I’ve been out of the loop on games for a while but ReactOS may be worth a look.
The 1st ½ of your comment sounds accurate. But...
And also in Foss there are highly opinionated software where the devs completely ignore users, ban them from GitHub when they post issues,
Right, but to be clear non-free s/w is worse - you can’t even reach the devs, generally, and there is no public bug tracker. FOSS is an improvement in this regard because at least there is a reasonable nuclear option (forking). The nuclear option for non-free software is writing it yourself from scratch.
That all sounds accurate enough to me.. but thought I should comment on this:
However - in larger enterprises there’s so much more, you get the whole SDL maturity thing going - money is invested into raising the quality of the whole development lifecycle and you get things like code reviews, architects, product planning, external security testing etc. Things that cost time, money and resources.
It should be mentioned that many see testing as a cost, but in fact testing is a cost savings. In most situations, you only spend some money on testing in order to dodge a bigger cost: customers getting burnt in a costly way that backfires on the supplier. Apart from safety-critical products, this is the only business justification to test. Yet when budgets get tightened, one of the first cuts many companies make is testing -- which is foolish assuming they are doing testing right (in a way that saves money by catching bugs early).
Since the common/general case with FOSS projects is there is no income that’s attached to a quality expectation (thus testing generates no cost savings) - the users are part of the QA process as free labor, in effect :)
FOSS quality vs. non-free s/w quality
There is a common theme pushed by fanatics of capitalism that never dies: that a profit-driven commercial project ensures higher quality products than products under non-profit projects. Some hard-right people I know never miss the chance to use the phrase “good enough for government work” to convey this idea.
I’m not looking to preach to the choir here, but rather to establish a thread of scenarios that correspond to quality for the purpose of countering inaccurate narratives. This is the thread to share your stories.
In my day job I’m paid to write code. Then I go home write code I was not paid for. My best work is done without pay.
Commercial software development
When I have to satisfy an employer, they don’t want quality code. They want fast code. They want band-aid fixes. The corporate structure is too myopic to optimize for quality.
Anti-gold-plating:
I was once back-roomed by a manager and lectured for “gold plating”. That means I was producing code that was higher quality than what management perceives as economically optimal.
Bug fixes hindered:
I was caught fixing some bugs conveniently as I spotted them when I happened to have a piece of code checked out in Clearcase. I was told I was “cheating the company out of profits” because they prefer if the bugs each go through a documentation procedure so the customer can ultimately be made to pay separately for the bug fix. Nevermind the fact that my time was already charged anyway (but they can get more money if there’s a bigger paper trail involving more staff). This contrasts with the “you get what you pay for” narrative since money is diverted to busy work (IOW: working hard, not smart).
Bugs added for “consistent quality”:
One employer was so insistent on “consistent quality” that when one module was higher quality than another, they insisted on lowering the quality of the better module because improving the style or design pattern of the lower quality piece would be “gold plating”. This meant injecting bugs to achieve consistency. The bugs were non-serious varieties; more along the lines of needless complexity, reduced performance, coding standard non-compliances, etc, but nonetheless something that could potentially be charged to the customer to fix.
Syntactic dumbing-down:
When making full use of the language constructs (as intended by the language designers), I am often forced by an employer to use a more basic subset of constructs. Employers are concerned that junior engineers or early senior engineers who might have to maintain my code will encounter language constructs that are less common and it will slow them down to have to look up the syntax they encounter. Managers assume that future devs will not fully know the language they are working in. IMO employers under-estimate the value of developers learning on the job. So I am often forced avoid using the more advanced constructs to accommodate some subset of perceived lowest common denominator. E.g. if I were to use an array in bash, an employer might object because some bash maintainers may not be familiar with an array.
Non-commercial software development
Free software developers have zero schedule pressure. They are not forced to haphazardly rush some sloppy work into an integration in order to meet a deadline that was promised to a customer by a manager who was pressured to give an overly optimistic timeline due to a competitive bidding process. #FOSS devs are free to gold-plate all they want. And because it’s a labor of love and not labor for a paycheck, FOSS devs naturally take more pride in their work.
I’m often not proud of the commercial software I was forced to write by a corporation fixated on the bottom line. When I’m consistently pressured to write poor quality code for a profit-driven project, I hit a breaking point and leave the company. I’ve left 3 employers for this reason.
