I am thinking about opening my own shop, distinguished by digitally sovereign offerings, for instance, Stormshield over Cisco, Proxmox over VMware, Matrix/Element over Microsoft Teams, Nextcloud over SharePoint...
I've been doing m365 and azure for more than three years by now and I just feel terrible. Especially regarding some of our customers, which are small gGmbH (kind of NGO). Instead of making a secure, privacy focused offering we just sell them the usual m365 package. We basically push them into the data industrial complex just to get some collab tools and mail.
It's the same blind spot people have to Java's checked exceptions. People commonly resort to Pokemon exception handling and either blindly ignoring or rethrowing as a runtime exception. When Rust got popular, I was a bit confused by people talking about how great Result it's essentially a checked exception without a stack trace.
Here's [1] a post-abliteration chat with granite-4.0-mini. To me it reveals something utterly broken and terrifying. Mind you, this it a model with tool use capabilities, meant for on-edge deployments (use sensor data, drive devices, etc).
> suspects in a violent assault on a Palestinian from Gaza, including anal rape. The victim was hospitalised with injuries including broken ribs, a punctured lung and rectal damage, according to the indictment
... then...
> “The [investigation] in Sde Teiman caused immense damage to the image of the state of Israel and the IDF [Israel Defense Forces],” the Israeli prime minister, Benjamin Netanyahu, said in a statement on Sunday. “This is perhaps the most severe public relations attack that the state of Israel has experienced since its establishment.”
... then unsurprisingly...
> a far-right mob gathered outside Sde Teiman calling for the investigation to be dropped.
... and so...
> said in a resignation letter last week that she had authorised publication of the video to defuse attacks on military investigators and prosecutors working on the case.
I'm not versed enough in the full history of Israel, but perhaps attacking several of your neighbours, buying anti-citizen and anti-journalism spyware, raping prisoners, keeping a de facto dictator in power… well, I think Israel has done plenty to smear its own image.
Am I in a bubble? Because for more than a year I'd be hard pressed to find anyone in my country that would still be pro-Israel as a whole. Some nuanced support, surely, but also widespread condemnation.
And all we have to do to have them roll over on our command is to threaten the halt of the billions of weapons and aid we send annually. My main issue is that Israel/US relations feel like the tail is wagging the dog. Israel exists because of the West. It shouldn't take a rocket scientist to recognize that we have immense leverage over them due to them being surrounded by enemies and dependent on US weapons systems like the Iron Dome... we can basically force them to do whatever it is we want. I blame the US and the bought politicians for the tragedy in Gaza as much as I do the Israeli's.
I have the feeling Israel simply will go the way of Rhodesia within a few generations due to the actions of this war resulting in widespread de-legitimization on both sides of the political spectrum and especially generationally. No one in the US actually wants to spend tax money on a patch of land in the Middle East the size of New Jersey, especially if they don't behave.
The whole situation is so extreme it almost reads like sick parody. Last year there were riots in Israel when some IDF soldiers were arrested for raping prisoners. The riots were in defense of the rapists, and were attended not only by extremist Israeli civilians but also Israeli lawmakers, who stormed the military base where the rapists were being held.
The leaker releases a video of some of the abuse and is then accused of "blood libel" against the IDF by the Minister of Defense, Israel Katz. That phrase, "blood libel", is specifically intended to invoke the old medieval stories of Jewish people sacrificing and eating gentile children for their religious holidays. For leaking a video proving that the abuse is real.
I don't doubt that large amounts of javascript can often cause issues but even when cached NextCloud feels sluggish. When I look at just the network tab of a refresh of the calendar page it does 124 network calls, 31 of which aren't cached. it seems to be making a call per calendar each of which is over 30ms. So that stacks up the more calendars you have(and you have a number by default like contact birthdays).
The Javascript performance trace shows over 50% of the work is in making the asynchronous calls to pull those calendars and other network calls one by one and then on all the refresh updates it causes putting them onto the page.
Supporting all these N calendar calls is pulls individually for calendar rooms and calendar resources and "principles" for the user. All separate individual network calls some of which must be gating the later individual calendar calls.
Its not just that, it also makes a call for notifications, groups, user status and multiple heartbeats to complete the page as well, all before it tries to get the calendar details.
This is why I think it feels slow, its pulling down the page and then the javascript is pulling down all the bits of data for everything on the screen with individual calls, waiting for the responses before it can progress in many ways to make the further calls of which there can be N many depending on what the user is doing.
So across the local network (2.5Gbps) that is a second and most of it in waiting for the network. If I use the regular 4G level of throttling it takes 33.10 seconds! Really goes to show how bad this design does with extra latency.
