sudneo

And before Yandex, Google - which they use since the beginning, and which it makes also clear that using the services of a company is at the moment a necessary evil, and does not mean in any way endorsing the values (or lack thereof...) of that company.

But apparently some people are really tunnel visioning on some specific issues and looking at them from a short term perspective only.

Being political I would say that this is an unfortunate result of the lack of a strong collective movement in the left, which leads to people looking mostly at individual problems but not at collective problems, because these seem overwhelming and potentially destabilizing for the status quo.

I saw no evidence of that.

Looking at the "evidence" discussed, I saw three points:

• The refusal to disengage with Brave. It's totally possible to disagree with his position, but the overall motivations were legit and no "fascist" attitude was shown. Users screaming "cancel culture" were shut down

there was clear intention to discuss, and it has always been done in a respectful way.

• The refusal to support the widget that prompts for suicide hotlines. Even here, I personally agree with the motivation provided, but it doesn't matter, it does not have anything to do with being a fascist. Moreover, the discussion about that was quite lengthy and definitely showed a good-faith engagement from their side.
• Finally, the most ridiculous of all, which was part of the mastodon thread linked. Some user claims that "queer people" were getting censored in Discord (we have no evidence except for a private exchange which seems off-topic) and that https://greatcountry.org/ is apparently a proof that the creator (CEO of Kagi) is a white supremacist, because the countries on the top of the list are mostly white countries. I won't even go into details in this one, because it's such an idiotic statement that qualifies way more the user making this claim, which shows -in my opinion- a complete lack of a good faith and the desire to really find any angle to disqualify the person (possibly due to lacking ability to discuss the arguments). The other "proof" (the thread has 3 posts) is a paraphrased and reinterpreted (in bad faith) piece of a comment, which even includes an addendum that takes the distance from this statement. The guy mentioned that "politics into tech is the reason there is no innovation", and the Mastodon user rephrases it as "inclusion is the reason [...]", which is a completely different statement (it is possible that's what the guy meant, but that's not what he said).

If this is anybody's definition of fascism, then I personally consider that person's opinion on fascism completely irrelevant. Now, since my mother tongue has the unfortunate responsibility for having coined the term "fascism", I think I have at least an idea of what it means. It means -in a wider sense- discrimination, suppression of minorities and violence as a mean to shut down opposition. I see no such thing in this context, and if you do, I think it's time you provide some evidence for this claim, because just name-calling random people fascist on the internet doesn't help anybody, and it doesn't help in particular due to the fact that waters down the term and reduces its meaning.

In fact it's not comparable, because this is a metasearch engine. Kagi has quite many unique features and besides that it's great in surfacing small websites (for which it mostly uses its own crawler) and downranking pages full of tracking. They are just different and the Kagi model is the most reasonable, in my opinion, for what it does (search engine).

everyone should be able to get good results without needing to pay.

Until this stuff is funded with public money, it's not really doable for such a compute and storage intense task.

I am perfectly OK with paying for good software, until then. I also agree with the principle of aligning interests of users and the search provider by having the users pay. Other models (ads, sponsoring) creates incentive to favour those who pay. The other reasonable model is donation, that can work potentially, but it has its problems.

Evidence is a bit of a stretch.

Apologies to the ones downvoting, it is extremely a stretch. No evidence whatsoever was provided, not even for the watered down definition of fascist that I assume it is being used.

The suicide thing, to me, sounds completely reasonable. I am also extemely skeptical that thing has any effect at all (in Google, for example).

By the way, this whole debacle is honestly very silly in my opinion. Do we really expect them to start being fully clean and moral, and to not give any money to any party which does immoral things? Then why pay Google for their API, why use AWS/GCP, or let's go even further, any entity in US (or Russia, or China, or most of EU,etc.) pays taxes and funds a military-industrial complex which is responsible for far worse than opposing same sex marriage. But we really draw the line at using Brave API?

Things need to be put in context. Is it better that a new search engine will exist, that protects privacy, that just provides search and actively opposes tracking on the internet, that can provide people with a plural set of information? The answer for me is yes, and these unrealistic expectations are very shortsighted in this perspective. I am very happy that Kagi pays google API for search, even if I hate Google and almost everything it stands for and I refuse to use any of their products. The benefits outweight the damages in the wider battle.

It's the de-facto standard for runtime container security (sysdig is based on it). The only competitor afaik is aqua security's tracee, which is way less mature. It is very well supporter, there are tons of rules maintained by the community and it is a CNCF project used by enterprise solutions (I.e., shouldn't disappear overnight).

Yeah, that sounds even better.

wut?

personal data have not been obtained from the data subject

Reads to me like data that I (data subject) did not provide myself, but that the processor collects. I guess an example could be IP address.

You already mentioned the most important things.

I will add, at the cost of being pedantic:

• build the image properly, or use good images. This means limit dependencies as much as possible, as minimal images as possible (less updates due to CVEs, less tooling).
• do not mount host volumes, if you really have to, use a dedicated subpath owned by the user of the container. Do not use homedirs etc.
• do not run in host namespaces, like host network etc. Use port mapping to send traffic to the container.

If you want to go hardcore:

• analyze your application, and if feasible, build and use a more restrictive seccomp profile compared to the default. This might limit additional syscalls that might be used during an exploitation but that your app doesn't need.
• run falco on the node. Even with the default set of rules (nothing custom), many exploitation or posts-exploitation steps would be caught, such as "shell spawned" etc.