While this video is austensibly about Incogni, you’ll soon discover just how much it’s about VPNs and who owns them.

https://youtu.be/JFI1CfnDJxY

I think that this is symptomatic of a much larger issue at Mozilla, leadership, or rather, lack of leadership. AI, tracking, privacy, funding, the list of crazy coming from there appears to be just ballooning.

I see no evidence that they deal with actual bug reports, no evidence that they care about users and no clear path being forged, unless they want to enshitify their business, in which case, that appears to be going swimmingly.

… and Microsoft Windows continues its unbroken winning streak as the best advocate for migrating to Linux …

Vent away!

Why are you telling us?

The link you shared is to Anubis, there’s no information on who changed from one instance to another or why., other than your comment about Cloudflare.

It’s been on my radar for a while and I’ve been looking around for alternative platforms for the obvious reasons.

I haven’t figured out how I’d deal with existing podcast episodes that refer to “my GitHub repository”. When I migrated away from Reddit, at least there weren’t specific references, but that’s not the case with GitHub.

So while I’ll admit that I am aware of my inertia, it’s not without cause.

Ideas and suggestions welcome.

We have a former raw onion eating Prime Minister who would call budgie smugglers the superior choice and wear them in public just to prove it.

https://en.wikipedia.org/wiki/Tony_Abbott_onion_video

https://www.sbs.com.au/news/article/budgie-smuggler-abbott-unaustralian-of-year/rdeerx6kc

This is GOLD!

Source: Debian user for 25 years.

While reproducible builds are a good thing, for a bunch of reasons the whole stack is built on top of someone else’s microcode running on someone’s CPU, running someone’s BIOS, etc.

During an Linux Conf in Australia I attended a talk discussing the chain of trust and the point was made that when you buy something from a manufacturer, it is assumed that it comes to you unaltered, but the question is, how would you know?

In other words, you need to trust something somewhere and build on that.

If you’d like to see a working example of a backdoored compiler, because to compile something, you need to also trust your compiler, here’s a good discussion and show and tell:

https://youtu.be/Fu3laL5VYdM

https://xerbo.net/posts/investigating-transit-pt1/

I’ve seen way worse supplier fuckups happen in multiple other industries… Like?

Over the years I’ve seen people in high profile roles resign in protest, but I’ve never understood it. I still don’t.

Is the whole point to bring attention to an issue and then what, hope for the best?

Is it not being able to look at yourself in the mirror and resigning with extra steps?

Is it a public dummy spit?

How does resigning actually fix something, or is that not a consideration?

As I said, I don’t understand.

Anyone?

It’s Microsoft’s latest plan to increase profitability by having more users migrate to Linux.

This is by far the fastest, safest and most complete option.

One tip: Make sure that all the things you want to export are ticked because by default they’re not.

You can even set this up as a regular process if you want.

Source: long time user

There’s hardly any cost to a bot operator, malicious , opportunistic or legitimate, to hit your end-point, so once they found a reason to hit it, hitting it a million more times costs cents.

Operators like Meta seem to make it a sport, trying to hit you with multiple parallel requests from multiple sources, across both IPv4 and IPv6 simultaneously, resulting in an effective DDoS for small and medium end point owners and increasing costs significantly for anyone trying fruitlessly to stay ahead of their onslaught.

The malicious traffic by contrast, attempts to sneak in a request with dynamic rate throttling as part of their attempts to stay hidden.

Between these two extremes are the opportunistic operators who hit the same 404 endpoint day after day, hour after hour, minute by minute, for weeks with specific blocks the only remedy.

There are plenty of legitimate bots that quietly go about their business, hitting you every couple of seconds, leaving you alone for long stretches, incrementally crawling, honouring the robots.txt file and generally acting the way a considerate adult might. They’ve been getting lower and lower in numbers over the years.

Source: I have logs.

… and nothing of value was lost …

A merging of the two 😁

Nothing quite like creating a specific incentive for researchers to seek “alternative” sources of income as payment for their research efforts.

Microsoft tried this … seems to be working out for them … not.

You don’t think that cron and grep is sufficient?