BenCook favorites - Microca.st

Sumana Harihareswara at 2016-08-06T18:37:23Z

RT @_K_E_L_S_E_Y

to me, an inclusive security community would focus as much (or at all) on surveillance of women by abusive partners as it does the state

Benjamin Cook , Mike Linksvayer like this.

Benjamin Cook , Mike Linksvayer shared this.

Elena ``of Valhalla'' at 2016-08-04T09:44:31Z

♲ [email protected] :

Feminismus und Gleichheit

Hier noch mal auf die Idee von @(: aNNa :) blume hin. :-)

Tags: #feminismus #feminism #egalitarism #gleichheit #emanzipation #comic #comicstrip #ravenbird #2016-07-26

B. Ross Ashley , Paco Vila , sazius , Freemor and 2 others like this.

Freemor shared this.

Bits from Debian: Debian and Tor Services available as Onion Services

Debian Project at 2016-08-01T15:40:03Z

Link to original post: Debian and Tor Services available as Onion Services

We, the Debian project and the Tor project are enabling Tor onion services for several of our sites. These sites can now be reached without leaving the Tor network, providing a new option for securely connecting to resources provided by Debian and Tor.

The freedom to use open source software may be compromised when access to that software is monitored, logged, limited, prevented, or prohibited. As a community, we acknowledge that users should not feel that their every action is trackable or observable by others. Consequently, we are pleased to announce that we have started making several of the various web services provided by both Debian and Tor available via onion services.

While onion services can be used to conceal the network location of the machine providing the service, this is not the goal here. Instead, we employ onion services because they provide end-to-end integrity and confidentiality, and they authenticate the onion service end point.

For instance, when users connect to the onion service running at http://sejnfjrq6szgca7v.onion/, using a Tor-enabled browser such as the TorBrowser, they can be certain that their connection to the Debian website cannot be read or modified by third parties, and that the website that they are visiting is indeed the Debian website. In a sense, this is similar to what using HTTPS provides. However, crucially, onion services do not rely on third-party certification authorities (CAs). Instead, the onion service name cryptographically authenticates its cryptographic key.

In addition to the Tor and Debian websites, the Debian FTP and the Debian Security archives are available from .onion addresses, enabling Debian users to update their systems using only Tor connections. With the apt-transport-tor package installed, the following entries can replace the normal debian mirror entries in the apt configuration file (/etc/apt/sources.list):

  deb  tor+http://vwakviie2ienjx6t.onion/debian          jessie            main
  deb  tor+http://vwakviie2ienjx6t.onion/debian          jessie-updates    main
  deb  tor+http://sgvtcaew4bxjd7ln.onion/debian-security jessie/updates    main

Likewise, Tor's Debian package repository is available from an onion service :

  deb tor+http://sdscoq7snqtznauu.onion/torproject.org   jessie    main

Where appropriate, we provide services redundantly from several backend machines using OnionBalance. The Debian OnionBalance package is available from the Debian backports repository.

Lists of several other new onion services offered by Debian and Tor are available from https://onion.debian.org and https://onion.torproject.org respectively. We expect to expand these lists in the near future to cover even more of Debian's and Tor's services.

Marcelo Santana , guile , lostson , Claes Wallin (韋嘉誠) and 6 others like this.

Marcelo Santana , Claes Wallin (韋嘉誠) , Kevin Everets , luisgf and 4 others shared this.

I was using tor+http to the clearnet addresses of debian-security and tor repo. Now updated.

These onion services are snappy!

Claes Wallin (韋嘉誠) at 2016-08-02T17:07:28Z

kvm virtualization on a liberated X200, part 1

Elena ``of Valhalla'' at 2016-07-28T16:09:13Z

As the libreboot website warns: there are issues with virtualization on x200 without microcode updated.

Virtualization is something that I use, and I have a number of VMs on that laptop, managed with libvirt; since it has microcode version 1067a, I decided to try and see if I was being lucky and virtualization was working anyway.

The result is that the machines no longer start: the kernel loads, and then it crashes and reboots. I don't remember why, however, I tried to start a debian installer CD (iso) I had around, and that one worked.

