Todd Bonzalez

it blows my mind how one person can do it.

One person can’t do it. When you’re making FOSS you’re standing on the shoulders of giants. Most of the code that makes up this app wasn’t coded by the developer of this app. Also, there are multiple people committing code to this repository, so it literally isn’t just one guy developing this app specifically.

Anyone who wants to fix this can help fix it, but people are just making demands of an unpaid maintainer. The devs can run this project the way they want to. If you don’t like it, don’t use Ventoy.

The people comparing this to the xz exploit are out of line. xz was a library that was deeply embedded in a lot of software. Ventoy is an IT tool used to boot live OSes. Not even remotely the same attack surface.

Blobs in the source tree are not ideal, but people need to pick their battles.

Yeah, it works, but it’s really quite clunky…

The issue is that the digital tap-to-pay cards are actually reissued cards with their own unique numbers. They also require significant security measures to protect from cloning attacks.

So banks need a party that they can safely issue a digital card to, knowing that the card data will be stored safely.

Even a FOSS app that covers all the user’s needs is going to have a lot of trouble actually getting a card loaded into it under current standards.

I hate to say it, but crypto wallets are likely the closest thing we’re ever going to get to a FOSS tap-to-pay system. Banks are inherently corporate and capitalist, so it’s not really in their nature to make things open source.

Perhaps if there were an industry standard for issuing digital cards, instead of banks partnering with centralized wallet apps, we could procure our own digital cards to load onto our phones and watches, or integrate into other devices. But that’s a whole other battle that nobody is fighting right now.

File Manager Plus:

It connects to all my SFTP servers effortlessly, and it’s an absolutely stellar file Manager.

JuiceSSH:

Manages all my SSH servers and identities, and has an extremely usable terminal. It’s got extensions too.

Look up brothels in sex-work friendly countries in Google Maps, screenshot them, and mass-report Google Maps as a prostitution app.

I’m going to get excited about it now, and report bugs for it, because I actually want it to be production ready without pretending the few maintainers this has are gods.

I recently set up Synapse just to play around with the protocol, and I do not remember this instruction at all. Where did you get this?

No, if you include GPL code you need to provide a copy of the source code upon request. If you made modifications to that source code, you will need to provide them, otherwise just provide the commit hash for the GPL project you’re using.

You don’t need to provide root access just because you used GPL code, you just have to follow the GPL.

I love how this guy made a whole video debunking an argument I’ve never heard anyone make (that FOSS is democratic).