Friday, November 18, 2022

On the impending loss of Twitter, and the value of social graphs

Well, with the impending demise of Twitter, it looks like I'll be following Dave Rogers, and the rest of the world, on RSS again, along with everyone else. I've got a list... it's about 250 entries long, that will make the start of my RSS feeds.

Twitter had an immediacy that RSS lacks, having solved the problem of feedback by outsourcing the policing of spam, etc. to a staff that has been let go.

I like seeing what the people I follow are saying, but the idea of retweeting at a click was seductive, but a bit too easy because you never say WHY you retweet someone, you're just blindly sharing an idea without adding any new context.

I can't help but feel that if Aaron Swartz were still with us, he'd have figured out something more powerful, open source, and wonderful to replace Twitter at this time.

In losing Twitter, I lose links to the comments of friends now gone like Michael O'Connor Clarke, and they likely aren't archived anywhere else, except the Internet Archive of his blog.

I've suffered my own health issues, and this loss (or threat) of Twitter just serves to remind me of the things I'm thankful for, friends and family I've shared this journey with.

I've yet to pick out an RSS reader....I'll post here when I do.

[Update] RSSowl seems to be a usable, locally installed and run Desktop OS RSS Reader. It's only quirk is that it needs the 32 bit Java runtime, regardless of your 64 bit OS, etc. 

Thursday, October 13, 2022

Future Security Threats - Example One - The Threat from Stable Diffusion

I'm playing with Stable Diffusion on my PC, to see what kind of things it comes up with, and learn a bit more about the nature of AI. I've been trying to visualize the words of my friend Lloyd Smith, who well before his passing often said in jest

When I die... I want to be sat upright in a chair at a card table, on the surface of the moon, with a royal flush in my hands, and a shit eating grin on my face. That will give the astronomy students something fun to look for.
There have been quite a few thought provoking outputs, some of which worked out really well


But in browsing through them this morning, out of the 500+ images I've generated on this theme, I saw this

Which immediately brought back to mind the NDC Keynote Presentation by Laura Bell I watched last night, which addressed future security threats. One of the possibilities was the threat of curated data sets... and here it was in my own PC.

I don't know how, but somewhere in this curated set of data, copyrights might have been broken. The future is here.

Friday, September 23, 2022

Mike's law of capabilities

Any sufficiently popular computing environment contains an ad hoc, informally-specified, bug-ridden, slow implementation of capability based security.
In a recent Hacker News thread[1], I quoted from the source article
Continuing a legacy is an honorable task, except in programming.
This is the most important of the items in the list. The "upgrade or you're unclean" ethos has some very deep roots. It goes all the way down to the security model of our operating systems.
It was perfectly reasonable to assume that a user knew what they were doing with their own files back in the days when Unix was written. That wasn't assumed in the world of mainframes, which were designed to multiplex hardware across tens, hundreds, or even thousands of jobs. In mainframes, your job is explicitly given resources to use and a run time environment. No matter what went wrong, a job run for Acme Inc couldn't corrupt the files of Bob's Distributor.
We don't have that... we've been lead to believe that we just have to be pure enough, our code has to be perfect enough, and defect free, in order to have safety. We blame everything except the OS, mostly because we don't want to cast doubt on the wisdom of Linus, and the sanctity of Linux.
We recreate the mainframe model, over and over, in part, not in whole. It's like Greenspun's 10th rule[2].
Any sufficiently popular computing environment contains an ad hoc, informally-specified, bug-ridden, slow implementation of capability based security. That's why we have Virtual Machines, Containers, and now WASM... which I hope actually manages to fend off the stupidity of letting an application decide which files to access.
We need to make better choices. Legacies are a choice, lots of old stuff is tossed by kids all the time, the legacies are the good things kept from the past. Keeping legacies alive is a choice, let's chose wisely.

[1] https://news.ycombinator.com/item?id=32935466
[2] https://en.wikipedia.org/wiki/Greenspun%27s_tenth_rule

 

Saturday, July 02, 2022

We need to do a hard thing

 We do need to do a hard thing, we need to reconfigure our world to cope with the end of the one time greatest economic bonanza of all times... the fossil fuel pulse.


