this post was submitted on 29 Jul 2023
251 points (99.6% liked)

Programming

17378 readers
424 users here now

Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!

Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.

Hope you enjoy the instance!

Rules

Rules

  • Follow the programming.dev instance rules
  • Keep content related to programming in some way
  • If you're posting long videos try to add in some form of tldr for those who don't want to watch videos

Wormhole

Follow the wormhole through a path of communities !webdev@programming.dev

founded 1 year ago
MODERATORS
snowe@programming.dev
Ategon@programming.dev
MaungaHikoi@lemmy.nz
251
Google Tries to Defend Its Web Environment Integrity as Critics Slam It as Dangerous (techreport.com)
submitted 1 year ago by ruffsl@programming.dev to c/programming@programming.dev
84 comments fedilink hide all child comments
 

Attacks and doxing make me personally MORE likely to support stronger safety features in chromium, as such acts increase my suspicion that there is significant intimidation from criminals who are afraid this feature will disrupt their illegal and/or unethical businesses, and I don't give in to criminals or bullies

Kick a puppy
Get attacked for kicking a puppy
"These attacks make me MORE likely to keep kicking puppies, as I don't give in to intimidation from criminals and bullies that want healthy puppies for their nefarious ends."

top 50 comments
sorted by: hot top controversial new old
[–] Badland9085@lemm.ee 51 points 1 year ago (2 children)

They’re literally burning bridges after crossing them huh. Web scraping is illegal? Their fucking search engine was powered by a web scraper.

WEI is plain anti-competition to me now. Most, if not all, of their stated reasons are now just facade to me.

Fuck Google. I know this isn’t constructive or helpful, but fuck em.

[–] Laxaria@lemmy.world 22 points 1 year ago (1 children)

Google gained control of the web by populating the world with Chrome/Chromium and wants to strong arm the web as a whole through it. Climbing the ladder and pulling it up from underneath them, with their fisted approach to Manifest V3 the beginning salvo.

For Google it's just another day in the office.

[–] GenderNeutralBro@lemmy.sdf.org 19 points 1 year ago

Embrace, Extend, Extinguish.

Google is the new Microsoft.

[–] ultratiem@lemmy.ca 12 points 1 year ago* (last edited 1 year ago) (1 children)

The standard “but it’s different when we do it” principle. It’s a powerful tool.

[–] YonatanAvhar@programming.dev 5 points 1 year ago (1 children)

The reality distortion fields are strong around those Google statements

load more comments (1 replies)
[–] lazyvar@programming.dev 49 points 1 year ago (1 children)

The proposal is bad enough as it is, but it’s the duplicitous gaslighting BS that really pisses people off.

If they came out and said “We came up with this thing to prevent loss of revenue on ads and prevent LLMs from capturing data” then people would still be against it, but at least it would feel like an honest discussion.

Instead it’s just another page out of Google’s playbook we’ve seen many times already.

  1. Make up some thinly veiled use cases that supposedly highlight how this would benefit users, while significantly stretching the definition of “users”
  2. Gaslight every one by pretending that people simply misunderstand what you’re proposing and what you’re trying to achieve
  3. Pretend that nobody provides reasonable feedback because everyone is telling you not to commit murder in the first place instead of giving you tips on how to hide the body
  4. Latch onto the few, inevitable, cases of people going too far to paint everyone opposing it in a negative light
  5. Use that premise to explain why you had to unilaterally shut down any and all avenues for people to provide comment
  6. Make the announcement that you hear people and that you’re working on it and that all will be well
  7. Just do what you want anyways with minimal concessions if any and rinse repeat

For what it’s worth I blame W3C as well.
Their relatively young “Anti-Fraud Community Group” has essentially green lit this thing during meetings as can be seen here:

https://github.com/antifraudcg/meetings/blob/main/2023/05-26.md

https://github.com/antifraudcg/meetings/blob/main/2023/07-07-wei-side-meeting.md

[–] MonkderZweite@feddit.ch 13 points 1 year ago* (last edited 1 year ago) (2 children)

W3C is in the palms of Google anyway.

[–] ultratiem@lemmy.ca 5 points 1 year ago

I did not know this. I always likened them to the EFF, an organization that aimed to make things better. Never in a million years would I have thought they were just shills for Alphabet 🙁

[–] echodot@feddit.uk 4 points 1 year ago* (last edited 1 year ago)

Google has been the W3C since Chromium

[–] monkeyben@lemmy.sdf.org 32 points 1 year ago (4 children)

Google must have forgotten when they sued Microsoft for trying to corner the browser market for Internet Explorer. Or maybe they are two faced.

