AmaryllisBlues [she/her]

To elaborate on fixed price vs cost plus contracts: starliner was a fixed price contract of $4.2 billion. Which means NASA gave boeing $4.2 billion to develop starliner. Any costs incurred over that amount would not get billed to NASA and comes out of boeing's pockets.

How defense/aerospace usually operates is cost plus. At the end of/during development, no matter how much money it costs, boeing gets to bill NASA for all development costs plus an additional fee.

Aerospace/defense is full of so many inefficiencies and delays that the ending cost of development is always much more than the initial pitch.

You could leak a whole lot worse things than helium. But fuck me you can do a whole lot better. They didn't replace the leaky valve prior to launch because it was "too involved" to do so.

Covid vaccine

They didn't have to. If you launch when the turtle is sleeping in their shell and near the top part of the earth, it appears as if there is no turtle. Clever camera angles are much cheaper than video edits.

Fuck that water shit. REAL men drink mountain dewwwwwwwwwwww

Please add me. I plan on putting one together when you get the BOM. I am an electrical engineer, although most of my professional experience is in software. My EE experience is more as a test engineer than a designer.

All of those are valid concerns. I think this is more the answer I was looking for out of my initial question. I was concerned about people saying signal a large security risk or barely grants any privacy.

I think my understanding I have gotten out of has been issues related to metadata, signal's poor record of open source, and I also agree that centralization is bad.

I'm hesitant to say that there isn't an application for signal. I think I would still recommend signal to my family, who aren't very tech savvy, as a drop in replacement for sms/whatsapp because the experience is largely what they would expect out of a messaging app. But I think going forward, I agree that matrix is looking like a good option. And briar is really good if anonymity is a concern.

I want to say thanks for your patience in talking with me. I did learn a lot.

So a compromised device is not unique to a US based company. A warrant can be issued to seize the device and that could happen with any other messaging service. It is fine to not like signal, and there are several reasons not to do so.

What I do have an issue with is the idea that signal is insecure or that federal agencies can very easily peek at your messages. Because that is not how encrypted messaging works. Signal does not have access to your private key. Your private key never makes its way to the signal server. Which even if the server was not running the code they have published, a NSL still wouldn't let the government decrypt your message. Signal can be forced to disclose your public key, time stamps of your message, who you are texting, etc. But not the content of your message. Nor can they be forces to disclose anything that would give someone access to said content. Again because signal does not have access to that information. If you are concerned that signal could be publishing binaries that don't reflect the source code, you can build the published source code and use that. But when your threat model is at that point you are beyond the scope of the original post.

The difference between signal and lavabit when it comes to key disclosure laws is how the services were set up. Lavabit required encrypted communication with the server to access, send, etc your emails. Which means the server side needed a private key that a NSL could force them to disclose. Signal is a little different. Private keys are held by the users and never make it to the server. Where yes a user could be forced to disclose that key, but again that could happen with any messaging server. It is not unique to the service you're using being based in the US.

And this is also completely ignore the fact that signal utilizes double ratcheting which provides some inherent protection for compromised private keys (assuming you and the other person are deleting messages automatically). I would also like to mention that the signal protocol/double ratcheting/how signal does messaging is not unique to signal. It is utilized by a large number of services including matrix.

Don't you need the private key to decrypt messages? Those never leave the device. That's what happened with lavabit. They were forced to disclose the private key. But if that key isn't leaving your device, you need a compromised device/person on the other end to decrypt your messages.

Buy that only applies to data signal collects correct? So we're looking at metadata? The content of your message wouldn't be compromised because signal doesn't have access to it.

I guess the point I'm trying to make is signal isn't good for anonymity, but is fine for privacy. As other people have mentioned you should be using a decentralized service if you're organizing activism or whatever else your threat model demands. But as far as talking to friends/family about day to day stuff, it looks fine? So I think the question I'm really getting at is why isn't signal good as a privacy friendly messaging service to replace what people were using telegram for? It's been a minute since I used matrix, but I think the self hosting issue still applies there. Not many people are going to self host a matrix server to talk with friends.

And for the more common talking point, it shouldn't be too hard to find information about how captivity is bad for animals' health. Or how zoos churn through anti depressants for the animals. Or how most of the money generated never makes its way in to conservation programs .

I'd like to take a different approach than what information I usually see people give about the inhumane treatment of captive animals. And that is why is it acceptable to have animals in captivity for the sake of our enjoyment? The animals that get put in zoos get put there because people get enjoyment out of seeing them. Its not about conservation or however zoos try to play it up as. If it was for conservation, then why is there a lion in fucking Kansas instead of their natural habitat?

And sometimes people will describe zoos as a transactional thing between us and the animals. Like "we give them food and shelter, so looking pretty is the least they can do" kinda thing. And why is that appropriate for animals but people consider it bad of you said the same thing about women, or kids, or literally anything else.

So I read both articles and I'm still unsure as to why people are very anti signal? I get the it was/is funded by the US government. So was tor but that doesn't make the network any less secure/bad for privacy. The code is open source so if it was phoning home it would be noticed. I understand that they did not release their source code for some time, and yeah that really is scummy and does not look good. As far as message content, there have been several warrants for signal data, but signal has been unable to provide your message's content.

I get that it requires a phone number and you can use metadata to determine who you talk to. Signal is very much not anonymous and if you are a journalist/activist who deals with sensitive content, Signal is a bad option. But from a privacy/security standpoint it looks fine?

Not trying to be antagonistic. I am hoping for someone to elaborate on the articles more.

I've met these people in real life. My work attracts 2 groups of people. People who work there because they didn't want to work for weapon manufacturers, and people who work there because the weapon manufacturers wouldn't hire them.

For context, I currently work with non-defense telecom satelites.

I also find it amusing that anything that mentions animal rights or factory farms is assumed to be a pushy vegan. I've met dozens of people who buy grass-fed flesh because "its better for the animals". Ignoring that it isn't

Waiting on lab grown meat to go vegan is the same thing as waiting on carbon recapture to solve climate change. We can, and must, do shit now but that requires inconvenient changes to out way of life. Instead we jump on half-baked bandwagons to tech ourselves out of a miserable future because we don't want to be confronted with the idea that we might be wrong.

Maybe now that the profits are threatened we can do something about it. Nah, who am I kidding.

Still better than a seal on a bedsheet. But there's a trend with new flags that make them all look corporate.

The internet bullied me in to being vegan. If it had not, I'd still be baby-stepping it 3 years later. If meatless mondays help people become vegan, then the carnists advocating them as a half measure would already be vegan.