Nostr notes by David Chisnall (Now with 50% more sarcasm!)

Around ten years ago, one of the FreeBSD developers had an SSH ...

2025-09-09T07:44:25Z

In reply to nevent1q…t5x4
_________________________

Around ten years ago, one of the FreeBSD developers had an SSH key compromised. This key gave access to the machine with our subversion server on it. And, due to how svn worked, every user had write access to the directory containing the repo.

Subversion does not have any way of doing integrity checks, so the recovery process involved (via a script) checking out each revision in turn, then doing the same with a git mirror, and validating that they were the same.

Audit logs showed that the attacker had logged in, tried running a few Linux commands, got error messages, and logged out. We were *incredibly* fortunate that they didn’t do anything more serious.

MSRC: Memory safety bugs are the root cause of around 70% of ...

2025-08-25T07:41:41Z

MSRC: Memory safety bugs are the root cause of around 70% of security vulnerabilities.

Normal people: We should deploy things that mitigate those and reduce the percentage by fixing the bugs.

MS senior leadership: Let’s put a thing that introduces entirely new categories of vulnerability into every product and make developers use coding tools that introduce vulnerabilities that experienced developers never would! Then the 30% will get bigger!

Simple solution: A 10% exit tax on any wealth over $100M. If you ...

2025-08-20T09:11:13Z

In reply to nevent1q…4me0
_________________________

Simple solution: A 10% exit tax on any wealth over $100M. If you give up residency, you are instantly taxed a total of 10% of your wealth. If you think you'll enjoy the next ten years more out of the country, pay the next ten years of wealth tax up front and bugger off.

More complex solution: There needs to be a lot more international cooperation on taxing the morbidly wealthy. This needs to include agreed minima on wealth taxes across all of the places people are likely to want to live, but also sanctions on people who choose to hide from them. For example, people domiciled in countries that are not signatories to extreme-wealth treaties may not:<li>Be passengers in private jets that overfly or land in areas that are. Fine is €1M for the first offence and doubles each time. Fines that are not paid for more than 30 days result in prison time.</li><li>Own a controlling interest in any news or advertising company that operates in a signatory country. Such ownership results in a block for the company.</li><li>Donate to any political party or candidate.</li><li>Own property worth a total of more than the median house price in any signatory country.</li>

If all of the EU countries agreed to that list of conditions, I wonder if US billionaires would start pressuring the US government to sign. I doubt they'd like that set of restrictions on their activities.

It looks as if this is the actual error:<code>CMake Error: ...

2025-07-10T15:45:39Z

In reply to nevent1q…tej8
_________________________

It looks as if this is the actual error:<code>CMake Error: The source directory "/usr/ports/x11-themes/plasma6-aurorae/work/aurorae-6.4.2" does not exist.<br>Specify --help for usage, or press the help button on the CMake GUI.<br></code>

The line below appears to have worked:<code>/bin/mkdir -p /usr/ports/x11-themes/plasma6-aurorae/work/.build<br></code>

So I guess the port thinks it's building in the work/.build directory, but is then running CMake to target work/aurorae-6.4.2, which doesn't exist?

Is this in Poudriere, or are you trying to build on a host system (the latter is almost certain to fail for many reasons)?

They can even increase, as long as house-price inflation is lower ...

2025-07-02T14:40:00Z

In reply to nevent1q…ltll
_________________________

They can even increase, as long as house-price inflation is lower than wage inflation. Keeping house-price growth at 1-2% and wage growth at 2-3% for a while would slowly fix the problem.

But when they leave, you need to do a few other ...

2025-06-22T09:53:51Z

In reply to nevent1q…ae6u
_________________________

But when they leave, you need to do a few other things:<li>Start properly taxing assets they have in the country.</li><li>Bring back limits on media ownership (no newspapers or TV stations can be majority owned by foreign nationals, for example).</li><li>Ban any direct or indirect contributions to political parties by them.</li>

You want to leave? Leave.

Oh, and ideally do what the USA does and have a big exit tax. Have a reasonably high threshold, maybe £2M, but you pay 50% tax on all assets above that line when you leave.

I don't understand how the Royal Society doesn't realise ...

2025-04-28T09:22:44Z

In reply to nevent1q…85ka
_________________________

I don't understand how the Royal Society doesn't realise how much damage it did to their reputation to admit him in the first place.

Even before all of the fascist stuff, he was not a scientist, not a researcher. His contributions to science and engineering were that he was a rich person who funded some work.

Making him a FRS made it very clear that it's not an institution for scientists, it's an institution for plutocrats.

It used to be that being a FRS was something to aspire to an a scientific career. Now it's an easy decline if offered, because who would want to be associated with an institution like that?

Is this all true if you separate out F-Droid as a program and ...

2025-01-27T17:54:43Z

In reply to nevent1q…z55v
_________________________

Is this all true if you separate out F-Droid as a program and F-Droid as the default repository? My impression of the F-Droid default repository is pretty much aligned with your post, but it's also easy to add other repositories. I'd expect something like WireGuard or Firefox to be able to provide their own F-Droid repository quite easily. Are there also flaws in the client app that make this a bad idea?

Nostr notes by David Chisnall (*Now with 50% more sarcasm!*)