hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

9.8K
active users

#vendorlockin

1 post1 participant1 post today
derPUPE<p>Geliebte Sucht – Die Vendor Lock-in durchsetzte IT Drogenszene" </p><p>Beim <a href="https://chaos.social/tags/Winterkongress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Winterkongress</span></a> der <span class="h-card" translate="no"><a href="https://mastodon.social/@digiges" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>digiges</span></a></span> 🇨🇭durfte ich über <a href="https://chaos.social/tags/Geopolitik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Geopolitik</span></a> &amp; <a href="https://chaos.social/tags/Vendorlockin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Vendorlockin</span></a> in 🇪🇺 und was das mit Sucht ähnlichen Abhänigkeiten und <a href="https://chaos.social/tags/Risikomangemant" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Risikomangemant</span></a> zu tun hat </p><p><a href="https://chaos.social/tags/Linkedin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linkedin</span></a> Post: <a href="https://www.linkedin.com/posts/lars-hohl-89265a20_geopolitik-vendorlockin-riskomangement-activity-7307482470520688642-ADGl" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">linkedin.com/posts/lars-hohl-8</span><span class="invisible">9265a20_geopolitik-vendorlockin-riskomangement-activity-7307482470520688642-ADGl</span></a></p><p>Komplettes Video: <a href="https://media.ccc.de/v/dgwk2025-56337-geliebte-sucht-die-vendor" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">media.ccc.de/v/dgwk2025-56337-</span><span class="invisible">geliebte-sucht-die-vendor</span></a></p>
eerlijkdigitaalonderwijs.nl<p><span class="h-card" translate="no"><a href="https://mastodon.education/@tsongloong" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>tsongloong</span></a></span> Wellicht? De hoogste tijd! </p><p>Maar veel belangrijker: Zorg voor handhaving van de AVG! Het kan niet zo zijn dat een USA partij die in het gehele onderwijs wordt gebruikt nog jaren ongestraft door kan gaan met de grootste dataroof aller tijden.🚨 🚨 </p><p>Dus hebben jullie al een handhavingsverzoek bij de AP gedaan? 👮 </p><p>En neem dan ook gelijk Google Zoeken en Google Maps mee, dat zijn ook zogenaamde "aanvullende diensten".<br>1/4</p><p><a href="https://mastodon.nl/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Google</span></a> <a href="https://mastodon.nl/tags/DPIA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DPIA</span></a> <a href="https://mastodon.nl/tags/AutoriteitPersoonsgegevens" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AutoriteitPersoonsgegevens</span></a> <a href="https://mastodon.nl/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mastodon.nl/tags/VendorLockin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VendorLockin</span></a></p>
derPUPE<p>Hätte 🇪🇺 mal wegen <a href="https://23.social/tags/VendorLockIn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VendorLockIn</span></a> der <a href="https://23.social/tags/HyperScaler" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HyperScaler</span></a> auf <a href="https://23.social/tags/Schimanski" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Schimanski</span></a> gehört</p>
Continued thread

"You should just use #Ubuntu because it's the easiest one" - this is propaganda for #Shuttleworth and tells me you haven't tried any other distro - or that you use #Arch.

#LinuxMint is fantastic still, #Fedora is my go to recommendation, but with #uBlue and #Bazzite we see a new era of usability focused #distributions.

Add to that the fact that #snaps are a centralizes repository with no third party vendors, and you've got a #vendorlockin.

Ubuntu is the #anticonsumer distribution as a result.

I created the fist issue for the #OpenLLM #Europe #manifesto on GitHub:

Move to Free and Open Source Software (FOSS) infrastructure

I suggest to move the software development to a real Free and Open Source Software (#FOSS) hosting platform, to ensure #strategic #autonomy and #digital #sovereignty. With starting the project on GitHub, the fist step towards vendor lock-in has been set.

github.com/OpenLLM-Europe/Mani

I read in the manifesto about "strategic autonomy". Why are the projects currently hosted on GitHub, a proprietary, non EU, non free, and non opensource software development platform? This is a wro...
GitHubMove to Free and Open Source Software (FOSS) infrastructure · Issue #1 · OpenLLM-Europe/ManifestoBy janvlug

Everyone whines about #Amazon stop offering the "Download & transfer via USB" option soon, which is a pity for the affected, but not worth more than a laugh by me, because I never went into that vendor-lockin trap. You shouldn't too. Buy non-drm #ebooks or download them (there are a lot of old ebooks liberated on archive.org or gutenberg.org and elsewhere).

Replied in thread

@sarahdalgulls Because the ECW driver is not Free Software, full of patents, and its owners have never been open to collaboration with opensource communities over the years.

A lot of users switched to other free formats, even if they can be less efficient in terms of storage.

Note that CoG ( Cloud-Optimized GeoTIFFs ) are now everywhere, since they offer very good streaming capabilities despite lower compression.

Sich freiwillig bei Hyperscalerwahl in ein IT #VendorLockIn Verhältnis zu begeben ist ja strategisch eine „spannende“ Entscheidung.

Dies aber bewußt in Zeiten eines aufkommenden Wirtschafts- und Handelskriegs zwischen 🇺🇸 & 🇪🇺zu tun, hat für mich einen nochmals skuril interesanteren Spin.

Mein Vortrag für den #Winterkongress bei der @digiges in der 🇨🇭wird dieses Spannungsfeld aus Sicht von Suchtabhängigen bzw „freiwillig-bewustSuchtmittel nutzenden“ mal sezieren.

#PubliekeWaarden in het #onderwijs zijn essentieel. Hoe komen die tot uiting in de #IT die wordt gebruikt op scholen? Wat zijn de risico's van oncontroleerbare, #proprietary software? Hoe zit het met #privacy van #leerlingen en #vendorlockin van #scholen?

