OK I got it, you are completely out of the loop here.

You do not grasp the idea of NoScript and other JS filtering extension. This is not about server code, your all arguments is baseless here.

By the way JS refered to Javascript and not NodeJS.

Anyway I got you whole company/business talk about “keeping the service available, secure, performant” and “GDPR […] bankrupting fine”… yeah lemmy.world.

Thanks for your answer.

First I don’t even grasp what a “service owner” is.

Second, for JS front-end openness there are already a bunch of app (web, android) that are open-source and secured. Everything has dependencies nowadays, this doesn’t prevent good security. Think all the python app and their dependencies, rust, android… even c\c++ packages are built with dependencies and security updates are necessary (bash had security issues).

I think with JS scripts it’s actually even easier to have good security because the app is ran in our web browser so the only possible attacker is the website we are visiting itself. If they are malicious then the close-sourced JS script is even worse. Unless you count 3rd party scripts embedded that bad dev uses in their website without even thinking about trusting them. That is also awful in both open or close source environment.

So even having imperfect security (which happens regardless to openness), who is the attacker here? I would rather run js script on my end if the code can be checked.

I believe you missed the point, I am not in defense of Security through obscurity (https://en.wikipedia.org/wiki/Security_through_obscurity), quiet the opposite.

The point: “[…] risk for the service owner as it gives an easily parsable way for an attacker to check […]” is well known and not the discussion here. You can choose close source for ‘security’ this is opensource community so I am wondering about such a tool.

deleted by creator

Are we codeberg yet?

Thank you for sharing this. I didn’t know this FS yet. It seems new and have some nice goals. I always have a grudge against zfs/btrfs because of the resource usage/performance.

I’ll keep an eye on this. I’d love to find some benchmarks.

it’s been at least 7 years now, I don’t have any hope.

Wine is fine so I guess proton would be.

Damned, this is so frustrating when you cannot switch yet. Not like Wayland is perfect anyway but I felt the same with pipewire where the new system as some needed improvement but the switch is harsh.

Never heard of bonfire, I really need some kind of tech news to explain and review those kind of things. I spend few minutes reading some of this “micro-bloging” thing. I’d like to see/understand concrete application. Is this mastodon-like small messages use?

I don’t like it being HTTP based and TLS (certificate?), nor I am a fan of flutter and the other 70-ish dependencies (https://github.com/localsend/localsend/blob/main/app/pubspec.yaml).

KDEConnect is great and does way more than file sharing, I’ll stick with that.

Thanks for the link, I knew hyperbola for many years from afar. Reading this gave me a lot more insight on the project. I find it very cool and pushing toward better software like GNU, openBSD and suckless.

Nothing is perfect but for server this distribution could be a nice option . I’d love to see an arm version of it. I guess RISC-V would also be a perfect match for them

It really has the vibe of an hbomberguy video. I also feel the background is a subtle tribute to his style.

That could be a nice way. Sadly it was in a C++ code base (using tensorflow). Therefore no such nice things (would be slow too). I skill-issued myself thinking a struct would be 0 -initialized but MyStruct input; would not while MyStruct input {}; will (that was the fix). Long story.

Took me 2 hours to find out why the final output of a neural network was a bunch of NaN. This is always very annoying but I can’t really complain, it make sense. Just sucks.