I've gotten a few bits of feedback asking for my thoughts and/or
reactions to the whole "xz backdoor" thing that happened over the past
couple of days. Most of my thoughts on the matter apply to autoconf and
friends, and they aren't great.
I don't have to cross paths with those tools too often these days, but
there was a point quite a while back when I was constantly building
things from source, and a ./configure --with-this --with-that was a
given. It was a small joy when the thing let me reuse the old configure
invocation so I didn't have to dig up the specifics again.
I got that the whole reason for autoconf's derpy little "recipes" is
that you want to know if the system you're on supports X, or can do Y,
or exactly what flavor of Z it has, so you can #ifdef around it or
whatever. It's not quite as relevant today, but sure, there was once a
time when a great many Unix systems existed and they all had their own
ways of handling stuff, and no two were the same.
So, okay, fine, at some point it made sense to run programs to
empirically determine what was supported on a given system. What I
don't understand is why we kept running those stupid little shell
snippets and little bits of C code over and over. It's like, okay, we
established that this particular system does <library function foobar>
with two args, not three. So why the hell are we constantly testing for
it over and over?
Why didn't we end up with a situation where it was just a standard thing
that had a small number of possible values, and it would just be set for
you somewhere? Whoever was responsible for building your system
(OS company, distribution packagers, whatever) could leave something in
/etc that says "X = flavor 1, Y = flavor 2" and so on down the line.
And, okay, fine, I get that there would have been all kinds of "real OS
companies" that wouldn't have wanted to stoop to the level of the dirty
free software hippies. Whatever. Those same hippies could have run the
tests ONCE per platform/OS combo, put the results into /etc themselves,
and then been done with it.
Then instead of testing all of that shit every time we built something
from source, we'd just drag in the pre-existing results and go from
there. It's not like the results were going to change on us. They were
a reflection of the way the kernel, C libraries, APIs and userspace
happened to work. Short of that changing, the results wouldn't change
either.
But no, we never got to that point, so it's still normal to ship a
.tar.gz with an absolute crap-ton of dumb little macro files that run
all kinds of inscrutable tests that give you the same answers that they
did the last time they ran on your machine or any other machine like
yours, and WILL give the same answers going forward.
That means it's totally normal to ship all kinds of really crazy looking
stuff, and so when someone noticed that and decided to use that as their
mechanism for extracting some badness from a so-called "test file" that
was actually laden with their binary code, is it so surprising that it
happened? To me, it seems inevitable.
Incidentally, I want to see what happens if people start taking tarballs
from various projects and diff them against the source code repos for
those same projects. Any file that "appears" in the tarball that's
allegedly due to auto[re]conf being run on the project had better match
something from the actual trees of autoconf, automake, ranlib, gettext,
or whatever else goofy meta-build stuff is being used these days.
... there's no build-to-host.m4 with that sha1sum out there, *except*
for the bad one in the xz release. That part was caught... but what
about every other auto* blob in every other project out there? Who or
what is checking those?
And finally, yes, I'm definitely biased. My own personal build system
has a little file that gets installed on a machine based on how the libs
and whatnot work on it. That means all of the Macs of a particular
version of the OS get the same file. All of the Debian boxes running
the same version get the same file, and so on down the line.
I don't keep asking the same questions every time I go to build stuff.
That's just madness.
Inertia is real. Seems at least part of it is so many people deciding to move on to new languages and toolchains, and evolving there … instead of trying to cater to build systems trying to keep compatibility with massively obsolete systems.
Billions of miles away at the edge of the Solar System, Voyager 1 has gone mad and has begun to die.
Let’s start with the “billions of miles”. Voyager 1 was launched in early September 1977. Jimmy Carter was a hopeful new President. Yugoslavia and the USSR were going concerns, as were American Motors, Pan Am, F.W. Woolworth, Fotomat booths, Borders bookshops, and Pier 1. Americans were watching Happy Days, M*A*S*H and Charlie’s Angels on television; their British cousins were watching George and Mildred, The Goodies, and Tom Baker as the Fourth Doctor. If you turned on the radio, “Hotel California” by The Eagles was alternating with “Dancing Queen” by Abba (and, if we want to be completely honest, “Car Wash” by Rose Royce). Most cars still ran on leaded gasoline, most phones were still rotary dial, and the Internet was a wonky idea that was still a few weeks from a working prototype.
_The Thorn Birds_ was on top of everyone’s bestseller list. The first Apple II home computer had just gone on sale. The Sex Pistols were in the studio wrapping up _Never Mind The Bollocks_; they would tour on it for just three months and then break up, and within another year Sid Vicious would be dead of a heroin overdose. Barack Obama was a high school junior living with his grandparents in Honolulu, Hawaii: his grades were okay, but he spent most of his time hanging with his pot-smoking friends in the “Choom Gang”. Boris Johnson was tucked away at the elite Ashdown House boarding school while his parents marriage was slowly collapsing: although he was only thirteen, he had already adopted his signature hair style. Elvis had just died on the toilet a few weeks ago. It was the summer of Star Wars.
And Voyager 1 was blasting off for a tour of the Solar System.
There’s no way to pack the whole story of Voyager 1 into a single blog post. Here’s the TLDR: Voyager was the first spacecraft to fly past Jupiter, and the first to take close-up photos of Jupiter’s moons. It flew on past Saturn, and examined Saturn’s moon Titan, the only moon with an atmosphere. And then it flew onwards, on and on, for another forty years. It officially left the Solar System and entered interstellar space in 2012. It just kept going, further and further into the infinite emptiness.
Voyager has grown old. It was never designed for this! Its original mission was supposed to last a bit over three years. Voyager has turned out to be much tougher than anyone ever imagined, but time gets us all. Its power source is a generator full of radioactive isotopes, and those are gradually decaying into inert lead. Year by year, the energy declines, the power levels relentlessly fall. Year by year, NASA has been switching off Voyager’s instruments to conserve that dwindling flicker. They turned off its internal heater a few years ago, and they thought that might be the end. But those 1970s engineers built to last, and the circuitry and the valves kept working even as the temperature dropped down, down, colder than dry ice, colder than liquid nitrogen, falling towards absolute zero.
(Voyager stored its internal data on a digital tape recorder. Yes, a tape recorder, storing information on magnetic tape. It wasn’t designed to function at a hundred degrees below zero. It wasn’t designed to work for decades, winding and rewinding, endlessly re-writing data. But it did.)
Voyager kept going, and kept going, until it was over 15 billion kilometers away. At the speed of light, the Moon is one and a half seconds away. The Sun is about 8 minutes away. Voyager is twenty-two hours away. Send a radio signal to it at lunch on Monday, and you’ll get a response back Wednesday morning.
* * *
I could go on at great length about Voyager — the discoveries it has made, how amazing it has all been, the Deep Space Network that has maintained contact over the decades, the ever shrinking crew of aging technicians keeping it alive on a shoestring budget. But I’ll restrict myself to just this: the Pale Blue Dot.
In 1990, just before Voyager’s camera shut down forever, the probe turned around and looked backwards. It zoomed in and took a picture of Earth. But by that time, it was so far away that Earth was just a single pale blue pixel. Look at the right-most band of light. A little past halfway down — see that speck? It’s not a defect. It’s not something on your screen. That’s the Earth.
