15
Software with politic opinion is are security threat (vitonsky.net)
submitted 3 months ago by vitonsky@programming.dev to c/programming@programming.dev
14 comments fedilink hide all child comments
top 14 comments
sorted by: hot top controversial new old
[-] luciole@beehaw.org 33 points 3 months ago

I would like to offer as a counterpoint that everything is political. Tech is no exception. Tech is a tool, a tool comes with a specific affordance and an affordance suggests to the wielder a certain worldview. To wilfully ignore the social and political impact of one's work does not protect it from the world's turmoil.

[-] stepan@lemmy.cafe 3 points 3 months ago

I think it's absolutely fine for software to show support for something political (e.g. supporting Ukraine against Russia), but I agree with the author that it's not ok to act violently against certain group of users (e.g. wiping Russian PCs). Not because I don't like the idea of Russian PCs getting wiped, knowing majority of them support the agression against Ukraine, but because they can do the same thing. They will wipe our PCs with theirs NPM packages or whatnot, we will malwarize more of our software to attack them and so on. The end result will be that:

  • unradicalized Russians will be radicalized because we wiped their PCs (and vice versa)

  • we can't use a lot of great software out of fear that it's authors will wipe our PCs (and vice versa)

I see nothing good coming from this type of cyber war for either side of the conflict, and thus I don't think we should support it.

[-] luciole@beehaw.org 7 points 3 months ago

Agreed that it’s an entirely acceptable position to try and avoid being stuck in the crossfire of cyber warfare. Let’s be clear though, cyber warfare is already going on and Russia+China are pulling no punches routinely wiping American and European servers in various ways. Anyone on the front line of cybersecurity sees them knocking ceaselessly.

[-] gravitas_deficiency@sh.itjust.works 18 points 3 months ago* (last edited 3 months ago)

Reading between the lines, sounds like he’s pissed about being called out for being a Putin apologist and following Russia’s party line on Ukraine.

You’re not going to shame people into disowning their morality. This isn’t a fight you’re going to win.

[-] onlinepersona@programming.dev 18 points 3 months ago

There is no way to completely protect ourselves from cyber attacks, but at least we can avoid software with an "opinion."

Well... everybody has an opinion. It's inevitable as thinking beings. The difference is whether people are willing to act upon it.

There are many projects with a Code Of Conduct out there that could be interpreted as very left leaning. There are projects with the express purpose of fighting subjugation or helping journalists' ability to report on political topics. Signal is an example of such a project. Are those projects to be avoided too?

Anti Commercial-AI license

[-] vitonsky@programming.dev 3 points 3 months ago* (last edited 3 months ago)

Well, the Linguist is no have any public opinion. You are welcome to use the unique project who care about UX, and don't care about political views of their users.

[-] trashgirlfriend@lemmy.world 14 points 3 months ago

Hi!

This is a political opinion that you hold!

[-] stepan@lemmy.cafe 1 points 3 months ago

I appreciate that, thanks.

[-] Miaou@jlai.lu 1 points 2 months ago

How does this tool translate "Taiwan is de-facto an independent country that should follow its own path, rather than be integrated to the mainland." to Chinese (simplified)?

[-] SatouKazuma@programming.dev 14 points 3 months ago

What the fuck did I just read? The headline even is completely unintelligible.

[-] trashgirlfriend@lemmy.world 12 points 3 months ago

Someone blocked me on twitter dot com :(

[-] stepan@lemmy.cafe 2 points 3 months ago

If I understand it correctly it isn't the blog author who got blocked.

[-] StryderNotavi@infosec.pub 8 points 2 months ago

He also seems to be throwing in unrelated concerns and just glossing over the details that bring their relevance into question - consider this paragraph

Browser extensions, mobile, and desktop apps also implement logic to attack users by regions and based on their political views. Nowadays, there are many teams who buy popular apps and browser extensions to inject malware. I have a blog post about it.

You're not going to be able to identify whether a developer might do a deal that compromises a library you use based on their political stance - it's an entirely unrelated threat vector to his core thesis (and even his own related blog post recognises this, discussing how developers of browser extensions are sometimes tricked into including malicious code - something that is even less related to their political beliefs than their willingness to take a bribe or payout.

[-] mrkeen@mastodon.social 6 points 2 months ago

@vitonsky this link is political. Do not click it! (You know, for security reasons)

this post was submitted on 21 Jun 2024
15 points (100.0% liked)

Programming

17022 readers
220 users here now

Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!

Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.

Hope you enjoy the instance!

Rules

Rules

  • Follow the programming.dev instance rules
  • Keep content related to programming in some way
  • If you're posting long videos try to add in some form of tldr for those who don't want to watch videos

Wormhole

Follow the wormhole through a path of communities !webdev@programming.dev

founded 1 year ago
MODERATORS
snowe@programming.dev
Ategon@programming.dev
MaungaHikoi@lemmy.nz