Ah, I get it. Yes. That section is weird. And it’s unalike the bureaucrat English around it. And I’d say the call to action: “Embark on a journey […]” is pretty much like ChatGPT sounded 2 years ago. I’m fairly certain the other text comes from humans with some expertise in writing legalese or specifications, and this will be a ChatGPT snippet.

The committer also has this weird habit of naming their commits “Update Readme.md”. So I’m also fairly sure they’re not your average open-source developer using Git how it’s intended.

Most other markdown files in that specific directory smell of ChatGPT as well.

Well, in theory it’s your software anyway… In case you’re an EU citizen.

Depends on where you’re at. If that’s Germany or close to it, we have the Digitalcourage DNS server, OpenNIC. I haven’t tested anything else but there’s also dnsforge.de, Digitale Gesellschaft in Switzerland, and of course Quad9 who operate globally.

Huh, where did you find emojis? I found one lightbulb emoji in the iOS README. And some in their bio. But that’s basically it for the 7 READMEs of the various sub-projects?!

My first thought was, has someone considered filing a bug report? But boy are the issues and PRs bad. Someone linked the Xitter post, though.

https://github.com/eu-digital-identity-wallet/av-app-android-wallet-ui

Dunno what kind of state the project is in. Seems development is very active. Maybe it’s more an early tech demo? But they should probably be more upfront, if it is… And not have Ursula announce this is an App?!

And does the EU Wallet App (which it is forked from) contain the same basic design flaws?

I found some info here: https://ageverification.dev/

But that’s difficult to read, very technical. And mostly written from the user perspective. It looks to me like they’re (for once) trying to come up with a proper solution. Everyone can be an Attestation Provider, Relying Party or repurpose the white-label App. At least in theory. It’s all specified and in the open. And then the European Union contributes some list of trustworthy Attestation Providers (governments, banks, mobile network providers…)

I think due to the project structure, it’ll be more like the Covid-Certificate App, which could be customized by every member state and it’s theoretically possible to use it as one uniform solution.

So unless there’s some certification for “Relying Parties” which I missed while skimming the documentation, I’d say in theory it’d be possible to use it on a technical level. Of course it’s still a preview so the EU has lots of opportunity left to mess it up.

Thanks for the nice conversation.

Now that OP is inactive, I can also spoil the surprise: My link further up was Rick Astley singing: Never Gonna Give You Up.

It’s safe to click. I just figured since OP isn’t listening to answers, I’ll give them some video to learn -hands-on- about videos on the Darknet.

If someone had clicked the link, they’d get the opportunity to learn how fast or slow a video loads. And how it (likely) first requires the user to lift some security measures or videos won’t load at all. (At least my browser does, there’s no JS and then NoScript also complains about the media file.)

We and other people in the comments pointed that out in the proceeding conversation. But nobody clicked the link anyway. I always have the feeling the groups of Threadiverse users and people with the capacity to surf the Darknet are pretty much disjoint groups. But it’s really nice to once and again talk to someone with some more knowledge and/or first hand experience. 👍

Does the App allow random platforms to do verification? Or do we need to be some registered business, do contracts, likely pay for the service…? For the App to speak to our instances?

I think we’re somewhat on the same page here.

That means going through an exit node […]

I2P doesn’t have exit nodes. Once you load content from outside the network, that won’t be via I2P, only chance is to get it directly via another connection. For example your default internet connection. So either the browser or operating system is configured to block that. Or you’ll leak your IP.

Then you didn’t have ‘Safest’ mode enabled

Yeah, that’s why I said, use a dedicated browser for that. Something preconfigured to not allow any of that.
Yet better: Use Tails like recommended by Snowden.

Those are called bugs and they do happen […]

I’m not so sure about this… Is “safest” mode really all you need? And does it reliably deal with 100% of the attack vectors? Last time I tried it wasn’t too good for example against browser fingerprinting (which doesn’t reveal an IP, but might be bad as well). And there’s a million ways from WebRTC, to trying to get the IPv6 address if all you did is configure an IPv4 proxy, DNS leaks, browser plugins, the webfont system does a lot of weird things, all the things done to do multimedia are very complex and might offer side-channels, I recently learned how to extract some information with CSS alone, no JS needed… Does “safest” really do a 100% job? I mean what I’ve done until now is to discourage people to mess with their browser settings themselves because it’s (a) easy to make mistakes or miss something, and (b) I wasn’t sure if that setting even does all the heavy-lifting without going into detail with all the other changes for example TOR browser bundle has?!