“That’s here. That’s home. That’s us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives. The aggregate of our joy and suffering, thousands of confident religions, ideologies, and economic doctrines, every hunter and forager, every hero and coward, every creator and destroyer of civilization, every king and peasant, every young couple in love, every mother and father, hopeful child, inventor and explorer, every teacher of morals, every corrupt politician, every “superstar,” every “supreme leader,” every saint and sinner in the history of our species lived there – on a mote of dust suspended in a sunbeam.” — Carl Sagan
Voyager kept going for another 34 years after that photo. It’s still going. It has left the grip of the Sun’s gravity, so it’s going to fall outward forever.
* * *
Here’s a bit of trivia: Voyager 1 currently holds the record for most distant active spacecraft. It’s not even close. The only other contender is Voyager’s little sister, Voyager 2, which had a different mission profile and so lags billions of kilometers behind their older sibling.
Here’s another bit of trivia: if you’re reading this in 2024? It’s very unlikely that you will live to see that record broken. There are only two other spacecraft outside the Solar System — Voyager 2 and New Horizons. Both of them are going to die before they get as far as Voyager 1. And nobody — not NASA, not the Chinese, not the EU — is currently planning to launch another spacecraft to those distances. In theory we could. In practice, we have other priorities.
* * *
We thought we knew how Voyager would end. The power would gradually, inevitably, run down. The instruments would shut off, one by one. The signal would get fainter. Eventually either the last instrument would fail for lack of power, or the signal would be lost.
We didn’t expect that it would go mad.
In December 2023, Voyager started sending back gibberish instead of data. A software glitch, though perhaps caused by an underlying hardware problem; a cosmic ray strike, or a side effect of the low temperatures, or just aging equipment randomly causing some bits to flip.
The problem was, the gibberish was coming from the flight direction software — the operating system, as it were. And no copy of that operating system remained in existence on Earth.
(This is a problem NASA long since solved. These days, every space probe that launches, leaves a perfect duplicate back on Earth. Remember in “The Martian”, how they had another copy of Pathfinder sitting under a tarp in a warehouse? That’s accurate. It’s been standard practice for 30 years. But back in 1977, nobody had thought of that yet.)
Voyager Mission Control used to be a couple of big rooms full of busy people, computers, giant screens. Now it’s a single room in a small office building in the San Gabriel Valley, in between a dog training school and a McDonalds. The Mission Control team is a handful of people, none of them young, several well past retirement age.
And they’re trying to fix the problem. But right now, it doesn’t look good. You can’t just download a new OS from 15 billion kilometers away. (For starters, there isn’t the bandwidth.) They would have to figure out the problem, figure out if a workaround is possible, and then apply it… all with a round-trip time of 45 hours for every communication with a probe that is flying away from us at a million miles a day. They’re trying, but nobody likes their odds.
So at some point — not tomorrow, not next week, but at some point in the next few months — they’ll probably have to admit defeat. And then they’ll declare Voyager 1 officially over, dead and done, the end of a long song.
what are your favourite git config options to set? Right now I only really
have git config push.autosetupremote true and git config
init.defaultBranch main set in my ~/.gitconfig, curious about what other
people set
As usual I got a TON of great answers and learned about a bunch of very popular
git config options that I’d never heard of.
I’m going to list the options, starting with (very roughly) the most popular
ones. Here’s a table of contents:
All of the options are documented in man git-config, or this page.
pull.ff only or pull.rebase true
These two were the most popular. These both have similar goals: to avoid accidentally creating a merge commit
when you run git pull on a branch where the upstream branch has diverged.
pull.rebase true is the equivalent of running git pull --rebase every time you git pull
pull.ff only is the equivalent of running git pull --ff-only every time you git pull
I’m pretty sure it doesn’t make sense to set both of them at once, since --ff-only
overrides --rebase.
Personally I don’t use either of these since I prefer to decide how to handle
that situation every time, and now git’s default behaviour when your branch has
diverged from the upstream is to just throw an error and ask you what to do
(very similar to what git pull --ff-only does).
merge.conflictstyle zdiff3
Next: making merge conflicts more readable! merge.conflictstyle zdiff3 and merge.conflictstyle diff3 were both super popular (“totally indispensable”).
The main idea is
The consensus seemed to be “diff3 is great, and zdiff3 (which is newer) is even better!”.
So what’s the deal with diff3. Well, by default in git, merge conflicts look like this:
I’m supposed to decide whether input.split("\n") or text.split("\n\n") is
better. But how? What if I don’t remember whether \n or \n\n is right? Enter diff3!
Here’s what teh same merge conflict look like with merge.conflictstyle diff3 set:
This has extra information: now the original version of the code is in the middle! So we can see that:
one side changed \n\n to \n
the other side renamed input to text
So presumably the correct merge conflict resolution is return
text.split("\n"), since that combines the changes from both sides.
I haven’t used zdiff3, but a lot of people seem to think it’s better. The blog post Better Git Conflicts with zdiff3 talks more about it.
rebase.autosquash true
Autosquash was also a new feature to me. The goal is to make it easier to modify old commits.
Here’s how it works:
You have a commit that you would like to be combined with some commit that’s 3 commits ago, say add parsing code
You commit it with git commit --fixup OLD_COMMIT_ID, which gives the new commit the commit message fixup! add parsing code
Now, when you run git rebase --autosquash main, it will automatically combine all the fixup! commits with their targets
rebase.autosquash true means that --autosquash always gets passed automatically to git rebase.
rebase.autostash true
This automatically runs git stash before a git rebase and git stash pop after. It basically passes --autostash to git rebase.
Personally I’m a little scared of this since it potentially can result in merge
conflicts after the rebase, but I guess that doesn’t come up very often for
people since it seems like a really popular configuration option.
push.default simple, push.default current
These push.default options tell git push to automatically push the current branch to a remote branch with the same name.
push.default simple is the default in Git. It only works if your branch is already tracking a remote branch
push.default current is similar, but it’ll always push the local branch to a remote branch with the same name.
push.autoSetupRemote and push.default simple together seem to do basically the same thing as push.default current
current seems like a good setting if you’re confident that you’re never going
to accidentally make a local branch with the same name as an unrelated remote
branch. Lots of people have branch naming conventions (like julia/my-change)
that make this kind of conflict very unlikely, or just have few enough
collaborators that branch name conflicts probably won’t happen.
init.defaultBranch main
Create a main branch instead of a master branch when creating a new repo.
commit.verbose true
This adds the whole commit diff in the text editor where you’re writing your
commit message, to help you remember what you were doing.
rerere.enabled true
This enables rerere (”reuse recovered resolution”), which remembers how you resolved merge conflicts
during a git rebase and automatically resolves conflicts for you when it can.
help.autocorrect 10
By default git’s autocorrect try to check for typos (like git ocmmit), but won’t actually run the corrected command.
