Hana Lee Goldin:

The search bar you already have is more capable than that arrangement requires you to know. With the right syntax, it becomes a precision instrument: narrow by domain, by date, by file type, by exact phrase. We can pull up archived pages, surface open file directories, and even find what people said in forums instead of what brands want us to find. None of it requires a new tool or a paid account. The capability has been there the whole time.

Advanced search operations are something Google does better than any competitor. DuckDuckGo has its bangs and I like them very much, but Google has a vast catalogue able to be searched with such precision — to a point. If you use these advanced search operators, get ready to see a lot of CAPTCHAs. Google will slow you down and may even block you temporarily if you use it too well.

⌥ Permalink

The newest episode of “Upgrade” is a wonderful retelling of a very particular history (also available as a video):

Jason and Myke tell the story of Apple’s origin. It emerged from the unique environment of the Santa Clara valley suburbs of the ’70s thanks to the particular genius of its two co-founders and some surprising help they got along the way.

Though I was familiar with much of this, I cannot think of many better people to tell it than Jason Snell. I have already seen one thinkpiece after another about what a fifty year-old — ish — Apple means in the grand scope, and there is definitely a place for that. Today’s Apple is a long way from this origin story, of course, but what a story it is.

This gives me an excuse to explain why I am fascinated by this one computer company. Though this story is great, that is not why, nor is it the history of successfully bringing the graphical user interface to the market, nor the ’90s–’00s turnaround. Those are all parts of it. But the main reason I am fascinated by Apple is that it has built such a distinct identity for itself. It has not always stuck to it but, if anything, I think that helps reinforce the existence of an Apple-y identity. Some might attribute that to a particular way of marketing itself which, while true, also emphasizes how important that identity is: when its messaging does not match the products, services, experience, or expected corporate behaviour, it is noticeable.

This is all a bit mythical, to be sure. The garage-era Steves probably would not imagine Apple celebrating its fiftieth birthday by being the second most valuable corporation in the world, nor would they think it would hire Paul McCartney for its employee party. To me, one of those things feels more Apple-y than the other. It feels right for the company to celebrate with a music legend; it probably does not need to be quite so rich or powerful to do that, though. Apple has long been a really, really big corporation, and that — in itself — does not feel very Apple-y to me. That, too, is fascinating.

⌥ Permalink

Mark Gurman, last week in Bloomberg:

Apple Inc. plans to open Siri to outside artificial intelligence assistants, a major move aimed at bolstering the iPhone as an AI platform.

The company is preparing to make the change as part of a Siri overhaul in its upcoming iOS 27 operating system update, according to people with knowledge of the matter. The assistant can already tap into ChatGPT through a partnership with OpenAI, but Apple will now allow competing services to do the same.

This is not unexpected. In the Apple Intelligence introduction at WWDC 2024, Craig Federighi said “we want you to be able to use these external models without having to jump between different tools”, and that they were “starting” with ChatGPT. Gurman points this out and also notes Federighi’s teased Google Gemini integration. Tim Cook, in an October 2025 earnings call, said much the same. (Gurman also notes that this integration is “separate from Apple’s work with Google to rebuild Siri using Gemini models”, but “the news initially weighed on shares of Google”, which I am sure is exactly the reason for them dropping 3.4% and nothing to do with an existing weeklong slide but, then again, I do not work at Bloomberg so who the hell am I to say?)

Gurman, in his “Power On” newsletter over the weekend, further explored what he calls Apple “doubl[ing] down” on a “revamped A.I. and Siri strategy”:

That reality is shaping the company’s new approach, set to be unveiled at the Worldwide Developers Conference on June 8. Rather than engaging in an AI arms race, Apple is focusing on its core strengths: selling highly profitable hardware and making money off the services that run on it.

Historically, Apple’s software — iMessage, Maps and Photos, for example — has been about driving product sales rather than generating revenue in their own right. Rivals, in contrast, are aggressively monetizing AI through subscriptions and premium apps. Apple understands that few, if any, users will pay for Siri or its other AI technology. The opportunity to turn Apple Intelligence into a moneymaker has effectively passed.

What would have been more newsworthy here is if Apple’s A.I. strategy were anything other than building software exclusively for its proprietary hardware. This does not sound like a “revamped” strategy; it sounds like Apple’s whole deal. If it can use Apple Intelligence or Siri in the future, it certainly might; it is putting ads in Apple Maps after all. Services is a money-printing machine with less risk. But it is still a hardware company.

This part made me double-take and wonder if I missed something. In February 2024, following Apple’s cancellation of its car project, Gurman predicted that hardware would continue to be Apple’s primary business “for now”, as though that will change in the near future. This has been constant since Apple Intelligence was announced at WWDC that year.

What one could argue has been a change of strategy is the rumoured development of a chatbot; Gurman called it a “strategic shift” when he broke the news. But that, too, is somewhat inaccurate in two ways: Gurman’s description of it is as an overhauled version of Siri that will let people do normal Siri stuff — setting timers, end of list — plus some of the features Apple announced in 2024 but has not yet shipped which, confusingly, were also first set to ship in an update to iOS 26 without the wholly new version of Siri but also depending on Gemini. Got it?

But even that is not much of a strategy shift. Gurman tweeted in May 2024 — before WWDC and the debut of Apple Intelligence — that “Apple isn’t building its own chatbot but knows the market wants it so it’s going elsewhere for it. It’s the same playbook as search.” So, again, it is just borrowing from its ages-old playbook. It will continue to have proprietary stuff that ostensibly works seamlessly across a user’s Apple-branded hardware, allow installation of third-party add-ons, and rely on Google for some core functionality. How, exactly, is this a “revamp”?

Anyway, here is what Gurman wrote in January after the Gemini announcement and before the first build of iOS 26.4 was released:

Today, Apple appears to be less than a month away from unveiling the results of this partnership. The company has been planning an announcement of the new Siri in the second half of February, when it will give demonstrations of the functionality.

Whether that takes the form of a major event or a smaller, tightly controlled briefing — perhaps at Apple’s New York media loft — remains unclear. Either way, Apple is just weeks away from finally delivering on the Siri promises made at its Worldwide Developers Conference back in June 2024. At long last, the assistant should be able to tap into personal data and on-screen content to fulfill tasks.

Apple today shipped the first build of iOS 26.5 to developers without any sign of those features. While they may come in a later build, Juli Clover, of MacRumors, speculates they have been kicked to iOS 27.

Does not seem like much has changed at all.

Sometimes, I do not recognize a trap until I am already in it. Photos in iCloud is one such situation.

When Apple launched iCloud Photo Library in 2014, I was all-in. Not only is it where I store the photos I take on my iPhone, it is where I keep the ones from my digital cameras and my film scans, and everything from my old iPhoto and Aperture libraries. I have culled a bunch of bad photos and I try not to hoard, but it is more-or-less a catalogue of every photo I have taken since mid-2007. I like the idea of a centralized database of my photos, available on all my devices, that is functionally part of my backup strategy.¹

But, also, it is large. When I started putting photos in there eleven years ago with a 200 GB plan, I failed to recognize it would become an albatross. iCloud Storage says it is now 1.5 TB and, between the amount of other stuff I have in iCloud and my Family Sharing usage, I have just 82 GB of available space. 2 TB seemed like such a large amount of space until I used 1.9 of it.

Apple’s next iCloud tier is a generous 6 TB, but it costs another $324 per year. I could buy a new 6 TB hard disk annually for that kind of money. While upgrading tiers is, by far, the easiest way to solve this problem, it only kicks that can down that road, the end of which currently has whatever two terabytes’ worth of cans looks like.

A better solution is to recognize I do not need instant access to all 95,000 photos in my library, but iCloud has no room for this kind of nuance. The iCloud syncing preference is either on or off for the entire library.

Unfortunately, trying to explain what goes wrong when you try to deviate from Apple’s model of how photo libraries ought to work will become a bit of a rant. And I will preface this by saying this is all using Photos running on MacOS Ventura, which is many years behind the most recent version of MacOS. It is not possible for me to use the latest version of Photos to make these changes because upgraded libraries cannot be opened by older versions of Photos. However, in my defense, I will also note that the version on Ventura is Photos 8.0 and these are the kinds of bugs and omissions inexcusable after that many revisions.

So: the next best thing is to create a separate Photos library — one that will remain unsynced with iCloud. Photos makes this pretty easy by launching while holding the Option (⌥) key. But how does one move images from one library to the other? Photos is a single-window application — you cannot even open different images in new windows, let alone run separate libraries in separate windows. This should be possible, but it is not.

As a workaround, Apple allows you to import images from one Photos library into another — but not if the source library is synced with iCloud. You therefore need to turn off iCloud sync before proceeding, at which point you may discover that iCloud is not as dependable as you might have expected.

I have “Download Originals to this Mac” enabled, which means that Photos should — should — retain a full copy of my library on my local disk. But when I unchecked the “iCloud Photos” box in Settings, I was greeted by a dialog box informing me that I would lose 817 low-resolution local copies, something which should not exist given my settings, though reassuring me that the originals were indeed safe in iCloud. There is no way to know which photos these are nor, therefore, any way to confirm they are actually stored at full resolution in iCloud. I tried all the usual troubleshooting steps. I repaired my library, then attempted to turn off iCloud Photos; now I had 850 low-resolution local copies. I tried a neat trick where you select all the pictures in your library and select “Play Slideshow”, at which point my Mac said it was downloading 733 original images, then I tried turning off iCloud Photos again and was told I would lose around 150 low-resolution copies.

You will note none of these numbers add or resolve correctly. That is, I have learned, pretty standard for Photos. Currently, it says I have 94,529 photos and 898 videos in the “Library” view, but if I select all the items in that view, it says there are a total of 95,433 items selected, which is not the same as 94,529 + 898. It is only a difference of six items but, also, it is an inexplicable difference of six.

At this point, I figured I would assume those 150 photos were probably in iCloud, sacrifice the low-resolution local copies, and prepare for importing into the second non-synced library I had created. So I did that, switched libraries, and selected my main library for import. You might think reading one Photos library from another stored on the same SSD would be pretty quick. Yes, there are over 95,000 items and they all have associated thumbnails, but it takes only a beat to load the library from scratch in Photos.

It took over thirty minutes.

After I patiently waited that out, I selected a batch of photos from a specific event and chose to import them into an album, so they stay categorized. Oh, that is right — just because you are importing across Photos libraries, that does not mean the structure will be retained. There is no way, as far as I can tell, to keep the same albums across libraries; you need to rebuild them.

After those finished importing, I pulled up my main library again to do the next event. You might expect it to retain some memory of the import source I had only just accessed. No — it took another thirty minutes to load. It does this every time I want to import media from my main library. It is not like that library is changing; it is no longer synced with iCloud, remember. It just treats every time it is opened as the first time.

And it was at this point I realized the importer did not display my library in an organized or logical fashion. I had expected it to be sorted old-to-new since that is how Photos says it is displayed, but I saw photos from many different years all jumbled together. It is almost in order, at times, but then I would notice sequential photos scattered all over.

My guess — and this is only a guess — is that it sub-orders by album, but does no further sorting after that. This is a problem for me given a quirk in my organizational structure. In addition to albums for different events, I have smart albums for each of my cameras and each of my iPhone’s individual lenses. But that still does not excuse the importer’s inability to sort old-to-new. The event I spotted early on and was able to import was basically a fluke. If I continued using this cross-library importing strategy, I would not be able to keep track of which photos I could remove from my main library.

There is another option, which is to export a selection of unmodified originals from my primary library to a folder on disk, and then switch libraries, and import them. This is an imperfect solution. Most obviously, it requires a healthy amount of spare disk space, enough to store the selected set of photos thrice, at least temporarily: once in the primary library, once in the folder, and once in the new library. It also means any adjustments made using the Photos app will be discarded — but, then again, importing directly from the library only copies the edited version of a photo without any of its history or adjustments preserved.

What I would not do, under any circumstance — and what I would strongly recommend anyone avoiding — is to use the Export Photos option. This will produce a bunch of lossy-compressed photos, and you do not want that.

Anyway, on my first attempt of trying the export-originals-then-import process, I exported the 20,528 oldest photos in my library to a folder. Then I switched to the archive library I had created, and imported that same folder. After it was complete, Photos said it had imported 17,848 items, a difference of nearly 3,000 photos. To answer your question: no, I have no idea why, or which ones, or what happened here.

This sucks. And it particularly sucks because most data is at least kind of important, but photos are really important, and I cannot trust this application to handle them.

There is this quote that has stuck with me for nearly twenty years, from Scott Forstall’s introduction to Time Machine (31:30) at WWDC 2006. Maybe it is the message itself or maybe it is the perfectly timed voice crack on the word “awful”, but this resonated with me:

When I look on my Mac, I find these pictures of my kids that, to me, are absolutely priceless. And in fact, I have thousands of these photos.

If I were to lose a single one of these photos, it would be awful. But if I were to lose all of these photos because my hard drive died, I’d be devastated. I never, ever want to lose these photos.

I have this library stored locally and backed up, or at least I though I did. I thought I could trust iCloud to be an extra layer of insurance. What I am now realizing is that iCloud may, in fact, be a liability. The simple fact is that I have no idea the state my photos library is currently in: which photos I have in full resolution locally, which ones are low-resolution with iCloud originals, and which ones have possibly been lost.

The kindest and least cynical interpretation of the state of iCloud Photos is that Apple does not care nearly enough about this “absolutely priceless” data. (A more cynical explanation is, of course, that services revenue has compromised Apple’s standards.) Many of these photos are, in fact, priceless to me, which is why I am questioning whether I want iCloud involved at all. I certainly have no reason to give Apple more money each month to keep wrecking my library.

I will need to dedicate real, significant time to minimizing my iCloud dependence. I will need to check and re-check everything I do as best I can, while recognizing the difficulty I will have in doing so with the limited information I have in my iCloud account. This is undeniably frustrating. I am glad I caught this, however, as I sure had not previously thought nearly as much as I should have about the integrity of my library. Now, I am correcting for it. I hope it is not too late.

Gabriel Hilty, Toronto Star:

Speaking alongside Chief Myron Demkiw on Thursday at Toronto police headquarters, Public Safety Minister Gary Anandasangaree said Bill C-22, the Lawful Access Act, will “create a legal framework for modernized, lawful access regime in Canada,” something that police forces have been requested “for decades.”

The bill is Prime Minister Mark Carney government’s second push to pass expanded police search powers into law. An earlier proposal on lawful access was met with widespread concerns over potential overreach.

Paula Tran, Ottawa Citizen:

“The bill effectively lowers the standard that police have to meet. Sure, law enforcement says they’re happy, but that means they need less evidence and need to do less work to get the information about subscribers, and I don’t think that’s that’s a good thing. It’s the lowest standard in Canadian criminal law,” [Michael] Geist said.

[…]

Bill C-22 also proposes new legislation that would compel telecommunication companies to store and retain client metadata, like device location, for a year and to make it available to law enforcement and CSIS with a warrant. The metadata can be used to track a person’s live location in case they pose a national security threat or are considered to be in danger.

OpenMedia is running a campaign to email Members of Parliament, though I am suspicious these form letter campaigns actually work. It is a bare minimum signal since it requires almost no commitment. My M.P. is usually opposed to anything proposed by this government, since he is in the official opposition, but his reaction to this bill’s much worse predecessor is that it contained “the most commonsensical security changes we need to make in Canada”. I expect I will be writing him and, when I do, I will be sure to adjust OpenMedia’s form letter. If you are writing to your M.P., I suggest you do the same if you can spare the time.

⌥ Permalink

Meera Raman, Globe and Mail:

Wealthsimple is seeking to offer prediction trading in Canada, a controversial type of betting on real-world events that has surged in popularity in the past year, and has been largely banned in this country.

[…]

The approval for Ontario-based Wealthsimple permits it only to offer contracts tied to economic indicators, financial markets and climate trends, the company confirmed – not sports or elections, which are among the most popular uses of prediction markets in the United States.

Interactive Brokers launched here last April. Why are we doing this to ourselves?

⌥ Permalink

Mike Masnick, of Techdirt, unsurprisingly opposes the verdicts earlier this week finding Meta and Google guilty of liability for how their products impact children’s safety. I think it is a perspective worth reading. Unlike the Wall Street Journal, Masnick respects your intelligence and brings actual substance. Still, I have some disagreements.

Masnick, on the “design choices” argument:

This distinction — between “design” and “content” — sounds reasonable for about three seconds. Then you realize it falls apart completely.

Here’s a thought experiment: imagine Instagram, but every single post is a video of paint drying. Same infinite scroll. Same autoplay. Same algorithmic recommendations. Same notification systems. Is anyone addicted? Is anyone harmed? Is anyone suing?

Of course not. Because infinite scroll is not inherently harmful. Autoplay is not inherently harmful. Algorithmic recommendations are not inherently harmful. These features only matter because of the content they deliver. The “addictive design” does nothing without the underlying user-generated content that makes people want to keep scrolling.

This sounds like a reasonable retort until you think about it for three more seconds and realize that the lack of neutrality in the outcomes of these decisions is the entire point. Users post all kinds of stuff on social media platforms, and those posts can be delivered in all kinds of different ways, as Masnick also writes. They can be shown in reverse-chronological order in a lengthy scroll, or they can be shown one at a time like with Stories. The source of the posts someone sees might be limited to just accounts a user has opted into, or it can be broadened to any account from anyone in the world. Twitter used to have a public “firehose” feed.

But many of the biggest and most popular platforms have coalesced around a feed of material users did not ask for. This is not like television, where each show has been produced and vetted by human beings, and there are expectations for what is on at different times of the day. This is automated and users have virtually no control within the platforms themselves. If you do not like what Instagram is serving you on your main feed, your choice is to stop using Instagram entirely — even if you like and use other features.

Platforms know people will post objectionable and graphic material if they are given a text box or an upload button. We know it is “impossible” to moderate a platform well at scale. But we are supposed to believe they have basically no responsibility for what users post and what their systems surface in users’ feeds? Pick one.

Masnick, on the risks of legal accountability for smaller platforms:

And this is already happening. TikTok and Snap were also named as defendants in the California case. They both settled before trial — not because they necessarily thought they’d lose on the merits, but because the cost of fighting through a multi-week jury trial can be staggering. If companies the size of TikTok and Snap can’t stomach the expense, imagine what this means for mid-size platforms, small forums, or individual website operators.

I am going to need a citation that TikTok and Snap caved because they could not afford continuing to fight. It seems just as plausible they could see which way the winds were blowing, given what I have read so far in the evidence that has been released.

Masnick:

One of the key pieces of evidence the New Mexico attorney general used against Meta was the company’s 2023 decision to add end-to-end encryption to Facebook Messenger. The argument went like this: predators used Messenger to groom minors and exchange child sexual abuse material. By encrypting those messages, Meta made it harder for law enforcement to access evidence of those crimes. Therefore, the encryption was a design choice that enabled harm.

The state is now seeking court-mandated changes including “protecting minors from encrypted communications that shield bad actors.”

Yes, the end result of the New Mexico ruling might be that Meta is ordered to make everyone’s communications less secure. That should be terrifying to everyone. Even those cheering on the verdict.

This is undeniably a worrisome precedent. I will note Raúl Torrez, New Mexico’s Attorney General and the man who brought this case against Meta, says he wants to do so for minors only. The implementation of this is an obvious question, though one that mandated age-gating would admittedly make straightforward.

Meta cited low usage when it announced earlier this month that it would be turning off end-to-end encryption in Instagram. If it is a question of safety or liability, it is one Meta would probably find difficult to articulate given end-to-end encryption remains available and enabled by default in Messenger and WhatsApp. An executive raised concerns about the feature when it was being planned, drawing a distinction between it and WhatsApp because the latter “does not make it easy to make social connections, meaning making Messenger e2ee will be far, far worse”.

I think Masnick makes some good arguments in this piece and raises some good questions. It is very possible or even likely this all gets unwound when it is appealed. I, too, expect the ripple effects of these cases to create some chaos. But I do not think the correct response to a lack of corporate accountability — or, frankly, standards — is, in Masnick’s words, “actually funding mental health care for young people”. That is not to say mental health should not be funded, only that it is a red herring response. In the U.S., total spending on children’s mental health care rose by 50% between 2011 and 2017; it continued to rise through the pandemic, of course. Perhaps that is not enough. But, also, it is extraordinary to think that we should allow companies to do knowingly harmful things and expect everyone else to correct for the predictable outcomes.

⌥ Permalink

Chance Miller, of 9to5Mac, serving here as Apple’s official bad news launderer:

It’s the end of an era: Apple has confirmed to 9to5Mac that the Mac Pro is being discontinued. It has been removed from Apple’s website as of Thursday afternoon. The “buy” page on Apple’s website for the Mac Pro now redirects to the Mac’s homepage, where all references have been removed.

Apple has also confirmed to 9to5Mac that it has no plans to offer future Mac Pro hardware.

Mark Gurman reported last year that it was “on the back burner”.

The Mac Pro was, realistically, killed off when the Apple Silicon era ended support for expandability and upgradability. The Mac Studio effectively takes its place, and is strategically similar to the “trash can” Mac Pro with all expandability offloaded to external peripherals. Unfortunate, but I think it was dishonest to keep selling this version of a “pro” Macintosh.

⌥ Permalink

Morgan Lee, Associated Press:

A New Mexico jury found Tuesday that social media conglomerate Meta is harmful to children’s mental health and in violation of state consumer protection law.

The landmark decision comes after a nearly seven-week trial. Jurors sided with state prosecutors who argued that Meta — which owns Instagram, Facebook and WhatsApp — prioritized profits over safety. The jury determined Meta violated parts of the state’s Unfair Practices Act on accusations the company hid what it knew [about] the dangers of child sexual exploitation on its platforms and impacts on child mental health.

Meta communications jackass Andy Stone noted on X his company’s delight to be liable for “a fraction of what the State sought”. The company says it will appeal the verdict.

Stephen Morris and Hannah Murphy, Financial Times:

Meta and Google were found liable in a landmark legal case that social media platforms are designed to be addictive to children, opening up the tech giants to penalties in thousands of similar claims filed around the US.

A jury in the Los Angeles trial on Wednesday returned a verdict after nine days of deliberation, finding Meta’s platforms such as Instagram and Google’s YouTube were harmful to children and teenagers and that the companies failed to warn users of the dangers.

Dara Kerr, the Guardian:

To come to its liability decision, the jury was asked whether the companies’ negligence was a substantial factor in causing harm to KGM [the plaintiff] and if the tech firms knew the design of their products was dangerous. The 12-person panel of jurors returned a 10-2 split answering in favor of the plaintiff on every single question.

Meta says it will also appeal this verdict.

Sonja Sharp, Los Angeles Times:

Collectively, the suits seek to prove that harm flowed not from user content but from the design and operation of the platforms themselves.

