iii
@iii@mander.xyz
- Comment on Self-hosted blog - do I need a static IP address? 31 minutes ago:
- Port forwarding
- Yes, and there’s services that do that for you
- Comment on Self-hosted blog - do I need a static IP address? 1 hour ago:
Static IP is helpfull but not necessary. Even with NAT and a changeing IP there’s options, such as:
- dynamic dns.
- Public reverse proxy or tunnel.
- Onion routing.
- Comment on Despite the constant negative press covfefe 2 hours ago:
Most beautifull covfefe. World will be jalous.
- Comment on Self-hosted blog - do I need a static IP address? 4 hours ago:
Quick, but sadly incorrect
- Comment on Self-hosted blog - do I need a static IP address? 5 hours ago:
It makes things easier, but you have options, such as:
- dynamic dns.
- Public reverse proxy or tunnel.
- Onion routing.
- Comment on I wonder how many people throughout history have confused Floaters with ghosts, UFOs, or other paranormal phenomena 2 days ago:
So are ufo’s
- Comment on farting 2 days ago:
Well what happens is OPs picture
- Comment on It's utterly hypocritical that the "defence" industry/sector is not called what it really is, the war industry. 3 days ago:
- Comment on farting 3 days ago:
Never eat a whole pine cone without chewing
- Comment on Will Chat Control affect P2P apps such as Briar? 3 days ago:
I replied in a sister comment.
- Comment on Will Chat Control affect P2P apps such as Briar? 3 days ago:
It isn’t. For example I developed a small opensource application, for which I do paid support. Because of the paid support, it’s interpreted as a commercial activity. Without the paid support, I can’t spend time on the project.
So when the time comes I’ll have to retire the project.
- Comment on Will Chat Control affect P2P apps such as Briar? 3 days ago:
FOSS is fucked either way in EU starting end 2027 because of CRA.
EU really is killing computing and software
- Comment on Will Chat Control affect P2P apps such as Briar? 4 days ago:
I don’t think that’s how the legal minded people think.
They’ll just go after the developers, force the program abandoned and illegal.
- Comment on Are there any AI services that don't work on stolen data? 4 days ago:
Then again, the synthetic data is generated with previous generation models, that were trained on scraped data.
Turtles all the way down
- Comment on EU age verification app to ban any Android system not licensed by Google 4 days ago:
They ask for ID card indeed, making it super easy to just make a copy. On top of that, your payment details are stored. You’re on camera. Etc.
Super easy to automate deanonymization. (1).
- Comment on EU age verification app to ban any Android system not licensed by Google 4 days ago:
That’s a worst of both worlds solution: it makes it trivial to deanonymise people, and it doesn’t solve the replay attacks.
- Comment on EU age verification app to ban any Android system not licensed by Google 5 days ago:
I gave an example in the previous post how the identity of the user could be hidden from the service.
In both your examples the government service has your full identity, then pinky promises to forget it.
Unless I’m misunderstanding something?
It would be a lot easier to get that information from the ISP.
Not quite the same, as IP addresses are shared through NAT, VPNs exist, etc. With the proposed legislation it is illegal for website operators to deliver content to known VPN ips, as they cannot confirm that the end user isn’t a EU subject.
- Comment on EU age verification app to ban any Android system not licensed by Google 5 days ago:
is being vouched for by some government-approved service.
The reverse is also a necessity: the government approved service should not be allowed to know who and for what a proof of age is requested.
And because the service has to be in the EU, government-certified with regular inspections, that’s safe enough
Of course not: both intentional and unintentional leaking of this information already happens. Additionally, what happens to, for example, the people in Hungary(*)? If the middle man government service knows when and who is requesting proof-of-age, it’s easy to de-anonymise for example users of gay porn sites.
The 3rd party solution, as you present it, sounds terrible!
(*) Hungary as a contemporary example of a near despot leader, but more will pop up in EU over the coming years.
- Comment on Substack prompted a Nazi blog again 5 days ago:
Jekyll
- Comment on EU age verification app to ban any Android system not licensed by Google 5 days ago:
from a single user
Neither 2 nor 3 should receive information about the identity of the user, making it difficult to count the volume of requests by user
- Comment on If you had 1 dollar and 24 hours what would you do? 6 days ago:
the mug:
- Comment on If you had 1 dollar and 24 hours what would you do? 6 days ago:
That’s actually a game we used to do as kids in scouting.
Not 24 hours, but an afternoon. 2 groups start with 1 EUR. The groups go their own way, door-to-door, begging for a trade-up. Like the first household could give you a snickers bar. Then you take the snickers bar next door, and trade it for a book.
The surprise was to see what item the other team ended up with.
- Comment on EU age verification app to ban any Android system not licensed by Google 6 days ago:
If it happens at scale, it will be flagged pretty quickly.
How? In a correct implementation, the 3rd parties only receive proof-of-age, no identity. How will re-use and sharing be detected?
- Comment on EU age verification app to ban any Android system not licensed by Google 6 days ago:
merely polling googles hardware based stuff
I understand. In the context of digital sovereignty, even if the linked shitty implementation is discarded (as it should be), every correct implementation will require magic DRM-like chip. This chip will be made by a US or Asian manufacturer, as the EU has no manufacturing.
- Comment on EU age verification app to ban any Android system not licensed by Google 6 days ago:
If it is about hiding some data handled by the app, that will be instantly extracted.
Look at the design of DRM chips. They bake the key into hardware. Some keys have been leaked, I think playstation 2 is an example, but typically by a source inside the company.
- Comment on EU age verification app to ban any Android system not licensed by Google 6 days ago:
That merely shifts the problem: now the login to that 3rd party can be shared, and age verification subverted.
- Comment on The Fediverse is the Left Wing Circle Jerk 1 week ago:
I get where you’re coming from. There’s certainly a “I know best and should never reconsider my views” anti-sympatic thinking to be found here. But I wouldn’t say it’s more than elsewhere.
In any case, the technology is wonderfull. Start your own instance, be the change you want to see in the world.
Try to find a flower today, appreciate how beautifull it is.
- Comment on The Fediverse is the Left Wing Circle Jerk 1 week ago:
Do you think that’ll be a large problem in your life?
- Comment on does this actually imply alcoholism or just snark? 1 week ago:
I don’t know the particulars of your reference. But the village priest being alcohol dependent was a common element in storytelling, yes.
- Comment on EU age verification app to ban any Android system not licensed by Google 1 week ago:
And the EU for their stupid fucking censorship