Commercial software from a user PoV
Whenever I encounter a bug in commercial software there is almost never a publicly accessible bug tracker and it’s rare that the vendor has the slightest interest in passing along my bug report to the devs. The devs are unreachable by design (cost!). I’m just one user so my UX is unimportant. Obviously when I cannot even communicate a bug to a commercial vendor, I am wholly at the mercy of their testers eventually rediscovering the same bug I found, which is unlikely in complex circumstances.
Non-commercial software from a user PoV
Almost every FOSS app has a bug tracker, forum, or IRC channel where bugs can be reported and treated. I once wrote a feature request whereby the unpaid FOSS developer implemented my feature request and sent me a patch the same day I reported it. It was the best service I ever encountered and certainly impossible in the COTS software world for anyone who is not a multi-millionaire.
Security BUG: abstracts that summarize external articles are broken if the hosting site blocks the reader (? unconfirmed) -- should be server-side functionality
When I visit this post:
https://jlai.lu/post/2250911
the embedded short abstract intro to the article is “403 Blocked www.lecho.be” When I try visiting the link directly I get “403 bot detection”. This suggests that everyone who opens that thread independently visits that webpage by way of some javascript that’s not under the user’s control. If 1000 people open that thread, then 1000 separate fetches are made. That’s a poor design. The server could do that job just once and the results would be more reliable. As opposed to everyone getting different results.
This is also a #privacy #security bug. Someone who opens a thread does not necessarily intend to fetch the linked article. Non-tor users are under surveillance in some countries (e.g. the US, where Trump enacted law s.t. ISPs can collect data on users without consent). So they should have control over what sites they visit. Merely opening a thread is an abuse because it makes users actions instantly trackable. IOW, users share information with their ISP without their knowledge or control.
Note that the example thread shows the full text of the article because the author was diligent about copying it. But that’s not the general case.
#bug #lemmyBug
Yeah this article caught me by surprise. Natural gas is naturally odorless so that probably works against awareness.
I tend to be lazy about turning on the loud fans which downgrades the ambiance. But I need to change something because grease cakes up on everything near the oven and on the cabinets. My range hood is also the ventless style, which must be totally useless against the benzine byproduct.
I will certainly put more thought into kitchen design in the future. The gas appliances should probably be in the corner of the room so there are fewer directions to control, and the hood should probably be big, industrial, and vented outside. It’s a shame because I might prefer the gas stove to be in an island layout or at least centrally located.
It depends on what you’re baking. You wouldn’t want your cake to have a crispy hard crust on the outside, but you would want that with bread and pizza.
That’s interesting but it seems like an incomplete answer. I’ve read that it’s very common for people to install a range hood that’s too small. If it’s true that range hoods are often under-sized, then it naturally follows that they would often be ineffective. So I would like to know the answer in terms of a high-end well-designed & /big/ range hood. I would also expect a low hood to be more effective than one installed high above the stove.
Many coils pulse full heat to simulate different heat levels. Gas gives you very precise control over exact heat levels and it is instantly responsive to change.
You’ve got the precision factor backwards. Gas is a clear loser on that.
When you have knob levels 0—9, if you set the knob to 3 on electric you get exactly ½ the heat energy that you get from level 6. It’s perfectly linear. This is not true in the slightest with gas. A gas flame is non-linear as you go from 0 to 9. All you can do is eye-ball the flame and guess. Even when you have a flame size in mind, it’s not reproduceable because you’re still eye-balling it every time. You can’t trust the levels on a gas knob either because they’re so non-linear that you can get a big flame difference in certain points along the scale.
Gas also has less precision of control because of the reduced range at both ends. The lowest possible gas setting is still too hot for some tasks. So the best you can do is manually mimic the pulsing of electric by turning the burner off and reigniting periodically. The highest temp on gas is also less than the highest temp electric can achieve.
The only “precision” task that gas wins at is at the zero (off) level, and speed, AFAICT, which is related to precision. Both of those factors can be discarded for the most part when comparing induction because it adjusts temp demand fast enough.
indeed some houses have gas-fired wall heaters which have shitty ventilation, if any. In which case the air would of course be moist.
It’s also worth noting that moist air feels warmer and is not prone to any evaporative cooling effects. Some people will vent their vented dryers into the house to boost the humidity in order to save on heating costs.
Can anyone just pick up and move to the US? Or the EU?
