If you install Windows first, Microsoft takes control (but it graciously allows Linux distros to use their key). If you install Linux first, you take control.
It's perfectly possible for you to maintain your own fully-secure trust chain, including a TPM setup which E.G. lets you keep a 4-digit pin while keeping your system secure against brute force attacks. You can't do that with the 1990s "encryption is all you need" style of system security.
It's funny, but I just encountered this for the first time the other day - feels like I had to do a lot of digging to find out how to do this so that I could add my LUKS key to my TPM... really felt like it took some doing on the HP all-in-one that I was trying to put debian on... maybe because it was debian being debian
Poland is always like this, for "good" reasons. The American shopping experience is a breath of fresh air in comparison.
Our workflow is often something like this:
1. "Verify your account" (before you buy).
2. Order has been accepted.
3. [From the payment gateway, we typically don't do credit cards for online transactions]: Payment required.
4. [Your bank, via a push notification]: Please confirm this transaction, typical EU overregulation 3D Secure crap.
5. [Your bank, Push]: Card payment.
6. [Payment gateway, after you're redirected to their site and complete payment] Payment succeeded.
7. [Store]: We have received your payment.
8. [Store, one business day later]: Here's the invoice you requested. Spoiler, no invoice was actually requested.
9. [Store]: Here's the tracking number for your parcel.
10. [Parcel Delivery app, you practically need one to open parcel lockers, our favorite method for getting almost anything, if you don't want to deal with the hassle of SMS]: Your parcel has been registered.
10. [Parcel app]: Your parcel is on the way.
11. [Parcel app] Your parcel is ready for collection.
12. [Store]: Your package has been delivered.
Most of these are no-opt-out.
That list doesn't include any marketing, "how did you like your Order" or "Please review this Seller" emails. If there's another intermediary in the mix, like Allegro (our local Amazon / eBay alternative that most people order from), there can sometimes be a bunch more.
Interesting how you need a separate app to open parcel lockers in Poland. In the Czech Republic the locker provider just sends you an email/SMS (as a part of the "ready for collection" message) with a code that you type on the locker's keyboard, which is sometimes physical, sometimes a touch screen, and the locker opens, no app needed.
From what I've heard from people doing biology experiments, the limiting factor there is cleaning lab equipment, physically setting things up, waiting for things that need to be waited for etc. Until we get dark robots that can do these things 24/7 without exhaustion, biology acceleration will be further behind than software engineering.
Software engineering is at the intersection of being heavy on manipulating information and lightly-regulated. There's no other industry of this kind that I can think of.
There is a massive gap between "having a recipe" and being able to execute it. The same reason why buying a Michelin 3 star chefs cookbook won't have you pumping out fine dining tomorrow, if ever.
Software it a total 180 in this regard. Have a master black hats secret exploits? You are now the master black hat.
What do you actually use for STT, particularly if you prize performance over privacy and are comfortable using your own API keys?
I was on WhisperFlow for a while until the trial ran out, and I'm really tempted to subscribe. I don't think I can go back to a local solution after that, the performance difference is insane.
Try ottex.ai - it has an OpenRouter like gateway with most STT models on the market (Gemini, OpenAI, Groq, Deepgram, Mistral, AssemblyAI, Soniox), so you can try them all and choose what works best for you.
My favorites are Gemini 3 Flash and Mistral Voxtral Transcribe 2. Gemini when I need special formatting and clean-up, and Voxtral when I need fast input (mostly when working with AI).
At some point, you just stop measuring the thing until the thing becomes a problem again. That lets you work a lot faster and make far more software for far less money.
It's the "fast fashion" of software. In the middle ages, a shirt used to cost about what a car does now, and was just as precious. Now, most people can just throw away clothes they no longer like.
Shirts used to be expensive, but "nice clothes" expensive in today's money, not "1st/2nd most expensive thing most people own" type expensive. $200-$1000 in today's money, scaling to wages.
You're right on most of these, but wrong on telephony. That actually was a natural monopoly.
It's exactly how OP describes it. It's unproductive for multiple companies to maintain disconnected, parallel telephone infrastructures. The most productive use of resources is to lay more wires to more houses, not to lay more wires to places which have already been wired up for telephone service by somebody else. That creates a monopoly, and the government should step in.
With modern tech, you can mandate local-loop unbundling and fix some of this, but that wasn't possible with 1970s (and earlier) phone infrastructure.
We use "natural monopoly" too freely and too quickly, almost as a free card to actually implement monopolies that last for decades. Anecdo-time: in my small city there is a small "natural" monopoly in public bus service: the municipality offers a monopoly on which buses can operate in the city, that lasts for 25 years or so. I lived through a renewal that was a bit rocky, the bus company went on a strike, and as a result there was a vacuum of monopoly for six months. That resulted in a flood of other companies, big and tiny (as in 1 bus only, serving 1 very demanded route), doing the routes. They were as cheap as it gets, offering month cards outrageously cheaper than previous public-natural-monopoly. It was so cheap, and the offer was so high that cars seemed to vanish from the city center, that was so full of buses that you didn't even check the timetable: you just waited for the next for 5 minutes.
