Posts by doublelayer

Re: Shakespearian question?

"At least have the guts to thumbs down and follow up with a reason why you're giving it."

I can generally summarize their reasons. Any time you see a thumbs down, it means "I don't agree with something in this". That's their reason. Why do they need to spam the forums with lots of copies of "I disagree with you"? When I disagree, I tend to post a response, but that's usually when I have counterarguments to your arguments that I feel are worth talking about. For the same reason that they don't have to post lots of "This!" comments when they agree with you and can just push that upvote button, the downvote button is the way to express disapproval without necessarily having to post a lengthy response.

I didn't vote either way on your comment or any other comment in this thread. However, I can probably explain why some of the people downvoted and didn't leave a comment. They might disagree with the idea that someone is bad for disagreeing with a company's decision to give a platform to someone else. They might agree with the disapproval of the person concerned, or they might think it's irrelevant. That is not a comment that needs a lot of explanation; one person says they care about this detail, and other people either don't care or feel the opposite way. Comments saying "I feel the opposite way" are content-free, so they use the button instead. Presumably some people avoided posting "I feel the same way", and they pushed the upvote button.

If you disagree with my explanation and you want me to understand why you think I'm wrong, post a reply. If you just think my approach is wrong, but it's a subjective thing that can't be defended either way, here are some quick vote buttons.

Re: But...

"If everything you need for your business is at the other end of a service that's down, you're stuffed."

That's true, but that's equally true with an on prem system. Unless the people are there to fix it whenever it breaks, you can have the same situation and it's just as bad. I've experienced this from the maintainer's and the user's sides. I maintain equipment for a charity that doesn't have a full-time person to do it. I have a full-time job as a developer at a different company, so my maintenance usually happens out of hours. When their on prem server (in my defense, not one I set up) failed during working hours, they had problems while they failed to get my attention because I was in meetings and then had to work with my instructions on what to do over the phone because I wasn't able to be there in person. Obviously, a company will probably have more than one part-time volunteer IT admin, but if the admins who know the system are unavailable, it can be broken.

The cloud can also be broken, but the admins are there to get it back up and generally do so quickly. I've used a cloud service that had an outage, and without having to do anything, it was back to normal in a matter of hours. Had we deployed services in multiple regions, we wouldn't have been affected anyway, but this was a test environment. That point is the most important one. If you can't withstand the service failure, you need to have redundant and backup systems, whether it's on the cloud or in the building. Neither one will prevent you having that dependency.

One of its problems is that it doesn't behave like us. If someone asks a question here, I decide whether I know the answer to their question and whether I can write a good response to it. Maybe I'll only write something if one of those is true, but if both are false, I won't hit that reply button. GPT doesn't ask those questions, can't understand the answers, and always tries to make a reply. It's going to generate more wrong answers even with all the people who don't know what they're talking about simply because it lacks the ability to decide whether to respond.

The other problem is that when I have real filters, where I understand that something is wrong so I never claim it, GPT only has rough filters that understand that certain clusters of words are probably wrong so avoid those, but if it phrases the same concept in a different way, its filters don't work. Unfortunately, I don't think I can claim that humans generally have functioning filters for wrong (either factual wrong or moral wrong), so maybe that is more of a similarity with us than I'd like it to be.

Re: Isn't that Configured Backwards?

It could be either type of emergencies. For example, if there is damage to the wire bringing your phone connection to your house, which could be caused by a variety of things, then your mobile phone will still work in an emergency of that nature (yes, its wires can be damaged as well, but they likely have more backups than you do and if that tower fails, there's likely another one in range that can be used instead). If an emergency happens that involves both systems operating on backup power, then the landline can be the emergency option if the batteries run down as expected.

Re: Wifi calling on? Really?

To be fair, they did basically start with some examples that, in their generic form, can be paraphrased as "unless you have no or bad signal". Since you have no signal, you would fall into that category of people with a good reason to use WiFi calling.

I had that situation at one point and enabled WiFi calling to deal with it, and I have to admit that I had several problems whenever it was operational. I'd answer a call and could hear nothing for the first five seconds. I seemed to have several seconds delay before an incoming call would make my phone ring, meaning I had less time to pick up before it went to voicemail. I had people reporting that my sound quality was worse even though I was using the same microphones on the same device and my WiFi was fast and low-latency enough to be able to handle it. This may have improved in the five years since I had to employ it, but I was glad to switch it off when I went somewhere that has signal.

