Badabinski

These are good points. I was in a shitty mood when I made my comment and upon reflection, it’s an overstatement and not a very good take. I do still strongly support copyleft licenses and DCOs over CLAs, but I shouldn’t turn my nose up when something is released without those.

I used to be excited when companies open-sourced stuff, and that is no longer the case. I suppose I’m just frustrated and bitter and cynical when it comes to large companies doing good things.

Hence my initial whinging about how this was released with a permissive license and a copyright transfer. The longer I’m involved in this industry, the less I like permissive software licensing. There’s obviously a place for it, but my tolerance for permissive licensing is directly tied to my trust for the person or organization backing the software. I don’t trust Microsoft, and I don’t think I will ever personally contribute to their software unless my contribution is made under a copyleft license and with a DCO, not a copyright-transferring CLA.

You’re correct, but I don’t believe that a company shouldn’t be allowed to take my code and change its license in the future. If they want to take something proprietary, they can go ahead and remove my contribution from it first.

You absolutely do not need a CLA with a copyright transfer. There are plenty of large projects that use a Developer Certificate of Origin that protects the company while not allowing them to change the license of your contribution.

I’ll grant that my original post was pissy and angry and not a great take, however. You make good points here.

From the repo’s CONTRIBUTING.md:

Most contributions require you to agree to a Contributor License Agreement (CLA)

Meh, a permissive license + a copyright transfer means this shit is just a potential rugpull. MSFT can change the license of the project to source-available or even proprietary at any time and you’ll be powerless to stop it.

For anyone else who doesn’t know what this is:

This is my build of Proton with the most recent bleeding-edge Proton Experimental WINE.

Things it contains that Valve’s Proton does not:

• Additional media foundation patches for better video playback support
• AMD FSR patches added directly to fullscreen hack that can be toggled with WINE_FULLSCREEN_FSR=1
• FSR Fake resolution patch details here
• Nvidia CUDA support for PhysX and NVAPI
• Raw input mouse support
• ‘protonfixes’ system – this is an automated system that applies per-game fixes (such as winetricks, envvars, EAC workarounds, overrides, etc).
• Various upstream WINE patches backported
• Various wine-staging patches applied as they become needed

copied from the other place this was posted.

God, can we not though? Haha funni meme and all, but like, I’m so tired of seeing this shit. It sucks for the women in the community, and honestly it sucks for the men too. It’s just such boomer humor.

As someone who somewhat recently wasted 5 hours debugging a “simple” bash script that Cursor shit out which was exploding k8s nodes—nah, I’ll pass. I rewrote the script from scratch in 45 minutes after I figured out what was wrong. You do you, but I don’t let LLMs near my software.

Yeah, the edited title is implied to be unburying the lede, but there was nothing being hidden by the original title.

I know someone with an issue kinda like this. Some childhood trauma and neglect lead to her forming limerant relationships and made it difficult for her to be platonically friendly with men that she viewed as eligible. Her fix was doing evidence-based therapies like EMDR and healing her fear of being alone/unsupported/unloved. It took her a while, but she’s much better at having platonic friendships with men now.

I’m in one of those places. In Utah, many crosswalk lights won’t turn on at all unless you press the button, and the button can completely change the light timing and ordering (e.g. a protected left turn light activates at the end of a cycle instead of at the beginning).

Traffic engineers here are sometimes allowed to do some fairly interesting things.

Sounds like you may want to use a union filesystem like overlayfs. I’m not sure if the specific behavior of overlayfs will work for you, but it’s worth investigating.

Thank you for putting your use-case in your post, since otherwise I think this might be an XY problem.

EDIT: There’s also mergefs and unionfs. I don’t know what the features and drawbacks are for these three union filesystems. mergefs seems like it might be the most configurable, but it’s also FUSE. unionfs and overlayfs are both in-kernel, so they’ll perform better (which may not matter for your use-case). overlayfs is the one I’m most familiar with of those two, since it’s used by most container runtimes.

Does runit have the equivalent of systemctl --user for managing per-user daemons like pipewire? I had some issues with pipewire recently and being able to journalctl --user -u pipewire and systemctl --user restart pipewire was a total godsend for me.

For those who don’t know (including me):

Shotcut is a free, open source, cross-platform video editor.

