• 0 Posts
  • 164 Comments
Joined 1 year ago
Cake day: July 14th, 2023
  • hedgehog@ttrpg.networktoAsklemmy@lemmy.mlOn prison abolition
    5·
    20 days ago

    I gather you’re from the US.

    Yes, but also the prison abolition movement is US specific. I’m not affiliated with it, to be clear - not that I oppose it or anything, but I certainly don’t speak for any of its activists.

    If we “only” reduce the prison population to 5% or 1% of its current count in the process

    Then why call it abolish prisons?

    Have you ever heard the quote “Shoot for the moon. Even if you miss, you’ll land among the stars?” “Abolition” is a goal, an ideal - and even if it isn’t accomplished fully, working toward that end goal and considering everything necessary to get there along the way is the point.

    Along those lines, I posit that if 90% of prisons are torn down or repurposed and the remaining 10% are drastically changed - holding fewer prisoners; not being privately owned and operated; focusing on rehabilitation, like learning new job skills, when possible, and otherwise simply being more humane, then the prison abolition movement would have succeeded.

    But if you disagree with the name, what would you call it? “Prison Reform” is already taken and means something drastically different.

    And to be clear, for some the goal is to eliminate prisons entirely. The movement isn’t monolithic. Abolishing the “prison institution” as it exists today is a pretty common goal, though, and using “prison” to mean “the prison institution” is a pretty common literary technique called “Synecdoche,” which you likely use every day.

    I see now that you’re trying trying to trigger an additional emotional response. Working on association, rather than logic.

    It’s a logical association, though. If the name evokes feelings of slavery, that’s a good thing, as the situation is similar enough to slavery to warrant that.

    Slavery in the US is still legal (so long as the person is in prison). Black Americans are 5 times as likely to be in prison as white Americans. A black man born in 2001 has a 20% chance of being in prison at some point in his life.

    The systemic oppression of black Americans is obviously because of racism, and the parallels between slavery and the prison institution aren’t accidental. For example, here’s a quote from Slavery and the U.S. Prison System:

    Gary Webb’s famous investigation revealed that the CIA was operating a gun-running and drug-smuggling operation that brought guns to the Nicaraguan contras that the U.S. was using to destabilize the popular government in that country, while bringing cocaine into the U.S. and funneling it to street-level dealers with access to black inner-city neighborhoods.  The history of black street gangs is part of the afterlife of COINTELPRO, the FBI’s counter-intelligence program that actively sabotaged black social movement throughout the long civil rights era.  Bobby Lavender, one of the founders of the Bloods in Los Angeles, explained that the COINTELPRO assassinations of black leaders, and the terrorizing of rank-and-file civil rights activists, left an organizational vacuum in many communities that youth like him filled with their “own brand of leadership.”  COINTELPRO established a pattern of law enforcement interference and sabotage of black self-determination, including gang truces, from the 1970s through to the present.

    Such manipulation, especially, is something I would not want to be a part of. It’s vile.

    Personally, I think the systemic sabotage of black people’s livelihood, communities, and families is vile, but you’re welcome to your opinion.

  • hedgehog@ttrpg.networktoAsklemmy@lemmy.mlOn prison abolition
    31·
    20 days ago

    The name is important because of the parallels between slavery and modern day prisons.

    At minimum, the movement is about completely rethinking our approach to dealing with crime. If we “only” reduce the prison population to 5% or 1% of its current count in the process, we won’t have abolished all prisons, but we will have succeeded in abolishing many parts of the current criminal justice system.

  • hedgehog@ttrpg.networktoAsklemmy@lemmy.mlHow would a credibility system work…
    4·
    23 days ago

    Are you thinking of something like Stack Overflow’s reputation system? See https://stackoverflow.com/help/whats-reputation for a basic overview. See https://stackoverflow.com/help/privileges for some examples of privileges unlocked by hitting a particular reputation level.

    That system is better optimized for reputation than the threaded discussions that we participate in here, but it has its own problems. However, we could at minimum learn from the things that it does right:

    • You need site (or community) staff, who are not constrained by reputation limits, to police the system
    • Upvoting is disabled until you have at least a little reputation
    • Downvoting is disabled until you have a decent amount of reputation and costs you reputation
    • Upvotes grant more reputation than downvotes take away
    • Voting fraud is a bannable offense and there are methods in place to detect it
    • The system is designed to discourage reuse of content
    • Not all activities can be upvoted or downvoted. For example, commenting on SO requires a minimum amount of reputation, but unless they’re reported as spam, offensive, fraudulent, etc. (which also requires a minimum reputation), they don’t impact your reputation, even if upvoted.

    If you wanted to have upvoted and downvoted discourse, you could also allow people to comment on a given piece of discourse without their comment itself being part of the discourse. For example, someone might just want to say “I’m lost, can someone explain this to me?” “Nice hat,” “Where did you get that?” or something entirely off topic that they thought about in response to a topic.

