Show newer
Sven Slootweg (soft-deprecated)

@CatMaidLeugim@chaos.social Maybe an off-the-wall suggestion, but have you considered looking at a repair cafe? Policies vary widely in different places but AFAIK usually they're open to fixing anything as long as you're willing to be there and learn how to do it (with the guidance from someone more experienced), and they can help you find the parts affordably if any are needed.

I know that there are also some repair cafes where they can do the whole thing for you, but you can usually only find out that sort of thing by asking there in person...

0
Sven Slootweg (soft-deprecated) boosted
Extinction Rebellion NL

Rijkswaterstaat houdt vast aan de plannen ondanks eerdere protesten. Daarom bezetten we de boerderij als laatste redmiddel en roepen iedereen op ons te steunen. Morgen hebben we extra hulp nodig in de strijd voor de Limburgse natuur. Meer info: stopa2verbreding.nl [4/4]

Show thread
0
Sven Slootweg (soft-deprecated)

@hazelnot @schratze @gsuberland@chaos.social I mentioned this in more detail in social.pixie.town/@joepie91/11 but the way I can make todo lists work for me is to reframe their purpose as one of "relieving me from chores" rather than "assigning me chores"

1
Sven Slootweg (soft-deprecated)

@hazelnot @schratze @gsuberland@chaos.social There are ways to use todo lists to your advantage but those work very differently from the widely-recommended "todo list" concept

1
Sven Slootweg (soft-deprecated)

@hazelnot @schratze @gsuberland@chaos.social In the neurotypical way, yes, they absolutely do, they (among other things) create a loop of self-punishment for "not having done enough" which negatively affects executive function further, and can create an overwhelming sense of a never-ending list of stuff to do such that you can't even start on a single thing, to just name a couple of the ways in which (monolithic) todo lists (as often suggested) can make things worse for ADHD

1+
Sven Slootweg (soft-deprecated) boosted
Julia Evans

I feel like half of programming is remembering how weird stuff works and the other half is setting things up so that you do not have to remember the weird stuff

1+
Sven Slootweg (soft-deprecated)

details 

@schratze @gsuberland@chaos.social I use day-specific todo lists as a way to have a hard cut-off; once I have completed tasks for the day, I am Done(tm) with chores, even if there's nominally more stuff to do. If I don't get all of them done, they simply get rescheduled onto another day. Prevents me from overexerting my spoons trying to do everything I am "supposed" to do in a single day...

1
Sven Slootweg (soft-deprecated)

@schratze @gsuberland@chaos.social I mean, todo lists *can* work to some degree.. just not in any way remotely resembling the way neurotypical people suggest using them...

1
Sven Slootweg (soft-deprecated) boosted
Faintdreams

Does anyone currently living in Germany follow me?

I'm in the UK, and I want to send my friend in Germany some backed goods as a present - what's the cheapest and most hassle free way to do so?

Something like a basket of muffins or a small fruit basket is what I'm after.

Thanks

#EuropeanPost #Postage #PostingPerishables #UK #Germany

0
Sven Slootweg (soft-deprecated) boosted
ob🎐

for anyone who needs it (like me)

1
Sven Slootweg (soft-deprecated) boosted
1.3.6.1.4.1.61513

That's a load bearing print statement (makes the i2c timing work)

0
Sven Slootweg (soft-deprecated) boosted
ten million explosions

On one hand I think it's naïve to expect that all medicine and disability care can be as straightforward as diy hrt but also I think there's definitely something to be sought out there with the kind of independence it affords us

Show thread
0
Sven Slootweg (soft-deprecated)

uspol and election meta 

Serious question: do you *need* to follow the elections in the US?

Don't get me wrong, you should do your part and do what you can to prevent a disastrous outcome. But you also need to recognize where "what you can do" ends, and where the doomscrolling loop begins.

We all know how bad things could end up being after this election, we're all aware. Reading up more on analyses and predictions is unlikely to improve our understanding, and even less likely to result in a concrete action that we can take against it - at least, one we didn't already think of.

Maybe it's better to just... detach from it, if you are not actively working on it already, let the chips fall where they may, and instead put your energy into building a sustainable society going forward, with or without the systems currently in place.

There are a lot more productive things you can do with your time and energy, than worrying more about something you already know is bad. And for a lot of those possibilities, it just doesn't really matter what the outcome of this election is.

1
Sven Slootweg (soft-deprecated) boosted
Trammell Hudson

No, those are straight lines.

1+
Sven Slootweg (soft-deprecated) boosted
David Revoy

✏️ Mark your calendars! In just two weeks, I’ll be offering a free Krita workshop (in French) at Capitole du Libre 2024. This session will be a perfect blend of exploring Krita’s features and sharing valuable drawing tips. I can’t wait to see you there and create together! 🎨 :krita:

More info: cfp.capitoledulibre.org/cdl-20

#cdl2024 #krita

1
Sven Slootweg (soft-deprecated)

password hashing advice, re: okta vulnerability, grumbling about security 

@AFriendlyBeagle Sort of. In and of itself, bcrypt is fine, in that it does what it says on the tin - but it has an input limit (72 bytes if memory serves) that is not widely known, and easily missed. Usually that's only a problem if you have a very long password (since it's essentially quietly truncated to 72 bytes), but if you're using it for a cache key like Okta was... 😐

My go-to recommendation for new systems nowadays is either argon2id, argon2i, or scrypt (in order of preference, depending on what your environment supports). They're more resistant to GPU cracking than bcrypt is. But as long as you aren't prone to the truncation issue (ie. you either restrict the input length or you just don't have such long inputs) there's no need to change what's already using bcrypt, the crypto itself is still considered sound.

Really the only things that warrant immediate change are anything using MD5, SHA1, and (due to the risk of incorrect implementation) anything homegrown using SHA256/SHA512. Third-party implementations of eg. PKBDF based on SHA256/SHA512 should be treated with scrutiny.

0
Sven Slootweg (soft-deprecated)

CW-boost: election manipulation 

federate.social/@mattblaze/113

0
Sven Slootweg (soft-deprecated)

okta vulnerability, grumbling about security (2) 

I will give Okta a tiny bit of credit for having used a cryptographic hash for their cache, which is something that many people get wrong. But that doesn't really help you if you then use the *wrong* cryptographic hash...

Show thread
0
Sven Slootweg (soft-deprecated)

re: okta vulnerability, grumbling about security 

@riley I mean, this is true for basically every auth company I've seen, they're all snake oil, just some hide it better than others. But that hasn't stopped them from building an 'experts' reputation in the tech world.

1
Sven Slootweg (soft-deprecated)

re: okta vulnerability, grumbling about security 

@Scmbradley Probably nothing illustrates this better than Stormpath, a now-acquired "security and authentication company" that published an article about JWTs, half of which was outright factually incorrect and would never pass even cursory review by a security expert.

0
Show older
Pixietown

Small server part of the pixie.town infrastructure. Registration is closed.

Resources

Developers

What is Mastodon?

pixie.town

  • About
  • v3.5.19patch-2024-07-04

More…

v3.5.19patch-2024-07-04 · Privacy policy