Rust + Axum + SQLx has been a total game-changer for me in terms of productivity developing web-based Postgres apps. I like the tooling and the libraries are great.
I think this is the most likely scenario. The US government is not necessarily trying to read the messages right now, in real-time. But it wants to read the messages at some point in the future.
> Netscape has seen its browser share go from about 80% to about 20% during this time, all the while it could do nothing to address competitive concerns, because their key software product was disassembled in 1000 pieces on the floor and was in no shape to drive anywhere. That single bad decision, more than anything else, was the nuclear bomb Netscape blew itself up with.
This post from spolsky is always amusing to me because it came 6 months after Microsoft was convicted of antitrust violations to crush Netscape. So it's funny that he claims Netscape killed themselves, when the courts actually said that Microsoft killed Netscape. Obviously Netscape made critical bad decisions, but Microsoft's illegal behavior was what actually killed them.
Netscape made mistakes, but they didn't lose 60% of their market share in just two years because they didn't ship a major update. They lost it because Microsoft bundled a "good enough" browser with their operating system already installed on the computers out of the box.
Well first off I remember Netscape of that time, it was a disaster, and this was the time when most peoples computer browser stuff was handled by their nerdy relative. I had plenty of people I could have put Netscape on their computers but I didn't because it was just such a shitshow.
So I'm not sure about that loss of market share being just due to MS. IE at the time was just better than Netscape. You had to be a masochist to use Netscape. It would crash badly at the silliest little things, and since websites were made with even less professional standards than nowadays those silly little things were quite frequent.
You might have gotten IE preinstalled, but even for devs who went and installed Netscape it just made more sense to use IE, because it was better.
MS preinstalled IE, but Netscape made sure only the truly dedicated would actually download and use it.
Without Netscape's mess-up I can totally see them only losing 30% of their share, and being in a good place to recuperate when MS got slapped down in court.
In a lot of cases, it's the only way that municipalities can submit bids for projects they want. And in the commercial space the bidding process is usually confidential. So it's just basically a requirement of public private partnership.
Of course the municipality could just say that they don't want the project and they won't submit a bid. That's fine too.
Municipalities should not be bidding on corporate benefaction; this is exactly the opposite of how the relationship between the public and private sector should be.
I don't think that was the point being made by GearSkeptic, the video creator. It was a demonstration to the lay person who may not be familiar with what 5W "looked like".
Yeah this is more like a Pascalian Gamble [1]. If you try nothing, then you are assured to die as God wanted. If you try something, then you might live, but then God hates you.
It is like Pascal's Wager but has nothing to do with "what God wanted" or "God hating you"... It's more "if it doesn't work the outcome is the same anyway" (eternal oblivion in Pascal's case, certain death in this case), therefore why not give it a shot in case it does work.
I might be mistaken, but it sounds like these guys showed up at a facility and did the classical "breaking and entering" thing. The onsite (terrified) staff called 911, the police showed up and arrested them. The perps said that they were hired to do this (they were), but nobody told the Sheriffs office or the staff about it.
So yeah, it sucks for these guys' reputations and criminal histories, but... what? The onsite staff didn't know what was going on, the Sheriffs didn't know what was going on.
The county basically said: "We want you to go try to break into this government building. We aren't going to tell the staff or the local police about it. Tell us what you find."
If the sheriff had found out what was going on and then let them go, this wouldn't be news.
If the sheriff had arrested them and found out in the morning what was going on and then let them go, this wouldn't be news.
If the sheriff had arrested them and brought them before a judge who let them go, this wouldn't be news.
What actually happened is the sheriff found out what was going on, decided it was still criminal anyway, arrested them, and then the county charged and prosecuted them. The charges were eventually dismissed. That is why it's news.
Definitely some things could have been done a bit differently. I get that they want to keep staff in the dark, and even beat cops, but it seems reasonable and prudent to have the highest level of local law enforcement brought into the loop in planning red team exercises. The likelihood is high that the team will interface with law enforcement. The escalation path within the enforcement side of the state regulatory machine should be cleared in advance.