Eventually the municipality renewed the previous contract with the same previous company, a contract that forbids other companies from entering the city center, and we went back to the worse service we were used to. Of course they were a lot of narratives: they were trying to capture the market, drive competence away and then hike the prices; they were bounded to bankrupcy at such prices; that many buses were damaging the roads, and others. But the reality was that for a brief time we had the best bus service in the modern world.
As for telephone wires, we went through some years, between copper-IDSN and fiber (the DSL bridge) that a lot of companies found a way to make it profitable to put new copper cable parallel to what it already existed. The only thing the municipality did was to make it mandatory that the first to install it must use a wider-than-needed conduct (a solution much less disruptive than giving a natural monopoly, latest shown by new small companies born everywhere), so if a company wanted to add more cable later could use the same tubing. Predictions about company A blocking their tubing showed false, as other companies could retaliate in other places. No second tubing was allowed until the first tube was full, this was the only state intervention in the issue. The same tubes have now the optic fiber.
I am not fully anti-state, but there are undeniable overreaching everywhere, and a lot of zealots of intervention that are itching to issue mandates and interfere with everything, and then fix what fails with more interventions.
> If people truly want something and it can be done profitably, just start a company and do it yourselves.
There is a specific problem with last mile services: It costs approximately the same amount to install fiber down every street whether you have 5% of the customers or 95%.
So you have an incumbent with no competitors and therefore no incentive to invest in infrastructure instead of just charging the monopoly price for the existing bad service forever. If no one new enters the market, that never changes.
However, if there is a new entrant that installs fiber, the incumbent has to do the same thing or they're going to lose all their customers. So then they do it.
Recall that it costs the same to do that regardless of what percent of the customers you have, but they currently have 100% of the customers. Now no matter what price you charge, if it's enough to recover your costs then it's enough to recover their costs, so they just match your price. Then you're offering the same service or the same price, so there is no benefit to anyone to switch to your service now that they're offering the same thing, and inertia then allows them to keep the majority of the customers. Which means you're now in a price war where you'll be the one to go out of business first because customers will stay with them by default when you both charge the same price. And since this result is predictable, it's hard to get anyone to invest in a company destined to be bankrupted by the incumbent.
Which means that if the customers want someone to compete with the incumbent, they have to invest in it themselves. At which point going bankrupt by forcing the incumbent to install fiber is actually a decent ROI, because you pay the money and then you get fiber. Furthermore, you can even choose to not go bankrupt, by making the basic fiber service "free" (i.e. paid for through local taxes), which then bankrupts the incumbent and prevents the local residents from having to pay the cost of building two fiber networks instead of just one.
There is an elegant way to solve this. Mandate that whoever install the fiber lets other companies run their ISP on top of it (with a small but reasonable cut of the profit presumably). I believe this happens (mandated or not) already for mobile phone networks in the form of MVNOs.
And here in Sweden we have the same for fiber. I don't think it is mandated here, since not every place has multiple options like that, but many do. If you have municipality owned fiber (stadsnät) it always work like that I believe, often you have a choice between 15 or so different ISPs.
why would we do that? not everything has to skim profits to a certain group of people just because they exist. they can use magical competition and build it if they want a piece.
if an area has been waiting for… (what would it be now? around 30 years since the internet took off?) so these companies had 3 decades to build out and have refused, if we the tax payers step in and we pay for it, why should we let them in? they have refused to do anything for literal decades… even worse, many of these companies took billions in subsidies and still did nothing. they’ve refused to be good boot strappin capitalists, for decades.
(i want to reiterate what i said above, i believe competition can often work really really well. but if we dont understand by now that it fails sometimes too, we're not seeing clearly.)
think about how long that is, like some people become grandparents at around 35. someone born in the windows 95 days might have a grandkid and the poor sap still wont be able to get fiber. even in tons of urban and suburban areas.
some of these same ceos have gone on about how perfect the marketplace is, how awful taxes are, how magical the marketplace is… decades later if we have to build it, why should they get a piece?
The physical cable that goes to every house is a natural monopoly. Really it's even more like the conduit the cable is installed in. Doing that part more than once is both fairly inefficient and tends to market failure.
The rest of the service isn't. Transit is a fairly competitive market. You may also have providers willing to use more expensive terminating equipment and then offer higher-than-gigabit speeds on the same piece of fiber. You want the competitive market for every aspect of the system where it can work and to keep the monopoly as narrow as possible.
