I’ve tried. SO many times. It’s just so damn clunky. I ended up using Krita (also FOSS) instead.

From the blog post OP linked in a comment:

We made an unrelated change that caused a similar, longer availability incident two weeks ago on November 18, 2025. In both cases, a deployment to help mitigate a security issue for our customers propagated to our entire network and led to errors for nearly all of our customer base.

It seems that the method they have of specifically propagating new security configurations to their servers is not a gradual or group-based rollout, it pushes certain changes to all servers at once, so uncaught bugs end up hitting everything instead of just some initial test group.

In particular, the projects outlined below should help contain the impact of these kinds of changes:

Enhanced Rollouts & Versioning: Similar to how we slowly deploy software with strict health validation, data used for rapid threat response and general configuration needs to have the same safety and blast mitigation features. This includes health validation and quick rollback capabilities among other things.

“Fail-Open” Error Handling: As part of the resilience effort, we are replacing the incorrectly applied hard-fail logic across all critical Cloudflare data-plane components. If a configuration file is corrupt or out-of-range (e.g., exceeding feature caps), the system will log the error and default to a known-good state or pass traffic without scoring, rather than dropping requests. Some services will likely give the customer the option to fail open or closed in certain scenarios. This will include drift-prevention capabilities to ensure this is enforced continuously.

Valve has hundreds if not thousands of highly and expressly pornographic games on its platform, so I don’t think this can be chalked up to the Collective Shout folks’ spectre somehow looming over Valve. As another commenter pointed out, according to the devs’ own timeline, Valve’s rejection happened prior to the recent successful Collective Should payment-processor targeting.

I suspect that EGS and Humble probably halted sale at the last minute due to the added press naming them as distributors prior to launch, often in articles that included Valve’s response asserting that it contained questionable content related to minors, and them going, “hey what? Hold on a sec, we don’t know anything about that.”

If you were about to sell a bunch of cars, and a major dealership announced they wouldn’t sell them because their trunks were all full of cocaine, a couple days before launch, you’d probably delay your launch to double-check as well.

Unfortunately, the developers’ own initial press statements where they sort of feigned innocence ignorance (after they had already changed the scene presumed to be in question, meaning they at least had some idea that was likely the issue) probably didn’t help their credibility in other platforms’ eyes, as far as being business partners goes.

So large skyscrapers, large nuclear plants, datacenters, etc would be state owned. Actually more…. This would be hundreds of the largest companies. This means the state would commandeer a company when what, the market cap hit a billy? The nav? That actually seems kinda crazy to do

Not state-owned, just state-managed. We already generally subsidize power plants, but for other large projects it could provide both funding and oversight of the build.

When it comes to really large companies themselves, if there’s a cap then they would just stop being such large companies, not be taken over.

But if you wanted to make a process for a company to grow beyond the $1B cap, my personal preference would be a system where depending on the level of impact to peoples’ lives, either something like monthly auditing of financials and business plans, or for companies operating in areas with a higher potential for harms, something closer to a Fannie Mae-style conservatorship, that would directly advise the company on minimizing risks (and potentially actually prohibit actions outright if they clearly were harmful). Ownership, stocks, profit, etc, would all still be private. We actually already embed IRS auditors in companies if they’re caught doing tax evasion, and I think of this more as a logical extension of that. We’ve tried voluntary compliance with laws and regulations, and too many of the very large companies are happy to flout them, and use their wealth to help them do so.

You quoted the wrong part, then. The company cap that Phoenixz proposed was $1 billion, not $10-20 million. Companies can easily build larger-scale projects with a billion, and projects that are going to run over that should probably be weighed against public interest and publicly-funded and managed, if they’re beneficial.

personal net [worth]

personal

Privately owned power plants aren’t built and owned by individuals with their personal wealth. Ditto for 99% of large buildings. And we can do without the personal skyscrapers, yes.

Corporate wealth needs its own set of guardrails and limits.

Guarantee that their lawyers told them they were a huge, illegal, indefensible liability, and it was better to axe them than potentially pay the per-work copyright violation penalties.

Ten years was the total time for everything under the “larger overhaul”. The frontend website portion is not broken down.

I don’t think society is actually more prudish; you couldn’t have had 80% of the shows that are made now, 50 years ago. I think there are just several things that combine to make it appear otherwise (note that these are all 100% my opinion):

1. Corporatism has run rampant, and corporations detest liability. Independent movie stores didn’t have to worry about being noticed by political groups, but big chains did, and big corporations’ shareholders only care about stock prices are much more reactive to ‘threats’. And big corporations killed most independent stores, even before digital took over. Digital is all big corps.

2. The US has sanitized violence in media to such an extent (e.g. superhero movies where logically thousands of people die, or where all violence is ‘bloodless’ but not cartoonish) that I think sex has become the only metric by which to delineate ‘kid’ vs ‘adult’ media for a lot of people. That has a feedback effect on large media creators, who will be less likely to depict sex in anything not squarely targeted for adult consumption, which in turn makes any sexual content in e.g. young-adult media stand out even more, which will get it outsize attention by the wannabe morality police types.

