Your comment sounded like you were primarily concerned about the shell script piping rather it just being a program which can be downloaded without going through distro packages.

The AUR install scripts are just downloaded shell scripts which are executed (hopefully after inspection).

curl | bash just skips the inspection step - curl downloads to stdout, bash executes from stdin.

Also hör mal, man kann sich auch an der Diskussion beteiligen, ohne bayrische Politiker zu beleidigen!!

That is why Debian uses digital pgp signatures for all packages. And the GNU project uses strong cryptographic hashes for install packages.

Wait what happens once some government or state actor hacks rust’s install script rustup with its curl | bash install procedure and relying on TLS certificates which are e.g. issued by the Russian government. (No, the rust project won’t use a Russian/Chinese/US Gov certificate but your browser will trust near all of them…)

The thing is: You are using velocities v1, v2 which are relative to Earth. But none of the two vehicles collide with Earth - they collide with each other, thus the thing that matters is their relative speed, thus the difference of their velocities relative to Earth.

(That’s also why the speed at which both Earth, the car, and the motorized bike move around the sun does not matter - relative speed is all what matters).

The other thing is that a human colliding with an object of several tons weight with a speed of, say, 36 km/h is not “elastic”. 36 km/h is 10 meter per second, which is equal to about one second of free fall (accelerating with a= 9.81 meter per square second to the ground), which is equivalent to a fall height of h = a/2 * s ^2 or 5 meters.

Somebody falling from 5 meters hight on hard concrete ground will not bounce up but will likely have some broken bones, or a broken skull. What happens is that all parts of thier body is decelerated to a speed of zero within a distance of one or two centimeters, which involves massive forces that easily break bones.

And a speed of 14 m/s, or 54 km/h corresponds to a fall of ten meters depth - almost certainly lethal if hitting a two-ton concrete block.

The affected malicious packages are:

• librewolf-fix-bin
• firefox-patch-bin
• zen-browser-patched-bin

What a nice attack on privacy-friendly infrastructure.

And then, Arch AUR has such suspicious things like the Brave browser which claims to reduce tracking… and works together with advertisers.

To be clear, AUR is fantastic if you develop some experimental package and you want to give it to your friends to try it out easily. But not as a general distribution mechanism.

BTW python’s package index has roughly the same problem - but a far less technical, experienced and critical user base. NPM has this problem since years.

Expect these problems to rise with every percent more of new Linux users which never learned the difference between opening / viewing untrusted data, and running untrusted code, because Windows basically ignores this essential concept and Android tries to solve that with sandboxing each app.

There’s constant chatter about the potential risks associated with the rise in e-bikes, but little to no mention of regulating the existing menace. You want to talk about excessive power?

Of course this is worked on, it is an EU goal to reduce traffic deaths to zero - for example with speed limits for cars:

https://en.m.wikipedia.org/wiki/Vision_Zero.

Ich kann es gar nicht erwarten, dass ein US-Konzern das für Krankenversicherungen nutzt /s

In Grossbritannien hat sich Google ja auch schon per Opt-Out NHS-Daten einverleibt. Es ist offensichtlich, dass da eine Art Goldrausch im Gang ist.

Some of the UI isn’t open, otherwise it is Qt / Wayland / pyside with stsndard pkcon / rpm package manager and I program mine in Guile.

And the UI isn’t the serious issue. The serious issue is propietary firmware which prevents you from really running Android / whatever on a vendor phone and also that a phone does not have one but around five different processors and only the “OS” one can be controlled by your own software. An Intel Pocket PC is far better in that regard, except that it won’t work as a telephone.

Da gibt es aber auch noch bessere Open Source Alternativen, die ganz ohne Drittanbieter auskommen. Mal auf [email protected] fragen…

Microsoft has been making Windows worse. I feel more that this is Microsoft’s fault, they have abandoned the development of desktop Windows and the advancement of support for modern processor designs and gaming hardware.

Moores law is dead since a long time except for graphic cards and GPUs. This means you can’t keep adding things to desktop software in the style of “What IBM giveth, Microsoft takes away”.

Existing development paradigms don’t add significant qualities to many-processor hardware.

Which also explains part of the AI craze. It is investment money searching for a sensible use.

After getting to 1% in approximately 2011, it took about a decade to double that to 2%. The jump from 2% to 3% took just over two years, and 3% to 4% took less than a year.

Could be exponential growth.

Was mich da dann wundert ist ob ich mit meiner Prognose dass diese US-Präsidentschaft nicht gut enden kann falsch liege?

Die wird für grosse und auch die bisher wohlhabenden Teile der Welt etwa so enden wie die Nazi-Herrschaft für einen Dresdner, Hamburger oder Kölner Hausbesitzer in der Innenstadt, nämlich in Trümmern - oder unter Trümmern.

Ironischerweise schaffen auch die neuen Herrn vom Rechts es immer wieder, einer dummen, ängstlichen und schließlich feigen Mehrheit weis zu machen, dass sie bei ihren Nullsummenspielchen was zu gewinnen haben. Die völlig verquere Logik ist, das alles was dem “Feind” - den man selbst an die Wand gemalt hat - schade, einem selber dann doch irgendwie nützen würde.

Aber Zivilisation ist kein Nullsummenspiel.

Sailfish works quite well. Especially if you are not heavily using privacy-hostile apps (it has Android emulation, so things like OSMand or public transport apps run well). Quite neat. I have been programming mine in Guile, and I also have a Sailfish PDA with a physical keyboard.

What you have to do is to think hard is what you really want from a phone or pocket computer .

You called it a bicycle, which is wrong and moreover confusing the discussion.

Are you trolling?

Yeah I am, too, always astounded about posts like https://discuss.tchncs.de/post/22333342 or https://old.reddit.com/r/fuckcars/top/?sort=top&t=month .

Is this what we call “Mofa” in Germany? What are the rules for it?

Going in a car, you necessarily interact with others, what you do and how you do it clearly affects their safety, their personal space and you can even easily kill them with a single wrong movement of one hand or one foot.

That’s by definition clearly the realm where your personal freedom ends - the fundamental rights of others give it limits. And this is good so.