I think the takeaway for security teams is that you shouldn't let the customer "authorize" what is otherwise criminal activity warranting a police response without getting some air cover from the enforcement side. Coordinating that is the customer's burden to bear and that cover should be secured before letting them hand-wave away the risks with a "just have the police call me and I'll clear it all up". In hindsight only, when you look at it like that, the security team was not covering their ass appropriately. In a perfect world, you'd assume there's some better planning and communication going on behind the curtain. In the real world, you need more than the flimsy "guarantee" of calling a guy who knows a guy in the middle of the night. At the very least, that get out of jail free card should have had as signatories judiciary representation and enforcement representation (e.g. sheriff).
Did you even read the article or review the story? The police showed up, reviewed and even verified their documents (called the numbers on the form to confirm their authorization) and we're seemingly satisfied all was in order.
Only once the sheriff himself arrived on scene did he order the arrest that caused all the issues. If that didn't happen it wouldn't have been a story other than "security professionals doing their authorized job".
> Another reason for doubt: one of the people listed as a contact on the get-out-of-jail-free letter didn’t answer the deputies’ calls, while another said he didn’t believe the men had permission to conduct physical intrusions.
It's actually kind of amazing that the police first let them go after the official contact on the form said they were not authorized to intrude in the building.
They broke in and set off an alarm, the local cops responded, the pentesters showed their credentials, and there was no issue.
Then the sheriff arrived, was butthurt because he felt left out and wanted to show his authority, and caused these guys 6 years of grief for literally no reason at all.
Sure, but that's different than not telling the local police department. Because they will show up with K9s and guns. And then it becomes a very dangerous situation.
That sounds like a problem with police procedures and accountability. It's weird to blame potential victims for that.
And in this case, notifying the police would have seemingly affected the test. Based on the reaction they did have, I would guess such notification would have resulted in the police doing many more drive-bys of the courthouse and generally being alert.
> "That sounds like a problem with police procedures and accountability"
It would be supremely stupid to not plan and account for these kind of systemic social problems when you're planning out your contract to break into a building. "But they're the ones who suck, I did nothing wrong" won't bring you back from the dead.
Sure, in the pragmatic sense I agree. If I was going to put myself in this type of situation, and the agency authorizing the test did not want to bring the agency that would be responding into the fold, I'd be contemplating things like having an employee or even some state official be physically present at the police station / dispatch when I was actually doing the pentest.
But the commenter I was responding to seemed to be leaning on the territory of what ought to be, in which case it's good to not normalize those societal problems.
> Some regard stories such as that of Oliver, who came to be known as her state’s “Lobster Lady”, as evidence of the growing number of Americans who extend their working days well past the typical retirement age as the cost of living in the US has soared, wages have stagnated and many therefore have been unable to save.
It's unfortunate that this publication decides to go hard on politics no matter what the feel-good story behind the article is. This Ginny lady clearly said that she loved banding lobsters and wanted to do it for as long as she could. It had nothing to do with working into her old age because she needed the money. Obviously that is a real issue, but has nothing to do with this story.
> At least it doesn't try to snipe me into feeling bad, or scared about everything.
That's the guardian for you. They can't write an article without making sure the reader comes away feeling like a piece of shit. This piece should just be a celebration of Ginny's remarkable life, but they'll still make sure that you know that there are kids starving in Africa and elderly people working past retirement because they have no money.
I also love positive.news, and I subscribe to their newsletter. It's great.
> Every month more and more people switch to Linux
We've been hearing this for decades and yet the home Linux userbase is microscopic and somehow even smaller than ever. Unless we're going to count Google's Android and Chrome OS. Those are the only Linux-based distributions that have ever gained market share over desktop Windows.
Somehow I think the stars might be aligning this time though. People are genuinely fed up with Windows and governments around the world are loudly thinking about how to reduce dependence on US tech. And then there is Proton which makes it much easier for Gamers to jump ship. To me it feels like there is more momentum than ever for this.
