Sven Slootweg (soft-deprecated) @joepie91@pixie.town
- Future new account
- @joepie91@slightly.tech
- Matrix
- @joepie91:pixie.town
- Pronouns
- they/them, he/him, whatever, it's not like I have any idea either 🙃
In the process of moving to @joepie91. This account will stay active for the foreseeable future! But please also follow the other one.
Technical debt collector and general hype-hater. Early 30s, non-binary, ND, poly, relationship anarchist, generally queer.
- No alt text (request) = no boost.
- Boosts OK for all boostable posts.
- DMs are open.
- Flirting welcome, but be explicit if you want something out of it!
- The devil doesn't need an advocate; no combative arguing in my mentions.
Sometimes horny on main (behind CW), very much into kink (bondage, freeuse, CNC, and other stuff), and believe it or not, very much a submissive bottom :p
My spoons are limited, so I may not always have the energy to respond to messages.
Strong views about abolishing oppression, hierarchy, agency, and self-governance - but I also trust people by default and give them room to grow, unless they give me reason not to. That all also applies to technology and how it's built.
Joined Aug 2019
re: okta vulnerability, grumbling about security
@Scmbradley Oh, certainly, and this holds true in that case. But in the past few years it's become a bit of a Thing for people in tech circles to say "authentication is too hard to get right, you should outsource it", which ignores that a) this is outsourcing to a company, not a library, which has wildly different consequences, b) none of these companies are actually competent or trustworthy, and c) you're more likely to fuck up the integration with their (usually overly complex) system than you are to fuck up a simple "hash the password" implementation.
okta vulnerability, grumbling about security
Another year, another critical vulnerability in Okta's infrastructure - an authentication bypass for users with long usernames, this time.
They ran up against bcrypt's input limit. You know, exactly the kind of footgun that causes people to recommend "don't try to roll your own authentication, outsource it to experts". Like... Okta. Who used bcrypt. And did it wrong.
I would really like for people to stop recommending external authentication providers. It's not actually *that* hard to implement authentication correctly for the vast majority of cases, if you take some time to read up on how to do it. Outsourcing isn't the answer here.
Sven Slootweg (soft-deprecated)
boosted
I find myself wishing on a daily basis that I had built @bitfolk database as postgres from the start instead of MySQL (now MariaDB).
Don't be like me. If your new thing needs a relational DB, Just Use Postgres.
Sven Slootweg (soft-deprecated)
boosted
Just after posting this I lost 3 hours of my life to MariaDB's unhinged and cursed "utf8 charset/collation isn't really utf8" nonsense.
So, does OVH have an actual internationally-expanded datacenter yet, or are they still just building stuff in the Frenchest places they can find?
Sven Slootweg (soft-deprecated)
boosted
Any fonts nerds here who'd offer to help me pick a font design for my homepage? I vaguely know in which direction I want to go, but I don't know a lot about fonts
@brucelawson And not the first time I've seen a stalebot close an accessibility issue because nobody in a dev team assigned it to themselves, either...
Sven Slootweg (soft-deprecated)
boosted
It's 1214 days since I filed a React Native bug because an external keyboard user on Android cannot get focus into a text input field so can't fill in forms. No-one cares. Except people with access needs, of course. https://github.com/facebook/react-native/issues/31820
Sven Slootweg (soft-deprecated)
boosted
Tyre mobility kit (spare tyre substitute) says to read the manual for instructions. We check the manual. Not under Tyre. Not under Puncture. Not under Tyre Mobility Kit. Not under Flat.
It's under I. For 'If'. Of course.
Sven Slootweg (soft-deprecated)
boosted
LB (https://phpc.social/@elazar/113402568468392900)
Please, as an absolute minimum to participate in society,
*Mask if you know you're sick*
Absolute. Bare. Minimum.
Sven Slootweg (soft-deprecated)
boosted
Opinie: Wrang dat postcovidcentra ME-patiënten weren https://www.volkskrant.nl/columns-opinie/opinie-wrang-dat-postcovidcentra-me-patienten-weren~b9b34816/
Sven Slootweg (soft-deprecated)
boosted
Omg the dominos guy who works next door is dressed up as a ninja turtle to deliver pizzas lmao
Sven Slootweg (soft-deprecated)
boosted
This, too, is rail transport. Two miners on infrastructure of the "10 de Noviembre" co-operative are exiting one of Cerro Rico's many adits with a fully loaded mining cart. The hill in Potosí, Bolivia, whose exploitation supplied a great part of the wealth of the Spanish colonial empire, has been continuously mined for almost 500 years, primarily for silver. Today, mining is still conducted without any large machinery through self-employed miners using co-operatively owned infrastructure. Work environments in the mountain are extremely hazardous, and particularly due to the lack of adequate protection from silicosis and poor healthcare, few miners live beyond the age of 45.
@ireneista Curious to hear more about that :)
Sven Slootweg (soft-deprecated)
boosted
Pros of self-hosting:
You're in charge of your server and data
Cons of self-hosting:
You're in charge of your server and data
Sven Slootweg (soft-deprecated)
boosted
Trans people! I want to hear your coming-out stories (both to yourself and to others) that didn't fit the usual stereotypes and expectations. I want to hear about wrong assumptions that hurt you and made you repress even more.
Figuring out one's gender identity outside of the "wanted to be a girl in early childhood" and the "cross-dressing realization at Halloween" stories can be pretty lonely. So let's light some lights for our baby queers together
@ireneista (I feel like this is something architects probably don't have to deal with as much?)
@ireneista I would slightly append to that recommendation by saying that the focus for that should be on failure analysis by people who nominally share the same objectives as the activist groups they are analyzing.
There's an awful lot of "critical analysis" on activism from uninvolved folks that mostly just boils down to "we don't like the objective therefore we will declare that it is a failure, and say that it failed because of having the wrong goals"...
Sven Slootweg (soft-deprecated)
boosted
it's been a while since we've said this and we suspect it has not yet reached everyone it needs to, so we'll say it again just on general principles
activists should study how movements fail, for the same reason that architects study how buildings fall down
@freakazoid Oh, sure. But the most effective disinformation is that which has a kernel of truth.
- Future new account
- @joepie91@slightly.tech
- Matrix
- @joepie91:pixie.town
- Pronouns
- they/them, he/him, whatever, it's not like I have any idea either 🙃
In the process of moving to @joepie91. This account will stay active for the foreseeable future! But please also follow the other one.
Technical debt collector and general hype-hater. Early 30s, non-binary, ND, poly, relationship anarchist, generally queer.
- No alt text (request) = no boost.
- Boosts OK for all boostable posts.
- DMs are open.
- Flirting welcome, but be explicit if you want something out of it!
- The devil doesn't need an advocate; no combative arguing in my mentions.
Sometimes horny on main (behind CW), very much into kink (bondage, freeuse, CNC, and other stuff), and believe it or not, very much a submissive bottom :p
My spoons are limited, so I may not always have the energy to respond to messages.
Strong views about abolishing oppression, hierarchy, agency, and self-governance - but I also trust people by default and give them room to grow, unless they give me reason not to. That all also applies to technology and how it's built.
Joined Aug 2019