Notice that the point isn't to let just Comcast use the municipal fiber and then get ~100% of the customers again, it's to let this happen with fiber to the home:
Having the municipality run the whole thing would be even better sure. I'm not sure why we do that mix here in Sweden, but it worked out OK for us I think.
Also, wouldn't those subsidies come with a legaly enforceable requirement to actually build out infrastructure? If not, I think that is where you went wrong.
im saying we shouldnt give them subsidies at all. if they cant make it work in the marketplace, if they arent up to the task, then the competitive marketplace is a failure in that instance. and thats ok.
no subsidies. if they cant do it, fine, we'll do it and we'll provide cheaper than they ever would have. and in the case of fiber, we know this is the case. there are plenty of municipally owned fiber areas that are solid and cheap af.
its ok to admit that the market doesnt always work. often, absofuckinlutely. always? not at all.
a lack of subsidies would make it obvious where those failures exist so we can just do it ourselves (the spooky government) for cheaper. tell them "you had your chance" and move on with our day.
Do I recall incumbent providers lobbying to ensure that competition be forbidden, so that they can continue to charge a lot for bad service? I think at least a couple of years ago, 16 US states had banned community internet at the behest of Comcast and chums.
I suppose that municipal broadband being banned at the behest of incumbent monopolies and duopolies isn't quite outright banning competition; just making it a lot harder to do.
This line of thinking comes up so often, but ignores second order effects. I don't need schools because I have no children, but I will certainly depend on well educated children entering the workforce.
Or, more facetiously, I don't need a subsidised fire service because no building I visit is currently on fire.
Yes but you cannot make up more than about 10-15 examples everyone will agree with, seeing as those are subsidized in practically every country on earth, and then apply the thinking the guy above you gives for everything else.
In my opinion internet access is as fundamental a right now as water access so I think it should be subsidized to a fair degree.
But not for example if it is to supply only a small island of rich people just because they happen to want to live there and force the rest of the state to supply them. There's nuance to these things and we can't just outright subsidized everything and we can't market economy everything either
I agree with you. The internet is now important enough that it's required for almost everything past basic sustenance. Governments worldwide are moving services to the internet, so it's not even optional any more.
As precedent, the framers of the US Constitution specifically authorized the government to run a national service provider of last resort...
In that technological era of horses and handwriting, it became the US Postal Service, but I think if it occurred today it would be the US Networking Service.
If you were averse to carrots (without any health restrictions on eating them), would every government institution in Germany be required to serve you carrot-free food?
If not, why should they be forced to accommodate every smartphone brand in existence, even if there's only 3 people in Germany using it? THe list has to end somewhere.
Would you say the same if they refused to serve kosher/halal meals for Muslim/Jewish patients?
UK law protects some philosophical beliefs equally to religions. (what qualifies is a bit of a mess as it's all case law)
(On a practical note, I imagine it's easier for hospitals to just serve vegan food for anyone who is vegetarian/Muslim/Jewish rather than have specific kosher/halal meals)
Setting aside the fact that there are multiple very old, very large religions that are nearly or actually vegan (e.g., Jainism), or that people raised vegan can't easily digest meat or animal products, why on earth do you feel that you or a hospital worker are qualified to determine the beliefs making up someone's identity, when you know absolutely nothing about them?
It took Western government institutions hundreds of years of violent conflict to embrace religious tolerance. I don't recall any major intense violent conflict being fought over dietary preferences.
Actually the subsidies mostly go to diary farming. Vegan food is cheap to produce but mostly not subsidised. This, plus the (no) economy of scale makes the shelf prices sometimes slightly higher, eg soy milk vs defatted milk.
You are forgetting that by not allowing more open platforms they effectively force you to accept Apple/Google EULA's essentially forcing you to give your private data to Google/Apple.
Lots of hospitals don't even serve healthy food in any sense, so expecting a good coverage of dietary options is optimistic...
But to answer the question in a real way: Veganism is often regarded as just a dietary choice like any other, when in reality courts in several countries have more or less agreed to classify it as a matter of conscience, which would give adherents some right to it. Though it seems German courts have been reluctant to draw much legal consequence from it - so far at least.
So in that sense, I don't think people have been talking about digital sovereignty and abstaining from proprietary software under another country's jurisdiction much as a matter of conscience yet. We can thank Trump that it might actually become a thing though.
While the example your provide is reasonable fair, the comparison is not.
For it to be fair comparison, the carrots would have to be grown by a foreign company, known for using unsafe growing practices, causing contamination. Eg, poison carrots. This same company would have to be under the control of a very hostile, very actively aggressive and threatening nation.
Such as one currently threatening to annex allies, among other things.
With the US literally tapping and spying on heads of foreign states:
Only insane people would objectively decide to use Google or Apple anything for any form of ID. Those platforms should literally be outlawed. Any use of push notifications or identity attention should be looked at as utter fantasy.