On the other hand I am also a realist and I don't think that Linux will take over the Desktop, but it will certainly have its biggest growth year ever in 2026.
> On the other hand I am also a realist and I don't think that Linux will take over the Desktop, but it will certainly have its biggest growth year ever in 2026.
I _love_ Linux, but I agree with this as well. I don't think Linux will ever be easy enough that I could recommend it to an elderly neighbor. I hope to be proven wrong, though.
What frustrates me about this particular moment is that at the same time Windows is getting worse, I feel that OS X is _also_ getting worse. This _is_ an opportunity for Apple to put a big dent in Windows market share.
> I don't think Linux will ever be easy enough that I could recommend it to an elderly neighbor.
The only reason I wouldn't do this is because that elderly neighbour wouldn't be able to install Linux and might not have any obvious place to get support from. Where can Grandma go to get support for her Linux laptop, even if she's willing to pay?
However, in a world where they can buy a laptop with Linux preinstalled and receive support from the same shop they bought it from if they do run into problems, then absolutely I would (not that that support is going to be great, but then they're at least no worse off than they were when they need support with Windows or a Mac, and I imagine they'll run into less problems on Linux than on Windows, given their use cases are likely to be very narrow and simple, i.e. web browser, e-mail, maybe simple office stuff).
> What frustrates me about this particular moment is that at the same time Windows is getting worse, I feel that OS X is _also_ getting worse. This _is_ an opportunity for Apple to put a big dent in Windows market share.
Aye, I agree. MacOS has been getting a bigger slice of the pie, but it's hard to ascribe what's the main cause, and to what extent each cause is contributing. We got the M chips being ungodly good (even the M1 is still serviceable, and damn right affordable even at this point), Windows growing worse, but the laptop market is also contracting, with a steady stream of people leaking out, saying 'screw this, I'll just use my phone or tablet. I don't need a PC for anything anymore.'.
All the casuals I know use a Mac for a laptop because they want something simple and functional, and Macs do that job, but they keep doing that job worse and worse. Everybody else casual might have a Windows laptop, but barely ever use it. The rest are gamers and power users, and thus need a proper machine and can't stick to a phone and tablet.
Apple could attract from the groups who would otherwise be done with non-phone/tablet computing, but their offering is growing weaker and weaker.
> Somehow I think the stars might be aligning this time though
> governments around the world are loudly thinking about how to reduce dependence on US tech
I am definitely sympathetic, after all, I worked for a major Linux company for quite a few years, started using Linux RH) in 1994, and even wrote some network related kernel modules.
However, this switch to Linux is not going to happen (apart from where it is already used heavily, from servers to many non-PC systems).
I have been in projects for large companies but also government on and off. Now, I manage the IT of a small (<50 employees) non-IT business with people in several countries.
People who actually comment in these discussions seem to be entirely focused on the OS itself. But that is what matters the least in business. Office is another, and even there most people who don't deal with it at scale are way too focused on some use case where individuals write documents and do some spreadsheeting. It's almost always about a very small setup, or even just a single PC.
However, the Microsoft stack is sooooo much more. ID management. Device management. Uncountable number of little helpers in form of software and scripts that you cannot port to a Linux based stack without significant effort. Entire mail domains are managed by Office 265 - you own the domain and the DNS records, you get licenses for Office365 from MS, you point the DNS records to Microsoft, you are done.
Sure, MS tools and the various admin websites are a mess, duplicating many things, making others hard to find. But nobody in the world would be able to provide soooo much stuff while doing a better job. The truth is, they keep continuously innovating and I can see it, little things just conveniently showing up, like that I now have a Teams button to create an AI script of my conversations, or that if more than one person opens an Office document that is stored in OneDrive we can see each other inside the document, cursor positions, and who has it open.
Nobody in their right mind will switch their entir4e org to Linux unless they have some really good reasons, a lot of resources to spare, and a lot of experience. Most businesses, for whom IT is not the be-all-end-all but just a tool will not switch.