If you think I'm about to go on about global warming/climate change/etc... NOPE


We've tapped most of the easy to reach oil in the world. Now we're fracking to get at things, and those wells have decay rates of 40%/year, instead of per decade.  If we stopped all drilling, we'd have 40% less oil next year from all the new wells. (Or so I've been lead to believe. It's my opinion that we've got 20 years, at the outside to complete this project)

The new shockingly high fuel costs? They're here to stay, no matter who "runs the country". They stopped building new refineries in the 1970s, because they knew this day was coming, and it didn't make sense to build more capacity for an industry they knew was heading to a peak. The only surprise was that some things broke faster than planned.


Our civilization depends on a resource in decline. All the people at the top have zero clue as to how to actively manage the situation. We, the people, have to start from the grass roots and figure this out ourselves.

Friday, July 01, 2022

Abortion isn't all about ending life - saying it is, is evil!

I've lost multiple nights of sleep, and simply have no coping skills because there exist in this world a large number of people who just love calling abortion "Baby Murder"

These people obviously know the difference between a dead child lying on the ground in a classroom in Texas, and a few cells removed in the first half of a pregnancy... yet they persist in this evil game.

If the upcoming laws in my Red State had been in effect 2 decades ago, I'd have no wife, she would have been killed, rather than have life saving procedure after we lost a more than welcome pregnancy. Thus she wouldn't have been with me to bring our lovely child into the world later.

How many men will lose their wives, sisters, daughters... how many children will lose their mothers because of this evil befalling the land?

How the f*ck can I get some sleep at night, knowing of all the evil indifference these people carry in their hearts?

Sunday, June 12, 2022

A chance to act, let's close the Boyfriend Loophole - the right way!

 Closing the "Boyfriend Loophole" could do a great deal to stop future mass shootings. Someone who can't handle their feelings around people close to them enough to avoid violence, shouldn't be allowed to own firearms.


This is THE BEST CHANCE we have at the moment, likely in the next year or two, for actually fixing some of the biggest problems facing our nation. The huge overlap between those who commit domestic violence, and mass shooters, is well proven.


I hope that we can push our representatives to do the right thing on this. Pretty much EVERYONE agrees that this legislation is needed, let's not let them f*ck it up.

Here's Beau explaining why the details matter.


Tuesday, May 31, 2022

Memex Rewind

In 1945, the person in charge of research and development, who oversaw most of the science that won WWII with the help of Logistics, wrote an article about the most pressing task facing mankind, the need to organize and access the ever growing flood of information created by all of this activity.

His vision was expressed in an article titled "As We May Think", which was eventually republished by Time Magazine. Many people credit it for the vision that eventually became the world wide web. I also held this view for a long time.

I no longer hold that view.

The web as we use it is about as useful as a picture of a box of tools, instead of the tools themselves. There was a vague notion expressed that you could gather up a huge canvas of inter-related thoughts and ideas, and freely associate them, and share the whole of that work effortlessly. We don't have it. I'm trying to use my time and effort to change that by making something that gets a bit more of that toolset into my hands, and hopefully into everyone's eventually.

Wish me luck.

Tuesday, May 17, 2022

Linux compared to Window 11 in terms of suckage

 I came across this comparison video, and it makes a comparison of features between Pop Linux and Windows 11 For the most part, they're equivalent.



Thoughts on writing


Nobody writes well written prose.

Everyone writes, then does a better or worse job of editing. Like code, prose tends to crystalize into smaller and higher quality pieces over time.

--- Process ---

Write all of your thoughts in a stream of consciousness flow, don't worry about how it looks, just get your thoughts out of your head, and into the storage medium of your choice. This frees up stack space in your brain.

Next - Iterate. Strategies you can use to help include:
  • Read it out loud to yourself. You'll immediately notice typos, grammatical and flow issues.
  • Walk away from it to gain some distance in time and space. When you come back you'll notice gaps or repetitions.
Repeat until you're happy.

Monday, March 14, 2022

An excellent response, that didn't answer the question.

