneier on Security]
An Australian news agency is reporting that robot vacuum cleaners from the Chinese company Deebot are surreptitiously taking photos and recording audio, and sending that data back to the vendor to train their AIs.
Ecovacs’s privacy policy—available elsewhere in the app—allows for blanket collection of user data for research purposes, including:
- The 2D or 3D map of the user’s house generated by the device
- Voice recordings from the device’s microphone
- Photos or videos recorded by the device’s camera
It also states that voice recordings, videos and photos that are deleted via the app may continue to be held and used by Ecovacs.
No word on whether the recorded audio is being used to train the vacuum in some way, or whether it is being used to train a LLM.
Slashdot thread.
Grrl Power – Dabbler’s Science Corner #5 [Grrl Power]
Yeah! Double portmanteau! Ouroboros + Organism + Orgasm = Ourobororganasm! Alert the… uh, people in charge of writing awards. Pulitzer! That’s the guy. Or the Nebula. Yeah. Alert Thaddeus Q. Nebula, which is is a fictional person I assume the Nebula award is named after, because of his resemblance to a gaseous stellar body hundreds of light years across.
If you wore an Ourobororganasm as a cock sheath while having sex, it would count as a very weirdly intimate threesome. I mean, if someone was inhabiting the Ourobororganasm at the time. I mean, otherwise, I’m not sure I see the point, unless one partner or the other was interested in the extra girth or something.
The Universal Speed Limit and the Speed of Light are the same thing, as far as I can tell. Basically every massless particle travels at the same speed, but as humans are most familiar with light, it won the naming competition. Dabbler tends to say “U.S.L.” because she’s aware of and works with all sorts of massless particles in her tinkering. Though “c” is the same thing. I think it’s a lowercase “c” specifically.
You know, since Supers don’t get fat, they could just eat donuts and stuff swimming in hollandaise sauce all day and not have to worry about it. The do, however, still have to keep up with proper nutrition. There’s definitely a Super or two out there that has gotten scurvy from eating nothing but cake. If only they had mixed it up with the occasional blueberry muffin and lemon scone.
I know cave paintings aren’t “technology” but… I mean, they kind of are? They’re definitely at the bottom of the tech tree, very slightly higher than “throw rock” but, you gotta start somewhere.
The new vote incentive is up!
Dabbler went somewhere tropical, in a very small bikini. As you might guess, it doesn’t stay on for long, which of course, you can see over at Patreon. Also she has an incident with “lotion,” and there’s a bonus comic page as well.
Double res version will be posted over at Patreon. Feel free to contribute as much as you like.
This is a bugfix release for gnunet 0.22.0. It addresses some issues in HELLO URI handling and formatting as well as regressions in the DHT subsystem along with other bug fixes.
The GPG key used to sign is: 3D11063C10F98D14BD24D1470B0998EF86F59B6A
Note that due to mirror synchronization, not all links may be functional early after the release. For direct access try https://ftp.gnu.org/gnu/gnunet/
The inevitable meeting [Seth's Blog]
When the person you could have been meets the person you are becoming, is it going to be a cause for celebration or heartbreak?
This is something we must work on right now, and tomorrow, and every single day until the meeting happens.
If threads are created without a message queue, why can I post to them immediately upon creation? [The Old New Thing]
The documentation for Windows message queues says that
To avoid the overhead of creating a message queue for non-GUI threads, all threads are created initially without a message queue. The system creates a thread-specific message queue only when the thread makes its first call to one of the specific user functions.
A customer was unable to observe the documented behavior. According to their experiments, they found that they were able to post a message to a thread immediately upon its creation!
DWORD CALLBACK ThreadProc(void* parameter) { // This succeeds (?) BOOL success = PostThreadMessage(GetCurrentThreadId(), WM_APP, 314, 159); // So does this (!) MSG msg; success = PeekMessage(&msg, nullptr, 0, 0, PM_REMOVE); // And it's our message (!) if (msg.message == WM_APP) { OutputDebugStringW(L"We received the message (?)\r\n"); } return 0; }
What’s going on here? We were able to post a message to the thread despite it never having created a message queue.
What’s going on here is that
PostThreadMessage
is itself a message
queue creation function!
So at the time you call
PostThreadMessage
, the thread does not
have a message queue. When you call it, the system says,
“First, I need to create a message queue for the current
thread if it doesn’t have one.” This is what creates
the message queue. And then we post the thread message into that
queue.
If you want to see PostThreadMessage
fail due to the lack of a message queue in the destination thread,
then use it to post a message into the message queue of some
other thread.
static auto ready = CreateEvent(nullptr, TRUE, FALSE, nullptr); static auto exit = CreateEvent(nullptr, TRUE, FALSE, nullptr); // Start a thread and wait for it to start. DWORD id; auto thread = CreateThread(nullptr, 0, [](void*) { SetEvent(ready); return WaitForSingleObject(exit, INFINITE); }, nullptr, 0, &id); WaitForSingleObject(ready, INFINITE); // Now that it has started, try to post it a message. auto success = PostThreadMessage(id, WM_APP, 314, 159); // Tell the thread to exit. SetEvent(exit);
In this case, the PostThreadMessage
fails because the thread has not yet created a queue.
