If you use nixos, you basically have to know/learn/use day-to-day the nix language.

nixpkgs are written using nix the language, using concepts mostly familiar from just using nixos.

Basically everyone using nixos is capable of contributing packages.

Ah, sorry. https://repology.org/repositories/graphs

Just gonna leave this here

Did they still not release the actual torrents though?

And why would they implement it in a somewhat private manner if it could be implemented in a privacy-infringing manner?

I honestly don’t think most democratic governments have an interest in making this privacy-infringing. Lobbyists/companies on the other hand… But all the more reason to write legislation that ensures age verification must be handled like this.

That already tells the government that I’m accessing porn because why else would I need to confirm I’m an adult online?

Cinema rickets for FSK18 movie? Ordering alcohol? Gambling? Renting a car?

Basically anything you’re only allowed to do as an adult.

But that’s kind of why I mentioned, it’s just one rough draft for such a protocol.

It should be Dot Dot! But it’s Dot Dot Dot! - sanest Bitchard moment

It’s mostly just that I don’t want the government to know precisely which websites I visit. Nor do I want the the porn sites to know exactly who I am.

I understand, I want that too. It’s easily possible though (just one example for a scheme):

• you visit porn site
• porn site sends your browser a random nonce
• you/browser tell government service: sign this if I’m >18
• government signs the nonce + a timstamp to prove freshness
• your browser forwards the result to the porn site
• porn site can verify signature per standard public certificate chains
• now porn site has proof that you are >18, but knows nothing else about you; and government only knows that you wanted proof that you are an adult, but not for what site or purpose you wanted to prove that

Alternatively, if we go the “device has an age bracket field browsers access” route, it’s even simpler, and just as if not more privacy preserving.

In that case: sorry to blow up on you. I have seen to many comments on here claiming these things while being 100% serious. I just saw your comment and incidentally had time to write the above for once, so, here we are.

I agree that there’s no way to completely cut teens off from porn. Your torrent example is perfectly demonstrating this.

But I also do not understand the current outrage at anything trying to improve the situation, even when it’s not some stupid “scan your face” scheme.

I’d also like to think so. In this case though, this was clearly not what was intended, and also involved a lot of porn.

So let me get this straight:

When I was 13, I managed to figure out the router password, disabled child protection for myself, then watched porn on my Android 2.3 phone that I had managed to put a custom ROM on because I liked the way it looked and had no idea what a “launcher” was yet.

This is not a hypothetical btw.

My parents were smart enough to enable appropriate blocking and secured access to those settings. I’m not sure something on-device was available at the time, but I included the bit about the custom rom to demonstrate that, even though I didn’t know WTF I was doing, I was more than capable of fucking around with the tech to get it to do what I wanted.

So were my parents in breach of their duties on child protection?

I don’t think they were. They actually did educate themselves (visiting a course / parent meetup to discuss and learn how to protect me from the Internet), and implemented everything they learned.

I was just a little shit and found a way around this.

And this is NOT an edgecase. Because guess what. It takes one kid in the friend group to figure out a way to circumvent parental controls, and then EVERYONE knows how to do it.

It simply does not fucking matter how well intentioned, knowledgeable, and present the parents are (mine were all of that).

Going “this would not be a problem if parents parented” is the LAZIEST fucking excuse, and I’m sick and tired of reading about it on here.

(Because I probably have to make it clear: I’m not advocating for photo/passport scanning, third party age verification,… and all that bullshit. What I think would be a FANTASTIC idea would be privacy-preserving age verification. There are two good ways to do this: 1) on a login attempt, prove that you are of age by presenting a fresh, signed token from a government service proving that you are over 18, and nothing else; site does not get any info, government does not know what you were trying to access; 2) a device-level age field. Proof here comes from the device itself, and can be 100% privacy preserving; just a “yep, is of age”. In this scenario… GUESS WHAT, PARENTS GET ENABLED TO PARENT “PROPERLY” BY PROVIDING THEM WITH A GOOD, SIMPLE, PRIVACY-PRESERVING TECHNICAL SOLUTION.)