So, I decided to investigate a bit more: apparently a new installation done from that iso (debian-8.3.0-amd64-i386-netinst.iso) boots and works with no problem, while my (older, I suspect) installations don't. I tried to boot one of the older VMs with that image in recovery mode, tried to chroot in the original root and got failed to run command '/bin/bash': Exec format error.

Since that shell was lacking even the file command, I tried then to start a live image, and choose the lightweight debian-live-8.0.0-amd64-standard.iso: that one didn't start in the same way as the existing images.

Another try with debian-live-8.5.0-i386-lxde-desktop.iso confirmed that apparently Debian > 8.3 works, Debian 8.0 doesn't (I don't have ISOs for versions 8.1 and 8.2 to bisect properly the issue).

I've skimmed the release notes for 8.3 and noticed that there was an update in the intel-microcode package, but AFAIK the installer doesn't have anything from non-free, and I'm sure that non-free wasn't enabled on the VMs.

My next attempt (thanks tosky on #debian-it for suggesting this obvious solution that I was missing :) ) was to run one of the VMs with plain qemu instead of kvm and bring it up-to-date: the upgrade was successful and included the packages in this screenshot, but on reboot it's still not working as before.

Right now, I think I will just recreate from scratch the images I need, but when I'll have time I'd like to investigate the issue a bit more, so hopefully there will be a part 2 to this article.

Christopher Allan Webber , Ben Sturmfels , Benjamin Cook like this.

@Elena ``of Valhalla'' Good luck! I hope there's a happy ending there... I'd love to be able to use hardware virtualization again.

Christopher Allan Webber at 2016-07-28T22:57:38Z

updatish: apparently it's not "recent version of debian" that works, it's "32 bit version of debian" that does.

I thought I had done an amd64 installation with the netinstall, but actually it was an i386 one.

Elena ``of Valhalla'' at 2016-07-29T20:12:19Z

One Liberated Laptop

Elena ``of Valhalla'' at 2016-07-24T18:36:01Z

After many days of failed attempts, yesterday @Diego Roversi finally managed to setup SPI on the BeagleBone White¹, and that means that today at our home it was Laptop Liberation Day!

We took the spare X200, opened it, found the point we were on in the tutorial installing libreboot on x200, connected all of the proper cables on the clip³ and did some reading tests of the original bios.

While the tutorial mentioned a very conservative setting (512kHz), just for fun we tried to read it at different speed and all results up to 16384 kHz were equal, with the first failure at 32784 kHz, so we settled on using 8192 kHz.

Then it was time to customize our libreboot image with the right MAC address, and that's when we realized that the sheet of paper where we had written it down the last time had been put in a safe place… somewhere…

Luckily we also had taken a picture, and that was easier to find, so we checked the keyboard map², followed the instructions to customize the image, flashed the chip, partially reassembled the laptop, started it up and… a black screen, some fan noise and nothing else.

We tried to reflash the chip (nothing was changed), tried the us keyboard image, in case it was the better tested one (same results) and reflashed the original bios, just to check that the laptop was still working (it was).

It was lunchtime, so we stopped our attempts. As soon as we started eating, however, we realized that this laptop came with 3GB of RAM, and that surely meant "no matching pairs of RAM", so just after lunch we reflashed the first image, removed one dimm, rebooted and finally saw a gnu-hugging penguin!

We then tried booting some random live usb key we had around (failed the first time, worked the second and further one with no changes), and then proceeded to install Debian.

Running the installer required some attempts and a bit of duckduckgoing: parsing the isolinux / grub configurations from the libreboot menu didn't work, but in the end it was as easy as going to the command line and running:

linux (usb0)/install.amd/vmlinuz
initrd (usb0)/install.amd/initrd.gz
boot

From there on, it was the usual debian installation and a well know environment, and there were no surprises. I've noticed that grub-coreboot is not installed (grub-pc is) and I want to investigate a bit, but rebooting worked out of the box with no issue.

Next step will be liberating my own X200 laptop, and then if you are around the @Gruppo Linux Como area and need a 16 pin clip let us know and we may bring everything to one of the LUG meetings⁴

¹ yes, white, and most of the instructions on the interwebz talk about the black, which is extremely similar to the white… except where it isn't

² wait? there are keyboard maps? doesn't everybody just use the us one regardless of what is printed on the keys? Do I *live* with somebody who doesn't? :D

³ the breadboard in the picture is only there for the power supply, the chip on it is a cheap SPI flash used to test SPI on the bone without risking the laptop :)

⁴ disclaimer: it worked for us. it may not work on *your* laptop. it may brick it. it may invoke a tentacled monster, it may bind your firstborn son to a life of servitude to some supernatural being. Whatever happens, it's not our fault.