The customer’s experiment failed because it made the thread post a thread message to itself, and the act of posting a thread message creates the message queue. To observe the absence of a message queue, you have to do the post from another thread.
So which functions create a message queue?
The functions that are guaranteed to create a message queue are
PeekMessage
, GetMessage
, and
CreateWindow
(or other functions that create
windows like DialogBox
). There may be other functions
that also create a message queue as a side effect (like
PostThreadMessage
), but you
shouldn’t rely on them.
The post If threads are created without a message queue, why can I post to them immediately upon creation? appeared first on The Old New Thing.
don't ever buy pants at the dress store
[$] LWN.net Weekly Edition for October 10, 2024 [LWN.net]
The LWN.net Weekly Edition for October 10, 2024 is available.
Ben Hutchings: FOSS activity in September 2024 [Planet Debian]
Forgot to remind you, but there are NEW vote incentives up for
this month! For Halloween! You can vote for Flipside here:
https://www.topwebcomics.com/vote/2722
The new sketches are also posted on Patreon, which you can see any
time you like: https://www.patreon.com/user?u=4949215
Hairspray Queen [The Stranger]
Did you ever think for one second about anything other than you and your mid hairstyle? by Anonymous
To the girl on the link this morning: You sat next to me at Mountlake Terrace and started doing your make-up, banging your brushes around, and getting powder mostly on you. Fine, live your truth. Check your look with some selfies. But when you started shaking an aerosol can of hairspray? Dry shampoo? Whatever the fuck it was, I was too shocked. There was no way, I naively thought to myself, that you have the audacity to spray a can of hairspray on a packed train at rush hour.
But you sure as shit did spray your melon-y garbage all over me and everyone in our car. You got off at the next stop (U District). It couldn’t have waited? Did you ever think for one second about anything other than you and your mid hairstyle? Truly, fuck you.
Do you need to get something off your chest? Submit an I, Anonymous and we'll illustrate it! Send your unsigned rant, love letter, confession, or accusation to ianonymous@thestranger.com. Please remember to change the names of the innocent and the guilty.
Stranger Suggests: Clairo, Keith Haring: A Radiant Legacy, Text Me Back! Live Podcast Taping, Jubilee, 2024 Indigenous Peoples’ Day Citywide Celebration [The Stranger]
One really great thing to do every day of the week. by Megan Seling WEDNESDAY 10/9
André 3000: New Blue Sun Live In Concert
(MUSIC) In November of last year, André 3000 surprised fans with his first new music in 17 years—but it wasn't what we anticipated. The OutKast rapper released a full-length album entirely of flute music. New Blue Sun is an odyssey of spiritual jazz and electronic ambient sounds that could perfectly soundtrack an Octavia Butler novel. Featuring instruments like mycelial electronics, plants, shakuhachi, and sintir, the album is equal parts acoustic and electronic with multiple types of flutes played by André himself. Joined on stage by album collaborators Carlos Niño, Surya Botofasina, Nate Mercereau, and Deantoni Parks, the ensemble will present an immersive concert that enchants audiences with improvisational "sensory grandeur." (Paramount Theatre, 911 Pine St, 8 pm, $54.50-$144.50, 8 pm, all ages) AUDREY VANN
THURSDAY 10/10(MUSIC) On her third album, Charm, Gen Z sensation Clairo trades the synthy bedroom pop that turned her into a viral star for elegant tunes inspired by '70s soft rock. The resulting body of work is tender and dreamy, evoking the sullen nostalgia of looking through your childhood bedroom—an old diary, a drawer of charmed friendship bracelets, a portable CD player. There’s no better time than the beginning of autumn to relish in the cozy and hushed tunes of Clairo, especially with an opening set from South African singer-songwriter Alice Phoebe Lou. (Paramount Theatre, Oct 10-11, 8 pm, $75.50, all ages) AUDREY VANN
FRIDAY 10/11Blown Away: Gemma Hollister, Morgan Peterson, and Karen Willenbrink-Johnsen
Who Doesn't Love a Bad Idea by Morgan Peterson, blown, carved, fused glass, silver, and mirror. COURTESY OF TRAVER GALLERY(VISUAL ART/TV) If you're anything like me, you spent a significant portion of the pandemic lockdown watching Netflix's Blown Away, in which glassblowers competed for an illustrious residency at the Corning Museum of Glass. (As a one-time Pilchuck Glass School workshop participant, I'm rooting for these crazy kids.) Traver Gallery and Chihuly Garden and Glass have teamed up to present this exhibition, which features works by Blown Away episode winners Gemma Hollister and Karen Willenbrink-Johnson and series winner Morgan Peterson. Willenbrink-Johnson creates naturalistic forms, while Hollister’s works "offer a critique of modern capitalism," and Peterson's cameo portraits of Seattle drag legends "highlight ideals of feminine beauty." (Traver Gallery, 110 Union St #200, through Oct 27, free, all ages) LINDSAY COSTELLO