Recently people built a super-lightweigt alternative, named copyparty[0]. To me that looks like it does everything people tend to need without all the bloat.
I've been at too many startups with a devops team that would rather provision 15 machines with 4GB RAM THAN ONE WITH 64GB.
I once got into an argument with a lead architect about it and it's really easy to twist the conversation into "don't you think we'll reach that scale?" To justify complexity.
The bottom line is for better or worse, the cloud and micro services are keeping a lot of jobs relevant and there's no benefit in convincing people otherwise
The author touches on it briefly, but I'd argue that the cloud is immensely helpful for building (and tearing down) an MVP or proving an early market for a new company using startup credits or free tiers offered by all vendors. Once a business model has been proven, individual components and the underlying infrastructure can be moved out of the cloud as soon as cost becomes a concern.
This means that teams must make an up-front architectural decision to develop apps in a server-agnostic manner, and developers must stay disciplined to keep components portable from day one, but you can get a lot of mileage out of free credits without burning dollars on any infrastructure. The biggest challenge becomes finding the time to perform these migrations among other competing priorities, such as new feature development, especially if you're growing fast.
Our startup is mostly built on Google Cloud, but I don't think our sales rep is very happy with how little we spend or that we're unwilling to "commit" to spending. The ability to move off of the cloud, or even just to another cloud, provides a lot of leverage in the negotiating seat.
Cloud vendors can also lead to an easier risk/SLA conversation for downstream customers. Depending on your business, enterprise users like to see SLAs and data privacy laws respected around the globe, and cloud providers make it easy to say "not my problem" if things are structured correctly.
At Purdue university we had a small research reactor and to this day can remember looking down through the pool to see the blue glow of the nuclear reaction. It is crazy how well the water (boronized?) stops radiation.
Man in Michigan potentially exposed to radiation levels equivalent to undergoing 4 x-rays at the doctors office.
Meanwhile, in Texas, 1.5 people die every day working in Oil and Gas extraction.
A few people die every year installing or falling off of wind turbines.
But by all means, let's make this a news story instead and keep making nuclear sound scary. I’m sure the person who posted this to HN with this clickbait title has zero political beliefs.
Is there any way that TinyKVM + KVM Server could ever be made to work with a GUI program? The sandboxing performance seems free and possibly safer than other solutions.
Instead of firejail or bubblewrap would it ever be possible for me to wrap say Firefox (or a much less complicated GUI program) inside of TinyKVM and restrict it to just network access and reading/writing to ~/Downloads? Likely a way more ambitious target than you had ever imagined, but I can dream.
I am wondering if I could default wrap every command on my terminal to run inside a TinyKVM, no network access, and only permissions to the current directory or below.
I used to be really (really really) into photography. I respect anyone working hard on a physical product, but this misses the mark on every front I can think of.
The real issue that photographers grapple with, emotionally and financially, is that pictures have become so thoroughly commodified that nobody assigns them cultural value anymore. They are the thumbnail you see before the short video clip starts playing.
Nobody has ever walked past a photograph because they can't inspect its digital authenticity hash. This is especially funny to me because I used to struggle with the fact that people looking at your work don't know or care what kind of camera or process was involved. They don't know if I spent two hours zoomed in removing microscopic dust particles from the scanning process after a long hike to get a single shot at 5:30am, or if it was just the 32nd of 122 shots taken in a burst by someone holding up an iPad Pro Max at a U2 concert.
This all made me sad for a long time, but I ultimately came to terms with the fact that my own incentives were perverse; I was seeking the external gratification of getting likes just like everyone else. If you can get back to a place where you're taking photographs or making music or doing 5 minute daily synth drills for your own happiness with no expectation of external validity, you will be far happier taking that $399 and buying a Mamiya C330.
I just wrote a big thread yesterday responding to someone with similar concerns to yours (https://bsky.app/profile/shreyassudhakar.com/post/3m3w3nra2h...). Copying it here if it's helpful to other folks. FWIW, the challenges you are facing seem to be grounded in bad design and application, which happens more than it should and really sucks. We need to move the bar much higher for the contractors installing heat pumps. Here's what I wrote on that thread:
This is why contractor & homeowner education are so so so important to get this energy transition right! I always hate to see reviews like this from folks that have installed a heat pump.
It’s almost always a combo of poorly communicated expectations & installer issues.
A few thoughts…
1) “Air doesn’t come out hot” is a common complaint. It’s by design! You don’t need scalding hot air to have a comfortable space. If you’re targeting a 70 degree setpoint, even 80 degree air will get you there eventually. Heat pumps work best when you let them run - they soak the space with heat.