I’d need to look it up but I think there’s a lot of opportunity without resorting to 0-days.

EDIT […]

Yeah, I think that’s why good (and easy to use) pron sites you’d “recommend to people” aren’t really a thing on there.

And there’s the other thing that horny people might just click “allow” on something, because their brain is currently not in logical thinking mode.

First, this was an I2P link not a Tor .onion link. They are different, non-interoperable anonymity protocols.

True. I wasn’t sure what people use to access I2P sites.

first the whole point of Tor and I2P both is that nobody knows your IP address. Not even the website operator.

Sure. And then they load some resource via the clearnet and get your IP address anyway. Or use WebRTC, or one of the several other methods to squeeze an IP out of a browser.

Lastly, if you’re taking the trouble to use Tor or I2P in the first place – turn off javascript.

And now your porn site doesn’t show videos anymore 😁 I have a hunch, this is one of the two reasons why there aren’t any good porn sites around… Despite OP not liking that answer…

Yeah. If you’re clever you use some TOR browser bundle or something like that to access the Darknet. Not only for security. You also void your anonymity / privacy once you use just any random regular browser.

The Darknet is a bit of a mixture of people who use it for legitimate purposes, people who tinker around, and some shady people and trolls. So you’d expect some chance of someone trying to use JavaScript against you, or leverage other browser techniques to leak your IP etc… It’s not a frequent thing by any means, but it’s a possibility.

@desonic@lemmy.cafe http://n435xd44643mslbeu7ff2qljgqmjx7q5xba5ov4ynhgtex5v7cfa.b32.i2p/

Are you stupid? Why do you down-vote everyone giving you answers to your question?

Yeah, I don’t think porn is where TOR or I2P shines. You’ll find a better selection on Pornhub. Or a clearnet image board / Reddit if pictures are your thing. And by the way: Pornhub used to have a TOR mirror: http://pornhubthbh7ap3u.onion/ Seems to be down, though. At least it doesn’t load for me.

Sure. Germany has an arms industry. We sell submarines, Leopard tanks, drones… And they’re used all around the world for destruction and to kill people.

I think it’s fascinating tech. And fun to play with. But I think a lot if the every-day use-cases are more of a gimmick. In the good old times we could look up facts on Wikipedia. Or google why the yellow light on the router started flashing and we’d find an answer on Reddit. Now we ask ChatGPT, but that alone doen’t increase my quality of life. I’d rather have it sort the mess on my 8TB hdd, find a cheaper insurance company for the car. Do my stupid paperwork at home… And maybe I’d like an AI robot to do the chores for me. Laundry, dishes… So I can relax and do other things. But I feel it’s still early days for the really useful tasks. AI is more useful for replacing callcenter workers, assisting programmers… And unfortunately it’s bad for the environment and makes computer hardware unaffordable.

Empathy and availability are great. Listen to them, respect their struggles growing up. I don’t think that necessarily means being strict/authoritative or lenient, for me it means more feeling respected as a person. And a sane, straightforward way to deal with mistakes. Because we all make mistakes. Especially while learning and growing up.

And I’d say shared memories are awesome. Whatever that means for you. Go on a Canoe trip, teach them how to fix their bike, do woodworks, drill a hole into the wall or bake a cake.

According to their documentation “EU data residency” is an enterprise feature. Not sure if that’s available to regular end customers?! The top models all come with inference by companies based in California (USA) or China.

Hmmh. I think you already found the well-known services. I found one more: regolo.ai from Seeweb?!

But I’m not aware of anything that properly fits what you’re asking for.

I’ll mostly tinker around with RunPod instances. But that’s not what you’re looking for. If you find something good and cheap (and prepaid) I might have some use-cases for it as well. Like connect my Home Assistant voice assistant to it.

There’s Mistral AI in France. And Microsoft offers the OpenAI/ChatGPT models running in EU datacenters as part of Azure.

And if you’re willing to set it up yourself, you can always rent a cloud server with some beefy GPUs and run arbitrary workloads on it. Your favourite AI models, games or whatever you like. OVH or RunPod.io for example have Linux servers with GPU access.