Marcelo Santana , Sajith Sasidharan , Sean Tilley , FLWNQWUD and 9 others like this.

Marcelo Santana , Benjamin Cook , Christopher Allan Webber , Freemor shared this.

Aaaand second laptop liberated (no pictures, they wouldn't be significantly different from the ones of the first).

(mostly: I still have the original wifi card, until I can find one supported by a free firmware)

Elena ``of Valhalla'' at 2016-07-25T20:50:05Z

Doug Whitfield at 2016-07-20T03:31:33Z

biggest sign of propaganda: it came from convention

Stephen Sekula , Benjamin Cook , [email protected] like this.

Why cloudFlare is bad

Freemor at 2016-07-16T11:56:15Z

Excellent write up on the problems with CloudFlare: http://cryto.net/~joepie91/blog/2016/07/14/cloudflare-we-have-a-problem/

Benjamin Cook , [email protected] , Claes Wallin (韋嘉誠) like this.

Claes Wallin (韋嘉誠) shared this.

Efraim Flashner at 2016-07-18T14:45:10Z

I've heard hand sanitizer is key to not getting sick

Claes Wallin (韋嘉誠) , Benjamin Cook like this.

[email protected] at 2016-07-16T13:09:05Z

I was never exposed to the Apple iOS world until $EMPLOYER swapped my Blackberry for an iPhone 5S. All I can say is I am now even more puzzled when Apple fans talk about how awesome it is.

Benjamin Cook , EricxDu like this.

Extended thoughts on the new Ghostbusters

Christopher Allan Webber at 2016-07-16T17:17:35Z

I guess I'm going to promote a bunch of hollywood stuff, but I feel like though I don't like promoting proprietary films, there's some other good stuff going here, so I'm going to blather anyway.

So, Morgan and I saw the new Ghostbusters movie last night. It's a "reboot movie", and I'm not normally a huge fan of that, but I have to say, that's the most fun I've had in some time. It's a great movie that does a stellar job of giving a nod to the original series while taking things in a new direction. And while the original was a comedy, this one is even more of a comedy. (It's also a bit more action heavy than the original in some parts.)

I'd also argue that this is probably the most gender-progressive scifi-ish (it's not hard science fiction, obviously) film around, or at least that I've seen. It does a good job of having a team of all women heroes who hold their own and do their own things. It passes the Bechdel test by a lot, for sure. But it's more than that... you don't see women in these roles. And I like the way it was handled: it wasn't just a "replace the male roles with women and we're done"; much of the humor was in the style of recent prominent women comedians (similar stuff to in the movie Spy, if you've seen that), while not losing track of its main focus.

The main villain is also pretty much a "Men's Rights Activist" type character. There's a nice scene (minor spoiler) where he's complaining, "you don't understand, I was bullied and nobody liked me" and the heroines are like "yeah but... we were too, we do understand" and the villain just shuts them down with "nope, you can't" and ends that conversation. In some ways, the recent Star Wars film was claimed to have a similar villain, and in some ways yes, but I think it's more direct here. But again, it doesn't become so focused on it that it loses track of what's happening in the film.

There's one way in which the film falls short on social progressiveness: the black woman in the film is like "You all are scientists, but I'm street smart", and much has been said already (correctly) on, why play that trope? Why can't the black woman be a scientist too? It's a fair criticism; while the film received a gender reversal from the original film, the racial problems from the original film returned. Though! I do think the film is a little bit better than the original (though you wouldn't guess it by watching the trailer), because in the original film the person of color shows up at the end of the film as basically muscle and has no chance to play any formative role (or develop any serious character), whereas here that character manages to play a pivotal role in developing the team and has much more character development than in the original (and joins the team by her own agency, not just because "it's just a job").