 Ask HN: As you get older, do you see programming as merely a means to an end?


38 points by amichail 18 hours ago | flag | hide | past | favorite | 45 comments


That is, you become more interested in what your app does rather than the programming involved to get it to do that?


--- My Reply --- at https://news.ycombinator.com/item?id=30674662


Programming has gone through a weird path of effort/reward.  Initially, you had to invest time and a lot of money to build your own computer from a kit, debug any errors, and get to the point of having your own, personal computer. At that point, any working results were amazing, as there was a fair chance you were the first person to solve the given problem.


This lasted an amazingly long time. In the matter of less than a decade, the same amount of money, minus the time and effort of building and constructing, got you a computer, could be skipped. For the same amount of money, you got a computer with a display, floppy disks, and it just worked out of the box.


DOS, BASIC, Turbo Pascal, Sidekick, PKzip, and so many tools game flooding in to make those computers even more easier to program, and productive.


It was at THAT POINT, where I started really making money as a programmer.


A decade passes, Windows 95 / Macintosh come along, and we get Visual Basic / Delphi / Hypercard.  WOW... the amount of effort goes up just a tiny bit, but you can do amazing things, and that code will run reliably for most of your users without much tweaking on the programmers part.


Then networking, the internet, SQL as a layer, Email, Microsoft Office, etc. all boost productivity for the users. The table stakes remain remarkably stable.


Then the iPhone comes along, and with a lot of effort, and the approval of Apple, you can build a program that people can carry around in their pockets. Apple decides to limit the retail price of apps, and bottleneck things through the App store.  Programming gets harder, and more specialized. Ugh


Meanwhile, the web has grown popular, and the idea that a program should just work anywhere shatters the simplicity of a program running on a single computer,  directly talking to the OS that controls the display, and takes input. Again, programming gets harder, and more specialized.


Now we're at the point, where you're expected to make a program, sell it for less than a few dollars, support that program on any random phone, and hope that the two app stores don't arbitrarily change the rules and cut you off. The incentives go way up with audience size, and down with the giant filter of the app store.


OR


To route around the damage of the App store, you are expected to make your program available on a server on the web, deal with hackers, man in the middle attacks, wildly varying desktop and mobile web browsers, bandwidth and legal restrictions, to deliver results to a user that might be at a desktop with multiple 4K screens on a gigabit internet... all the way to a person using an phone with no keyboard, who pays for data transfer, and might lose connection at any moment, might rotate the screen, and wants to interact with video, multiple cameras, gps, and any number of other sources of input or output.


After all of that discourse to set perspective. Yes, I find it amazing that it can be done at all. I'm saddened that Delphi on Windows XP was probably the most productive GUI build environment I'll ever experience as a programmer.


It's hard not to see the table stakes now as a huge barrier. For my own personal programs, it brings me joy every time something works. Every time I overcome a series of challenges, and my will becomes a tool... it amazes and overjoys me. I love programming. It's frustrating as hell, but I love it. I fail to see how anyone could stick with it if they didn't, at some level.

Friday, March 11, 2022

Here's what a "No Fly Zone" over Ukraine really means

a "no fly" zone involves acquiring and maintaining air superiority over Ukraine and neighboring territory. To do this we would have to destroy any surface to air radar and missile sites in or near Ukraine. We would also have to shoot down any enemy aircraft that violated that airspace.

In sum total, it would be a declaration of war against Belarus and Russia.

It would then be up to Putin to decide if, where and when he wants to deploy the worlds largest stockpile of ThermoNuclear weapons.

Likely it would take about 15 minutes to confirm any launch, after which there might be a few minutes left to let the public know to make peace with God.

Your personal outcome at that point, depends on preparation and luck:

A> You've felt the blast, and are going to die, maybe in seconds, maybe in days

B> You've seen the flash, and if you take cover soon enough, can survive the fallout, might survive and watch the total collapse of civilization.

Friday, February 18, 2022

In response to Doc's story of the Story

Doc Searls was at it again back in 2018 doing a Ted Talk. His story rhymes with his overall message, and the things he wrote back then. I think it's time to examine how events have evolved since then.

