Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

qwerty

@qwerty@discuss.tchncs.de

This profile is from a federated server and may be incomplete. Browse more on the original instance.

qwerty ,

Have a look at ardrive and arweave permaweb.

qwerty ,

Come on bruh, if you're gonna hate on Elon at least make your insults accurate/well-founded. Dude started and runs multiple massive companies, I think he can handle linux mint.

qwerty ,

He cofounded zip2, x.com (not twitter), openAI, neuralink and founded spacex and boring company, at least according to Wikipedia.

qwerty ,

Pedos are just an excuse, it's about everyone else.

qwerty ,

This is slightly off-topic but I was thinking about it and all of thoes isues can be solved by utilizing blockchain. Imagine a world where instead of CAs, decentralized domain (unstoppable domains, ENS etc.) owners publish their pub keys to the blockchain, the client can than query multiple nodes or store the chainstate locally. When establishing a connection client sends a secret handshake message + clients' pub key encrypted with domains' pub key. To complete the handshake server responds with the same secret message encrypted with clients' pub key.

qwerty ,

Ownership of the domain is verifiable on the blockchain, if the same wallet that owns the domain (nft) also publishes the pub key (owns the pub key nft or key data is embedded in the domain name nft) you can verify that the key is valid.

IMO blockchain is more trustworthy than any single CA because you aren't trusting a single entity, but a decentralized network of nodes. Assuming that most nodes are honest you can query 100 independent nodes for the same data, if 99 say the same thing you can be fairly confident that the data is valid. You can also run your own node and not have to trust anyone.

To protect against MITM of your connection redirecting all traffic to their malicious node, some well known and trusted nodes would be hardcoded in the browser/OS software along with their public signing key to verify the signed data they send you, and genesis block data in case you want to run a node yourself. Signing keys of nodes would also be published to the blockchain. Think a unified, immutable, cryptographically verifiable, distributed database of public key - domain name pairs, which is what blockchain basically is. Encrypting the connection is a good idea too, extra privacy is always welcome.

The biggest advantage here is that every single pub key (certificate) is stored by every single node (CA), so if one node goes rogue or is compromised and starts serving false data, it will be immediately discovered by the client by comparing it's data to the data from other nodes, and can be immediately and verifiably reported to the network, even in the case of a targeted attack, because all data recived from the nodes is signed.

No solution is perfect and this one is not an exception, if your hardware or your os/browser is compromised there is nothing short of manually checking certificate data or using an external device to verify it, that can be done, but that's true for most IT systems, including the current TLS certification and authority based system.

Blockchain is a well tested technology that has proven itself to work by being a core part of a trillion dollar industry and was specifically designed to eliminate the need for trusting a 3rd party. It seems like a natural solution to the biggest problem with CAs - trusting a 3rd party. It's honestly sad that so many people dismiss it or are downright against it coz "crypto", even when no crypto currency is invloved. I guess they spent so much time hating it they can't even admit it might be useful to them after all.

Thanks for asking for a follow-up instead of just downvoting.

qwerty ,

Ownership of the domain is verifiable on the blockchain, if the same wallet that owns the domain (nft) also publishes the pub key (owns the pub key nft or key data is embedded in the domain name nft) you can verify that the key is valid.

IMO blockchain is more trustworthy than any single CA because you aren't trusting a single entity, but a decentralized network of nodes. Assuming that most nodes are honest you can query 100 independent nodes for the same data, if 99 say the same thing you can be fairly confident that the data is valid. You can also run your own node and not have to trust anyone.

To protect against MITM of your connection redirecting all traffic to their malicious node, some well known and trusted nodes would be hardcoded in the browser/OS software along with their public signing key to verify the signed data they send you, and genesis block data in case you want to run a node yourself. Signing keys of nodes would also be published to the blockchain. Think a unified, immutable, cryptographically verifiable, distributed database of public key - domain name pairs, which is what blockchain basically is. Encrypting the connection is a good idea too, extra privacy is always welcome.

The biggest advantage here is that every single pub key (certificate) is stored by every single node (CA), so if one node goes rogue or is compromised and starts serving false data, it will be immediately discovered by the client by comparing it's data to the data from other nodes, and can be immediately and verifiably reported to the network, even in the case of a targeted attack, because all data recived from the nodes is signed.

No solution is perfect and this one is not an exception, if your hardware or your os/browser is compromised there is nothing short of manually checking certificate data or using an external device to verify it, that can be done, but that's true for most IT systems, including the current TLS certification and authority based system.

Blockchain is a well tested technology that has proven itself to work by being a core part of a trillion dollar industry and was specifically designed to eliminate the need for trusting a 3rd party. It seems like a natural solution to the biggest problem with CAs - trusting a 3rd party. It's honestly sad that so many people dismiss it or are downright against it coz "crypto", even when no crypto currency is invloved. I guess they spent so much time hating it they can't even admit it might be useful to them after all.

Thanks for asking for a follow-up instead of just downvoting.

qwerty ,

God forbid an adult of sound mind is allowed to decide what to do with his own body.

qwerty ,

People on here are straight up brain washed, even more than on reddit... Good on you for not having kids though, you're making society a favor, just for different reason than you think.

qwerty ,

Code is the law of the blockchain, his transaction wasn't reverted, he got caught irl. It's like saying constitution isn't law because laws of physics don't prevent murder.

qwerty ,

And that never happened with fiat, everyone knows thoes wild west snake oil salesman were using bitcoin.

qwerty ,

Scammers have been doing that with cash, PayPal, gift cards and even regular bank transfers that are supposedly so safe.