Re: Good luck with that

"Perhaps the mad rush to kill off GSM, UMTS/HSPA, and CDMA was actually a mistake?"

The problem here isn't intrinsic to VoLTE, so I'm not sure it's fair to blame the shutoff for something that Samsung's code caused. It was going to be turned off at some point eventually, and people have been making VoLTE-capable modems unaffected by this exploit for quite a while. I'm not sure how long a deprecation should be extended for a a just in case backup option for a problem not caused by the new version.

Re: Not sure compliance would help

That requirement for installation information only applies to GPL 3 or LGPL 2.1. Linux uses GPL 2.0 only and does not require installation information. A Linux image that you have the source for but cannot install on the equipment offered does not break the license for Linux. They will need to find a GPL 3.0 component in order to have a right to installation instructions.

The GPL applies to any code that is deliberately licensed under it and any code added to or linked with that code. Crucially, it does not apply to code that interacts with GPLed code with a method less direct than linking. Depending on what components are covered by the GPL, this can lead to different effects.

Let's take a common case: they have a firmware image that boots Linux. Linux is covered by the GPL, so they have to release the source to Linux. If they've modified Linux, for example by putting in extra code necessary to use their hardware, they have to release that too. Not that they always do, but they are required to. When their image starts, it runs an application they've written that is not part of Linux. It uses Linux's system calls to function, but it isn't integrated into the kernel. For now, let's assume that program doesn't use GPL libraries in it. They do not have to release the code for that program, even if it runs on Linux. This is just an example. There are other situations, but this one is common for embedded firmware.

Your assumption: "If that's the case there must be huge numbers of systems that break the GPL. Pretty much everything now seems to run on Linux!" is simultaneously correct and not exactly correct. Firmware that's effectively closed and uses Linux is not a problem if they release the code for the GPLed parts, which in many cases ends up being either completely or almost unmodified copies of the Linux code you can already get. That's not always true, but most of the embedded Linux devices you see all around you have not done anything interesting to the kernel and their required code releases wouldn't be very interesting. Even though it wouldn't help anyone, few of the companies that are required to release that source actually do it, which is why there are GPL violations nearly everywhere.

Re: why is it so hard to follow a simple license?

People still use the LGPL on some things. I am one of those people. In fact, when I do it, I'm deliberately trying to leave that option to the people who use my library. Even though that's true, the original point overstates it a lot. The code they've mentioned so far isn't using the LGPL, it's using the GPL.

Unfortunately, in many cases, companies that release GPL source code aren't providing much of use. You can get a copy of the Linux source, possibly with a few changes, but the application that is run on top of that Linux kernel and does all the important stuff is proprietary and they won't give you anything from it. Even if you search through all the source they gave you, you'll find a bunch of code you could have already gotten from its canonical sources in most cases. It's much rarer that companies include GPL source directly in the binary they want to hide from users, thus requiring them to GPL that part of the code. This is one reason I don't understand companies that don't comply with the license; most of the time, if they did, they'd be giving up no secrets whatsoever.

Re: Good reasons, or just reasons

Exactly, which means that by not updating those components, Sailfish will have to navigate around the older Android components. I'm not sure if that's why the page on Gemini OS support says that Sailfish is using version 3.0 while the Jolla website informs me that version 4.0 has been out since early 2021. Maybe that's not the reason that it's still on 3.0, but still, I'm getting indications that the Gemini is stuck on older versions of software on all of its operating systems despite being actively sold by its manufacturer right now.

This would not be considered acceptable with other hardware. If Microsoft informed you that your laptop just wasn't going to be supported, so no Windows updates, and not for any technical reason but just because they didn't feel like it, it wouldn't be normal. When we buy X86 kit, we generally know years in advance before it will be dropped by Windows* and it's basically certain that the hardware will break by the point that it's dropped from Linux. There's no guesswork, and if we find one running an old version of software with security holes, it's almost always because the user or administrator decided not to bother installing the updates rather than the manufacturer simply not providing any.

* Windows does now drop support, but we were given four years notice that they would, and that applied to equipment that had already existed for two to three years at least. I'm still not happy about it. Before that, they would tell you that the hardware was likely not going to work, but you could insist on installing Windows anyway and it would try to run Windows 10 on your Pentium with 512 MB RAM. This appears to still be true, but their comments on the matter have changed.

