It’s documented in the wiki, they are called VCS packages, and it’s not the usual, they work a bit differently: https://wiki.archlinux.org/title/VCS_package_guidelines

You can see in this instance, that it skips the sha checking for upstream source, in line 15 of the PKGBUILD it says ‘SKIP’: https://aur.archlinux.org/cgit/aur.git/tree/PKGBUILD?h=hyprspace-git#n15

sha1sums parameter is documented in the wiki: https://wiki.archlinux.org/title/PKGBUILD#sha1sums

In the PKGBUILD file you can list sources (line 12,13) and their respective checksums (line 14,15). In this PKGBUILD there are 2 sources: the first is the systemd unit file, it’s coming from the package’s AUR repo, not from upstream, you can see its checksum. The second source is the actual source, and you can see, it’s checksum is ‘SKIP’ so it shouldn’t be checked.

With these kind of packages you can’t get notified if there is an update available, but if you install it again with your favorite AUR helper it would update itself for the latest version. It calculates version number from the latest commit hash, before building and installing, so if that is the same it won’t update again.

Nix just calls the *.nix files, it’s still go under the hood. PKGBUILD is similar to the flake.nix and package.nix files to me, but I have no experience with nix.

My general view is similar, yaml is better if it should be written by humans, json is better if it should be written and read only by a machine. but hyprspace uses json for configuration, so I don’t really understand cellardoor’s comment

what:
  is:
  your:
    - problem
    - with:
      YAML
# At least you can have comments unlike in json. Who need comments in a config file anyway.

Or port forwarding. You have to open a udp port for wireguard

AUR packages ending with"-git" or “-svn” always pull the latest commit from source. The version number means that was the last time the packager had to change something on the PKGBUILD script, not the actual version which would be installed.

Where should I look? Where were these talks? I’m interested.

Edit: I found the whitepaper about hole punching: https://research.protocol.ai/publications/decentralized-hole-punching/

It says it connects to a “Hole Punch Coordination (DCUtR - Direct Connection Upgrade through Relay)”. So for NAT traversal to work, you need a third party, this relay. As I expected. I guess you can self host this, but than you could just host a wireguard server. I guess if you are on a locked down network where you cannot connect to any relay (e.g. how the Chinese Great Firewall works technically they could block it) you can’t initiate a connection behind a NAT.

Nonetheless it seems interesting, but no magic here. Maybe the big difference that the relay servers are distributed, so no central authority to block easily.

Interesting, it’s on AUR, I will try it.

So it doesn’t need any port forwarding, and works on CGNAT? How the “NAT hole punching” works? Both clients connect to something on IPFS?

Afaik, for DHT with torrent, clients need to know at least one tracker, what is the “tracker” here? Something on IPFS? Who am I sending my IP addresses?

How much overhead does this add to speed? I love with Wireguard, that it’s barely noticeable, really close to p2p speeds, OpenVPN was awful in this regard.

The latter: https://vscodium.com/

Microsoft’s vscode source code is open source (MIT-licensed), but the product available for download (Visual Studio Code) is licensed under this not-FLOSS license and contains telemetry/tracking.

The VSCodium project exists so that you don’t have to download+build from source. This project includes special build scripts that clone Microsoft’s vscode repo, run the build commands, and upload the resulting binaries for you to GitHub releases. These binaries are licensed under the MIT license. Telemetry is disabled.

If you don’t need fancy gui and authentication, registry is easy to set up and works really well: https://hub.docker.com/_/registry

I have several addresses at cock.li. Uptime is not the best, around 98%, but free. According to their policy they don’t collect any personal data, but they comply with legal requests. https://cock.li/help

You can select from a lot of domains, some of them ar normal like firemail.cc or airmail.cc, some of them are funny like aaathats3as.com, some of them are edgy like cocaine.ninja or national.shitposting.agency, some of them are racist like nuke.africa or hitler.rocks

From Creative Commons FAQ:

We recommend against using Creative Commons licenses for software. Instead, we strongly encourage you to use one of the very good software licenses which are already available. We recommend considering licenses listed as free by the Free Software Foundation and listed as “open source” by the Open Source Initiative.

Unlike software-specific licenses, CC licenses do not contain specific terms about the distribution of source code, which is often important to ensuring the free reuse and modifiability of software. Many software licenses also address patent rights, which are important to software but may not be applicable to other copyrightable works. Additionally, our licenses are currently not compatible with the major software licenses, so it would be difficult to integrate CC-licensed work with other free software. Existing software licenses were designed specifically for use with software and offer a similar set of rights to the Creative Commons licenses.

Version 4.0 of CC’s Attribution-ShareAlike (BY-SA) license is one-way compatible with the GNU General Public License version 3.0 (GPLv3). This compatibility mechanism is designed for situations in which content is integrated into software code in a way that makes it difficult or impossible to distinguish the two. There are special considerations required before using this compatibility mechanism. Read more about it here.

