I personally bristle at the corporate espionage and IP theft that China has undertaken the last few decades. I can't help but respond here whenever anyone brings up the inane comparison to Samuel Slater.
But with this, I don't have an issue. There is no theft since what is being used is the exact product that is being delivered. Yes, it's breaking the ToS, but ToS are generally bullshit. Anthropic surely broke thousands of ToS or other legal terms while it was scraping for content to train on. Which is why they had to pay $1.5B
GrapheneOS would be so much more interesting if there was an official supported way for rooting it. That's the only reason I haven't switched to it on my several devices (all rooted)
That completely goes against what they're working towards. I understand why you would want to root your own phone, but GOS is targeting highest security standards and root ain't one of them (for good reason).
But in that case why you would need to use GrapheneOS at all? Without security you cant have privacy and OS with security as priority cant just add hole in the system because it would allow to bypass all security features added on top of AOSP and AOSP features too. Most features people use root for can be achieved without root by modifying Android Framework itself with SystemUI/Settings app
If you wish so you can gain root privileges on your own in your own build or with modifying GrapheneOS existing builds. It wont be compatible with GrapheneOS provided updates because of signature mismatch
If you value freedom to do what you want on your devices, then you may want to consider Librem 5 instead. It runs a desktop Debian derivative with full root access.
You have the ability to do what you want on your device. Root access in AOSP is just used as a hacky shortcut to achieving specific functionality. To do it properly while maintaining the security model would be to build it into the OS itself. The same concept applies to desktop platforms and the Librem 5. This isn't related to freedom.
That device, and the Debian derivative it runs, are not private or secure.
What do you mean when you say "not private"? Are you accusing the company of sending private data to their servers, as Google and Apple do?
Freedom of computing on Librem 5 doesn't end with the root account. It also allows to natively run any desktop software and develop it in any language, without reliance on Google's decision on how one must use the phone, how your OS must evolve and when you may get your updates. Or install a completely different OS from different developers, because there is no reliance on anything proprietary at all.
How you can call a device with a ton of opaque binary blobs more private and secure without mentioning this fact is beyond me. I do not call Librem 5 more secure. But its security depends on what I choose to run on it. And I only run trusted software, so it can be secure.
Maintaining one's data as private requires that it is protected as a baseline. Privacy violations do not solely exist as telemetry or data offered up by the platform to some other party.
The protection is achieved through security. The major goal of something like GrapheneOS is privacy, which needs solid security as a prerequisite.
The blobs, while proprietary, are not opaque. They are able to be examined and they are.
The security of a device should not be dependent on what you choose to run on it. You should trust and be able to verify that the platform on which you are running the software prevents something malicious from accessing data which doesn't belong to it or otherwise violates the rules set by the platform (OS).
In this respect, the Librem 5 would do a horrible job compared to even stock AOSP. Thinking that you are secure because you only run "trusted" software on an insecure platform is cope.
> Maintaining one's data as private requires that it is protected as a baseline.
So you're conflating privacy with security, as I expected. These are separate matters, although I agree that privacy can't exist without security. And security can be achieved by different means, e.g., by choosing what to run. You can't force your threat model and security approach on everyone and claim that everybody who disagrees with you is insecure let alone has no privacy without good evidence.
> The security of a device should not be dependent on what you choose to run on it.
Why not? What's wrong with it? This is more or less how most desktops work.
> You should trust and be able to verify that the platform on which you are running the software prevents something malicious from accessing data which doesn't belong to it or otherwise violates the rules set by the platform (OS).
This is a big ask, and I doubt that many OSes can provide you such guarantee reliably. I would only trust Qubes OS with that, since it relies on strong, hardware-assisted virtualization and not purely on code correctness (my daily driver on desktop). I guess, regular CVEs confirm my opinion. On Qubes, the VM escape doesn't really happen.
> Thinking that you are secure because you only run "trusted" software on an insecure platform is cope.
This is exactly how security in a typical Linux server works, isn't? This is also similar to security through compartmentalization, when you isolate untrusted software from trusted environments.
I would even go as far as suggesting you to follow my approach at least partially, since installing and using any untrusted app on you GrapheneOS can destroy your privacy as long as the app has the internet access and can send tracking information about you to anyone.
Again, you're misreading. He stated that security is a necessary condition for privacy, you assumed that he's conflating the two things (he clearly doesn't), then...essentially agreed with his point. It's just totally defective.
My comment, which you accuse of not advancing the conversation, was that your comment was internally incoherent. Like some (not all) of your comments, it sets discourse back significantly and the discussion would be much better off without such things.
You admit to holding a preconceived notion that he thinks security and privacy are the same things, which might have something to do with why you consistently fail to interpret some of even the simplest comments. You'd already reached your conclusion about him and didn't truly read his comment, but responded to your preconceived notion of it as soon as you saw the slightest opening. You do that a lot. It doesn't advance discussion.
You're in the second half of your first decade doing exactly the same thing here year after year with an absolute litany of people, including multiple elite developers who are doing incredibly difficult and important work, highly qualified people whose opinions you completely disregard repeatedly. Searching this site for your old threads shows a certain imperviousness of thought. You already have your talking points and you're not budging from them.
Which is fine, some people are just like that, and I'll continue to weigh in on high-traffic threads to make sure you don't harm important projects with your usual comments, but engaging directly with you is as tedious as it is pointless and I won't be doing that much.
I'm not sure what your motives are, but either way there's no upside to doing anything beyond making sure casual readers of high-traffic discussions won't see your more defective comments go mostly unchallenged (as many others have already wisely moved on from engaging with you).
The Aquilon RS4 can do DisplayPort 1.4[1] up to 32.4Gbps (HBR3). You will need two DP1.4 output cards[2] and two DP1.4 input cards[3].
Probably easier & cheaper to do switching in HDMI 2.1 though.
Aquilon is expensive, but the nice thing about the units is that they literally allow you to have a seamless switching experience (everything else will blank out the screen, and cause it to disconnect for a few seconds while everything resyncs).
If you are OK with child abuse, unfettered corruption, sex and weapons trafficking or scammers stealing your parents savings and generally like to wonder constantly if the next terrorist bomb or cyber attack happens close to you. Then there really is no need for such things as AML/CTF controls. That isn’t saying AML/CTF stops all crime but it’s making it more expensive and less criminal activity happens.
You are not alone with your view, in a sense Meta, Google and AWS as well as most social media platform act like they don’t think they need to have such controls. They just provide the platform.
By that logic AML/CTF controls would need to stop for banks and all others. Processing a payment for murder would become OK. Even though the killing would be a criminal act the payment processor would not have any obligation to support the investigation, they just processed a payment.
It make a lot of sense if you think of repo history as properly immutable, and dispose of the notion that brach is a first class object in the git sense. Bookmakers just pin a checkin hash to a name, and you can have many heads in an hg branch.
Are there any good open source implementations of these kinds of tools? They really are useful for things other than def deletes (though I support that too)
reply