Re: Purpose

There may not be a problem, but consider removing some corner cases from your list. For example, in a situation where you can write in a notebook and not take it out of a secure location, this tablet would have to remain inside the secure location as well. Also, since it has an upload feature (I don't know how secure that is), that adds another asterisk to the security that the users should understand.

It can still be suitable for use cases as long as users understand the limits. Still, I wouldn't have thought that meaningful encryption would be too hard a feature to add.

Re: Good reasons, or just reasons

That helps a bit. As I haven't used Sailfish before (I have never had one of the few supported devices), I tend not to include it. Still, the Android software is what they ship it with, and unless I'm misinterpreting their rough Linux page, the software from which the Linux versions get their kernels. This means that, by failing to update their Android images, they're not only leaving the users of the Android software with insecure software, they're artificially hampering their Linux users as well, and given that a quick check on Wikipedia confirms that Salefish is also using Linux, probably that too.

This would be bad enough if they had just dropped the product and expected users to buy a new model if they wanted something newer, but no. They're still selling Geminis (although not ones with English keyboards, so if you want one, maybe one of the other languages for which they evidently made too many is close enough). They've built a computer, with the software update requirements of any computer, and they're now failing to meet those requirements. As much as I like the concept, and I find all their hardware at least somewhat enticing, that's not something I will support.

Re: not heartbroken, yet heartbroken

The Unix philosophy works well in software because there's relatively little cost to having multiple programs in one computer. If I write one utility or two to do a set of tasks, the resulting binaries are likely about the same size as the combined one, and all you have to do if you are using them together is set up the communication between them.

That doesn't work so well with hardware. Let's say that I have implemented a Newton-like system for interpreting handwriting and you'd like to use it with this tablet. Too bad, you can't. That's not exactly true, of course. You can upload all your writing to a server, either a cloud-hosted one or one in your own house, have it perform the operation, and sync the results back down. That adds lots of latency, because now the software won't be running in real time. It also adds dependency on whatever communication system is used to do the transfer. This isn't a problem if you don't want the feature, but there are benefits to combining features in hardware that are much smaller when all the components are software. This is why we have the general purpose computer instead of the electromechanical calculator, word processor, and digital document communication device on our desks.

Re: The US doesn't understand China a bit.

The real anthem is more martial, with instructions to soldiers to march against the enemies (when originally written, it meant the Japanese invaders of the 1930s and 1940s). An interesting fact about the anthem was that, during severe lockdowns and protests about them a few months ago, some people were using the first line of the anthem, which loosely translates as "Stand up, those who refuse to be slaves"*, to call for protests. Chinese internet censors therefore had to put in blocks on their own national anthem, or at least its lyrics. Maybe they should consider changing the words to match Pratchett's.

* The official government translation into English is "Arise, we who refuse to be slaves!". Others translate it differently, but the meaning is basically the same.

Re: I am a Rock; I am an Islaaaaannnnnnd

It would involve a lot of destruction and a lot of sacrificed Chinese soldiers. Both are the kind of thing that lead to civilian populations being rather unhappy with the people running the war, which would mean that a democratic nation is less likely to do it, and having done it, less likely to keep doing it long enough to have results. As Russia has demonstrated, when you don't have to worry about your people throwing you out of office, it's much easier to make them die in order to gain a shattered part of someone else's country. China has a lot of people and they don't really need all of them to keep living, which means that they can consider a war which would be rejected immediately by other countries on the basis that the body count would be way too high and the pain of the populace too extreme.

Re: In order to stop another country from destroying you ....

The fabs are not the only thing on Taiwan that China would like, but they are quite valuable and would help them a lot. If they had the chance to snap those up quickly, they certainly would. Destroying them has two advantages for deterring China's invasion: China would no longer get to add them to its manufacturing assets, thus giving it an even stronger position in more products, and they would no longer have access to the TSMC products they use. Just as other countries would suffer from the lack of TSMC-produced parts, China imports plenty of them and would no longer have that source. Leaving them intact during an invasion would allow China to have a strong position in advanced semiconductor manufacturing and to both deny access to the results and to have as many as they want.

This doesn't mean that a consistent threat to destroy them would certainly prevent China from invading, but it would be a large item in the "reasons to wait and invade them later" list, and the items on that list are the strongest barrier to starting that invasion since the barriers "people there don't want you to" and "they pose no offensive threat to you" aren't major concerns for China.

