UBI would never work. It ignores basics of how humans operate. We have it in some sense in France. The problems it tries to address are only amplified after UBI.
Do you mean RSA[1]? My french is quite bad, but as I understand it, the RSA is tied closely to employment and has complicated work obligation and subsidizes employers for keeping employees at low hours. RSA appears to be extensively means tested as well (which UBI is not supposed to be).
There are numerous independent social programs in France. RSA is one. People could receive input from up to 3-4 social programs.
Consider CDI contracts at universities. It has become a sort of UBI. People show up once every few weeks. Never publish papers; never teach properly; never go to any conference; etc. Totally detached from academic life. And they can't be fired. You know what they do with the UBI?
-- Become members of unions. Unions were supposed to protect workers in 80s. Now the least productive members of the institutions join unions to protect themselves. They kill reform policies and maintain status quo.
-- Work is associated dignity. You can't have two classes: workers and suckers. So UBI recipients, holding into administrative roles and unable to do meaningful work, try to fail non-UBI takers.
-- Fail those who actually do their jobs. Otherwise, the gap is going to be problematic.
At the end of the day, UBI would only shift the baseline. The same problems it tries to address exist after the administration of UBI.
You would be surprised if I go over details. America's left does not understand what it's getting into. France's system has really been an eye opening experience for me. I highly recommend people spending time in Europe.
That sounds more like a jobs guarantee than a UBI. Many UBI proponents are against a jobs guarantee for fear of these kinds of outcomes.
UBI is untethered to any conditions on people. So there are no bad incentives created by the system (no good ones created either, of course) nor is anyone part of some group that they try to homogenize into something unproductive.
How does Keepassxc compare to other password managers (passwordstore with gpg-agent/gnome keyring, 1password, Bitwarden, etc) in terms of protecting secrets when the vault is unlocked?
For example, part of data may be held unencrypted in RAM that could be read by OS or other programs. Any use of TPM?
I find it difficult to set up a good system for encrypted storage.
1. Cryptomator: it's immature and buggy, especially the 1.5 version. See comments in forum.cryptomator. The files and folders disappear, vaults crash, vaults fail to mount, etc.
Boxcryptor is the paid version and not buggy. But it's not open source.
2. EncFS. Has security issues that haven't been resolved.
3. CryFS. Too slow and immature.
4. Encrypted backup, like rclone or duplicity. These are not sync tools.
5. eCryptfs: Used for Ubuntu home encryption (even then somewhat outdated), not for cloud.
6. AWS KMS: server side encryption; amazon has the keys.
7. Gocryptfs: It's OK. Reasonably fast. Cons: command line only, and for Linux. Uses OpenSSL library which isn't all that secure.
Gocryptfs has a comparison of these projets, here [2].
Focused on Windows only, to my experience, securefs is the one that is working the best as it is not using dokany but winfsp (FUSE for Windows). With all other solutions using dokany, the copy or sync of large number of files is damn slow or hanging.
Regarding your first paragraph, that’s always going to be a tradeoff that has to be assessed based on threat model and resource budget, since doing it differently will inherently leak sidechannel information, right?
I wonder if you push your Password Store to GitHub? Its encryption is based on RSA with around 128 bits of security with current keys. It's unclear if it's going to stand beyond 2 decades.
I might be paranoid but with clouds I would be more comfortable with AES-256. If RSA is a must, maybe RSA 7680.
For the record there are quite a few new algos in GPG, most notably ed25519. While RSA 7680 offers 192 bits of security [0] ed25519 on the other hand is offering 128 bits of security. GnuPG 2.3 will have ed448/goldilocks available [2] and that should offer 224 bits of security [3] so in theory it should be better than RSA 7680.
I don't mind putting my encrypted passwords in a private GitHub repo but I understand the concern.
To say Wiener and Shannon founded information theory is like saying Lorenz and Einstein founded speial relativity. I don't think physicists would consider Lorenz having made a major advance, and in fact even after the relativity was explained some people still didn't understand it.
Wiener made important contributions to mathematics but not to information theory. He wrote a book saying that entropy is related to "information" and is maximized for a Gaussian. That's about his involvement. The paper attached goes way beyond that.
Open source is a two edge sword. If developers voluntarily contribute to the projects, it could be positive.
But increasingly it's becoming a source of cheap labor. It used to be that you get a college degree and start a job. Now you need years of schooling, unpaid internships, postdoc and unpaid scientific contributions, an extensive GitHub page with open source contributions, etc to get the same job. The competition for better CVs will push individuals towards taking years of unpaid jobs against their will, which is negative.
I get that expectations have changed, but I have lots of friends graduating with a Computer Science BS, with nothing on their githubs, who do well on their interviews and get entry-level positions making six figures.
Edited: And no one I know does unpaid internships -- most CS majors are making $20-40+/hr over the summer of their second or third years in college.
I graduate this May with a CS degree, that about mirrors my experiences. The vast majority of competent and even semi-competent students have no problems getting good paying internships, and jobs out of college. I appreciate that unpaid internships are a really bad situation in some fields, but fortunately CS is pretty lucrative right now.