Right, but I can’t require a second factor on a different device that operates outside of my primary device’s trust store. I’m sure there is some way to make my desktop hit my phone up directly and ask for fingerprint auth before unlocking the local keystore, but that still depends on the security of my device and my trust store. I don’t want the second factor to be totally locked to the device I’m running on. I want the server to say, “oh, cool, here’s this passkey. It looks good, but we also need a TOTP from you before you can log in,” or “loving the passkey, but I also need you to respond to the push notification we just sent to a different device and prove your identity biometrically over there.” I don’t want my second factor to be on the same device as my primary factor. I don’t know why a passkey (potentially protected by local biometric auth) + a separate server-required second factor (TOTP or push notification to a different device or something) isn’t an option.

EDIT: I could make it so a fingerprint would decrypt my SSH key rather than what I have now (i.e. a password). That would effectively be the same number of factors as you’re describing for a passkey, and it would not be good enough for my organization’s security model, nor would it be good enough for me.

I just don’t get why I can’t use something like TOTP from my phone or a key fob when logging in with a passkey from my desktop. Why does my second factor have to be an on-device biometrically protected keystore? The sites I’m thinking of currently support TOTP when using passwords, so why can’t they support the same thing when using passkeys? I don’t want to place all my trust in the security of my keystore. I like that I have to unlock my phone to get a TOTP. Someone would have to compromise my local keystore and my phone, which makes it a better second factor in my opinion.

EDIT: like, at work, I ssh to servers all over the damn place using an ssh key. I have to get to those servers through a jump box that requires me to unlock my phone and provide a biometric second factor before it will allow me through. That’s asymmetric cryptography + a second factor of authentication that’s still effective even if someone has compromised my machine and has direct access to my private key. That’s what I want from passkeys.

This is obviously wrong. The children yearn for the mines, not the slaughterhouse. They should be swinging a pickaxe at some pitchblende in an unventilated tunnel after school, not cutting up meat.

(/s obvs, I find the whole “the children yearn for the mines” thing to be just my kind of dark humor.)

This is a bad take. Several cities in my state banded together to create a municipal fiber network called UTOPIA. The fiber is owned by the cities that bought in and is used by several different ISPs. The ISPs pay UTOPIA for access, and then they have to compete with each other for subscribers based on performance, features, and cost. Like, there’s genuine market competition for internet! If the state owns the infrastructure and then forces the playing field to be level, then everyone benefits. People in the cities with UTOPIA got fast fiber internet waaay faster than anyone else, they have a plethora of choices (want a static IP and a business plan in your residence? There’s an ISP that sells that!) at great prices, ISPs get access to subscribers without having to maintain fiber, and the cities who bought in get to make money from this and attract residents and businesses who benefit from the service.

My city didn’t buy in. Google Fiber eventually came to town so I was able to kick Comcast out, but I am uneasy about what’ll happen if Google decides to drop their ISP business. If I was in a city with UTOPIA, it would just be one ISP folding and I’d be able to pick a new one and switch over right away.

EDIT: cool, Cory Doctorow wrote a blag post about it: https://doctorow.medium.com/https-pluralistic-net-2024-05-16-symmetrical-10gb-for-119-utopia-347e64869977
UTOPIA users have access to 18 different ISPs. I feel like that speaks for itself right there. This is the future we all should have had.

It already is. My company runs hundreds (possibly thousands) of ARM64-based instances right now. It’s done great things for our cloud spend. We still have more x86 stuff than ARM because some applications just don’t perform as well on ARM, but I can imagine that ratio will change as software gets more optimized (specifically the JDK, golang’s compiler, and GCC/LLVM) and Ampere releases new systems with better single thread perf.

EDIT: Ampere, not Alterra. God damn tech company names.

You can run Asahi Linux on M1 MacBooks right now. If you didn’t see the news, they’ve even been able to run some relatively modern AAA games with decent enough frame rates. Granted that’s only the M1 macs, but there’s at least one relatively modern ARM laptop that you can run Linux on.

I’ll totally concede that the new Snapdragon laptops aren’t running Linux yet. It seems like Qualcomm is taking Linux support seriously, but I’m a bit skeptical as someone who has been absolutely fucked by a shitty Qualcomm kernel module.