Here are two final anecdotes about watching the film (and not the film itself). We were sitting in some reclining chairs, and there was an kid next to me who must have been about eight or nine. He clearly had seen all the ghostbusters films and was so excited at one point that he reclined his shair so he could lay in reverse, propping his head up at the end of the foot part of his chair, and he was calling out excitedly all the nods they made to the originals, and getting excited about all the action. That kid wasn't upset about the new film "destroying his childhood"... he was in his childhood, and the other films had already played a role, but he seemed excited to have this experience as well. There's a lot of angry people on the internet saying "they ruined the tradition" by including a bunch of women in the roles of the Ghostbusters, but that doesn't make a lick of sense... the original Ghostbusters movie had already "ruined the tradition", if you consider the prior movie of Ghost Busters (though it's unclear how much inspiration it played) as its predecessor. And Morgan said it well: "I feel like this movie was for me. When I was a kid, I always wanted to be a Ghostbuster, but felt like I wasn't allowed to be." So, while some might be claiming it ruined their childhood for pretty silly reasons, there's good reasons for it to be a nice improvement on the experiences of someone else's.

Anyway, it's "just a movie", but if you're looking for some low-brain-activity entertainment, I'd recommend it.

Claes Wallin (韋嘉誠) , Benjamin Cook , House of Small Dogs , Freemor and 1 others like this.

Claes Wallin (韋嘉誠) shared this.

Show all 5 replies

Thanks. I just might see it.

As for racial composition, I've never seen a movie or TV series whose cast matched what I see in the world around me. An occasional Blaxploitation flick usually makes up for several lily-white movies. It may be that a Femsploitation movie will likewise balance a few that are male-heavy.

[email protected] at 2016-07-16T21:47:22Z

Claes Wallin (韋嘉誠) , Christopher Allan Webber like this.

I can't add much to what was already said, but I did see the movie, and my wife and I enjoyed it immensely. It is more comedic than the '84 film, and it was a lot of fun. I enjoyed all the characters and the team building and the ghost busting toys. I'm glad I had the opportunity to see it. Oh... And my childhood remains intact. [wiping brow in mock relief] Phew!

Charles ☕ Stanhope at 2016-07-17T01:18:33Z

Claes Wallin (韋嘉誠) , Christopher Allan Webber like this.

It's so much fun! I'm glad you enjoyed it. I liked it too. And I think you might find this amusing: http://metaphortunate.tumblr.com/post/147554924634/enter-kevin

Sumana Harihareswara at 2016-07-18T12:59:12Z

Charles ☕ Stanhope , Claes Wallin (韋嘉誠) , Christopher Allan Webber like this.

This was a fun read too: http://metaphortunate.tumblr.com/post/147506596199/who-you-gonna-call?is_related_post=1

Claes Wallin (韋嘉誠) at 2016-07-22T17:04:39Z

Charles ☕ Stanhope likes this.

Gerard Ryan at 2016-07-11T11:45:21Z

I think I disagree with a lot of people here. Even though I haven't booked any faces in many years, this definitely seems like a step in the right direction.

Yes, it's not anonymous, but I don't think that right now we can have any realistic expectation for Facebook to go that far. Maybe after a few more steps in this direction that might become plausible. I'm sure there are technical challenges to that too.

Yes, it's not for all conversationns right now, but maybe it will get there eventually? Since I don't have a facebook account, I don't actually know the "Messenger" ecosystem, but my guess is that maybe making e2e encryption the enforced default overnight could leave users on older versions of client apps (maybe also not in a position to update?) unable to communicate. It could also break lots of 3rd party apps that integrate with messenger (I'm assuming this type of integration is a thing).

I love the skepticism and dissent, but I think this move was done honestly to make an improvement rather than to trick everyone into complacency. If you want people to listen to and understand you when things are being made worse, consider not being so critical of attempts to make things better.

I'm not saying trust them or anything. 🙂

Benjamin Cook likes this.

Freemor at 2016-07-08T17:41:49Z

Considering Facebook which is part of the Prism system still sees all the who talked to who for how long data

and that It's tied to phone #'s and thus totally non-anonymous,

and that authentication is optional and not well indicated

and that data is storred unencrypted and then backed up to the cloud

and that the client is closed source so could easily be instructed to silently drop encryption and know one would know...

It's really kinda hard to call it "secure". or even "better then plain text"

So for me not secure, and not verifiable (closed source).