SATURDAY 10/12 See Jubilee at McCaw Hall October 12-25. COURTESY OF SEATTLE OPERA(PERFORMANCE/MUSIC) This world premiere opera reveals the story of the Fisk Jubilee Singers, whose earliest members came together to alter the post-Civil War musical landscape. With over 40 African American spirituals that were "originally conceived, written, and performed by enslaved peoples," the new work by lauded director Tazewell Thompson chronicles the group's early tours, where they persevered despite violence and even performed for Queen Victoria. Expect something both triumphant and harrowing—Jubilee's 13 performers capture the Fisk Jubilee Singers' struggles and joys. (McCaw Hall, 321 Mercer St, multiple performances Oct 12-25, $35-$215, all ages) LINDSAY COSTELLO
SUNDAY 10/13Keith Haring: A Radiant Legacy
Keith Haring: A Radiant Legacy opens at MoPOP Friday, October 11. Courtesy of Allan Tannenbaum via MoPOP(VISUAL ART) To some, such as myself, Keith Haring is seen as a part of the hiphop culture that emerged in New York City in the early ‘80s. He worked with Dondi White, a master and founder of the kind of graffiti you find today in Berlin, Rome, Tokyo, and, yes, Seattle. Indeed, Haring and Dondi did the cover art for Malcolm McLaren’s bizarre but fundamentally hiphop album Duck Rock. For many, this cover introduced Haring, whose work was simple but not simplistic, breezy but cosmically vibrant. And then there’s the cover of McLaren’s Would Ya Like More Scratchin’. Here, we have nothing but Haring. His chalk-drawn figures popping and locking. You can hear the scratching and cutting. You can see New York City when it was the capital of the art world. Haring will always be hiphop to me. (MoPOP, 325 Fifth Ave N, Oct 12-March 23, 2025, $7 plus museum admission) CHARLES MUDEDE
MONDAY 10/142024 Indigenous Peoples’ Day Citywide Celebration
(COMMUNITY) There are events scattered all across the city for Indigenous Peoples' Day. The day starts at 9:30 am at Pier 62 Waterfront Park, where folks are invited to bring their drums and their tribal flags and join the march along the waterfront to King Street Station, where there will be a rally and round dance for peace at 1:30 pm. Elsewhere around the city, you can see Khu.éex' (featuring A+P star and renowned glass artist Preston Singletary) perform at Westlake Park at 11 am and join the Daybreak Star Indian Cultural Center for dancing, dinner, and bingo at 5 pm. See all the day's details here. Unrelated: Remember that time in 2015 when Mayor Harrell, a city council member at the time, wanted to proclaim "Italian-American Heritage" Month on Indigenous Peoples' Day??? And now he's mayor! What a ride. (See more Indigenous Peoples' Day events here) MEGAN SELING
TUESDAY 10/15Text Me Back! An Election Preview & Live Podcast Taping
Friends forever: Meagan Hatcher-Mays (left) and Lindy West. MEGAN FARMER(PODCASTS) If you don't already know (which also means you don't read every word published in The Stranger, and how dare you), Lindy West and her BFF Meagan Hatcher-Mays have a weekly podcast called Text Me Back. The two have been best friends since high school and each episode feels like you're listening in on their hilarious, relatable phone conversations. They touch on everything from current headlines and political news to adolescent inside jokes and weird pockets of pop culture from the '80s and '90s. It's smart and, at times, delightfully irreverent, and it's a lovely reminder to call your best friends sometime. Or, even better, bring them to this week's live Text Me Back taping, where West and Hatcher-Mays will take "a light-hearted look at what's at stake in November" with some special surprise guests. It will likely be the exact dose of levity we need to stay afloat in our current hellscape. (Seattle Public Library - Central Library, 1000 Fourth Ave, 6 pm, free with RSVP, all ages) MEGAN SELING
Prizefight!Win tickets to rad upcoming events!*
Kehlani
Climate Pledge Arena, October 18
Contest ends 10/16 at 10 am
Lawrence
October 15, the Moore
Contest ends 10/11 at 10 am
*Entering PRIZE FIGHT contests by submitting your email address signs you up to receive the Stranger Suggests newsletter. You can unsubscribe at any time.
Summary of my posts about New Orleans in December 2005.
Thanks for all the good wishes re the 30th anniversary of the start of blogging here. It's not the same as it was at the beginning, but it's still pretty good. And to all the friends no longer with us, and there are plenty of them -- you are appreciated, respected and missed.
December 2005: Biloxi/Gulfport after Katrina.
After Katrina I went to New Orleans to see what was left, esp in the areas where there was a 15-25 foot storm surge in coastal Mississippi. If you went inland from the coast for a few miles there was nothing left. No trees, only a few skeletal all-concrete buildings where the beach used to be, otherwise everything destroyed. What you don't necessarily realize that it isn't just 15 feet of water, it's 15 feet of stormy ocean with cars and building debris being pushed around floating in the water. This video on Threads provides a visual illustration of what a 9 foot surge is like.
Election Security: When to Worry, When to Not [Deeplinks]
This post was written by EFF intern Nazli Ungan as an update to a 2020 Deeplinks post by Cindy Cohn.
Everyone wants an election that is secure and reliable and
that will ensure that the voters’ actual choices are
reflected in the results. That’s as true as we head into the
2024 U.S. general elections as it always has
been.