Also, the CC0 Public Domain Dedication is GPL-compatible and acceptable for software. For details, see the relevant CC0 FAQ entry.

While we recommend against using a CC license on software itself, CC licenses may be used for software documentation, as well as for separate artistic elements such as game art or music.

Use WSL on the laptop for ssh, that’s actually a VM. VM separation should work correctly, or we have a much bigger problem. Just reset WSL, everything should be wiped related to the ssh sessions. Work IT would maybe allow that.

One of them is a laptop, why ssh to the server isn’t an option? Set up tmux on the server so it always connects to the same session, so you can just continue where you left last time. If you need desktop support, rdp in gnome works really well.

E.g if you connect with this command, and tmux is installed on the server, it will start a new session named “main”. If a session with that name exists it will connect to that:

ssh -t pi@192.168.1.2 tmux new-session -A -s main

Add something to .bashrc on the server to always do the same if you work on that phisically:

if command -v tmux &> /dev/null && [ -n "$PS1" ] && [[ ! "$TERM" =~ screen ]] && [[ ! "$TERM" =~ tmux ]] && [ -z "$TMUX" ]; then
tmux new-session
fi

It sounds to me as a documentation issue, as the next comment says, simply including a wget script should solve this.

The announcement comes after Twitter announced across-the-board job cuts earlier on Thursday, with plans to lay off 9 percent of its workforce, which equals about 350 people. The company also said in a letter to shareholders that it was going to prioritize some parts of its business, while deprioritizing others.

Source

Twitter was financially in a bad shape for a long time, the first year they generated some profit was 2018. Source Vine existed 2012-2017, I think they couldn’t figure out how to monetize it. Twitter was a text based platform, tiktok was designed for video from conception.

But I still don’t know why they didn’t try to sell it instead of shutting it down.

Coub was also nearly shut down in 2022, it seems like it’s hard to profitably maintain a short video service.

One more thing could have an important impact was music rights. Tiktok has special deals with record labels for background music, Coub was Russian, so they could just pirate music. Streaming wasn’t big back than, only spotify existed, labels couldn’t figure yet out how to milk internet users, so I guess Vine couldn’t get as good deals as it would now. Too early, too legal.

IIRC Vine and Coub made it mainstream more than 12 years ago, it’s not something new. Gifs are basically a prequel of the format.

If people wouldn’t like it, it wouldn’t survive this long, and wouldn’t be copied by every other company and requested in threads like this. It’s alright if you don’t like them but please let other people have fun. You don’t have to “learn” from everything, it’s just jokes and light entertainment.

How would it otherwise? Network based location?

Yes. Your phone could triangulate its location from nearby celltowers ane wifi networks. Google has a database of wifi routers (actually that was the point of google streetview, they collected wifi bssids alongside taking photos, they also collect this data from android devices).

With microg you can select from different dbs for this, they are called ‘UnifiedNlp backends’: apple has a similar db from iphones, mozilla used to collect this data with a separate app for MLS (they shut down the project in 2024 march). Microg builds an on device private db as well, it will remembers the wifi networks and celltowers you were close to, and next time you are there it won’t need gps, saves a ton of battery life. This was called Deja Vu, I love this name. Search for UnifiedNlp on fdroid you can find some more options.

Since MicroG 0.3 you don’t have to install these separately, Mozilla and Deja Vu are builtin, and they are more than enough

Huh? Which rom asks this? Usually you have to go through hoops to get microg, and only a handful of roms have it builtin. It can only ask if you want to enable microg not installing it or not, microg to correctly work it should be installed in /system/priv-app, to do that after boot on device, you have to be root.

Do you use any app from aurora or outside fdroid? If your answer is no, than you can use android without a GMS package.

Also as I wrote, location won’t work for you underground or inside concrete buildings. If you are fine with these kind of limitations than you can obviously.

Marwin (the main developer of microg) said in some interview that he doesn’t want microg to exist, and in a perfect world we shouldn’t need such workaround. I would be also happy if android wouldn’t depend this muhc on google

(I reread ops question and I can only see the term open source 2 times, but whatever, I understand what you say, and I don’t want to debate about semantics.)

The point with microG is it’s still the best way if you want to use android. The other options are:

• Play services (GMS), or Huawei has some similar solution because of US trade embragoes.
• You can use android without play services but notifications won’t work for most apps, even if you can open them. (UnifiedPush tries to solve notification part) Wifi and cell based location won’t work
• I see microG as an acceptable middle ground. I still have to give up something to goog, but it’s not much compared to GMS, and I can use all available apps

OP asked about Open Source not about privacy.

MicroG minimises connections to google servers, here you can read what addresses it still connects to and why: https://github.com/microg/GmsCore/wiki/Google-Network-Connections