If you want it to run the suggestion automatically, you can set
help.autocorrect
to 1 (run after 0.1 seconds), 10 (run after 1 second), immediate (run
immediately), or prompt (run after prompting)
core.pager delta
The “pager” is what git uses to display the output of git diff, git log, git show, etc. People set it to:
delta (a fancy diff viewing tool with syntax highlighting)
less -x5,9 (sets tabstops, which I guess helps if you have a lot of files with tabs in them?)
less -F -X (not sure about this one, -F seems to disable the pager if everything fits on one screen if but my git seems to do that already anyway)
cat (to disable paging altogether)
I used to use delta but turned it off because somehow I messed up the colour
scheme in my terminal and couldn’t figure out how to fix it. I think it’s a
great tool though.
I believe delta also suggests that you set up interactive.diffFilter delta --color-only to syntax highlight code when you run git add -p.
diff.algorithm histogram
Git’s default diff algorithm often handles functions being reordered badly. For example look at this diff:
core.excludeFiles = ~/.gitignore lets you set a global gitignore file that
applies to all repositories, for things like .idea or .DS_Store that you
never want to commit to any repo. It defaults to ~/.config/git/ignore.
includeIf: separate git configs for personal and work
Lots of people said they use this to configure different email addresses for
personal and work repositories. You can set it up something like this:
I often accidentally clone the HTTP version of a repository instead of the
SSH version and then have to manually go into ~/.git/config and edit the
remote URL. This seems like a nice workaround: it’ll replace
https://github.com in remotes with git@github.com:.
Here’s what it looks like in ~/.gitconfig since it’s kind of a mouthful:
One person said they use pushInsteadOf instead to only do the replacement for
git push because they don’t want to have to unlock their SSH key when
pulling a public repo.
A couple of other people mentioned setting insteadOf = "gh:" so they can git
remote add gh:jvns/mysite to add a remote with less typing.
fsckobjects: avoid data corruption
A couple of people mentioned this one. Someone explained it as “detect data
corruption eagerly. Rarely matters but has saved my entire team a couple
times”.
Here’s everything else that was suggested by at least 2 people:
blame.ignoreRevsFile .git-blame-ignore-revs lets you specify a file with commits to ignore during git blame, so that giant renames don’t mess up your blames
branch.sort -committerdate, makes git branch sort by most recently used branches instead of alphabetical, to make it easier to find branches. tag.sort taggerdate is similar for tags.
color.ui false: to turn off colour
commit.cleanup scissors: so that you can write #include in a commit message without the # being treated as a comment and removed
core.autocrlf false: on Windows, to work well with folks using Unix
core.editor emacs: to use emacs (or another editor) to edit commit messages
credential.helper osxkeychain: use the Mac keychain for managing
diff.tool difftastic: use difftastic (or meld or nvimdiffs) to display diffs
diff.colorMoved default: uses different colours to highlight lines in diffs that have been “moved”
diff.colorMovedWS allow-indentation-change: with diff.colorMoved set, also ignores indentation changes
diff.context 10: include more context in diffs
fetch.prune true and fetch.prunetags - automatically delete remote tracking branches that have been deleted
gpg.format ssh: allow you to sign commits with SSH keys
log.date iso: display dates as 2023-05-25 13:54:51 instead of Thu May 25 13:54:51 2023
merge.keepbackup false, to get rid of the .orig files git creates during a merge conflict
merge.tool meld (or nvim, or nvimdiff) so that you can use git mergetool to help resolve merge conflicts
push.followtags true: push new tags along with commits being pushed
rebase.missingCommitsCheck error: don’t allow deleting commits during a rebase
rebase.updateRefs true: makes it much easier to rebase multiple stacked branches at a time. Here’s a blog post about it.
how to set these
I generally set git config options with git config --global NAME VALUE, for
example git config --global diff.algorithm histogram. I usually set all of my
options globally because it stresses me out to have different git behaviour in
different repositories.
If I want to delete an option I’ll edit ~/.gitconfig manually, where they look like this:
[diff]
algorithm = histogram
config changes I’ve made after writing this post
My git config is pretty minimal, I already had:
init.defaultBranch main
push.autoSetupRemote true
merge.tool meld
diff.colorMoved default (which actually doesn’t even work for me for some reason but I haven’t found the time to debug)
and I added these 3 after writing this blog post:
diff.algorithm histogram
branch.sort -committerdate
merge.conflictstyle zdiff3
I’d probably also set rebase.autosquash if making carefully crafted pull
requests with multiple commits were a bigger part of my life right now.
I’ve learned to be cautious about setting new config options – it takes me a
long time to get used to the new behaviour and if I change too many things at
once I just get confused. branch.sort -committerdate is something I was
already using anyway (through an alias), and I’m pretty sold that diff.algorithm
histogram will make my diffs easier to read when I reorder functions.
that’s all!
I’m always amazed by how useful to just ask a lot of people what stuff they like and
then list the most commonly mentioned ones, like with this list of new-ish command line tools
I put together a couple of years ago. Having a list of 20 or 30 options to consider feels so much more efficient than combing through a list of all 600 or so git config options
It was a little confusing to summarize these because git’s default
options have actually changed a lot of the years, so people occasionally have
options set that were important 8 years ago but today are the default. Also a
couple of the experimental options people were using have been removed and
replaced with a different version.
I did my best to explain things accurately as of how git works right now in
2024 but I’ve definitely made mistakes in here somewhere, especially because I
don’t use most of these options myself. Let me know on Mastodon if you see a
mistake and I’ll try to fix it.
I might also ask people about aliases later, there were a bunch of great ones
that I left out because this was already getting long.
On large platforms, it's impossible to have policies on things like moderation, spam, fraud, and sexual content that people agree on. David Turner made a simple game to illustrate how difficult this is even in a trivial case, No Vehicles in the Park. If you haven't played it yet, I recommend playing it now before continuing to read this document.
The idea behind the site is that it's very difficult to get people to agree on what moderation rules should apply to a platform. Even if you take a much simpler example, what vehicles should be allowed in a park given a rule and some instructions for how to interpret the rule, and then ask a small set of questions, people won't be able to agree. On doing the survey myself, one of the first reactions I had was that the questions aren't chosen to be particularly nettlesome and there are many edge cases Dave could've asked about if he wanted to make it a challenge. And yet, despite not making the survey particularly challenging, there isn't broad agreement on the questions.
Comments on the survey also indicate another problem with rules, which is that it's much harder to get agreement than people think it will be. If you read comments on rule interpretation or moderation on lobsters, HN, reddit, etc., when people suggest a solution, the vast majority of people will suggest something that anyone who's done moderation or paid attention to how moderation works knows cannot work, the moderation equivalent of "I could build that in a weekend"1. Of course we see this on Dave's game as well. The top HN comment, and a very common sentiment elsewhere is2:
I'm fascinated by the fact that my takeaway is the precise opposite of what the author intended.
To me, the answer to all of the questions was crystal-clear. Yes, you can academically wonder whether an orbiting space station is a vehicle and whether it's in the park, but the obvious intent of the sign couldn't be clearer. Cars/trucks/motorcycles aren't allowed, and obviously police and ambulances (and fire trucks) doing their jobs don't have to follow the sign.
So if this is supposed to be an example of how content moderation rules are unclear to follow, it's achieving precisely the opposite.
