> It's unfortunate that almost none of the PPA criticisms actually go into depth on why its implementation isn't sufficiently private. It seems there's no desire to actually improve privacy, they'd rather just kill the feature.

PPA does not "preserve" or improve privacy; it only reduces it. Your narrative is a lie.

Killing PPA directly increases privacy.

Metaphors are also a handy hint that you are being manipulated. They are often used by influencers, salespeople, con artists, and other fraudsters.

When someone starts using metaphors, you know you are getting taken for a ride.

> We are relieved that hundreds of organisations did not leak their private keys by accident.

It's important to note that the only reason for a business to do this is they are currently or planning on committing crimes and/or embarrassing acts.

While I like LWN and respect their writings, AND I appreciate and respect a good post-mortem story which involves some "I fucked up", this really just highlights negligence on their sysadmin staff. And, in that respect, I don't they have any business telling other people to not run a mail server given their demonstrated negligence. Not everyone else is a fuck up, but LWN sure is.

> configuration was introduced as part of a hurried email server replacement driven by the demise of CentOS 7

They knew for YEARS, and even after the Red Hat controversy of shitting down CentOS, they still sat on their butt and did nothing until the very last minute, and then f*ked it up. That's some serious negligence.

Also, any competent self-hoster knows you need to run a recursive DNS resolver on-host to avoid these kinds of issues. Many other DNS-based RBL services already had such limits and those issues were extremely well-known. This is another sign of negligence.

This guy is an idiot and should not be running a mail server. And, he/they have no business telling anyone else what to do.

Normally I appreciate HN removing trite and toxic comments, but in this case they were well deserved so it's sad to have seen them removed in the last few hours.

I think it would be a cool project to have a website that allows comments on HN posts.

Actually the new Thunderbird people are not taking lots of patches and fixes for even things like security and mail corruption issues. And privacy definitely doesn't seem to be anything they are interested in. I gave up and just send them over to Betterbird, which is what I use now anyway, since I don't want my mail corrupted.

That's a deeply troubling non-answer right there.

By "Funny" you mean influenced as part of a media tour.

No, this is entirely different.

Stupid people click on adverts. So, businesses promote and foster stupidity.

Large businesses like Facebook, Reddit, and other social media is about collecting the largest pile of ad-clicking morons together in a package and selling access to advertisers.