That’s a critical legal distinction, experts say. Social media companies have so far been protected by a powerful 1996 law called Section 230, which has shielded the apps from responsibility for what happens to children who use it.

For its part, the Wall Street Journal editorial board is standing up for beleaguered social media companies in an editorial today criticizing everything about these verdicts, including this specific means of liability, which it calls a “dodge” around Section 230.

But it is not. The principles described by Section 230 are a good foundation for the internet. This law, while U.S.-centric, has enabled the web around the world to flourish. Making companies legally liable for the things users post will not fix the mess we are in, but it would cause great damage if enacted.

Product design, though, is a different question. It would be a mistake, I think, to read Section 230 as a blanket allowance for any way platforms wish to use or display users’ posts. (Update: In part, that is because it is a free speech question.) From my entirely layman perspective, it has never struck me as entirely reasonable that the recommendations systems of these platforms should have no duty or expectation of care.

The Journal’s editorial board largely exists to produce rage bait and defend the interests of the powerful, so I am loath to give it too much attention, but I thought this paragraph was pretty rich:

Trial lawyers and juries may figure that Big Tech companies can afford to pay, but extorting companies is certain to have downstream consequences. Meta and Google are spending hundreds of billions of dollars on artificial intelligence this year, which could have positive social impacts such as accelerating treatments for cancer.

Do not sue tech companies because they could be finding cancer treatments — why should I take this editorial board seriously if its members are writing jokes like these? They think you are stupid.

As for the two cases, I am curious about how these conclusions actually play out. I imagine other people who feel their lives have been eroded by the specific way these platforms are designed will be able to test their claims in court, too, and that it will be complicated by the inevitably lengthy appeals and relitigation process.

I am admittedly a little irritated by both decisions being reached by jury instead of a judge; I would have preferred to see reasoning instead of overwhelming agreement among random people. However, it sends a strong signal to big social media platforms that people saw and heard evidence about how these products are designed, and they agreed it was damaging. This is true of all users, not just children. Meta tunes its feeds (PDF) for maximizing engagement across the board, and it surely is not the only one. There are a staggering number of partially redacted exhibits released today to go through, if one is so inclined.

If these big social platforms are listening, the signals are out there: people may be spending a lot of time with these products, but that is not a good proxy for their enjoyment or satisfaction. Research indicates a moderate amount of use is correlated with neutral or even positive outcomes among children, yet there are too many incentives in these apps to push past self-control mechanisms. These products should be designed differently.

⌥ Permalink

Ashley Capoot and Jonathan Vanian, CNBC:

Meta is laying off several hundred employees on Wednesday, CNBC confirmed.

The cuts are happening across several different organizations within the company, including Facebook, global operations, recruiting, sales and its virtual reality division Reality Labs, according to a source familiar with the company’s plans who asked not to be named because they are confidential.

Some impacted employees are being offered new roles within the company, the person said. In some cases, those new positions will require relocation.

“Several hundred” employees is a long way off from the numbers reported earlier this month. Perhaps Reuters got it all wrong but, more worryingly for employees, perhaps those figures were correct and this is only the beginning.

⌥ Permalink

Danny Bolella attended one of Apple’s “Let’s Talk Liquid Glass” workshops:

Let’s address the elephant in the room. If you read the comments on my articles or browse the iOS subreddits, there is a vocal contingent of developers betting that Apple is going to roll back Liquid Glass.

The rationale usually points to the initial community backlash, the slower adoption rate of iOS 26, and the news that Alan Dye left Apple for Meta. The prevailing theory has been: “Just wait it out. They’ll revert to flat design.”

I shared this exact sentiment with the Apple team.

Their reaction? Genuine shock. They were actually concerned that developers were holding onto this position. They made it emphatically clear that Liquid Glass is absolutely moving forward, evolving, and expanding across the ecosystem.

Unsurprising. Though I expect a number of people reading this will be disappointed, I cannot imagine a world in which Apple would either revert to its previous design language or whip together something new. It is going to ride Liquid Glass and evolve it for a long time; if history is a good rule of thumb, assume ten years.

In theory, this is a good thing. Even on MacOS, I can find things I prefer to its predecessor, though admittedly they are few and far between. This visual design feels much more at home on iOS. The things that cause me far more frustration on a daily basis are the unrelenting bugs across Apple’s ecosystem, like how I just finished listening to an album with my headphones and then, when I clicked “play” on a new album, Music on MacOS decided it should AirPlay to my television instead of continuing through my headphones. That kind of stuff.

Regardless of whatever one thinks the visual qualities of Liquid Glass, the software quality problem is notable there, too. We are now on the OS 26.4 set of releases and I am still running into plenty of instances with bizarre and distracting compositing problems. On my iPhone, the gradients that are supposed to help with legibility in the status bar and toolbar appear, disappear, and change colour with seemingly little relevance to what is underneath them. Notification Centre remains illegible until it is fully pulled down. Plus, I still see the kinds of graphics bugs and Auto Layout problems I have seen for a decade.

I hope to see a more fully considered version of the Liquid Glass design language at WWDC this year, and not merely from a visual perspective. This user interface is software, just like dedicated applications, and it is chockablock full of bugs.

Bolella, emphasis mine:

I plan to share an article soon where I break down the exact physics, z-axis rules, and “Barbell Layouts” of this hierarchy. But the high-level takeaway from the NYC labs is crystal clear: maximize your content, push your controls to the poles, and never let the interface compete with the information.

If you say so, Apple.

⌥ Permalink

Berber Jin, Wall Street Journal:

CEO Sam Altman announced the changes to staff on Tuesday, writing that the company would wind down products that use its video models. In addition to the consumer app, OpenAI is also discontinuing a version of Sora for developers and won’t support video functionality inside ChatGPT, either.

OpenAI is not shutting this down because it has ethical qualms with what it has created, despite good reasons to do just that. It is because it is expensive without any clear reason for it to exist other than because OpenAI wants to be everywhere.

If you are desperate for a completely synthetic social media feed, Meta’s Vibes is apparently still around. Users are readily abusing it, of course, because that is what happens if you give people a text input box.

Update: In a tweet, OpenAI has confirmed it is shutting down Sora. But, while it originally announced “We’re saying goodbye to Sora”, it changed that about an hour later to read “We’re saying goodbye to the Sora app“, emphasis mine. The Journal has not changed its report to retract claims about shutting down the platform altogether, though, while OpenAI continues to promote Sora API pricing.

⌥ Permalink

Apple, in a press release with the title “Introducing Apple Business — a new all‑in‑one platform for businesses of all sizes”, buried in a section tucked in the middle labelled “Enhanced Discoverability in Apple Maps”, both of which are so anodyne as to encourage missing this key bit of news:

Every day, users choose Apple Maps to discover and explore places and businesses around them. Beginning this summer in the U.S. and Canada, businesses will have a new way to be discovered by using Apple Business to create ads on Maps. Ads on Maps will appear when users search in Maps, and can appear at the top of a user’s search results based on relevance, as well as at the top of a new Suggested Places experience in Maps, which will display recommendations based on what’s trending nearby, the user’s recent searches, and more. Ads will be clearly marked to ensure transparency for Maps users.

The way they are “clearly marked” is with a light blue background and a small “Ad” badge, though it is worth noting Apple has been testing an even less obvious demarcation for App Store ads. In the case of the App Store, I have found the advertising blitz junks up search results more than it helps me find things I am interested in.

This is surely not something users are asking for. I would settle for a more reliable search engine, one that prioritizes results immediately near me instead of finding places in cities often hundreds of kilometres away. There are no details yet on what targeting advertisers will be allowed to use, but it will be extremely frustrating if the only reason I begin seeing more immediately relevant results is because a local business had to pay for the spot.

Update: I have this one little nagging thought I cannot shake. Maps has been an imperfect — to be kind — app for nearly fifteen years, but it was ultimately a self-evident piece of good software, at least in theory. It was a directory of points-of-interest, and a means of getting directions. With this announcement, it becomes a container for advertising. Its primary function feels corrupted, at least a little bit, because what users care about is now subservient to the interests of the businesses paying Apple.

⌥ Permalink

Lorenzo Franceschi-Bicchierai and Zack Whittaker, TechCrunch:

Last week, cybersecurity researchers uncovered a hacking campaign targeting iPhone users that used an advanced hacking tool called DarkSword. Now someone has leaked a newer version of DarkSword and published it on the code-sharing site GitHub.

Researchers are warning that this will allow any hacker to easily use the tools to target iPhone users running older versions of Apple’s operating systems who have not yet updated to its latest iOS 26 software. This likely affects hundreds of millions of actively used iPhones and iPads, according to Apple’s own data on out-of-date devices.

This is an entirely different exploit chain to the “Coruna” one which also surfaced earlier this month — so now there are two massive security exploits just floating around in the wild affecting a large number of iPhones. Apple is apparently concerned enough about these vulnerabilities that it is issuing patches as far back as iOS 15 though, disappointingly, only for devices that do not support newer major versions. If you have a device that can run iOS 26, you will be safer if it is running iOS 26.

It is, I should say, pretty brazen for the developers of this exploit chain to call the JavaScript file “rce_loader.js”. RCE stands for remote code execution. It is basically like calling the file “hacking_happens_here.js”.

⌥ Permalink

Sean Hollister, the Verge:

Since roughly the turn of the millennium, Google Search has been the bedrock of the web. People loved Google’s trustworthy “10 blue links” search experience and its unspoken promise: The website you click is the website you get.

Now, Google is beginning to replace news headlines in its search results with ones that are AI-generated. After doing something similar in its Google Discover news feed, it’s starting to mess with headlines in the traditional “10 blue links,” too. We’ve found multiple examples where Google replaced headlines we wrote with ones we did not, sometimes changing their meaning in the process.

As I noted when I linked to Hollister’s article about Discover back in December, this is not new in search results; it has been happening for years.

Danny Goodwin, Search Engine Land:

Dig deeper. Google changed 76% of title tags in Q1 2025 – Here’s what that means […]

According to the Google Search Central section on title links, originally published in 2021:

I am not arguing this is good or normal — the examples Hollister shows are extremely poor reflections of the articles in question — but I do not understand why it is only gaining traction now, nor how it meaningfully differs from what Google has been doing all along. It is indeed frustrating.

Many of the results you see in Google Search misrepresent the source material and are misleading. But that has been true for a while — which is a problem unto itself. People should not trust the results they see as represented by Google Search. The visual tone Google has maintained, however, is that it is a neutral directory. The summaries in A.I. Overview are delivered with an unearned dry authority, and the ten links below it are there because of a tense truce between Google’s goals and those of search optimization professionals.

Also, I had no idea that Search Engine Land had been acquired at some point by Semrush which, in turn, was bought by Adobe.

⌥ Permalink

Emily Birnbaum, writing for Bloomberg in July:

Meta is also helping to fund the Digital Childhood Alliance, a coalition of conservative groups leading efforts to pass app-store age verification, according to three people familiar with the funding.

The App Store Accountability Act is based on model legislation written by the Digital Childhood Alliance. The lobbying group also publishes marketing pieces, including one (PDF) that calls Apple’s age verification frameworks “ineffective”. Specifically, it points to the lack of parental consent required “for kids to enter into complex contracts”, with “no way to verify that parental consent has been obtained”.

Meta, for its part, requires users to self-report their birthday and click a button that says “I agree” to create an Instagram account. In fairness, the title of that page says “read and agree to our terms” and, on the terms page, Meta does say you need to be 13 years old. This is pretty standard stuff but, if Meta actually cared about this, it could voluntarily implement the stricter controls at sign-up without a legislative incentive.

Though this article was published last year, I am linking to it now because something called the TBOTE Project recently resurfaced these findings and added some of its own in an open source investigation. Unlike similar investigations from sources like Bellingcat, it does not appear that the person or people behind TBOTE have editors or fact-checkers to verify their interpretation of this information. That does not mean it is useless; it is simply worth exercising some caution. Regardless, their findings show a massive amount of lobbyist spending on Meta’s part to try and get these laws passed.

Birnbaum continues:

The App Association, a group backed by Apple, has been running ads in Texas, Alabama, Louisiana and Ohio arguing that the app store age verification bills are backed by porn websites and companies. The adult entertainment industry’s main lobby said it is not pushing for the bills; pornography is mostly banned from app stores.

This is obviously bad faith, but also flawed in the opposite direction: the porn industry wants device-level verification.

⌥ Permalink

Jacob Silverman, Business Insider:

The growing bloat of popular tech rhetoric could serve as evidence for how the tech industry, having conquered so much of daily life, work, and entertainment, has begun to exhaust its imaginative capacities. Industry leaders promised that the mammoth capital for AI outlay would lead to the creation of a smarter-than-human intelligence that would serve as a universal solvent, fixing climate change, poverty, and even the problem of death itself. But that horizon — which we are supposed to reach by pumping out more fossil-fuel emissions and destabilizing labor and education — remains impossibly far away.

Gallup’s polling on views of different business sectors has, frustratingly, no ability to permalink to a particular industry and its historical rankings; so, you will need to go down to “Industry and Business Sector Ratings, B Through E” and then click the pagination arrow to get to “Computer Industry” on the second page. Once there, you will find what seem at first glance to be some remarkably stable figures.

Look a little closer, though, and the numbers tell a different story. Summing the “very” and “somewhat” figures for each type of response shows a marked decline in positive reception since a high in 2017, and a steady climb in negative reception. There are lots of reasons for this; many of them I have written about. But I do not think these loudmouth executives are doing the industry any favours by bullshitting their way through interviews and promising nonsense.

That is the data-driven answer. These guys also just sound really stupid when they say stuff like “it also takes a lot of energy to train a human” or “the long-term vision is to […] create a tradeable asset out of any difference in opinion” or “I bought Twitter […] to try to help humanity, whom I love”. I know I am writing this on a website called Pixel Envy and I am, well, me, but these barons sound comical and dorky.

⌥ Permalink

When the United States Federal Trade Commission and Department of Justice jointly filed a lawsuit in 2024 against Adobe, I commented on the similarities between that complaint and the one against Amazon. Both are about the ease of entering into subscriptions that are later difficult or expensive to leave, both had alleged personal liability by executives — and, now, both have been settled out of court.

Michael Kan, PC Magazine:

Adobe has settled a 2024 lawsuit from the US government that alleged the company used hidden fees to trap users into paying for subscriptions.

On Friday, Adobe “finalized” an agreement with the Justice Department, which accused the software vendor of failing to inform new customers about payment terms or early termination fees. “While we disagree with the government’s claims and deny any wrongdoing, we are pleased to resolve this matter,” Adobe says.

I am sure Adobe has learned its lesson. Let us go and check its work. In its statement, Adobe says it has “made [its] sign-up and cancellation processes even more streamlined and transparent”. Here is how it describes its annual pricing, billed monthly, on its U.S. website:

Fee applies of half your remaining annual commitment if you cancel after Mar 31.

This is not the most direct sentence, but it is an accurate explanation of how much the fee will be, and when that fee takes effect — fourteen days from when I am writing this. It is followed by a little “i” informational icon. Clicking on it will display a callout noting when service will be cut off. For comparison, here is the equivalent disclaimer on its Canadian site:

Fee applies if you cancel after 14 days.

Here, too, there is a little informational icon. When you hover over it, Adobe says the same thing about cancellation, and adds that cancelling will incur an early termination fee. It is the same on the U.K. site.

What is the answer here? Does each country need to sue Adobe for its billing flow to disclose a reasonable amount of information?

⌥ Permalink

A few weeks ago, Meta published an update from Samantha Ryan, of Reality Labs, announced a “renewed focus” and a “doubling down” on virtual reality. It planned to achieve this by “almost exclusively” betting its future on the smartphone Horizon Worlds app.

In an announcement today, Meta shifted its definition of “almost exclusively” to simply “exclusively”:

Earlier this year, we shared an update on our renewed focus for VR and Horizon. We are separating the two platforms so each can grow with greater focus, and the Horizon Worlds platform will become a mobile-only experience. This separation will extend across our ecosystem, including our mobile app. To support this vision, we are making the following changes to streamline your Quest experience throughout 2026.

This opening paragraph is opaque and, though the announcement goes on to explain exactly what is happening, it is not nearly as clear as the email sent to Horizon Worlds users. I really think Meta is looking to exit from its pure V.R. efforts, especially with the sales success of the perv glasses.

As I write this, the Horizon app for iOS is the sixty-ninth most popular free game in the Canadian App Store, just behind Wordscapes and ahead of Perfect Makeover Cleaning ASMR. Nice?

⌥ Permalink

The Unicode Consortium would like to remind you to work closely with them if you are introducing a new symbol for your currency:

Such public usage leads to a need for the symbol to be encoded in the Unicode Standard and supported in commercial software and services. Standardization of a new character and subsequent support by vendors takes time: typically, at least one year, and often longer. All too often, however, monetary authorities announce creation of a new currency symbol anticipating immediate public adoption, then later discover there will be an unavoidable delay before the new symbol is widely supported in products and services.

I had no idea so many currency symbols had been introduced recently. Then again, before I read this, I had not given much thought to the one we use: $.

Hephzibah Anderson, for the BBC, in 2019:

The most widely accepted theory does in fact involve Spanish coinage, and it goes like this: in the colonies, trade between Spanish Americans and English Americans was lively, and the peso, or peso de ocho reales, was legal tender in the US until 1857. It was often shortened, so historians tell us, to the initial ‘P’ with an ‘S’ hovering beside it in superscript. Gradually, thanks to the scrawl of time-pressed merchants and scribes, that ‘P’ merged with the ‘S’ and lost its curve, leaving the vertical stroke like a stake down the centre of the ‘S’. A Spanish dollar was more or less worth an American dollar, so it’s easy to see how the sign might have transferred.

Not only the explanation for why all the world’s dollars have the same symbol, but also why we share it with the peso.

⌥ Permalink

How far can you go with IX Route Servers only?

On paper internet exchanges (IX) are very simple in their implementation, simply put together a bunch of routers on a shared layer 2 ethernet switch

I haven't made anything with AT Proto.

Okay, technically, I did made the Bluesky ThinkUp Tribute, which syncs with your Bluesky account and sends a nightly email about who changed their bio or handle on the website. It's a great little utility and I rely on it constantly. But that doesn't integrate very deeply with AT Proto.

I've fallen into the cycle of reading about AT Proto but not building anything on it: a pattern that I want to break. I blame other priorities for my lack of weekend hacking - when I do get time and energy to computer on the weekends I've spent it on maintaining and contributing to established projects instead of building new experiments. And my time during the week is mostly spent on Val Town priorities, like keeping the servers online, developing features, and implementing moderation.

I don't especially like writing about things without having 'something to show,' but to avoid the trap of neither writing nor building, here's some writing.

The tech that runs Bluesky is general-purpose

The AT Protocol is the tech that Bluesky, the Twitter alternative, is built on. It's fairly general-purpose and well-suited for building all kinds of applications, not just Bluesky, and has some very utopian ideas built in. Collectively, we're calling the stack and its applications the 'Atmosphere.'

This has been, recently, in my filter bubble, a big deal. Applications like Leaflet for blogging and tangled, a GitHub alternative, use the AT Protocol as core architecture, storing data on it, allowing other applications to provide alternative frontends, and using its identity system to let people log in with their domain names or Bluesky handles.

It is a breath of fresh air in the tech industry. The creativity of this community is inspiring, and with a few exceptions people are friendly and welcoming.

AT Proto learned lessons from other decentralization attempts

Decentralization has had a lot of false starts: see my old posts on Dat, IPFS, IPFS again, and Arweave for some of that backstory. I am a seeker in that space, ready to try out what's new and hoping that the technology works, even though most of the results so far have been lackluster.

The Bluesky team has a lot of experience with those previous efforts: Paul Frazee, the CTO cofounded Blue Link Labs which made Beaker and integrated with Dat, and he worked on Secure Scuttlebutt before that. Other Bluesky employees like Jeromy Johnson came from the IPFS team.

So Bluesky is a lot of people's second or third try at making decentralization work, and it shows in some of the thinking, especially Paul's writing about how Bluesky compares to P2P and magical mesh networks.

This is encouraging. A lot of decentralization ideas work in theory but not in practice. Much of the challenge is practical and human-level, and it is good that it seems like the Bluesky team anticipated things like moderating content from day one.

It's more like a magical database than like a new internet

The AT Protocol is a lot different from the decentralization tech that I've played around with the most, like Dat and IFPS. Both Dat and IPFS are kind of like 'generic blob stores': you can store any kind of content on them, and they had URL-like addressing for that content. They both aspired to be a sort of future-internet in shape: Dat had the Beaker Browser and for a while IPFS was built into the Brave Browser. So I kept trying to deploy my website onto these technologies, with varying success, and IPFS tried to host all of Wikipedia, with varying success.

AT Proto is more like a magic semi-schemaless database. A 'post' on Bluesky looks like this:

{
  "text": "some placemark updates: sorting & resizing table columns, new releases of simple-statistics and tokml, using changesets in all my projects\n\nmacwright.com/2026/03/15/o...",
  "$type": "app.bsky.feed.post",
  "embed": {
    "$type": "app.bsky.embed.external",
    "external": {
      "uri": "https://macwright.com/2026/03/15/oss-changelog",
      "title": "Placemark & OSS Changelog",
      "description": "JavaScript, math, maps, etc"
    }
  },
  "langs": ["en"],
  "facets": [{
    "index": { "byteEnd": 169, "byteStart": 140 },
    "features": [
      {
        "uri": "https://macwright.com/2026/03/15/oss-changelog",
        "$type": "app.bsky.richtext.facet#link"
      }
    ]
  }],
  "createdAt": "2026-03-15T23:03:29.022Z"
}

It's JSON-encoded, structured, and opinionated, and importantly, limited in size. Don't expect to put a ton of data in this Record - right now a record can't be more than 1MB when encoded as CBOR.

Of course a modern social network is nothing without images and vertical video, so Bluesky needs to store more than just JSON documents, and so there's Blob support - stored as raw binary data, referenced from a Record. Though blobs are limited too, with the limits varying by server but usually 100MB.

This was a big realization for me around tangled - that project which is extremely cool (rebuilding a more decentralized code collaboration platform) is not using AT Proto to store git data, but rather has servers called Knots that handle the git parts. It's a very cool infrastructure, but important to note that the way in which metadata and git content are stored is quite different.

Is AT Protocol a good database?

Obviously it isn't (just) a database but it's a useful frame: how does AT Protocol work with typical database requirements?