At the same time, not every problem in voting
technology or systems is worth pulling the fire alarm—we have
to look at the bigger story and context. And we have to stand
down when our worst fears turn out to be unfounded.
Resilience is the key word when it comes to the security and the integrity of our elections. We need our election systems to be technically and procedurally resilient against potential attacks or errors. But equally important, we need the voting public to be resilient against false or unfounded claims of attack or error. Luckily, our past experiences and the work of election security experts have taught us a few lessons on when to worry and when to not.
See EFF's handout on Election Security here: https://www.eff.org/document/election-security-recommendations
First, and most importantly, it is critical to have systems in place to support election technology and the election officials who run it. Machines may fail, humans may make errors. We cannot simply assume that there will not be any issues in voting and tabulation. Instead, there must be built-in safety measures that would catch any issues that may affect the official election results.
It is critical to have systems in place to support election technology and the election officials who run it.
The most important of these is performing routine,
post-election
Risk-Limiting Audits after every election.
RLAs should occur even if there is no apparent reason to
suspect the accuracy of the results. Risk-limiting audits are
considered the
gold standard of post-election audits and
they give the public justified confidence in the results. This type
of audit entails manually checking randomly selected
ballots until there is convincing evidence that the election
outcome is correct. In many cases, it can be performed by counting
only a small fraction of ballots cast making it cheap enough to be
performed in every election. When the margins are tighter, a
greater fraction of the votes are required to be hand counted, but
this is a good thing because we want to scrutinize close contests
more strictly to make sure the right person won the race.
Some states have started requiring
risk-limiting audits and the rest should catch up!
We (and many others in the election
integrity community) also continue to push for more transparency in
election systems, more independent testing and red-team style
attacks, including end-to-end pre-election testing.
Second, voting on paper ballots continues to be extremely important and the most secure strategy. Ideally, all voters should use paper ballots marked by hand, or with an assistive device, and verify their votes before casting. If there is no paper record, there is no way to perform a post-election audit, or recount votes in the event of an error or a security incident. On the other hand, if voters vote on paper, they can verify their choices are recorded accurately. More importantly, election officials can hand count a portion of the paper ballots to make sure they match with the electronic vote totals and confirm the accuracy of the election results.
What happened in Antrim County, Michigan in the 2020 general elections illustrates the importance of paper ballots. Immediately after the 2020 elections, Antrim County published inaccurate unofficial results, and then restated these results three times to correct the errors, which led to conspiracy theories about the voting systems used there. Fortunately, Antrim County voters had voted on paper ballots, so Michigan was able to confirm the final presidential results by conducting a county-wide hand count and affirm them by a state-wide risk-limiting audit pilot. This would not have been possible without paper ballots.
And we can’t stop there, because not every paper record is created equal. Some direct recording electronic systems are equipped with a type of Voter-Verified Paper Audit Trail that make it difficult for voters to verify their selections and for election officials to use in audits and recounts. The best practice is to have all votes cast on pre-printed paper ballots, marked by hand or an assistive ballot marking device.
Third, it is important to have the entire voting technical system under the control of election officials so that they can investigate any potential problems, which is one of the reasons why internet voting remains a bad, bad idea. There are “significant security, privacy, and ballot secrecy challenges” associated with electronic ballot return systems and they make it “possible for a single attacker to alter thousands or even millions of votes.” Maybe in the future we will have tools to limit the risks of internet voting. But until then, we should reject any proposal that includes electronic ballot return over the internet. Speaking about the internet, voting machines should never connect to the internet, dial a modem, or communicate wirelessly.
Internet voting remains a bad, bad idea
Fourth, every part of the voting process that relies on technology must have paper backups so that voting can continue even when the machines fail. This includes paper backups for electronic pollbooks, emergency paper ballots in case voting machines fail, and provisional ballots in case there voter eligibility cannot be confirmed.
Fifth, we should continue to be vigilant. Election officials have come a long way from when we started raising concerns about electronic voting machines and systems. But the public should keep watching and, when warranted, not be afraid to raise or flag things that seem strange. For example, if you see something like voting machines “flipping” the votes, you should tell the poll workers. This doesn’t necessarily mean there has been a security breach; it can be as simple as a calibration error, but it can mean lost votes. Poll workers can and should address the issue immediately by providing voters with emergency paper ballots.
Sixth, not everything that seems out of the ordinary may be reason to worry. We should build societal resistance to disinformation. CISA's Election Security Rumor vs. Reality website is a good resource that addresses election security rumors and educates us on when we need to be or don’t need to be alarmed. State-specific information is also available online. If we see or hear anything odd about what is happening at a particular locality, we should first hear what the election officials on the ground have to say about it. After all, they were there! We should also pay attention to what non-partisan election protection organizations, such as Verified Voting, say about the incident.
The 2024 presidential election is fast approaching and there may be many claims of computer glitches and other forms of manipulation concerning our voting systems in November. Knowing when to worry and when NOT to worry will continue to be extremely important.
In the meantime, the work of securing our elections and building resilience must continue. While not every glitch is worrisome, we should not dismiss legitimate security concerns. As often said: election security is a race without a finish line!
