Instagram is not comparable to Telegram. It is closed source, so there's no way to verify that it's doing E2EE.

> DOGE strengthened the surveillance state. It does not matter whether or not it's tied to a singular intentional plot.

That's not what you originally implied, but no matter. DOGE probably strengthened surveillance capacity within the government as a side effect of its auditing work, but I don't think it added any new capability to surveil citizens that the NSA did not already have.

As for Musk being a proponent of surveillance and censorship, there's a difference between an individual surveiling and censoring users on a platform he bought vs the government using mass surveillance and censorship against its citizens.

After Elon bought Twitter, he is like the Discord mod of his giant server, and doesn't want people to go to other servers. I don't think there's much more to it than that behind the ban of Signal links on X. He had previously banned other platforms' links on a whim as well [0]. He enforces his own rules on his own platform, but he's outspoken against government surveillance and censorship. He's somewhat hypocritical value-wise in this regard, which is one of his flaws, but he's also not the government. And even so, Twitter still manages to have looser speech restrictions nowadays than it did in 2021.

[0] https://www.theverge.com/2022/12/18/23515221/twitter-bans-li...

I'm aware that Telegram is not E2EE by default, and you have to turn it on manually. But it's not true that Elon has long been rallying against Signal. In fact, he endorsed Signal a while back along with Edward Snowden. He also later criticized Signal, as well as other encrypted messaging apps. I remember seeing a podcast clip of him saying something along the lines of "none of them can really protect against the government spying on him", which is true. If you're a high profile individual like Musk, nation states will expend lots of resources to spy on you, and no messaging app will protect you from that. The point of encrypted messaging apps like Signal and Telegram is to raise the per capita cost of doing surveillance so that surveiling the entire population becomes prohibitively expensive, but it doesn't prevent targeted operations on an individual by determined state actors. Having multiple options for those apps is a good thing, even if the apps are individually imperfect, because the government will have to deal with multiple apps instead of one, and that takes more resources.

As for the rest of your comment, those claims aren't true, at least not in the way you stated. DOGE has been accused of mishandling sensitive records, and that part might be true, but I've not seen any evidence pointing towards the mishandling being a part of a evil plot to strengthen the surveillance state and promote fascism. Mass surveillance was already a problem back in 2013 when Snowden leaked it. In fact, it was already a problem before Obama's first term, and Snowden held off on leaking it because he thought Obama would introduce reforms, which didn't happen. The surveillance state is not a recent fascist movement spearheaded by Musk or DOGE. And I think a lot of the vitriol towards Musk is manufactured. He occasionally lies and is prone to manipulation like everyone else, but he's not the supervillain you think he is.

https://obdev.at/blog/little-snitch-for-linux/

The core issue is simple and uncomfortable: through automatic updates, a vendor can run any code, with any privileges, on your machine, at any time.

-----

If the author is serious about this, then they should make their own program completely open source, and make builds bit-for-bit reproducible.

For all I know, the proprietary Little Snitch daemon, or even the binaries they're distributing for the open source components, contain backdoors that can be remotely activated to run any code, with any privileges, on your machine, at any time.

Right now, physical ID is only required for government services, for the most part. But digital signatures can be extended later to gate all services and purchases, both online and physical, including non-government ones. For example, you can't host a website without a gov approved signature for each website.

Under a system like that, you would rarely find out when the gov refuses to issue a signature, or when any kind of injustice happens, really. Websites where people can talk about bad things happening to them will simply be denied a signature to legally operate, so they're given the ultimatum to "voluntarily" censor posts, or be shut down. It becomes impossible to have this very conversation on a public platform with any kind of meaningful reach. And they already have this kind of system in China, since you brought it up. In fact, they have domestic surveillance systems that make the Snowden disclosures look cute.

https://en.wikipedia.org/wiki/Edward_Snowden#Revelations

The existence of eIDAS itself is already a big problem. They're going to try to gradually push laws to make it so that you'll need a government issued signature to do anything. That's when they'll have total power over you because they can simply refuse to issue.

Modern computing and communications technologies can be leveraged to build infinitely stable authoritarian regimes. It's even possible for democracies to stumble into it on their own as they attempt to regulate these new technologies. In hindsight, the Internet was built wrong. It has a top-down structure which all of human civilization is beginning to mirror.

They're a part of the corp-gov surveillance complex [0]. This is the real threat behind the age verification push. The feds already have mass surveillance capabilities in iOS and macOS, and even Windows and most Android distros, but not on most open-source Linux distros, so they're starting to force it legally in the open. They're desperate because Linux is about to outcompete the enshittified Windows on desktops.

