They’re not unrelated. Lauded projects to rewrite some gpled c thing in rust are almost universally mit licensed.

Attempts to get those licenses changed are almost universally met with a line in the sand.

If it doesn’t matter then why not use the original projects license?

I know you’re not able to read minds or responsible for the greater rust community but how come when I or anyone else asks the above question of any mit licensed rust project is the answer never “huh, I guess if the license doesn’t matter then we can gpl it no problem!” And always “no, and get your politics out of my code!”

It clearly matters to someone because everyone’s feet are always dug in to the sand about sticking with mit.

The mit license allows someone (some company) to modify the open source codebase and sell the result without making their modifications public.

It allows the software equivalent of the enclosure of the commons.

If there was a particularly large or significant and widespread codebase —like for example the coreutils— that was used everywhere and mit licensed, a company could make their own slightly different coreutils without publicizing the differences and use their position in the market to enclose the commons of knowledge about the use of that software. Such a situation would lead to a fractured feature ecosystem and confusion around best practices. In that environment, the biggest and most popular software distributor would benefit because their product would be most common and therefore the best target to design around.

I know there’s a lot of “coulds” and “woulds” in that sentence, but that’s exactly what happened in the 80s and 90s with the ostensibly open source Unix codebase and the reason why the gpl was invented.

I double checked myself and linked the 15 month old ledru blog post that has the actual claim and statements about rust-coreutils in my reply.

I did that before you replied to me, but it may have taken a little bit for edits to federate across instances.

The number is 530 contributors, not 200 rust developers, although I personally feel that because the project is in rust the word contributor and the phrase “rust developer” are interchangeable without incurring any accusation of manipulative language or purposeful deception.

I made no claim that uutils is a professional project. Nonetheless, the person who wrote the uutils blog post I linked is an employee of Mozilla and the author of the update in the op is an employee of canonical, the company that makes Ubuntu. This is not uncommon in all open source development regardless of licenses and is the reason I didn’t bring it up. Not enough people realize there are double digit big name projects maintained by some guy in Idaho and the overwhelming majority are shepherded by developers and maintainers in the pay of some company or another.

I never made a claim about who started the project to rewrite coreutils in rust.

Eventually that option will go away.

Even if a decent number of the vulnerabilities closed by mit/rust coreutils are not exploitable or would require an insane chain, distros untouched by the perverse incentives of rust will eventually adopt them based solely on the number of closed bugs alone.

We are headed for the ibm/unix past of open source because the multipolar world we are headed towards mirrors the conditions of that past.

The tools of that transition happen to be rust/junior devs/ai, but if different tools were available that would generally reach those ends they would be in use instead.

For a subset of features and versions often for a limited time, yes. For now.

The team of over 200 rust developers involved with the project did. They wanted to avoid the “politics” and are not entertaining comments or explaining their decisions. It’s not up for discussion.

This is incredibly common in rust development.

E: apologies, it’s 530 contributors according to the uutils-coreutils blog.

Rust based MIT licensed coreutils

That is true, however for people who do not want to use massgrave or a company that needs to be careful about licensing and compliance, a windows key is a good option.

The ceo of nvidia (the company that makes all the ai chips and cards) is touting robotic ai slaves as the next step. The company rekindled their commercially failed physics simulation package recently in order to make this happen. They call it digital twinning at the moment but their example application is an ai powered robotic humanoid-ish dishwasher.

It’s worth keeping in mind that from the perspective of economic effects, ai in the workplace is functionally slavery. You command the ai to go do something that is intended for humans to do and only have to pay the barest minimum in order to cover the costs.

This is different from mechanization like the cotton gin or printing press because in order to accommodate those developments, the entire process of growing cotton or outfitting a copy shop had to be changed.

To use nvidias example of a robot dishwasher, the same effect could be achieved (and is achieved in some establishments) with specifically dimensioned plates, a conveyor belt system and some simple industrial automation to load and run the dishwashing machine.

That would be the mechanization equivalent of a cotton gin or printing press.

Spending trillions to develop the technology required to replicate the effect of a person standing in front of a sink scrubbing plates all day is just inventing the mechanical negro.

So, ai is bad.

But you don’t need to worry about it because you can’t do anything about it.

To run windows

You’re misunderstanding what they’re freaked out about.

TBH lots of people with real experience in computer security have trouble understanding what signal skeptics are complaining about because people who understand what’s going on just say “well… yeah. Duh.”

