We could theoretically use machine learning tools to examine open source code-bases in order to detect intentional tampering done by potential bad actors.
That could be kind of interesting. You gotta figure "bad actors" have certain signatures, and might help flush out malicious saboteur accounts.
Just a thought.
We could just:
1. Set up one unified package repository common to all distros. Or say Debian alone.
2. Set up an audit pipeline of human oversight on every commit going into that repo. Nothing makes it in without a million eyeballs scouring it.
3. If it's a distro-independent repo, developers from all distros join the audit process. All eyes like lasers on one pipeline.
4. Set up proper crypto signatures for each distro. Doing so per package complicates it a bit.
@purrperl a million eyeballs is less practical than the tools we are developing today.
Finding 1,000,000 to care about ncmpc (as just one example of an open source project) would be really difficult. It shouldn't be, but we do a poor job of teaching computer literacy to people at the moment.
That alone might spark more interest in free and open code, especially given what the alternatives are.
And many bugs are non-obvious, which is why projects like the Linux kernel, which sees a lot of eyes, still has critical vulnerabilities.
We can either learn to use the tools or hope they poof and disappear, and I don't put great odds on that happening, as the current-day tools are already being leveraged to do some serious work (most of it bad, because it is not in the hands of the masses.)
The way the tools are used has almost always been the problem, with every tool we have so-far developed. Moderation is key.
A million eyes is a metaphor, from Eric S. Raymond's famous saying, "Under a million eyeballs, all bugs are shallow."
If lots of people use the GIMP, it gets more eyeballs, naturally.
@purrperl absolutely. A percentage of the Gimp users would lend time to code-review.
The problem we are also facing is that most people don't want to lend their eyes for free, even if the software is free.
But that issue is a whole other ball of wax.
1. Not all people are programmers /documentation writers etc.
So they couldn't contribute to the repo easily, even with the will to.
2. The #FOSS ecosystem was deliberately kept fragmented, hyped as hard-to-use, out of the hands of the average user by closed source barons. With easy mechanisms to contribute something even as simple as bug reports, FOSS thrives.
3. The real asset is attention, which was used up by chasing everyday needs. Meet needs, unleash a flood of attention.
That was definitely true in the past. Yet, a unified distro with proper PR, advertising, user education, and outreach, makes it fun and easy for people to contribute to each #FOSS project. So people feel empowered to do their civic duty, and make software better for all.
"I'm doing my part!"
~ Starship Troopers.
This looks like a job for me. đ
@purrperl what you seem to want to do is somehow bring all open source projects under the same roof with some sort of hierarchy to manage the code-bases.
Am I following this properly?
Better resource utilization.
Convergence rather than fragmentation.
Freedom from the closed source FUD of the past.
Dare I say it, one distro to rule them all. đ
If you say, "I've got some software you can use, but you have to pay me to use it, and I won't show you the source code, and I decide how you can use it, and you have to update it at my schedule, and upgrades to next versions are not free, and there's always paranoia about security.", you would be laughed out of town.
It's Free as usual.
Say Codeberg, rather than some proprietary git host.
Nothing prevents people from forking off projects, and experimenting.
In fact, it is welcomed!
However, those forked packages won't be trusted, only the mainline packages.
If a fork is ever to make it into the trusted main branch, it will have to undergo the same rigorous audit.
@purrperl I think all of that works against the strong reason open source has seen the success it has, which is its anarchistic nature.
Centralizing all projects under one roof seems like a good idea until that roof falls down.
"Roof falls down" ? How so?
Anarchism just means no authorities.
Democracy is Anarchism in Government.
Science is Anarchism in Knowledge.
Art is Anarchism is Aesthetics.
Random experimentation with code, starting from scratch, or from a fork of the Free Software mainline remains free as ever, and is encouraged.
@purrperl well, who is operating the website that hosts all of this, how is it being paid for, is its code also subject to arduous examination?
Anarchism eschews hierarchies of all kinds wherever they are not justifiable.
Deliberately placing onerous restrictions on projects of all sizes seems extreme and would need some serious justifying.
Where is the hierarchy?