• Can it store a lot of data? Yes, but in small bits. It's more of a DynamoDB than an S3.
• Is it fast? It's surprisingly fast from what I've seen: stream.place uses the protocol for comments on livestreams, and they work quite well.
• Is it reliable? It seems so: the whole thing is built on event-sourcing and streams, and it has both the ability to replay streams when servers go down as well as to sync archival data.
• Is it decentralized? Kind of? It's federated, but if you have your data stored in a Personal Data Server, it isn't automatically replicated to other servers on the network. This is a unlike 'magical mesh networks' like secure scuttlebutt which store lots of copies of data.
• Is it indexed? Kind of! Obviously you don't want to process all of the data across all of the Bluesky network, and thankfully services like jetstream let you filter to only a specific collection.

Privacy is still a hard unsolved problem

So: you can store structured documents on AT Proto and small binary blobs - what about privacy? This might change soon because there's so much active development, but right now: you can't really use AT Proto for private data.

Paul has written a great discussion of different approaches, and it's clear that there are deep problems that require introspection and thorough evaluation, but that nothing is deployed yet. Bluesky does have direct messages, but according to Gavin Anderegg's investigation, they're 'off-protocol' so not actually anywhere on AT Proto.

This is obviously a big stumbling block for applications. Val Town couldn't use the Atmosphere for data storage if there is no concept of privacy. Right now our traditional backend infrastructure (mostly Postgres) makes both privacy and good-enough encryption at rest (mostly AES-GCM) pretty simple to implement, if not foolproof.

There are experiments around implementing privacy on AT Proto, like Germ, but none have solved all of the problems that need solving.

What should I do with it?

I have plenty of existing and potential projects to use as testbeds for new technology: that's one of the main reason why side-projects can be so nice, is that they're safe places to use bleeding-edge technology without risking alienating your entire team at work. So where can I use AT Proto?

I would love to support sharing maps on Placemark again. Geospatial data probably won't fit in AT Proto records because it's fiendishly large and complex, but it could be squeezed into a blob if it's small enough. Maybe encoding JSON as CBOR is enough to shrink the data a bit without losing fidelity.

It would be really fun to get AT Proto logins working with Val Town: Orta implemented something similar for Puzzmo. Unfortunately user signup is a very knotty problem for us because, like every other hosting platform, we are in a daily battle with spammers. Orta's solution for Puzzmo was to make Bluesky login an additional, linked account along with your existing Puzzmo account, which makes a lot of sense.

I could also try to put this blog on AT Proto. standard.site has some specs for doing that, and sequoia would make publishing pretty easy. Leaflet.pub is riding high on their adoption of AT Proto for blogging. I'm honestly more confused than excited about this possibility: partly because RSS is already so good for publishing blogs, and because I'm not sure what syndicating to the atmosphere really does for this blog? I especially don't want to publish on AT Proto first, because rule #1 of macwright.com is to keep this site alive forever and avoid boondoggles.

Where does this go?

AT Proto is in a creative-explosion phase, which is really exciting. The way that the platform has been crafted makes it easy to incrementally introduce Atmosphere features to existing applications, and I am really relieved how little unnecessary jargon there seems to be, even though it's a very complicated system.

Of all the values it provides, I think a rock-solid sense of credible exit is the most consistently achieved. Being able to plug a different application into the same data, or to move your data from one host to another is incredible, as Dan Abramov wrote about in 'A Social Filesystem'.

Having been on the internet for a long time, I don't expect anything to last forever, and I won't be heartbroken when the flaws in the plan are inevitably identified or some bad actor spoils the party for a while.

I wonder about the long-term economics of the thing, though: Bluesky is essentially providing a free database to anyone who wants to implement the AppView part of the system. How long does this last, especially if some Atmosphere apps become successful and start generating lots of revenue. Companies do not like subsidizing each other.

I think that's a few years off. Maybe we start paying for a deluxe plan once we store a gigabyte or two on Bluesky's servers, or one of the stablecoin-based micropayments technologies takes off (let's be real, if one does, it'll be Stripe's) and popular applications pay for their user storage on other PDS systems, in a faint echo of Filecoin's failure.

A spell for creativity

I plan to return here and have something to show on AT Proto. Not to overthink it, to ship something. It's fun to read but even more fun to write code, or a bit of manic fun to use LLMs to prototype something. I'm having more success drawing a portrait every day and using my sewing machine than working on the internet on the weekends, but that is partly because of a pessimistic view of the current trend, and the Atmosphere is a trend I can get behind.

Yeah, here we go again, it's time to talk about feed readers. I'll summarize what's been happening with those tests which have been active in the past 7 days. There are many more that started and then ended and which are not included as a result.

Side note: I'm about to roll the hostname like I did last year, so if you're participating and want to carry on, go back to the URL from the welcome mail when it stops resolving in DNS. Then delete the current testing feed and add the new one.

I do this because a lot of these things seem to be forgotten over time, and they're just piling up in my database for nobody's benefit. Dropping the DNS leaves the jank entirely on *their* side of the Internet. I mean, if you run a test of a reader for hundreds of days and never improve anything, what's the point?

One thing I wanted to note before I get to the list: there are a couple of readers which have apparently added support for the Cache-Control header, and specifically the "max-age=nnnnn" part of it. The test feed sends that out, and I change the values sometimes to see which readers speed up and slow down accordingly. To the authors of those projects: I see you, and I appreciate your work! I'd put a gold star on your laptop if I could. (Not all of them are in this report since they have finished testing and are no longer reporting in.)

So then, let's talk turkey here. I'm grouping the results by client just for simplicity. Remember that means it includes vastly different config options used by different people, different versions, different upgrade cadences, and (sigh), yes, different amounts of people clicking reload.

Audrey2: 402 days, no complaints. Pretty sure this one honors Cache-Control, so thanks for that!

Miniflux: about 10 instances. My reports for them mostly go something like "400 days, no complaints", "402 days, three too-short polls", "185 days, one too-short poll", "one <1s double-poll after 400 days of otherwise perfect behavior".

It's just that chill in Miniflux world.

Otocyon: 365 days on the nose, and not so much as a hiccup from the single instance that's reporting in. This was one of the "unpublished, please don't shame me yet" agents that I only mentioned anonymously in prior reports.

NetNewsWire: about 5 of these instances, and they're all inspiring. They all show a marked change in behaviors once upgrading past a certain point. NNW itself added some cheeky code to send version numbers to a couple of sites and I'm one of them (yes, I see what you did there). Anyway, I can now see that people are in fact upgrading, and the vastly improved behaviors speak to the work that was clearly done behind the scenes.

The NNW per-instance log tables all show the same thing: a bunch of red cells for this problem or that problem, then that instance upgrades and *poof*, gone, and everything's clear and happy. It's like one of those commercials for eye drops from the 80s.

Vienna: a couple of instances, both active 350+ days. One had no complaints and the other has a handful of short polls. By that, I mean "less than an hour between requests". I assume this is from someone clicking refresh. One "refreshing" note is that they're still making conditional requests when this happens, so they aren't wasting much bandwidth.

FreshRSS: a couple of instances for this one, too. One has some short polls and unconditional requests over 206 days. The other one got past some kind of weird buggy spot that was in 1.25.0, and has been smooth sailing ever since (nearly a year now).

newsgoat: just one of these, and it was wobbly and too-quick at the beginning but then settled down. I would like to see how it does now. This is another reason I roll the DNS entries and reset the data: I want to see how things are working with the latest code, and leave the older stuff behind.

CommaFeed: just one of these, and it had some kind of caching issue that disappeared shortly before it flipped to version 5.7.0 in April 2025, and now it's fine. This is another one that would probably benefit from the upcoming fresh start.

Feedbin: did a double-tap startup, where it polls (unconditionally) twice in quick succession (< 1 second apart) when the feed was added. Two instances did this, but this was back in January 2025. This is another spot where I'd like to see how it behaves now.

Rapids: 354 days, no complaints.

NextCloud-News: this one had some weird If-Modified-Since values and double-tapping at startup, but that was January 2025. (Yes, this is the reader that once sent the infamous "1800" IMS value). It's come a long way since then and I'd like to see a fresh start from it to appreciate the work that's been done to it.

Bloggulus: 374 days, one slightly too quick poll. Hard to complain about that.

MANOS: 391 days, and nothing to complain about. I do hear Torgo's haunting theme music every time I write about it, though.

unnamed-feed-reader: technically, that's a name. 402 days, no complaints.

Something that doesn't even send a user-agent header: yeah, that's not cool. Send SOMETHING. Come on. 399 days of just doing that but otherwise getting everything else correct, somehow. One nit: sends "" as the If-None-Match at startup instead of just not sending the header at all. (Sounds like the usual "null is not zero is not the empty string is not the lack of a header is not ..." type thing.)

Some unidentified Firefox extension: it looks like it's still doing the 2000-01-01 If-Modified-Since once in a great great while (like, once), and it did a super quick poll (two in under a second) once. Otherwise it's been pretty quiet over the past 401 days.

There's also a Thunderbird instance which does the same 2000-01-01 startup but otherwise just quietly does its thing.

NewsBlur: double-tapped at startup (March 2025), and then sent lots of nutty out of sequence If-Modified-Since values. By nutty, I mean "went to sleep for 303 days, then came back, and started sending the *previous IMS value*". How do you do that when the server is hitting you in the face with a new value every time you poll?

Zufeed: unconditional double-tap at startup. Might be fixed. Need to see a fresh startup to be sure.

Roy and Rianne's ... etc: handful of unconditional requests over the past couple of months.

walrss: same deal: a couple of unconditionals in ~400 days.

Yarr: multiple too-fast unconditionals at startup (January 2025), and then a bunch more after that.

SpaceCowboys ... etc: one instance of this program, and it did something bizarre where an ancient ETag value popped back something like three months after it stopped being served to clients. Also sends some unconditional requests and a few too-fast polls.

feed2exec: poll frequencies are all over the place, and it has the usual 59 minute vs. 60 minute fenceposting thing. The version number is static throughout so it's not clear if it improved during these past 340 days.

Russet: a bunch of unconditional requests and the 59/60 minute thing, like others.

There are a few others which are active but which have had multiple user-agents prodding them and so polluted the data. The interval checking and IMS/INM comparisons mean nothing when multiple programs are involved, so I have to ignore those as corrupted.

And finally...

Free Reader: 100% unconditionals. Why?

QuiteRSS (I think - it lies in its User-Agent, which itself is evil): 100% unconditionals. Also, why?

Inoreader: one instance sends unconditional requests basically every other poll. Awful. The other instance sends a bunch of unconditionals, *and* it polls too quickly, including sub-second repeat polls at times. WTF?

inforss: something like 6% unconditionals out of > 2000 requests in ~400 days. I don't get it. The 59m vs. 60m poll-timing fencepost thing it also does is minor by comparison.

feedparser: weird timing, also has problems trying to hit the 60 minute mark and instead comes a bit too early, like some others. Also frequently calls back far too quickly.

Newsboat: ETag caching is still very broken and it will get into this pathological case where it keeps sending old values even though the server is hitting it over the head with a fresh one every single time. This means it latches into 100% unconditionals in effect and that's terrible. This seems to keep happening despite the version number changing, and it's affecting both instances which are reporting in.

BazQux: hundreds of out-of-sequence IMS and INM values stemming from something very very wrong with their caching implementation, resulting in 100% unconditional request generation once it latches in that state. A lot like Newsboat in that respect.

So here's a situation: you buy a "NAS" box - network attached storage, bring it home, stick some drives in it, and plop it on your network. The thing has an affinity for running in https mode, so you drop a wildcard certificate on it inside a sub-zone of a domain you don't even use for anything meaningful on the public Internet.

By sub-zone, I mean that your wildcard TLS cert is for something like *.nothing-special.whatever.example.com. It's buried pretty deep.

You put an entry for it in your hosts file:

172.16.12.34   nas.nothing-special.whatever.example.com

Then you load that in your browser and it works.

A few days later, you notice that you've started getting requests coming to your server on the "outside world" with that same hostname. This is a hostname that only exists in the /etc/hosts file of your laptop.

You're able to see this because you set up a wildcard DNS entry for the whole "*.nothing-special.whatever.example.com" space pointing at a machine you control just in case something leaks. And, well, something *did* leak.

Every time you load up the NAS, you get some clown GCP host knocking on your door, presenting a SNI hostname of that thing you buried deep inside your infrastructure. Hope you didn't name it anything sensitive, like "mycorp-and-othercorp-planned-merger-storage", or something.

Around this time, you realize that the web interface for this thing has some stuff that phones home, and part of what it does is to send stack traces back to sentry.io. Yep, your browser is calling back to them, and it's telling them the hostname you use for your internal storage box. Then for some reason, they're making a TLS connection back to it, but they don't ever request anything. Curious, right?

This is when you fire up Little Snitch, block the whole domain for any app on the machine, and go on with life.

Using this sentry reporting mechanism as a way to make them scan arbitrary other hosts (in DNS) is left as an exercise for the reader.

I recently purchased a Creative Sound Blaster Katana V2X soundbar (what a mouthful) to replace my old, cheap Logitech computer speakers. They served me well, but listening to music or watching movies was not the best-sounding experience.

After arriving, I set it up and realized it had an USB port which, aside from being able to use it as an audio input, allows the user to configure the speaker: Set the EQ, set the LED lights in different modes, etc. The unfortunate part of this was the fact that it requires the (proprietary) Creative App to use. What's more, it only seems to be available for Windows, which I don't use. While using it in a VM worked, it was hardly convenient.

This seemed like the perfect opportunity for something I love: Reverse engineering proprietary applications, devices and protocols and writing tools to communicate with them.

But how does a PC decide if an instruction was a floating-point instruction for the 8087 or a regular instruction for the 8086 or 8088 CPU? And how does the 8087 chip interpret instructions to determine what they mean? It turns out that decoding an instruction inside the 8087 is more complicated than you might expect. The 8087 uses multiple techniques, with decoding circuitry spread across the chip. In this blog post, I'll explain how these decoding circuits work.

To reverse-engineer the 8087, I chiseled open the ceramic package of an 8087 chip and took numerous photos of the silicon die with a microscope. The complex patterns on the die are formed by its metal wiring, as well as the polysilicon and silicon underneath. The bottom half of the chip is the "datapath", the circuitry that performs calculations on 80-bit floating point values. At the left of the datapath, a constant ROM holds important constants such as π. At the right are the eight registers that the programmer uses to hold floating-point values; in an unusual design decision, these registers are arranged as a stack. Floating-point numbers cover a huge range by representing numbers with a fractional part and an exponent; the 8087 has separate circuitry to process the fractional part and the exponent.

The chip's instructions are defined by the large microcode ROM in the middle.1 To execute an instruction, the 8087 decodes the instruction and the microcode engine starts executing the appropriate micro-instructions from the microcode ROM. In the upper right part of the chip, the Bus Interface Unit (BIU) communicates with the main processor and memory over the computer's bus. For the most part, the BIU and the rest of the chip operate independently, but as we will see, the BIU plays important roles in instruction decoding and execution.

Cooperation with the main 8086/8088 processor

The 8087 chip acted as a coprocessor with the main 8086 (or 8088) processor. When a floating-point instruction was encountered, the 8086 would let the 8087 floating-point chip carry out the floating-point instruction. But how do the 8086 and the 8087 determine which chip executes a particular instruction? You might expect the 8086 to tell the 8087 when it should execute an instruction, but this cooperation turns out to be more complicated.

The 8086 has eight opcodes that are assigned to the coprocessor, called ESCAPE opcodes. The 8087 determines what instruction the 8086 is executing by watching the bus, a task performed by the BIU (Bus Interface Unit).2 If the instruction is an ESCAPE, the instruction is intended for the 8087. However, there's a problem. The 8087 doesn't have any access to the 8086's registers (and vice versa), so the only way that they can exchange data is through memory. But the 8086 addresses memory through a complicated scheme involving offsest registers and segment registers. How can the 8087 determine what memory address to use when it doesn't have access to the registers?

The trick is that when an ESCAPE instruction is encountered, the 8086 processor starts executing the instruction, even though it is intended for the 8087. The 8086 computes the memory address that the instruction references and reads that memory address, but ignores the result. Meanwhile, the 8087 watches the memory bus to see what address is accessed and stores this address internally in a BIU register. When the 8087 starts executing the instruction, it uses the address from the 8086 to read and write memory. In effect, the 8087 offloads address computation to the 8086 processor.

The structure of 8087 instructions

To understand the 8087's instructions, we need to take a closer look at the structure of 8086 instructions. In particular, something called the ModR/M byte is important since all 8087 instructions use it.

The 8086 uses a complex system of opcodes with a mixture of single-byte opcodes, prefix bytes, and longer instructions. About a quarter of the opcodes use a second byte, called ModR/M, that specifies the registers and/or memory address to use through a complicated encoding. For instance, the memory address can be computed by adding the BX and SI registers, or from the BP register plus a two-byte offset. The first two bits of the ModR/M byte are the "MOD" bits. For a memory access, the MOD bits indicate how many address displacement bytes follow the ModR/M byte (0, 1, or 2), while the "R/M" bits specify how the address is computed. A MOD value of 3, however, indicates that the instruction operates on registers and does not access memory.

The diagram above shows how an 8087 instruction consists of an ESCAPE opcode, followed by a ModR/M byte. An ESCAPE opcode is indicated by the special bit pattern 11011, leaving three bits (green) available in the first byte to specify the type of 8087 instruction. As mentioned above, the ModR/M byte has two forms. The first form performs a memory access; it has MOD bits of 00,01, or 10 and the R/M bits specify how the memory address is computed. This leaves three bits (green) to specify the address. The second form operates internally, without a memory access; it has MOD bits of 11. Since the R/M bits aren't used in the second form, six bits (green) are available in the R/M byte to specify the instruction.

The challenge for the designers of the 8087 was to fit all the instructions into the available bits in such a way that decoding is straightforward. The diagram below shows a few 8087 instructions, illustrating how they achieve this. The first three instructions operate internally, so they have MOD bits of 11; the green bits specify the particular instruction. Addition is more complicated because it can act on memory (first format) or registers (second format), depending on the MOD bits. The four bits highlighted in bright green (0000) are the same for all ADD instructions; the subtract, multiplication, and division instructions use the same structure but have different values for the dark green bits. For instance, 0001 indicates multiplication and 0100 indicates subtraction. The other green bits (MF, d, and P) select variants of the addition instruction, changing the data format, direction, and popping the stack at the end. The last three bits select the R/M addressing mode for a memory operation, or the stack register ST(i) for a register operation.

Selecting a microcode routine

Most of the 8087's instructions are implemented in microcode, implementing each step of an instruction in low-level "micro-instructions". The 8087 chip contains a microcode engine; you can think of it as the mini-CPU that controls the 8087 by executing a microcode routine, one micro-instruction at a time. The microcode engine provides an 11-bit micro-address to the ROM, specifying the micro-instruction to execute. Normally, the microcode engine steps through the microcode sequentially, but it also supports conditional jumps and subroutine calls.

But how does the microcode engine know where to start executing the microcode for a particular machine instruction? Conceptually, you could feed the instruction opcode into a ROM that would provide the starting micro-address. However, this would be impractical since you'd need a 2048-word ROM to decode an 11-bit opcode.3 (While a 2K ROM is small nowadays, it was large at the time; the 8087's microcode ROM was a tight fit at just 1648 words.) Instead, the 8087 uses a more efficient (but complicated) instruction decode system constructed from a combination of logic gates and PLAs (Programmable Logic Arrays). This system holds 22 microcode entry points, much more practical than 2048.

Processors often use a circuit called a PLA (Programmable Logic Array) as part of instruction decoding. The idea of a PLA is to provide a dense and flexible way of implementing arbitrary logic functions. Any Boolean logic function can be expressed as a "sum-of-products", a collection of AND terms (products) that are OR'd together (summed). A PLA has a block of circuitry called the AND plane that generates the desired sum terms. The outputs of the AND plane are fed into a second block, the OR plane, which ORs the terms together. Physically, a PLA is implemented as a grid, where each spot in the grid can either have a transistor or not. By changing the transistor pattern, the PLA implements the desired function.

A PLA can implement arbitrary logic, but in the 8087, PLAs often act as optimized ROMs.4 The AND plane matches bit patterns,5 selecting an entry from the OR plane, which holds the output values, the micro-address for each routine. The advantage of the PLA over a standard ROM is that one output column can be used for many different inputs, reducing the size.

The image below shows part of the instruction decoding PLA.6 The horizontal input lines are polysilicon wires on top of the silicon. The pinkish regions are doped silicon. When polysilicon crosses doped silicon, it creates a transistor (green). Where there is a gap in the doped silicon, there is no transistor (red). (The output wires run vertically, but are not visible here; I dissolved the metal layer to show the silicon underneath.) If a polysilicon line is energized, it turns on all the transistors in its row, pulling the associated output columns to ground. (If no transistors are turned on, the pull-up transistor pulls the output high.) Thus, the pattern of doped silicon regions creates a grid of transistors in the PLA that implements the desired logic function.7

The standard way to decode instructions with a PLA is to take the instruction bits (and their complements) as inputs. The PLA can then pattern-match against bit patterns in the instruction. However, the 8087 also uses some pre-processing to reduce the size of the PLA. For instance, the MOD bits are processed to generate a signal if the bits are 0, 1, or 2 (i.e. a memory operation) and a second signal if the bits are 3 (i.e. a register operation). This allows the 0, 1, and 2 cases to be handled by a single PLA pattern. Another signal indicates that the top bits are 001 111xxxxx; this indicates that the R/M field takes part in instruction selection.8 Sometimes a PLA output is fed back in as an input, so a decoded group of instructions can be excluded from another group. These techniques all reduce the size of the PLA at the cost of some additional logic gates.

The result of the instruction decoding PLA's AND plane is 22 signals, where each signal corresponds to an instruction or group of instructions with a shared microcode entry point. The lower part of the instruction decoding PLA acts as a ROM that holds the 22 microcode entry points and provides the selected one.9

Instruction decoding inside the microcode

Many 8087 instructions share the same microcode routines. For instance, the addition, subtraction, multiplication, division, reverse subtraction, and reverse division instructions all go to the same microcode routine. This reduces the size of the microcode since these instructions share the microcode that sets up the instruction and handles the result. However, the microcode obviously needs to diverge at some point to perform the specific operation. Moreover, some arithmetic opcodes access the top of the stack, some access an arbitrary location in the stack, some access memory, and some reverse the operands, requiring different microcode actions. How does the microcode do different things for different opcodes while sharing code?

The trick is that the 8087's microcode engine supports conditional subroutine calls, returns, and jumps, based on 49 different conditions (details). In particular, fifteen conditions examine the instruction. Some conditions test specific bit patterns, such as branching if the lowest bit is set, or more complex patterns such as an opcode matching 0xx 11xxxxxx. Other conditions detect specific instructions such as FMUL. The result is that the microcode can take different paths for different instructions. For instance, a reverse subtraction or reverse division is implemented in the microcode by testing the instruction and reversing the arguments if necessary, while sharing the rest of the code.