    You could also limit the total amount of reputation a person can bestow upon another person, and maybe increase that limit as their reputation increases. Alternatively or additionally, you could enable high rep users to grant more reputation with their upvotes (either every time or occasionally) or to transfer a portion of their rep to a user who made a comment they really liked. It makes sense that Joe Schmo endorsing me doesn’t mean much, but King Joe’s endorsement is a much bigger deal.

    Reputation also makes sense to be topic specific. I could be an expert on software development but be completely misinformed about hedgehogs, but think that I’m an expert. If I have a high reputation from software development discussions, it would be misleading when I start telling someone about hedgehogs diets.

    Yet another thing to consider, especially if you’re federating, is server-specific reputations with overlapping topics. Assuming you allow users to say “Don’t show this / any of my content to <other server> at all,” (e.g., if you know something is against the rules over there or is likely to be downvoted, but in your community it’s generally upvoted) there isn’t much reason to not allow a discussion to appear in two or more servers. Then users could accrue reputation on that topic from users of both servers. The staff, and later, high reputation users of one server could handle moderation of topics differently than the moderators of another, by design. This could solve disagreements about moderation style, voting etiquette, etc., by giving users alternatives to choose from.

  • hedgehog@ttrpg.networktoGeneral Programming Discussion@lemmy.mlDoes Open Source AI really exist?
    21·
    26 days ago

    “But tante, then we will never have Open Source AI”. Exactly. That’s how reality works. If you can’t fulfil the criteria of a category you are not in that category. The fix is not to change the criteria. That’s playing pigeon chess.

    This is a bad take. If your criteria aren’t grounded in reality, they aren’t useful, so of course you should change the criteria.

    It’s also a missed opportunity to point to an AI model that did things right and that would qualify as “open source AI” even if that definition were not watered down. For example, OLMo (which I just learned about) says that they provide full insight into the training data as well as “full model weights, training code, training logs, training metrics in the form of Weights & Biases logs, and inference code.” Their most complex models are 7B models, which is enough to be relevant.

    Saying “Meta and Alphabet will never release Open Source AI that meets the proposed definition” is fine. Saying “we’ll never have Open Source AI, period, that meets the proposed definition” means your proposed definition needs rewritten.

  • hedgehog@ttrpg.networktoOpen Source@lemmy.mlOpen-sourcing of WinAmp goes badly as owners delete entire repo
    11·
    1 month ago

    For starters, it was never “open source”…

    From your link:

    Instead, as Winamp CEO Alexandre Saboundjian said, “Winamp will remain the owner of the software and will decide on the innovations made in the official version.” The sort-of open-source version is going by the name FreeLLama.

    While Winamp hasn’t said yet what license it will use for this forthcoming version, it cannot be open source with that level of corporate control.

    If I upload the source code for my project on Github/Forgejo/Gitlab/Gitea and license it under and open source license, allowing you to fork it and do whatever you want (so long as you follow the terms of my copyleft license), and I diligently ensure that code is uploaded to my repository before being deployed, but I ignore all issues, feature requests, PRs, etc., is my project open source?

    Yes.

    Likewise, if Winamp had been licensed under an open source license, it would have been open source, regardless of how much control they kept over the official distribution.

    Winamp wasn’t open source because its license, the WCL, wasn’t open source.

  • hedgehog@ttrpg.networktoTechnology@lemmy.mlPasswords have problems, but passkeys have more
    21·
    1 month ago

    Do you memorize all of your passwords? If so, I take that to mean that you don’t use a password manager. Password managers - really, any app with 2FA - have this problem, too. But if you use a password manager and store your 2FA methods in it, then you only need to be able to regain access to your password manager.

    If you use a cross-platform password manager with Passkey support, like Bitwarden, you can use it on any of your devices. In the event that you lose all of your devices, if you don’t have an Emergency Contact set up, you will need your password and one of the following to gain access to your account:

    • Access to your 2FA method
    • Access to your Recovery Code
    • If you’re in an enterprise using Duo 2FA, access to a Duo bypass code (contact your Duo admin to request this)

    If you use security keys for 2FA, then you should have at least two - one that you keep with you and a backup that you keep in a safe place, like at home in a lockbox.

    If you use a TOTP app to log in, or if you use security keys and want another backup, then making sure you’ll have access to the Recovery Code should be your priority. You can write it down and keep it in a few different places - at home, in your car, in your locker at work, etc… You can share it with someone you trust in person or over an encrypted channel (like Signal). You can store it on a flash drive, encrypted by a second password (which can be much easier than your primary password) or even unencrypted, if you generally keep the drive somewhere safe, disconnected from your computer. As long as you remember your password and can access your recovery code, you’ll also be able to regain access to your account, including all of your passkeys.

    Emergency Access requires someone else to have access to their Bitwarden account, but assuming you don’t both lose access, it’s a pretty solid solution. When they request access, Bitwarden will send you an email allowing you to accept or reject their request. If you accept or don’t respond within the allotted “Wait Time” (which you configure: 1 day minimum, 90 days maximum) then they’ll be granted access. You also get a choice (when setting this up) to let them takeover the account (resetting your master password) or to just get read-only access.