Scarecrow’s 2024 Psychotronic Challenge: Day 9 [The Stranger]
"Just because the party has ended, that doesn’t mean the activities have." by Julianne Bell
9. BUT AFTER THE GIG: Just because the party has ended, that doesn’t mean the activities have.
Green RoomFor today’s “after the gig” prompt, we’re talking about A24’s critically acclaimed horror-thriller Green Room. Fictional punk band the Ain’t Rights, composed of bassist Pat (the tragically departed Anton Yelchin), guitarist Sam (Alia Shawkat), drummer Reece (Joe Cole), and singer Tiger (Callum Turner), are touring the Pacific Northwest when a series of misadventures leads them to grudgingly perform at a neo-Nazi bar outside Portland. After the members accidentally witness a stabbing committed by a member of the Nazi metal headliner in the venue’s green room, they find themselves locked in a grim battle for their lives, fighting a gang of “red lace” skinheads tooth and nail alongside the murder victim’s friend Amber (Imogen Poots).
The movie sprung from writer and director Jeremy Saulnier’s long-held “obsession” with the idea of creating a thriller set in a green room. One of the things that struck me most about this film was its intentionality and restraint—despite the film’s obvious violence, Saulnier employed gore judiciously, avoiding “gratuitous close-ups” of dead characters. Because it’s so understated, it all feels frighteningly realistic. The second thing that stood out was the use of sound, appropriate for a story about musicians—the unsettling score by brothers Brooke and Will Blair lends to the dark, moody atmosphere, punctuated by tense moments of silence and punk and heavy metal songs. Everyone in the main ensemble delivers powerful performances, but Patrick Stewart is particularly chilling as the aloof white supremacist bar owner Darcy.
The Stranger is participating in Scarecrow Video’s Psychotronic Challenge all month long! Every October, Scarecrow puts together a list of cinematic themes and invites folks to follow along and watch a horror, sci-fi, or fantasy flick that meets the criteria. This year, Stranger staffers are joining the fun and we’re sharing our daily recommendations here on Slog! Read more about Scarecrow’s 2024 challenge—and get the watch list—here. And you can track our daily recommendations here! 💀
City of Seattle Urges “No” Vote on I-2117 to Repeal Climate Commitment Act [The Stranger]
The City’s symbolic stand to protect the environment from the rich and powerful matters less than how they invest money toward that end in their own budget. by Hannah Krieg
The Seattle City Council passed a resolution Tuesday opposing I-2117, a Republican-backed, Let’s-Go-Washington-branded initiative that would overturn the Climate Commitment Act (CCA)’s cap-and-trade system and prevent the state from establishing another one in the future. If the initiative passes, Washington communities will lose billions in funding to improve air quality, public transit, fish habitat, and wildfire prevention, all to allow Washington’s wealthiest corporations to pump millions of metric tons of carbon emissions for free.
The City should get some flowers for their support of the CCA, but, as with any good thing self-proclaimed Democrats have ever done, it's just not enough. To meaningfully protect the CCA, the City must also oppose I-2066, Let’s Go Washington’s electrification ban. And, if the City wants the clout of choosing the environment over the profits of the wealthy few, the City must do so in their own budget, too.
The City of Seattle finally joins Redmond, Kenmore, Burien, and a broad coalition of 500 organizations, including labor groups, environmentalists, tribal nations, and others in calling for a “no” vote on I-2117. Under the cap-and-trade scheme, Washington sets a cap on carbon emissions and auctions off carbon allowances to polluters. Gradually, the state lowers the cap, selling fewer and fewer allowances at higher and higher rates. If everything goes to plan, the system will lower carbon emissions 95 percent from 2022 levels by 2050.
In its first couple of years, the State has raised more than $2 billion from selling carbon allowances. The money that polluters spend to spew absolute bile into our environment goes toward environmental initiatives, investing in populations particularly vulnerable to our changing climate, and projects with Tribal support.
The State has awarded Seattle more than $26 million from the CCA to promote Mayor Bruce Harrell’s Climate Justice Agenda, according to the mayor’s office.
Harrell, who proposed the resolution, sung the CCA’s praises in a press conference last month where he announced a bonus rebate to help residents transition from oil heat to electric heat pumps. The rebate, Harrell noted, would not be possible without a recent $3.2 million award from the CCA.
“The Climate Commitment Act is good policy, simple as that, it's good policy. It defines us as one of the greatest, greenest states in this country,” Harrell said.
If Harrell cares about heat-pump rebates, he’s gotta care about another item on the November ballot, I-2066. Let’s Go Washington may market I-2066 as an initiative to repeal the State’s “gas ban,” but the state has no such ban. In reality, the legislation I-2066 seeks to destroy simply requires Puget Sound Energy (PSE) to create some weak-sauce plan to meet the state’s pollution reduction goals without fucking over the poor. More egregiously, I-2066 forbids the state from ever doing anything ever again to “prohibit, penalize, or discourage the use of gas for any form of heating, or for uses related to any appliance or equipment, in any building.”
Passing I-2066 would weaken the CCA, which funds almost $40 million in incentives to residents and businesses to switch to more energy efficient appliances. Republican lawsuit spammers may see rebates from the CCA as a means to “discourage” the use of gas. Please send those last few paragraphs to the Seattle Times editorial board, which ignorantly endorsed a “yes” vote on the electrification ban but a “no” vote on the CCA that the ban would weaken.