But something can be done.
The EU could, for example, start requiring other stacks for new special cases. They cannot tell the whole economy to switch, not even a fraction of it, but they could start with new government software. Maybe - depends on how it has to fit into the existing mostly Microsoft infrastructure.
They could also require more apps to be web-only. I once wrote some code for some government agency to manage business registrations, and it was web software.
The focus would have to be to start creating strong niches for local business to start making money using other stacks, and to take the long road, slowly replace US based stacks over the next two or three decades. At the same time, enact policies that let local business grow using alternative stacks, providing a safe cache-flow that does not have to compete with US based ones.
The EU also needs some better scaling. The nice thing about the MS stack is that I can use it everywhere, in almost all countries. The alternative cannot be that a business would have to use a different local company in each country.
I read a month ago that EU travel to the US is down - by only ~3%. Just like with any calls for boycott of this and that, the truth is that those commenting are a very tiny fraction. The vast majority of people and businesses are not commenting in these threads (or at all), and their focus is on their own business and domain problems first of all. Switching their IT stack will only done by force, if the US were to do something really drastic that crashes some targeted countries Microsoft- and Cloud-IT.
> However, the Microsoft stack is sooooo much more. ID management. Device management. Uncountable number of little helpers in form of software and scripts that you cannot port to a Linux based stack without significant effort. Entire mail domains are managed by Office 265 - you own the domain and the DNS records, you get licenses for Office365 from MS, you point the DNS records to Microsoft, you are done.
Is there any bit of this that is not web based or does not support Linux nowadays? Office 365 runs on a browser, and even Intune supports some enterprise oriented distributions, like RH, so device management shouldn't be a problem. But even if none of that was true, there is certainly competition in the IT management space. Defaulting to Microsoft just because of a Windows based fleet doesn't sound like a great idea.
> The truth is, they keep continuously innovating and I can see it, little things just conveniently showing up, like that I now have a Teams button to create an AI script of my conversations, or that if more than one person opens an Office document that is stored in OneDrive we can see each other inside the document, cursor positions, and who has it open.
This is stuff other vendors have been offering for ages now.
The browser versions of the Office apps aren't comparable to the native apps, and also don't support whatever native integrations (like VBA add-ins) companies use.
Trading dependency on a company in Redmond, WA, USA, for one in mountain view, CA, USA does nothing for moving away from USA in the dependency chain, but it proves that it's possible. And I know it's possible as there are several billion-dollar companies in Google Workspace I know of personally. And if it's possible for them, it means it's possible for the EU to get there. The only question is will they ever? Let's form a committee to schedule a meeting to look into that question.
"Possible" is everything that does not violate any laws of the universe, that is not a useful criterion!
Oh and thanks for ignoring everything I wrote I guess. Not that I expected anything different, it is always the same in these threads after all. Why bother with arguments, especially those of the person you respond to?
But you see, this "laziness" actually supports my point. Not even you want to do the hard thing and bother with what somebody else thinks when there is a much easier path. But you expect others to care about the things that you care about, without spending much effort even merely understanding their position.
Go and download the archives of Reddit, there are plenty of torrents out there. Filter to a sub like r/gaming. Relative frequency graph of Linux mentions. You'll see a magnitude increase over the last 12 months compared to years before. It's real.
Must admit, not sure if the data torrents are
uptodate now that Reddit anti-scrapes so hard to raise their premium on the exclusive contract to the highest bidder, OpenAI.
Calling 4-5% marketshare microscopic is not fair. I get it if it was still stuck at 1%, but it's growing, and the rate of growth has been increasing too.
Take this with a grain of salt, because numbers from Statcounter are not fully accurate. However, none of those numbers are small. 3.86% of the entire PC market is not something to scoff at.
There's also the people like me that couldn't historically run certain games well directly on Linux, so we have Windows virtual machines with GPU passthrough. Which would read as me being a Windows user in the Steam stats, but a Linux user in other stats.
