But in there the virus and Megaman was part of the same software system/universe. What I’m arguing is that it would have been possible to set up 2 separate systems/universes, one is the one where Megaman is plugged, and the other one is one that has read/write access to all inputs/outputs of the first, without the first being able to detect that in any way.

So… Megaman would be sent to the first and see no problem (or worse, see enemies that aren’t real to keep him distracted) while the other alternate OS would have no Megaman in it, but still it would be able to analyze all Megaman is doing in the first system/universe (sort of like in Matrix), and possibly even transmit/translate his actions in a modified way so that it serves a different purpose.

But it’s not something the plugged OS can do anything about, because the malware is not running on it. It’s an attack that uses hardware, you can’t use antivirus against that, you’d need a person to physically manipulate the circuitry in the keyboard/monitor or whatever peripheral that is being manipulated.

Wouldn’t it be kind of insecure to be plugging your private data into public places?

In theory, the publicly available terminals could very well have their own system under the hood, wired into the hardware, just so they can run some keylogging or recording of everything that goes through the peripherals, including the screen, without the plugged OS being able to know, right?

The bad guys in those shows/games could have hijacked the terminals so they can take remote control of the inputs when an OS is inserted and wreak havoc. Dr. Wily could have messed with some terminals so that when Megaman saves its progress on them parts of his brain are saved with different data, so when it’s restored you’ll get a different/evil Megaman.

Bluetooth works great in Android for me though… once the devices have been paired, they connect the moment they are available and it just works.

However, for some reason on PC it’s often quirky (Windows or Linux). My PC bluetooth works through a dongle so I wonder if an integrated card would do better.

Also, most devices will not keep more than 1 pairing, so it will be annoying if you plan to be jumping around between computers. But that’s not the fault of the protocol, in theory remembering multiple pairings can be supported if the devices wanted to implement that.

They didn’t have the right frame of reference.

From what I gather, I don’t think it’s about any stance from Codeberg in general, it seems they are attacking “several projects advocating tolerance and equal rights” in particular. They just happen to be hosted in Codeberg.

lol… it does make it sound like they are trying to hide things from him, but I don’t think that’s the intention… it probably means “before the branch with the breakage has to be reviewed / tested / checked by the main person merging branches from each subsystem into mainline (Linus)”

This might fool some scrapping, but at the expense of making it not very legible for humans too. Also while ti might work right now, if it ever became a popular approach the AI scrapping could easily adapt. I expect they already try to correct for spelling mistakes anyway.

It reminds me of leet-speak. The custom keyboard is not a bad idea though.

I have astigmatism too and for me it looks just as bad when inverted, a blurry mess of black on white.

To me, what makes one a better choice vs the other has more to do with my environmental lighting.

• If I’m on a place with a lot of light, the screen being black makes it have reflections so I prefer black on white in those cases.
• If I’m in a dark place, the bright screen makes the screen itself the primary source of light which is not good for my eyesight, it can make my eyes feel like burning/tired after a while.

You don’t need about:config for this.

This is the same setting you can configure in the preferences under “Website appearance”… if you change that you’ll see the about:config setting changes too.

This is the full paragraph:

We collect certain device and network connection information when you access the Service. This information includes your device model, operating system, keystroke patterns or rhythms, IP address, and system language. We also collect service-related, diagnostic, and performance information, including crash reports and performance logs. We automatically assign you a device ID and user ID. Where you log-in from multiple devices, we use information such as your device ID and user ID to identify your activity across devices to give you a seamless log-in experience and for security purposes.

It looks to me that they are using it to identify the user uniquely, maybe also related to captcha to prevent bots (it’s common practice to capture mouse and keyboard while resolving captchas to see if the movement is human-like).

But that’s not what the terms on both Google/Meta and Deepseek say.

There’s no term in their ToS saying Google/Meta restricts the data collection to forms, which means that if the ToS allowed them to collect them from forms (and as you admitted, we do know for a fact that they do), then it also allows them to collect it outside of forms. The reason I put the search suggestions as example is because it’s one we CAN know (and thank you for agreeing on that), but that doesn’t mean they don’t do other captures at times we DON’T know… and also it’s not the only place, Google owns several captcha mechanisms and capturing input patterns is common on those too (and captchas capture outside forms too!). Another obvious example is Google docs, another is Google translate… and again, those are only the obvious ones, we don’t know if there are non-obvious ones.

In the other direction too, Deepseek terms don’t say it does it outside of forms either. You are jumping into assumptions by saying it acts the same as a traditional keylogger and that the keystrokes are captured for “anything typed”. For all we know the only place they might be capturing is when the user is in very specific steps of the login process, maybe for captcha purposes too, or specific forms for preloading results, etc. There’s no reason you should trust they do it any less/more than Google/Meta does, the ToS in both have the same lack of information in that respect.