Crypto transactions being irreversible are no different than cash or gold transactions, you can't magically revert giving someone cash once you realize they scammed you. Only thing you can do is report it to the police. Crypto works the same way, but for transparent coins like btc, or eth you at least have a proof that a transaction took place unlike cash.

qwerty ,

How is it harder to scam with cash? You come to my store to buy something, you hand me the bill, I take it and don't give you anything in return. Even if you call the police it's my word against yours, how will you prove that I took your money?

Most scams are done irl with FIAT (fake bills, overpriced cooking pots, fake tech support, palm reading, IRS google play cards, nigerian princes, fake e-bay items, fake charge-backs for real e-bay items, uber ride cancels, uncancellable memberships, hidden costs...) at the end of the day you can't protect everyone from everything, especially from their own gullibility. The design of crypto, when used properly, prevents all of the non-gullibility based scam types (chargebacks, cancels, hidden costs, automatic deductions etc.). For some people complete control over their money is a plus and some prefere to have it handled by banks and governments, maybe crypto just wasn't made for the latter.

qwerty ,

I don't have cameras in my store and i doubt you walk around with a gopro strapt to your forehead. Crypto stores develop reputation as well.

On what are you basing the opinion that MUCH larger percentage of the crypto ecosystem is devoted to scams? Legal action is the only recourse you have with cash, the same can be done with crypto. If design of crypto incentives scams then so does the design of cash.

Yes, but gullibility is the #1 problem and again, crypto has no safeguards or recourse.

Neither does cash, gift cards and all of the methods Nigerian princes and certified Microsoft technicians from IRS have been successfully using for years to scam their victims.

The whole point of making the system decentralized is so that a powerful actor can't seize control over it. There are hundreds of chains with different rules and regulations, you can chose the one that fits your needs, and if a powerful actor tries to change it's rules the community can decide that the version of the chain with altered rules isn't one they want to take part in and split off. It has happened before with block size wars that resulted in btc/bch split. Both chains run fine to this day, each with their own rules decided by their own community.

qwerty ,

Settings ads? I had no idea it got THIS bad.

qwerty ,

ENS, unstoppable domains, tor, i2p, ipfs... I think this is actually good for the Internet, it will normalize and popularize private, censorship resistant tech. What doesn't kill you makes you stronger.

qwerty ,

ENS, unstoppable domains, tor, i2p, ipfs... I think this is actually good for the Internet, it will normalize and popularize private, censorship resistant tech. What doesn't kill you makes you stronger.

qwerty ,

So nostr?

qwerty ,

Is there any benefit to it over nostr though? You'd have to link your public key to your account(s) and store a backup of your private key in addition to your regular login/password just to get a more fragmented and less seamless version of nostr. A lot of people already have issues figuring out how fediverse works with multiple instances and all... now they'd have multiple accounts with different credentials to keep track of on top of a meta login/password (pub/priv key). With nostr you only have 1 login/password (pub/priv key) to everything, it's just long and you can't change it. At least I think that's how it works, I don't really use twitter/nostr/mastodon type of sites.

qwerty ,

Situations like this are a good opportunity to increase the rate of tech literacy in a broader population or to promote decentralized solutions, but unfortunately that's a pipe dream.

qwerty ,

What's the difference between a useless cryptographic token and a useless piece of paper if there are people willing to give me things I want for either?

qwerty ,

I use crypto to privately pay for my VPN, phone bill, to donate to foss projects. I sold some digital items online for crypto. I use it because it's faster, more private (if done correctly) and convenient than using a credit card or bank transfer. No one can seize, freeze, or control my crypto. I can donate, pay or get paid on my own terms with no middle man. If visa, mastercard, banks or fintech companies generate value then so does crypto.

qwerty ,

That's just not true. Monero, litecoin, bch... transactions cost less than a penny. No one uses bitcoin for illegal things anymore (it's tracable and forever on the blockchain, people use monero instead) but if they were wouldn't that mean bitcoin is useful for exchanging goods?

I use crypto for a bunch of legitimate things like paying for my VPN, phone bill, donating to foss projects etc.

I use it because it's more private, faster and more convenient for me. I can always have it with me, use it from any place, any time, for anything I want with no hidden fees and no one can seize, freeze, track or control my money. If you think that thoes things are valueable only to criminals you must have lived under some 1st world rock for a while.

qwerty ,

Sms is not encrypted, your service provider can read all your texts.

qwerty ,

What's wrong with brave?

qwerty ,

Most of the article talks about the CEO and the company, the only criticisms of the actual product (the browser) is that it's bloated, which is very subjective because one mans bloat is another mans feature and the affiliate link injection scandal from 4 years ago, which definitely shouldn't have been done but at least it wasn't malicious and now is gone.

To be honest I think people on here dislike brave primarily due to ideological reasons, completely ignoring the fact that 99.9% of people aren't hackermans™ and don't want to install gnu icecat or librewolf with 7 different extensions. For those people it's either chrome/edge or brave, the latter, even if not perfect is a way better option both for them and the internet.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • incremental_games
  • meta
  • All magazines
    •