A false sense of security is worse then no secuirty at all.

Claes Wallin (韋嘉誠) , Douglas Perkins , Benjamin Cook , Kevin Everets like this.

Busy/idle status indicator

Elena ``of Valhalla'' at 2016-07-01T16:24:43Z

About one year ago, during my first Debconf, I've felt the need for some way to tell people whether I was busy on my laptop doing stuff that required concentration or just passing some time between talks etc. and available for interruptions, socialization or context switches.

One easily available method of course would have been to ping me on IRC (and then probably go on chatting on it while being in the same room, of course :) ), but I wanted to try something that allowed for less planning and worked even in places with less connectivity.

My first idea was a base laptop sticker with two statuses and then a removable one used to cover the wrong status and point to the correct one, and I still think it would be nice, but having it printed is probably going to be somewhat expensive, so I shelved the project for the time being.

Lately, however, I've been playing with hexagonal stickers and decided to design something on this topic, whith the result in the figure above, with the “hacking” sticker being my first choice, and the “concentrating” alternative probably useful while surrounded by people who may misunderstand the term “hacking”.

While idly looking around for sticker printing prices I realized that it didn't necessarly have to be a sticker and started to consider alternatives.

One format I'm trying is inspired by "do not disturb" door signs: I've used some laminating pouches I already had around which are slightly bigger than credit-card format (but credit-card size would also work of course ) and cut a notch so that they can be attached to the open lid of a laptop.

They seem to fit well on my laptop lid, and apart from a bad tendency to attract every bit of lint in a radius of a few meters the form factor looks good. I'll try to use them at the next conference to see if they actually work for their intended purpose.

SVG sources (and a PDF) are available on my website under the CC-BY-SA license.

sazius , Benjamin Cook , Charles ☕ Stanhope , jrobertson like this.

AkariXB v0.4 is out!

at 2016-06-27T18:40:52Z

Back in March, I introduced a new project, AkariXB, which is a bot for the decentralized jabber/XMPP network, and today I'm releasing version 0.4!

The main changes for this release include:

New Keyword (dictionary-like) command type.
New Alias command type.
Basic variable replacement in replies. If a command reply contains {a|b|c}, one of the three characters will replace the whole thing, at random.
Basic activity handling.
Option to reply to commands always in private.
Support for password-protected MUCs.
Configurable popup notifications.
Configurable XMPP keepalive timeout.

The source code for this release can be downloaded from linux-apps.com, part of the opendesktop.org network.

They're in the middle of a big migration/renovation, so if the "Download" button doesn't work for you, scroll down to the "Files" section and get it from there ;)

Development repository is at gitlab.com/akarixb/akarixb-dev. At this time, using the development version is probably better.

The main dependencies are Qt and the QXmpp library. Qt 5.x is preferred. Building with Qt 4.8 still works at this time, but it's not officially supported. Most GNU distributions have QXmpp built for Qt 5 anyway.

I hope this can be included in some GNU distributions soon, but for now, you'll need to build it yourself ;)

UPDATE: It's already in Mageia 6's repositories \o/

Cheers! o/

https://jancoding.wordpress.com/2016/06/27/akarixb-v0-4-a-jabberxmpp-bot-released/

Colegota , Douglas Perkins , gledof , Arcee and 3 others like this.

Colegota , Colegota , Jorge , Arcee and 2 others shared this.

Show all 10 replies

Uff @Colegota, que lio me haces al responder dentro de la cita...

Veamos...

>> Colegota:

“Sí, es eso mismo. Lo que pasa es que en el que he visto yo, la palabra era bot_help en lugar de !info.”

Bueno, !info era un ejemplo.

Tu puedes definir que palabra usar para el comando, y que tipo de respuestas tendra. Tambien puedes definir el prefijo para que no sea "!", sino "#", "@", o lo que sea.

>> Colegota:

“Tengo una sala de un huerto comunitario. Quiero que a las 8 de la mañana y de la tarde el bot pregunte "¿Quién viene a regarme?". :)
Y cuando haya alguna actividad programada pues lo mismo, "Recordad que tenemos asamblea mañana a las 9h" (por ejemplo).
¿Eso lo hacen las actividades?”

La primera parte si.

