I wonder too. Did it take many human hours to verify everything?

cgroups are part of whats used to implement docker and podman

True, and they do indeed offer an additional layer of protection (but with some nontrivial costs). All (non-business killing) avenues should be used in pursuit of defense in depth when it comes to sandboxing. You could even throw a flatpak or firejail in, but that starts to degrade performance in noticeable ways (though I've found it's nice to strive for this in your CI).

Namespaces are very lightweight though? Like single digit overhead.

By your definition, a physical child's sandbox isn't a sandbox.

They moved from platform A to platform B.

And platform B is basically a worse version of everything than platform A.

I admire the motivation though

“Worse” is fully dependant on what you’re looking to get out of a product. I consider anything Google/Meta to be about as bad as it gets because I disagree with their business practices and value my privacy.

So that definition does not cover "privacy"? Where does one look up the definition of "worse" you're referring to?

Their level of “polish” extends to dangerous, unreliable levels of automation.

For anything enterprise related, I would avoid Google and their automated account bans without the possibility of contacting a human tech-support agent like the plague.

You pay for a SaaS solution to remove worries to your day-to-day, not to add more things to worry about.

ah yes, the polish that keeps begging you to give them your address for your "own safety"

the polish that can't even delete your entire spam folder half the time

the polish that asks you to verify you own your own email address via email if you want to add an alias to send an email from your own domain (e.g: if you have wildcard inbox and want to reply from one of the addresses you used)

the same polish that gives you no results if you search "one" and the email actually contains "oneword" - you know, search, the thing google is known for.

such amazing polish.

Care to elaborate?

They moved from platform USA/Surveillance-Capitalism to platform non-USA/Privacy.

That's a big deal to some of us.

Especially important it the demonstration that your privacy which Google et al, are so insistent on monetizing, does not mean they are charging you less for the same services that other companies can charge when you are paying only with your money, not your privacy as well.

> USA/Surveillance-Capitalism to platform non-USA/Privacy.

I laughed at this, as an european. I mean just this year we've had like 3 scares with chat control, and the latest news is that they're still trying / succeeding on some fronts. Please don't reduce such complicated matters to red vs. blue, it's really more complicated and there are no easy solutions anywhere.

> I laughed at this, as an european. I mean just this year we've had like 3 scares with chat control,

Strange to compare "scares" with a business model that's 20 years old now. Sure the EU is far from perfect but it's like comparing a well known problem to a potential one. One is bad, the other might sucks. It's definitely not equivalent.

> It's definitely not equivalent.

We agree, but not for the reasons you think we do.

Chatcontrol is literally 1984. It's mandated at the provider level. You can't opt out.

You can always chose not to participate in the social media, sharing whatever you do. You can't not participate in chat control. Same same, but different.

You can't opt out because there's nothing to opt out from, chat control is not law, it failed to be approved every single time people tried to bring it up, sometimes it even failed before being voted on (like this last time)

FWIW I didn't say Chatcontrol was good. I'm saying there is a fundamental difference between a potential law versus an existing situation.

But you get that it's still hypothetical at this point, while it's been going on in the US for, what, 20 years now?

> I laughed at this, as an european. I mean just this year we've had like 3 scares with chat control,

Chat control is an EU thing. The article is about a move to Proton which is Swiss and therefore outside the EU and not directly affected by chat control or other EU laws. Of course the EU might make it illegal for them to supply their services to EU countries, but then no platform anywhere can avoid that problem.

On the whole EU govt surveillance (assuming you live in the EU) is better than EU govt surveillance plus US govt surveillance plus big tech surveillance.

Proton already announced earlier this year that they are leaving Switzerland due to legal uncertainty and relocating their physical infrastructure to Germany, which obviously is in the EU.

Have they moved yet? If not they are not EU yet.

Its also interesting that they have chosen specific EU countries and the differences between countries does matter.

What happens if, as is probable, the EU brings in similar laws?

I mean I don't think anyone seriously thinks the USA doesn't have access to all the EU data.

That's a bold claim, are you implying that encryption is a scam?