The microcode also has a special jump target that performs a three-way jump depending on the current machine instruction that is being executed. The microcode engine has a jump ROM that holds 22 entry points for jumps or subroutine calls.10 However, a jump to target 0 uses special circuitry so it will instead jump to target 1 for a multiplication instruction, target 2 for an addition/subtraction, or target 3 for division. This special jump is implemented by gates in the upper right corner of the jump decoder.

Hardwired instruction handling

Some of the 8087's instructions are implemented directly by hardware in the Bus Interface Unit (BIU), rather than using microcode. For example, instructions to enable or disable interrupts, or to save or restore state are implemented in hardware. The decoding for these instructions is performed by separate circuitry from the instruction decoder described above.

In the first step, a small PLA decodes the top 5 bits of the instruction. Most importantly, if these bits are 11011, it indicates an ESCAPE instruction, the start of an 8087 operation. This causes the 8087 to start interpreting the instruction and stores the opcode in a BIU register for use by the instruction decoder. A second small PLA takes the outputs from the top-5 PLA and combines them with the lower three bits. It decodes specific instruction values: D9, DB, DD, E0, E1, E2, or E3. The first three values correspond to specific ESCAPE instructions, and are recorded in latches.

The two PLAs decode the second byte in the same way. Logic gates combine the PLA outputs from the second byte with the latched values from the first byte, detecting eleven hardwired instructions.11 Some of these instructions operate directly on registers, such as clearing exceptions; the decoded instruction signal goes to the relevant register and modifies it in an ad hoc way. 12. Other hardwired instructions are more complicated, writing chip state to memory or reading chip state from memory. These instructions require multiple memory operations, controlled by the Bus Interface Unit's state machine. Each of these instructions has a flip-flop that is triggered by the decoded instruction to keep track of which instruction is active.

For the instructions that save and restore the 8087's state (FSAVE and FRSTOR), there's one more complication. These instructions are partially implemented in the BIU, which moves the relevant BIU registers to or from memory. But then, instruction processing switches to microcode, where a microcode routine saves or loads the floating-point registers. Jumping to the microcode routine is not implemented through the regular microcode jump circuitry. Instead, two hardcoded values force the microcode address to the save or restore routine.13

Constants

The 8087 has seven instructions to load floating-point constants such as π, 1, or log₁₀(2). The 8087 has a constant ROM that holds these constants, as well as constants for transcendental operations. You might expect that the 8087 simply loads the specified constant from the constant ROM, using the instruction to select the desired constant. However, the process is much more complicated.14

Looking at the instruction decode ROM shows that different constants are implemented with different microcode routines: the constant-loading instructions FLDLG2 and FLDLN2 have one entry point; FLD1, FLD2E, FLDL2T, and FLDPI have a second entry point, and FLDZ (zero) has a third entry point. It's understandable that zero is a special case, but why are there two routines for the other constants?

The explanation is that the fraction part of each constant is stored in the constant ROM, but the exponent is stored in a separate, smaller ROM. To reduce the size of the exponent ROM, only some of the necessary exponents are stored. If a constant needs an exponent one larger than a value in the ROM, the microcode adds one to the exponent ROM value, computing the exponent on the fly.

Thus, the load-constant instructions use three separate instruction decoding mechanisms. First, the instruction decode ROM determines the appropriate microcode routine for the constant instruction, as before. Then, the constant PLA decodes the instruction to select the appropriate constant. Finally, the microcode routine tests the bottom bit of the instruction and increments the exponent if necessary.

Conclusions

To wrap up the discussion of the decoding circuitry, the diagram below shows how the different circuits are arranged on the die. This image shows the upper-right part of the die; the microcode engine is at the left and part of the ROM is at the bottom.

The 8087 doesn't have a clean architecture, but instead is full of ad hoc circuits and corner cases. The 8087's instruction decoding is an example of this. Decoding is complicated to start with due to the 8086's convoluted instruction formats and the ModR/M byte. On top of that, the 8087's instruction decoding has multiple layers: the instruction decode PLA, microcode conditional jumps that depend on the instruction, a special jump target that depends on the instruction, constants selected based on the instruction, and instructions decoded by the BIU.

The 8087 has a reason for this complicated architecture: at the time, the chip was on the edge of what was possible, so the designers needed to use whatever techniques they could to reduce the size of the chip. If implementing a corner case could shave a few transistors off the chip or make the microcode ROM slightly smaller, the corner case was worthwhile. Even so, the 8087 was barely manufacturable at first; early yield was just two working chips per silicon wafer. Despite this difficult start, a floating-point standard based on the 8087 is now part of almost every processor.

Thanks to the members of the "Opcode Collective" for their contributions, especially Smartest Blob and Gloriouscow.

For updates, follow me on Bluesky (@righto.com), Mastodon (@kenshirriff@oldbytes.space), or RSS.

Notes and references

# Introduction

I really like containers, but they are something that is currently very bad from a security point of view: distribution

We download container images from container registries, whether it is docker.io, quay.io or ghcr.io, but the upstream project do not sign them, so we can not verify a CI pipeline or the container registry did not mess with the image.  There are actually a few upstream actors signing their images: Fedora, Red Hat and universial-blue based distros (Bluefin, Aurora, Bazzite), so if you acquire their public key using for signing from a different channel, you can verify if you got the image originally built.  Please do not hesitate to get in touch with me if you know about other major upstream that sign their container images.

Nevertheless, we can still create containers ourself from trustable artifacts signed by upstream.  Let's take a look at how to proceed with Alpine Linux.

# Get the rootfs

The first step is to download a few files:

* Alpine's linux GPG key
* Alpine's "mini root filesystem" build for the architecture you want
* The GPG file (extension .asc) for the mini root filesystem you downloaded

=> https://www.alpinelinux.org/downloads/ Alpine linux download page on the official website

The GPG file is at the top of the list, it is better to get it from a different channel to make sure that if the website was hacked, the key was not changed accordingly with all the signed files, in which case you would just trust the key of an attacker and it would validate the artifacts.  A simple method is to check the page from webarchive a few days / week before and verify that the GPG file is the same on webarchive and the official website.

The GPG key fingerprint I used is 0482 D840 22F5 2DF1 C4E7 CD43 293A CD09 07D9 495A as of the date of publication.

# Verify the artifacts

You will need to have gpg installed and a initialized keyring (I do not cover this here).  Run the following command:

```
gpg --import ncopa.asc
gpg --verify alpine-minirootfs-3.23.3-x86_64.tar.gz.asc alpine-minirootfs-3.23.3-x86_64.tar.gz
```

It should answer something like this:

```
gpg: Signature made Wed Jan 28 00:25:36 2026 CET
gpg:                using RSA key 0482D84022F52DF1C4E7CD43293ACD0907D9495A
gpg: Good signature from "Natanael Copa " [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 0482 D840 22F5 2DF1 C4E7  CD43 293A CD09 07D9 495A
```

The line "Good signature...." tells you that the file integrity check matches the GPG key you imported.  The rest of the message tells you that the key is not trustable.  This is actually a GPG thing, you would need to edit your keyring and mark the key as "trustable" or have in your keyring a trusted key that signed this key (this is the web of trust GPG wanted to create), but this will only remove the warning.  Of course, you can mark that key trustable if you plan to use it for a long time and you are absolutely sure it is the genuine one.

You do not need to verify the checksum using sha256, the GPG check did the same in addition to authenticate the person who produced the checksum.

Now you validated the minirootfs authenticity, you can create an Alpine container!

# Container creation

You can use podman or docker for this:

```
podman import alpine-minirootfs-3.23.3-x86_64.tar.gz alpine:3.23.3-local
```

You are now ready to build more containers based on your own cryptographically verified Alpine container image.

# Example of use

It is rather easy to build new containers with useful purpose on top of your new base container.

Create a Containerfile (or Dockerfile, your mileage may vary):

```
FROM alpine:3.23.3-local
RUN apk add nginx
CMD ["nginx", "-c", "/app/nginx.conf", "-g", "daemon off;"]
```

Build a container with this command:

```
podman build . -t alpine_local_nginx
```

# Conclusion

Without any kind of cryptographic signature mechanism available between upstream and the end user, it is not possible to ensure a container from a third party registry was not tampered with.

It is best for security to rebuild the container image, and then rebuild all the containers you need using your base image, rather than blindly trusting registries.

One tool to sign container images is cosign.

=> https://github.com/sigstore/cosign Cosign project GitHub page

# Going further

This process works for other Linux distributions of course.  For instance, for Ubuntu you can download Ubuntu base image, the SHA256SUMS.gpg and SHA256SUMS files, and make sure to get a genuine GPG key to verify the signature.

=> https://cdimage.ubuntu.com/ubuntu-base/releases/24.04/release/ Ubuntu official website: ubuntu-base 24.04 releases

# Introduction

Since I started using Tailscale (using my own headscale server), I've been enjoying it a lot.  The file transfer feature is particularly useful with other devices.

This blog post explains my small setup to enhance the user experience.

# Quick introduction

Tailscale is a network service that allows to enroll devices into a mesh VPN based on WireGuard, this mean every peer connects to every peers, this is not really manageable without some lot of work.  It also allows automatic DNS assignment, access control, SSH service and lot of features.

Tailscale refers to both the service and the client.  The service is closed source, but not the client.  There is a reimplementation of the server called Headscale that you can use with the tailscale client.

=> https://tailscale.com/ Tailscale official website
=> https://headscale.net/ Headscale official website

# Automatically receive files

When you want to receive a file from Tailscale on your desktop system, you need to manually run `tailscale file get --wait $DEST`, this is rather not practical and annoying to me.

I wrote a systemd service that starts the tailscale command at boot, really it is nothing fancy but it is not something available out of the box.

In the directory `~/.config/systemd/user/` edit the file `tailscale-receiver.service` with this content:

```
[Unit]
Description=tailscale receive file
After=network.target

[Service]
Type=simple
ExecStart=/usr/bin/tailscale file get --wait --loop /%h/Documents/
Restart=always
RestartSec=5

[Install]
WantedBy=default.target
```

The path `/%h/Documents/` will expand to `/$HOME/Documents/` (the first / may be too much, but I keep it just in case), you can modify it to your needs.

Enable and start the service with the command:

```
systemctl --user daemon-reload
systemctl --enable --now tailscale-receiver.service
```

# Send files from Nautilus

When sending files, it is possible to use `tailscale file cp $file $target:` but it is much more convenient to have it directly from the GUI, especially when you do not know all the remotes names.  This also makes it easier for family member who may not want to fire up a terminal to send a file.

Someone wrote a short python script to add this "Send to" feature to Nautilus

=> https://github.com/flightmansam/nautilus-sendto-tailscale-python Script flightmansam/nautilus-sendto-tailscale-python

Create the directory `~/.local/share/nautilus-python/extensions/` and save the file `nautilus-send-to-tailscale.py` in it.

Make sure you have the package "nautilus-python" installed, on Fedora it is `nautilus-python` while on Ubuntu it is `python3-nautilus`, so your mileage may vary.

Make sure to restart nautilus, a `killall nautilus` should work but otherwise just logout the user and log back.  In Nautilus, in the contextual menu (right click), you should see "Send to Tailscale" and a sub menu should show the hosts.

# Conclusion

Tailscale is a fantastic technology, having a mesh VPN network allows to secure access to internal services without exposing anything to the Internet.  And because it features direct access between peers, it also enables some interesting uses like fast file transfer or VOIP calls without a relay.

# Introduction

When using a not end-to-end encrypted cloud storage, you may want to store your file encrypted so if the cloud provider (that could be you if you self host a nextcloud or seafile) get hacked, your data will be available to the hacker, this is not great.

While there are some encryption software like age or gpg, they are not usable for working transparently with files.  A specific class of encryption software exists, they create a logical volume with your files and they are transparently encrypted in the file system.

You will learn about cryptomator, gocryptfs, cryfs and rclone.  They allow you to have a local directory that is synced with the cloud provider, containing only encrypted files, and a mount point where you access your files.  Your files are sent encrypted to the cloud provider, but you can use it as usual (with some overhead).

This blog post is a bit "yet another comparison" because all these software also provide a comparison list of challengers.

=> https://nuetzlich.net/gocryptfs/comparison/ A comparison done by gocryptfs
=> https://cryptomator.org/comparisons/ A comparison done by cryptomator
=> https://www.cryfs.org/comparison A comparison done by cryfs

# Benchmark

My comparison will compare the following attributes and features of each software:

* number of files in the encrypted dir always using the same input (837 MB from 4797 files mades of pictures and a git repository)
* filename and file tree hierarchy obfuscation within the encrypted dir
* size of the encrypted dir compared to the 837 MB of the raw material
* cryptography used

# Software list

Here is the challenger list I decided to evaluate:

## Cryptomator

The main software (running on Linux) is open source, they have a client for all major operating system around, including Android and iOS.  The android apps is not free (as in beer), the iOS app is free for read-only, the windows / linux / Mac OS program is free.  They have an offer for a company-wide system which can be convenient for some users.

Cryptomator features a graphical interface, making it easy to use.

Encryption suites are good, it uses AES-256-GCM and scrypt, featuring authentication of the encrypted data (which is important as it allows to detect if a file was altered).  A salt is used.

Hierarchy obfuscation can be sufficient depending on your threat model.  The whole structure information is flattened, you can guess the number of directories and their number of files files, and the file sizes, all the names are obfuscated.  This is not a huge security flaw, but this is something to consider.

=> https://docs.cryptomator.org/security/architecture/ Cryptomator implementation details

## gocryptfs

This software is written in Go and works on Linux, a C++ Windows version exists, and there is a beta version of Mac OS.

=> https://nuetzlich.net/gocryptfs/ gocryptfs official website

Hierarchy obfuscation is not great, the whole structure information is saved although the names are obfuscated.

Cryptography wise, scrypt is used for the key derivation and AES-256-GCM for encryption with authentication.

=> https://nuetzlich.net/gocryptfs/forward_mode_crypto/ gocryptfs implementation details

## CryFS

I first learned about cryfs when using KDE Plasma, there was a graphical widget named "vault" that can drive cryfs to create encrypted directories.  This GUI also allow to use gocryptfs but defaults to cryfs.

=> https://www.cryfs.org/ CryFS official website

CryFS is written in C++ but an official rewrite in Rust is ongoing.  It works fine on Linux but there are binaries for Mac OS and Windows as well.

Encryption suites are good, it uses AES-256-GCM and scrypt, but you can use xchacha20-poly1305 if you do not want AES-GCM.

It encrypts files metadata and split all files into small blocks of fixed size, it is the only software in the list that will obfuscate all kind of data (filename, directory name, tree hierarchy, sizes, timestamp) and also protect against an old file replay.

=> https://www.cryfs.org/howitworks CryFS implementation details

## rclone

It can be surprising to see rclone here, it is a file transfer software supporting many cloud provider, but it also features a few "fake" provider that can be combined with any other provider.  Thoses fakes remotes can be used to encrypt files, but also aggregate multiple remotes or split files in chunks.  We will focus on the "crypt" remote.

=> https://rclone.org/ Rclone official website

rclone is a Go software, it is available everywhere on desktop systems but not on mobile devices.

Encryption is done through libNaCl and uses XSalsa20 and Poly1305 which both support authentication, and also use scrypt for key derivation.  A salt can be used but it is optional, make sure to enable it.

Hierarchy obfuscation is not great, the whole structure information is saved although the names are obfuscated.

=> https://rclone.org/crypt/ rclone crypt remote implementation details

## Other

ecryptfs is almost abandonware, so I did not cover it.

=> https://lore.kernel.org/ecryptfs/ef98d985-6153-416d-9d5e-9a8a8595461a@app.fastmail.com/ ecryptfs is unmaintained and untested

encfs is limited and recommend users to switch to gocryptfs

=> https://github.com/vgough/encfs?tab=readme-ov-file#about encFS GitHub page: anchor "about"

LUKS and Veracrypt are not "cloud friendly" because although you can have a local big file encrypted with it and mount the volume locally, it will be synced as a huge blob on the remote service.

# Results

From sources directories with 4312 files, 480 directories for a total of 847 MB.

* cryptomator ended up with 5280 files, 1345 directories for a total of 855 MB
* gocryptfs ended up with 4794 files, 481 directories for a total of 855 MB
* cryfs ended up with 57928 files, 4097 directories for a total of 922 MB
* rclone ended up with 4311 files, 481 directories for a total of 847 MB

Although cryptomater has a bit more files and directories in its encrypted output compared to the original files, the obfuscation is really just all directories being in a single directory with filenames obfuscated.  Some extra directories and files are created for cryptomator internal works, which explains the small overhead.

I used default settings for cryfs with a blocksize of 16 kB which is quite low and will be a huge overhead for a synchronization software like Nextcloud desktop.  Increasing the blocksize is a setting worth considering depending on your file sizes distribution.  All files are spread in a binary tree, allowing it to scale to a huge number of files without filesystem performance issue.

# Conclusion

In my opinion, the best choice from a security point of view would be cryfs.  It features full data obfuscation, good encryption, mechanisms that prevent replaying old files or swapping files.  The documentation is clear and we can see the design choices are explained with ease and clearly.

But to be honest, I would recommend cryptomator to someone who want a nice graphical interface, easy to use software and whose threat model allows some metadata reveal.   It is also available everywhere (although not always for free), which is something to consider.

Authentication is used by all these software, so you will know if a file was tampered with, although it does not protect against swapping files or replaying an old file, this is certainly not in everyone's threat model.  Most people will just want to prevent a data leak to read their data, but the case of a cloud storage provider modifying your encrypted files is less likely.

# Going further


There is a GUI frontend for gocryptfs and cryfs called SiriKali.

=> https://mhogomchungu.github.io/sirikali/ SiriKali official project page
=> https://github.com/mhogomchungu/sirikali SiriKali GitHub project

Some self hostable cloud storage provider exists with end-to-end encryption (file are encrypted/decrypted locally and only stored as blob remotely):

The two major products I would recommend are Peergos and Seafile.  I am a peergos user, it works well and features a Web UI where as seafile encryption is not great as using the web ui requires sharing the password, metadata protection is bad too.

=> https://peergos.org/ Peergos official website
=> https://www.seafile.com/en/home/ Seafile official website

# Introduction

In a recent change within fish shell, the shortcut to delete last words were replaced by "delete last big chunk" (I don't know exactly how it is called in this case) which is usually the default behavior on Mac OS "command" key vs "alt" key and I guess it is why it was changed like this on fish.

Unfortunately, this broke everyone's habit and a standard keyboard do not even offer the new keybinding that received the old behavior.

There is an open issue asking to revert this change.

=> https://github.com/fish-shell/fish-shell/issues/12122 GitHub fish project: Revert alt-backspace behaviour on non-macOS systems #12122

I am using this snippet in `~/.config/fish/config.fish` to restore the previous behavior (the same as in other all other shell, where M-d deletes last word).  I build it from the GitHub issue comments, I had to add `$argv` for some reasons.

```
if status is-interactive
 # Commands to run in interactive sessions can go here

 # restore delete behavior
 bind $argv alt-backspace backward-kill-word
 bind $argv alt-delete kill-word
 bind $argv ctrl-alt-h backward-kill-word
 bind $argv ctrl-backspace backward-kill-token
 bind $argv ctrl-delete kill-token
end
```

# Introduction

When you have to deal with containers on Linux, there are often two things making you wonder how to deal with effectively: how to keep your containers up to date, and how to easily maintain the configuration of everything running.

It turns out podman is offering systemd unit templates to declaratively manage containers, this comes with the fact that podman can run in user mode.  This combination gives the opportunity to create files, maintain them in git or deploy them with a configuration management tool like ansible, and keep things separated per user.

It is also very convenient when you want to run a program shipped as a container on your desktop.

For some reason, this is called "quadlets".

=> https://docs.podman.io/en/latest/markdown/podman-systemd.unit.5.html podman-systemd.unit man page

In this guide, I will create a kanboard service (a PHP software to run a kanban) under the kanban user.

# Setup (simple service)

You need to create files that will declare containers and/or networks, this can be done in various places depending on how you want to manage the files, the man page gives all the details, but basically you want to stick with the two following options:

* system-wide configuration: `/etc/containers/systemd/users/$(UID)`
* user configuration: `~/.config/containers/systemd/`

Both will run rootless containers under the user UID, but one keep the files in `/etc/` which may be more suitable for central management.

As systemd is used to run the containers, if you want to run a container for a user that is not one where you are logged, you need to always enable it so its related systemd processes / services are running, including the containers, this is done by enabling "linger".

```
useradd -m kanban
loginctl enable-linger kanban
```

This will immediately create a session for that user and pop all related services.

Now, create a file `/etc/containers/systemd/users/1001/` (1001 being the uid of kanban user) with this content:

```
[Container]
Image=docker.io/kanboard/kanboard:latest
Network=podman
PublishPort=10080:80
Volume=kanboard_data:/var/www/app/data
Volume=kanboard_plugins:/var/www/app/plugins
Volume=kanboard_ssl:/etc/nginx/ssl

[Service]
Restart=always

[Install]
WantedBy=default.target
```

This can exactly map to a very long podman command line that would use the image `docker.io/kanboard/kanboard:latest` in network `podman` and declaring three different container volumes and associated mount points.  This generator even allows you to add command line arguments in case an option is not available with systemd format.

Because the user already runs, the container will not start yet except if you use `disable-linger` and then `enable-linger` the kanban user, and that would not be ideal to be honest.  There is a better way to proceed: `systemctl --user --machine kanban@ daemon-reload` which basically runs `systemctl --user daemon-reload` by the user `kanban` except we do it as root user which is more convenient for automation.

Running the container this way will trigger exactly the same processes as if you started it manually with `podman run -v kanboard_data:/var/www/app/data/ [...] docker.io/kanboard/kanboard:latest`.

Note that you can skip the `[Install]` section if you do not want to automatically start the container, and prefer to manually start/stop it with "systemctl", this is actually useful if you have the container under your regular user and do not always need it.

# Setup (advanced service)

If you want to run a more complicated service that need a couple of containers to talk together like a web server, a backend runner and a database, you only need to configure them in the same network.

If you need them to start the containers of a group in a specific order, you can add use systemd dependency declaration in `[Install]` section.

Podman will run a local DNS resolver that translates the container name into a working hostname, this mean if you have a postgresql container called "db", then you can refer to the postgresql host as "db" from another container within the same network.  This works the same way as docker-compose.

# Ops

## Getting into a user shell

To have a working environment for `journalctl` or `systemctl` commands to work requires to use `machinectl shell kanban@`, otherwise the dbus environment variables will not be initialized.  Note that it works too when connecting with ssh, but it is not always ideal if you use it locally.