Puedes definir una actividad con probabilidad 100% en el rango de tiempo 8:00~8:30 por ejemplo, y rango de fechas de todo el año, y poner uno o mas mensajes de "inicio de actividad", para que diga uno al azar.

En "enviar mensajes a...", pondrias "JID especifico" y pones el JID de la sala en cuestion.

De manera similar, podrias hacer lo segundo, concretando mucho el rango de fecha, pero puede ser un poco coñazo.

Pero bueno, lo dicho, como apaño...

>> Colegota:

“Me refiero a que AkariXB necista las Qt para ejecutarse, por lo que lo puedo tener en el PC. Pero no sé si es una interfaz para programar algo o tiene que estar ejecutándose AkariXB 24h en mi pc.
Tengo un NAS con conexión a Internet y un VPS donde alojar cosas, pero la duda es esa. ¿Desde dónde se hace la conexión con la sala, desde mi pc o se puede controlar algo en un servidor externo?”

Supongo que no has visto los 2 posts del blog, porque en el anterior lo explicaba... El GUI es el bot, y el bot es el GUI, asi que el bot necesita una maquina con el framework Qt instalado, y una interfaz grafica funcionando.

Asi que no, no creo que puedas tenerlo en un VPS, salvo que dicho VPS te permita tener Xorg en marcha.

En un futuro quiza separe el GUI del "core", pero por ahora, es asi.

>> Colegota:

“¿Entonces no puedo instalarlo hasta que no salga la 6? Lo de actualizar a Cauldron, mejor no.”

Bueno, puedes hacer como yo: compilar tambien QXMPP, que es muy facil. Si eres capaz de compilar esto, o Dianara, compilar QXMPP es igual de simple, o mas.

Y como digo, es posible que los paquetes de QXMPP de Cauldron te valgan en Mageia 5, pero yo no lo he probado.

Eso si, si pruebas esa via, ya te digo que QXMPP de Cauldron esta compilado con Qt 5.x, asi que deberas compilar AkariXB tambien con Qt 5.

JanKusanagi at 2016-06-28T17:42:29Z

>> JanKusanagi:

>> Colegota:
“Me refiero a que AkariXB necista las Qt para ejecutarse, por lo que lo puedo tener en el PC. Pero no sé si es una interfaz para programar algo o tiene que estar ejecutándose AkariXB 24h en mi pc.
Tengo un NAS con conexión a Internet y un VPS donde alojar cosas, pero la duda es esa. ¿Desde dónde se hace la conexión con la sala, desde mi pc o se puede controlar algo en un servidor externo?”
Supongo que no has visto los 2 posts del blog, porque en el anterior lo explicaba... El GUI es el bot, y el bot es el GUI, asi que el bot necesita una maquina con el framework Qt instalado, y una interfaz grafica funcionando.

Asi que no, no creo que puedas tenerlo en un VPS, salvo que dicho VPS te permita tener Xorg en marcha.

En un futuro quiza separe el GUI del "core", pero por ahora, es asi.

Pues eso. Que no puedo tener un pc 24h. :(

Pero bueno, seguiré atento...

Colegota at 2016-06-28T17:55:25Z

>> Colegota:

“[...] Pues eso. Que no puedo tener un pc 24h. [...]”

Bueno, quien dice un PC, dice una Raspi enana consumiendo nah y menos xD

JanKusanagi at 2016-06-28T17:57:15Z

A little bird told me this will soon be available in Mageia Cauldron's repos (future Mageia 6).

\o/

JanKusanagi at 2016-06-29T13:36:32Z

Charles ☕ Stanhope at 2016-06-27T14:26:48Z

These conflicts between the corporations and the Star Trek fans who are taking ownership of aspects of culture that are important to them seem to be so much deeper than the corporations are capable of understanding. http://arstechnica.com/the-multiverse/2016/06/cbs-paramount-offer-rules-for-fan-film-makers-amid-axa...

These stories also lead me to wonder if people will stop investing time and energy into culture that corporations control, or if fans will always try to wrest control later. These fans are clearly capable of servicing their own desires for fictional content. Why wait around for the next corporate idea to be handed down to rally around? Why not build it themselves? How important is marketing in establishing the cultural value of these creations?

Kete Foy , Claes Wallin (韋嘉誠) , [email protected] , Benjamin Cook and 1 others like this.