The state of gaming has improved drastically since I started doing it that way, though, and I'm considering ditching the VM entirely. Multiplayer games seem to be getting the hint about anticheat exclusion on Linux. ARC Raiders, for example, is a competitive game and runs flawlessly directly on Linux.
Probably. But part of it might also be something else entirely. I'm not saying it is, but how's anybody to tell? Statcounter is just not a good way to research Linux market share. Unfortunately, what they lack in statistics, they seem to make up for in SEO... everybody's landing there.
Last time I looked on stat counter it showed 4 and something percent. That's where I pulled the number from. But it seems they updated it to 3.86 now. It's so over for the Linux community.
Statcounter isn't just "not fully accurate", it's a hot dump of analytics garbage, at least for this purpose. Take your time to reflect on these diagrams - what's happening there? What's the 55% "unknown", and what does that tell you about the quality of those stats? (I've commented on this problem before: https://news.ycombinator.com/item?id=46472324 )
Maybe more interesting is that if you switch to looking at just America Linux jumps to 5.25% (unknown 7.4%) (Similar numbers for all of NA), and for Europe it is 4.32% (9.75% unknown).
Again, not huge numbers but also not insignificant. But they are quickly growing and taking share from Microsoft. If we look back at (Dec) 2021 the numbers are 1.8% and 2.2% respectively. Those gains are meaningful.
You can see that while Windows 10 numbers are going down over the past few months, the Windows 11 numbers aren't making up for it. About 2/3 of that gap are going to Linux with the other third going to Mac. So Mac is getting more market at the expense of Windows as well. There are a significant number of disgruntled Windows users leaving over the past year.
Its not ... The problem is that people do not realize that devices like Steam Deck are also considered Linux desktop devices in those numbers. Chrome tends to also inflate those numbers. Yes, they are Linux desktops but not in the way people are comparing Windows to Linux.
The real number is closer to 2.5% somewhere. What is still growth but nowhere the "year of the Linux desktop".
You tend to see a rather vocal minority that makes you feel like there is some major switch but looking here in the comments, people that switched 8 years, 12 year, 20 years ago are people that are part of the old statistics. There are some new converts but not what you expect to see despite Linux now also being more gaming compatible.
It still has minor issues (beyond anti-cheat), that involve people fixing things, less then the past. But its still not the often click and play, works under every resolution, has no graphic issue etc etc. That is the part people often do not tell you, because a lot of people are more thinkers, so a issue pops up, they fix it and forget about it.
Ironically, MacOS just dominates as the real alternative to Windows in so many aspects. If Apple actually got their act together about gaming, it can trigger a actual strong contender to Windows.
>The problem is that people do not realize that devices like Steam Deck are also considered Linux desktop devices in those numbers.
Are people even browsing on Steam Decks? Because everybody in this thread seems to be referring to stats published by a rather obscure web tracking solutions company. "High-traffic sites using Statcounter include khabarban.com, codelist.cc, and download.it"
Steam Deck is a Linux desktop device. It is literally a thin laptop with a build-in screen and joystick running linux. Does my linux system stop being that when I turn on big picture mode in steam? You can run the steam deck as your daily driver hooked up to a keyboard and a monitor.
The Steam Deck is not a Desktop ... That is like saying that every Android smartphone is a desktop. Sure, you can use it as a desktop but 99.99% of the people are using it as a handheld console.
And nice downvotes... Typical in Linux Desktop topics.
I didn't downvote, but it might have to do with the fact that you appear to be just inventing numbers like 2.5%. If Steam Decks are only used for gaming, why would they make up for 1.38% of the Statcounter numbers?
A growth of 4% over 20 years is not an increasing rate. And yes, 4% marketshare is microscopic. macOS has a bigger share but you wouldn't say macOS is massive. Posts like this are cheerleading OS's because everything needs to be a zero sum competition.
As phones replace desktop computers for non-technical users, leaving a concentration of "skilled" users, my suspicion is that the pattern will resemble the quote "Slowly, then all at once."
