akkoma - Link to source

As it came up in a few conversations during "FOSDEM week", here's a link to the OpenSSF blog post about why the idea of "attestation for open source projects" is, in my opinion, and others, a bad idea:

openssf.org/blog/2026/01/21/pr…

Yes, FOSS foundations and projects need ways of getting funding, that is very important, but thinking that "attestation is how we will get that money!" might not be such a good idea given the risks involved, and the past experience for those that have attempted it.

Preserving Open Source Sustainability While Advancing Cybersecurity Compliance – Open Source Security Foundation

openssf.org

reshared this

mastodon - Link to source
@privacybrowser on privacy browser 3.19.3 fdroid android. when i use share url from another browser or from other app, it overrides my existing tab. ex. pbrower open tab is ddg.com. i am reading stoutner.com/ on fennec. when i click share button on fennec and choose pbrowser. ddg.com url is replaced with stouter.com is there anyway to change this behaviour

Stoutner – Programs that respect your privacy

www.stoutner.com
@Soren Stoutner

mastodon - Link to source
Iron Blue Intention, Castlevania Bloodlines

Sensitive content

#nvdacomposer

Onj 🎶 reshared this.

mastodon - Link to source

I read a great anti-AI screed today (not linking to avoid a pile-on on the author). I found it to be an almost perfect distillation of the typical anti-GenAI arguments I read. The basic form is:

1. *Lists various ethical problems with LLMs*
2. Therefore a consumer boycott is the only solution
3. Fuck you, you're a monster, etc if you don't agree with me

Do #2 and #3 follow, though? Let's think about it.

#3 #2
in reply to Nolan Lawson

mastodon - Link to source

Nolan Lawson

So overall: I love seeing passionate people defending what they believe in. But all the scolding and moralizing in the world is, frankly, unlikely to achieve their aims other than getting high-fives from the already-converted and maybe making the rest of us feel a bit guilty. Or honestly just chasing us off of public platforms like Mastodon and onto less vicious private alternatives like Discord.
in reply to Nolan Lawson

mastodon - Link to source

miki

If you want advocacy (any kind of advocacy) to work, you have to go where the non-believers are.

This is why the movement to leave X is so self-destructive in that respect. If you want your voice to be heard, don't post to an audience of people who think the same way you do, they're already convinced. Missionaries don't preach on Saint Peter's square because there's no point, they go where they aren't wanted or liked, where nobody thinks like they do.

in reply to Nolan Lawson

mastodon - Link to source

Nolan Lawson

And to end on a hopeful note, what does work? Regulation! Class-action lawsuits! Antitrust! All that stuff is great, and I support it. For example this lawsuit would give some recompense for OSS authors like me whose work was stolen without attribution and without honoring copyleft licenses: githubcopilotlitigation.com/

GitHub Copilot litigation · Joseph Saveri Law Firm & Matthew Butterick

GitHub Copilot litigation
githubcopilotlitigation.com
in reply to Nolan Lawson

mastodon - Link to source

Justin Macleod

The thing that I don't see regulation and all that other great stuff solving is the cognitive effects of AI, which, so short a time after it taking off, have already been demonstrated by studies. People use Chat GPT and that has a negative effect on their problem-solving skills. Also the environmental impact.

But anyway, I think consumer boycots are a way forward but I'm totally against the scolding. Encouraging a boycot is fine,

in reply to Nolan Lawson

mastodon - Link to source

Justin Macleod

saying you're evil and part of the problem if you don't abandon all evil big tech is just self-righteous, holier than thou barrier-building. And we need to work together. Look hard enough at anyone and you will see their double standards, inconsistencies and downright compromise of principles for the sake of avoiding risk or retaining comfort in a difficult life. Is that ideal? No. Is it to be accepted placidly and with resignation? No. But condemnation isn't the answer.

mastodon - Link to source
Part of me wants to make the native VLAN, that is, the VLAN that provides access to devices who don't talk 802.1Q VLAN-speak, one that has Internet-only access, and if any devices want access to the local network, they have to speak to a certain VLAN. Of course, that means that anything requiring local access would need to be 802.1Q compatible to speak VLAN, and be properly configured. The other part of me says that my local network is simply not that big of a security target, and I'd just be creating extra headaches for myself. But the geek in me still insists, LOL. So the decision is not yet decided.
This entry was edited (1 day ago)

mastodon - Link to source

GrapheneOS version 2026012800 released:

grapheneos.org/releases#202601…

See the linked release notes for a summary of the improvements over the previous release.

