I am not sure open source can reproduce the “LinkedIn experience”. I’m also not sure that’s a huge loss. That place is a dumpster fire on a steep hill.

Does it support unit dependencies? That’s pretty much the only reason I use systemd outside of work. Edit: ah yeah it sure does. I know what I’m playing with next weekend.

Yeah, I had a good laugh at this. Half of the commits I review are coauthored by Claude, a fact that I’m sure Anthropic is thrilled to claim, but this colossal fuck up was obviously the work of a rogue intern or something.

Attorney-Client Privilege. Sorry, I should have just said it.

For anyone who might have avoided this part of the world, ACP makes communications between you and your counsel inadmissible in court. In big companies, it’s somewhat common to bring lawyers into discussions under the auspices of seeking legal advice, but primarily to ensure that if any artifact from that discussion were to be uncovered by an adversary, it couldn’t be used in a lawsuit.

That’s an impressive investigation.

It would be tough to find a better example of why lobbying in the US is fundamentally broken. An entity like Meta has ample funding to break up an operation into distinct cells that do not directly interact in public forums, while tracking the whole process in documents protected by ACP. I think it’s particularly telling that Meta lobbyists are quietly nodding along legislation pushed by “grass roots” activists and that Meta’s new OS just happens to implement the technology exactly as described in the law.

It’s that sort of coordinated effort that the RICO act was drafted specifically to address, but it’s perfectly legal.

This might seem like a very indirect response, and that’s because it is largely a notion I have after a couple years of observing the fediverse. My background is in infrastructure for micro services, which is a powerful source of bias, so take this with a grain of salt.

The fediverse is suffering from major problems caused by homogeneity, data duplication, and lack of meaningful coordination. It is completely unsurprising that it struggles to provide the level of service that most users expect. I’m not saying this to be mean, but because I’ve experienced these same growing pains in commercial settings.

The solution has always been to restructure product services in a way that separates concerns. Most of the big guys will, at a very high level, use an API gateway which handles security + authn, then forward requests to high level product services which in turn reach down to the data layer services (which are often ORMs with huge caches sitting on top of databases). Works great, usually.

The fediverse, from what I’ve seen, does not do this. Everyone sets up largely identical monolithic applications which share messages through the Pubsub protocol. Information is duplicated everywhere, and inter-instance communications are a liability not only in content but even in compute and persistence (you can absolutely get DDOS’d by a noisy neighbor). Individual instances are responsible for their own edge security, compute, and data. It’s just a lot to ask of a single person that wants to host a federated instance.

I think that a healthy federated internet will eventually require highly specialized instances at several layers, and for certain maintainers to thanklessly support the public facing services. One of the most obvious classes of these specialized instances, to me, would be the data layer and catching instances, which exist to ensure that content posted on one instance is backed up and served for other instances. It reduces the strain on public facing instances because they no longer have to host all the content they’ve ever seen, and it also ensures that if a public instance goes down, the content does not disappear with it.

This same principle could be used on “gateway” or “bastion” instances which enforce strict security on behalf of public instances. Public instances would block direct connections while treating requests from the gateway nodes as highly privileged. Each public instance would either find a gateway instance to protect it or handle its own security and inter-instance communications.

This obviously isn’t a complete solution, and it’s a hell of a long way from a technical specification, but my hope is that others who are looking at the weird and wonderful landscape of our new internet are having similar concerns and reaching similar conclusions.