Claes Wallin (韋嘉誠) shared this.

Show all 5 replies

These struggles always confuse me. Why do dedicated fans work so hard to perpetuate an abusive relationship with a corporation that does not respect them? What more would it take to actually drive away these fans?

Benjamin Cook at 2016-06-27T15:09:16Z

[email protected] likes this.

The only reasons fans do this is because of love. It's not reciprocated (nor does it have to be) but that's the whole onus for it in the first place.

Craig Maloney at 2016-06-27T15:46:47Z

Charles ☕ Stanhope likes this.

fortunately, Star Trek is a franchise that is very tolerant of fan works (relatively speaking), so I can at least listen to audio dramas that "get" Star Trek.

David "Judah's Shadow" Blue at 2016-07-04T12:04:52Z

As far as the relationship goes, there is the issue of Canon, fan produced works aren't Canon a and thus aren't official, for Trek this also applies to officially sanctioned books. Though the official status didn't help Star Wars expanded universe....

David "Judah's Shadow" Blue at 2016-07-04T12:13:09Z

Efraim Flashner at 2016-06-13T07:33:07Z

My first time pressing the reader button on Firefox. Night and day in terms of readability on mobile. I can't believe I never used it before.

Benjamin Cook , lostson , Douglas Perkins , Stephen Sekula like this.

Well... Thats new. (Oh And you're doing it wrong)

Freemor at 2016-06-08T11:55:37Z

Browsing to: https://www.similarweb.com/blog/social-media-usage

and got this:

JavaScript Disabled

This website is using a security service to protect itself from online attacks.
The service requires full JavaScript support in order to view the website.
Please enable Javascript on your browser and try again.

Reference ID: 49599d410354a0fc5973a143fcf8e334

Really.. a Security thing that you run on MY machine to protect your server? Aside from smelling of total BS. I can't see how runnig JS on my machine would protect their server Since 99% of attacks on websites are NOT done in a browser. And hey What about MY security you guys? Not even a nod to that? no, "We understand that you might want to disable JS because..."?

And what about failing gracefully.. Want to protect yourself. Anyone coming in that looks suspicious throw them over to a non-iteractive flat HTML version of your site thus removing all chance of XXS or PHP code insertion, SQL injection, etc. But No you'd rather just blame the user with a warning that makes no sense.

I'm gonna follow up on this one and actually ask WTF!

Hmmmmm.. ok, seems the message shoud read "Sorry we hate Tor".

As a first stage of testing I went with no JS but no Tor.. Worked fine.. Very intersting..

So does it work with Tor and JS?

that results in:

Cookies disabled

This website is using a security service to protect itself from online attacks.
The service requires full cookie support in order to view the website.
Please enable Cookies on your browser and try again.

Reference ID: 4357306db8905c61e8cdbfa6fce0057e

Seems that works.. kinda as I'm still routed through privoxy and third party or non session cookies get crunched. as well as adds and other annoyances....

Looking at the src of the page that was finally served up:

Usual tracker BS (GA,Yoast,Piwik,FB,etc)
Clearly a WP site (no wonder they are nervous.)

Ok, so we have a Wordpress site, that allows access from Tor given the right conditions (cookies set), And this is gonna keep them safe.. So not the case. I see WP attacks thrown at my non-WP site all the time and none of then try to load a main page. And if this is somethig in their reverse proxy then the attack script only needs to get the right cookies and then it can waltz right through.

EricxDu , Benjamin Cook , pingi , Douglas Perkins like this.

Elena ``of Valhalla'' , Douglas Perkins shared this.

ABYSS - the genesis of a fully free streaming software package used at LibrePlanet

Free Software Foundation at 2016-05-12T19:28:25Z

This statement could be the leitmotiv of the Free Software Foundation (FSF) about the LibrePlanet conference.

"Make it better every year."

As an FSF intern during the winter and spring of 2016, I had the opportunity to be around FSF's tech team during LibrePlanet preparation, and we spent a lot of time making the streaming and recording work as well as possible so that people who were not in each talk could still watch it (all the recordings are already up on media.libreplanet.org). https://u.fsf.org/1sn

Benjamin Cook , lostson , Sean Tilley like this.

Stephen Michael Kellat shared this.