From this shell, you can run commands like `systemctl --user status kanboard.container` for our example or `journalctl --user -f -u kanboard.container`, or run a shell in a container, inspect a volume etc...

Using `sudo -u user` or `su - user` will not work.

## Disabling a user

If you want to disable the services associated with an user, use this command:

```
loginctl disable-linger username
```

This will immediately close all its sessions and stop services running under that user.

## Automatic updates

This is the very first reason I went into using quadlets for local services using containers, I did not want to have to manually run some `podman pull` commands over a list then restart related containers that were running.

Podman gives you a systemd services doing all of this for you, this works for containers with the parameter `AutoUpdate=registry` within the section `[Container]`.

Enable the timer of this service with: `systemctl --user enable --now podman-auto-update.timer` then you can follow the timer information with `systemctl --user status podman-auto-update.timer` or logs from the update service with `journalctl --user -u podman-auto-update.service`.

Make sure to pin your container image to a branch like "stable" or "lts" or "latest" if you want a development version, the update mechanism will obviously do nothing if you pin the image to a specific version or checksum.

# Conclusion

Quadlets made me switch to podman as it allowed me to deploy and maintain containers with ansible super easily, and also enabled me to separate each services into different users.

Prior to this, handling containers on a simple server or desktop was an annoying task to figure what should be running, how to start them and retrieving command lines from the shell history or use a docker/podman compose file.  This also comes with all the power from systemd like querying a service status or querying logs with journalctl.

# Going further

There is a program named "podlet" that allow you to convert some file format into quadlets files, most notably it is useful when getting a `docker-compose.yml` file and transforming it into quadlet files.

=> https://github.com/containers/podlet/ podlet GitHub page

No newsletter next week

I'll be speaking at InfoQ London. But see below for a book giveaway!

LLMs are bad at vibing specifications

About a year ago I wrote AI is a gamechanger for TLA+ users, which argued that AI are a "specification force multiplier". That was written from the perspective an TLA+ expert using these tools. A full 4% of Github TLA+ specs now have the word "Claude" somewhere in them. This is interesting to me, because it suggests there was always an interest in formal methods, people just lacked the skills to do it.

It's also interesting because it gives me a sense of what happens when beginners use AI to write formal specs. It's not good.

As a case study, we'll use this project, which is kind of enough to have vibed out TLA+ and Alloy specs.

Looking at a project

Starting with the Alloy spec. Here it is in its entirety:

module ThreatIntelMesh

sig Node {}

one sig LocalNode extends Node {}

sig Snapshot {
  owner: one Node,
  signed: one Bool,
  signatures: set Signature
}

sig Signature {}

sig Policy {
  allowUnsignedImport: one Bool
}

pred canImport[p: Policy, s: Snapshot] {
  (p.allowUnsignedImport = True) or (s.signed = True)
}

assert UnsignedImportMustBeDenied {
  all p: Policy, s: Snapshot |
    p.allowUnsignedImport = False and s.signed = False implies not canImport[p, s]
}

assert SignedImportMayBeAccepted {
  all p: Policy, s: Snapshot |
    s.signed = True implies canImport[p, s]
}

check UnsignedImportMustBeDenied for 5
check SignedImportMayBeAccepted for 5

Couple of things to note here: first of all, this doesn't actually compile. It's using the Boolean standard module so needs open util/boolean to function. Second, Boolean is the wrong approach here; you're supposed to use subtyping.

sig Snapshot {
  owner: one Node,
- signed: one Bool,
  signatures: set Signature
}

+ sig SignedSnapshot in Snapshot {}


pred canImport[p: Policy, s: Snapshot] {
- s.signed = True
+ s in SignedSnapshot
}

So we know the person did not actually run these specs. This is somewhat less of a problem in TLA+, which has an official MCP server that lets the agent run model checking. Even so, I regularly see specs that I'm pretty sure won't model check, with things like using Reals or assuming NULL is a built-in and not a user-defined constant.

The bigger problem with the spec is that UnsignedImportMustBeDenied and SignedImportMayBeAccepted don't actually do anything. canImport is defined as P || Q. UnsignedImportMustBeDenied checks that !P && !Q => !canImport. SignedImportMayBeAccepted checks that P => canImport. These are tautologically true! If they do anything at all, it is only checking that canImport was defined correctly.

You see the same thing in the TLA+ specs, too:

GadgetPayload ==
  /\ gadgetDetected' = TRUE
  /\ depth' \in 0..(MaxDepth + 5)
  /\ UNCHANGED allowlistedFormat
  /\ decision' = "block"

NoExploitAllowed == gadgetDetected => decision = "block"

The AI is only writing "obvious properties", which fail for reasons like "we missed a guard clause" or "we forgot to update a variable". It does not seem to be good at writing "subtle" properties that fail due to concurrency, nondeterminism, or bad behavior separated by several steps. Obvious properties are useful for orienting yourself and ensuring the system behaves like you expect, but the actual value in using formal methods comes from the subtle properties.

(This ties into Strong and Weak Properties. LLM properties are weak, intended properties need to be strong.)

This is a problem I see in almost every FM spec written by AI. LLMs aren't doing one of the core features of a spec. Articles like Prediction: AI will make formal verification go mainstream and When AI Writes the World's Software, Who Verifies It? argue that LLMs will make formal methods go mainstream, but being easily able to write specifications doesn't help with correctness if the specs don't actually verify anything.

Is this a user error?

I first got interested in LLMs and TLA+ from The Coming AI Revolution in Distributed Systems. The author of that later vibecoded a spec with a considerably more complex property:

NoStaleStrictRead ==
  \A i \in 1..Len(eventLog) :
    LET ev == eventLog[i] IN
      ev.type = "read" =>
        LET c == ev.chunk IN
        LET v == ev.version IN
        /\ \A j \in 1..i :
             LET evC == eventLog[j] IN
               evC.type = "commit" /\ evC.chunk = c => evC.version <= v

This is a lot more complicated than the (P => Q && P) => Q properties I've seen! It could be because the corresponding system already had a complete spec written in P. But it could also be that Cheng Huang is already an expert specifier, meaning he can get more out of an LLM than an ordinary developer can. I've also noticed that I can usually coax an LLM to do more interesting things than most of my clients can. Which is good for my current livelihood, but bad for the hope of LLMs making formal methods mainstream. If you need to know formal methods to get the LLM to do formal methods, is that really helping?

(Yes, if it lowers the skill threshold-- means you can apply FM with 20 hours of practice instead of 80. But the jury's still out on how much it lowers the threshold. What if it only lowers it from 80 to 75?)

On the other hand, there also seem to be some properties that AI struggles with, even with explicit instructions. Last week a client and I tried to get Claude to generate a good liveness or action property instead of a standard obvious invariant, and it just couldn't. Training data issue? Something in the innate complexity of liveness? It's not clear yet. These properties are even more "subtle" than most invariants, so maybe that's it.

On the other other hand, this is all as of March 2026. Maybe this whole article will be laughably obsolete by June.

Logic for Programmers Giveaway

Last week's giveaway raised a few issues. First, the New World copies were all taken before all of the emails went out, so a lot of people did not even get a chance to try for a book. Second, due to a Leanpub bug the Europe coupon scheduled for 10 AM UTC actually activated at 10 AM my time, which was early evening for Europe. Third, everybody in the APAC region got left out.

So, since I'm not doing a newsletter next week, let's have another giveaway:

• This coupon will go up 2026-03-16 at 11:00 UTC, which should be noon Central European Time, and be good for ten books (five for this giveaway, five to account for last week's bug).
• This coupon will go up 2026-03-17 at 04:00 UTC, which should be noon Beijing Time, and be good for five books.
• This coupon will go up 2026-03-17 at 17:00 UTC, which should be noon Central US Time, and also be good for five books.

I think that gives the best chance of everybody getting at least a chance of a book, while being resilient to timezone shenanigans due to travel / Leanpub dropping bugfixes / daylight savings / whatever.

(No guarantees that later "no newsletter" weeks will have giveaways! This is a gimmick)

Spinning a lot of plates this week so skipping the newsletter. As an apology, have ten free copies of Logic for Programmers.

• These five are available now.
• These five should be available at 10:30 AM CEST tomorrow, so people in Europe have a better chance of nabbing one. Nevermind Leanpub had a bug that made this not work properly

Now that I'm not spending all my time on Logic for Programmers, I have time to update my website again! So here's the first blog post in five months: Some Silly Z3 Scripts I Wrote.

Normally I'd also put a link to the Patreon notes but I've decided I don't like publishing gated content and am going to wind that whole thing down. So some quick notes about this post:

• Part of the point is admittedly to hype up the eventual release of LfP. I want to start marketing the book, but don't want the marketing material to be devoid of interest, so tangentially-related-but-independent blog posts are a good place to start.
• The post discusses the concept of "chaff", the enormous quantity of material (both code samples and prose) that didn't make it into the book. The book is about 50,000 words… and considerably shorter than the total volume of chaff! I don't think most of it can be turned into useful public posts, but I'm not entirely opposed to the idea. Maybe some of the old chapters could be made into something?
• Coming up with a conditioned mathematical property to prove was a struggle. I had two candidates: a == b * c => a / b == c, which would have required a long tangent on how division must be total in Z3, and a != 0 => some b: b * a == 1, which would have required introducing a quantifier (SMT is real weird about quantifiers). Division by zero has already caused me enough grief so I went with the latter. This did mean I had to reintroduce "operations must be total" when talking about arrays.
• I have no idea why the array example returns 2 for the max profit and not 99999999. I'm guessing there's some short circuiting logic in the optimizer when the problem is ill-defined?
• One example I could not get working, which is unfortunate, was a demonstration of how SMT solvers are undecidable via encoding Goldbach's conjecture as an SMT problem. Anything with multiple nested quantifiers is a pain.

This is something I just tried out last week but it seems to have enough potential to be worth showing unpolished. I was pairing with a client on writing a spec. I saw a problem with the spec, a convoluted way of fixing the spec. Instead of trying to verbally explain it, I started by creating a new markdown file:

NameOfProblem.md

Then I started typing. First the problem summary, then a detailed description, then the solution and why it worked. When my partner asked questions, I incorporated his question and our discussion of it into the flow. If we hit a dead end with the solution, we marked it out as a dead end. Eventually the file looked something like this:

Current state of spec
Problems caused by this
    Elaboration of problems
    What we tried that didn't work
Proposed Solution
    Theory behind proposed solution
    How the solution works
    Expected changes
    Other problems this helps solve
    Problems this does *not* help with

Only once this was done, my partner fully understood the chain of thought, and we agreed it represented the right approach, did we start making changes to the spec.

How is this better than just making the change?

The change was conceptually complex. A rough analogy: imagine pairing with a beginner who wrote an insertion sort, and you want to replace it with quicksort. You need to explain why the insertion sort is too slow, why the quicksort isn't slow, and how quicksort actually correctly sorts a list. This could involve tangents into computational complexity, big-o notation, recursion, etc. These are all concepts you have internalized, so the change is simple to you, but the solution uses concepts the beginner does not know. So it's conceptually complex to them.

I wasn't pairing with a beginning programmer or even a beginning specifier. This was a client who could confidently write complex specs on their own. But they don't work on specifications full time like I do. Any time there's a relative gap in experience in a pair, there's solutions that are conceptually simple to one person and complex to the other.

I've noticed too often that when one person doesn't fully understand the concepts behind a change, they just go "you're the expert, I trust you." That eventually leads to a totally unmaintainable spec. Hence, writing it all out.

As I said before, I've only tried this once (though I've successfully used a similar idea when teaching workshops). It worked pretty well, though! Just be prepared for a lot of typing.

As a formal methods consultant I have to mathematically express properties of systems. I generally do this with two "temporal operators":

• A(x) means that x is always true. For example, a database table always satisfies all record-level constraints, and a state machine always makes valid transitions between states. If x is a statement about an individual state (as in the database but not state machine example), we further call it an invariant.
• E(x) means that x is "eventually" true, conventionally meaning "guaranteed true at some point in the future". A database transaction eventually completes or rolls back, a state machine eventually reaches the "done" state, etc.

These come from linear temporal logic, which is the mainstream notation for expressing system properties. ¹ We like these operators because they elegantly cover safety and liveness properties, and because we can combine them. A(E(x)) means x is true an infinite number of times, while A(x => E(y) means that x being true guarantees y true in the future.

There's a third class of properties, that I will call possibility properties: P(x) is "can x happen in this model"? Is it possible for a table to have more than ten records? Can a state machine transition from "Done" to "Retry", even if it doesn't? Importantly, P(x) does not need to be possible immediately, just at some point in the future. It's possible to lose 100 dollars betting on slot machines, even if you only bet one dollar at a time. If x is a statement about an individual state, we can further call it a reachability property. I'm going to use the two interchangeably for flow.

A(P(x)) says that x is always possible. No matter what we've done in our system, we can make x happen again. There's no way to do this with just A and E. Other meaningful combinations include:

• P(A(x)): there is a reachable state from which x is always true.
• A(x => P(y)): y is possible from any state where x is true.
• E(x && P(y)): There is always a future state where x is true and y is reachable.
• A(P(x) => E(x)): If x is ever possible, it will eventually happen.
• E(P(x)) and P(E(x)) are the same as P(x).

See the paper "Sometime" is sometimes "not never" for a deeper discussion of E and P.

The use case

Possibility properties are "something good can happen", which is generally less useful (in specifications) than "something bad can't happen" (safety) and "something good will happen" (liveness). But it still comes up as an important property! My favorite example:

The big use I've found for the idea is as a sense-check that we wrote the spec properly. Say I take the property "A worker in the 'Retry' state eventually leaves that state":

A(state == 'Retry' => E(state != 'Retry'))

The model checker checks this property and confirms it holds of the spec. Great! Our system is correct! ...Unless the system can never reach the "Retry" state, in which case the expression is trivially true. I need to verify that 'Retry' is reachable, eg P(state == 'Retry'). Notice I can't use E to do this, because I don't want to say "the worker always needs to retry at least once".

It's not supported though

I say "use I've found for the idea" because the main formalisms I use (Alloy and TLA+) don't natively support P. ² On top of P being less useful than A and E, simple reachability properties are mimickable with A(x). P(x) passes whenever A(!x) fails, meaning I can verify P(state == 'Retry') by testing that A(!(state == 'Retry')) finds a counterexample. We cannot mimic combined operators this way like A(P(x)) but those are significantly less common than state-reachability.

(Also, refinement doesn't preserve possibility properties, but that's a whole other kettle of worms.)

The one that's bitten me a little is that we can't mimic "P(x) from every starting state". "A(!x)" fails if there's at least one path from one starting state that leads to x, but other starting states might not make x possible.

I suspect there's also a chicken-and-egg problem here. Since my tools can't verify possibility properties, I'm not used to noticing them in systems. I'd be interested in hearing if anybody works with codebases where possibility properties are important, especially if it's something complex like A(x => P(y)).

It's taken four months, but the next release of Logic for Programmers is now available! v0.13 is over 50,000 words, making it both 20% larger than v0.12 and officially the longest thing I have ever written.¹ Full release notes are here, but I'll talk a bit about the biggest changes.

For one, every chapter has been rewritten. Every single one. They span from relatively minor changes to complete chapter rewrites. After some rough git diffing, I think I deleted about 11,000 words?² The biggest change is probably to the Alloy chapter. After many sleepless nights, I realized the right approach wasn't to teach Alloy as a data modeling tool but to teach it as a domain modeling tool. Which technically means the book no longer covers data modeling.

There's also a lot more connections between the chapters. The introductory math chapter, for example, foreshadows how each bit of math will be used in the future techniques. I also put more emphasis on the general "themes" like the expressiveness-guarantees tradeoff (working title). One theme I'm really excited about is compatibility (extremely working title). It turns out that the Liskov substitution principle/subtyping in general, database migrations, backwards-compatible API changes, and specification refinement all follow basically the same general principles. I'm calling this "compatibility" for now but prolly need a better name.

Finally, there's just a lot more new topics in the various chapters. Testing properly covers structural and metamorphic properties. Proofs covers proof by induction and proving recursive functions (in an exercise). Logic Programming now finally has a section on answer set programming. You get the picture.

Next Steps

There's a lot I still want to add to the book: proper data modeling, data structures, type theory, model-based testing, etc. But I've added new material for two year, and if I keep going it will never get done. So with this release, all the content is in!

Just like all the content was in two Novembers ago and two Januaries ago and last July. To make it absolutely 100% for sure that I won't be tempted to add anything else, I passed the whole manuscript over to a copy editor. So if I write more, it won't get edits. That's a pretty good incentive to stop.

I also need to find a technical reviewer and proofreader. Once all three phases are done then it's "just" a matter of fixing the layout and finding a good printer. I don't know what the timeline looks like but I really want to have something I can hold in my hands before the summer.

(I also need to get notable-people testimonials. Hampered a little in this because I'm trying real hard not to quid-pro-quo, so I'd like to avoid anybody who helped me or is mentioned in the book. And given I tapped most of my network to help me... I've got some ideas though!)

There's still a lot of work ahead. Even so, for the first time in two years I don't have research to do or sections to write and it feels so crazy. Maybe I'll update my blog again! Maybe I'll run a workshop! Maybe I'll go outside if Chicago ever gets above 6°F!

Conference Season

After a pretty slow 2025, the 2026 conference season is looking to be pretty busy! Here's where I'm speaking so far:

• QCon London, March 16-19
• Craft Conference, Budapest, June 4-5
• Software Should Work, Missouri, July 16-17
• Houston Functional Programmers, Virtual, December 3

For the first three I'm giving variations of my talk "How to find bugs in systems that don't exist", which I gave last year at Systems Distributed. Last one will ideally be a talk based on LfP.

Kratek opis: Delavnica je namenjena predstavitvi postopkov shranjevanja in objave velikih podatkov v repozitorijih NIOD. Udeleženci bodo spoznali, kako učinkovito nalagati velike datoteke ali večje število datotek s pomočjo protokola S3 ter kako te podatke ustrezno opisati z metapodatki in jih objaviti za nadaljnjo uporabo.

Podrobnejši opis: Poseben poudarek bo namenjen pripravi in strukturiranju metapodatkov, ki omogočajo ustrezno opisovanje podatkov ter njihovo kasnejšo najdljivost in ponovno uporabo. Udeleženci bodo spoznali dobre prakse pri opisovanju podatkov ter pomen standardizacije metapodatkov.

V praktičnem delu bodo prikazani konkretni primeri nalaganja podatkov v repozitorij, upravljanja z verzijami ter objave podatkovnih zbirk. Udeleženci bodo pridobili znanja, ki jim omogočajo samostojno delo z repozitoriji NIOD in učinkovito upravljanje večjih količin podatkov. 

Zahtevnost: Napredna

Jezik: Slovenski

Termin: 19. 03. 2026 od 10.00 - 14.00

Omejitev števila udeležencev: 10

Virtualna lokacija: MS TEAMS

Priporočeno predznanje: Osnovno poznavanje dela z ukazno vrstico in osnovni koncepti podatkovnih repozitorijev, velepodatki, S3, repozitoriji, metapodatki, upravljanje podatkov, odprti podatki

Ciljna publika: Raziskovalci, inženirji, študenti, podatkovni znanstveniki, podatkovni analitiki 

Potek izobraževanja: Izobraževanje poteka na daljavo v okolju MS Teams. Udeleženci bodo uporabljali orodja za delo s protokolom S3 ter spletni vmesnik repozitorija NIOD. Praktični primeri bodo vodeni in podprti z demonstracijami.

Na izobraževanju pridobljena znanja:

• Razumevanje konceptov shranjevanja velikih podatkov v repozitorijih
• Uporaba S3 protokola za nalaganje podatkov
• Priprava in upravljanje metapodatkov
• Objava podatkovnih zbirk v repozitorijih NIOD
• Dobre prakse pri upravljanju raziskovalnih podatkov

Organizator:

Predavatelji:

Description: Scientific computing increasingly relies on GPU acceleration to handle large datasets and complex numerical tasks. While traditional CPU-based workflows remain essential, modern research benefits greatly from learning how to harness GPUs in an accessible way through Python. CuPY provides a NumPy-like interface that enables users to offload array computations to the GPU with minimal code changes.

On Day 1, we will cover the motivation for GPU computing, discuss what GPUs are best suited for, and set up a self-contained environment. Participants will learn to use conda/mamba for environment management, install and configure a GPU-ready CuPY setup, and verify its functionality.  

On Day 2, we will focus on the CuPY library itself. We will explore its syntax and functionality, emphasizing similarities and differences with NumPy. Through a series of simple examples, and culminating in a more involved case study, participants will gain the skills to confidently integrate GPU acceleration into their Python workflows.

Difficulty: Beginner

Date & Time:

Day 1: 19. 03. 2026  from 13.00 to 16.00

Day 2: 20. 03. 2026 from 13.00 to 16.00

Language: English

Prerequisite knowledge: Basic knowledge of Linux, the Terminal and some Python

Target audience: The workshop is intended for beginners and others interested in using GPUs with python.

Virtual location: ZOOM (only registered participants will see ZOOM link)

Workflow: The training is live over zoom, in the afternoon. The workshop will combine lecture and practical parts, where your own laptop suffices is needed to gain access to the ARNES gpu cluster.

Skills to be gained:

• how to setup python on a GPU
• basics of CuPY
• a more involved example

Max number of participants: /

Organizer:

Lecturer: 

Kratek opis: Delavnica je namenjena predstavitvi postopkov shranjevanja in objave velikih podatkov v repozitorijih NIOD. Udeleženci bodo spoznali, kako učinkovito nalagati velike datoteke ali večje število datotek s pomočjo protokola S3 ter kako te podatke ustrezno opisati z metapodatki in jih objaviti za nadaljnjo uporabo.

Podrobnejši opis: Poseben poudarek bo namenjen pripravi in strukturiranju metapodatkov, ki omogočajo ustrezno opisovanje podatkov ter njihovo kasnejšo najdljivost in ponovno uporabo. Udeleženci bodo spoznali dobre prakse pri opisovanju podatkov ter pomen standardizacije metapodatkov.

V praktičnem delu bodo prikazani konkretni primeri nalaganja podatkov v repozitorij, upravljanja z verzijami ter objave podatkovnih zbirk. Udeleženci bodo pridobili znanja, ki jim omogočajo samostojno delo z repozitoriji NIOD in učinkovito upravljanje večjih količin podatkov. 

Zahtevnost: Napredna

Jezik: Slovenski

Termin: 26. 03. 2026 od 10.00 - 14.00

Omejitev števila udeležencev: 10

Virtualna lokacija: MS TEAMS

Priporočeno predznanje: Osnovno poznavanje dela z ukazno vrstico in osnovni koncepti podatkovnih repozitorijev, velepodatki, S3, repozitoriji, metapodatki, upravljanje podatkov, odprti podatki

Ciljna publika: Raziskovalci, inženirji, študenti, podatkovni znanstveniki, podatkovni analitiki 

Potek izobraževanja: Izobraževanje poteka na daljavo v okolju MS Teams. Udeleženci bodo uporabljali orodja za delo s protokolom S3 ter spletni vmesnik repozitorija NIOD. Praktični primeri bodo vodeni in podprti z demonstracijami.

