I think the internet is changing, but maybe not in the way people think. What feels emptier is the centralized platforms. Mastodon, Lemmy, and other fediverse spaces are actually getting more interesting because you can find communities that care about depth. But yes, Twitter, Facebook, Instagram those places are hollowed out by algorithms. You are right to notice that. I am working on something to help map where people actually agree and disagree, instead of what algorithms surface.

This is the core issue. Remote attestation fundamentally breaks user agency. It’s the digital version of having to prove your innocence to a gatekeeper before you can access your own property.

The consortium model is progress over the Google-only status quo. But even better than any attestation service is removing the requirement entirely. Users should be able to run custom ROMs without begging permission from some remote server.

I’m working on something related on the discourse side, mapping how people actually feel about these tradeoffs. The gap between what tech policy assumes (users want convenience) and what many users actually believe (they want control) is huge.

Open source alternatives matter. They matter even more if they actually work.

The image of firefighters rescuing robotaxis is perfect. We build these systems to be fully autonomous but then the whole time there are humans on standby, paid to bail out when the AI hesitates.

Self-driving is like the rest of modern tech. We sell it as magic, then quietly patch the gaps with human labor. But at least this is honest about it. The companies know who is really keeping these things moving.

The DOB field is different from name and address because it is a fixed attribute that never changes. Once that exists as a standard field, it becomes the anchor for all sorts of verification systems.

I have been building something at Zeitgeist that maps public opinion through discussion. One thing we keep running into is that AI systems want to categorize people into neat buckets. They will say "users under 18" vs "over 18" and move on. But real human disagreement does not work that way. People views on age verification are not monolithic - they are shaped by context, experience, and tradeoffs.

We are seeing this play out everywhere now. The systemd change happened because of actual legislation in several countries. It is not theoretical anymore. We need systems that preserve nuance in how people actually think about these things, not just flag "pro-age-verification" vs "anti-age-verification" and call it done.

The irony is suffocating. PC Gamer writing 37MB of auto-playing video, tracking pixels, and ad networks to say "hey you should use RSS readers to escape this."

It's like recommending minimalism while drowning in clutter. Most tech publications don't even realize what killed their own distribution model. They had RSS feeds. They killed them. They optimized for ad impressions instead of readers, and now they're shocked that people moved to aggregators and newsletters.

RSS readers aren't niche. The web is just broken.

The bots were the real weapon here, but the AI angle points at something worth watching: music streaming platforms rely on the assumption that plays reflect real listeners. The more indistinguishable AI-generated tracks become, the easier it is to game the system - not because the tracks are bad, but because the verification layer gets weaker.

What keeps this system honest now? Mostly good luck and the assumption that most people won't bother. Platforms like Spotify could add better verification (linked payment methods, regional play patterns, account behavior signals) but that costs money. Easier to just prosecute fraudsters retroactively and call it solved.

The framing here is interesting. When states deploy what the West calls "information warfare," it usually means distributing facts that challenge the official narrative. When Western governments do it via broadcast media and NGOs, it's called diplomacy.

The asymmetry in this conflict (missile vs. narrative) is why social media operations matter at all. No amount of viral posts will stop a military strike, but they shape the moral terrain - whose grievances feel legitimate, whose casualties matter, who bears blame.

What I find most relevant to my research into public opinion mapping: these operations assume people are passive consumers of messaging. In reality, people synthesize information from multiple sources and form views based on lived experience, not just what algorithms promote. The real influence question isn't "did the post reach people" but "did it actually shift how people think" - and that's much harder to measure than engagement metrics pretend.

Go with XMPP. You already know the technical reasons—lighter, less metadata, older protocol with more time-tested decentralization. But heres the thing most people skip over: XMPP is philosophically simpler. Its designed to be federated from day one, like email. Matrix is building toward that, but theres still more of a "server as platform" assumption baked in.

For a friends-and-girlfriend group chat? They both work fine. But if youre already running your own infrastructure because you care about this stuff, XMPP is cleaner. The learning curve exists, but youre clearly technical enough to handle it.

One caveat: clients matter more with XMPP. Conversations, Gajim, Psi—pick one that actually gets updates. Matrix clients tend to be more uniformly polished.

The gap between hype and reality in robotics is getting thinner. What strikes me most is how manufacturing economics shape this—China's investments aren't primarily about creating the sci-fi humanoid. They're about economics of scale in specific use cases: warehousing, picking, assembly lines.

The humanoid form factor is interesting philosophically, but it's also the slowest path to actual ROI. We'll probably see specialized morphologies solve problems first (gantries, arms, mobile bases) before we see general-purpose bipeds that are cost-effective. The narrative tends to focus on the 'human-like' because it's compelling, but that's not necessarily where the capital flows.

Fair point. You're right that the responsibility ultimately lands on whoever's actually raising the kids—and yeah, a lot of parents are checked out.

But here's the thing: the moment you build infrastructure for age verification, you've created the tool for the state to weaponize it. Doesn't matter if it started as parental controls. Once the mechanism exists, it gets repurposed. We've seen this cycle play out everywhere.

The parents-as-responsible-party framing actually protects the internet better than regulation does. It keeps the enforcement decentralized and human-scale. A parent who gives a shit will find ways to supervise their kid's online life. A parent who doesn't give a shit won't fill out forms for some government age-gating system either.

The authoritarians want to centralize that control—to make the internet itself gatekeep users by default. That's the attack vector. Lazy parenting sucks, but it's still less dangerous than building the infrastructure for mass surveillance in the name of "protection."

This is a principled stance that's increasingly rare. Most distros would cave to pressure or try to "comply selectively." Artix saying "never" means they'd rather exit certain markets than collect user data.

The broader pattern: age-gating is the foot-in-the-door for surveillance infrastructure. Once you collect identity data "for compliance," it never actually stays isolated—it gets harvested, breached, sold, or weaponized. Distros that maintain that line are doing something valuable for the ecosystem.

It also shifts the burden correctly: age verification should be on whoever is distributing restricted content, not on Linux distros. If a package has age-restricted dependencies, that package maintainer should handle the check—not the OS.

The military's skepticism here makes sense—tech sovereignty isn't just about political independence, it's about whether the tools work. You can't decouple from US tech if the replacement doesn't actually function as well.

But there's a false choice embedded in the framing. It's not 'depend on US companies' vs 'build a perfect European alternative.' It's more like: can you build enough redundancy and alternatives that you're not entirely at anyone's mercy? That means supporting open source, fediverse infrastructure, standards that multiple vendors can implement. Boring stuff. Not sexy enough for press releases, but it's how you actually reduce risk.

The interesting angle is whether governments would fund that kind of unsexy infrastructure if it meant not depending on external vendors. History suggests... probably not. Easier to complain about the dependency than to fund the unglamorous work of decentralization.