The Trump regime had a 54-year (and a 76-day) head start
thelastbillionaires.com/republ…
#EndTrump #EndMusk #DonaldKrasnov #RepublicansOwnThis #GOPKakistocracy #GOPWeirdos #NoRepublicansEverAgain #USPol
The Trump regime had a 54-year (and a 76-day) head start
The threat to our democracy is here. We must catch up while we still can.Jason Sattler (The Last Billionaires)
Tiens, comme je suis sur @jazztodon, on va mettre une chronique de disque :)
Julie Campiche est suisse, c'est une harpiste et une femme très engagée. Elle a récemment travaillé avec un consort baroque -et bon, je suis client-
It's still early, but several of my goats are looking *extremely* wide so I think it's time to start the #BabyGoatCountdown (will I remember to keep using the hashtag? Probably not, but worth a try).
First mama isn't due until April 2, but I'm REALLY excited so let's start the hype early! The llama will help, I'm sure.
reshared this
Liberal government announces dental care expansion the day before expected election call
https://www.cbc.ca/news/politics/liberal-government-dental-care-expansion-1.7490792?utm_source=flipboard&utm_medium=activitypub
Posted into Canada @canada-cbcnews
Ukraine’s clandestine book club defies Russia’s push to rewrite history | Ukraine
It must be one of the most dangerous book clubs in the world. Before they can feel safe enough to talk about poetry and prose, 17-year-old Mariika (not her real name) and her friends have to first ensure all the windows are shut and check there is no…BYTESEU (Bytes Europe)
Alors ça, c'est vraiment génial
I Created a Real Life Mario Kart Race
Joseph's Machines
youtube.com/watch?v=cybSLWd0MH…
Microsoft Proposes "Hornet" Security Module For The Linux Kernel
Microsoft Proposes "Hornet" Security Module For The Linux Kernel
Microsoft's newest open-source contribution to the Linux kernel being proposed is..www.phoronix.com
like this
A Win for Encryption: France Rejects Backdoor Mandate
In a moment of clarity after initially moving forward a deeply flawed piece of legislation, the French National Assembly has done the right thing: it rejected a dangerous proposal that would have gutted end-to-end encryption in the name of fighting d…Electronic Frontier Foundation
Maar als alle positieve onderzoeken rond de transgenderzorg vrijwel altijd worden genegeerd terwijl de paar negatieve wel overal nieuwskoppen krijgen, is dat dan representatief?
Who Owns Museum Collections? And what should we do with them? Book now for a day of talks & discussion about museum accountability for contentious collections.
Sat 29 March, 10.00-16.00. Tickets: £55/Members £40 (Includes lunch & refreshments) bit.ly/3QfisUJ
Pitt Rivers Museum @Pitt_Rivers #museums #collections
Kenneth Kirkwood Day 2025: Who owns Museum Collections?
With Nicholas Cullinan OBE, Director of the British Museumbit.ly
No, covid did not reach me that online conferences are just not working. It taught me that 2/3rds of all conferences could be fully online (though one still needs to think about best structure for them and not just transplant them without any adaptation) - and the remaining third needs to focus even more on interaction (unconferences, small workshops, hackatons...) and not the usual talks.
reshared this
Sensitive content
Terrorizing our fellow Americans (FPWellman/On Democracy with FPWellman ...)
fpwellman.substack.com/p/terro…
memeorandum.com/250322/p50#a25…
Terrorizing our fellow Americans
Russ Vought promised to traumatize Federal workers, and it's happeningFPWellman (On Democracy with FPWellman Substack Community)
US envoy Witkoff claims Trump wants to ‘build trust’ with Iran
US President Donald Trump is attempting to build trust with Iran to avoid an armed conflict, Washington's Middle East envoy, Steve Witkoff, said in an interview released late on Friday.BYTESEU (Bytes Europe)
globalist.it/senza-categoria/2…
Un grandissimo
Il ricordo di Antonio Tabucchi all'Università di Siena
E' la quarta delle "Lezione Tabucchi", incontro che dal 2022 vuole ricordare una figura essenziale per l'ateneo senese e per la scrittura nazionale ed internazionaleredazione (Globalist.it)
The USDA’s Wildlife Services officials last weekend shot and killed a male wolf released in Colorado from British Columbia after it traveled into north-central Wyoming and killed five adult sheep.
Wolf from Canada released in Colorado two months ago shot and killed in Wyoming after it killed multiple sheep
Wolves are managed differently in Wyoming, and state officials said the wolf was legally shot after finding evidence of depredationTracy Ross (The Colorado Sun)
Pacifica artist Oscar Lopez has a reputation for building community and using his art to tie contemporary experiences of immigrants and farmworkers to Indigenous history.
sfpublicpress.org/pacifica-art…
Oscar Lopez Links Indigenous Themes, Immigrants, Farmworkers
Artist Oscar Lopez has a reputation for building community and using his art to tie contemporary experiences to Indigenous history.Emily Wilson (San Francisco Public Press)
“Don’t be scared dude! It is us, the people” today in Turkey.
