baronvonj
@baronvonj@piefed.social
- Comment on Day 586 of posting a Daily Screenshot from the games I've been playing 1 week ago:
hey my kids used to play this! weird game.
- Comment on Colorado proposing Bill to move age verification to Operating System rather than web site 1 week ago:
If it’s open source it can be verified that it’s not storing the data.
And I 100% agree that software scanning an ID is an overall bad way to verify. With a CC# validation at least that shows up on my statement, but if my kid is sneaky enough to get mine out of my wallet I have no way of knowing.
- Comment on Colorado proposing Bill to move age verification to Operating System rather than web site 1 week ago:
I feel like #1 and #2 are problems whether its client side or server side. As for #3 I would lean in the direction of there being a one-time check with no persistent knowledge. Like when you flash your ID to the bartender to order a drink. A client app that scans the ID and returns the answer to the requestor.
But I don’t think there is any way to reliably implement this sort of thing. I think it should really just be left to parental control and monitoring.
- Comment on Colorado proposing Bill to move age verification to Operating System rather than web site 1 week ago:
Some kind of cryptographic signing of the executable could probably help with that.
Ultimately I don’t believe there can ever be a foolproof solution and the emphasis should be on client-side parental controls.
- Comment on Colorado proposing Bill to move age verification to Operating System rather than web site 1 week ago:
This goes in a better direction than web sites doing it themselves, I think. The government put out an open source tool that runs locally and the browser just gets a yay/nay return code from it.
- Comment on AI blamed again as hard drives are sold out for this year 1 week ago:
I just bought a few WD drives direct, but their web site has a problem with validating virtual credit card numbers. I’m the few days it took to resolve it the price went up. Fortunately since I had the support ticket I was able to get refunded the difference.
- Comment on The creator of systemd wants your entire system validated by SecureBoot 1 week ago:
What if it was just an off the cuff joke?
- Comment on AWS suffered ‘at least two outages’ caused by AI tools, and now I’m convinced we’re living inside a ‘Silicon Valley’ episode 1 week ago:
You know Russ, I’ve been known to fuck myself.
- Comment on The creator of systemd wants your entire system validated by SecureBoot 1 week ago:
I guess you’re not thinking of “locked down” in terms of independent developers finding the iOS and Android “play by our rules and be distributed thru our app store or we’ll make it hard for users to run your software” to be a barrier to distribution.
- Comment on The creator of systemd wants your entire system validated by SecureBoot 1 week ago:
I was referring to this
If this technology is successful, the end result could be that we would see our Linux laptops one day being as locked down as an Iphone or Android device.
- Comment on The creator of systemd wants your entire system validated by SecureBoot 1 week ago:
Because if there’s one thing Linux users think about their systems .. it’s “hey why does this thing let me do what I want?”
- Comment on Europe is ready to ditch US tech for private alternatives 2 weeks ago:
Proton Mail is a good idea for the zero-knowledge encryption, but it’s a whole lot of vendor lock in as you can’t use standard clients (IMAP/STMP/CalDAV/CardDAV) for mail/calendar/contacts. Tuta isn’t any better in this regard. If you’re looking for ability to use standard open clients, probably mailbox.org would be a good option to check out.
They have really dragged out making a Linux Drive client. The protocol isn’t documented for 3rd party implementations, but they’re Windows/Mac desktop clients are open source so it’s conceivable to reverse engineer the protocol from those, but nobody has done it.
They’ve delivered a bunch of new apps to their suite like a crypto wallet and an AI agent, rather than addressing popular feature requests for existing software.
- Comment on Samsung knows exactly how you'll use Galaxy S26 Ultra's 'Privacy Display' in teaser 2 weeks ago:
“Coming” Feb. 25 2026. 😉
- Comment on Gentoo Linux Begins Codeberg Migration In Moving Away From GitHub, Avoiding Copilot 2 weeks ago:
Gentoo is still around‽ But Arch exists and eMachines was discontinued like 10 years ago!
- Comment on You probably can't trust your password manager if it's compromised 2 weeks ago:
I did not, in fact, say. But they did say that, yes.
- Comment on You probably can't trust your password manager if it's compromised 2 weeks ago:
You can self-host Bitwarden. Or there’s the Vaultwarden implementation of the Bitwarden API.
- Comment on All U.S. Social Security numbers may need to be changed following a massive breach that is already being investigated as a national threat 2 weeks ago:
- Comment on TV Execs Warn FCC: NextGen TV DRM Could Turn Free TV Into Gambling and Pay-TV Platforms 3 weeks ago:
Can’t really categorically say one way is best or worst. Depends on the individual arena (location relative to you and transportation options, suitability of the arena to the sport, concession prices, concession quality, weather if the arena is open), the teams playing, the personality of the other fans near you, your own personality. It’s all good.
- Comment on Discord roll out global age verification system, including an "age inference" model that runs in the background 3 weeks ago:
Everything I’ve said is everybody is categorize as a teen unless the provide face/ID verification. So anonymous should still be allowed in general, just not to servers/channels set as age restricted.
- Comment on [deleted] 4 weeks ago:
Agree on the calendar. In particular would like to find one with map integration.
- Comment on Microsoft Just Killed the "Cover for Me" Excuse: Microsoft 365 Now Tracks You in Real-Time 4 weeks ago:
good managers don’t care.
- Comment on Lawsuit Alleges That WhatsApp Has No End-to-End Encryption 5 weeks ago:
I will say, not too long ago there was some question if I had setup a WhatsApp account with my number due to some emails I was receiving. Not wanting to install the app and unwittingly create an account just by checking if I had one, my wife created a group chat with just her and my number, sent a message, and then we saw it get marked as read by all. Which in an E2EE system should not have been possible without me having the app setup. so I did go ahead and wiped an old and setup the app to make sure I was in control of any account for my number, and I did then receive that group chat. But still, very sketchy.
- Comment on Lawsuit Alleges That WhatsApp Has No End-to-End Encryption 5 weeks ago:
An e2ee group chat would need every member to have every other member’s public key. So for 5 people, your client would sign with your private key and send 4 unique messages encrypted each with 1 other person’s public key. Each of them would decrypt their copy of the message with their private key and verify the signature with your public key. So I think what arcterus was saying was that employee who requests access to a user’s messages then becomes just another member of a group chat, but the UI just doesn’t show it as such. Every message you send is then secretly encrypted, on your client, with their special public key and sent to them to be decrypted. That would still be E2EE.
- Comment on Has Gemini surpassed ChatGPT? We put the AI models to the test. 1 month ago:
God damnit
- Comment on [deleted] 1 month ago:
do you get some kind of financial kick-back for linking with these janky-ass URLs or something?
- Comment on Digg launches its new Reddit rival to the public 1 month ago:
4th, really: Popular Digg, the version that drove people to Reddit (which they labeled as v4), whatever it languished as after that and before now where I think users could only comment, and the new site that just went live.