> ... the core issue is just that OpenSSL sucks to work with now.
NodeJS working group don't seem happy working with OpenSSL, either. There's been indication Node may move off of it (though, I remain sceptical):
I'd actually like us to consider the possibility of switching entirely to BoringSSL and away from OpenSSL. While BoringSSL does not carry the same Long Term Support guarantees that OpenSSL does, and has a much more constrained set of algorithms/options -- meaning it would absolutely be a breaking change -- the model they follow echoes that approach that v8 takes and we've been able to deal with that just fine.
While planning the trip, I was annoyed by redditors on r/askswitzerland ending almost all replies by asking folks to download the SBB Mobile app. To my surprise, even though I'm not the kind to install apps (let alone Flutter apps), it was god-sent. So well made (their "design system" is open source: https://github.com/SchweizerischeBundesbahnen/design_system_...). Makes travel up and down the country, from Zürich to Lugano, from Genève to St. Gallen, from Basel to Campocologno, stress-free.
For tourists, TooGoodToGo.com (mystery meals) & SwissTopo (trails) are equally neat.
> Writing the code hasn’t been the bottle neck to developing software for a long time.
For who? There's no lack of professional programmers who couldn't clear FizzBuzz now coding up company-sized systems using Agents. This is all good as long as agents can stick to the spec/req & code it all up with decent enough abstractions... as the professional approving it is in no position to clue it on code organization or bugs or edge cases. I think, we (as a society) are looking at something akin to "reproducibility crisis" (software full of Heisenbugs) as such "vibe coded" systems get widely sold & deployed, 'cause the "pros" who excel at this are also good at... selling.
Valid concern and one I share. If you’re going to vibe code up an operating system you will still need the experience and understanding of operating system fundamentals to have a chance at producing anything useful.
The one-shot vibe-coded C compiler is a good example. Sure it created a compiler that could pass the basic tests. But it was no where near a plausible or useful compiler you’d use in a production system.
Someone who knows compilers reviewed it and was able to prompt Claude or Gemini to fix the issues. But still… you’re not going to be able to do that unless you know what to look for.
On an enterprise development team doing boring,
Line of Business software? Might have a chance at rolling the dice and trusting the agents and tests and processes to catch stuff for you but I’d still be worried about people who don’t know what questions to ask or have deep expertise to know what is “good,” etc.
> not really surprising first countries to leave fossil fuels behind are also countries with mountains and rivers
What's surprising is countries sharing natural resources are among the pioneers, despite the geopolitical implication... like Ethiopia testing the Egyptian waters by building dams on the Nile.
Maybe you should lookup when these damns were built. I wouldn't be surprised if in 1970 there were also 9 countries who didn't use any FFs. Same 9 countries of course. If you can build hydro you do. Problem is, we already have them everywhere they can be. And even now, hydro is only about 10% of all electric power production worldwide.
Some argue, LoC is irrelevant as a quality/complexity metric as (in this new software product development lifecycle) implementation + testing + maintainance is wholly overseen by agents.
It has never been possible to code & deploy software with all but specs. Whatever software Garry is building are products he couldn't otherwise. LoC, in that context, serves as a reminder of the capabilities of the agents to power/slog through reqs/specs (quite incredibly so).
Besides, critical human review can always be fed back as instructions to agents.
> I tried out portmaster recently. Coming from rethinkdns on Android, I was far from impressed; it looks featured, but it's much harder to use. Opensnitch looks better but doesn't have the nice features
If 'far from impressed ... much harder to use' is about Rethink DNS + Firewall... Over the years, we've got numerous complaints about the UI over emails and on GitHub Issues, so we're acutely aware of the fact. In our defense, we have had no help from a designer, and couldn't come up with a good UX even if our life depended on it. We'll keep trying though.
> German-speaking EU you'd get real top-notch engineering for 120€/h
No disrespect to German-speaking engs, but Colin isn't merely "top-notch", he's "the top".
Huge salaries (like those paid to "top" athletes in "top" professional team sports) aren't unheard of in Tech anymore. For instance, Google paid $2b+ to acquihire Noam Shazeer of c.ai back. Meta was rumoured to be paying $20m+ salaries to poach OpenAI researchers based in Zurich.
disclaimer: I co-develop (FOSS) Little Snitch / Open Snitch inspired firewall but for Android
> little snitch given its a full kernel extension
On macOS, don't think Little Snitch needs kernel exclaves / extensions. Apple provides userspace ("Network Extension") APIs (however limited) for apps like Little Snitch to use (instead of pf).
> effectively able to MITM your whole network stack
"MITM" means something else, anywho... if network observability (not firewall) is the primary need, cross-platform (GUI) sniffers like Sniffnet exist: https://github.com/GyulyVGC/sniffnet
nahīñ hai nā-umīd 'iqbāl' apnī kisht-e-vīrāñ se
zarā nam ho to ye miTTī bahut zarḳhez hai saaqi
Do not despair over barren fields.
The soil is so fertile; a little rain is enough.
(The entire Urdu poem which probably is comparable to Emily Dickinson's "Hope is the thing with feathers" is pretty good).
This coalition is "tiny" insofar NATO & the GCC (well, apart from Bahrain and the UAE) refused to join the attacks, despite Iran's transgressions. The US could wage this war for many years all alone, and force the GCC to watch as the region burned. I guess, Trump's administration isn't willing to go as far as the current Israeli leadership may have hoped or wanted. That said, the war could very well still flare up, if the events from past 2 years following "talks" are any indicator.
I don't disagree, but the expectation from the US Admin was some of their NATO allies would join (like they did in Afghanistan, Syria, and Iraq). Especially since the Oil spike hurts Europe (where the NATO nations are) the most.
> NATO is a defensive agreement
Turkey was attacked by Iran, though, it is unclear if Turkey would have invoked Art5 even if Iran had kept escalating.
NodeJS working group don't seem happy working with OpenSSL, either. There's been indication Node may move off of it (though, I remain sceptical):
Update on QUIC, https://github.com/nodejs/node/issues/57281 (2025).reply