'Don't be scared dude! It is us, the people' today in Turkey.https://i.redd.it/le8ad62hh9qe1.pngPosted by kalbinibirakBYTESEU (Bytes Europe)
Trent
in reply to ikidd • • •like this
TVA and Ⓜ3️⃣3️⃣ 🌌 like this.
cronenthal
in reply to ikidd • • •like this
TVA and Ⓜ3️⃣3️⃣ 🌌 like this.
Daniel Quinn
in reply to ikidd • • •like this
TVA likes this.
spittingimage
in reply to ikidd • • •like this
Inf_V and TVA like this.
caseyweederman
in reply to ikidd • • •Ah yes, the "extended Berkeley Packet Filter".
Wikipedia:
Phoronix:
... show moreSo this is to make kernel-level instructions from userspace (somethi
Ah yes, the "extended Berkeley Packet Filter".
Wikipedia:
Phoronix:
So this is to make kernel-level instructions from userspace (something that's already happening) more secure.
The thread linked by the OP is Jarkko Sakkinen (kernel maintainer) seemingly saying "show your work, your patch is full of nonsense" in a patch submitted for review to the Linux kernel.
Edit: the OP has edited the link, it used to point to this comment in the mailing list chain.
Microsoft Proposes "Hornet" Security Module For The Linux Kernel
www.phoronix.comlike this
TVA likes this.
interdimensionalmeme
in reply to caseyweederman • • •Magiilaro
in reply to caseyweederman • • •Loading BPF code from user space is, I hope, only possible with root access to the system.
That would mean that an attacker needs root access to exploit BPF, but if an attacker has root access what stops him/her to do anything they want? At this time the system is lost anyway.
Or am I missing anything?
ozymandias117
in reply to Magiilaro • • •If the executable binary has to be signed with a key, similar to the module signing key, Microsoft could sign their binaries
This, along with secureboot, would prevent the owner of the machine from running eBPF programs Microsoft doesn't want you to run, even with root
Magiilaro
in reply to ozymandias117 • • •lumony
in reply to Magiilaro • • •Odds are because there isn't one.
Abusers will always try to justify their abuse by saying their victims "don't understand" why it's "necessary."
ozymandias117
in reply to Magiilaro • • •Magiilaro
in reply to ozymandias117 • • •mina86
in reply to caseyweederman • • •That’s not what he’s saying. He’s saying: ‘You’re using terms which aren’t that familiar to everyone. Could you explain them?’
Phoenixz
Unknown parent • • •EatMyPixelDust
in reply to ikidd • • •like this
TVA likes this.
macaw_dean_settle
Unknown parent • • •grue
in reply to Phoenixz • • •Norah (pup/it/she)
Unknown parent • • •Magiilaro
in reply to ikidd • • •Matt
in reply to Magiilaro • • •Magiilaro
in reply to Matt • • •Yes I can.
But I am a Linux system administrator with 20 years of experience.
This should not be the level of measurement for stuff like this. 😉
What I meant was: Don't put a Microsoft master trusted authority in the Kernel, unless one chooses to install a Microsoft distribution.
And don't go the SSL/TLS way with the huge number of default authorities that get installed on every system.
It would be a pain to be forced to always build my own Kernel again just to keep Microsoft or any other institution/company that I find untrustworthy out of it.
like this
Ⓜ3️⃣3️⃣ 🌌 likes this.
MonkderVierte
Unknown parent • • •That it is.
Ⓜ3️⃣3️⃣ 🌌
in reply to ikidd • • •ikidd
in reply to Ⓜ3️⃣3️⃣ 🌌 • • •WasPentalive
in reply to ikidd • • •They probably named it HORNET for a reason - think Japanese Murder Hornets... What Could Possibly Go Wrong??
It will probably start out as little glitches and slowdowns to destroy faith in your system ("Windows works right all the time") a random 2 second pauses. Finally one day every Linux box in the world crashes, all at the same time, because some 'dummy' in Microsoft deleted the private signing key.
like this
Ⓜ3️⃣3️⃣ 🌌 likes this.
Ⓜ3️⃣3️⃣ 🌌
in reply to WasPentalive • • •ikidd
Unknown parent • • •If you don't want telemetry, you have to use VScodium, and then you don't get to use marketplace. Github didn't start as a Microsoft project or it would be far more enshittified than it is now, but even so Microsoft is sure trying to fuck that up with their Copilot bullshit.