And someone agreeingly replies with:
Exactly. There is a clear majority in the answers.
After going through the survey, you get a graph showing how many people answered yes and no to each question, which is where the "clear majority" comes from. First of all, I think it's not correct to say that there is a clear majority. But even supposing that there were, there's no reason to think that there being a majority means that most people agree with you even if you take the majority position in each vote. In fact, given how "wiggly" the per-question majority graph looks, it would be extraordinary if it were the case that being in the majority for each question meant that most people agreed with you or that there's any sert of positions that the majority of people agree on. Although you could construct a contrived dataset where this is true, it would be very surprising if this were true in a natural dataset.
If you look at the data (which isn't available on the site, but Dave was happy to pass it along when I asked), as of when I pulled the data, there was no set of answers which the majority of users agreed on and it was not even close. I pulled this data shortly after I posted on the link to HN, when the vast majority of responses were HN readers, who are more homogeneous than the population at large. Despite these factors making it easier to find agreement, the most popular set of answers was only selected by 11.7% of people. This is the position the top commenter says is "obvious", but it's a minority position not only in the sense that only 11.7% of people agree and 88.3% of people disagree, almost no one holds a position with only a small amount of disagreement from this allegedly obvious position. The 2nd and 3rd most common positions, representing 8.5% and 6.5% of the vote, respectively, are similar and only disagree on whether or not a non-functioning WW-II era tank that's part of a memorial violates the rule. Beyond that, approximately 1% of people hold the 4th, 5th, 6th, and 7th most popular positions, with every less popular position having less than 1% agreement, with a fairly rapid drop from there as well. So, 27% of people find themselves in agreement with significantly more than 1% of other users (the median user agrees with 0.16% of other users). See below for a plot of what this looks like. The opinions are sorted from most popular to least popular, with the most popular on the left. A log scale is used because there's so little agreement on opinions that a linear scale plot looks like a few points above zero followed by a bunch of zeros.
In response to the same comment, Michael Chermside had the reasonable but not highly upvoted comment,
To me, the answer to all of the questions was crystal-clear.
That's not particularly surprising. But you may be asking the wrong question.
If you want to know whether the rules are clear then I think that the right question to ask is not "Are the answers crystal-clear to you?" but "Will different people produce the same answers?".
If we had a sharp drop in the graph at one point then it would suggest that most everyone has the same cutoff; instead we see a very smooth curve as if different people read this VERY SIMPLE AND CLEAR rule and still didn't agree on when it applied.
Many (and probably actually most) people are overconfident when predicting what other people think is obvious and often incorrectly assume that other people will find the same things obvious. This is more true of the highly-charged issues that result in bitter fights about moderation than the simple "no vehicles in the park" example, but even this simple example demonstrates not only the difficulty in reaching agreement, but the difficulty in understanding how difficult it is to reach agreement.
To use an example from another context that's more charged, consider in any sport and whether or not a player is considered to be playing fair or is making dirty plays and should be censured. We could look at many different players from many different sports, so let's arbitrarily pick Draymond Green. If you ask any serious basketball fan who's not a Warriors fan, who's the dirtiest player in the NBA today, you'll find general agreement that it's Draymond Green (although some people will argue for Dillon Brooks, so if you want near uniform agreement, you'll have to ask for the top two dirtiest players). And yet, if you ask a Warriors fan about Draymond, most have no problem explaining away every dirty play of his. So if you want to get uniform agreement to a question that's much more straightforward than the "no vehicles in the park" question, such as, "is it ok to stomp on another player's just and then use them as a springboard to leap into the air? on top of a hundred other dirty plays", you'll find that for many such seemingly obvious questions, a sizable group of people will have extremely strong disagreements with the "obvious" answer. When you move away from a contrived, abstract, example like "no vehicles in the park" to a real-world issue that people have emotional attachments to, it generally becomes impossible to get agreement even in cases where disinterested third parties would all agree, which we observed is already impossible even without emotional attachment. And when you move away from sports into issues people care even more strongly about, like politics, the disagreements get stronger.
While people might be able to "agree to disagree" on whether or not a a non-functioning WW-II era tank that's part of a memorial violates the "no vehicles in the park" rule (giving resulting in a a pair of positions that accounts for 15% of the vote), in reality, people often have a hard time agreeing to disagree over what outsiders would consider very small differences of opinion. Charged issues are often fractally contentious, causing disagreement among people who hold all but identical opinions, making them significantly more difficult to agree on than our "no vehicles in the park" example.
To pick a real-world example, consider Jo Freeman, probably best known among tech folks for writing "The Tyranny of Structurelessness", was also a feminist who, in 1976, wrote about her experienced being canceled for minute differences in opinion and how this was unfortunately common in the Movement (using the term "trashed" and not "canceled" because cancellation hadn't come into common usage yet and, in my opinion, "trashed" is the better term anyway). In the nearly fifty years since Jo Freeman wrote "Trashing", the propensity of humans to pick on minute differences and attempt to destroy anyone who doesn't completely agree with them hasn't changed; for a recent, parallel, example, Natalie Wynn's similar experience.
For people with opinions far away in the space of commonly held opinions, the differences in opinion between Natalie and the people calling for her to be deplatformed are fairly small. But, not only did these "small" differences in opinion result in people calling for Natalie to be deplatformed, they called for her to be physically assaulted, doxed, etc., and they suggested the same treatment suggested for her friends and associates as well as people who didn't really associate with her, but publicly talked about similar topics and didn't cancel her. Even now, years later, she still gets calls to be deplatformed and I expect this will continue past the end of my life (when I wrote this, I did a Twitter search and found a long thread from someone ranting about what a horrible human being Natalie is for the alleged transgression discussed in the video, dated 10 days ago, and it's easy to find more of these rants). I'm not going to attempt to describe the difference in positions because the positions are close enough that, to describe them would take something like 5k to 10k words (as opposed to, say, a left-wing vs. a right-wing politician, where the difference is blatant enough that you can describe in a sentence or two); you can watch the hour in the 1h40m video that's dedicated to the topic if you want to know the full details.
The point here is just that, if you look at almost any person who has public opinions on charged issues, the opinion space is fractally contentious enough that no large platform can satisfy user preferences because users will disagree over what content should be moderated off the platform and what content should be allowed. And, of course, this problem scales up as the platform gets larger3.
Thanks to Peter Bhat Harkins, Dan Gackle, Laurence Tratt, Gary Bernhardt, David Turner, Kevin Burke, and Bert Muthalaly for comments/corrections/discussion.
Something I've repeatedly seen on every forum I've been on is the suggestion that we just don't need moderation after all and all our problems will be solved if we just stop this nasty censorship. If you want a small forum that's basically 4chan, then no moderation can work fine, but even if you want a big platform that's like 4chan, no moderation doesn't actually work. If we go back to those Twitter numbers, 300M users and 1M bots removed a day, if you stop doing this kind of "censorship", the platform will quickly fill up with bots to the point that everything you see will be spam/scam/phishing content or content from an account copying content from somewhere else or using LLM-generated content to post scam/scam/phishing content. Not only will most accounts be bots, bots will be a part of large engagement/voting rings that will drown out all human content.