Re: In order to stop another country from destroying you ....

"... destroy what they're after first ..."

More destroy what they're after if and only if they are going to take it, and make it so clear that you will do it that they realize the invasion will deny them what they want. If you could reliably do it, it would work, but I'm guessing the level of reliable is too high for Taiwan to make that promise so consistently. This also depends whether China is ruled by someone crazy enough to prefer a shattered Taiwan under their control over a functioning global economy and not having democratic nations pondering war with them, which for a while has been there. Now that they're no longer trying to replace people, it's just a test to see if Xi comes down with Putin syndrome or not as he ages.

Re: Maybe I'm a little pedantic, but...

Yes, the algorithm can be published just as a natural-language description. The problem is that I'm confident they don't have that. I wrote another post above which explains why I think that so I won't repeat all the background here, but for big, complex systems that are used by only one company, specifications of the algorithms rarely exist. They would have to read the code and write up a description of what rules they think it's doing, with the possibility that they don't understand some part of it and can't ask the original developer to explain it because that developer has been fired. I can't count the number of times I've been looking at some code and started asking my colleagues questions like "Why is this in here? It looks like it will break things and there's no explanation", and nobody remembers who put it there or why. I can, with time, analyze what the chunk of code is doing, but I can't always tell why it was there because sometimes the answer is that it was a mistake back then and the correct course of action now is to take it out (and sometimes it was important and my taking it out will bring a bunch of users down around my head, which at least sometimes helps explain why it was there).

The other problem is that, if they release the code, we can probably check what it does, but if they release a text description, it can be vague enough that we can't verify it. If I wanted to lie to you about what my code does, it's much easier if I give you a description and skip or obfuscate a key point than if I give you the code. Maybe I've written the code to look like it does something else, but if you run it, you'll see what it really does. With a company that has incentives to hide what's going on and lost most of its credibility already, I would be less likely to trust a description they quickly wrote up. I'm not that interested in testing their algorithm in any case, but the same things would apply to people who will intensely analyze every line as soon as it's published.

"First, it's disappointing to read such rude negativity against an individual."

Sorry to disappoint you. I don't think I've been too responsible for it, but I am kind of negative on him, so probably still disappointing you. I'm not sure why you're so disappointed by it, and I question whether you would be disappointed by similar levels of negativity directed against someone you don't like.

"Second, it's bizarre that so many people seem so well-acquainted with the insides of Twitter's engineering that they **know** that there's no engineering staff left who could open-source Twitter's "algorithm"."

Did people say that? I didn't. I said that, with the numbers of people fired, it will be harder to quickly do the work. They still have engineers and if this was the highest priority, they would be able to do the difficult parts and get it done. I don't think it will be done, not because they can't, but because it's hard and they're understaffed as it is. When there aren't enough people, a lot of things that can be done aren't done because there's a lot of prioritization. Sometimes a task slips around that if it's fast enough, but this would not be fast.

"Third, it's very strange indeed that the commentaries here are unable to distinguish between 'open sourcing the code that Twitter thinks it uses to implement its algorithm' and 'open-sourcing the algorithm'"

This is related to the facts of life as a developer. The algorithm could, in fact, be represented in many forms, but it's certainly not written in a lot of different forms. There's a chance that it exists in two forms: a specification and code that implements the specification. You could release the specification. I don't think that's what they've got. I'm basing this from years of experience writing code for companies, and you never get a specification. You get general ideas, and you figure out what's wanted. When something needs to be changed, someone makes a summary of the change they want and the code is modified to do it. Unless it's a rigorous standard (this isn't), the specification if there ever was one is not updated. This makes the code the single point of truth on what the algorithm does, and sometimes it becomes complex enough that you may not always know what it is doing at every point.

If I'm correct, they don't have any form of the algorithm other than the code. They could have someone read it and write a spec that should do the same things, but that would take a long time and be likely inaccurate. Also, that's the kind of thing that would be done if someone wanted to fake what the algorithm does because a vague spec can be nondeterministic and more difficult to compare against actual system behavior.