Na izobraževanju pridobljena znanja:

• Razumevanje konceptov shranjevanja velikih podatkov v repozitorijih
• Uporaba S3 protokola za nalaganje podatkov
• Priprava in upravljanje metapodatkov
• Objava podatkovnih zbirk v repozitorijih NIOD
• Dobre prakse pri upravljanju raziskovalnih podatkov

Organizator:

Predavatelji:

Opis: Raziskovalci se pogosto spopadajo z velikimi računskimi izzivi, na primer pri analizi velikih podatkov, fizikalnih simulacijah, računski kemiji, računski biologiji, napovedovanju vremena, simulacijah dinamike tekočin ipd. Za reševanje mnogih problemov je pogosto na voljo ustrezna programska oprema, ki pa jo je potrebno prilagoditi za izvajanje na izbranem superračunalniku.

Na delavnici si bomo ogledali več načinov nalaganja programske opreme: v domačo mapo, preko okoljskih modulov in vsebnikov. Spoznali se bomo s konceptom virtualnih strojev in vsebnikov ter osvetlili razlike med zasnovo vsebnikov Docker in Apptainer. Naučili se bomo uporabiti že pripravljene vsebnike in na praktičnih primerih spoznali, kako zgraditi enostaven vsebnik Apptainer ter ga zagnati v superračunalniškem okolju. V nadaljevanju si bomo ogledali, kako v vsebnik vključiti podporo za grafične pospeševalnike in procesiranje na več vozliščih.

Delavnica bo praktično usmerjena, vaje bomo izvajali na modernem sistemu HPC.

Zahtevnost: Napredna

Jezik: Slovenski

Termin: 15. 04. 2026 od 10:00 - 15:00

Omejitev števila udeležencev: 30

Virtualna lokacija: ZOOM (povezava bo na voljo samo registriranim udeležencem)

Ciljna publika: raziskovalci, inženirji, študenti, vsi ki potrebujejo več računskih virov pri svojem delu

Priporočeno predznanje: 

• opravljena delavnica Osnove superračunalništva,

• razumevanje zgradbe računalniške gruče,

• delo preko odjemalca SSH (ukazna vrstica, prenašanje datotek),

• osnovno poznavanje vmesne programske opreme Slurm,

• osnovno znanje operacijskega sistema Linux in lupine Bash

• osnovno poznavanje programskega jezika Python

Na izobraževanju pridobljena znanja:

• poznavanje vmesne programske opreme Slurm

• razumevanje okoljskih modulov in vsebnikov

• uporaba obstoječih vsebnikov Docker in Apptainer

• gradnja lastnih vsebnikov Apptainer za izvajanje izbranih programov na superračunalniški gruči

• raba različnih računskih virov v okoljskih modulih in vsebnikih (procesorska jedra, grafični pospeševalniki, vozlišča)

Organizator:

Predavatelja:

For the fourth meeting of the Ljubljana RNA Salon in 2025/2026, we will have a invited lecture given by Dr. Alessandra Magistrato from CNR-IOM at SISSA in Trieste, Italy..

The RNA Salon will take place at the National Institute of Chemistry.

Vabljeni k poslušanju in ogledu prve epizode iz nove serije podcastov Rdeče pese Od paleolita do Tita, v kateri bomo govorili o različnih zgodovinskih temah, njihovi relevantnosti za današnji čas in s tem prispevali k socialističnem razumevanju naše preteklosti.

V prvi epizodi je bil naš gost arheolog Dimitrij Mlekuž Vrhovnik s katerim smo govorili o Engelsovem Izvoru družine, privatne lastnine in države ter o tem kar arheologija danes pravi o teh procesih. Dotaknili smo se sezonskih sprememb družbene organizacije med lovci nabiralci, zažiganja hiš polnih pridelkov, ki so jih pridelali prvi poljedelci, ter pojava privatne lastnine in moških bojevniških grobov v bronasti dobi ter seveda Engelsovih teorij o “svetovnozgodovinskem porazu ženskega spola”.

Pošlji podcast kolegici, stisni lajk na Youtubu in se naroči na naše kanale.

The post OD PALEOLITA DO TITA 1: ALI JE IMEL ENGELS PRAV? O IZVORU DRUŽINE, PRIVATNE LASTNINE IN DRŽAVE first appeared on Rdeča Pesa.

Ameriški imperializem že desetletja izvaja pritisk na Kubo, vendar se je v zadnjih tednih situacija ponovno zaostrila. Medtem ko svet vsakodnevno spremlja novice o napadih na Iran, ne smemo pozabiti na Kubo, ki že več kot mesec dni trpi zaradi ameriške naftne blokade.  Združene države so svojo zmožnost diktiranja razmer v regiji okrepile tudi z vojaškim napadom na Venezuelo in ugrabitvijo njenega predsednika Nicolasa Madura v začetku tega leta. Venezuela je bila namreč vse od leta 1999, ko je tam na oblast prišel Hugo Chavez, glavni dobavitelj nafte za Kubo. 

Ameriški imperializem tako duši Kubo, saj prekinja dobavo goriva, to pa vpliva na letalske povezave in dostop prebivalk do ključnih življenjskih potrebščin. Ob tem je Trump celo omenil možnost »prijaznega prevzema Kube«, kot se je sam izrazil, s čimer je mislil na poskus ponovitve strategije, ki je bila že uporabljena v Venezueli.  Pod pretvezo boja proti kartelom oziroma »narkoterorizmu« je napovedal vojaški poseg v vse ameriške države, ki po njegovo ne upoštevajo imperialističnega svetovnega reda.

29. januarja je predsednik Donald Trump izdal ukaz za popolno naftno blokado Kube. Ta ukrep ima namerno uničujoče posledice za kubansko prebivalstvo, ki se sooča z vsakodnevnimi izpadi elektrike, prekinitvami delovanja v javnem prometu, dostavi hrane in odvozu odpadkov. Zaradi pomanjkanja osnovnih storitev so prebivalci pogosto prisiljeni odpadke sežigati kar na ulicah, kar predstavlja resno tveganje za zdravje.

Zaradi Washingtonovih groženj je na Kubo nafto nehala izvažati tudi Mehika, za katero Trump trdi, da jo vodijo karteli, s čimer  namiguje na morebitno ameriško vojaško intervencijo v državi. Trump z dodatnimi tarifami tudi grozi vsem državam, ki bodo Kubi prodajale nafto. S tem želi poglobiti odvisnost Kube od ameriškega goriva in tako povečati svojo zmožnost političnega izsiljevanja države. Poleg tega s spodbujanjem zasebnega sektorja kubanskega gospodarstva skuša pospešiti in poglobiti proces ponovne vzpostavitve kapitalizma. Trump je nedavno izjavil, da se v »socialistični Kubi« obetajo velike spremembe in da bo tamkajšnji sistem kmalu padel. Zatem je kar hitro pohvalil tudi začasno venezuelsko predsednico Delcy Rodriguez, ki se je močno uklonila zahtevam ZDA. Med drugim je v naftnem sektorju sprejela reformo, ki z odpiranjem sektorja zasebnim in tujim podjetjem omogoča večje sodelovanje pri izkoriščanju in prodaji venezuelske nafte ter zmanjšuje monopol državnih podjetij.

Današnje razmere so nadaljevanje več kot šestdeset let trajajoče ameriške blokade in sankcij proti Kubi. Te segajo vse do kubanske revolucije leta 1959, ko je država stopila na pot socialističnega razvoja. Od takrat naprej so ZDA poskušale Kubo politično in gospodarsko izolirati, saj jim predstavlja simbol države, ki se je odločila za protiimperialistično pot. 

V času hladne vojne je bila ena največjih težav Kube njena geografska oddaljenost od zaveznikov, zlasti od Sovjetske zveze, iz katere je uvažala številne dobrine. Po razpadu Sovjetske zveze v devetdesetih letih je država zapadla v hudo gospodarsko krizo in splošno pomanjkanje. Razmere so se nekoliko izboljšale šele po letu 1999, ko je Venezuela pod vodstvom Chaveza začela Kubi dobavljati nafto. K zaostrovanju trenutnih razmer pa prispevajo tudi nekatere evropske države, denimo Velika Britanija. Britanske banke blokirajo transakcije s Kubo, medtem ko mediji, kot na primer BBC, The Guardian in Zahodni mediji nasploh širijo imperialistične laži o državi, ki je od svoje revolucije leta 1959 zgradila družbo, ki ljudi postavlja pred dobiček ter stoji na strani mednarodnega delavskega razreda in naprednih gibanj po svetu.  Ima izjemen zdravstveni sistem, napreden biotehnološki sektor, podpira lokalne iniciative pri trajnostnem razvoju in uspela je vzpostaviti veliko eko kmetij po državi, ki pripomorejo k prehranski preskrbi sicer odrezanega otoka.

Kuba že desetletja igra pomembno vlogo na področju internacionalne solidarnosti, zlasti v zdravstvu. Država je brezplačno izobraževala tisoče zdravnikov iz revnejših držav in pošiljala zdravstvene ekipe tja, kjer je bila pomoč najbolj potrebna. V zadnjem času pa administracija Donalda Trumpa pritiska na številne države, naj te kubanske zdravstvene misije izženejo. To neizogibno vodi v poslabšanje zdravstvenih razmer v državah globalnega juga.

Obramba kubanskega ljudstva je nujna naloga naprednih delavk po celem svetu. Prihodnost Kube ni odvisna samo od notranjih reform, ampak tudi od širših političnih sprememb na svetu. Po svetu se že oblikujejo solidarnostna gibanja, ki si prizadevajo za preboj blokade na Kubi in nam lahko služijo kot vzgled. Za 21. marca je na primer načrtovana humanitarna akcija, kjer bodo aktivisti iz celega sveta na Kubo prinesli manjkajoče dobrine v bolnice, šole in ogroženemu prebivalstvu neposredno. V komentarju najdete povezave do humanitarne akcije Nuestra America Convoy, katero lahko tudi finančno podprete.

The post AMERIŠKI IMPERIALIZEM DUŠI KUBO first appeared on Rdeča Pesa.

Fitnesi v kapitalizmu so kapitalistična podjetja, njihov cilj je povečanje dobička. Zato uporabljajo različne strategije, od vezav, ki ljudi prisilijo v plačevanje članarin za dve leti, do oglaševanja urgentnosti izgube kilogramov in oblikovanja telesa, vrednega bikinik. To se lepo poklopi z estetskim idealom in seksualiziranjem ženskega telesa, ki postane tržno orodje. Ženska bi po lepotnih standardih morala imeti majhen pas, veliko zadnjico, raven trebuh, gladko kožo in ne bi smela imeti celulita. Z oblikovanjem tržnega ideala, ki ga v popolnosti nikakor ni mogoče doseči, fitnes industrija kroji stalno hlepenje po novih programih za oblikovanje tazadnje, dietah za izgubo maščobe na trebuhu in kremah, ki topijo celulit. Servirajo nam na tone večinoma povsem nepotrebnih prehranskih dopolnil zapakiranih v fensi embalaže, brez katerih bojda ne bomo napredovali. 

Ženskam so namenjene predvsem skupinske vadbe, ki temeljijo na kardiu in raztezanju in precej manj na vajah za moč s progresivno obremenitvijo. Čeprav s samim konceptom skupinskih vadb ni nič narobe, pa je težava, ko se te pomešajo s problematičnim prepričanjem, da težke uteži ženskam odvzemajo ženstvenost. Tako imenovani programi za ženske so zato pogosto osredotočeni na rast tazadnje in precej manj na gradnjo moči v zgornjem delu telesa. 

Za nameček vplivnice, ki oglašujejo delo na svoji riti, pozabljajo omeniti vpliv genetike. Torej da bodo določene ženske lažje dobile večjo rit kot druge, ki pa se jim bodo mišice prej poznale na rokah ali pa ramenih. A tudi za to je fitnes industrija ponudila produkt in nas prepričala, da ga nujno potrebujemo. Pajkice scrunch – po domače povedano push up modrc za rit. Namen teh je, da “popravijo” tvoje plosko ali predebelo tazadnjo oziroma da te prepričajo, da je s tabo nekaj narobe. 

V fitnes industriji je telo projekt, ki ga je treba neprestano izboljševati in optimizirati. Pri čemer se nenehno spreminja ideal, kako naj bi telo izgledalo in čemu naj bi bilo namenjeno. Fitnes individualizira odgovornost za zdravje in dobro počutje, nemalokrat pa ignorira, da nismo vsi v istem čolnu in kapacitete za trening zgledajo od človeka do človeka zelo drugače. Telo postane projekt samodiscipline, kjer posameznik sam nadzira sebe v interesu produktivnosti. To se prenese tudi v delovno okolje, kjer delavec postane bolj učinkovit, discipliniran in sposoben za delo.

Tudi patriarhatu je v interesu, da ženske ostajajo šibke, krhke, majhne in nesamozavestne. Svojo samozavest pa gradijo glede na velikost “glutsov” in ožini pasa. Takšne ženske je namreč lažje nadzirati in se lepše vklopijo v kapitalistični sistem. 

Lahko torej rečemo, da je fitnes industrija v kapitalizmu ideološki aparat. Toda telesna moč sama po sebi ni kapitalistična in se je kot socialisti ne bi smeli izogibati. Več telesne moči pomeni tudi več avtonomije, boljšo samozavest, boljše zdravje in kvalitetno starost. Kar je generalno gledano dobro za vsakega posameznika. Hkrati pa je dobro tudi za družbo. Navsezadnje je močno in zdravo delavsko telo bolj sposobno za politično organiziranje in kolektivno delovanje. V trenutnem krivičnem sistemu pa je lahko tudi sredstvo za sproščanje stresa in bistrenje misli. 

Prednosti treninga za moč je več, med drugim zmanjšuje tveganje za številne bolezni, kot so bolezni srca in ožilja ter sladkorna bolezen tipa 2. Spodbuja rast mišic in ohranjanje mišične mase ter preprečuje starostno zmanjševanje mišične mase, mišične moči in kostne gostote skozi življenje. Slednje je ključno za ženske, ki so bolj nagnjene k osteoporozi – če poenostavimo, trening za moč za starejšo žensko pomeni, da si med padcem ne bo usodno poškodovala kolka. Izboljšuje kognitivne funkcije, spomin in koncentracijo. Preprečuje starostno povezane bolezni, kot sta Alzheimerjeva bolezen in demenca. Zmanjšuje tveganje za depresijo in anksioznost. Močno vpliva tudi na možgane – izboljšuje kognitivne funkcije, koncentracijo, kreativnost, dolgoročni spomin, zmanjšuje stres in tako naprej. Trening za moč ob tem razvija veščine, ki jih lahko prenesemo na politično organiziranje. Konsistenca, disciplina, potrpežljivost in dolgoročno razmišljanje.

Treninga za moč s progresivno obremenitvijo bi se zato morali lotiti vsi, ne glede na spol, starost ali telesno pripravljenost. Kot družba pa bi si morali prizadevati, da so treningi za moč dostopni vsem. To lahko dosežemo z gradnjo javnih telovadnic, podružbljanjem obstoječih fitnesov ter širitvijo mreže fitnesov na prostem. Slednjih je kar nekaj že na voljo, predvsem v mestih. Primer dobre prakse je fitnes na prostem na Pobrežju v Mariboru, ki ga je postavila mariborska občina na pobudo občanov s sredstvi participatornega proračuna. Prav to je pokazatelj, da si ljudje želijo dostopne vadbe in se zavedajo pomena zdravega načina življenja.

Ob tem, da je na voljo potreba infrastruktura, je ključno še poznavanje pravilne izvedbe vaj, kar bi pa moralo biti vključeno v učni načrt javnih šol. Prav tako pa bi morali imeti v lokalnem okolju vsi na voljo brezplačne programe skupinskih vadb za moč, kjer bi trenirali pod nadzorom usposobljenih inštruktorjev. 

Fizična moč se gradi počasi in postopoma, enako politična moč. V ekosocialistični revoluciji bomo potrebovali močne ljudi, tako fizično kot psihično. 

The post KAJ JE NAROBE S FITNESOM IN ZAKAJ BI VSEENO MORALI TRENIRATI first appeared on Rdeča Pesa.

Lokalcem in aktivistom, ki se borijo proti gradnji megalomaske klavnice kokoši v bližini Siska na Hrvaškem, je prejšnji teden uspelo preprečiti gradnjo enega od 20 obratov načrtovane megafarme. Ukrajinski kapitalisti, ki bi na Hrvaškem zgradili klavnico za ubijanje več deset tisoč brojlerjev (tj. vrsta gojenih piščancev) na uro, so investicijo razdrobili na manjše projekte, da bi s tem zaobšli okoljsko in drugo zakonodajo. V klavnici načrtujejo vzrejo in klanje več kot 100 milijonov piščancev na leto, kar je štirikrat več kot se jih trenutno vzreja na Hrvaškem.

Kot smo na Rdeči pesi že poročali, je eden od investitorjev projekta milijarder, ki ima med drugim v lasti tudi Perutnine Ptuj. Za projektom, ki je bil ustavljen, pa stoji drugi ukrajinski podjetnik Andrij Matiuha, lastnik verige stavnic Favbet. 

Hrvaško ministrstvo za okolje je po pritisku več kot 150 okoljskih organizacij in lokalnih iniciativ ustavilo postopek ocene vplivov na okolje za enega od obratov za procesiranje, ker ni v skladu s prostorskim načrtom mesta Sisak. To je prvi korak na poti do zmage, dokler ne bodo vsi načrtovani projekti gradnje megafarme ustavljeni, pravijo v Zeleni akciji. 

Do ustavitva postopka ne bi prišlo, če se lokalno prebivalstvo in okoljski aktivisti ne bi združili in organizirali. Konec februarja je v Zagrebu proti projektu protestiralo več kot 5000 ljudi, tri iniciative pa so januarja ministrstvu tudi predlagale ustavitev postopka ocene vplivov na okolje v zgornjem primeru. Pred vsem tem je posebno telo, zadolženo za oceno vplivov na okolje, namreč menilo ravno obratno – da je projekt s prostorskimi načrti Siska skladen.

Kaj nam to pove? Pravni postopki zaščite okolja, ki jih izvajajo institucije kapitalistične države, še zdaleč ne pomenijo celovite zaščite okolja po meri večine prebivalstva. Obratno, ti postopki so golo tehtanje interesov “deležnikov” in njihovo prenašanje na papir. Dokler je edini deležnik kapital, postopki pa se odvijajo za zaprtimi vrati, bi bilo le naključje, če bi država tudi dejansko zaščitila interese lastnega prebivalstva.

A ko se ljudstvo organizira in na glas pove, kaj hoče in potrebuje, ga državne oblasti ne morejo kar preslišati brez posledic za lasten obstoj. Država se javnega delovanja lastnega prebivalstva boji, ravno v tem pa je naša največja moč. Zato: organizirajmo se. 

The post ETAPNA ZMAGA ORGANIZIRANIH LJUDI PROTI KAPITALU – V SISKU USTAVILI IZGRADNJO OBRATA PIŠČANČJE MEGAKLAVNICE first appeared on Rdeča Pesa.

Mariborska občina se je prijavila na razpis za postavitev sežigalnice odpadkov v Mariboru. To je bilo storjeno brez javne razprave, samo s potrditvijo mestnega sveta, ki ga obvladuje koalicija župana Saše  Arsenovića in stranke Svoboda. V ta namen sta podjetji Snaga d.o.o. in Energetika Maribor d.o.o. ustanovili novo podjetje.

PROBLEMATIKA ODPADKOV

Kot povsod se tudi pri nas soočamo s problemom odpadkov, ki bremenijo okolje. Kako rešiti te probleme, pa je seveda stvar pametnega ter človeku in naravi odgovornega ravnanja. Problem reševati s sežiganjem odpadkov je zelo neodgovorna odločitev, saj se je te težave potrebno lotiti že pri nastajanju odpadkov. Velik del le teh nastane zaradi človeške potrate in slabo zapisanih zakonov. Uporablja se dvojna ali včasih celo trojna embalaža za izdelke; veliko izdelkov je iz materiala, ki ga ni možno reciklirati; zaradi mode se zavržejo oblačila, ki so še skoraj nenošena in še bi lahko naštevali.

Drugi problem je, da tudi odpadkov, ki bi jih lahko reciklirali ali celo z majhnimi popravki ponovno usposobili za nadaljnjo uporabo, le te zavržemo in pristanejo na kupih smetišč. To je vsekakor v interesu potrošniškega kapitala, saj več kot se izdelkov zavrže, več se proda novih. Tako nastaja dvojna škoda. Za nove proizvode se črpajo novi naravni viri, na drugi strani pa se ustvarjajo novi odpadki.

Tretji problem pa predstavljajo tovornjaki, ki bodo dovažali kurivo za sežigalnico in bodo tako dodali svoj prispevek k onesnaževanju z izpusti, hrupom in gnečo na cesti.

PROBLEMATIKA SEŽIGALNIC

EU ne podpira več sežigalnic in v pripravi je tudi zakon, ki bo z emisijskimi kuponi v bodočnosti kaznoval delo sežigalnic, kar v praksi pomeni, da bomo skozi davke in prispevke vsi plačevali izpuste sežigalnic. Pomembno je tudi to, da se bo leta 2030 sprejel zakon za celotno EU in sicer se bo postavila zgornja meja onesnaženosti, kar pomeni, da zelo onesnažena mesta, ne bodo več dobila dovoljenja za gradnjo objektov, ki bi onesnaževanje še povečala. Glede na seznam evropskih držav in mest sta Slovenija in Maribor že na zgornji meji onesnaženosti, kar pomeni, da se verjetno projekt sežigalnice leta 2030 ne bo smel nadaljevati, tudi če bomo za to porabili več milijonov našega denarja.

Sam sežig odpadkov v sežigalnici ustvarja strupene izpuste, ki jih še tako izpopolnjeni filtrirni sistemi ne bodo odstranili (primer so avtomobilski izpusti, ki kljub vsej tehniki, ki je predpisana, še vedno močno obremenjuje okolje in so strupeni). Pri izgorevanju odpadkov pa zraven CO₂ nastajajo še drugi strupeni plini, ki so povzročitelji rakastih obolenj.