All is hyperbole, but given the reach of big tech combined with intelligence gathering it probably does have that access to almost all. Not because of lack of encryption but because there are so many routes to getting that data. The combination of US domination of cloud services with even greater domination of device OSes the US has access to most data if it wants to.

> almost all. ... access to most data if it wants to.

Well that's a quite an important difference.

I do. I think many do.

> They moved from platform USA/Surveillance-Capitalism to platform non-USA/Privacy

I see, the EU propaganda shows effect. Of course a proponent of the non-elected regime doesn't mind the illegal "chat control" and censorship of any wrongthink facilitated by the Digital Services Act.

Care to elaborate how chat control came into effect?

Last time I checked, it was always rejected, no matter how they reforrmed it. The EU is not one voice, it will always have different opinions. What matters is what's actually voted into law, chat control tried multiple times and it never was.

Also, would you be so kind as to share those wrongthinking related with DSA?

So we an focus on improving things and not bashing on them.

I'd rather Google have my data than the EU

That's a choice. But it's not everyone's choice. And with <waves hands wildly around>, the non-USA choice is rapidly becoming more popular - at least among the people I know and talk to outside the US.

I’d argue the opposite, that the US is moving away from the rest of the ‘free’ world.

‘Free’ meaning not run by dictators.

Dictators typically don't win popular votes legitimately. Dictators typically don't have the courts constantly overruling them.

Europeans tend to have very little idea how the US government functions. Trump is able to do what he does simply because the people voted for a congress that supports him.

> Dictators typically don't win popular votes legitimately.

It also isn’t how you win in the US. The winner of the popular vote was Trump this last round (unlike his first term), but with a far-from-resounding 1.5%.

https://en.wikipedia.org/wiki/List_of_United_States_presiden...

I'm sure this is trivia on the other side of the world but we learn this in 2nd grade

FWIW, my perspective is from Australia, not EU.

Is this new “I’d rather have Chinese my data than US”?

How could that be observed?

It wasn't at that time. All we know is that average body temperature has been decreasing since the mid 1800s when we first started measuring it.

Just throwing an idea out there, mercury or alcohol thermometers were often used.

These would be far less pure in to 1800s. That would effect the accuracy of readings.

They were also hand made back then too.

If the theory of body temp being higher is predicated upon averages, it could skew. I wonder if such studies took this into account?

A maker space https://www.nycresistor.com/

The spam checker alone is an ton of work. It needs to handle millions of mails for millions of users a day.

Nitpick: pretty sure both of those are in the billions.

Mails could even be in the trillions.

Pretty big loophole!

And inertial guidance too?

I don’t know what airbus uses I only looked into the schematics of commercial avionics like Garmin. I doubted though IMU drift and calibration introduce more error than they can provide in useful signal, old school pressure sensors + gps adjusted manually or automatically for regional pressure settings (pilots get these numbers through radio when they enter a new pressure area) is accurate enough (~1m). I’ll let a real avionics engineer correct me here, I’d be curious if that signal is worth the hassle + I can imagine such tiny SMD sensors ARE the biggest victims of radiation hallucination.

Perhaps nicer to avoid the comment and write:

    const C1 = 505054698555331      // floor(2^64*4/146097)

as

    constexpr int C1 = floor(2^64*4/146097);

std::floor was made constexpr in C++23, which is pretty recent as far as C++ standards go. It's possible the author didn't think using C++23 was worth the constraints it places on who could use the code.

That's a mathematical expression, not a C++ expression. And floor here isn't the C++ floor function, it's just describing the usual integer division semantics. The challenge here is that you need 128-bit integers to avoid overflowing.

Ah, you're right. I saw that the expression in the comment and in the code was the same and assumed that the commented bit was valid C++ code. You got me to look again and it's obvious that that isn't the case. I had even gone looking through the codebase to see if std::floor was included, and still missed the incorrect `^`.

I guess in that case as long as the 128-bit type supports constexpr basic math operations that should suffice to replace the hardcoded constants with their source expressions.

    const C1 = 505054698555331      // floor(2^64*4/146097)

is faster