Show newer
Sven Slootweg (soft-deprecated)

@m04 FWIW, it seems that 3M calls these 'braided straps', maybe that term will help find the right ones?

0
Sven Slootweg (soft-deprecated) boosted
*
myrmepropagandist

Do you know anyone who works in a press office?

Ask them "Why do so many press offices give their exclusives to X? Why not post to X on, like, a 6 hour time delay (or not at all... though this might be too much for them)"

We gotta stop news from "breaking" on there. Break it on blueSky, break it on tumblr I don't even care (though really break it here please and thank u)

1+
Sven Slootweg (soft-deprecated) boosted
Future Sprog

Today’s meeting is canceled because one participant has been asked by their son to go to the park and we all agree that’s more important.

0
Sven Slootweg (soft-deprecated) boosted
rail [see pinned posts]

OH: You see it's labeled for Germans so they don't accidentally buy something spicy

1
Sven Slootweg (soft-deprecated) boosted
Eniko (moved ➡ gamedev.place)

so is part of the services valve provides as part of taking 30% of my revenue arbitrarily withholding the button that i need to push in order to get it officially steam deck reviewed even though our game is going to likely hit overwhelmingly positive in its first week of launch? 🤔

and yes. you read that right. developers on steam are randomly awarded the magic button that lets us *request* a steam deck compatibility review. so unless you win the steam deck review button lottery, you literally cannot do it

1+
Sven Slootweg (soft-deprecated) boosted
Eniko (moved ➡ gamedev.place)

lol reconnected with a friend from the netherlands. told them i wouldn't be traveling down there anytime soon cause of covid and got the puzzled "covid has been over here for years cause everyone's had 3 shots" response

and this is why i dont reconnect with old friends

1+
Sven Slootweg (soft-deprecated)

@eniko Yep, that's unfortunately an extremely common view over here :(

And I'm constantly seeing news articles trying to invent the most absurd excuses as to why there's staff shortages everywhere, because nobody wants to admit that it's COVID even though all the evidence points that way

0
Sven Slootweg (soft-deprecated) boosted
Chloe ✨

this tar shit serious

0
Sven Slootweg (soft-deprecated) boosted
*
forestine

so @inherentlee 's thread asking people to define masculinity the other day had some uhh Interesting answers from (white, straight) cis men vs queer, trans, and nonbinary people. And I knew that cis people probably haven't really thought about this stuff before but some of these answers were kind of scary to be honest.

"The ability to suppress your own feelings is of course dangerous, but... embracing danger is itself masculine."

another one said "masculinity is being a danger to oneself and others"

uhh are you guys okay?

"Masculinity is conflict"
Also a lot of talk about the idea of how noble it is to push through discomfort.

Scientifically/historically dubious:
"Look to nature"
"evolution as hunter/gatherers"

And the cis answers included almost zero joy.

On the trans and queer side, beautiful, delightful answers about gay masculinity, trans masculinity, Black masculinity, an absolute universe of masculinities. And many people who couldn't define it if they looked at it too hard because many traits are shared by femininity, masculinity, and decent people. The divide is a vast chasm.

editing to add link to thread strangeobject.space/@inherentl

1
Sven Slootweg (soft-deprecated) boosted
eta

hahaha yes, I successfully triggered the iOS "your NFC secure element is too full, please delete some cards" UI!

for the unaware, Apple Wallet cards are really Java Card programs stored on an embedded Secure Element chip, separate from the main processor

this chip has limited storage! if you overfill it — say, by wasting $40 on TAP transit cards — it forces you to make room for more with this rarely-seen popup

1+
Sven Slootweg (soft-deprecated)

@scanlime Exactly. It's the same kind of scam as in much of the corporate consulting world: if you just charge a high enough fee, nobody in the company will dare to question whether they are actually getting value for money because your head is going to be on the chopping block for pointing out the error of the higher-up, so why bother checking

0
Sven Slootweg (soft-deprecated)

@scanlime Don't have to actually be right if you can make your customers *believe* that you are right!