Federated ForgeJo can’t come soon enough.

1. increasing work hours is a one-time “boost”. It gives a numbers bump once. It’s not continued growth.
2. working LESS has been shown time and time again to actually make workers more productive
3. working more will mean even fewer children, a problem we desperately need to address and which will harm the economy even more in the long term
4. our social contract is broken. Fixing the economy and the country can’t be done by extracting more work from the working class. The decades-long profiteers from privatization and giga-profits need their stolen wealth ripped from them. I can not understate this point. Literally all our economical and most of our societal problems could be fixed relatively easily by spending money: repair infrastructure; properly fund and repair the Bahn; pay teachers enough to make the job attractive, fix up schools, make proper education available to everyone; pay higher wages, so parents can choose to only have one parent working, but also provide free Kitas; and so on. I even would go as far as to say that materially and directly improving people’s lives like this would deal a blow to the rise of right wing politics and faschism, since a lot of those voters are simply frustrated with their misery and powerlessness (not all, obv…). A supposedly center-left party going “höh–höh, suck it, work more” does the opposite of this. And to get back to this bullet point: the money for ALL of that and more IS THERE. Just… Unjustly held by the few.

Now tell me again, why is it on me to spend additional years of my life toiling away to “fix” the economy when it’s ineffectual, counterproductive down the line, and a much easier, more just solution exists?

1. increasing work hours is a one-time “boost”. It gives a numbers bump once. It’s not continued growth.
2. working LESS has been shown time and time again to actually make workers more productive
3. working more will mean even fewer children, a problem we desperately need to address and which will harm the economy even more in the long term
4. our social contract is broken. Fixing the economy and the country can’t be done by extracting more work from the working class. The decades-long profiteers from privatization and giga-profits need their stolen wealth ripped from them. I can not understate this point. Literally all our economical and most of our societal problems could be fixed relatively easily by spending money: repair infrastructure; properly fund and repair the Bahn; pay teachers enough to make the job attractive, fix up schools, make proper education available to everyone; pay higher wages, so parents can choose to only have one parent working, but also provide free Kitas; and so on. I even would go as far as to say that materially and directly improving people’s lives like this would deal a blow to the rise of right wing politics and faschism, since a lot of those voters are simply frustrated with their misery and powerlessness (not all, obv…). A supposedly center-left party going “höh–höh, suck it, work more” does the opposite of this. And to get back to this bullet point: the money for ALL of that and more IS THERE. Just… Unjustly held by the few.

Now tell me again, why is it on me to spend additional years of my life toiling away to “fix” the economy when it’s ineffectual, counterproductive down the line, and a much easier, more just solution exists?

Eh, idc

IMHO, this time round, only without special treatment and only if adopting the Euro.

Huh - you’re right. I went back to Signal’s X3DH spec because I was sure I was right, but it seems I misremembered how the “prekey bundles” work: Users publish these to the server, allowing (in my original assumption) for the server to just swap them out for a server/attacker-controlled key bundle for each Alice and Bob.

However, when Alice wants to send Bob an initial message and she gets a forged prekey bundle, Bob will simply not be able to derive the same key and communication will fail, because Bob knows what his SPK private key is, while the server only knows the public key.

A compromised server would allow the server to man-in-the-middle all new connections (as in, if Alice and Bob have never talked to each other before, the Server/Eva can MITM the x3dh key exchange and all subsequent communication). That’s why verifying your contact’s signatures out-of-band is so important.

(And if you did verify signatures in this case, then the issue would immediately be apparent, yes.)

Edit: I was wrong. See below.

Is this some sort of public tracker issue I’m too private trackers and Usenet only to understand?

I mean… Isn’t there though? You do a one time investment, and then you earn money for 20 years with negligible operating costs.

Shouldn’t every capitalist get a priapism from this idea?

Funny, I’ve also already read that 😄 Good blog and article.