Have a look at the Steam Hardware [and software] Survey [0] results. Linux has been trending upwards whist Windows has been trending down for a wee while. And the population this looks at is primarily interested in gaming, which means that this is despite a compatibility layer being needed for a large amount of the software used. I imagine in other communities (software, old people) it's trending much faster.
E.g. I recently installed Linux Mint for my grandma so she could use email and an up-to-date web browser on her old laptop that can't run (secure) Windows anymore. The UI differences are marginal for her, and she can do everything she needs to much better than she could before (which was not at all).
I mean, this is literally false? Desktop Linux userbase is growing, it's bigger than it has ever been even without including ChromeOS, and more OEMs are shipping devices with desktop linux than ever before (Valve's suite of devices, multiple laptop vendors including major ones like Lenovo, a few SteamDeck competitors)
More and more desktop apps are just becoming websites. More and more desktop apps are using Electron rather than some native app. Windows is slowly becoming a dumpster fire in terms of usability and issues. Most games these days Just Work on Linux without any tinkering.
While I hardly think that this year will be "the year of the Linux desktop" or whatever, but if these trends keep going, I really foresee Linux market share growing, slowly, each year, until it's not so microscopic anymore.
I mean - steam deck was a pretty significant inflection point quite recently. Making gaming viable on linux via a popular consumer product is a huge deal and starts to kill one of desktop linux's single biggest barriers to adoption.
According to the Steam Hardware Survey (https://store.steampowered.com/hwsurvey/Steam-Hardware-Softw...) only ~3.6% Steam users use Linux and these statistics include the Steam Deck users. SteamOS accounts for ~26% of Linux users, which in turn brings down the count to ~2.6%. For comparision, MacOS is ~2.1% of the market share at the moment. Wake me up when Linux gets to 10%.
> There could be a submission fee that would be fully reimbursed if the submission is actually accepted for publication.
While well-intentioned, I think this is just gate-keeping. There are mountains of research that result in nothing interesting whatsoever (aside from learning about what doesn't work). And all of that is still valuable knowledge!
Sure, but now we can't even assume that such research is submitted in good faith anymore. There just seems to be no perfect solution.
Maybe something like a "hierarchy/DAG? of trusted-peers", where groups like universities certify the relevance and correctness of papers by attaching their name and a global reputation score to it. When it's found that the paper is "undesirable" and doesn't pass a subsequent review, their reputation score deteriorates (with the penalty propagating along the whole review chain), in such a way that:
- the overall review model is distributed, hence scalable (everybody may play the certification game and build a reputation score while doing so)
- trusted/established institutions have an incentive to keep their global reputation score high and either put a very high level of scrutiny to the review, or delegate to very reputable peers
- "bad actors" are immediately punished and universally recognized as such
- "bad groups" (such as departments consistently spamming with low quality research) become clearly identified as such within the greater organisation (the university), which can encourage a mindset of quality above quantity
- "good actors within a bad group" are not penalised either because they could circumvent their "bad group" on the global review market by having reputable institutions (or intermediaries) certify their good work
There are loopholes to consider, like a black market of reputation trading (I'll pay you generously to sacrifice a bit of your reputation to get this bad science published), but even that cannot pay off long-term in an open system where all transactions are visible.
Incidentally, I think this may be a rare case where a blockchain makes some sense?
You have some good ideas there, it's all about incentives and about public reputation.
But it should also fair. I once caught a team at a small Indian branch of a very large three letter US corporation violating the "no double submission" rule of two conferences: they submitted the same paper to two conferences, both naturally landed in my reviewer inbox, for a topic I am one of the experts in.
But all the other employees should not be penalized by the violations of 3 researchers.
This idea looks very similar to journals! Each journal has a reputation, if they publish too much crap, the crap is not cited and the impact factors decrease. Also, they have an informal reputation, because impact index also has problems.
Anyway, how will universities check the papers? Somone must read the preprints, like the current reviewers. Someone must check the incoming preprints, find reviewers and make the final decition, like the current editors. ...
reply