NobodyElse

joined 1 year ago
[–] NobodyElse@sh.itjust.works 35 points 11 hours ago (5 children)

I’m pretty sure the phrase “kneecapped by crap executions” is in the USB working groups’s charter. It’s like one of their core guiding principles.

[–] NobodyElse@sh.itjust.works 5 points 1 month ago* (last edited 1 month ago)

Who brought Trump into this comparison?

You can “win” this argument if you want to. I don’t really care. My issue was with Gates being described as a good hearted oligarch. I’m not trying to rank them or say that Gates is the worst or anything. Rewriting history so that Gates is a good guy is a bit much though.

[–] NobodyElse@sh.itjust.works 6 points 1 month ago (2 children)

I’m not going to give you a list, because I have other things to do, but you can read for yourself under Controversies here: https://en.m.wikipedia.org/wiki/Bill_Gates.

I was mostly thinking of the decades of anti-trust and “embrace, extend, extinguish”, as well as his sexual harassment of his employees. But I had forgotten that he was besties with Epstein and his wife divorced him after the extent of his endeavors there came out. So I guess child-raping may be on his list too.

Pretty swell guy.

[–] NobodyElse@sh.itjust.works 13 points 1 month ago* (last edited 1 month ago) (5 children)

Gates was (and arguably still is) an enormous asshole and has only recently started spending money on “charity” and PR to improve his public image (similar to Carnegie). That you’re willing to let him off the hook for all of his past evils only shows that spending a tiny fraction of their ill-earned gains on PR will wipe their slate clean and people like you will let them off the hook.

If you let Gates, Carnegie, etc off the hook for their rotten past, expect future generations to let Musk et al. off the hook once they buy back their reputation when they get old.

[–] NobodyElse@sh.itjust.works 6 points 4 months ago (1 children)

But they’re also having to fight for more limited funding among a crowd of chatbot “researchers”. The funding agencies are enamored with LLMs right now.

[–] NobodyElse@sh.itjust.works 36 points 4 months ago (6 children)

With even email clients and web browsers running arbitrary and untrusted remote code on a regular basis, that model needs serious reconsideration.

This xkcd shouldn’t still be insightful. https://xkcd.com/1200/

[–] NobodyElse@sh.itjust.works 31 points 5 months ago (12 children)

E2EE is not part of the standard and only exists as a proprietary Google extension, using Google’s servers. Implying that implementing RCS would get everyone cross-platform E2EE is misinformation.

[–] NobodyElse@sh.itjust.works 1 points 7 months ago (1 children)

RCS, as adopted by GSMA , is zero encryption text messaging. RCS with encryption is a proprietary Google product and relies on Google servers.

[–] NobodyElse@sh.itjust.works 2 points 7 months ago

On my phone, so links may come later. It’s hard to find solid documentation on it, since their encryption extension is proprietary, but it’s been referenced as being based on the Signal Protocol. The Signal Protocol, or every implementation of it that I’ve seen, uses a central “trusted” repository of public keys to tell message originators query to encrypt the message to. For Signal, and I assume Google RCS, that central repository is Google. The protocol doesn’t allow for federation, so any system that is interoperable with Google RCS will rely on Google as the trusted authority.

The private key part I’m much less sure of, since both the Signal and Google RCS clients are closed source. Signal makes you jump through hoops to add a new client, involving one of your currently installed clients. This suggests that Signal isn’t in possession of your private keys. On the other hand, all you need to set up a new Google client is your account password. This suggests that either your keys are held by Google (perhaps encrypted by your account password) or that new keys can be added without needing explicit involvement from current keys.

Of course this is all speculation because the implementations aren’t available for inspection.

[–] NobodyElse@sh.itjust.works 11 points 7 months ago (3 children)

So is this going to be standard RCS, which has no encryption and the telcos need to support, or the Googlified version that does E2E encryption but requires storing keys on Google’s servers?

RCS has interoperability issues itself and Google hasn’t been making the situation better.

[–] NobodyElse@sh.itjust.works 7 points 8 months ago (1 children)

Yes. I’m a man of few words.

view more: next ›