Are you not distinguishing wealthy developed countries from developing countries? This may sound anecdotal but I believe I’ve detected a pattern of people from privileged countries having the copious red carpets you mention, such as EU administrations & border police not hassling Americans who overstay their visa. Even within Europe eastern block Europeans face more red tape than westerners. Some passports yield many red carpets & some none.
You don’t think you’d be considered a migrant if you wanted to move to Cuba, with all the restrictions that would entail?
It’s not what you think. The restrictions in that movement actually come from the US. Cuba welcomes Americans to the point that they will even hold back on stamping a US passport on request. Considering Cuba actually has an emigration crisis (with an “e”), it’d be ironic for immigration into Cuba to be difficult.
Great find! Glad to see there are some onion hosts as well.
Any idea how to adapt the monero.stackexchange link in the sidebar? The code.whatever.social page cannot handle that link apparently because it does not lead to a specific thread.
GDPR gives people a fair amount of protection and it is enforced.
Not in my experience. I have filed complaints of ~20+ GDPR violations under article 77 going years back. Not a single one of them enforced to date. These cases just sit idle for years. The problem is the GDPR gives no recourse when DPAs fail to honor article 77 obligations. It’s toothless.
That shows a low count of cherry-picked enforcement actions. If you had a way to get a count of unenforced reports it would likely be an embarrassing comparison.
I cannot imagine a hairless RMS. He should have insured his beard and hair, just like Tom Jones’ insured his chest hair for $6.8 million.
i’m not the best person to ask since I’m not maintaining and domains myself right now. I thought porkbun.com looked like a good choice at one point. They announced that they were going to move to cloudflare (just for the management portal), which was quite off-putting nonetheless, but it looks like they did not follow through with that.
EDIT-- I recently heard they are using CF for DNS and some people are avoiding #Porkbun for that reason.
Some sites use CF DNS just to have the ability to spontaneously switch on the proxy at will. They tend to keep the proxy turned off but then when traffic peaks a bandwidth detection mechanism switches on CF proxying. The problem with that is users don’t know from one click to the next whether their traffic will be intercepted. It can happen at any moment. So the deCloudflare project treats CF DNS cases no different than always-proxying sites.
So if you have no intention of using CF’s proxy, using a non-CF service would make more sense so your domains don’t get treated as CF. CF is not a good company to support anyway.
A list of Cloudflare-compromised domains is being tracked here. You can also use this query tool to lookup websites:
There is a browser plugin called BMCA which will detect when you click on a link to a Cloudflare service and redirect you to the archive.org mirror of that site so you don’t connect to CF. There’s another plugin that puts a strikethrough on CF URLs so you know before you click if something is CF’d. Those tools along with others are published here:
Search engines have become extremely polluted with Cloudflare sites in the results. There is a search service called Ombrelo that filters out CF sites from the results:
http://ombrelo.im5wixghmfmt7gf7wb4xrgdm6byx2gj26zn47da6nwo7xvybgxnqryid.onion/
W.r.t. a list of CF’s dangers, I don’t know of a paper that covers that as a thesis. A lot of the problems with Cloudflare are documented here and in other documents in that same repo.
This page covers a lot of Cloudflare issues:
https://git.kescher.at/dCF/deCloudflare/src/branch/master/subfiles/rapsheet.cloudflare.md
The 2nd link on that page goes to:
http://cryto.net/~joepie91/blog/2016/07/14/cloudflare-we-have-a-problem/
which details the traffic exposure to #Cloudflare as a consequence of Cloudflare holding the keys & terminating the tunnel (thus performing the decryption). Indeed the padlock is misleading as most users believe the tunnel goes all the way to the source website.
edit: BTW, I see that you are on #lemmyWorld. You might be interested in knowing that that’s also a Cloudflare site. Cloudflare sees your login credentials, your IP address, and everything you do with your lemmy account. As far as gatekeeping goes, Lemmy World has been manually configured to be less exclusive than default-configured sites like stackexchange. E.g. I am blocked from stackexchange but not from lemmy world.
Please caution people about stackexchange
#Stackexchange just became a Cloudflare site, which means it’s now an exclusive resource and also everyone’s data including usernames & passwords are exposed to Cloudflare.
This is antithetical to the pro-privacy philosophies of the #Monero community. Please consider removing it from the sidebar or caution people about CF. Thanks.