●● IRC: #techbytes @ FreeNode: Tuesday, March 30, 2021 ●● ● Mar 30 [01:20] *GNUmoon2 has quit (Remote host closed the connection) [01:20] *GNUmoon2 (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes [01:30] *GNUmoon2 has quit (Remote host closed the connection) [01:30] *GNUmoon2 (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes ● Mar 30 [02:01] *asusbox2 (~rianne@2a00:23c4:c3aa:7d01:692c:bdb3:b4b8:26f6) has joined #techbytes [02:05] *rianne has quit (Ping timeout: 246 seconds) [02:05] *asusbox has quit (Ping timeout: 246 seconds) [02:17] *rianne (~rianne@2a00:23c4:c3aa:7d01:692c:bdb3:b4b8:26f6) has joined #techbytes ● Mar 30 [07:20] *GNUmoon2 has quit (Ping timeout: 240 seconds) [07:57] *GNUmoon2 (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes ● Mar 30 [09:17] schestowitz
  • [09:17] schestowitz
    Detecting At-Risk Software Infrastructure
    [09:17] -TechBytesBot/#techbytes-blog.communitydata.science | Detecting At-Risk Software Infrastructure Community Data Science Collective [09:17] schestowitz
    [09:17] schestowitz

    Critical software we all rely on can silently crumble away beneath us. Unfortunately, we often dont find out software infrastructure is in poor condition until it is too late. Over the last year or so, I have been leading a project I announced earlier to measure software underproductiona term I use to describe software that is low in quality but high in importance.

    [09:17] schestowitz

    Underproduction reflects an important type of risk in widely used free/libre open source software (FLOSS) because participants often choose their own projects and tasks. Because FLOSS contributors work as volunteers and choose what they work on, important projects arent always the ones to which FLOSS developers devote the most attention. Even when developers want to work on important projects, relative neglect [09:17] schestowitz among important projects is often difficult for FLOSS contributors to see.

    • [09:17] schestowitz
  • [09:17] schestowitz
    The end of TenFourFox and what I've learned from it
    [09:17] -TechBytesBot/#techbytes- ( status 404 @ http://tenfourfox.blogspot.com/2020/04/the-end-of-tenfourfox-and-what-ive.html">The ) [09:17] schestowitz
    [09:17] schestowitz

    TenFourFox FPR32 will be the last official feature parity release of TenFourFox. (A beta will come out this week, stay tuned.) However, there are still many users of TenFourFox the update server reports about 2,000 daily checkins on average and while nothing has ever been owed or promised I also appreciate that many people depend on it, so there will be a formal transition period. After FPR32 is released [09:17] schestowitz TenFourFox will drop to security parity and the TenFourFox site will become a placeholder. Security parity means that the browser will only receive security updates plus certain critical fixes (as I define them, such as crash wallpaper, basic adblock and the font blacklist). I will guarantee security and stability patches through and including Firefox 93 (scheduled for September 7) to the best of my ability, which is also the point at [09:17] schestowitz which Firefox 78ESR will stop support, and I will continue to produce, generate and announce builds of TenFourFox with those security updates on the regular release schedule with chemspills as required. There will be no planned beta releases after FPR32 but Tenderapp will remain available to triage bugfixes for new changes only.