The next most naive suggestion is to stop downranking memes, dumb jokes, etc., often throw in with a comment like "doesn't anyone here have a sense of humor?". If you look at why forums with upvoting/ranking ban memes, it generally happens after the forum becomes totally dominated by memes/comics because people upvote those at a much higher rate than any kind of content with a bit of nuance, and not everyone wants a forum that's full of the lowest common denominator meme/comic content. And as for "having a sense of humor" in comments, if you look forums that don't ban cheap humor, top comments will generally end up dominated by these, e.g., for maybe 3-6 months, one the top comments on any kind of story about a man doing anything vaguely heroic on reddit forums that don't ban this kind of cheap was some variant of "I'm surprised he can walk with balls that weigh 900 lbs.", often repeated multiple times by multiple user, amidst a sea of the other cheap humor that was trendy during that period. Of course, some people actually want that kind of humor to dominate the comments, they actually want to see the same comment 150 times a day for months on end, but I suspect most people who grumpily claim "no one has a sense of humor here" when their cheap humor gets flagged don't actually want to read a forum that's full of the trendy quips of the month.
This particular commenter indicates that they understand that moderation is, in general, a hard problem; they just don't agree with the "no vehicles in the park" example, but many other people think that both the park example and moderation are easy.
[return]
Nowadays, it's trendy to use "federation" as a cure-all in the same way people used "blockchain" as a cure-all five years ago, but federation doesn't solve this problem for the typical user. I actually had a conversation with someone who notes in their social media bio that they're one of the creators of the ActivityPub spec, who claimed that federation does solve this problem and that Threads adding ActivityPub would create some kind of federating panacea. I noted that fragmentation is already a problem for many users on Mastodon and whether or not Threads will be blocked is contentious and will only increase fragmentation, and the ActivityPub guy replied with something like "don't worry about that, most people won't block Threads, and it's their problem if they do.w
I noted that a problem many of my non-technical friends had when they tried Mastodon was that they'd pick a server and find that they couldn't follow someone they wanted to follow due to some kind of server blocking or ban. So then they'd try another server to follow this one person and then find that another person they wanted to follow is blocked. The fundamental problem is that users on different servers want different things to be allowed, which then results in no server giving you access to everything you want to see. The ActivityPub guy didn't have a response to this and deleted his comment.
While I generally agree with the sentiment of this article, I don't agree with the assertion that it is IMPOSSIBLE to do content moderation and I don't think the article makes that case. The case I believe this article makes (and I agree with) is that it is NOT EASY or that it is HARD to do content moderation.
One of the most vile individuals to ever befoul the United States, Henry Kissinger is dead. A man responsible for the deaths of millions of people around the world and yet the most respected man within the American foreign policy community for decades, Kissinger’s sheer existence exposed the moral vacuity of Cold War foreign policy and the empty platitudes and chummy gladhandling of the Beltway elite class that deserves our utter contempt.
Born in 1923 in Bavaria to a Jewish family, Heinz Kissinger and his family fled the Nazis to the United States in 1938. Kissinger went to high school in Washington Heights in Manhattan. He entered City College to become an accountant. If only that had been his fate. Imagine how many people around the world would still be alive if Kissinger had been a bookkeeper somewhere. Sigh.
But he was drafted into the U.S. Army in World War II. He became a U.S. citizen while stationed in South Carolina in 1943. He was a smart guy—and Henry would never let you forget that—and did well on standardized testing. So the Army sent him to Lafayette College in Pennsylvania to study engineering. Once again, here was another career path for the man. Sometimes we romanticize the roads not taken. But sometimes, we realize that any other road literally could not be worse than one the path taken. That’s certainly true in this case.
The Army ended up having a higher use for Kissinger as the war came to its conclusion. Military Intelligence grabbed him due to his fluency in German and accompanied the military on its march through western Europe in the war’s last year. He rose quickly in the military and in June 1945 was made commander of a group in Hesse for deNazifying the district. In 1946, he had orders to teach at the European Command Intelligence School and he started expressing interest in being a global citizen, using his intelligence to impact foreign policy. Unfortunately.
Kissinger returned to the United States and, under encouragement from his mentors, applied to Harvard. How could a not rich immigrant kid go to Harvard? The GI Bill! Kissinger was part of the first generation to benefit from that massive social welfare program. He learned not a thing from the experience, spending his life calling communist any nations who tried to create similar social programs. He received his BA from Harvard in 1950, his MA in 1951, and his PhD in 1954. He moved easily in the social circles of the early Cold War and made himself useful to the foreign policy community. In 1955 and 1956, he was study director in nuclear weapons and foreign policy at the Council on Foreign Relations. He directed the Harvard Defense Studies Program between 1958 and 1971. Through his elite connections, Kissinger aligned himself closely with the Republican Party and served as an advisor to Nelson Rockefeller, supporting his repeated presidential bids in the 1960s.
When Richard Nixon became the Republican nominee in 1968, Kissinger immediately made a close connection with him. In fact, they had a lovely thing to bond over: committing treason in defense of Nixon’s presidential ambitions. After Lyndon Johnson decided not to run for reelection, he hoped to end the Vietnam War. Nixon feared doing this would undermine his chances to win that fall, especially after LBJ announced the moratorium on bombing Hanoi. Luckily for Nixon, Kissinger agreed. Kissinger was serving Johnson as his advisor on the Vietnam peace talks. He let Nixon know that a peace treaty was imminent. This allowed Nixon to use his own connections in the Thieu government in Saigon to tell them he would recommit the U.S. to the war and thus they should refuse to agree to peace. This worked. Thieu boycotted the peace talks and nothing happened. Saving millions of Vietnamese lives and tens thousands of American lives had little meaning compared to the noble goal of getting Nixon elected to the presidency. Nixon repaid him by naming him National Security Advisor. Between 1968 and Kissinger’a “peace at hand” statements shortly before the 1972 elections, 20,000 American soldiers died. Thanks Hank and Dick.
On the traditional fronts of the Cold War, Kissinger was reasonably effective. Certainly his negotiations with the Soviet Union that resulted in SALT I and the Anti-Ballistic Missile Treaty were positive in placing controls on the destructive arms race. His work to open China to the United States is also important for a number of reasons. It’s hard to believe now that early Cold War analysts legitimately believed that all communism was controlled out of Moscow, but that’s how uninformed, native, and ideologically blinded they were. Kissinger finally brought what should have been the obvious recognition that China and the USSR really did not like each other and that the U.S. could use this to their advantage.
But let’s not overstate the positives of Kissinger. The man was an absolute monster. Kissinger was the architect of Nixon’s policy of bombing Cambodia and the 1970 invasion that led to the biggest protests against the war and the shootings at Kent State and Jackson State University. The bombings of Cambodia killed up to 150,000 people between 1969 and 1973 and destabilized that already struggling nation, helping to usher in the Khmer Rouge, while also not doing anything at all to win the war in Vietnam that we should not have been fighting in to begin with. Kissinger told his assistant Al Haig that Nixon “wants a massive bombing campaign in Cambodia. He doesn’t want to hear anything. It’s an order, it’s to be done. Anything that flies on anything that moves.” And Kissinger and Haig made sure that happened. Kissinger then went on to be supportive of the Khmer Rouge! He saw Pol Pot as a counterweight against the real enemy: North Vietnam. He asked Thailand’s foreign minister to tell the Khmer Rouge, “we will be friends with them. They are murderous thugs, but we won’t let that stand in our way. We are prepared to improve relations with them.” Luckily, the Vietnamese themselves finally put an end to the genocide in Cambodia, with no thanks to Henry Kissinger or the United States.
