#xkcd2347 — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #xkcd2347, aggregated by home.social.
-
Kolikrát se tomuto obrázku zasměješ, tolikrát jsi ajťákem:
-
I haven't seen this variation of XKCD 2347 yet. Received from a friend, source unknown.
-
Animated xkcd 2347.
I originally made this after the backdooring attempt of the XZ Utils repo by some entity named Jia Tan was discovered, but without sound. Finally, it is available in stereo, headphones recommended.
Damned, the whole thing was discovered in march 2024! The relevance of this clip might be like a sine wave, hopefully not, but we'll see :P#b3d #blender3D #npr #xkcd #xkcd2347 #xz #backdoor #infrastructure
-
All corporate digital infrastructure
#xkcd #XKCD2347 #dependencies -
- This situation is what we call "fucked"
- There is, however, one atypical Nix* business. While all others siphon life out of Nix project indirectly - that one recognizes the dynamic, and instead sells a fork of Nix project at a premium, with maintenance guarantees
- This is, perhaps, most sinister. Instead of merely exploiting the commons, like other companies do, this one monetizes the lowest common denominator - knowing full well of how ready to collapse this #xkcd2347 tower is
- This company also only partially depends on Nixpkgs, choosing instead to focus on flakes
- This gives them a unique opportunity: if a collapse does indeed happen, they have a perfect chance to take the whole ecosystem with all of the common good to their ownership, with everyone else essentially having no choice but to accept it, or lose all of their ecosystem investments
- This is an exceedingly profitable move, and quite expected from a company that has tried to fragment the community for years🧵👇
-
- Essentially, companies make use of Nixpkgs' existing popularity and of its contents (either directly, as a private fork, or as a practical guide), and promote it back. But Nixpkgs' popularity has a cost. Each commit to it essentially siphons life out of Nix project - which has been looking increasingly pale for a very long time. And Nix is critical infra for Nixpkgs. Doing *anything* with it is extremely challenging - and there are barely any people with the know-how
- Essentially, Nix project is on death's door, one unfortunate accident (such as an irresponsibly revealed CVE) away from collapsing under the weight of Nixpkgs. Conversely, Nixpkgs is a classical #xkcd2347, where the critical piece has been quite literally maintained since 2003, and is now maintained by like 5 people
- #Lix is a big win in this regard, because it can serve as a replacement piece that is maintained by like 5 other people (and that runs into fewer problems overall), but it's not perfect🧵👇
-
wtf is #1p4floss? One percent 💰 for Free & Libre Open Source Software Normalize regularly giving to support the uncountable "dude in Nebraska holding up the internet" #XKCD2347 that make our computing life rich. Because software needs to be more expensive blog.glyph.im/2024/03/soft... #floss
Software Needs To Be More Expe... -
@merlin dein Wille geschehe:
xkcd 2347 Dependency überarbeitet für Deutschland und Notepad++#xkcd #xkcd2347 #dependency #notepadplusplus #donho #opensource
-
@ernie That’s an interesting piece, and good for DHH to have such a generous attitude about the success of Ruby on Rails without it directly benefiting himself.
However, I have to say I have a different reaction to it from what the author may have intended. Maybe the companies that benefit so richly from OSS need to do more to retroactively compensate the folks that built their foundation. Reference #XKCD2347. Unfortunately I don’t think there will ever be a good solution to this situation.
-
so glad this DIDN'T happen to the #opensource and #linux supply chain with the #xz #backdoor attempt! but it looks way better when things fall over.
what a great excuse to do a #physicssim in #blender3d #b3d after seeing @ahl draw this already. And I learned about drawing outlines in blender, and made things fall over, yay. -
Q: "So, what makes the fediverse run?"
A: "Systems some guy named Jerry has been thanklessly maintaining since 2017".
-
-
@ashwinvis: Just had to do that, yes. #xkcd2347
-
@vaurora: In this case it was rather "not enough people involved" istead of "too many involved": See #busfactor and https://xkcd.com/2347 #xkcd2347
This was only possible because the original maintainer did that work alone and seems to have been close to a #burnout and urgently needed someone to step in. So it was easy to get the co-maintainer position without long-time #trust being involved.
-
@vaurora: In this case it was rather "not enough people involved" istead of "too many involved": See #busfactor and https://xkcd.com/2347 #xkcd2347
This was only possible because the original maintainer did that work alone and seems to have been close to a #burnout and urgently needed someone to step in. So it was easy to get the co-maintainer position without long-time #trust being involved.
-
@vaurora: In this case it was rather "not enough people involved" istead of "too many involved": See #busfactor and https://xkcd.com/2347 #xkcd2347
This was only possible because the original maintainer did that work alone and seems to have been close to a #burnout and urgently needed someone to step in. So it was easy to get the co-maintainer position without long-time #trust being involved.
-
@johnfocker Tu peux continuer à lire, ça s'applique au #logiciellibre en général, et aux dépendances logicielles. C'est une parfaite illustration du #xkcd2347 https://xkcd.com/2347/
-
@jocelyn_etienne Agreed, and kudos across the board! There are still so many situations where we end up in #XKCD2347 situations.
