Posts by lrvick@mastodon.social
(DIR) Post #AyvdHTSmcCTSWmn5nM by lrvick@mastodon.social
2025-10-06T07:54:55Z
1 likes, 0 repeats
@tuskun Matrix is a fully open platform and can be self hosted. What is the basis of your distrust?
(DIR) Post #Az2GlrUGvAWyswjAYa by lrvick@mastodon.social
2025-10-09T12:32:25Z
1 likes, 0 repeats
I will sleep, SO MUCH, whenever this code actually complies for more than 5 minutes without an error.With a project that takes 6+ hours to build at a time, getting in an extra bugfix/build cycle every day is huge on tight timeline.That translates to working something like three bursts a day, 7 days a week, with a constantly shifting schedule.I am working on a compiler-tells-me-when-to-sleep timezone right now.
(DIR) Post #Az2H20sflPpGeUqI40 by lrvick@mastodon.social
2025-10-09T05:31:05Z
1 likes, 0 repeats
If you build a profitable company using mostly public code and you do not publish all of your added code in kind or make an equity proportional donation to those public good projects, then you are an asshole.If you also do not even bother to -review- all the public code you are exploiting for profit, and expect the future updates to that code to continue to act in your best interests, then you are both an asshole, and an idiot.Expect to learn a lot more about supply chain attacks soon.
(DIR) Post #AzORNotIIRECr8HwNk by lrvick@mastodon.social
2025-10-20T07:09:59Z
1 likes, 0 repeats
If something says "End to End End Encrypted", assume it is a total lie until proven otherwise.For it to be useful E2EE:- All parties must verify each others keys out of band- All parties must be using software provably compiled from public source code- All parties must not be able to be remotely spied on or controlled by third parties If you don't know what any of that means, then your government can probably buy/bribe access to all of your chat logs at any time.
(DIR) Post #AzORNq8DgQlGhiHNHk by lrvick@mastodon.social
2025-10-20T07:15:29Z
1 likes, 0 repeats
Apple and Google and many chip vendors with proprietary drivers can execute any code of their choosing (or the choosing of a court) on any stock device, and even most devices with aftermarket modifications. Still gotta trust the magic binary blob drivers with kernel access in most cases so all bets are off.The best option for a small targeted group is to deploy their own end to end encrypted chat server, with all parties running a hardened Linux or *BSD OS used exclusively for that chat.
(DIR) Post #AzSzSnGnvLcuLofTou by lrvick@mastodon.social
2025-10-18T09:54:53Z
0 likes, 0 repeats
Hacking is a state of mind, not a skill. Want to cook eggs and all you have is a waffle iron? Time for a kitchen hack.Hackers are just creative people that compulsively test boundaries be they artistic, social, technological, or otherwise.Houdini was a hacker. Edison and Tesla were hackers. The Wright brothers were hackers. Michelangelo was a hacker.Break stupid rules. Be a hacker.
(DIR) Post #AzSzSpr2JbnUMldRZY by lrvick@mastodon.social
2025-10-18T12:00:30Z
0 likes, 0 repeats
@tuskun I would go a step further. I feel the entire concept of intellectual property is theft, robbing those of the freedom to be creative and repair or improve anything they wish with their own resources.Similarly I think giving or selling someone hardware or software without also giving them the full source code and the information to maintain and repair is a scam, conning people to be permanently dependent on the scammer.This legalized scamming is profitable, but it is still theft.
(DIR) Post #AzSzSqiv5Gtn3sqTYm by lrvick@mastodon.social
2025-10-18T12:03:40Z
0 likes, 0 repeats
@tuskun I can see allowances for things like entertainment. A magician should not be required to reveal his secrets.But tools, those are sacred. To intentionally create and sell a useful tool and intentionally monopolize the information needed to maintain, improve, or repair said tool, is evil.I am very aware evil is the default.
(DIR) Post #AzSzStGfcl5Ix8eSRc by lrvick@mastodon.social
2025-10-20T07:37:59Z
0 likes, 0 repeats
@tuskun I personally use and recommend QubesOS. Personally I use a GPD Win Max 2 as I do not ever carry a mobile device, and this device is small enough to put in a small pouch attached to my leg yet powerful enough for me to fully do my job from on the go.Note this is not an officially supported device, so it may take some research to work around minor issues from time to time.
(DIR) Post #AzSzSunJwqnPggw2yW by lrvick@mastodon.social
2025-10-20T19:18:40Z
0 likes, 0 repeats
@tuskun I use the GPD Win Max 2, but anything on the QubesOS compatibility list is a safe bet.