[–] hglman@lemmy.ml 18 points 1 year ago

Companies have only one goal, more profit. Both actions here work to that goal.

[–] msage@programming.dev 9 points 1 year ago

No no, they sued because they were behind.

Now they are not. Nothing wrong anymore.

[–] sickmatter@infosec.pub 5 points 1 year ago (3 children)

That was for tying IE to Windows, and it was also done while there were paid web browsers competing with them. Then they forced OEM PC makers to bundle IE or get dropped as a customer for Windows licenses.

load more comments (3 replies)
[–] squaresinger@feddit.de 4 points 1 year ago

Companies never sue because of idealism or values. They sue to get an advantage.

Same as Musk, who is publically harshly against government subsidies for companies. Unless he's the recipent.

[–] lazyvar@programming.dev 27 points 1 year ago (2 children)

WEI can potentially be used to impose restrictions on unlawful activities on the internet, such as downloading YouTube videos and other content, ad blocking, web scraping, etc.

Did the author of the article come from some dystopian parallel universe?

[–] oblique_strategies@lemmy.world 6 points 1 year ago

Yeah, violating TOS or EULA unlawful? Unbelievable bs. Imagine a world where users become criminals for routine and innocuous activities because of shifting TOS that no one reads and is intentionally impenetrable and user hostile.

Sad truth, this is not a new idea. Glad folks are looking out for this and setting precedent against that nonsense. (PDF warning, but a good read)

load more comments (1 replies)
[–] Sebeck012@feddit.nl 24 points 1 year ago (3 children)

Is it just me or are Twitter, Reddit, and now Google, scrambling to lock their doors to any entities trying to scrape the web for new AI datasets?

All these hugely unpopular decisions, taken on short notice, that may be fatal to their platforms, seem to be more like knee jerk reactions to protect their treasure hoards of possible AI input data.

Opinions?

[–] ruffsl@programming.dev 11 points 1 year ago (7 children)

scrambling to lock their doors

From a consumer perspective, it seems like all the FANG conglomerates are trying to shut the stable door after the AI horse has bolted, but perhaps from an industry perspective, their just trying to pull up the ladder behind themselves to curb competition, or stall any emerging upstarts, just like most FANGs where themselves only decades ago.

[–] kbotc@lemmy.world 6 points 1 year ago (12 children)

FANG isn’t really an accurate word anymore.

It’s MAAA: Meta, Apple, Alphabet, Amazon.

[–] oce@jlai.lu 7 points 1 year ago (1 children)

You're missing Microsoft, it's bigger than Meta.

[–] kameecoding@lemmy.world 18 points 1 year ago

oh, MAMAA

I've just killed a man.

[–] jadero@programming.dev 4 points 1 year ago

Bonus: it sounds like a scream of terror.

[–] ruffsl@programming.dev 4 points 1 year ago

They can try and reinvent themselves all they'd like, but I can't be bothered to keep up with their rebrandings if they can't be bothered to commit and sell off the domain name. Something something sacrifice, something, law of Equivalent exchange. /s

load more comments (9 replies)
load more comments (6 replies)
[–] FluffyPotato@lemmy.world 10 points 1 year ago (1 children)

I my experience the people running large companies are idiots who got their position by brown nosing the right people so it doesn't really surprise me. Google is pretty well known too for coming up with stupid ideas they scrap in a few years

load more comments (1 replies)
[–] Carion@lemmy.antemeridiem.xyz 5 points 1 year ago

They want to close the AI market

[–] Haui@discuss.tchncs.de 21 points 1 year ago (5 children)

Quick correction: website scraping and ad blocking is not unlawful. It both is a means to make the web more accessible and the latter also reduces CO2 emission through reducing electricity usage from irrelevant ads. The same case could be made for web scraping as a user can make their own feed of news without having to sift through hundreds of pages. This as well can be done in a way that does not disrupt the pages‘ normal function.

That is where the two larger issues come in:

  • people can argue that you need to pay for viewing a page/getting information through apps And
  • branding powerusers as criminals („unlawful“) is unfair and false

The „pay for information“ is largely a phylosophical problem. It is no problem to pay for someones book or online course but the blanket statement that one has to pay for it is false. As an open source developer I give my work freely to others and in turn receive theirs freely as well (if they use the appropriate license of course).