They’re concerned about the possibility of lack of anonymity being combined with social graphing to establish cause for investigation.

When the service corroborates a user to a phone number it doesn’t matter how legitimately private and secure the data transmitted between clients of the service is, the government of the jurisdiction can demand the information about the user and phone number and use that to establish their own legal cause to use more intensive surveillance methods, infiltrate organizations and tie a user of signal to an identity with voting records & other publicly (and less publicly) available identifying information.

People want to use the cloak of anonymity to avoid this outcome and so complain about signal not being anonymous. Of course, they might not have the understanding and language to recognize that’s their concern so it isn’t always clear.

Signal doesn’t claim to be anonymous, so a person who understands that distinction will just get pissed off at ding dongs trying to drive screws with a hammer and a person who doesn’t understand that distinction gets pissed off that anyone would sell hammers at the same store as screws.

Computer security and crypto needs a Flowers for Algernon so people can learn how little they know and not a Matrix that invites people to the secret world.

Micro form factor corporate “desktops” are the easy and cheap answer here. More expensive but also easy are the n100 lil boxes. You may need to disable or cover a bunch of gamer leds.

Weirdly cheap but with one hidden cost is appletv 4k, you gotta either pay monthly or one time to the infuse (jellyfin client) app developer to unlock dolby decoding. TBH I don’t mind paying one time for software, it’s the subscriptions that bug me also it’s what we still use so that’s why it makes the list.

After all the stuff about super/bad box started getting around I haven’t been able to really trust android set tops, which sucks because the price is right on those little fuckers.

Also I often found awful support environments for safely using android tv boxes, lack of lockable bootloaders, undocumented memory for blowing the original install back in, weird variants of weird socs.

It made me do the Seinfeld at the movies gif, ymmv.

Yes the unverified apps thing will affect you no matter what. It’s not getting better any time soon. There are a lot of reasons for that.

You can’t “de-google” if you are 100% married to googles navigation service. It’s gonna become much harder to avoid play services (the google play store and all its telemetry) if you need a banking app and teams even if they seem to work now because the “reasons” above.

Other people have said that “privacy is a spectrum” in response to the following unconventional advice, and that’s true! Your conception of privacy may simply be getting away from the default apps and keeping the play store! Just keep that in mind:

If you’re actually gonna do any of the things we consider phone stuff on your phone, in terms of privacy and security it goes graphene > appropriately configured ios > a big gap > everything else.

Maybe consider switching. There isn’t a big cost difference anymore.

Speaking from experience with both android and ios platfoms including many custom roms and the alternative repos/app stores, it’s much, much easier to stay as private and secure as possible on ios.

Not pictured: subwoofer, shogun wing, underglow

Idk how bad shipping/vat/crossing the eurozone border is but Cheap laptops that will get the job done with linux: dell/hp/lenovo business class models (precision/lattitude, whatever hp calls their stuff, t/p/x series respectively) with 3rd/4th gen Intel processors are still viable in 2026.

Hell I was doing cad work on a 3rd gen intel laptop from 15 years ago last year (small models only, of course!)

Hope you find one that suits your needs.

I live in an area I would describe the same as you described yours.

Each example given are things that I experienced.

Be safe out there.

Consider dumping keepass for bitwarden.

If you’re using the password manager correctly, you will only use the password manager and have all different, impossible to remember and keep track of combinations of passwords and logins.

So losing access to the password manager would be catastrophic.

A tool like keepass relies on the user to not lose access to the password managers data, but many events far outside of the users control can happen. Natural disasters, confiscation and even good ol’ user error can lose access for the most careful users and cause seriously problematic situations.

A trustworthy cloud based option can close that hole and make very difficult situations much easier.

“My phone and computer were lost in a flood or fire. In order to receive aid or access assistance I need access to the credentials on them.”

“My phone and computer were confiscated by the authorities. They are locked and encrypted, but now I don’t have access to my credentials”

“Oops, I made a mistake!”

You almost certainly are better served by using a trustworthy service like Bitwarden that allows you to still do your shit in these situations.

TUR?

Those are inflated American prices. Whatever I said is probably much cheaper where you’re at.

Might be worth it to go ahead and switch back to windows now before you are in a position where you need to do so quickly in order to complete some task or assignment.

Look at the massgrave instructions for 21h2 iot ltsc, it’ll make your life easier.