Welke rol kan vrije- #opensource software spelen in #educatie?

Geert-Jan en @remark gaven een #analyse met #oplossingsrichting op #FOSDEM.

Sterk aanbevolen, zeker aan degenen die actief zijn in het onderwijs:

video.fosdem.org/2025/ud6215/f

Should we migrate the communication platforms of our FOSS projects (e.g., Python, Django, …) to Matrix? 🗳️

The idea of ​​avoiding the vendor lock-in is increasingly widespread 🔓

Migrate social networks to the Fediverse, self-host your blog, regain control of your Git repository, … 👏

I wonder if it's time to migrate to “an open network for secure, decentralized communication” 🪐

Answer here or share your experience 👇

#Matrix #VendorLockIn #Communication #Freedom

CC @matrix

Replied in thread

@jshaffstall

Anvil looks interesting. Unfortunately, it appears to be 100% proprietary. Even if you're okay with software you can't examine and modify, you appear to be stuck with using the vendor's website/app for designing your app's UI. They also push you hard to use their cloud-based, SaaS-type deployments.

There's an open source runtime you can apparently run your app with once it's built. But who says that's gonna stick around?

Investing a lot of time in building an app that is one proprietary license change away from being impossible to continue to use seems unwise.

Replied in thread

@heiseonline

Was für ein absoluter Müll.

Das ist nicht nur ein Abo, sondern auch #Vendorlockin und #righttorepair Einschränkung.

Man wird sich also sicher nicht einfach irgendwelche Akkus kaufen können.

Meinetwegen könnte man Akkus ja irgendwie einmal "freischalten" und sie können dann nur an einem Gerät genutzt werden, oder mit dem Passwort des Käufers in einem Laden wieder entsperrt werden.

Aber so... warum nicht analog festschließen?

Replied in thread

@alper : forget the marketing blah about public key encryption; it's advantages are extremely exaggerated.

Just think of each passkey as an extremely strong and unique password tied to the domain name of a website.

The strength of passkeys (the WebAuthn protocol actually) lies in the fact that software (not the user):

1) Insists that the connection uses https;

2) Uses the passkey only if the domain name of the website (as shown in the browser's address bar) is the same (*) as the one used when the passkey was created.

(*) It's a bit more complicated than that: subdomains may be permitted under certain conditions.

Unintentionally logging into a fake website with a look-a-like domain name (phishing) is impossible (an "Adversary in the Middle" attack is possible only if a fake website possesses a certificate deemed valid by your browser, like I wrote about in infosec.exchange/@ErikvanStrat).

However, passkeys suck in practice (Dan Goodin is right), see infosec.exchange/@ErikvanStrat.

@schwa
@dangoodin

Infosec ExchangeErik van Straten (@ErikvanStraten@infosec.exchange)🌘DV-CERT MIS-ISSUANCE INCIDENTS🌒 🧵#3/3 Note: this list (in reverse chronological order) is probably incomplete; please respond if you know of additional incidents! 2024-07-31 "Sitting Ducks" attacks/DNS hijacks: mis-issued certificates for possibly more than 35.000 domains by Let’s Encrypt and DigiCert: https://blogs.infoblox.com/threat-intelligence/who-knew-domain-hijacking-is-so-easy/ (src: https://www.bleepingcomputer.com/news/security/sitting-ducks-dns-attacks-let-hackers-hijack-over-35-000-domains/) 2024-07-23 Let's Encrypt mis-issued 34 certificates,revokes 27 for dydx.exchange: see 🧵#2/3 in this series of toots 2023-11-03 jabber.ru MitMed/AitMed in German hosting center https://notes.valdikss.org.ru/jabber.ru-mitm/ 2023-11-01 KlaySwap en Celer Bridge BGP-hijacks described https://www.certik.com/resources/blog/1NHvPnvZ8EUjVVs4KZ4L8h-bgp-hijacking-how-hackers-circumvent-internet-routing-security-to-tear-the 2023-09-01 Biggest BGP Incidents/BGP-hijacks/BGP hijacks https://blog.lacnic.net/en/routing/a-brief-history-of-the-internets-biggest-bgp-incidents 2022-09-22 BGP-hijack mis-issued GoGetSSL DV certificate https://arstechnica.com/information-technology/2022/09/how-3-hours-of-inaction-from-amazon-cost-cryptocurrency-holders-235000/ 2022-09-09 Celer Bridge incident analysis https://www.coinbase.com/en-nl/blog/celer-bridge-incident-analysis 2022-02-16 Crypto Exchange KLAYswap Loses $1.9M After BGP Hijack https://www.bankinfosecurity.com/crypto-exchange-klayswap-loses-19m-after-bgp-hijack-a-18518 🌘BACKGROUND INFO🌒 2024-08-01 "Cloudflare once again comes under pressure for enabling abusive sites (Dan Goodin - Aug 1, 2024) https://arstechnica.com/security/2024/07/cloudflare-once-again-comes-under-pressure-for-enabling-abusive-sites/ 2018-08-15 Usenix-18: "Bamboozling Certificate Authorities with BGP" https://www.usenix.org/conference/usenixsecurity18/presentation/birge-lee Edited 2024-09-05 14:19 UTC: corrected the link for the "jabber.ru" incident. #DV #LE #LetsEncrypt #Certificates #Certs #Misissuance #Mis_issuance #Revocation #Revoked #Weaknessess #WeakCertificates #WeakAuthentication #Authentication #Impersonation #Identification #Infosec #DNS #DNSHijacks #SquareSpace #Authorization #UnauthorizedChanges #UnauthorizedModifications #DeFi #dydx_exchange #CryptoCoins