We really have two sides forming. The „open internet“ crowd that works together for free or maybe accepts donations and the proprietary crowd which is having a huge influence right now.

Google putting in web DRM will cement that situation and make it possible that you can only use vanilla stuff on your browser and ultimately even shutting down any access to open source things completely by making it impossible to run on ubuntu since google will only accept windows clients (this is a possible outcome, not a guaranteed one).

All in all, we are unable to perfectly anticipate the outcome of this but if we see great harming potential, it is fair to weigh it agains the potential benefits (which is the lofty goal of weeding out bots and scammers). I think the cost benefit relation is heavily tilted here.

TL;DR: Tinkering with your browser is not illegal and should be allowed to continue. The cost of (potentially) weeding out bots and scammers is not worth potentially ruining the open source community.

[–] Phoebe@feddit.de 9 points 1 year ago (1 children)

I work with cultural heritage and have the strong believe, that information should be open and easy accessible. Citizen have a right to access to knowledge and to educate themselves unter their circumstanses. But of course the Infrastructur cost money and this should always be a discurse between all parties. And not been dictated by major companies.

It is a really hard fight for museums, archives and libaries lately. What do you do when your electricity bill jumps up to 5 million during the war in the ukrain?

We need to unite and search for ways to keep the Internet accessible.

[–] Haui@discuss.tchncs.de 4 points 1 year ago (2 children)

I can relate. People like you are the structural pillars of our society.

I‘m not familiar to the laws concerning cultural heritage but some of the museums should be partially tax funded, no?

load more comments (2 replies)
load more comments (4 replies)
[–] xylogx@lemmy.world 10 points 1 year ago* (last edited 1 year ago) (2 children)

What exactly is the attestation checking? As far as I can tell it is a TPM assertion possibly that you have secure boot enables and that the browser has not been tampered with. Is there anything else? I looked in the Github page but alls that I saw was placeholders. Is this documented somewhere?

[–] festus@lemmy.ca 6 points 1 year ago

I think it's up to the attestor. So in theory it could check anything from what you described (most likely) to requiring that all users have a background image of Ronald McDonald (less likely).

[–] Max_P@lemmy.max-p.me 3 points 1 year ago (3 children)

It's TPM based on Android yes from the look of it, their article mentioned the Play Integrity API. So at least on phones it can potentially require a locked bootloader running the vendor's OS completely unmodified.

load more comments (3 replies)
[–] words_number@programming.dev 7 points 1 year ago (2 children)

That's a good initiative from google to put more tracktion behind firefox again. Its userbase and amount of supporters will skyrocket!

[–] ipkpjersi@lemmy.ml 16 points 1 year ago (1 children)

It really won't, but I wish it would.

[–] DeadlineX@lemm.ee 4 points 1 year ago (2 children)

You’re right that it won’t. I will say that I switched from Firefox to chrome when it was still in beta (nobody I talk to ever remembers the “goats teleported” metric). Chrome was way faster. It didn’t handle memory well, but it was the best for me for a long time. The extensions were great.

I just downloaded Firefox on all my devices and I’ve been happy so far. Not as fast as chrome or edge, but gets me closer to leaving google.

[–] ipkpjersi@lemmy.ml 5 points 1 year ago

I've been using Firefox since before they released their "Quantum" update, thankfully, and it's been quite good for me since then. Still though, we're going to need way more people switching to make a dent in Chromium - if it's even possible at this point.

load more comments (1 replies)
[–] agilob@programming.dev 3 points 1 year ago

No, it won't.

[–] floofloof@lemmy.ca 7 points 1 year ago (1 children)

Upvoted to keep attention on this thing, but that really was a vacuous article with almost no real information in it.

load more comments (1 replies)
[–] Legendsofanus@beehaw.org 4 points 1 year ago (1 children)

Off-Topic: I saw this same exact post in lemmy.world.

Are some posts posted cross-instances? How does that work.

[–] ruffsl@programming.dev 5 points 1 year ago

I think if the local and remote instances are federated - for posts submitted to remote communities that have subscribers from the local instance - posts to the local instance can be annotated with cross-posted to: links, whenever the local instance is aware of other federated posts that have a matching URL in other OP posts.

A single OP can manually cross post to other communities using the cross-post button next to the title of a post, although that will auto populate the body text of the new post with quoted text from the original, as well as an embedded hyperlink to the original.

So coss-posts can be both auto detected by Lemmy, or manually created by OP(s).

load more comments
view more: next ›