Forum discussion thread:

discuss.grapheneos.org/d/31269…

#GrapheneOS #privacy #security

GrapheneOS version 2026012800 released - GrapheneOS Discussion Forum

GrapheneOS discussion forum
GrapheneOS Discussion Forum
#privacy #security #grapheneos

glitchsoc - Link to source

RE: tldr.nettime.org/@dk/115962588…

when I wrote my critiques of the centralization of the internet, it wasn't because I hated that internet, I love the internet! Same now, I don't hate AI, there is actually a lot I love about it.

What I don't love is centralization, proprietary software, bad dev practices and exploitation.

Dmytri

2026-01-26 17:31:22

glitchsoc - Link to source

I love conversational interfaces, and I am a big proponent of automation. The trouble is when these tools are not sold as productivity software to empower people who are doing work, with skill and effort, but as ways to create value without skill and effort.
8/11

in reply to SuspiciousDuck

mastodon - Link to source

Jan

To by si měli nějak sjednotit, aby bylo jasné, co se tím myslí. Já bych od obědového menu čekal salát, jídlo, aspoň vodu a kávu. Ale přijde mi k ničemu, když recenzent A pod tím vidí, přeženu, samotné hranolky, zatímco recenzent B pětichodové menu se spárovaným vínem.

(To je samozřejmě kritika těch recenzí, zejména teda asi Googlu, ne tebe ani restaurace.)

mastodon - Link to source

I was so excited about the new feature the Polish government added to our government app recently, the ability to sign documents using a "qualified digital signature", *for free*.

For the non-Europeans in the audience, a qualified signature is the European equivalent of DocuSign, except far less intuitive, far more expensive, and, by extension, not accepted anywhere near as widely. By regulation, it's the only kind that has the same power as a classic paper signature.

This feature requires an electronic ID card, and as my old ID was soon to expire, I recently got one of these anyway.

I tried doing this with two different providers, and it turns out that both of them just return a very helpful "Server error, without even an explanation of what's wrong."

As they say, disappointed but entirely not surprised.

reshared this

in reply to Zvonimir Stanecic

friendica (DFRN) - Link to source

Peter Vágner

@Zvonimir Stanecic @André Polykanine @miki Here in slovakia web based interface for correspondence mailbox and related services like filling in forms is accessible. There is a 3rd party mobile app for signing that is also accessible. QT app for signing in and checking the EID card is technically accessible but it's not that nice to use. Fortunately there is so called mobile identity what allows generating ordinary pass keys for logging into state services. And I can store that pass key in a traditional password vault like bitwarden. On linux signing online forms and related agenda is nightmare. For signing documents I can use various 3rd party tools and it works.
@miki @André Polykanine @Zvonimir Stanecic

mastodon - Link to source

A third medal.

I figured I should give you a proper look. I'm honored.

daniel.haxx.se/blog/2026/02/02…

A third medal

In January 2025 I received the European Open Source Achievement Award. The physical manifestation of that prize was a trophy made of translucent acrylic (or something similar). The blog post I above has a short video where I show it off.
daniel.haxx.se

mastodon - Link to source
The media in this post is not displayed to visitors. To view it, please go to the original post.

Wow! #MapToPoster really does generate some great city posters.

github.com/originalankur/mapto…

GitHub - originalankur/maptoposter: Transform your favorite cities into beautiful, minimalist designs. MapToPoster lets you create and export visually striking map posters with code.