Mayoral spokesperson Callie Craighead said they are considering resolutions on initiatives that “directly impact” City programs. I-2066 would also affect the Building Emissions Performance Standards, which incentivizes electrification, Craighead noted. She said the Mayor’s office “should have more to share on that soon.”
To be clear, Let’s Go Washington’s two other initiatives–I-2109 to repeal the capital gains tax and I-2124 to allow people to opt out of the Long-Term Care Act–would certainly affect people living in Seattle. I-2109 would totally gut public schools, and I-2124 would destroy our one shot at a stronger social safety net for our aging population.
Either way, the Mayor would have to work quickly. As of Tuesday, city council spokesperson Brad Harwood said he had not heard of any other resolutions coming before the council. The next and only opportunity to vote on such a resolution before the general election would be October 22, he said.
The council seemed happy to vote on the resolution this week. Several council members expressed their support for the CCA when Council Member Tammy Morales brought it for a vote — except for Council President Sara Nelson, who historically abstains from non-binding resolutions, especially those that tell the public how to vote. That’s convenient for her if she does not support the cap-and-trade system, but we’ll never know! Harrell’s office did not respond to my attempts to probe him for any shit-talk about Nelson on this.
On the other hand, Council Member Cathy Moore noted that the State earmarked more than $50 million from the CCA to pay for much needed improvements to Seattle’s deadliest road, Aurora Avenue, which runs through Moore’s council district. Council Member Dan Strauss said repealing the CCA would be a “bad deal for Washington.”
Hopefully, Strauss, as the Budget Chair, realizes the Mayor’s proposed budget represents a “bad deal” for Seattle. In his recently unveiled 2025-2026 budget proposal, Harrell raided $330 million from JumpStart revenue—a pot of money generated by taxing the city’s largest corporations and earmarked for affordable housing, environmental initiatives, and economic development for small business—to fill the huge deficit without levying new taxes on the rich or raising existing ones, aside from fees for community centers and the link. In this way, like the Let’s Go Washington initiative, Harrell sacrifices important public goods, particularly those that strengthen climate resiliency, to allow corporations to continue to hoard wealth.
A few members of the city council have hinted in budget briefings that they want to return some of those funds to their intended priorities, but council members, with the exception of Morales, have not made clear their intention to raise taxes to save JumpStart priorities and avoid cuts to other programs funded by the General Fund.
When asked if he planned to propose new taxes, Strauss told The Stranger in a phone call shortly after Harrell released the budget that the council will “explore all options.” Strauss, despite running in his 2023 campaign as one of the fiercest champions for progressive revenue in any of the council races, has been unforthcoming about taxes since in office. The public will understand more about Strauss’s plan in the coming weeks, particularly when he unveils his chair’s package on October 30.
But, to be so fr, the City’s symbolic stand to protect the environment from the rich and powerful matters less than how they invest money toward that end in their own budget.
A Sale of 23andMe’s Data Would Be Bad for Privacy. Here’s What Customers Can Do. [Deeplinks]
The CEO of 23andMe has recently said she’d consider selling the genetic genealogy testing company–and with it, the sensitive DNA data that it’s collected, and stored, from many of its 15 million customers. Customers and their relatives are rightly concerned. Research has shown that a majority of white Americans can already be identified from just 1.3 million users of a similar service, GEDMatch, due to genetic likenesses, even though GEDMatch has a much smaller database of genetic profiles. 23andMe has about ten times as many customers.
Selling a giant trove of our most sensitive data is a bad idea that the company should avoid at all costs. And for now, the company appears to have backed off its consideration of a third-party buyer. Before 23andMe reconsiders, it should at the very least make a series of privacy commitments to all its users. Those should include:
23andMe is already legally required to provide users in certain states with some of these rights. But 23andMe—and any company considering selling such sensitive data—should go beyond current law to assuage users’ real privacy fears. In addition, lawmakers should continue to pass and strengthen protections for genetic privacy.
Existing users can demand that 23andMe delete their data
The privacy of personal genetic information collected by companies like 23andMe is always going to be at some level of risk, which is why we suggest consumers think very carefully before using such a service. Genetic data is immutable and can reveal very personal details about you and your family members. Data breaches are a serious concern wherever sensitive data is stored, and last year’s breach of 23andMe exposed personal information from nearly half of its customers. The data can be abused by law enforcement to indiscriminately search for evidence of a crime. Although 23andMe’s policies require a warrant before releasing information to the police, some other companies do not. In addition, the private sector could use your information to discriminate against you. Thankfully, existing law prevents genetic discrimination in health insurance and employment.
In the event of an acquisition or liquidation through bankruptcy, 23andMe must still obtain separate consent from users in about a dozen states before it could transfer their genetic data to an acquiring company. Users in those states could simply refuse. In addition, many people in the United States are legally allowed to access and delete their data either before or after any acquisition. Separately, the buyer of 23andMe would, at a minimum, have to comply with existing genetic privacy laws and 23andMe's current privacy policies. It would be up to regulators to enforce many of these protections.