    Maybe you don’t like Bitwarden and want to use some other app, like 1Password, Dashlane, Roboforms, etc… Whatever your choice, familiarize yourself with how to restore access to your account in an emergency. Then you only need to worry about that and not about how to get access to your passkeys that are on your Windows laptop or only synced to your Apple devices.

  • hedgehog@ttrpg.networktoTechnology@lemmy.mlPasswords have problems, but passkeys have more
    2·
    1 month ago

    But that is exactly what he recommends, using a password manager - with one time email authentication for the first login as an extra step, right?

    Nope.

    Using a cross-platform password manager with synced passkeys is different and much more secure than using a password manager with email TOTPs or sign-in links with emails that aren’t end-to-end encrypted.

    And password manager adoption is much higher than PGP keyserver adoption, and if you can’t discover someone’s public key you can’t use it to encrypt a message to them, so sending end-to-end encrypted emails with TOTPs/sign-on links isn’t a practical option.

    According to Statista, 34% of Americans used password managers in 2023 (a huge increase from 21% in 2022), so it’s not even like the best case scenario is rare.

  • hedgehog@ttrpg.networktoTechnology@lemmy.mlPasswords have problems, but passkeys have more
    2·
    1 month ago

    The author mentions it: the QR code approach for cross device sign in. I don’t think it’s cumbersome, i think it’s actually a great and foolproof way to sign in. I have yet to find a website which implements it though.

    The site doesn’t need to implement this; the browser handles that part.

    I confirmed this works and logged into Github using Google Chrome on my work computer using a passkey stored in Bitwarden earlier today. I had to enable Bluetooth for Chrome, since I’d had it disabled, but then everything else was seamless.

  • hedgehog@ttrpg.networktoAsklemmy@lemmy.mlWhat is your opinion on bans issued for things that happen to someone due to things that take place outside their jurisdiction, and what's the last or most memorable time it has happened to you?
    11·
    1 month ago

    “Jurisdiction” is a legal concept and the way you’re using it makes no sense unless you’re referring to restraining orders or trespassing warnings being issued by courts/police from different towns or states.

    I’m assuming you’re talking about private establishments that have the legal right to refuse service to anyone for almost any reason (exceptions being if doing so is discrimination against a protected class).

    If so, then here’s my opinion: If you own or manage a shop, bar, club, gym, etc., it’s reasonable to ban someone because they aren’t the sort of person you want in your establishment. Maybe they make you or your other customers uncomfortable. Maybe they don’t want their place to get a reputation for being where Bad Egg Craig, whose antics sent some folks to the ER, hangs out. Maybe they share ban lists with the owners of other establishments, either because they’re friends or for purely business reasons (if your actions have cost the owner of one establishment money, it’s more likely you’ll do the same elsewhere), the same way insurance companies protect their interests by raising premiums.

    What does the Hague Convention have to do with anything? Unless it’s being enforced by the same people it’s completely irrelevant.

  • hedgehog@ttrpg.networktoSelfhosted@lemmy.worldIs it possible to run a reverse proxy only on a specific service or port?English
    2·
    2 months ago

    I made a typo in my original question: I was afraid of taking the services offline, not online.

    Gotcha, that makes more sense.

    If you try to run the reverse proxy on the same server and port that an existing service is using (e.g., port 80), then you’ll run into issues. You could also run into conflicts with the ports the services themselves use. Likewise if you use the same outbound port from your router. But IME those issues will mostly stop the new services from starting - you’d have to stop the services or restart your machine for the new service to have a chance to grab the ports while they were unused. Otherwise I can’t think of any issues.

  • hedgehog@ttrpg.networktoSelfhosted@lemmy.worldIs it possible to run a reverse proxy only on a specific service or port?English
    3·
    2 months ago

    I’m afraid that when I install a reverse proxy, it’ll take my other stuff online and causes me various headaches that I’m not really in the headspace for at the moment.

    If you don’t configure your other services in the reverse proxy then you have nothing to worry about. I don’t know of any proxy that auto discovers services and routes to them by default. (Traefik does something like this with Docker services, but they need Docker labels and to be on the same Docker network as Traefik, and you’re the one configuring both of those things.)

    Are you running this on your local network? If so, then unless you forward a port to your server on the port your reverse proxy is serving from, it’ll only be accessible from the local network. This means you can either keep it that way (and VPN in to access it) or test it by connecting directly to your server on that port and confirm that it’s working as expected before forwarding the port.

  • hedgehog@ttrpg.networktoSelfhosted@lemmy.worldQuestion about drive capacity for WD PR4100English
    2·
    2 months ago

    I don’t know that a newer drive cloner will necessarily be faster. Personally, if I’d successfully used the one I already have and wasn’t concerned about it having been damaged (mainly due to heat or moisture) then I would use it instead. If it might be damaged or had given me issues, I’d get a new one.

    After replacing all of the drives there is something you’ll need to do to tell it to use their full capacity. From reading an answer to this post, it looks like what you’ll need to do is to select “Change RAID Mode,” then keep RAID 1 selected, keep the same disks, and then on the next screen move the slider to use the drives’ full capacities.