Here's a secret for you. There really isn't any urgent requirement to have an electronic identification method. It can wait. Supporting legislation can be passed first. There are lots of ways to do so.
For example, the entire EU could pass legislation stating that all cell phones have open source code available, including all binary blobs for drivers. And that all phones are unlockable, and that (for example) the phone has a version of the rom you can download without any Google services.
(If Apple isn't able to compete here, well... too bad)
The phones would not be legal to sell, unless the open source firmware was compiled in front of regulators. The point of this is another pet-peeve of mine, it would allow people to support their own phones, for that source code would be released the day that phone was no longer supported.
And yes, it's trivial to have open source firmware blobs. There just isn't a market for it. Pass a law, and sellers of SoC and other ICs will capitulate, or maybe more punitive laws will be passed against them. As someone once said, yes companies can have a lot of sway.
But governments have police, courts, and armies.
Right now, Android and Apple devices are a literal arm of the US government's spying apparatus, even if those two companies actively work against it.
Do not trust Google Play. Do not trust Firebase. Do not trust Google. At all.
Are Germans just too trusting? I remember 15 years ago, when nuclear power plants were closing, concerns were raised about the reliance on Russian natural gas. These were waved away. Russia? What's wrong with Russia! They're almost allies, they're capitalists now!
Don't do this again.
Do NOT trust Google. Don't. Don't make it a core part of any identity management.
Imagine, needing an active Google account to even bank! Or to file your taxes, or even to prove who you are!? Google cancels accounts with no recourse, no reason why, won't help anyone, and this is to be the core of identity management for Germany?
The average person won't even be able to install any German Government designed apps, unless they are on the Play store! Are you going to teach Grandma how to use ADB to install an app? Without an active Google Account, will you even be able to use push notifications?
Why would a government even allow ID to be blocked by the requirement that a company with terrible, horrible, inane customer service, which just kills accounts without recourse, be a gatekeeper?
I think it falls under the article yesterday about male German citizens having restrictions on their travel. Electronic ID is a step toward “papers please”.
Germany at least seems to feel international war is only a few steps away and from how militant the Chinese and Russians have been treating their “territory” I am not sure it is a bad call.
America has likewise turned bad preferring violence over dialogue and loves tracking “hostile influences on the American way of life”. Those influences being anyone who would call out the toxic culprits making America into a cesspit.
Tying to Apple and Google? It is a terrible idea. Both are prone to freeze devices for financial or social issues.
However, a fix I would accept is to force the device makers to support multiple accounts out of box on every device to keep separate what the corporations have proven time and again they cannot be trusted to combine. Also for those companies to be forced to make a cheap credit card sized device which must be held to power on for the few that truly hate the ecosystems.
I'm not sure I want my government to develop that technology.
Government software is usually low-quality, expensive procurement crap, often riddled with security holes, and an exercise in checkbox checking. UX and user friction can't be expressed as a verifiable clause in a procurement contract, so they're ignored.
Besides, every time EU governments tried to force smartphone manufacturers to pre-install government apps, the population freaked out over (unwarranted) surveillance concerns. This isn't something you can do without pre-installing apps (you don't want these APIs opened up because then attestation loses all meaning).
1. Google and Apple have a much larger ecosystem and are entrenched in their OSes, which means that they have a much better picture of the user than any government app ever will. They also have surveillance mechanisms that government apps are unable or unwilling to implement. This helps detect and prevent fraud (fraud prevention is mostly just mass surveillance used for good).
2. The eIDAS standards enable anonymous assertions about your identity. This lets you prove your age to a website / app without revealing any other information. There needs to be a way to prevent you from generating millions of such assertions using one ID and giving them out online to anybody who wants them, verified or not. The way you do that is by limiting their generation to trusted hardware, using hardware attestation mechanisms. Google and Apple provide those.
3. Pure laziness. It's an issue that <1% of the population cares about (which is hard to notice if you're in the HN bubble). Almost nobody uses a modern, eIDAS capable smartphone without a Google or Apple account. They may have decided that the part of the population who cares about this just isn't worth pandering to (just like some government institutions may decide that vegans aren't a part of the population they're interested in pandering to).
Appreciate you taking the time to write out the steel man. Ascribing motive to others without an honest appraisal of the benefits of choices one might not like is lazy.
There can be good reasons for a bad thing, and it's important to factor them in when having a discussion.
If you install Windows first, Microsoft takes control (but it graciously allows Linux distros to use their key). If you install Linux first, you take control.
It's perfectly possible for you to maintain your own fully-secure trust chain, including a TPM setup which E.G. lets you keep a 4-digit pin while keeping your system secure against brute force attacks. You can't do that with the 1990s "encryption is all you need" style of system security.
reply