But hey, the Vietnam War ended while Kissinger was in charge of American foreign policy. Amazingly, revoltingly, using his magic voodoo that has fooled “respectable” people for a half-century, Henry Kissinger won the Nobel Peace Prize in 1973, the same year he approved the coup in Chile. This was for his role in ending the Vietnam War, which he had of course extended five years earlier. Never has the Nobel committee undermined their own credibility like this.
Clearly Kissinger deserved said Nobel Prize, as he proved yet again in his actions in East Timor. Kissinger, now Secretary of State, and President Gerald Ford met with the Indonesian dictator Suharto on December 6, 1975. On December 7, Suharto invaded East Timor. At least 102,000 people in East Timor died directly due to war between the beginning of the invasion and the end of the war in 1999. In the first three months, between 50,000 and 80,000 East Timorese died. For years, Kissinger lied about knowing about the invasion beforehand. But declassifying archives from the National Security Archive at George Washington University demonstrated this was false.
We want your understanding if we deem it necessary to take rapid or drastic action,” Suharto opened bluntly. “We will understand and will not press you on the issue,” Ford responded. “We understand the problem you have and the intentions you have.” Kissinger was even more emphatic, but had an awareness of the possible “spin” problems back home. “It is important that whatever you do succeeds quickly,” he instructed the despot. “We would be able to influence the reaction if whatever happens, happens after we return…. If you have made plans, we will do our best to keep everyone quiet until the President returns home.” Micromanaging things for Suharto, he added: “The President will be back on Monday at 2 pm Jakarta time. We understand your problem and the need to move quickly but I am only saying that it would be better if it were done after we returned.”
Well, that’s pretty damning!
Kissinger committed massive crimes against humanity, even if you only consider his actions in Chile. First, Kissinger neither knew anything about Latin America nor cared. He thought the region utterly irrelevant. He once rejected the offer of a childhood friend who became an official at the Inter-American Development Bank to provide information about the region by responding, “If I need any information on Latin America, I’ll look it up in the Almanac.” He later stated, “Nothing important can come from the South. The axis of history starts in Moscow, goes to Bonn, crosses over to Washington, and then goes to Tokyo. What happens in the South is of no importance.”
In this worldview, Latin America only existed to serve U.S. interests. Salvador Allende’s socialist and democratic government was outraged Nixon and Kissinger. That Allende was elected democratically despite massive CIA interference in 1970 to defeat him only outraged them more. So they sought to undermine him at every opportunity. Nixon famously ordered the CIA to “make the economy scream” in order to destroy Allende’s government. The AFL-CIO joined Nixon, Kissinger, and the CIA in this project by funding anti-Allende union movements to engage in widescale strikes against socialism. In a letter to Nixon, Kissinger wrote, “Allende is now president. The State Department thinks we can coexist with him, but I want you to make sure you tell everybody in the U.S. government that we cannot, that we cannot let him succeed, because he has legitimacy. He is democratically elected. And suppose other governments decide to follow in his footstep, like a government like Italy? What are we going to do then? What are we going to say when other countries start to democratically elect other Salvador Allendes? We will—the world balance of power will change “and our interests in it will be changed fundamentally.”[1]
Well, we wouldn’t want any more democratic elections that might lead to social justice! Plus Allende was extra scary—he followed the Chilean constitution! A democratic socialist? Nope, better to overthrow the government. Allende’s demise was from a combination factors that are not possible to sort out and pin on a single issue. The economy declined and one of the opposing parties that was in his coalition quit, but the economy tanked in no small part because of Kissinger’s machinations. The CIA spent around $8 million in the effort to eliminate Allende. The Chilean military was previously non-political and poorly paid, but its officers began imbibing in extreme anti-communism and had training at the notorious School of the Americas at Fort Benning, Georgia. When General Augusto Pinochet rose to prominence and eventually overthrew Allende in a violent coup, Kissinger was behind him every step of the way. The CIA and Kissinger knew of the coup head of time and had ongoing relationships with people such as Pinochet, not to mention had previously supported an attempt for a coup in 1970. The horrifying aftermath, with torture and killing abounding, hardly quieted Kissinger’s ardor for Pinochet. By 1976, Kissinger was Ford’s Secretary of State. When Pinochet ordered the assassination of dissenter and former U.S. ambassador Orlando Letelier on U.S. soil, blowing up his car in Washington, Kissinger was totally fine with it.
Of course, the bombing itself was done by anti-Castro Cubans, who Kissinger also loved. Anyway, President Jimmy Carter sought to prosecute those responsible for this crime on American soil. In 1978, three Chilean intelligence agents were indicted by federal prosecutors. Carter demanded their extradition. This infuriated Pinochet and his fascist supporters who were used to working with friends in the White House. Pinochet refused Carter’s request. Kissinger met with the Chileans and told them they were doing the right thing and how to undermine Carter. He told them to treat the Carter administration “with brutality” as it “is the only language they understand.” In having this conversation, Kissinger told the Chileans to hold on until 1981 when a Republican would regain the White House, be their friend, and in the head of this massive egoist, he would of course be named Secretary of State again. Reagan didn’t reward Kissinger in this way, but he did revoke the trade restrictions Carter had placed on the Chilean regime. And once again, like in 1968, Kissinger had intervened to undermine the U.S. government and ensure more death and repression around the world.[2]
He took a similar role in Argentina as he did in Chile, supporting the 1976 coup that overthrew the elected government of Isabel Perón by a right-wing military regime that then disappeared its opponents through such lovely methods as throwing them into the ocean from airplanes. Kissinger was completely fine with all of this. He told them about murdering leftists, “the quicker you succeed, the better.” His primary admonition to the Argentine junta was to warn them that Congress might consider sanctions if they continued with these things and so advised them maybe to stop such obvious tactics. Very compelling. Kissinger tried to intervene to stop the Carter administration’s actions against Argentina beginning in 1977. He also wanted to bomb Cuba in response for its actions in Angola, but for once, the monster was stopped.
Kissinger was also complicit in the Greek coup in Cyprus that led to the Turkish invasion. He was informed beforehand that the coup was going to take place. He had the State Department provide a rote warning against it that everyone knew meant nothing. The Greeks believed that Cyprus was Kissinger’s Vietnam (as opposed to actual Vietnam, evidently) and saw him specifically as the villain. Meanwhile, Kissinger supported the Turkish invasion and parroted the Turkish line that there was no conflict on the island. Kissinger became hated in Greece for all of this, as he should be everywhere.