    • [09:56] *GNUmoon2 has quit (Remote host closed the connection) [09:56] *GNUmoon2 (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes ● Mar 30 [10:06] *GNUmoon2 has quit (Ping timeout: 240 seconds) [10:15] *Now talking on #techbytes [10:15] *Topic for #techbytes is: Welcome to the official channel of the TechBytes Audiocast [10:15] *Topic for #techbytes set by ThistleWeb!~gordon@unaffiliated/thistleweb at Wed Jan 5 20:55:35 2011 [10:22] *GNUmoon2 (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes ● Mar 30 [12:11] *GNUmoon2 has quit (Ping timeout: 240 seconds) [12:11] *GNUmoon (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes ● Mar 30 [13:16] schestowitz x https://itwire.com/security/php-shifts-to-github-after-malicious-commits-to-own-git-server.html [13:16] -TechBytesBot/#techbytes-itwire.com | iTWire - PHP shifts to GitHub after malicious commits to own git server [13:39] schestowitz http://ipkitten.blogspot.com/2021/03/chairman-and-enlarged-board-criticised.html?showComment=1617093382735#c64239029856778831 [13:39] -TechBytesBot/#techbytes-ipkitten.blogspot.com | Chairman and Enlarged Board criticised for lack of impartiality in ViCo oral proceedings referral (G1/21) - The IPKat [13:39] schestowitz " [13:39] schestowitz The difficulty with Art 4 RPEBA is not so much that its provisions are unclear (they are not) or that there is any doubt that they should be invoked in this case (they most certainly should). Instead, it is that the EBA itself, INCLUDING the members to whom the reasons for exclusion and objection apply, which is charged with deciding to apply the provisions of Art 4. [13:39] schestowitz In this case, the members to which there are clear grounds for exclusion are not only in the majority but also include the Chair. In view of this, what are the chances that the grounds for exclusion will simply not be addressed by the EBA? On the other hand, if the EBA refuses to address such a clear contravention of a fundamental principle of natural justice (nemo judex in causa sua), it is difficult to see how the external members of [13:39] schestowitz the EBA can, with a clear conscience, agree to continue their participation and to thereby lend credence to what would undoubtedly be a kangaroo court. [13:39] schestowitz " ● Mar 30 [14:30] schestowitz https://twitter.com/Bobby_Network/status/1376825917901799427 [14:30] -TechBytesBot/#techbytes-@Bobby_Network: @weaponizedword1 thx man! as always 1st class infos & info dumps. I'm still going through the gates dump here: https://t.co/86aJpQyh50 [14:30] -TechBytesBot/#techbytes--> techrights.org | Gates Foundation Critique - Techrights [14:30] schestowitz "thx man! as always 1st class infos & info dumps. I'm still going through the gates dump here: http://techrights.org/wiki/index.php " [14:30] -TechBytesBot/#techbytes-techrights.org | Main Page - Techrights ● Mar 30 [17:15] schestowitz https://twitter.com/psymin/status/1376929687641882627 [17:15] -TechBytesBot/#techbytes-@psymin: "Free software liberates society" https://t.co/7j11N0QLK1 [17:15] -TechBytesBot/#techbytes--> techrights.org | Why the Fate of an RMS-Led Free Software Foundation Matters to You Even If Youre Not So Technical | Techrights ● Mar 30 [21:43] *GNUmoon has quit (Ping timeout: 240 seconds) ● Mar 30 [22:09] schestowitz https://twitter.com/Equitis_Rubrum/status/1376932357626814471 [22:09] -TechBytesBot/#techbytes-@Equitis_Rubrum: @mmillions Social constructs are not invalidated merely by virtue of being social in their constructions. Also, yo https://t.co/0LvxPaqfxJ [22:09] -TechBytesBot/#techbytes-@Equitis_Rubrum: @mmillions Social constructs are not invalidated merely by virtue of being social in their constructions. Also, yo https://t.co/0LvxPaqfxJ [22:10] schestowitz " [22:10] schestowitz Social constructs are not invalidated merely by virtue of being social in their constructions. [22:10] schestowitz Also, your smear campaign is socialized as an extension of your organization's (OSI) intent to destroy the FSF: [22:10] schestowitz " [22:11] schestowitz https://twitter.com/joshsimmons/status/1376943360368254977 [22:11] -TechBytesBot/#techbytes-@joshsimmons: @zoobab @conservancy I challenge you to highlight an actual problem caused by that financing. Also, Tech Rights is https://t.co/DdVlPqnfV6 [22:11] -TechBytesBot/#techbytes-@joshsimmons: @zoobab @conservancy I challenge you to highlight an actual problem caused by that financing. Also, Tech Rights is https://t.co/DdVlPqnfV6 [22:11] schestowitz I challenge you to highlight an actual problem caused by that financing. Also, Tech Rights is the furthest thing from a trustworthy and reliable citation I could imagine. [22:11] schestowitz Here, with thanks to @thenib [22:11] schestowitz . https://thenib.com/mister-gotcha/ [22:11] schestowitz " [22:22] *GNUmoon (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techbytes [22:53] schestowitz https://twitter.com/flukejones/status/1376454091941933058 [22:53] -TechBytesBot/#techbytes-@flukejones: @JackRedstonia @fasterthanlime "by Dr. Roy Schestowitz" is exactly the person I want to avoid reading anything from https://t.co/25ltwWenGT [22:53] -TechBytesBot/#techbytes-@flukejones: @JackRedstonia @fasterthanlime "by Dr. Roy Schestowitz" is exactly the person I want to avoid reading anything from https://t.co/25ltwWenGT [22:53] schestowitz " [22:53] schestowitz "by Dr. Roy Schestowitz" is exactly the person I want to avoid reading anything from, ever. [22:53] schestowitz wetheweb uses fallacies such as slippery slope, argument to power etc. [22:53] schestowitz "http://debian.community" is utter bullshit and hey lets use the same arguments and arrest RMS for harassment. [22:53] schestowitz " [22:53] -TechBytesBot/#techbytes-debian.community | Debian Community News [22:53] schestowitz no substance to this rebuttal [22:53] schestowitz just... I don't like this person :D [22:53] schestowitz so I must be doing something right ● Mar 30 [23:17] *acer-box has quit (Ping timeout: 250 seconds) [23:17] schestowitz > Hello, [23:17] schestowitz > [23:17] schestowitz > I hope your day is going well. My name's Daina and I'm reaching out to [23:17] schestowitz > you on behalf of ProtonMail. [23:17] schestowitz > [23:17] schestowitz > Were appreciative that you care about the internet privacy. Thank you [23:17] schestowitz > for featuring ProtonMail in one of your publications - this means a lot [23:18] schestowitz > to us: [23:18] schestowitz > http://techrights.org/2020/10/21/reducing-dependency-on-google/ [23:18] schestowitz > [23:18] -TechBytesBot/#techbytes-techrights.org | Ways and Means to Reduce Ones Dependency on Googles Various Monopolies and Near-Monopolies | Techrights [23:18] schestowitz > As we aim to educate users about how they can protect their data, I was [23:18] schestowitz > wondering whether it would be possible for you to add a link to our [23:18] schestowitz > homepage https://protonmail.com beneath the [23:18] schestowitz > word ProtonMail, please? [23:18] -TechBytesBot/#techbytes-protonmail.com | Secure email: ProtonMail is free encrypted email. [23:18] schestowitz > [23:18] -TechBytesBot/#techbytes-protonmail.com | Secure email: ProtonMail is free encrypted email. [23:18] schestowitz > Wed really appreciate it if you can help us out with this small, yet [23:18] schestowitz > meaningful, edit. We truly depend on mentions like yours, as we collect [23:18] schestowitz > no user data and no revenue from advertisers. Our vision is to build [23:18] schestowitz > internet where privacy is the default, and thank you for contributing to [23:18] schestowitz > that. [23:18] schestowitz > [23:18] schestowitz > Let me know your thoughts - would be great to connect with you! [23:18] schestowitz seems like a BOT :/ [23:28] *libertybox has quit (Ping timeout: 258 seconds) [23:34] schestowitz Re: Planet -> WeMakeFedora.org RMS: what are people saying? [23:34] schestowitz > It is a strange coincidence that Planet Fedora has stopped syndicating [23:34] schestowitz > the blogs of volunteers in the same week that Red Hat stopped[1] funding [23:34] schestowitz > the FSF. [23:34] schestowitz This does not surprise me at all. Been very predictable for