One of the things which really annoys me is the idea that it's every acceptable to blindly "curl -fsSL" bullshit .sh scripts.
Even large companies have adopted this crap and you don't know whether there's any digital signing going on or whether they're downright stealing anything you have of value.
It's not difficult to generate a rpm, deb, tgz and relevant detatched .asc PGP signature or if you hate PGP use openssh signatures or something.
How would providing a signed .deb help? You're still getting the attacker's public key, they can sign whatever they want.
Trusting distro maintainers to curate software in their repos can help, if you only ever install from the curated repos. If there's some software not in the repo which you need, then you can't rely on that trust. "Stable" distros like Debian are less likely to have all the necessary software in their repos, and the difficulty of getting software into a curated repo itself creates legitimate software that doesn't get into repos. That means "is this software in my distro's repository" can give a good signal that some software is safe, but can't give much signal that the software is unsafe.
Agreed. I was using mise to install Claude (via it's npm package) and keep it updated, and then they nagged me to switch to the 'curl | bash' method. Now I get to keep it updated manually, plus they helped train all my peers to continue just executing random scripts right off the Internet
Oh yes. Ok, that's probably on bash, but you look at the script and it's like 200 lines of code. Then you read the alternate install instructions and it goes like "download binary, make executable, add to $PATH, run" - ???
No its because the emails were not written by Bill. They were written by Epstein to himself and were drafts that were never sent see above https://news.ycombinator.com/item?id=46867505
Not everyone mentioned in the Epstein documents is associated with kid diddling.
Also the thing about "surreptitiously giving melinda antibiotics" weren't actually written by Bill and he has since denied it.
> It’s unclear who the Boris referenced in the emails is, or if the messages were ever sent to anyone. Only Epstein is listed in the to and from fields.
So the emails were some emails in Epstein's draft folder he never sent to anyone. This is a dude who peddled in dirt and leverage against anyone and anything, probably how he got so wealthy and why he had his island parties in the first place. There is a reason why in the Kevin Rudd related mentions he is described as a "odious character in the extreme" basically stay clear from him.
Oh yeah I didn't know that one. I do know Logitech has some ultra-thin ones too though. Very good keyboards too. They'd do nice in a laptop as well.
I'd very gladly sacrifice thinness for a decent keyboard. The Thinkpads had an OK compromise for a while but since the Thinkpad T14s gen2 or so they have been horrible as well. My old T490s was still serviceable.
One space that I don't think I've seen explored is building a laptop around a tiny, ultra-low-power passively cooled SoC board that can easily fit beside the keyboard instead of under it in a 12"-16" chassis and saves space that'd otherwise need to be dedicated to cooling. That'd buy a substantial amount of Z-budget for a quality keyboard without blowing up chassis thickness.
Naturally this laptop wouldn't be suited for some types of work due to lack of horsepower, but there's always tradeoffs somewhere.
We're kinda there already. Most recent laptops I've seen have a tiny motherboard not even taking up the whole width of the device. Under the keyboard there's usually the battery.
Don't forget a significant part of the weight has to be towards the front edge so you can tilt the screen back without flipping the whole laptop. Some of my cheaper atom based laptops (with tiny motherboard and batteries) even have a metal bar in there for that purpose.
Right, but my idea was to do something like shove the mainboard up into the bezel above the keyboard and battery into the palm rest, with nothing sitting under the keyboard except maybe ribbon cables. That’d get you a laptop with a thickness of under an inch that still has a keyboard that’s not compromised and keeps weight shifted to the front. It’d simplify repairs to some degree too since there’d be very little stacking.
Framework has stated that it asked AMD if there were any way to make the RAM on Ryzen AI Max APUs (like used in the Framework Desktop) socketed, and AMD said no due to the stability hit that’d entail — the physical distance from the CPU that’d be required with RAM sockets reduces signal integrity too much for it to function.
Which is weird. The entire point of [LP]CAMM[2] is to be able to make that work.
The Framework desktop clocks the memory at 8000MHz. That's well within the limits of the interface. Something is flawed or omitted in those CPUs if they can't handle it.
reply