On top of all of this, there is Pakistan. Kissinger completely supported the military junta in Karachi using extreme genocidal force to force East Pakistan, now Bangladesh, to stay in that nation. In 1971, the Pakistani military invaded its restive eastern province. The death toll was shocking. The CIA estimate is 200,000. The Bangladeshi government estimates the deaths at 5 million. The number is almost certainly closer to the Bangladeshi estimate. Ten million refugees fled into India. Kissinger and Nixon basically agreed to stand aside. They issued a couple of broad admonitions not to fire on civilians, but threatened no pulling of aid and used no leverage at all to ensure that Pakistan did not massacre people. Even after the massacres were known, Kissinger and Nixon threatened no sanctions, no loss of aid, no consequences at all. Nixon’s tapes recorded both the president and Kissinger sneering at the Bangladeshis and making fun of people who felt bad for them. When Kenneth Keating, a former Republican senator from New York who was the consul general in Dhaka, wrote to Kissinger of the horrors, the administration had him removed from his position. That’s the most concrete action it took in this genocide.
I’m going to say something marginally positive about Kissinger for a second. Please forgive me. His role in getting Ian Smith to give up on minority rule in Rhodesia was undoubtedly a good thing, whatever it led to in Robert Mugabe’s Zimbabwe. So he deserves a little credit there. And that’s all he’s going to get.
All of these war crimes made Kissinger persona non grata, right? Of course not! Very little speaks more to the festering wound that is “respectable” Beltway culture than the bipartisan adoration to the monster that is Kissinger in his retirement. For decades, he appeared on Charlie Rose whenever he wanted. Hillary Clinton’s embrace of Kissinger during her campaign was utterly grotesque. In 1977, Kissinger was given an endowed chair at Columbia University, despite significant students protests against making the monster a home there. He taught at Georgetown for several years in the late 70s and early 80s as well. He served on the board of directors for a raftload of companies, all of whom use his endless connections to promote their business interests.
Kissinger also cashed in. His many conflicts of interest hardly got in the way of his media appearances and policy pronouncements. Most notoriously, he shilled for the Chinese government after Tiananmen Square on ABC News while sort of forgetting to mention his close work with the Chinese Communist Party on the China International Trust and Investment Corporation that worked to build trade relationships between the two nations. Kissinger supported the Chinese government in its violent actions to repress its democratic movement. Shocking I know.
I think approximately zero people were shocked when the day after Trump fired James Comey as FBI director, there was a media event in the Oval Office with Kissinger sitting next to Trump, given that the man is drawn to right-wing authoritarianism like a moth to a flame. This was after Kissinger had suggested to the Nobel Peace Forum in Oslo that they needed to give Trump a chance. They should listen to his actions and not his “campaign rhetoric.”[3] That worked out well!
Kissinger’s late life continued to be a deep dive into supporting the scummiest leaders of the world. That included Vladimir Putin. Kissinger found the need to intervene in Putin’s imperialist war in Ukraine in 2022 to support the idea that the West should bully Zelensky into giving up a bunch of territory to the Russians. He used his typical language of realpolitik to do so and as usual, it demonstrated a complete indifference to justice and death in favor of playing up to one of the most violent leaders in the world.[4]
Occasionally there has been talk of holding Kissinger accountable for his lifetime of horrors. In 2001, the family of Chilean general René Schneider filed a lawsuit against Kissinger for his complicity of his death in 1970, when he would not go ahead with a military intervention against Allende’s election. The documentation over Kissinger’s direct involvement seems unclear, but what exists suggested he and Nixon actually joked about the CIA’s incompetence in the operation more than directly it themselves. The CIA did pay the people involved on the ground $35,000 to keep it secret. In any case, a U.S. district court threw out the case.
Well, he never was prosecuted. Kissinger died as he lived, without any consequences for his horrors. But at least he’s dead. What a total and complete monster.
Years ago, when I was an undergraduate student at McGill, I took a software engineering class, and as part of that class, I heard the infamous story of the Therac-25 computer-controlled radiotherapy machine. Long story short: a software bug caused the machine to occasionally give radiation doses that were sometimes hundreds of times greater than normal, which could result in grave injury or death. This story gets told in class to make an important point: don’t be a cowboy, if you’re a software engineer and you’re working on safety-critical systems, you absolutely must do due diligence and implement proper validation and testing, otherwise you could be putting human lives at risk. Unfortunately, I think the real point kind of gets lost on many people. You might hear that story and think that the lesson is that you should never ever work on safety-critical systems where such due diligence is required, and that you’re really lucky to be pocketing hundreds of thousands of dollars a year working on web apps, where the outcome of your work, and all the bugs that may still remain dormant somewhere in your code, will never harm anyone. Some people work on safety-critical code, and these people bear the weight of tremendous responsibility, but not you, you’re using blockchain technology to build AirBnB for dogs, which couldn’t possibly harm anyone even if it tried. I’d like to share three stories with you. I’ve saved the best story for last.
Back in 2016, I completed my PhD, and took my first “real” job, working at Apple in California. I was joining a team that was working on the GPU compiler for the iPhone and other iDevices. While getting set up in California prior to starting the job, it occurred to me that showing up to work with an Android phone, while being part of a team that was working on the iPhone, might not look so great, and so I decided to make a stop at the Apple store and bought the best iPhone that was available at the time, an iPhone 6S Plus with 128GB of storage. Overall, I was very pleased with the phone: it was lightweight, snappy and beautiful, with great battery life, and the fingerprint sensor meant I didn’t have to constantly type my pin code like on my previous Android phone, a clear upgrade.
Fast forward a few months and I had to catch an early morning flight for a work-related conference. I set an early alarm on my phone and went to sleep. The next day, I woke up and instantly felt like something was wrong, because I could see that it was really sunny outside. I went to check the time on my iPhone. I flipped the phone over and was instantly filled with an awful sinking sense of dread: it was already past my flight’s takeoff time! The screen on my phone showed that the alarm I had set was in the process of ringing, but for some reason, the phone wasn’t vibrating or making any sound. It was “ringing” completely silently, but the animation associated with a ringing alarm was active.
I did manage to get another flight, but I needed my manager’s approval, and so I had to call him and explain the situation, feeling ashamed the whole time (I swear it’s not my fault, I swear I’m not just lazy this bug is real, I swear). Thankfully, he was a very understanding man, and I did make it to the conference, but I missed most of the first day and opening activities. It wasn’t the first or the last time that I experienced this bug, it happened sporadically, seemingly randomly, over the span of several months. I couldn’t help but feel angry. Someone’s incompetence had caused me to experience anxiety and shame, but it had also caused several people to waste time, and the company to waste money on a missed flight. Why hadn’t this bug been fixed after several months? How many other people were impacted? I had a cushy tech job where if I show up to work late, people ask if I’m doing alright, but some people have jobs where being late can cause them to be fired on the spot, and some of these people might have a family to support, and be living paycheque to paycheque. A malfunctioning alarm clock probably isn’t going to directly cause a person’s death, but it definitely has the potential to cause real-world harm.