months... [23:34] schestowitz > I promised I would consider the Fedora Code of Conduct[2] and with that [23:34] schestowitz > in mind, I will not speculate that this is any more than a coincidence. [23:34] schestowitz Fedora? What's that Vatz dat? NOT MA DEPARTMENT! [23:34] schestowitz > Nonetheless, I was curious what Fedora contributors are writing about [23:34] schestowitz > the RMS situation. In the spirit of free software development, I [23:34] schestowitz > created a Fork of Planet Fedora so we can all see if any insights appear [23:34] schestowitz > about RMS: [23:34] schestowitz > [23:34] schestowitz > https://WeMakeFedora.org [23:34] schestowitz > [23:34] schestowitz > Please have a look, share and subscribe. Please post. [23:34] -TechBytesBot/#techbytes-WeMakeFedora.org | We Make Fedora [23:34] schestowitz > [23:34] schestowitz > https://WeMakeFedora.org/rss20.xml [23:34] schestowitz > [23:34] schestowitz > https://WeMakeFedora.org/atom.xml [23:34] schestowitz OK, subscribed. [23:34] schestowitz > Fedora is a trademark of Red Hat. We can be grateful to Red Hat for [23:34] schestowitz > their immense contributions to Fedora, the FSF and free software in [23:34] schestowitz > general. Using Fedora in a domain name creates challenges. It is not [23:34] schestowitz > my intention for WeMakeFedora.org to hijack or impersonate in any way. [23:34] schestowitz > I plan to add suitable disclaimers to the site to make that clear. [23:34] schestowitz > Trademark law and previous legal judgments make it clear that we can use [23:34] schestowitz > the name Fedora to take credit for our contributions to the product. [23:34] schestowitz > This site has been created for that purpose in good faith. [23:34] schestowitz The Fedora project might need to be forked at some stage, but I don't know if that's feasible because IBM controls all the complexity associated with it. [23:34] schestowitz > In some ways it may help Red Hat. Trademark owners rarely give formal [23:34] schestowitz > endorsement to third-party sites but if the site does not attempt to [23:34] schestowitz > impersonate or deceive, they can choose to ignore it. As a bonus, they [23:34] schestowitz > can not be held responsible for what you choose to post there, this may [23:34] schestowitz > make their lives easier. [23:34] schestowitz > [23:34] schestowitz > Remember the four Foundations[3]; [23:34] schestowitz > [23:34] schestowitz > *Freedom*: [23:35] schestowitz > "We are dedicated to free software and *content*." [23:35] schestowitz > *content* is important. [23:35] schestowitz > [23:35] schestowitz > *First*: [23:35] schestowitz > Some of you have made far bigger contributions to Fedora, but somebody [23:35] schestowitz > had to be first to fork Planet in this week. [23:35] schestowitz > [23:35] schestowitz > I though about creating an Uncensored Fedora site. fedorauncensored.org [23:35] schestowitz > is available. But I didn't want it to look like [23:35] schestowitz > https://uncensored.debian.community because in many ways, Fedora does [23:35] schestowitz > not behave like Debian. So I had to choose some other name. [23:35] schestowitz > WeMakeFedora.org felt like a good choice. [23:35] schestowitz > 1. [23:35] schestowitz > https://www.theregister.com/2021/03/26/redhat_fsf_funding_richard_stallman/ [23:35] schestowitz > 2. https://docs.fedoraproject.org/en-US/project/code-of-conduct/ [23:35] -TechBytesBot/#techbytes-uncensored.debian.community | Planet Debian Uncensored [23:35] -TechBytesBot/#techbytes-www.theregister.com | Red Hat pulls Free Software Foundation funding over Richard Stallman's return The Register [23:35] schestowitz > 3. https://docs.fedoraproject.org/en-US/project/ [23:35] -TechBytesBot/#techbytes-docs.fedoraproject.org | Code of Conduct :: Fedora Docs [23:35] schestowitz > s/business/scam/; [23:35] -TechBytesBot/#techbytes-docs.fedoraproject.org | Fedoras Mission and Foundations :: Fedora Docs [23:37] *rsheftel100 (~rsheftel@pool-100-35-139-62.nwrknj.fios.verizon.net) has joined #techbytes [23:41] *rsheftel10 has quit (Quit: Ping timeout (120 seconds))