Below is a general legal lay of the land, as we understand it.
Existing users can demand that 23andMe delete their data or revoke some of their past consent to research.
If you don’t feel comfortable with a potential sale, you can consider downloading a local copy of your information to create a personal archive, and then deleting your 23andMe account. Doing so will remove all your information from 23andMe, and if you haven’t already requested it, the company will also destroy your genetic sample. Deleting your account will also remove any genetic information from future research projects, though there is no way to remove anything that’s already been shared. We’ve put together directions for archiving and deleting your account here. When you get your archived account information, some of your data will be in more readable formats than others. For example, your “Reports Summary” will arrive as a PDF that’s easy to read and includes information about traits and your ancestry report. Other information, like the family tree, arrives in a less readable format, like a JSON file.
You also may be one of the 80% or so of users who consented to having your genetic data analyzed for medical research. You can revoke your consent to future research as well by sending an email. Under this program, third-party researchers who conduct analyses on that data have access to this information, as well as some data from additional surveys and other information you provide. Third-party researchers include non-profits, pharmaceutical companies like GlaxoSmithKline, and research institutions. 23andMe has used this data to publish research on diseases like Parkinson’s. According to the company, this data is deidentified, or stripped of obvious identifying information such as your name and contact information. However, genetic data cannot truly be de-identified. Even if separated from obvious identifiers like name, it is still forever linked to only one person in the world. And at least one study has shown that, when combined with data from GenBank, a National Institutes of Health genetic sequence database, data from some genealogical databases can result in the possibility of re-identification.
Acquisition talk about a company with a giant database of sensitive data should be a wakeup call for lawmakers and regulators to act
As mentioned above, 23andMe must follow existing law. And it should make a series of additional commitments before ever reconsidering a sale. Most importantly, it must give every user a real choice to say “no” to a data transfer and ensure that any buyer makes real privacy commitments. Other consumer genetic genealogy companies should proactively take these steps as well. Companies should be crystal clear about where the information goes and how it’s used, and they should require an individualized warrant before allowing police to comb through their database.
Government regulators should closely monitor the company’s plans and press the company to explain how it will protect user data in the event of a transfer of ownership—similar to the FTC’s scrutiny of the prior Facebook WhatsApp acquisition.
Lawmakers should also work to pass stronger comprehensive privacy protections in general and genetic privacy protections in particular. While many of the state-based genetic privacy laws are a good start, they generally lack a private right of action and only protect a slice of the U.S. population. EFF has long advocated for a strong federal privacy law that includes a private right of action.
Our DNA is quite literally what makes us human. It is inherently personal and deeply revealing, not just of ourselves but our genetic relatives as well, making it deserving of the strongest privacy protections. Acquisition talk about a company with a giant database of sensitive data should be a wakeup call for lawmakers and regulators to act, and when they do, EFF will be ready to support them.
Feed | RSS | Last fetched | Next fetched after |
---|---|---|---|
@ASmartBear | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
a bag of four grapes | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Ansible | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Bad Science | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Black Doggerel | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Blog - Official site of Stephen Fry | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Charlie Brooker | The Guardian | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Charlie's Diary | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Chasing the Sunset - Comics Only | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Coding Horror | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Cory Doctorow's craphound.com | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Cory Doctorow, Author at Boing Boing | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Ctrl+Alt+Del Comic | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Cyberunions | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
David Mitchell | The Guardian | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Deeplinks | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
Diesel Sweeties webcomic by rstevens | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Dilbert | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Dork Tower | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Economics from the Top Down | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Edmund Finney's Quest to Find the Meaning of Life | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
EFF Action Center | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Enspiral Tales - Medium | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Events | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Falkvinge on Liberty | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Flipside | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Flipside | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Free software jobs | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Full Frontal Nerdity by Aaron Williams | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
General Protection Fault: Comic Updates | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
George Monbiot | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Girl Genius | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Groklaw | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Grrl Power | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Hackney Anarchist Group | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Hackney Solidarity Network | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
http://blog.llvm.org/feeds/posts/default | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
http://calendar.google.com/calendar/feeds/q7s5o02sj8hcam52hutbcofoo4%40group.calendar.google.com/public/basic | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
http://dynamic.boingboing.net/cgi-bin/mt/mt-cp.cgi?__mode=feed&_type=posts&blog_id=1&id=1 | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
http://eng.anarchoblogs.org/feed/atom/ | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
http://feed43.com/3874015735218037.xml | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
http://flatearthnews.net/flatearthnews.net/blogfeed | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
http://fulltextrssfeed.com/ | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
http://london.indymedia.org/articles.rss | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
http://pipes.yahoo.com/pipes/pipe.run?_id=ad0530218c055aa302f7e0e84d5d6515&_render=rss | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
http://planet.gridpp.ac.uk/atom.xml | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
http://shirky.com/weblog/feed/atom/ | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
http://thecommune.co.uk/feed/ | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
http://theness.com/roguesgallery/feed/ | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
http://www.airshipentertainment.com/buck/buckcomic/buck.rss | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
http://www.airshipentertainment.com/growf/growfcomic/growf.rss | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