Zavedati se moramo, da po sežigu odpadkov ostane 15 – 20 % pepela. Ta pepel ni pepel, ki bi ga lahko raztresli po njivah in travnikih ter bi deloval kot gnojilo, ampak je izredno strupen. Potrebno ga je skladiščiti v neprodušno zaprtih kontejnerjih, saj ne sme priti v stik z vodo in zemljo, ker bi prišlo do kontaminacije, ki bi imela katastrofalne posledice za naravo in ljudi.

Ljudje zmotno mislijo, da če bo v Mariboru sežigalnica, da se bomo rešili problemov z gorami smeti v Snagi, Surovini, Dinosu … Nastalo bo namreč še eno skladišče smeti, saj se morajo smeti, ko prispejo na območje sežigalnice, sortirati in pred sežigom obdelati. Torej s tem ustvarimo novo smetišče. Ker mora sežigalnica delati 24/7 vse dni v letu, bo tudi v tednih in mesecih, ko vlada inverzija, delovala s polno paro in tako še dodatno onesnaževala zrak in okolje.

Ko se sežigalnica umesti v nek prostor, postane njeno neprestano delovanje prioriteta za naslednjih 30 in več let. Smeti za kurjenje se bodo vozile iz večjega dela SV Slovenije, kar pa še vedno ne bo dovolj za rentabilno poslovanje. To pomeni, da če zmanjka odpadkov, ki se ne dajo reciklirati, se začnejo sežigati tudi odpadki, ki bi jih lahko reciklirali. S tem dobi industrija potrditev, da jim ni potrebno skrbeti, koliko odpadkov proizvede, saj se jih tako porabi za sežigalnico. To pa je v nasprotju s težnjo po brezodpadni industriji (zero wast).

KDO IN KAKO BO IZVAJAL NADZOR NAD SEŽIGALNICO? 

V Sloveniji težko najdemo neodvisne strokovnjake, ki bi dnevno vršili kontrolo nad izpusti sežigalnice. Tako smo spet prepuščeni dobri volji lastnikov sežigalnic, katerim pa je glavni cilj profit in ne zdravje ljudi.

KAKO SE JE MESTNA OBČINA MARIBOR LOTILA PROJEKTA SEŽIGALNICE?

Kot smo že v uvodu povedali, je bila to politična odločitev brez jasnih in preglednih strokovnih utemeljitev in brez seznanitve javnosti, kaj bo to pomenilo za zdravje ljudi v Mariboru in njegovi okolici. Nobene javne razprave, nobenih izračunov, brez vizije za prihodnost.

Zmedenost in nepripravljenost na projekt je viden tudi iz ocen vrednosti postavitve in zagona sežigalnice, saj je prvotna ocena o 60 milijonih evrov v mesecu dni skočila na dobrih 100 milijonov evrov.

Sama lokacija je v nasprotju z direktivami EU in tudi naše ustave, saj morajo takšni objekti biti oddaljeni vsaj 300 metrov zračne linije od najbližjega naselja. To na predvideni lokaciji v Mariboru ni zagotovljeno. Pravzaprav je v bistvu sežigalnica predvidena v Coni Tezno, kjer je cca 4.000 zaposlenih ljudi, ki bodo med ostalimi tudi dnevno izpostavljeni izpustom sežigalnice.

Ustanovilo se je novo podjetje (d.o.o.), katerega direktor je postal sedanji direktor Snage d.o.o. dr. Vito Martinčič. Torej ima sedaj dve direktorski plači, ob njem pa je še direktor Energetike Maribor d.o.o. Jože Hebar.

Zakaj d.o.o.? Ker nad d.o.o., čeprav je ustanovljen z denarjem MOM, mestni svet nima več vpliva, kljub temu pa bo delovanje tega novega podjetja financirala MOM (torej mi vsi).

Stroški postavitve sežigalnice so načrtovani zelo ohlapno, saj se še do danes niso odločili, kakšen tip sežigalnice se bo postavljal. Ne ve se še, kakšna bo morala biti npr. višina dimnika in če bo sploh možno zgraditi takšno zgradbo na predvideni lokaciji (spomnimo se na gradnjo Rotovža, kjer so ob izkopavanju naleteli na probleme).

Velik problem pri tem projektu je tudi financiranje. Že v začetku smo povedali, da EU takšnih projektov ne sofinancira več, torej se pričakuje pomoč države, za kar pa ni nobenih zagotovil. Kredit pri banki pa bo gradnjo samo podražil ter ga bomo občani Maribora plačevali še leta in leta.

PROPAGANDA MOM ZA GRADITEV SEŽIGALNICE

Na seji mestnega sveta so potrdili, da se 250.000 € porabi za propagando graditve sežigalnice, kar pomeni, da se bo ponovno uporabil denar, ki bi ga lahko v Mariboru namenili za druge veliko pomembnejše projekte, kot je sežigalnica.

MOM propagira:

–   da bo sežigalnica znižala stroške kurjave.

Projekt sežigalnice bomo plačali vsi Mariborčani preko položnic (v tem trenutku cca 1.100 €/osebo, torej bo 4 članska družina dala za izgradnjo sežigalnice cca 4.400 €). To so stroški po sedanjih ocenah izgradnje. V Mariboru in tudi v Sloveniji pa je, kot vemo,  končna cena takšnih projektov v večini 2 – 3 x večja. Temu pa je potrebno dodati še stroške delovanja sežigalnice.

–   da bo manj onesnaženosti individualnih kurišč zaradi širitve toplovodnega omrežja.

Toplovodno omrežje je v Mariboru slabo razvito, ob tem pa je potrebno poudariti, da bi bil priklop do individualnih hiš zelo drag, blokovska naselja na Taboru pa so delno že vključena v ta režim in kar je še bolj pomembno – ne kurijo na drva. Torej bo ta učinek minimalen.

–   da bo z delovanjem sežigalnice manj smeti.

Povedal sem že, da se bo problema treba lotiti pri izvoru in ne na koncu.

–   delovanje sežigalnice ne bo vplivalo na zdravje ljudi in živali ter na okolje.

Če bi bilo to res, potem na svetu nikjer ne bi bilo več smeti, ker bi se vse države lahko posluževale sežigalnic in bi se smeti skurile brez problemov.

Kot vidimo, bo sežigalnica en problem samo nadomestila z drugim. Onesnaževanje se ne bo zmanjšalo, temveč se bo nadaljevalo v drugi obliki, ki je lahko še nevarnejša od sedanje. Vedeti moramo namreč, da smo zemljo dobili samo na posodo od svojih zanamcev, ne pa v last, česar bi se morali zavedati tudi politiki, ki smo jih izvolili, da odločajo o naši bodočnosti.

 Avtor tokratnega gostujočega peresa je Fredi Magdič

The post GOSTUJOČE PERO: SEŽIGALNICA V MARIBORU first appeared on Rdeča Pesa.

KAKO SMO V SOCIALIZMU IZGRADILI NAJBOLJŠO VZGOJNO – VARSTVENO MREŽO NA SVETU

Na Slovenskem je leta 1940 stalo 60 vrtcev, katere je obiskovalo okoli 2400 otrok. Mnogi med njimi si zaradi bornih pogojev niti ne bi zaslužili tega naziva.Zanje je skrbelo 79 vzgojiteljic, pri čemer jih je manj kot 20 imelo kakršnokoli izobrazbo iz področja predšolske vzgoje in varstva. Jasli so bile zgolj ene, pa še te so bile ob izbruhu druge svetovne vojne še v izgradnji. Dobra štiri desetletja kasneje, leta 1984, je v vrtce in jasli na območju tedanje Socialististične republike Slovenije dnevno prihajalo več kot 76 tisoč otrok. Zanje je bilo postavljenih 752 različnih objektov, ki so služi za vzgojne in varstvene dejavnosti, v vrtcih in jasli pa je bilo že leta 1961 na Slovenskem zaposlenih več kot 2000 ljudi, večinoma žensk. 

Kako je prišlo do tega skoka zgodovinskih razsežnosti, ki je močno vplival na večanje družbene enakosti in odpiral ženskam pot do samoizpolnitve?

Ključno vlogo pri tem je igrala idejna usmeritev ljudskih množic in komunistične partije, ki sta se povezali skozi zmago nad okupatorjem in preko izvedbe socialne revolucije Ta je odprla vrata jugoslovanskem socializmu naslednjih desetletij. Eden od osrednjih ciljev socializma je bila čim širša vključitev žensk na delovna mesta. Tako bi se naj vključile v javno sfero dela in življenja ter nadaljevale trend, postavljen iz strani stotisoče jugoslovanskih žensk, ki so se tekom druge svetovne vojne aktivno pridružile narodnoosvobodilnemu gibanju. Junakinje odpora in vojne so postajale junakinje dela in izgradnje socializma. 

Tempo naraščanja števila delavk je med različnimi obdobji socialistične Jugoslavije sicer nihal, vendar je vseskozi ohranjal krivuljo rasti. Če so ženske na Slovenskem pred drugo svetovno vojno predstavljale okoli 28 % vseh zaposlenih ljudi, se je njihov delež do leta 1961 dvignil na 41 %, v letu 1987 pa je dosegel 46,5 % celotnega delavstva. Za primerjavo, v Zahodni Nemčiji, Franciji, Avstriji in Veliki Britaniji niti do sredine osemdesetih let niso dosegli deleža zaposlenih žensk, ki ga je socialistična Slovenija dosegla že v začetku šestdesetih let istega stoletja

Takšen razmah zaposlovanja žensk in njihove polnopravne vključitve v širšo socialistično skupnost ne bi bil mogoč brez obsežnega podružbljanja, kolektivizacije in profesionalizacije varstva in vzgoje otrok. Odločitev in politična akcija za izgradnjo prostorsko razvejane in kvalitativno bogate mreže vrtcev in jasli, pa ni izšla samo iz dejstva, da se je deset tisoče novih žensk vključevalo v delovna okolja. Družbena akcija, ki so jo vodile napredne sile v partijskih organih, lokalnih skupnostih in drugih samoupravnih organih, je temeljila tudi na preseganju ideje, da je družina edina in primarno odgovorna za razvoj najmlajših članic in članov družbe. 

Tako je Vida Tomšič že leta 1952 ob njeni poslanci za 8. marec razgrnila novo opredelitev vzgoje in varstva kot naloge celotne družbene skupnosti. Dejala je: »Vzgoja otrok je seveda važen del materinstva, a je obenem veliko širši problem, ki ga mati sama ne more reševati. Socialistična družba mora iz svojih najglobljih osnov vzgojo otrok postaviti v prvi vrsti kot družbeno nalogo in jo kot tako tudi reševati.« 

Z izgrajevanjem vedno novih objektov, zaposlovanjem novih ustrezno kvalificiranih delavk (leta 1949 je bila namreč v ta namen v Ljubljani ustanovljena prva Srednja vzgojiteljska šola na Slovenskem), vpisovanjem vedno večjega števila otrok in posodabljanjem prostorov ter didaktičnih pripomočkov je pomemben segment reproduktivnega dela vse bolj postajal del javne sfere dela. Varstveno-vzgojno delo, ki so ga nekdaj ženske brezplačno opravljale skrite med štirimi stenami družinskega doma, je sedaj vse bolj postajalo del vsakdanjika celotne družbene skupnosti. Opravljale so ga strokovno usposobljene in ustrezno plačane delavke v vrtcih in jaslih, ki so preko mehanizmov socialističnega samoupravljanja tudi sodelovale pri vodenju teh vzgojno-varstvenih institucij in pri organizaciji dela v njih. Podoba odvisne ženske potegnjene v zasebnost doma in vprežene v privatnost reproduktivnega dela je tekom socialističnega razvoja vse bolj zamenjevala podoba ženske – delavke, samostojne osebnosti in ustvarjalke družbenega življenja. 

Mnoge od teh žensk so delo opravljale prav v vrtcih in jaslih. Pri tem so s skrbjo za najmlajše otroke in z vzgojo v duhu tovarištva pomembno prispevale tudi humanizaciji odnosov med ljudmi in k temu, da so se tudi pri najmlajših generacijah krepili emancipacijski tokovi. Hkrati so s svojim delom, naj si bo kot kuharice, čistilke, pomočnice vzgojiteljic ali vzgojiteljice, v ključni meri prispevale, da se je lahko z vsakim dnem zaposlovalo in osvobajalo vse večje število žensk. Družinska okolja so razbremenjevale nekoč skritega reproduktivnega dela in ga zmeraj bolj premikala v javno sfero, kjer je bilo to priznano in plačano s strani celotne družbe. 

Ravno ta emancipacijski skok zgodovinskih razsežnosti, tako kar se tiče števila vzgojno-varstvenih ustanov, kot tudi njihove kvalitete (organizirana prehrana, program “male šole”, prostorska umeščenost objektov, način financiranja itd.) je odgovoren za ogromno večino današnje javne mreže vrtcev in jasli. O tem priča že podatek, da je število objektov javnih vrtcev od leta 1990 do 2015 naraslo za komaj 68, medtem, ko je bilo v istem 25 letnem  obdobju med letoma 1945 in 1970, na Slovenskem zgrajenih kar 344 objektov za potrebe predšolskega varstva in vzgoje. 

Za razliko od javne mreže vrtcev in jasli, ki po kapitalistični kontrarevoluciji in razpadu Jugoslavije, vse bolj hira, pa na drugi strani vse bolj cveti privatna iniciativa. V šolskem letu 2024/2025 je tako pri nas delovalo že 94 zasebnih jasli in vrtcev, ki so od 85 % do 100 % financiranih iz sredstev vseh državljank in državljanov. Medtem, ko v mnogih javnih vrtcih primanjkuje vpisnih mest, kar neposredno vodi nazaj v mračnjaštvo patriarhalne družbe, se mesta v zasebnih vrtcih, ki delujejo s profitnim motivom, množijo. Lani je zasebne vrtce obiskovalo že kar 7.130 otrok predšolske starosti. 

Če želimo obrniti nevaren in družbeno izrazito škodljiv trend repatriarhalizacije družbe, ki ženske vse bolj spet postavlja v vlogo odvisnih subjektov, moramo slediti predstavljenim zgledom socializma. Mračnjaštvo smo nekoč že zamenjali z napredkom, na nas je, da to storimo znova. 

Živel 8. marec!

The post VRTCI KOT KLJUČNO ORODJE OSVOBODITVE ŽENSK first appeared on Rdeča Pesa.

Letošnji osmi marec, mednarodni dan delovnih žensk, praznujemo tik pred državnozborskimi volitvami. Ob tem si morda poskušamo predstavljati, kaj z vidika feminizem lahko pomenil naslednji mandat. Javnomnenjske raziskave trenutno kažejo na desno vlado – verjetno koalicijo SDS, NSi in Demokratov, ki vsi nasprotujejo pravici do varnega in dostopnega splava, zagovarjajo politike, ki ženske reducirajo na materinsko vlogo, ter spodbujajo razgradnjo javnega sistema varstva otrok. V prihajajočem mandatu se torej težko nadejamo (materialnega) izboljšanja položaja žensk, vse pa kaže na to, da jih bodo v vojski sprejeli odprtih rok.

V 84. členu programa SDS najdemo »uvedbo obveznega vojaškega usposabljanja«, ki sicer ni konkretneje definirana. Demokrati načrtujejo dvomesečno opravljanje »državljanske solidarnosti«, kar pomeni usposabljanje v vojski ali policiji oziroma trimesečno civilno služenje, tako za fante kot dekleta med 18. in 21. letom starosti. S tem bi dosegli vrhunec enakosti med spoloma, ki ga omogočajo okovi kapitalizma – vsi bomo primorani služiti vojaškim interesom, ne glede na spol.

Najbolje lahko tovrstno »progresivno« politiko vidimo na primeru izraelske vojske. Zahodni mediji nam namreč Izrael predstavljajo kot otok demokracije in liberalnih vrednot na Bližnjem vzhodu. To v praksi pomeni, da tudi Izraelke služijo 24-mesečni obvezni vojaški rok in so imele v zadnjih letih ključno vlogo pri genocidu v Palestini. Na podoben način bodo imele sedaj tudi Slovenke »privilegij« braniti zahodne imperialistične interese, kar od nas terjata EU in NATO pakt.

Članstvo v teh zvezah nam ne zagotavlja varnosti, nas pa vpleta v vojne, ki jih bodo zahodne kapitalistične velesile bile zmeraj pogosteje. To je posledica ekonomskega razvoja globalnega juga in pojavitve Kitajske kot alternativnega centra moči, zaradi česar je ogrožena obstoječa svetovna ureditev. Danes to seveda spremljamo predvsem pri Združenih državah Amerike z nepredvidljivo politiko Donalda Trumpa. V zadnjem letu si je z vojaškimi posredovanji in izsiljevanjem poskušal podrediti Venezuelo, Kubo, Iran, Kolumbijo in celo Grenlandijo, česar nikakor ne smemo razumeti kot »blodnje« dotičnega posameznika. Podobne interese imajo, predvsem v Afriki, vzhodni Evropi in na Bližnjem vzhodu, tudi vladajoče evropske elite. Politike oboroževanja torej niso posledica akterjev, kot je Rusija, pač pa izhajajo iz članstva v NATO in Evropski Uniji, ki bosta svoj privilegiran položaj v svetu branili z vsemi vojaškimi sredstvi.

A to ni le stvar t. i. desnice – sedanje koalicijske stranke, oziroma »levi pol«, nas strašijo z avtoritarnim janšizmom, hkrati pa so se ravno te stranke v zadnjem mandatu podredile diktatu Nata in nam na podobno avtoritaren način vsilile višanje izdatkov za vojsko. Sprejele so vojaški proračun v višini 5 % BDP-ja, kar po grobi oceni predstavlja približno petino celotnega državnega proračuna. To pomeni, da bi od vsake povprečne plače za vojsko namenili kar 133 evrov mesečno! Sodelovanje med obema poloma slovenskega političnega spektra najbolje prikaže Resolucija o splošnem dolgoročnem programu razvoja in opremljanja Slovenske vojske do leta 2040, ki jo je lani sprejela vlada, in predvideva povečanje mirnodobnega obsega pripadnikov slovenske vojske na 10.000 ter dodatnih 30.000 rezervistov. Kot smo videli, jim bodo pri takih ukrepih takoj na pomoč priskočile stranke desnega pola z različnimi oblikami vojaškega roka.

Hkrati je samooklicana »najbolj leva vlada v zgodovini samostojne Slovenije« v istem letu sprejela pokojninsko reformo, ki bo mnoge prisilila delati dlje in v povprečju niža pokojnine. Zaradi dviga izdatkov za vojsko je bilo treba sprejeti varčevalno pokojninsko reformo, ki so jo najbolj zagrizeno zagovarjali prav v Levici, čeprav naj bi se zavzemali za izstop iz zveze Nato in za večjo socialno blaginjo. Jasno je, da bomo za višje vojaške izdatke plačevali državljani in državljanke, najprej s svojim denarjem in nato še z dostojnimi življenjskimi pogoji, saj več sredstev za vojsko pomeni tudi manj sredstev za javne storitve. Pričakujemo lahko še marsikatero reformo, ki bo v stilu pokojninske reforme varčevala na račun delavstva.

Kako bo torej oboroževalna mrzlica prizadela ženske? Sprva z vpoklicem v vojsko, predvsem pa z zažiranjem v denar, namenjen javnim storitvam – vrtcem, šolam, domovom za ostarele itd. Tukaj lahko izpostavimo dva vidika poslabšanja položaja žensk: večina poklicev, ki zadevajo javne storitve, je feminiziranih, zato varčevanje na področju vrtcev, šolstva in skrbstva posredno pomeni varčevanje na račun delavk – nižje plače, slabši delovni pogoji in kadrovska stiska. Po drugi strani klestenje javne mreže varstva in skrbstva pomeni, da se del tega bremena prestavi na posamezna gospodinjstva, tam pa na ženske. Skrb za otroke, starejše in obolele pade na matere, sestre in hčerke, ki se morajo zaradi tega zaposlovati za krajši ali polovični delovni čas, poseči po kakšni drugi obliki nestandardne zaposlitve ali pa docela zapustiti aktivno delovno silo ter postati odvisne od moških v gospodinjstvu.

S povečano militarizacijo in krčenjem socialne države lahko ženske ob osmem marcu, ne glede na »levo« ali »desno« vlado, najverjetneje pričakujejo zgolj simbolične rože in orožje. Zato v Študentskem društvu Iskra tudi letos za dan žensk organiziramo protest!

Javno pismo so napisali v Društvu Iskra.

The post JAVNO PISMO ZA OSMI MAREC: ROŽE IN OROŽJE! first appeared on Rdeča Pesa.

“Vprašanje torej ni, ali si želimo enakosti. Vprašanje je, ali smo se zanjo pripravljene organizirati, ker brez organiziranja ne bo podružbljanja, brez podružbljanja ne bo emancipacije in brez razrednega boja se zgodovina ne premakne.”

Vabimo vas k ogledu spodnjega video eseja o prizadevanjih za osvoboditev in polno vključitev žensk v družbeno življenje, ki so ga pripravili v Študentski Iskri. V njem ustvarjalke in ustvarjalci spregovorijo o zgodovini ženske emancipacije, reproduktivnem delu, socialni državi in o tem, zakaj enakost ni nikoli nastala iz individualnega uspeha – temveč iz organiziranega boja in sistemskih sprememb.

Hkrati pa vas vabimo tudi na protestna shoda, s katerimi bomo v nedeljo v Kopru in Ljubljani obeležili mednarodni dan žensk. Povezave do dogodkov najdete spodaj. Se vidimo na ulicah!

https://www.facebook.com/events/1475775824123066 (LJUBLJANA)

https://fb.me/e/jiy1o4zl4 (KOPER)

The post KDO SE BOJI FEMINIZMA? first appeared on Rdeča Pesa.

Ob bližajočem se prazniku delovnih žensk, 8. marcu, smo za vas pripravili cikel objav z analizo položaja žensk v kapitalizmu.

V prejšnjem delu smo se osredotočili na vprašanje vloge družine v kapitalizmu. Tokrat se posvečamo procesu ponovne patriarhalizacije ob vzpostavitvi kapitalizma v Sloveniji.

II. DEL: Dvojna izkoriščanost delovnih žensk

Kapitalistična produkcija in njena buržoazna ideologija praviloma umeščata žensko v družbi znotraj družine primarno v vlogo matere in gospodinje, so pa ženske v večji meri vključene tudi v sistem mezdnega izkoriščanja. Dvojna izkoriščanost žensk je na eni strani posledica zgodovinskih pridobitev ženskih bojev za vključitev na trg delovne sile (ženska se delno osvobodi ekonomske podrejenosti družini in možu, tako na Zahodu kot v državah realsocializma), na drugi strani pa delno še vedno ostaja v vlogi oskrbovalke in gospodinje, ko pride iz službe. 