Re: Making source code "Open Source" is not that hard

Yes, it is hard. If you use dependencies, you have to deal with their licenses. Others have already posted the problem of what you do when the dependencies are proprietary and you don't have the rights to redistribute and relicense them from whoever you bought the rights from. There's another restriction though: if you have parts under licenses that have conditions about how they affect other licenses, you can have collisions. For example, Apache and GPL don't play too well together. This is fine if you're just using them internally (AGPL does not apply), but if you open source the lot, you may be required to make license changes that you are not allowed to make. Conservative legal departments won't let you combine such things in the first place, but since it is legal under the licenses to build the thing that combines them with the restrictions coming when you distribute the code, a company only intending to run them internally may not have been affected.

It's not just figuring out what to do with each license clash. It's also finding where all the clashes are. Not every piece of code clearly indicates its dependencies. They all should. Not all do. Even when they're pretty clear about it, it still doesn't mean that every repository uses the same, easily parsed document telling you such things. You can't send one person to just give me a tree of projects with their dependencies and license requirements, and now that you've fired most of the people who knew the projects, you can't send a message to every owning team and make them do it for their part of the project. It's a bigger task than it would seem.

Re: Codon ? Colon more like

My guess is that some of those are in virtual environments if you or someone else using this computer does Python development, which means they're either copies or symlinks with the effective path changed by the activation script setting environment variables. Others may be packaged versions of the runtime for applications written in Python. I doubt you have that many full installations of different Python versions. I don't disagree that it makes it a mess, but probably explains a bit about what's causing them.

"Which presumably means you're only interested in commercial use."

They're not even that clear. The license talks about "production use". Both terms can be vague, but the way I use them, production use includes all cases of commercial use and quite a bit more.

I run a few services just because I want to, making no profit (I pay for the servers, so I make a small loss). Is this production use? If I was using a piece of proprietary software, yes it is and just because I don't make any money doesn't mean they would let me have a license for free. I have also built software for charities before, which is more definitively production use and starts to near the line of commercial use (I didn't sell it, the charities aren't selling it or using it to sell things, but they do take in donations and may sell items elsewhere in their operations, and if the software does something like track that, it could be commercial use).

I am disappointed that they chose this license, but it is their choice to do so. It will prevent me from contributing code to them. Since I don't know what license terms would be if I did want to use it in production use, I'm also less likely to take it up unless I want a fast, compiled Python script just for myself. Maybe in 2025 we'll see what it has become.

Re: Lenovo Marketing Dept screwed up...BIG TIME

It's what everyone does and should probably do. I'm talking both Windows and Linux here. They don't remake the factory image and reimage every device in the warehouse every time Microsoft releases a Windows update. You'll also find that, if you buy a computer with Linux preinstalled, you'll still have to do a package update run when you get it running. For that matter, if you take any distro's installation image and install that when you get it, you'll still have packages to update immediately after starting.

This is a good thing, because unboxing every computer to reapply an image multiple times is a long, expensive process that can lead to damage to some computers (do it to ten thousand devices and you'll eventually get someone who doesn't want to). Since the user will both have an internet connection and have to install subsequent updates anyway, it makes sense to ship it with necessary software and allow them to update it afterward. Do you want to pay for some employee having installed update packs eight times while the computer you just bought was sitting around, or do you want to run "sudo apt upgrade" for an hour at most when you have it set up?

Re: Soldered

"That said, memory is just the one single item that post-sale, can significantly extend the lifetime of a laptop."

I disagree. I would put it third, and a rather distant third. First is the battery since heavy use can degrade it to a desktop and a fresh battery can make it a useful mobile device again. A very close second is an SSD, since those parts fail somewhat frequently and people fill them up. I have had very few RAM failures (one, and it wasn't on a computer I owned anyway). While that might happen and you might want more eventually, I still put that below the others in the value of repairing it. That said, I'd also like manufacturers to make it removable, as I strive for easy repairability for anything I'm going to use for a long time.

Re: installed on every machine

That's not what they said. Not that I agree with what they said, but they meant something else. The people who are technically aware enough to care about systemd know enough to determine that their distro didn't install and can reinstall or reimage from the backup that you always take before you install another OS with the possibility that the installer tramples your bootloader. To the extent that there are nontechnical Linux users who install it on their own, they're not the people who have passionate views on an internal component and are quite likely to be using something that has systemd since it's used in all the largest distros aimed at desktop use.

Hardware manufacturers will not support any variant of Linux with any components you might want. It might be nice if they did, but it's never going to happen. Certifying it as compatible with Linux might mean that support will be available for the variant they said, but not necessarily every other variant that exists.