WSL is the definitition of EEE, and has prevented a great deal of Linux-ward movement that might have happened without it, even with IT department resistance. It's a crutch to keep devs from having to go to Linux to get the useful tools, like docker which is a mess on Windows, but just usable enough to get by.
And oh, yes, Teams can get shot with a ball of its own shit and fall into the dumpster fire.
like this
Ⓜ3️⃣3️⃣ 🌌 likes this.
lumony
in reply to ikidd • • •InnerScientist
in reply to lumony • • •Preventing kernel modifications to expand upon the work done for kernel lockdown. Add additional layers to system security.
Kernel_lockdown:
lumony
in reply to InnerScientist • • •InnerScientist
in reply to lumony • • •From the mailing list I'm reading that kernel maintainers have heard a few companies looking for something like this, so yes?
Edit:
priapus
in reply to ikidd • • •Do people in this thread not understand that Microsoft frequently contributes to Linux? They've already lost the battle there. They rely on Linux for servers as much as everybody else.
Not necessarily saying this is a good thing or not, but writing off any Linux contributions Microsoft makes would be pretty silly.
FauxLiving
in reply to priapus • • •Their contributions are welcome and appreciated.
But, given Microsoft's history, any suggestions from them should be treated with skepticism.
alphadont
in reply to FauxLiving • • •It's not like it's a proprietary blob. No one is stupid enough to accept a proprietary security blob from Microsoft.
Moreover, if you click through to the article, you see that this module entirely concerns eBPF, which is essentially unused outside of corporate servers (and Android phones) in the first place and is therefore barely our business to begin with.
ganymede
in reply to priapus • • •priapus
in reply to ganymede • • •Or they're just adding improvements to the software they heavily rely on.
I don't trust or like Microsoft, but the likelihood of there being malicious intentions in this is incredibly low. Just imagine the fallout if Microsoft tried to sabotage the kernel.
ganymede
in reply to priapus • • •which they can do in private any time they wish, without any of the fanfare.
if they actually believe in opensource let them opensource windows 7 ^1^, or idk the 1/4 of a century old windows 2k
instead we get the fanare as they pat themselves on the back for opensourcing MS-DOS 4.0 early last year (not even 8.0, which is 24 years old btw, 4.0 which came out in 1986).
38 years ago...
MS-fucking-DOS, from 38 years ago, THAT'S how much they give a shit about opensource mate.
all we get is a poor pantomime which actually only illustrates just how stupid they truly think we are to believe the charade.
does any of that mean they're 100% have to be actively shipping "bad code" in this project, not by any means. does it mean microsoft will never make a useful contribution to linux, not by any means. what it does mean is they're increasing their sphere of influence over the project. and they have absolutely no incentive to help any
... show morewhich they can do in private any time they wish, without any of the fanfare.
if they actually believe in opensource let them opensource windows 7 ^1^, or idk the 1/4 of a century old windows 2k
instead we get the fanare as they pat themselves on the back for opensourcing MS-DOS 4.0 early last year (not even 8.0, which is 24 years old btw, 4.0 which came out in 1986).
38 years ago...
MS-fucking-DOS, from 38 years ago, THAT'S how much they give a shit about opensource mate.
all we get is a poor pantomime which actually only illustrates just how stupid they truly think we are to believe the charade.
does any of that mean they're 100% have to be actively shipping "bad code" in this project, not by any means. does it mean microsoft will never make a useful contribution to linux, not by any means. what it does mean is they're increasing their sphere of influence over the project. and they have absolutely no incentive to help anyone but themselves, in fact the opposite.
as everyone knows (it's not some deep secret the tech heads on lemmy somehow didn't hear about) microsoft is highly dependent on linux for major revenue streams. anything a monolith depends on which they don't control represents a risk. they'd be negligent if they didn't try to exert control over it. and that's for any organisation in their position. then factor in their widespread outspoken agenda against opensource, embrace, extend, extinguish and the vastly lacking longterm evidence to match their claims of ❤ opensource.
they're welcome to prove us all wrong, but that isn't even on the horizon currently.
^1^ yes yes they claim they can't because "licensing", which is mostly but not entirely fucking flimsy, but ok devils advocate: release the rest, but nah.
Ⓜ3️⃣3️⃣ 🌌
in reply to ikidd • • •utopiah
Unknown parent • • •It doesn't and we don't like it anyway.
PS: to clarify, yes GitHub is wildly popular but, and the kernel is a particularly interesting example, it does not host ALL projects, only a lot of popular ones. A lot of very popular ones are also NOT there but rather on their own git, mailing list, GitLab instance, Gitea, etc. It's a shortcut, I understand that, but by ascertaining it as "truth" it's hiding a reality that is quite different and showing that reliable alternatives do exist.