*This story is me revising and extending my reply on Facebook. (It's buried in the comments, don't bother)

Doc worried about the lost center in coverage of the news, and overall discussion. I too feel the loss. There's an old saying, "The Net treats Censorship as Damage, and routes around it". I think that it takes time in the world of atoms, but that John Gilmore was right.

Communications, Data Storage, and Compute infrastructure have grown exponentially with the commercialized internet. The physical costs of producing and sharing content have fallen to almost zero. It's not perfect, and there are some left out, but for the most part anyone can be online, and have a say in the world.

In response to the visible failure of advertising driven funding, crowd funding now is filling in the missing channel of support to keep those who wish to share on the internet going. A number of new journalists are arising. Some of them cover things traditionally called news. It's not perfect, and there are bits of censorship creeping in around the edges, but it is working.

For me, my most trusted news sources at the moment are spread across YouTube. It makes it possible for me to give authority to my choices, make them my authoritative sources. I'm filling in that lost center with the people who I think can best tell me what I need to know, and why others tell the stories they do.

Now, having a centrist view does make discussions with those entrained in the left/right thought bubbles frustrating at times, but who knows, maybe we'll all pull the center back together?

Here's how I approach news gathering in 2022.

I'd heard from the mainstream that leaks in via friends that there was a ruckus brewing over Ukraine. For this story, most trusted sources were Beau of the Fifth Column, Breaking Points with Krystal and Sagaar, and Robb Law.

To be really sure, I stuck with first hand imaging via a list of live webcams across Ukraine. It was fairly easy to be certain no invasion was feared by the locals as they went about skiing in Ivano-Frankivsk, walking across Sophia Square in Kiev, or Pysanka museum (also in Ivano-Frankivsk).

For practical advice, matters of instruction, the future is really here. You can learn all manner of technical facts and skills. There are some limitations I've noticed, for instance one channel on machining had a really great multi-part series on the intricacies of making a part of a fyre arm, which he was forced to remove. I have no desire to actually do that, but there were a number of creative methods used, like using a quill of a milling machine as a vertical broach, and this was an outstanding example of why you would do it. That knowledge is now walled off, and considered tainted by association.

I've long stated that our computers aren't safe because of a design flaw at their core. I now believe that this censorious tendency in the chain of payment is a similar danger.

It remains to be seen how we'll route around it.

Sunday, February 13, 2022

Let's choose a better timeline

 I believe in this causal chain,

  • Computers are insecure
  • Which many bad actors find profit in exploiting
  • Which makes new web sites a risk
  • Which makes users prefer their known "safe" spaces
  • Which leads to walled gardens
  • Which then sell the "users" for profit to advertisers
  • Which incentivizes dark behavior of those walled gardens
  • Which then attract the rentier class
  • Which then leverage control for more power

I believe this causal chain can be broken by fixing computer security. The necessary research was done in the 1970s. The Bell-Lapadula model [1] in 1973 was one of the significant results.

The Principle of Least Privilege [2] was adopted in the Unix system in a weak form. The superuser (root) account was a special privilege, which administrators and code was supposed to use as little as possible.

There were (are???) implementations of a multi-level secure systems, which saw limited application in the military, and briefly elsewhere. However, for general use, the root/user separation was widely seen as good enough.

There are now efforts to fully extend operating systems so that they can provide tools so that the users can also use the Principle of Least Privilege. I believe that eventually it will be as easy to use these as more conventional systems.

In these systems, no default permissions are given when running a program, the allowed resources, also known as capabilities, must be specified. This is similar to deciding which bank notes you are going to hand to a cashier, instead of handing over your wallet. It is up to US to demand that it be as easy for any user to do so, in a transparent way.