*taps forehead*

0
Sven Slootweg (soft-deprecated)

@scanlime Trying to look confident so that they can sell bigger data plans to companies trying to do 'competitor research', basically

0
Sven Slootweg (soft-deprecated) boosted
Xillin (and Ze)

We need a comma version of the exclamation point and question mark.

0
Sven Slootweg (soft-deprecated) boosted
Forgetful Bri :ms_robot_grin:

:ms_robot_error: I have to sleep with a fluoride paste on my teeth.

:ms_robot_grin: this one regularly strengthens its chassis through the application of a compound containing a highly reactive, toxic element for several hours.

0
Sven Slootweg (soft-deprecated) boosted
some fedifriend

The most common car occupancy isn't actually 1. If you count all the cars on the street, not just the moving ones, it's usually 0. Most cars are empty at any given moment.

0
Sven Slootweg (soft-deprecated)

@baldur I mean, with how normalized it has become for companies to be shitty with no recourse (ie. "free market politics"), that's not that surprising to me, even though that absolutely shouldn't be how it is

0
Sven Slootweg (soft-deprecated)

linux server security checklist 

@katnjiapus The recommendations I usually give people are basically:

1. Disable password authentication for SSH, and use keypair authentication only (these are two separate steps!). Changing ports is not needed, fail2ban also isn't really.

2. Either set up automatic system updates ("unattended upgrades", or whatever your distro of choice calls them) or have a scheduled event every week to update manually and keep track of security notices. The former is easiest.

Make sure to do full distro upgrades when a new release comes out; those are usually not automatic, even with automatic updates enabled.

3. When running public-facing services, if you *can* sandbox them, do so. On NixOS this is automatic for a lot of services, using Docker it's *sort of* sandboxed (but not very well, usually), on other systems you may have to do this manually but it can usually be done directly in the systemd service file.

That's... more or less it, as the basic steps? Like, there's a lot more that can be done, that's specific to the services you run (and often explained in their documentation), but if you get these few things right, you're already doing better than a lot of public-facing production servers.

Of course, if you intend to do something especially sensitive (eg. services for activists), you should be getting someone involved who has experience in this sort of thing. This list is just for your run-of-the-mill personal/community/small-company/etc. server.

--

To elaborate on the port changing and fail2ban thing a bit: these are really common recommendations but I don't find them useful in practice, and they bring their own issues.

The port-changing is a form of security-through-obscurity that dates back to when internet-wide scanners only scanned for SSH servers on port 22 for capacity reasons. This hasn't been relevant since zmap, and so doesn't do anything anymore besides "making you manually specify the port for any SSH-based tool like rsync".

The fail2ban recommendation comes from the password login days; it's a way to throttle login attempts so that someone can't bruteforce a password over the network. But with keypair authentication this is not relevant, as long as password auth is entirely *disabled*; the search space is so big that even without throttling you will never bruteforce a key.

*At best* it reduces log entries and slightly reduces CPU use, at the cost of making it very easy to accidentally lock yourself out if eg. you try to connect from a spotty mobile connection that has to reconnect a couple of times in a short time.

1
Sven Slootweg (soft-deprecated)

How the hell do you use the command line
highlysuspect.agency/posts/com

1
Sven Slootweg (soft-deprecated) boosted
Sven Slootweg (soft-deprecated)

Please boost for reach! :boost_requested:

A friend of mine (currently based in NL) is looking for a remote job. They're looking for something related to web development, or maintenance of legacy codebases (web or otherwise).

They have experience with web/software development (Java, JS, assorted other web things), as well as reverse-engineering Java software, but no employment experience yet. Also a few years of basic NixOS experience.

They can pick up and learn new things very quickly, but they do need a work environment that is friendly to queer neurodivergent folks.

If you have a suitable job available (or something that's close enough - they're flexible!), please send me either a DM on here, or an e-mail at admin@cryto.net. I'll get you in touch with them.

0
Show older
Pixietown

Small server part of the pixie.town infrastructure. Registration is closed.

Resources

Developers

What is Mastodon?

pixie.town

  • About
  • v3.5.19patch-2024-07-04

More…

v3.5.19patch-2024-07-04 · Privacy policy