(DIR) Post #AzSzSweB3ofdQufm08 by lrvick@mastodon.social
2025-10-20T21:13:42Z
0 likes, 0 repeats
@tuskun With Federated systems like Matrix I can pick a specific server I trust to not leak my metadata, but with SimpleX I have to trust that most of the network is honest, when any random person can run as many nodes as they want.If SimpleX had node remote attestation so any nodes could be kicked off the network that are unable to prove they are not logging, then it would be a lot more interesting to me.@xyhhx is a SimpleX fan, so maybe they can add defenses for it I am not aware of.
(DIR) Post #B0xpAvo0gonHeh5HA8 by lrvick@mastodon.social
2025-12-05T21:38:39Z
2 likes, 1 repeats
The best thing about the Cloudflare outage is that no software or web services I use were stupid enough to use Cloudflare.Watching the proprietary world burn brings me so much joy.
(DIR) Post #B14UUwfqQu8zD1gcT2 by lrvick@mastodon.social
2025-12-09T09:55:23Z
1 likes, 0 repeats
Want to support creators without feeding surveillance capitalism? Cancel all streaming services, pirate everything, and use saved cash to buy merch, theater/concert tickets, etc.Pros:- gives more money to creators- gives less money to labels, studios, and distributors- gives you a local copy of media you can keep long term- avoids dependency on proprietary software- avoids your activity being sold to advertizers- no adsCons: - makes shareholders sadIt's a pirate's life for me.
(DIR) Post #B1WgVHCJ28LvCpQXOC by lrvick@mastodon.social
2025-12-22T22:13:13Z
1 likes, 0 repeats
From Google terms of service: "Criticizing, questioning, making objections or complaints about the Service, its staff or anything related to it is prohibited and constitutes a breach of the Terms."All I have to say to that is: Fuck Google, their staff, and everything related to them.Degoogled my life more than 5 years ago and can strongly recommend.Great holiday gift to yourself!https://tosdr.org/en/service/217
(DIR) Post #B2EZrfd5P9CTgEElqy by lrvick@mastodon.social
2026-01-12T23:27:33Z
1 likes, 0 repeats
It is downright offensive and laughable that so many crypto founders, which supposedly built their offerings under anti-authority, decentralization, and cypherpunk ethos, continue to bring eyeballs to a centralized heavily censored platforms like Youtube and Twitter that are inherently authoritarian by design.This is why I will never post content on Youtube, Twitter, TikTok, etc. If you ever see any of my work or content published on proprietary platforms, it was because others put it there.
(DIR) Post #B2X3F7animuCJpX2Xo by lrvick@mastodon.social
2026-01-22T01:21:05Z
3 likes, 4 repeats
If you claim to be building decentralized FOSS for censorship resistant finance, privacy, or communication and you collaborate via Zoom, Slack, Telegram, Twitter, Github, or Discord: you are full of shit.
(DIR) Post #B2qCAo9YMX9FmIabg0 by lrvick@mastodon.social
2026-01-28T08:54:14Z
0 likes, 0 repeats
I should wait until this release is published next week, but I am too excited.Stagex is the first production ready Linux distro to be:- 100% deterministic- 100% full source bootstrapped- Maintainer signed on every commit and review- Reproduced and signed by multiple maintainers on every artifact- OCI container native- LLVM/compiler-rt/libunwind nativehttps://codeberg.org/stagex/stagex/pulls/761All the confs that turned us down and the people who said it could not be done can eat my entire ass.
(DIR) Post #B2qCAqVFcph14Akxm4 by lrvick@mastodon.social
2026-01-29T20:41:27Z
0 likes, 0 repeats
@rekahsoft Guix goes further than any other distro and was a big inspiration, but it is not 100% reproducible/bootstrapped, trusts downloaded binaries, has a single-party trust model, chooses the GNU way of doing things above all others. As a desktop-first distro with thousands of packages it would make it incredibly difficult to ever fully clear those bars. Our threat model mandated the design a distro and release process built for supply chain security.https://codeberg.org/stagex/stagex#comparison
(DIR) Post #B2qCAtdVyZ5Mmfe6ZU by lrvick@mastodon.social
2026-01-28T09:09:05Z
0 likes, 0 repeats
* My views and candor do not necessarily reflect that of the entire stagex team
(DIR) Post #B31wqGacH3AYTXVwPI by lrvick@mastodon.social
2026-02-06T00:19:16Z
0 likes, 0 repeats
An insane amount of personal data is getting routed to proprietary LLM providers directly and indirectly.Worse, all that personal data is going to get used to sit on the scales of otherwise "fair" weights to produce an entirely new form of toxic and manipulative targeted advertising.Since we can't un-invent LLMs, the way forward is to make sure they exist with provable privacy and integrity.We just released the first FOSS stack to do exactly that.https://caution.co/blog/verifiable-llms.html