It is my hope, that should this model be accepted, a new causal chain will arise

  • Computers will be made secure
  • Which users will grow to trust
  • Which will allow experimentation
  • Which allows new ways of communicating
  • Which don't require corporate sponsorship
  • Which doesn't require the rentier class
  • Which helps innovation
  • Which helps society

1 -  https://web.archive.org/web/20060618092351/http://www.albany.edu/acc/courses/ia/classics/belllapadula1.pdf

2 - https://en.wikipedia.org/wiki/Principle_of_least_privilege

Sunday, February 06, 2022

My life's principle

 I just watched this --> Brett Victor - Inventing on principle. In this video, he demonstrates some things he's done with computers and programming that are quite impressive to me. He does this as an illustration of the idea of living according to a principle, or more correctly, causing a new principle to be brought into the world.  After explaining with the examples from his own work, he goes on to discuss some other notable people, and the principles they brought to the world.

Watching that video gave me a moment of clarity. I'm writing it up now, and I'll work on the wording over time, but here's a rough sketch of my principle that I intend to bring to the world.

No person should ever be forced to blindly trust a computer to do the right thing.  Computing shouldn't be either blindly trust the black box, or get nothing done.

Nobody hands over their wallet to buy an ice cream cone, you can just take the exact change out and pay.
It would be extraordinary for a competent adult to hand their wallet or purse to a clerk, and trust them to take the correct amount of money, and make the appropriate change.

It should be just as extraordinary to give a program you wish to run access to ALL of your files. You should be able just pick a file, or folder, source, destination, whatever resource you deem appropriate, and let the program have those resources, and nothing else!

You should be able to completely trust that nothing else was given to the program behind the scenes.

This is widely regarded as impossible to do. I intend to change that. I know it can be done. I have to convince everyone else.

I reject the Left and the Right

We, the people, in order to form a more perfect union, recognized that in order to have a well informed population, capable of intelligently governing itself, must have a freedom of the press, and freedom of expression.

We saw the dangers of Nazi book burning, and rightly teach in school that is something that open and free societies do not do.

We saw the dangers of an official press, such as Pravda, in the Soviet Union, and we rightly agree that a free press, and freedom of expression are a cornerstone of the American Identity. They are a foundation of our strength, and not a weakness.

Now I see friends who support one or the other of these forms of censorship. 

Conservatives support the banning of teaching students history and other truths that are hard for their parents to come to terms with.

Liberals who want to set up an official truth, a new American Ministry of Truth, with Fauci at its head, which must never be questioned, lest the plague caused by the unclean, sub-human, enemy be brought to the good, Covid fearing, Woke masses.

I reject both the Woke Left, and the Trump as Fuhrer Right.

Don't you dare call me either, this is MY Country, the United States of America. We're quite capable of sorting out shit on our own through fierce debate among free citizens. It is our duty to stand up, and call out those who would shackle us.

Saturday, February 05, 2022

My reply to a vital but boring Congressional Inquiry

This is my statement in response to 

https://www.regulations.gov/document/COLC-2021-0009-0001

-----

I am Michael Warot, a US Citizen residing in Munster, Indiana.

In regard to question 3:  It is my observation that "voluntary" copyright enforcement mechanisms are being used as a means of censorship by parties who wish to prohibit criticism of themselves or their content in a form.  The fair use exemption of copyright law requires careful consideration, and can not be automated, nor should it be.  

Therefor, as concerns question 7: I believe that legislation should be undertaken to prohibit the automation of copyright infringement claims. While it may be reasonable to automate a screening process, if content is deemed to infringe copyright, the name of a US Citizen who made the decision, their reason for the decisions, and the time/date of their decision, and if they are employed by a corporation to make that decision, the name and contact information of that superior should ALL be part of a public record, to be made available in bulk to the US public to help use provide oversight of the process.

Thank you very much for your time and attention.

Thursday, January 20, 2022

What's all this NFT stuff, anyway?

This is what a non-digital, non fungible token (NFT) looks like.  If you look closely, the serial number of the US Dollar appears in the image. This ties the image to a particular US Dollar note, it can't be swapped with any other dollar, it is now NON-fungible, and the dollar is the token.



With online NFTs, the Dollar is replaced with a small amount of cryptocurrency, which has a unique serial number as well. The picture is just a picture, with a signature including the serial number of the cryptocurrency embedded in it, off screen, in a way that can't be forged. Usually there's also a web site that displays the image so you can show your friends online.

Why someone would pay big bucks for an NFT is beyond me.