“We have investigated ourselves and found no problem.”

This is an increasing problem and I’m not sure how the open source community is going to deal with it. It’s been a big problem with NPM packages and also Python libraries over the past five years. There’s a bunch of malicious typo-squatting stuff in many package repositories (say you want libcurl but you type libcrul, congratulations it’s probably there and it’ll probably install libcurl for you and bring a fun friend along).

Now with AI slop code getting submitted, it’s not really possible to check every new package upload. And who’s going to volunteer for that work?

Linux is now perfectly valid for a gaming pc

And all it took was a corporation throwing millions of dollars and thousands of developer hours at it.

This is a great point. Do the cameras have microphones? Is it a two-party/all-party consent state?

Now you need to get consent from every person who might end up being recorded.

Might also be worth pointing out in an HOA meeting that if this guy buys and configures the cameras himself then he has access to watch everybody. How much does the rest of the community trust this guy to not be creeping on everyone else?

IP cameras here that have local access only

This is the right way.

No proprietary SaaS portals, no cloud uploads, no apps, no external network links.

Hopefully the local connections are encrypted and the devices on the network are segmented into VLANs, otherwise anyone on the local network could just watch the video stream.

Roblox exploits child labor for profit:

Investigation: How Roblox Is Exploiting Young Game Developers

Roblox Pressured Us to Delete Our Video. So We Dug Deeper.

These “user-friendly” network cameras are frequently bought and set up by people who have no idea what they’re doing, which leads to thousands of them being accessible to anyone on the Internet:

Bitsight Identifies Thousands of Security Cameras Openly Accessible on the Internet

Wyze cameras let some owners see into a stranger’s home — again

Security startup Verkada hack exposes 150,000 security cameras in Tesla factories, jails, and more

Somebody’s Watching: Hackers Breach Ring Home Security Cameras

Even the companies that make and distribute these cameras don’t secure them properly.

In some of these cases getting access to the camera barely even qualifies as hacking. If you know the web address of the camera you can just type it into your web browser and get the live video feed because it’s just being streamed to the public Internet, no authentication or encryption. That means someone on the other side of the planet or someone in the house next door can just start watching what’s going on in your house.

If the HOA insists on installing cameras, you should insist that they hire a professional to install and configure them correctly and maintain them long-term to prevent security breaches. Someone has to keep the firmware/software up to date when the manufacturer releases security patches and bug fixes, not just for the cameras but also for the network they’re connected to. This means you don’t just need to pay for one-time installation, you need to hire an employee long-term.

I would also ask the pushy neighbor if he was specifically planning on buying Wyze cameras for this. They’ve had multiple security problems in recent years.

A halfway intelligent thief could just use the camera to see where things worth stealing are kept and what time of day is best for breaking in unnoticed. If this is not done properly it will make the security worse, not better.

Congressional maps have always been redrawn by the party in power to ensure that they remain in power. I would expect Democrats to be doing the same thing if we were talking about California.

Claims made without evidence can be dismissed without evidence.

Uh oh, did Bezos forget to invite Trump to the wedding?

Actual Budget is an open-source envelope-style budgeting tool similar to YNAB. It has a self-hostable syncing service so that you can manage your budget across multiple devices.

The reason you might want to do this is that it’s probably easier to do full account review sitting at your computer, but you might want to track expenses/receipts on your smartphone while you’re away from home.

Out of the corner of your eye, you spot him…

When people you have maligned and persecuted show you compassion and give you aid, that should be humiliating and humbling.

Unfortunately it probably won’t have that effect on the people who need it.

There is no paradox.

Tolerance is a social contract.

If you abide by the terms of the contract (e.g. tolerance) then the contract applies to you and you are protected by it.

If you do not abide by the terms of the contract then it is broken, and you are not protected by the contract.

Arch often seems to ignore the fundamental rule:

don’t break userspace

Linus is in the right. Arch developers are frequently in the wrong.

abandon ship

I’ve had success printing TPU onto the uncoated steel side of a print bed. Flip it over and clean it, gently sand it if it’s too smooth for the first layer to grip.

You wouldn’t know he was a gymnastics expert by looking at him.

I totally agree on the pacing. The Red Strings Club is a masterclass of storytelling in a video game format.

I think it’s hard to describe as a game to gamers… the actual gameplay is pretty vague, the various minigame activities are almost inconsequential, but taken as a whole it’s a perfect experience.

I really enjoyed both Far games. I never felt like any of the puzzles were large enough to get tedious. When I finished Lone Sails I just wished there had been a longer section of driving the ship… it kind of felt like you never got to really go before there was some interruption that you had to stop and get out for.