Transform your favorite cities into beautiful, minimalist designs. MapToPoster lets you create and export visually striking map posters with code. - originalankur/maptoposter
GitHub
#maptoposter

Ondřej Caletka reshared this.

mastodon - Link to source
Wow, so flashing Graphene OS on the Pixel 6 Pro was actually quite easy, just plugged the device in and followed the guide at grapheneos.org/install/web. By now I'll just update this thread with any new discoverysI make, and yes I do plan to write a detailed blog post about that as soon as I can and know more, I really can't wait to explore this honestly.
#GrapheneOS

GrapheneOS web installer

Web-based installer for GrapheneOS, a security and privacy focused mobile OS with Android app compatibility.
GrapheneOS
#grapheneos

mastodon - Link to source

We are cooking @fedora 44, and we could use some help testing it before it is ready for prime time!

From February 11 to 13 we will have the Fedora @gnome@floss.social 50 Desktop Test Days!

Check fedoraproject.org/wiki/Test_Da… to find out how you can participate. #fedora #gnome

Test Day:2026-02-11 GNOME 50 Desktop - Fedora Project Wiki

fedoraproject.org
#gnome #fedora @GNOME @Fedora Project
This entry was edited (1 day ago)

reshared this

mastodon - Link to source
Buying a google pixel and installing grapheneOS on it is a much better move for your privacy and mental health than buying any of these crappy e-reader phones or some flip phone that only works over unencrypted communication channels. The rise of 'dumb phones' has lead to an influx of poorly build, insecure phones built by people with no business developing complex tech products. What I find 90% of the time is that people buy these products, realize they actually do rely on features like maps, good cameras, banking apps and all the other smart conveinences of the modern world. Ultimately they end up throwing the device away or in a junk drawer and it just becomes another e-waste waste product. If you want to actually break free from your phone addiction use a product that gices you thr conveinence you want but doesn't try to guide your towards addiction every day. A stock grapheneOS phone is basically a dumb smart phone and thats how it should be.

mastodon - Link to source

#FOSDEM was absolutely WILD! 😻

🤯🤯🤯 Got a hand-made #XMPP developers post card with a personal mention!

🤯🤯 Got a "Thanks Ge0rG, keep up the good work!" while walking the food mile!

🤯 Met an IRC contact from 25 years ago, @olbohlen ("Apparently I'm the only operator of #OpenFire on #Solaris") and connected him to @guusdk who brought stickers and hugs!

🤯 Accidentally met an IRC contact from 20 years ago

🤯 Accidentally met an #FDroid member iRL

🤯 Met @sven (#fail0verflow) after 20 years

#xmpp #fdroid #fosdem #openfire #solaris #fail0verflow @Sven Peter @ 39c3 @Olaf Bohlen @Guus der Kinderen
This entry was edited (1 day ago)
in reply to Bogomil Shopov - Бого #FOSDEM

mastodon - Link to source

Ge0rG @ FOSDEM

and you ran away before I could hand you a bunch of the DI.DAY flyers! 😱 It was a pleasure meeting you and thanks for your talk! We really need to unite our efforts!

Also wanted to ask you what specific messenger "N" stood for in your slides 😉

(P.S.: I've omitted from OP all the people I *intended* to meet, only recounted the unexpected things that happened!)

This entry was edited (1 day ago)
in reply to Jakob Rosin

mastodon - Link to source

Justin Macleod

@jakobrosin Would you count this? I used the copilot website to design internal spaces for a game I play. There is the possibility, within that game to create floors, walls, lighting and ceilings. Not knowing anything about interior design, colour coordination and lighting, I turned to copilot. I found the responses enlightening and they elevated my creation. Not saying this offsets negatives, but I regard it as my biggest AI success. @jscholes
@James Scholes @Jakob Rosin

mastodon - Link to source

Logic Pro 12 will not work offline!

Apple will not give me a 11.2.2 version of Logic Pro that I had before. It's obvious that they want to move to subscription model, but I don't want to. So Apple blames the victim, saying "you should have had a backup"? A reputable company would give me the previous version. No warning about this before udate.

This is not cool, Apple. Too busy swanning around the White House, Tim? Let's have some support.

#MacOS #apple #LogicPro

#apple #MACOS #LogicPro
This entry was edited (1 day ago)

Peter Vágner reshared this.

mastodon - Link to source
The media in this post is not displayed to visitors. To view it, please go to the original post.