Your furniture, walls, floors all equalize in temp and radiate heat. A totally different form of comfort than standing in front of a vent that blows hot air at you for 5 minutes and then shuts off!
2) AC doesn’t reduce humidity as well. Unfortunately, this is a classic problem with oversized heat pumps. The key to dehumidification is runtime. A well sized system will run for longer, which will pull the humidity out of the space. If the system is too big, it’ll cycle on and off & not dehumidify.
Your contractor should be do load sizing calculations to determine the size of your heat pump, not using rules of thumb or matching the size of the existing equipment! The very best contractors use performance based load calcs, where they look at your past energy bills to size your new system.
3) Supplemental heat runs a lot - this SUCKS. Electric resistance heat is really expensive to run. It really should be something that comes on for emergencies, if ever. Definitely not regularly.
Many contractors set the temperature where the supplemental heat kicks on way too high. You could be running the heat pump (which is way more efficient) to a much lower temperature, but it’ll switch to expensive aux heat instead. Fortunately, the fix to this is simple - just a thermostat setting.
In other cases, they’ll install a cheaper mild climate heat pump in a truly cold climate. This might save money up front, but it’ll kill you in operating costs when you’re paying 4x as much as you could be in the middle of winter to heat your home. The lowest bid could cost you in the long run!
PS - this homeowner later chimed in that swapping the thermostat helped reduce their electricity bill roughly $30/month! A lot of heat pump issues actually boil down to a poorly configured system. Choosing the right contractor is probably the single most important decision you'll make when you get a heat pump installed.
This is such a weird tale to hear. I heat my 2 story 147m2 house in Sweden with a single heat pump and it's downright cosy down to -10C. I have noticed that my office, which is located at the furthest possible place from the heatpump, tends to get a bit chilly when outdoors temperatures fall below -10°c. usually a blanket is enough to keep me toasty, but on the rare occasion that it gets real cold (below about -15°c), I have a fireplace to save the day. That fireplace actually gets used more for the cozyness of a fire than it does for actual need of heating, but it does help on the worst days of Scandinavian winter.
All this to say: if your pump can't handle +5°c, I wonder if you got scammed or if there are other factors at play? Is your house insulated at all? Do you keep your windows open throughout winter? Your experience is so different from mine it's hard to believe we're even talking about the same technology!
We really need an internet Bill of Rights. Google has too much power to delete your company from existence with no due process or recourse.
If any company controls some (high) percentage of a particular market, say web browsers, search, or e-commerce, or social media, the public's equal access should start to look more like a right and less like an at-will contract.
30 years ago, if a shop had a falling out with the landlord, it could move to the next building over and resume business. Now if you annoy eBay, Amazon or Walmart, you're locked out nationwide. If you're an Uber, Lyft, or Doordash (etc) gig worker and their bots decide they don't like you anymore, then sayonara sucker! Your account has been disabled, have a nice day and don't reapply.
Our regulatory structure and economies of scale encourage consolidation and scale and grant access to this market to these businesses, but we aren't protecting the now powerless individuals and small businesses who are randomly and needlessly tossed out with nobody to answer their pleas of desperation, no explanation of rules broken, and no opportunity to appeal with transparency.
Hell hath no fury like an engineer angered! This was such a good read and epitomizes hacking:
"Was it worth it? To read one book? No. To prove a point? Absolutely. To learn about SVG rendering, perceptual hashing, and font metrics? Probably yes."
> their MVP was not auditable and thus not compliant with financial regulations and also not scalable (high usage and fault tolerance).
There it is. My automatic response to any questions about event sourcing is “if you have to ask, you don’t need it.” This is one of those situations where the explosion in complexity somewhat makes sense: when you need legally enforced auditability.
Event sourcing is a really cool architecture that makes theoretical sense but the yak shaving needed to implement it is at least an order of magnitude more than any other design.
On most SQL databases, you can put CHECK constraints on columns so that the database rejects events. But this is controversial, as people don't like putting logic on the DB.
Instead of modifying the original (and incorrect) event, you can add a manual correction event with the info of who did it and why, and replay the events. This is how we dealt with such corrections with event sourcing.
This is tangential, but I worked for a food delivery startup (a conscientious one) for a couple of years and food delivery is a terribly extractive business that kills restaurants. Either order from the restaurant directly or just go there yourself, Doordash et. al. will kill your favorite restaurant with your help. The numbers don't add up in the kitchen's favor.
I've been doing m365 and azure for more than three years by now and I just feel terrible. Especially regarding some of our customers, which are small gGmbH (kind of NGO). Instead of making a secure, privacy focused offering we just sell them the usual m365 package. We basically push them into the data industrial complex just to get some collab tools and mail.