Once in a while I see posts claiming doom and gloom on Free Software security, and they dare wave the flag of the Xz attack, from a high pedestal.

The weirdest and worst case was Veritassium's recent (and shameful IMHO) video.

My comment:

A highly specialized, and long term planning attack, was caught before it did any real harm because of, not in spite of, Free Software's inherently better security model.

Dear #FreeSoftware developers...

These governmental attestation requirements popping up all over the world are nothing but a visible escalation step in the war on generic computing.

@pluralistic spoke about it in 2011 and here's a nice transcript for you https://en.wikisource.org/wiki/The_Coming_War_on_General_Computation

I'm not modest enough to not say I was also looking at those writings in the wall, but he's a much better speaker.

Go read that, and please, please, please...

Stop collaborating with the authoritarians.

So I just got an email from @fsfe with the information that by defending the privacy of it's supporters from its payment provider they got their contract suddenly cancelled?

This is preposterous.

It seems scandalous to me that these fascist organizations are allowed (maybe ordered by law) to be gatekeepers between citizen movements and their supporters with the power to arbitrarily cut them off.

Note: DKIM evaluation is a pass, so I have no reason to doubt this.

People are pretending it's ok to collaborate with government/law mandates for attestation because we live in democracies.

You need only look at what happens in China to know you're wrong.

Please do.

The answer to those government calls for ID/age/whatever attestation should be the same that is being given by some AI companies regarding usage in autonomous weapons: **NO**.

And it should be loud.

And most importantly, IMHO, absolutely no #FreeSoftware worth its license should ever be a willing collaborationist to the future dictators.