[0] https://en.wikipedia.org/wiki/Edward_Snowden#Revelations

There are some useful ideas from SoftEtherVPN, BitTorrent, Yggdrasil Network, and Tor you could borrow, if you're looking to improve this. The ideal tunneling solution, which doesn't exist yet, is one that not only evades DPI, but also onion bounces you through nodes in a decentralized ad hoc network, and does automatic node discovery.

The problem at hand is we have a new law that forces everyone to give their age to every app. It's mandatory personal info collection.

2. The OS has a firewall. But it's currently not user-controllable on your phone. Phone companies have decided you don't need that feature. But actually, they can easily implement a nice UI in the settings for the firewall and lock it behind a password, then parents would be able to use it to block individual websites. We can even make it possible to import/export site lists as a txt file so that you can download/share a curated block list that you or other parents made, to block many things at once. You could also do this for your entire home WiFi network in your WiFi router's settings, if your router's firmware has that feature.

And yeah, I agree that we should make the platforms less evil in general. But I think the way to do that is to give people the ability to easily ditch bad platforms and build new ones. Let the platforms actually compete, then the best will prevail. Right now, they don't prevail because of layers and layers of anti-competitive barriers. It would take great technical effort to regulate all the tricks these tech companies use, that's why I propose dealing with it at the root: make it so that all computer/phone hardware manufacturers must open-source their device drivers and firmware, and let the user lock/unlock the bootloader and install alternative OSes. If we do this, then the entire software ecosystem will fix itself over time along with all the downstream problems.

2. Other data points like User-Agent are not required by law, and browsers already spoof user agent by default. I agree that there are other data points we need to address, but the problem in this specific case is the slippery slope of legally-mandated data points. And I don't think winning high profile lawsuits is a real "win", it just exposes problem which we already know in this case. Keep in mind those people can get away with the Epstein files.

Regarding what to do with algorithmic feeds, instead of forcing platforms like Facebook to be less evil, we should give parents the ability to simply uninstall Facebook, and prevent it from being installed by the child. We could implement a password lock for app installation/updates at the OS-level that can be enabled in the phone's settings, that works like Linux's sudo. Every time you install/uninstall/update an app, it asks for a password. Then parents would be able to choose which apps can run on their child's device.

Notice their strategy: these companies make it hard/impossible for you to uninstall preloaded apps, and they make it hard to develop competing apps and OSes, and they degrade the non-preloaded software UX on purpose, which creates the artificial need to filter the feeds in existing platforms that these companies control. They also monopolize the app store and gatekeep which apps can be listed on it, and which OS APIs non-affliated apps can use. Instead of accepting that and settling with just filtering those existing platforms' feeds, we should have the option to abandon them entirely.

We need the phone hardware companies to open-source their device firmware, drivers, and let the device owner lock/unlock the bootloader with a password, so that we could never have a situation like the current one where OSes come preinstalled with bloat like TikTok or Facebook, and the bootloader is locked so you can't even install a different OS and your phone becomes a brick when they stop providing updates. If we allow software competition, then child protection would have never been a problem in the first place because people would be able to make child-friendly toy apps and toy OSes, and control what apps and OS can run on the hardware they purchased. Parents would have lots of child-friendly choices. This digital parenting problem was manufactured by the same companies trying to sell us a "solution" like this Cali bill or in other cases ID verification, which coincidentally makes it easier for them to track people online.

But even that's still not a great solution. I outline a better solution that doesn't require any legal enforcement at all, in the link at the bottom of my original comment.

1) The parental responsibility is given to the wrong people. You're basically being forced by law to give all apps and websites your child's age on request, and then trusting those online platforms to serve the right content (lol). It should be the other way around. The apps and websites should broadcast the age rating of their content, and the OS fetches that age rating, and decides whether the content is appropriate by comparing the age rating to the user's age. The user's age, or age bracket, or any information about the user at all, should not leave the user's computer.

2) The age API is not "completely private". It's a legally-mandated data point that can be used to track a user across apps and websites. We must reject all legally-mandated tracking data points because it sets the precedent for even more mandatory tracking to be added in the future. We should not be providing an API that makes it easier for web platforms to get their hands on user data!

For many years, certain tech companies, SIGs, and governments have fought against technologies that could enable real digital parenting, all while claiming to do the opposite and "protecting children". They craft a narrative to convince you that top-down digital surveillance and access-control is for your own good, but it's time we reject that and flip their narrative upside down: https://news.ycombinator.com/item?id=47472805

But I see where our disagreement is. You think there ought to be more women in chess. I think different people can do different things, so women don't need to match men in every statistic and vice versa. If we open it up to universal participation and it turns out to be a male-dominated game, then let it be. I don't think there's anything wrong with that.

I think we should just make the Olympics universal and let anyone compete for the title of absolute best in the world, no qualifiers. Detach the existing categories too, like men-only or women-only. Make all category-gated games a separate deal, like Paralympics. Each group can organize their own variant if they want.