If you take just one thing away from #FOSDEM this is it.
👇🏽
“If we lose our democracies, Open Source is irrelevant and goes away”

or putting it another way:

If we don’t apply, enforce, adopt and embrace Open Source in our public and government institutions we risk to lose our democracies.
#OpenSource #SaveDemocracy
Boost if you agree!
👍🏾

#opensource #fosdem #savedemocracy
This entry was edited (2 days ago)

mastodon - Link to source

Hi Folks,

I am looking for screen reader users to test a site taking approximately one hour. This is a paid gig - $50 via a gift card. Please ping me for more details.

Please boost for reach.

Thanks!

#a11y #accessibility #ScreenReader

#a11y #Accessibility #screenreader
This entry was edited (1 day ago)

reshared this

in reply to Brandon Cross

mastodon - Link to source

Quin

So the thing about Claude is that you have to treat it like a very intelligent 6-year-old who knows how to code. Never make it search for stuff, give it exact line numbers even if you can, searching wastes tons of tokens. What really throws Claude off is too many disjointed thoughts in one prompt, like if I drop one sentence about a future feature I want to add in the middle of the prompt, Claude will think that is a very important detail and try to design for that feature, even when it doesn't make any sense. It's also far from perfect, the experience with Claude is I "/superpowers:brainstorm fix #301", and it will either produce something that's incredible and fixes it on the first try, or make me cringe and wish I just did it myself.

mastodon - Link to source
There's a new infestation on the block. Automatic meeting summariser AI-s. They join virtual meetings on Zoom or Teams on behalf of people, unannounced.
So, as an organiser, you may see something called "Firefly" or "read.ai" join. They proceed to spam the chat with "helpful" snippets of the meeting. Then, they will send everyone, who was invited to the meeting emails with "helpful" summaries, which are hidden behind a link, for you to klick and get sucked into their marketing database.
From a recent meeting, I received no less than 5 emails from 5 different services.
Personally I just kick them out as an organiser, just as I would do with a physical meeting, when a random bloke nobody knows about would barge in and sit in the corner. If they would harass everyone after the meeting in the parking lot in their cars with "Tell me your credit card number and I tell you 10 super cool things of the last meeting", I would cut their owners out of my comms completely. In fact, I am not really shure why we find it acceptable in virtual spaces right now.

Zach Bennoui reshared this.

mastodon - Link to source

I missed this but Gentoo Linux allows you to bootstrap the rustc compiler using a regular C++ compiler via mrustc. You should be able to build the entire Rust toolchain from source without having to rely on a rustc binary distribution if you wish so.

wiki.gentoo.org/wiki/User:Tric…

#Gentoo #RustLang

User:Trickygnome/Rust from sources installation - Gentoo wiki

wiki.gentoo.org
#RustLang #gentoo

mastodon - Link to source

Wow… Google fined a whopping $68 MILLION DOLLARS for eavesdropping on people’s spoken conversations. That’ll teach them! It’s going to take Google a whole hour and a half to make that money back. I guess they won’t be pulling shit like this anymore after feeling that sort of pain. We really showed ‘em this time, eh?

Correction: it’s not even a fine; it’s a settlement with no admission of wrongdoing. So even worse.

mastodon.social/@JulianOliver/…

Julian Oliver (@JulianOliver@mastodon.social)

As we guessed, it seems that despite Google saying they were not making recordings of people's voices and mining them for advertisers, they were doing exactly that.
Julian Oliver (Mastodon)
This entry was edited (1 day ago)

reshared this

mastodon - Link to source

GoDaddy DNS really is a steaming pile of manure.

1. You can manage DNS records in cPanel, but the nameservers listed there don't work.

2. You can switch to the default GoDaddy nameservers, but they don't contain the cPanel records.

3. The only 'solutions' are to:
a. Copy all the records manually from cPanel to GoDaddy
b. Setup your 'own' nameservers, which resolve to the cPanel IP

Active dis-recommend if anyone is looking for hosting (I can't change this one, the client likes them).