> It's worth pointing out that in France and the UK, the authorities involved are arms length independent of the political bodies
As someone who has lived in (and followed current affairs) in both of these countries, this is a very idealistic and naïve view. There can be a big gap between theory and practice
> There are statutory instruments (in France, constitutional clauses), that determine the independence of these authorities.
> They are tasked - and held to account by respective legislative bodies -
It's worth nothing here that the UK doesn't have separation of powers or a supreme court (in the US sense)
> Patreon gives creators the option to either increase their prices in the iOS app only, or absorb the fee themselves, keeping prices the same across platforms.
I'm curious what percentage of creators chose which
Yes. It's improved now, but the mobile web was bad for a long time. The early days of Android experienced a "web-first" ecosystem by force, as lazy businesses just threw a webview around their site, and it was awful
It's not users who are pushing this. It started off with just superfluous but optional apps of websites. Now every year I find there is something I used to be able to do, which I now must own a smartphone to do. And it's not just getting discounts at coffee chains, it's increasingly stuff like accessing healthcare plan benefits, or verifying my identity for banking
A few sites throw up a blocking screen to download the app, which disappears once you spoof a desktop UA. But the big problem is businesses now having no web interface at all
Very good point, though I believe it's both market push and consumer expectation.
Because we have such limited control over our devices, they effectively provide the security of a jail locking down what users can do. That is appealing from a healthcare or banking perspective because it obfuscates the client-server API and gives exact control over the UI. As a bonus, the coffee chain gets to glean lots of details from your phone that would be unavailable in a browser.
As individuals we can do little more that push back: don't let yourself be trapped by coffee chains (go to a different one) and bother your bank's service line about having to use their app. The rest is up to government intervention, I fear.
On the contrary, this thread seems to have a large number of users who can't handle criticism of Wikipedia without responding with unfounded assumptions and insinuations about the critic
In high school I knew a kid who would go around looting loose change from unlocked cars. He'd pull the driver side door open like it was his car, hop in, loot the center console, then hop out like nothing happened. He wouldn't take valuables (as far as I knew), just change, so maybe a few bucks per car.
His rationale? "Nobody will cry over a few missing quarters and they are free to lock their doors anyway."
The reason it's not stealing is because the cost to the serve content is tiny (spare change) and the sites don't stop you from viewing it with ad-blocker (unlocked doors).
That's true, but the same may already be true of your browser's cookie file. I believe Chrome on MacOS and Windows (unsure about Linux) now does use OS features to prevent it being read from other executables, but Firefox doesn't (yet)
But protecting specific directories is just whack-a-mole. The real fix is to properly sandbox code - an access whitelist rather than endlessly updating a patchy blacklist
One could easily allow or restrict visibility of almost anything to any program. There were/are some definite usability concerns with how it is done today (the OS was not designed to be friendly, but to try new things) and those could easily be solved. The core of this existed in the Plan9 kernel and the Plan9 kernel is small enough to be understood by one person.
I’m kinda angry that other operating systems don’t do this today. How much malware would be stopped in its tracks and made impotent if every program launched was inherently and natively walled off from everything else by default?
I think this normalises running untrustworthy, abusive proprietary software, because they can at least be somewhat contained. The only reason I have apps like Facebook on my android phone is that I have sufficient trust in GrapheneOSs permissions.
Then, apps like syncthing become crippled as filesystem virtualisation and restrictions prevent access and modification of files regardless of my consent.
Not disagreeing with the need for isolation though, I just think it should be designed carefully in a zero-sacrifice way (of use control/pragmatic software freedom)
> But protecting specific directories is just whack-a-mole. The real fix is to properly sandbox code - an access whitelist rather than blacklist
I believe Wayland (don't quote me on this because I know exactly zero technical details) as opposed to x is a big step in this direction. Correct me if I am wrong but I believe this effort alone has been ongoing for a decade. A proper sandbox will take longer and risks being coopted by corporate drones trying to take away our right to use our computers as we see fit.
Wayland is a significant improvement in one specific area (and it's not this one).
All programs in X were trusted and had access to the same drawing space. This meant that one program could see what another one was drawing. Effectively this meant that any compromised program could see your whole screen if you were using X.
Wayland has a different architecture where programs only have access to the resources to draw their own stuff, and then a separate compositor joins all the results together.
Wayland does nothing about the REST of the application permission model - ability to access files, send network requests etc. For that you need more sandboxing e.g. Flatpak, Containers, VMs
In Wayland you have these xdg-portals that broker access to the filesystem, microphone, webcam, etc. I am not knowledgeable about the security model though.
Portals are used to integrate applications to the host if they're being run inside a sandboxed environment.
They are hooks that latch on the common GUI application library calls for things such as "open file dialogs" such that exeptions to the sandbox are implicitly added as-you-go.
They cannot prevent for example direct filesystem access if the application has permission to open() stuff, like if they're not running in a sandbox, or if said sandbox have a "can see and modify entire filesystem" exception (very common on your average flatpak app, btw).
portals are used by wayland, but you can also use them without wayland.
E.g. under X you can use bubblewrap or firejail to restrict access to the web or whatever for some program, but still give that program access to for example an xdg portal that lets you "open url in web browser" (except the locked-down program can't for example see the result of downloading that web page)
I believe Quartz is the go-to solution for this. It's not part of Spring but it offers a similar annotation-driven interface, but with distributed locking via a database
Absolutely! But Quartz is also quite heavy. If all you need is to ensure scheduled jobs run in a clustered environment there are more “lighweight” options
> This was the very first time I heard anyone even suggest that storing data in Postgres was a concern in terms of reliability
You seem to be reading "reliability" as "durability", when I believe the parent post meant "availability" in this context
> Do you actually have any concrete scenario in mind? Because anyone can make any system "considerably degrading", even Redis
And even Postgres. It can also happen due to seemingly random events like unusual load or network issues. What do you find outlandish about the scenario of a database server being unavailable/degraded and the cache service not being?
Presumably there's no legal reason why the ISPs couldn't write to all their customers giving "notice of upcoming partial internet service outage, due to the actions of La Liga". It would be factually true
Of course, LL could still give them hell in court even on false grounds (and maybe even win anyway, given the case detailed in the root comment). And in any case there's simply no commercial reason why they would stick their neck out in the first place
I think most of this are being done in the moment, without advanced warning. Plus, some ISPs carry soccer in their TV offerings so they’re probably not benefiting from speaking out. At least, my ISP does replace the blocked website with a notice explicitly stating that this is the result of a judicial ruling in favor of LaLiga
As someone who has lived in (and followed current affairs) in both of these countries, this is a very idealistic and naïve view. There can be a big gap between theory and practice
> There are statutory instruments (in France, constitutional clauses), that determine the independence of these authorities.
> They are tasked - and held to account by respective legislative bodies -
It's worth nothing here that the UK doesn't have separation of powers or a supreme court (in the US sense)
reply