The point of this blog post isn’t to throw Apple under the bus, and so I’ll share another story (or maybe more of a rant) about poor software design in Android OS and how it’s impacted my life. About 3 years after working at Apple, when the replacement battery in my iPhone 6S Plus started to wear out, I decided to try Android again, and so I got myself a Google Pixel 3A XL. This phone also had a nice fingerprint scanner, but the best differentiating feature was of course the headphone jack. Unfortunately, Android suffers from poor user interface design in a few areas, and one of the most annoying flaws in its user interface is simply that the stock Android OS doesn’t have flexible enough options when it comes to controlling when the phone rings, which is one of the most important aspects of a phone.
Being a millenial, I don’t particularly like phone calls. I would much prefer to be able to make appointments and file support tickets using an online system. However, my deep dislike for phone calls probably stems from a more personal issue, which is that my mother is an unmedicated schizophrenic. She doesn’t respect my boundaries. She has done things such as randomly call me in the middle of the night because her irrational paranoia causes her to be worried that shadowy evil figures are coming after me. Thankfully, Android now has “bedtime mode” feature, which allows me to make it so that phone calls won’t cause my phone to ring between 10PM and 8:30AM. If my mom happens to die in a hospital in the middle of the night, I’ll just have to find out and be sad the next day. My sleep is sacred, and bedtime mode allows me to enforce some basic boundaries using software.
Bedtime mode is quite useful, but I still have the other problem that my mom could decide to randomly call me in the daytime as well, and unfortunately I rarely want to take her phone calls. However, I also don’t want her to end up homeless or in jail (which has happened before, but that’s a story for another time), and so I don’t want to block her and completely lose the ability to receive her calls. This results in me having to almost always have my phone set to “do not disturb”, so that I don’t have to be disturbed at random times by unwanted phone calls. I wish that Android had an option to set a specific person to never cause the phone to ring, and it seems like that should be an easy feature to implement that would have a real positive impact on the quality of lives of many people, but I digress.
The real problem is that, although I hate phone calls, our society is still structured in such a way that sometimes, I have to receive “important” phone calls. For instance, my doctor recently placed a referral for me to see a specialist. I’ve been told that the hospital is going to call me some time in the next few weeks. I don’t want to miss that phone call, and so I have to disable “do not disturb”. However, because the stock Android OS has only one slider for “Ring & notification volume”, disabling do not disturb means that my phone will constantly “ding” and produce annoying sounds every time I get a text message or any app produces a notification, which is very disruptive. The fact is, while I occasionally do want my phone to ring so I can receive important phone calls, I basically never want app notifications to produce sound. I’ve been told that I should go and individually disable notifications for every single app on my phone, but you tell me, why in the fuck can’t there simply be two separate fucking sliders for “Ring volume” and “Notification volume”? In my opinion, the fact that there isn’t simply highlights continued gross incompetence and disregard for user experience. Surely, this design flaw has caused millions of people to experience unnecessary anxiety, and should have been fixed years ago.
This is turning out to be a long-ish blog post, but as I said, I’ve kept the best story for last. I’m in the process of buying a new place, and I’ll be moving in two weeks from now. As part of this, I’ve decided to do some renovations, and so I needed to get some construction materials, including sheets of drywall. This is a bit awkward, because I’m a woman living in the city. I don’t have a car or a driver’s license. Sheets of drywall are also quite heavy, and too big to fit in the building’s elevator, meaning they have to be carried in the stairs up to the third floor. Yikes.
In Montreal, where I live, there are 3 main companies selling renovation supplies: Home Depot, Rona and Reno-Depot. Home Depot is the only one that had all the things I needed to order, so I went to their website and added all the items to my cart. It took me about 45 minutes to select everything and fill the order form, but when I got to the point where I could place the order, the website gave me a message saying “An unknown error has occurred”. That’s it, no more details than that, no description of the cause of the error, just, sorry lol, nope, you can’t place this order, and you don’t get an explanation. I was really frustrated that I had wasted almost an hour trying to place that order. A friend of mine suggested that maybe she could try placing the order and it would work. I printed the page with the contents of my cart to a PDF document and sent them over. It worked for her, she was able to place the order, and so I sent her an electronic payment to cover the costs.
Since my new place is on the third floor, we had some time pressure to get things done, and heavy items would have to be carried up the stairs, we paid extra specifically to have the items delivered inside the condo unit and within a fixed time period between noon and 3PM. The total cost for delivery was 90 Canadian dollars, which seems fairly outrageous, but sometimes, you just have no choice. I was expecting my delivery before 3PM, and the Home Depot website had said that I would get a text 30 minutes before delivery. At 2:59PM, I received two text messages at the same time. The first said “Your order has just been picked up”. The second said “Your order has just been delivered, click here to rate your delivery experience”. Again, I was filled with a sense of dread. Had they tried to reach me and failed? Had they just dumped the construction materials outside? I rushed downstairs. There was no sign of a delivery truck or any of the materials. I figured there must be another software bug, despite what the second text message said, the delivery clearly hadn’t happened yet.
Sure enough, at 3:27PM, 27 minutes after the end of my delivery window, I received a phone call from a delivery driver. He was downstairs, and he was about to dump the construction materials on the sidewalk. NO! I explained that I had paid extra to have the materials delivered inside the unit. I could show him the email that proved that I had paid specifically for this service. He argued back, according to his system, he was supposed to dump the materials at the curb. Furthermore, they had only sent one guy. There was no way he alone could carry 8 foot long, 56-pound sheets of drywall up to the third floor. I raised my voice, he raised his. After a few minutes, he said he would call his manager. He called back. The delivery company would send a second truck with another guy to help him carry the materials upstairs. I felt angry, but also glad that I had stood my ground in that argument.
The first guy waited, sitting on the side of the curb in the heat, looking angry, doing nothing, for about 30 minutes until the second guy showed up to help. When the second delivery guy showed up, he asked to see the email. I showed him proof that I had paid to have things delivered upstairs. He also stated that their system said they only had to drop things in front of the building, but that he believed me. The delivery company was a subcontractor, and this was a software bug they had encountered before. This bug had caused multiple other customers to be extremely upset. So upset, in fact, that one customer, he said, had literally taken him hostage once, and another one had assaulted him. Gross, almost criminal incompetence on the part of one or more developers somewhere had again caused many people to waste time and to experience stress, anger, and even violence. The most infuriating part of this though, of course, is that bugs like this are known to exist, but they often go unfixed for months, sometimes even years. The people responsible have to know that their incompetence, and their inaction is causing continued real-world harm.
The point of this blog post is that, although most of us don’t work on software that would directly be considered safety-critical, we live in a world that’s becoming increasingly automated and computerized, and sometimes, bugs in seemingly mundane pieces of code, even web apps, can cause real-world suffering and harm, particularly when they go unfixed for weeks, months or even years. Part of the problem may be that many industry players lack respect for software engineering as a craft. Programmers are seen as replaceable cogs and as “code monkeys”, and not always given enough time to do due diligence. Some industry players also love the idea that you can take a random person, put them through a 3-month bootcamp, and get a useful, replaceable code monkey at the other end of that process. I want to tell you that no matter how you got to where you are today, if you do your job seriously, and you care about user experience, you could be making a real difference in the quality of life of many people. Skilled software engineers don’t wear masks or capes, but they can still have cool aliases, and they truly have the power to make the world better or worse.
Log in
reply
