/cyb/ - Cyberpunk Fiction and Fact

Linus Torvalds used to be a strong role model but the woke commies broke him.
>I am one of those “woke communists”: Linus Torvalds
https://news.itsfoss.com/linus-torvalds-woke-communists/

2018 when the brainwashing begun:
>Linus Torvalds apologizes for years of being a jerk, takes time off to learn empathy
https://arstechnica.com/gadgets/2018/09/linus-torvalds-apologizes-for-years-of-being-a-jerk-takes-time-off-to-learn-empathy/

>>2669
That's the same impression am left with too. They've been writing hit pieces about how his community is too white, and has too many men for so many years. Plus that he's a toxic bigot and that sort of thing. I think he's just tired of everything and doesn't want to get into trouble.

>>2671
>Third pic
Fuck...

>>2672
Look, this shit begun to accelerate when the Linux Foundation let the corporations inside de kernel development because of the money. Attached to that funding came the demands for inclusiveness (homosexuals, women and non-Whites). This year is expected that the kernel, developed in C, allow code developed in Rust. From a technical point of view, Rust is safer code than C, BUT, here comes the commie claws... the Rust Foundation is pushing trademark restrictions and lunatic demands like that any meeting when Rust is portraited has to stick to "sanitary" codes and "no guns allowed into the premises". Yup, the woke lunacy ported from code to IRL, no kidding.

>Rust Foundation IS DOING WHAT????
https://www.youtube.com/watch?v=gutR_LNoZw0

>>2678
Is ridiculous how much shit they stuffed in there for some copyright policy thing. Thanks anon, I wasn't aware of this.
>Look, this shit begun to accelerate when the Linux Foundation let the corporations inside de kernel development because of the money. Attached to that funding came the demands for inclusiveness (homosexuals, women and non-Whites).
Yeah, some people have always been wary of that. They should have taken their concerns more seriously. Like, even microsoft is in at this point. FOSS in general needs to learn from this shit.

>>2678
>Rust clusterfuck
There is hope. The sane fags forked the language before the commies fuck it still more. The fork is called Crablang and on its the website don't even mention the trademarked word RUST even once. To avoid potential lawsuits I guess.
https://github.com/crablang/crab
https://crablang.org/

>2014
>Who actually develops Linux? The answer might surprise you
>If I tell you to think of an open-source project, the first word that probably comes to mind is Linux. Then, if I ask you what open-source actually means, you'd probably say something like: "Open source means everyone is free to use the code, and it's usually developed by lots of independent programmers, who contribute their work freely, to make the world/internet a better place." That's what I thought, too, until I read The Linux Foundation's annual report on the state of the Linux kernel. The report's findings may surprise you.
https://www.extremetech.com/computing/175919-who-actually-develops-linux-the-answer-might-surprise-you
-----

The cost of open-source software. Is it free? Yes, it is free for you as an end-user. Server and machine time are not free; hosting is not free. The developer’s time is not free. That is why 70-80% of Linux kernel patches are done by commercial companies, and then the kernel went woke.

>>2683
AMD and Intel drop a lot of work in because they need the server systems to work on their crap. IBM now owns redhat so you can combine those two pie slices. Valve is a relatively new one to the open source world and is putting a fairly considerable amount of money to developing the linux ecosystem, mostly because they don't want to pay homage to microsoft or sony as a gaming platform. Lots of other "smaller" companies will pay to have certain things fixed in the linux kernel because it affects their niche server-side plugin to [whateverthefuk]

Governments world wide are making it more expensive to live, so of course there is less people working on it "for free".

>>2684
>mostly because they don't want to pay homage to microsoft or sony as a gaming platform
This.

>>2684
Yeah, even microsoft is in on it too. They're also trying to screw up vulkan.

>>2687
Monocultures are an issue with design not implementation. Open standards and FOSS means anything can be adapted for anything

Linux is just a kernel, applying the tool analogy, it's like your power drill and dremel using the same battery brand. It has an open adapter, so you could easily switch to a different brand, but it's the best battery around, so why would you? But, if you were to use this other brand with it's proprietary adapter, you'd have to use their batteries forever

Using 50 different proprietary technologies means you're 100% locked in, using only 1 open technology means you're completely free

A backdoor in xz/liblzma tools.
Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in the liblzma code. This results in a modified liblzma library that can be used by any software linked against this library, intercepting and modifying the data interaction with this library.

To know if you are vulnerable run in terminal: xz --version
If the output says xz (XZ UTils) 5.6.1 or liblzma 5.6.1, then users should either apply the update for their distribution (if available), downgrade xz, or disable ssh for the time being.

>Are You Affected by the Backdoor in XZ Utils?
https://www.darkreading.com/vulnerabilities-threats/are-you-affected-by-the-backdoor-in-xz-utils
>PyPI halted new users and projects while it fended off supply-chain attack
https://arstechnica.com/security/2024/03/pypi-halted-new-users-and-projects-while-it-fended-off-supply-chain-attack/
>Backdoor found in widely used Linux utility breaks encrypted SSH connections
https://arstechnica.com/security/2024/03/backdoor-found-in-widely-used-linux-utility-breaks-encrypted-ssh-connections/

And a faggot explaining what's going on:
https://twitter.com/feross/status/1774153518800404494

>>3272
It's mostly an issue with patched systemd implementations of these libraries. Distributions that use openrc for example or other unixes such as BSDs are not affected.
>1. Debian patches the sources of everyone's most trusted, most critical daemon – `sshd` – to add support for notifying systemd …
>2. which exposes everyone's most trusted, most critical daemon – `sshd` – to an attack surface broadened to nothing less than the entire set of libraries linked by `libsystemd` …
>3. which, due to bloat and feature-creep, is vast …
>4. and `xz` and `liblzma` just happen to constitute vulnerable libraries within it, those salient today.
>It could have been anything else; the wider the attack surface, the more vulnerable everyone is.
>Every distribution is now frantically and reactively patching but the real vulnerability persists – systemd, itself – and every news item mentioning it is either bad news or notice of how its feature-creep progresses apace. As long as *that* attack-surface continues to exist on modern Linux, backdoors such as this one will only become easier and more frequent whether they are detected and reported or not.
https://forums.theregister.com/post/reply/4837096

>>3273
>systemd
May be there is a reason why so many cringe to it.

>>3272
Think about it. Microsoft have been contributing to the Linux Kernel for many years... may be we might need a new kernel.
F

>>3274
It's a feature-creeped and bloated beyond hell project that is unmaintainable. Muh xz is deflection. Do not ever install a distribution that relies on systemd.
>>3275
The BSD projects are much better in every aspect, especially OpenBSD

>>3278
>OpenBSD
I'm getting good vibes.

>>3272
>A backdoor in xz/liblzma tools
This a video from 3 years ago and reuploaded 3 months ago.
The guy prophecies exactly what just happened and wonders how many other sleeping backdoors are in the code.
>Jonathan Blow on the Problem with Open Source
https://www.youtube.com/watch?v=WGekWFxeD6c

>>3278
>Do not ever install a distribution that relies on systemd
The awareness is growing fast, even among systemd fanboys.
https://github.com/systemd/systemd/issues/32028