Vedno večja vključenost žensk v proces družbene produkcije je značilna za čas od druge svetovne vojne dalje, ko so države realsocializmov (pri nas v Jugoslaviji) uveljavljale politike enake vključenosti žensk in moških v delovne procese, družina pa naj bi izgubila ekonomsko vlogo in postala prostor solidarnih odnosov (pri čemer ne pravimo, da patriarhalnega zatiranja v socialističnih državah ni več bilo).

S tranzicijo Slovenije v kapitalizem sta tako ženska kot moški postala izkoriščana mezdna delavca, družina pa je zaradi vedno večje privatizacije javne družbene skrbi (javne kuhinje, vrtci, pralnice) spet vedno bolj postajala prostor, v katerem ima ženska primarno vlogo matere in gospodinje. Jugoslovanski realsocializem je patriarhat in delitev na spolne vloge nameraval sistemsko odpraviti s podržavljanjem in podružbljanjem družbene reprodukcije in vzgoje, kot so množično ustanavljanje javnih vrtcev, menz, pralnic in šol. 

Vse obsežnejša privatizacija po obnovitvi kapitalizma pri nas je močno načela socialistične pridobitve. Poleg tega pa danes že tako okrnjene javne storitve, ki ženske še lahko razbremenijo domačega reproduktivnega dela, pestijo kadrovska podhranjenost, prekarizacija, podplačanost in feminizacija teh poklicev. 

Neoliberalna kapitalistična ekonomija je s selitvijo nekaterih delov proizvodnje, kjer so bile ženske nekoč zaposlene v sindikalno dobro organizirani proizvodnji, v periferne države, na domačem terenu obdržala del višje ovrednotene industrijske proizvodnje in storitveni sektor (informatika, zavarovalništvo, bančništvo). V njem so večinsko zaposleni moški ali ženske srednjega in višjega razreda. 

Ženske delavskega razreda se tako zaposlujejo v podplačanem javnem sektorju ali vedno bolj prekariziranem zasebnem sektorju, ki izvaja nekatere skrbstvne dejavnosti (negovalke, medicinske sestre, vzgojiteljice). Vedno pogosteje pa najbolj razvrednotena dela opravljajo migrantke, ki zapolnjujejo skrbstveno “luknjo”, ki jo v državah kapitalističnega centra povzroča krčenje socialne države kot posledica neoliberalne ekonomske deregulacije zadnjih 30 let. Vzpostavlja se razredno nasprotje med ženskami na dobro plačanih položajih, ki si lahko privoščijo čistilke, hišne pomočnice ali varuške in migrantskimi delavkami. 

The post PESA ANALIZIRA II: SKRB ZA ŽIVLJENJE V KAPITALIZMU first appeared on Rdeča Pesa.

Članice in člani Mreže za pravičen prehod te vabijo na regijsko srečanje mreže, kjer bodo skupaj z udeleženkami in udeleženci razpravljali o okoljskih in socialnih problemih v Posavju in širše ter se organizirali za njihovo razrešitev:

Kje in Kdaj? Že ta četrtek, 5. 3. 2026, 17:00-20:00, prostori Studia 44/VGC Posavje, Krško, Cesta Krških žrtev 44

Na srečanju:

• bodo članice in člani predstavili namen, delovanje in zahteve mreže, 
• seznanili se bomo s prizadevanji raznih lokalnih iniciativ na okoljsko-socialnih področjih ter
• razpravljali o okoljskih in socialnih problemih v regiji in širše ter skušali skupaj poiskati rešitve.
  

Posebna pozornost bo namenjena razpravam in organiziranju: za boljši javni potniški promet; za reševanje okoljskih problemov v regiji; za dostop do zdrave, trajnostne in lokalno pridelane hrane ter morebiti še kakšnemu področju, ki ga boste udeleženke in udeleženci posebej izpostavili. 

Osrednji namen srečanj je torej, da se na tistih področjih, ki vas najbolj pestijo, organiziramo, okrepimo skupna prizadevanja in izborimo spremembe na bolje!

Na srečanju bo poskrbljeno tudi za topel obrok.

Aktiviraj se – združimo moči za boljše Posavje, za boljšo družbo!

Tako smo se že začeli organizirati v Mariboru:

Več informacij in prijava:

https://www.facebook.com/events/1613985996470464

The post Štajerci in Kranjci na obeh straneh Save – organizirajmo se za boljše Posavje! first appeared on Rdeča Pesa.

Zgodba o razvoju umetne inteligence je zgodba o človeški radovednosti in želji, da bi razumeli razum sam. Od antičnih mitov o bronastih velikanih do literarnih vizij o robotih so sanje o mislečih strojih burile domišljijo, a resnična revolucija se je v zadnjih desetletjih tiho odvijala v raziskovalnih skupinah.

Slovenija ima v tem razvoju presenetljivo pomembno vlogo. Čeprav je svetovni preboj uporabniških orodij šele pred nekaj leti umetno inteligenco postavil v središče javnega zanimanja, domači razvoj poteka že pol stoletja in uživa mednarodni ugled od Stanforda do Tokia. Resnična zgodba najbolj prebojne tehnologije našega časa pa se piše v stotinah tisočih vrsticah programske kode, ki so bile skozi desetletja napisane v mnogih laboratorijih na Institutu Jožef Stefan, na Fakulteti za računalništvo in informatiko in razvojnih oddelkih pionirskih podjetij. 

Računalniški muzej z razstavo Izvor prihodnosti razkriva to spregledano pot slovenskih začetnikov najbolj prebojnega področja računalništva. To niso le zgodbe o procesorjih, temveč zgodbe o ljudeh, ki so v tehnologijo vtkali svoje vrednote in želje za prihodnost. To so zgodbe, ki bodo krojile sodobno slovensko tehnološko samozavest.

The post IZVOR PRIHODNOSTI – 50 LET RAZVOJA UMETNE INTELIGENCE V SLOVENIJI first appeared on Računalniški muzej.

V preteklem letu so Ekologi brez meja naslovili širši okvir digitalnega odtisa, tokrat pa želimo skonkretizirati povezavo med digitalnimi praksami, strojno opremo in oprijemljivimi posledicami – od e-odpadkov do slabše uporabniške izkušnje in povečane tehnološke odvisnosti. Cilj dogodka je spodbuditi strokoven, trezen razmislek o tem, kako digitalne rešitve zasnovati tako, da bodo dolgoročno vzdržne – tehnološko, okoljsko in družbeno – ter odpreti prostor za izmenjavo pogledov med različnimi disciplinami.

Po konferenčnem delu pa vas vabimo, da se pridružite digitalnemu čistilnemu servisu z ambasadorji Evropskega podnebnega pakta. Delavnica je primerna za vse starosti.

Za lažjo organizacijo dogodka vas prosijo, da se prijavite preko prijavnega obrazca.

Program strokovne konference

The post Kako je digitalno lahko fizično? first appeared on Računalniški muzej.

Dogodek je popolna ideja za zmenek, ki ni vsakdanji. Namenjen je vsem, ki jim je ljubezen blizu, pa naj bo to romantična ali prijateljska. Mario in Peach, Mario in Luigi ali katerakoli druga nepremagljiva ekipa: pomembno je le, da se imajo igralci lepo in da med smehom in drobnimi tekmovalnimi trenutki nastajajo novi spomini.

Večer obljublja sproščeno vzdušje, kanček tekmovalnosti in obilico zabave v dvojicah. Ljubezen do iger se bo prepletla z ljubeznijo do druženja. Idealna kombinacija za valentinov dan.

Vstopnice v predprodaji lahko kupite tukaj.

Opomba:

Dogodek je del LUV festa.

Dogodek se lahko snema in fotografira. S svojo prisotnostjo na dogodku Turizmu Ljubljana dovoljujete, da vašo podobo na fotografijah ali videu uporablja za komercialne in nekomercialne namene (promocijo) destinacije Ljubljana in festivala LUV fest.

The post Valentinov retro gaming first appeared on Računalniški muzej.

Pretekli petek je pred ministrstvom za okolje, podnebje in energijo v Ljubljani potekala tiskovna konferenca na temo dveh SLAPP tožb zoper eno naših največjih bork za naravo in prosto tekoče reke Andrejo Slameršek, ki so se je udeležili tudi številni njeni podporniki ter podpornice.

SLAPP tožbi sta zoper Andrejo Slameršek sprožili dve državni energetski družbi HSE Invest in HESS, nedolgo zatem, ko je junija lani prejela državno nagrado Rada Smerduja za izjemne zasluge na področju ohranjanja narave. “Civilna družba je nominirala Andrejo Slameršek za državno nagrado in civilna družba bo stala ob Andreji Slameršek tudi zdaj, ko jo preganjajo državna podjetja,” so zapisale Varuhinje rek.

Na tiskovni konferenci se je pred množico podpornic in podpornikov zvrstilo šest govornic oziroma govorcev: Alja Bulič (Varuhinje rek), Polona Pengal (Revivo), Gaja Brecelj (Umanotera), Uroš Macerl (Eko krog, Vesna), Barbara Rajgl (Pravna mreža za varstvo demokracije) in Aljoša Petek (Pravni center za varstvo človekovih pravic in okolja).

Objavljamo izjavo Varuhinj rek:

“Če si sam, te lahko ustrahujejo.
Če je za teboj skupnost, se bojijo oni.

Andreja Slameršek je ena naših najpomembnejših varuhinj narave, za svoje delo je prejela tudi najvišjo državno naravovarstveno priznanje.
Zdaj jo ta ista država oz. državni energetski podjetji HSE Invest in HESS tožita. Gre za t.i. SLAPP tožbi, ki jih vlagajo vplivni akterji, da bi ustrahovali in utišali tiste, ki zagovarjajo javni interes. Andrejo tožijo zaradi njenih prizadevanj proti gradnji HE Mokrice na Spodnji Savi – država je v tem primeru že 3x izgubila na sodišču!

Pred Ministrstvom za okolje smo se na tiskovni konfereneci v bran Andreji Slameršek zbrali številni predstavniki in predstavnice stroke in civilne družbe iz cele države s zahtevami:

• odgovorni na omenjenih podjetjih naj pojasnijo ozadje tožb proti državni nagrajenki
• tožbi naj nemudoma umaknejo

Če se to ne bo zgodilo, bomo sodni postopek izkoristili za zelo javno in odprto soočenje vseh argumentov, dejstev in strokovnih mnenj.
Na koncu smo v en glas skupaj prebrali izjavi, zaradi katerih je tožena. Andreja ni sama kot tudi ne bo sam nihče, ki bi ga doleteli podobni pritiski.

Skupaj za Andrejo!
Skupaj za reke!”

Fotografije: Črt Piksi

The post Civilna družba v bran Andreji Slameršek appeared first on Prelom.

V Ljubljano prihajata dve organizaciji Changing Cities Berlin in Wir machen Wien, ki aktivno delujeta predvsem na organiziranju meščank in meščanov od spodaj navzgor za trajnostno mobilnost.

Prostorož vabi v četrtek, 5. marca ob 17.30 v Rastlinjak (Tržaška cesta 2) na kratko javno predavanje in predstavitev kampanj, intervencij in iniciativ za trajnostno mobilnost, ki so dosegle uspehe na Dunaju, v Berlinu, Hamburgu in drugih nemških mestih.

Predavanju bo sledila razprava, v kateri bomo osvetlili tudi trenutno stanje v Sloveniji.

Več o dogodku lahko preberete na tej povezavi.

The post Aktivizem, ki spreminja mesta appeared first on Prelom.

Iniciativa za Štepanjsko naselje vabi na skupščino prebivalcev in prebivalk:
Ponedeljek, 2. 3. 2026 ob 18.00
OŠ Božidarja Jakca, Nusdorferjeva ulica 10

Če želite predstaviti svoj predlog, do 28. 2. 2026 pošljite ime, priimek, naslov bivališča ter kratek opis na info@stepanjsko.si ali pokličite 069 865 570.

Prispevki bodo časovno omejeni (predvidoma 5 minut), da bo zagotovljena možnost sodelovanja vsem.

Pridite in povabite še sosede.
Skupaj odločamo. Zdaj je čas, da se povežemo.

The post Skupščina prebivalcev Štepanjskega naselja appeared first on Prelom.

Januarja so težave s parkiranjem v Štepanjskem naselju postale vseljubljanska skrb. Resnici na ljubo so segle celo onkraj meja mestne občine – o parkiranju v Štepanjcu so poročali v nacionalnih medijih, o njem so pisali časopisi, na družbenih omrežjih pa so se razvnele burne razprave. Zgodba je nadvse preprosta in značilna tudi za druge dele Ljubljane, prav tako za kakšno drugo mesto pri nas ali v okolici. Modernistična soseska, ki je bila zasnovana s parkirnimi mesti za en avto na dve stanovanji, ne prenese sodobnega pritiska Ljubljančanov, ki imajo v lasti avto ali dva na gospodinjstvo. Razmere, zaradi katerih so vsi tarnali, je presekala nova ureditev – ki razmer ni uredila – in pokazale so se nove, globlje težave.

Še huje, do izraza so prišle usodne strateške napake, ki niso značilne le za Ljubljano, ampak za večino slovenskih občin oziroma za vso državo.

Poglejmo najprej razlog, zakaj sploh takšna ureditev in zakaj prav zdaj. Ureditev parkiranja v Štepanjskem naselju je del širšega projekta mestne občine, s katerim ta uvaja območja plačljivega parkiranja tudi zunaj mestnega središča. V istem valu je bilo denimo urejeno parkiranje v Šiški med letoma 2023 in 2024. Takšni ukrepi nedvomno polnijo občinsko blagajno in s tem ni prav nič narobe – lastništvo avtomobila je vsekakor svojevrsten luksuz. Seveda občani pričakujemo, da se z zbranim denarjem pametno in smiselno ravna, na primer, da se vlaga v razvoj javnega prometa. Odgovor na vprašanje, zakaj prav zdaj, pa je dejstvo, da so parkiriščni trg v središču mesta izčrpali. Hkrati so zdaj marsikje že rešeni lastniški spori med občino in etažnimi lastniki stanovanj v blokih oziroma pripadajočih zemljišč, h katerim sodijo tudi parkirišča (ZVEtL-1). Tako je recimo v Šiški, kjer so parkirišča zarisana. Zdelo se je, da občina ve, kje lahko parkiranje legalno zaračuna in kje ga (še) ne more. Vendar se je to spremenilo z ureditvijo, vpeljano v Štepanjskem naselju. Lastniški spori tam še niso rešeni, občina pa se je samovoljno odločila za posredovanje. Prebivalci Štepanjskega naselja so ravno na tej podlagi zoper njo vložili tožbo.

Eden od razlogov, ki se vedno znova pojavljajo v zvezi z nujnostjo uvedbe plačljivega parkiranja, so dnevni migranti, saj naj bi ti z nenadzorovanim zasedanjem parkirišč ta zasedali lokalnim prebivalcem. Takšna razlaga je nadvse populistična (vsi poznamo negodovanje nad tujimi tablicami na našem koncu) in ima kaj malo podlage. Tudi če bi ti dnevni migranti parkirali vsevprek, bi to storili zjutraj, ko bi lokalci odšli od doma. Popoldne bi že migrirali nazaj v svoje domače konce, takrat pa bi lahko lokalci brez težav parkirali na izpraznjenih parkiriščih. Seveda je to poenostavljen prikaz, vendar že na daleč kaže, da so dnevni migranti fiktivni sovražnik. V razmerah, ko parkirišča P + R večinoma samevajo (razen tistega na Dolgem mostu), ni pričakovati, da bi dnevni migranti namesto urejene infrastrukture uporabljali naključna parkirišča po mestnem obrobju. Če pa so težava zares dnevni migranti, se mora občina temeljito vprašati, kaj za vraga počne s svojimi parkirišči P + R, zakaj ne delujejo in kako se težave lotiti s tega konca. So pa dnevni migranti uporaben izgovor za hiter konsenz med prebivalci okolja, kjer se plačljivo parkiranje uvaja.

Ravno to se je izkazalo v Štepanjskem naselju. Župan je obljubljal, da bo po uvedbi dovolilnic dovolj parkirnih mest, saj bodo vsi dnevni migranti odšli. A zgodilo se je, da je bilo parkirnih mest še vedno premalo in – po zakoličenju nekaterih območij – manj kot prej. Tako je razumljiva jeza lokalcev, ki so pričakovali rešitev, dobili pa še večjo težavo. Takrat so se začeli zborovanja, intervencije v medijih in naposled celo županovi obiski. Ti so bili izredno neproduktivni, saj je župan prebivalce le arogantno postavil pred dejstvo, da parkirnih mest pač ni, jih ni bilo in jih še lep čas ne bo.

Kot rešitev oboji, lokalni prebivalci in občina, omenjajo gradnjo garažne hiše. Ta ukrep je absurden in bo, če se uresniči, prinesel še več gorja in gneva kakor dosedanji dogodki. Garažna hiša je finančni in strateški nesmisel. Finančni zato, ker bi cena parkirnega mesta nanesla vsaj nekaj deset tisoč evrov; strateški pa, ker si kot družbeni ideal – na evropski, državni in občinski ravni – postavljamo trajnostno, brezogljično mobilnost. Nekaj, kar se marsikomu zdi neizvedljivo, je ne glede na vse naš strateški cilj. Torej pričakujemo družbo, ki bo imela čez nekaj deset let bistveno manj avtomobilov kakor danes. Pri vsem tem se postavlja vprašanje, kaj se bo takrat zgodilo z odvečno avtomobilsko infrastrukturo. In ravno garažne hiše so objekti, s katerimi bo največ težav, saj omogočajo izjemno omejeno drugačno rabo.

Kako torej rešiti težavo, tako da bo rešitev finančno in strateško vzdržna, da bodo z njo uresničeni občinski načrti in da bo predvsem pripomogla k boljši kakovosti življenja prebivalcev?

Zadeve se je treba lotiti iz popolnoma drugega izhodišča. Če ne moremo preprosto povečati infrastrukture, ki bi ustrezala večjim potrebam, je treba zmanjšati potrebe, da ustrezajo infrastrukturi, ki je na voljo.

Seveda Štepanjsko naselje ni edino območje, ki ima te težave. Tudi Ljubljana ni unikum. Niti Slovenija. Z enakimi težavami se spoprijemajo po vsej Evropi in marsikje so se nanje pametno odzvali. Denimo na Dunaju, kjer so rešitev iskali – in jo tudi našli – v preprostem pilotnem projektu Auto-Wette (slo. ‘stava na avto’). Gospodinjstva so se prostovoljno za tri mesece odpovedala avtu, v zameno pa so dobila 500 evrov subvencije za mobilnost na mesec na gospodinjstvo. V projektu je sodelovalo 37 gospodinjstev (prijavilo se jih je kar 3000), ki so lahko subvencijo porabila za različne oblike mobilnosti: mesečne vozovnice za javni promet, kratkoročni najem avtomobila, vožnjo s taksijem … Izkazalo se je, da so na mesec porabila v povprečju le 340 evrov (torej jim je ostalo 160 evrov), po treh mesecih pa sta dve tretjini gospodinjstev odločeni za nadaljevanje takšnega življenja, četrtina gospodinjstev pa je avtomobile že prodala.

Nekaj takšnega bi bilo smiselno poskusiti v Štepanjskem naselju in kasneje morda še drugje. S tem bi rešili težave s parkiranjem, model pa je finančno samozadosten. Vsem prebivalcem bi ponudili možnost mesečne subvencije v določenem znesku, če se odpovejo avtomobilu. Četudi se za to odloči le nekaj odstotkov gospodinjstev, bi to pomenilo opazno razbremenitev parkirišč. Financiranje subvencij bi lahko potekalo neposredno iz denarja, ki ga s prodajo parkirnih listkov in dovolilnic proizvajajo občinska parkirišča. Dejansko bi bili na boljšem vsi. Tisti, ki se lahko odpovejo avtomobilu, bi za to prejemali finančno nagrado, iz dunajskega primera pa vidimo, da bi s tem lahko celo zaslužili. Tisti, ki se avtomobilu iz takšnega ali drugačnega razloga ne morejo odpovedati, pa bi imeli na voljo parkirna mesta, lahko celo zagotovljena – z dražjo dovolilnico. Hkrati bi bilo tudi zanje to ceneje kakor naložba v gradnjo garažne hiše oziroma najem parkirišča v njej, če bi stroške gradnje krila občina.

Seveda je podlaga za izvedbo takšne rešitve delujoč in robusten sistem javnega prometa – na lokalni in državni ravni. Tega, žal, niti v Ljubljani niti v Sloveniji nimamo. Četudi občina izgovore išče v slabem sistemu na državni ravni, je za lokalni javni potniški promet odgovorna sama. Ljubljanski potniški promet (LPP) je obstal v prostoru in času Ljubljane ob koncu 20. stoletja. Omejen je s shemo prog, ki ima eno centralizirano ozko grlo (Slovenska cesta), in s frekvenco, ki tudi ob konicah ni manjša kot pet minut (za Štepanjsko naselje, najgosteje naseljeno območje v Sloveniji, celo ne manjša od 12 minut) – ponoči pa sploh ne deluje. To preprosto ne zadošča za trenutne potrebe potnikov, najpogostejši, študenti, dijaki in upokojenci, druge možnosti enostavno nimajo, od drugih pa pri takšnih razmerah ni upravičeno pričakovati, da se bodo odpovedali avtomobilu. Pogoj za kakršnokoli trajnostno in inovativno reševanje problematike parkiranja je ustrezen javni potniški promet. Občina bi se zato morala izboljšanja javnega potniškega prometa lotiti takoj in velikopotezno. Ljubljana potrebuje primestno železnico. Ljubljana potrebuje tramvaj. To niso ekscesi, to je nuja. Žal pa visokoleteče ambicije prepogosto ostanejo le črka na papirju strateških dokumentov, denimo Celostne prometne strategije MOL 2025–2032.

Izkušnja iz Štepanjskega naselja opozarja na kritično stanje ljubljanske občine, ki se več kot očitno ni sposobna resno, kritično in znanstveno lotiti reševanja težav. Rešitve obstajajo, le prepoznati jih je treba.

Četudi je predlagana rešitev slaba ali neizvedljiva, bi si morala občina prizadevati, da najde boljšo, da preveri vse možnosti, da predlaga pilotne projekte, začasne rešitve, da ne deluje zgolj znotraj cone udobja. V času, ko Ljubljana spada med evropska mesta z najslabšo kakovostjo zraka in ko povprečni prebivalec za avto porabi več kot 500 evrov na mesec, gradnja garažnih hiš ne bi smela biti pravi odgovor. Okoljsko in finančno trajnostne rešitve bi morale biti prvi odziv načrtovalcev in odločevalcev, a žal niso. Očitno jih moramo zahtevati občani sami.

The post Kriza Mestne občine Ljubljana appeared first on Prelom.