http://www.airshipentertainment.com/myth/mythcomic/myth.rss | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
http://www.baen.com/baenebooks | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
http://www.feedsapi.com/makefulltextfeed.php?url=http%3A%2F%2Fwww.somethingpositive.net%2Fsp.xml&what=auto&key=&max=7&links=preserve&exc=&privacy=I+accept | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
http://www.godhatesastronauts.com/feed/ | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
http://www.tinycat.co.uk/feed/ | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://anarchism.pageabode.com/blogs/anarcho/feed/ | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
https://broodhollow.krisstraub.comfeed/ | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
https://debian-administration.org/atom.xml | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
https://feeds.feedburner.com/Starslip | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
https://feeds2.feedburner.com/GeekEtiquette?format=xml | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
https://hackbloc.org/rss.xml | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
https://kajafoglio.livejournal.com/data/atom/ | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
https://philfoglio.livejournal.com/data/atom/ | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://pixietrixcomix.com/eerie-cutiescomic.rss | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://pixietrixcomix.com/menage-a-3/comic.rss | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
https://propertyistheft.wordpress.com/feed/ | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://requiem.seraph-inn.com/updates.rss | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://studiofoglio.livejournal.com/data/atom/ | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
https://the-programmers-stone.com/ | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://thecommandline.net/feed/ | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
https://torrentfreak.com/subscriptions/ | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
https://twitter.com/statuses/user_timeline/22724360.rss | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://web.randi.org/?format=feed&type=rss | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
https://www.dcscience.net/feed/medium.co | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
https://www.DropCatch.com/domain/steampunkmagazine.com | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
https://www.DropCatch.com/domain/ubuntuweblogs.org | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
https://www.DropCatch.com/redirect/?domain=DyingAlone.net | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://www.freedompress.org.uk:443/news/feed/ | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
https://www.goblinscomic.com/category/comics/feed/ | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://www.loomio.com/blog/feed/ | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
https://www.newstatesman.com/feeds/blogs/laurie-penny.rss | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
https://www.patreon.com/graveyardgreg/posts/comic.rss | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
https://www.rightmove.co.uk/rss/property-for-sale/find.html?locationIdentifier=REGION^876&maxPrice=240000&minBedrooms=2&displayPropertyType=houses&oldDisplayPropertyType=houses&primaryDisplayPropertyType=houses&oldPrimaryDisplayPropertyType=houses&numberOfPropertiesPerPage=24 | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Humble Bundle Blog | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
I, Cringely | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Irregular Webcomic! | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Joel on Software | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
Judith Proctor's Journal | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Krebs on Security | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Lambda the Ultimate - Programming Languages Weblog | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Looking For Group | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
LWN.net | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Mimi and Eunice | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Neil Gaiman's Journal | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Nina Paley | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
O Abnormal – Scifi/Fantasy Artist | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Oglaf! -- Comics. Often dirty. | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Oh Joy Sex Toy | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
Order of the Stick | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
Original Fiction Archives - Reactor | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
OSnews | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Paul Graham: Unofficial RSS Feed | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Penny Arcade | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Penny Red | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
PHD Comics | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Phil's blog | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Planet Debian | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Planet GNU | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Planet Lisp | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Pluralistic: Daily links from Cory Doctorow | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
PS238 by Aaron Williams | XML | 22:42, Tuesday, 15 October | 23:30, Tuesday, 15 October |
QC RSS | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Radar | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
RevK®'s ramblings | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
Richard Stallman's Political Notes | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Scenes From A Multiverse | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Schneier on Security | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
SCHNEWS.ORG.UK | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
Scripting News | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Seth's Blog | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
Skin Horse | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Spinnerette | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
Tales From the Riverbank | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
The Adventures of Dr. McNinja | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
The Bumpycat sat on the mat | XML | 22:49, Tuesday, 15 October | 23:29, Tuesday, 15 October |
The Daily WTF | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
The Monochrome Mob | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
The Non-Adventures of Wonderella | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
The Old New Thing | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
The Open Source Grid Engine Blog | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
The Stranger | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
towerhamletsalarm | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
Twokinds | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
UK Indymedia Features | XML | 23:00, Tuesday, 15 October | 23:42, Tuesday, 15 October |
Uploads from ne11y | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
Uploads from piasladic | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |
Use Sword on Monster | XML | 22:42, Tuesday, 15 October | 23:29, Tuesday, 15 October |
Wayward Sons: Legends - Sci-Fi Full Page Webcomic - Updates Daily | XML | 22:49, Tuesday, 15 October | 23:35, Tuesday, 15 October |
what if? | XML | 22:49, Tuesday, 15 October | 23:30, Tuesday, 15 October |
Whatever | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
Whitechapel Anarchist Group | XML | 23:28, Tuesday, 15 October | 00:17, Wednesday, 16 October |
WIL WHEATON dot NET | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
wish | XML | 23:14, Tuesday, 15 October | 23:59, Tuesday, 15 October |
Writing the Bright Fantastic | XML | 23:14, Tuesday, 15 October | 23:58, Tuesday, 15 October |
xkcd.com | XML | 23:14, Tuesday, 15 October | 23:57, Tuesday, 15 October |