You can only make assumptions one way or the other, since the terms are not specific on what exactly they allow themselves to do, in the case of Google/Meta they’re so sneaky that they avoid saying they do capture them (even though they do, as you yourself admitted), while in the case of Deepseek, even though they are a bit more specific by using the word “keystrokes”, they also don’t specify where/when/why (other than “to give you a seamless log-in experience and for security purposes” …but that’s also unclear wording).

Yes, it’s possible. To be honest, I find it very sad that we have grown so dependent on ISP and big telecom companies to have a working network.

In theory, you could have an infrastructure in your neighborhood and be able to play Quake with your neighbors without making use of the phone line at all, completely free of monthly fees and with a very efficient and fast connection too! you’d just need cabling connecting the apartments/houses and some decent routers controlling/restricting access on each subnet. It’s a pity that’s not a standard thing when designing residences.

Though less efficient and more limited in range, you can technically do it with Wifi and mesh networking too… there are projects like B.A.T.M.A.N (https://www.open-mesh.org/), however, it’s not very user-friendly to set up. I believe there have been some projects that attempted to launch embedded devices to act as mini routers for this, but the spread has not been wide enough to make it worth it, sadly.

I think the argument is that those alternatives already existed before. Twitter was not being prioritized, it was essentially mirroring the content already available in RSS, mastodon, etc. So effectively, there’s now one less place where the news will be visible.

However, I do agree with the move, but only because Debian being a FOSS initiative should stay away from proprietary platforms and promote FOSS, even if it means effectively “shutting off” a portion of users who don’t wanna leave the twitter bubble.

Were they using Twitter to provide exclusive updates not available anywhere else?

My impression from the post is that they are publishing the exact same updates in multiple locations, including mastodon at https://framapiaf.org/@debian …so just because they were publishing in that one extra site to make it accessible to a particular subset of people does not mean all other people were being shut off from receiving updates.

However, I do agree with the move, but only because Debian being a FOSS initiative should stay away from proprietary platforms and promote FOSS.

I don’t know enough detail about ATproto, but I wonder if it’s technically possible to block access to posts without also blocking federation. From what I’ve heard the functionality is more modular than Activitypub (content indexing being a separate service from content hosting) so I wouldn’t be surprised if it wasn’t possible.

Thanks, I did not know. I think you are referring to this: https://www.freevacy.com/news/noyb/trumps-actions-to-dismantle-pclob-threatens-eu-us-data-transfers/6088

To be completely honest… as an European I would be happy if they actually did make it so that no EU-US data transfer were allowed… we need to stop depending on all these US-based services… but like you said, they probably don’t have the balls to pull the plug. Which makes me wonder if that board was actually really any protection at all for privacy or it had always been an empty shell used as an excuse on both sides just to keep up appearances and maintain the plug on.

I honestly think this could be a win for us. Worst case scenario, nothing really changes but some masks fall off and at least some people would stop acting under false pretense (which could open the doors for change). So I’m actually glad he did that.

The last thin veil of privacy for Eurpeans has been ripped to shreds by Trump last week.

What did he do? I know Trump does not like the GDPR, but did he sign something affecting it last week?

The argument stands, though.

Yes, not ALL other apps do that, but the comment was specifically talking about companies like Google and Meta… they definitely do collect incomplete strings from search forms (down to individual characters) when they display search suggestions, for example. They might not mention “keystrokes” in the legal text, but I don’t see why they wouldn’t be able to extrapolate your typing pattern since they do have the timing information which should be enough data to, at some level, profile it.

It’s worth noting that presently mozilla earns $0 from my not using google, and not seeing sponsored tabs.

I thought Google pays (or paid?) Mozilla just to be the default engine out the box, regardless of whether you change it or not.

Another point is that it’s so easy to turn those things off (the sponsored shortcuts too) that I wonder if it would be worth the cost of launching an alternate version behind a paywall while making sure it works only for people who pay (which could be seen as DRM anyway, with potentially massive backslash). So I imagine the end result would not be that profitable (whether they decide to paywall it properly or not). Those who wanna donate and have no ads can do that already, those who want a cleaned up version of Firefox can have that and from neutral and independent third parties which I’d argue is better than if it were Mozilla who did it (and you can donate to Mozilla while using those too)… so I’m not sure it would make sense.

But it would make sense to have a donation pool specifically to fund Firefox development. That would be something interesting, considering Mozilla does other things besides Firefox. But I expect they don’t do that because they probably fear all donations will move there and they don’t want to lose funds for other things. We might need to create a separate organization if we want an independent fund for Firefox-based browsers.