We have been brainwashed with the idea that "anarchy" is a bad word.
Say "anarchy" to the average person, and their mind emotionally pulls up images of rampant lawlessness, looting, arson, vandalism, murder, rape and robbery in the streets.
A True Democracy really is an Anarchism.
As Alan Moore said, what happens in an Anarchism, is that the most powerful faction takes over. And that is what happened in the Untied Snakes of Armored Cars. With good PR.
Again, you have seized upon the million eyes as a literal number.
A small group of core maintainers runs Linux and has definite authority over what goes in.
In the new model, even their power is dissipated. It's more programmatic and democratic.
It's a priming / bootstrapping problem to transition. It takes land-based vehicle to tow an engine-less glider and generate the lift to get it off the ground. Once launched, it can cruise on thermal currents, and solar energy, practically indefinitely.
In the new model, the current core programmers, whom we deem to be honest, code up a mechanism setting up a number of sign-offs required for new code to make the final cut. That number becomes subject to the same audit process.
"We the People...", means everybody.
GNU/Linux wasn't born yesterday.
There's a sizable crowd of people behind it.
They all trust it.
Once the new decentralized model is up and running, it is radically transparent and democratic.
People in the continent of North Vespuccia didn't choose to become a democracy ( republic ).
It took a cohort of slaveholders to declare themselves the Founding Fathers ( Mack Daddies with slave girls to entertain them in their private quarters. đ )
Who said anything about removing anyone?
It's the Linux OGs giving love to the street, handing over their co-creation to the people.
Helping people unify, empower themselves, and become involved easily.
Nobody is axed or excluded.
Code is code. Contributors cannot be smeared and shunned.
Anyone can commit, even if they are an unpopular human, a đ€ , an đœ , or something else.
"Hey, did you hear that RMS is a creep, and ESR is a pervert?"
"A study funded by Microsoft found that most Open Source developers have unresolved issues." đ
@purrperl everyone _CAN_ currently commit and make changes to a local clone of the kernel source code.
Whether their patches are approved is up to existing developers of the Linux kernel project.
Yes, and it was fragmented into distros, mired in confusion.
One repo, one distro mainline, one audit pipeline, one easy way to report bugs.
@purrperl what was fragmented into distros and mired in confusion?
Are you saying Debian and RedHat maintain their own forks of the kernel?
My issue is that Linux was for and by nerds.
The new Linux is more akin to macOS, beautiful eye-candy, elegant design, except Free.
@purrperl oh. You aren't complaining about the "new Linux"...
What are your issues with the eye-candy heavy desktop environments like KDE and Cinnamon?
The problem was that they were "too customizable".
macOS did not ask you to choose a Window Manager & Desktop out of the box.
The Golden Path, "just worked".
Linux required you to know a lot to be workable.
You could make it laden with eyecandy, or use something as spartan as fvwm.
In the new Linux ( working title: Red Gnome ), the Golden Path just works out of the box, without asking thorny questions of the user.
The choice is not either/or:
https://rant.li/ashwin/apple
Since 1995, I have distro-hopped, ( Yggdrasil, Slackware, SuSE, Red Hat, Mint, Ubuntu, even OpenSolaris, FreeBSD & OpenBSD etc. ), and finally settled on Debian+GNOME, which is less customizable than KDE, therefore less confusing.
Now, I am drawn to nixOS, except I'd like to nix the nix language.
@purrperl Linux in 1995 was very different from Linux in 2025.
Have you installed Linux Mint recently? Or Ubuntu? Or Fedora?
The Linux install process from 1995 was DRAMATICALLY different from the install process today.
Much like installing Windows in 1995 had a different feel than installing it today.
@purrperl here's my proposal to you: start your own Linux distribution.
ONLY include open source projects that have the required rigorous commit approval you are looking for and deem 'safe'.
Make your installer just automatically blast away the partition and install the desktop environment YOU think is
"The Best(tm)" and make it extremely polished with others' help.
Whatever your issue is with Debian or whatever other distro you've tried -- do it differently and fix it.
@purrperl let me also point out that the reason macOS and Windows are as popular as they are is because those are what students in school and kids that first interact with a computer experience.