3. Prudish political groups made a lot of strategic inroads into positions of policy influence by using “protect the children” rhetoric, with sex being the #1 thing they actively demonized. It’s much less common to see pro-sex groups making any kind of public messaging or policy impacts, so it can seem like the prudes are the majority.

WRT the current thread: Steam doesn’t ban sexual games at all; at this point it’s one of if not the largest adult games distributor just thanks to its user base. They even implemented a ‘private’ feature for games so people could buy adult games on their Steam account but hide them from others, to encourage people to buy adult games. This particular game is really just an unfortunate case of edgy content accidentally running up against a legitimate guardrail. I won’t be surprised if Valve does walk back the ban soon based on the amount of media coverage.

92 million dollars over cost on a 4.1 million dollar project is not incompetence and mismanagement.

Doubling the cost of a project should have triggered reviews or an audit. 23x’ing the cost of a project is either corruption, or such gross negligence with public funds as to be criminal all on its own.

Most stores choose not to sell X rated (later NC-17) movies.

It’s a game where people are put in animal masks, chained up, and ridden around naked.

what the studio calls “grotesque, subversive imagery” of a ranch where nude human beings in horse masks are treated as animal livestock.

To pretend that said “grotesque, subversive imagery” is not in this case functioning on it’s proximity to sexual degradation, is disingenuous imo. I don’t blame Valve for not wanting to wade into an “art vs shock-sploitation” debate.

Minchin said the total cost “includes the previously stated $4.1m required to redesign the front end of the websites”.

“The remaining cost ($92.4m) reflects the significant investment required to fully rebuild and test the systems and technology that underpin the website, making sure it is secure and stable and can draw in the huge amounts of data gathered from our observing network and weather models,” Minchin said.

So 92 MILLION dollars on SQA and maybe some pentesting? Bullshit. Pentests run $50k-$400k for single-domain websites like this, and $400k is on the very expensive end.

Even if you paid 30 people $200k apiece for 4 years to work on this, which is more people and at higher salaries than would have happened, that would still only come to $24m, less than a third of the cited cost.

There is no possible way for this to have legitimately cost this much. There was corruption of some kind involved.

One thing I recommend for horror games is to play with a friend (i.e. in the same room). You can even figure out a way to do old-school controller-swapping (for a VN, maybe each chapter, or after a fixed time interval e.g. every 10 minutes). My partner is a huge horror buff, but also has a hard time with the longer periods of stress that horror games impart vs movies, so we play games this way.

Packing more transistors into the same space is not the same as “innovation”. There’s more innovation in late-90s-early-2000s handheld Windows CE 3.0 devices than there are between modern smartphone designs.

Take

these

for

example.

that means adjusting to a shrinking market no matter what your company does.

Which is good. Markets are supposed to go up and down, and responsible businesses would have the capital reserves to weather the troughs, but no (public) companies are responsible anymore, and they waste any capital reserves on appeasing short-term shareholders who don’t give a rat’s ass about the long-term prospects of the company.

Santa Ragione received an automated message from Valve stating Horses would not be approved for distribution on Steam and could not be resubmitted. The ‘why’ came as a shock to the studio. “While we strive to ship most titles submitted to us,” Steam’s automated response read, "we found that this title features themes, imagery, or descriptions that we won’t distribute. Regardless of a developer’s intentions with their product,

we will not distribute content that appears, in our judgment, to depict sexual conduct involving a minor.

While every product submitted is unique, if your product features this representation—even in a subtle way that could be defined as a ‘grey area’—it will be rejected by Steam."

I don’t think is an unfair line to draw by any measure, and while I sympathize with the studio I’m also not going to begrudge Valve taking a hard line on this, because there are absolutely games being submitted that will try to toe that line. I don’t think this studio is doing that, but I also think it’s fair for Valve to weigh art and impact vs peoples’ comfort, if they’re the ones being asked to host something.

They know that verification is happening as we shift rightwards, but instead of being the ones beholden to implement an age-verification system that puts them at risk, they want to have device manus do it, which would absolve PH from any responsibility. It’s a business move, on their part.

I also wonder if people do more secure passwords for important services.

In my experience, most people have at most 2-3 passwords, and some do choose a “more secure” one for things like banking and work. Very few people use a password manager.

But my question is, are these only “hacked” passwords? Because those who are not hacked, you don’t know what passwords they have. So this is a bit of bias here, right?

No, that’s not how these are obtained. Password dumps are from attackers breaching a site’s user database and dumping their credentials, usually by phishing administrators’ logins. Attackers are brute-forcing passwords anymore except on a one-off, very rare basis. Here’s a list of publicly-known password dumps, and you can see details about where they came from: https://haveibeenpwned.com/PwnedWebsites