The reason it is the first thing they experience is because Microsoft and Apple have tremendous amount of money to throw at that problem and put things in schools to indoctrinate children.
As such you have a society where fewer people grow up around a computer that is running linux, and you get fewer people that know linux, which means there are fewer teachers to advocate for linux in the classroom.
It is not because they are "easy" to install. It is because any computer someone buys from a major manufacturer comes with either macOS or Windows installed for them.
In the realm of advertising Windows and macOS are Coke and Pepsi, while linux is RC Cola. I fucking LOVE RC Cola,
Apple is like going to a fine Sushi restaurant, đŁ where everything is arranged thoughtfully, you are welcomed in, the Chef is very polite, and sushi is served nicely arranged on a platter for you to appreciate and gobble down with ease.
Linux is like someone throwing you a fishing rod, đŁ hook, line, and sinker. Go fish. Clean it, and cook it however you like. Good luck. You want to really learn how to fish? Hang out with the experienced fishermen â curmudgeonly, salty sea dogs.
At that rate, we will never have The Year of Linux on the Desktop.
That's all. That's what I am addressing.
A radical Linux distribution, designed for the masses.
User mode: Highly streamlined. No confusing junk/guesswork/technical questions.
GUI only. No CLI.
Expert mode: Highly customizable, without touching the source code. Similar to present day Linux geeks tweaking their setup with themes, custom technical configs. Both GUI & CLI.
Dev mode: Lets you edit the source of any app, and the OS itself. Edit & see changes running live, ASAP. Can fall back to last known good version.
contd.
nixOS lets you run apps in isolation, making Dev mode possible.
Bring in some talented designers ( ala macOS ) to do the UX.
Nice fonts. Consistent & elegant design.
@purrperl how does nixOS run a program in isolation?
Sounds like you've got a great plan for yourself -- make it so.
I am in physical pain, homeless in Japan, after facing persecution as a whistleblower in USA.
https://whistleblower.lovestoblog.com/
Cut out by banks out of my own money. Thrown on the street. Hounded by cops, Denied public defense in court. ET freakin' CETERA!
I do whatever creative stuff I can to keep my spirits and dreams alive, while I am down on the street. Without being creative, I would not have survived over 2 years of homelessness.
Please check out the photo albums in my profile. On the street, it's hard to do much focused work for extended periods. But a camera lets me pause and capture beauty around me. I deliberately don't photograph the gritty, dark reality I live in. Art is my lifeboat.
1/2
Once I get food, housing, and medical care, I will turn my camera and narrative onto the street, and bring to the world, reporting of the lives of the homeless people I encountered on the streets, in California, Hawai'i, and Japan. It's the least I can do, with the privilege I have, and to pay forward the kindness I received from strangers along the way.
One photo is from the public restroom where I slept last night, taking shelter from the freezing night winds of Tokyo.
The other photo is from this morning, ready to face the day, again. And all that Jazz! đ
Yes, living rough can make one angry. I remind myself of Terry Pratchett's advice regarding "militant decency".
People here call me ć±ăȘă / "Abunai" / Dangerous.
Guess I should take it as a compliment, like Michael Jackson's album. đ
It's been "The Year of Linux on the Desktop" ( a silly joke with rolling eyes đ ) for 20 years now.
Let's really fuckin' make it so.
You may be fine with Linux as a desktop, and so are many other techies.
Yet, it remains hard to use, and not user-friendly and inviting.
Let's solve the problem for everybody, not just us nerds.
Ok, now I am sensing that you are being disingenuous. đ
Or maybe I am mistaken. Maybe like most Linux geeks, you just don't see why it is hard for grandma to use. The same lady who can use a macOS for her purposes, without knowing how to configure tons of stuff. Even macOS is too complicated, since it's more like the Expert mode described above. Dev mode in the new distro ( call it LinuxSushi ) will be even more streamlined. Grandma should never have to configure stuff.
LinuxSushi will be better than macOS.
macOS combines what I call User mode and Expert mode.
LinuxSushi will make the Golden Path dead simple.
Pope Bob the Unsane
Ashwin Dixit