Sven Slootweg (soft-deprecated) @joepie91@pixie.town

PSA: https://github.com/NixOS/calamares-nixos-extensions/security/advisories/GHSA-3rvf-24q2-24ww

If you installed #NixOS using the graphical *Calamares* installer on a non EFI system with a LUKS rootfs or have any LUKS partition which is not a rootfs.

Your LUKS encryption key has been exposed in the /boot partition, potentially unencrypted or encrypted via GRUB cryptodisk.

We consider this to be a serious vulnerability and we are disclosing it immediately as it was found in the Heads project.

We are exploring automatic remediation in https://github.com/NixOS/nixpkgs/pull/240411.

SBB is making sure people know this is a train…

Mozilla:

Rainbow logo
AI Help (beta)

Nearly 6pm. You know what time that is? It's crime time.

I've seen a bit of discussion lately about Mastodon's AUTHORIZED_FETCH and DISALLOW_UNAUTHENTICATED_API_ACCESS settings and since I had a hard enough time myself figuring out what they do based on the documentation and Discord comments, I wrote up what I hope is a more approachable explanation.

https://hub.sunny.garden/2023/06/28/what-does-authorized_fetch-actually-do/

Story time with Meemaw Leif:

Years back, when instagram was first becoming a thing, I had a friend that I’d make a lot of weird art with. We’d do photography, 3d stuff, all sorts of things.

They got on instagram before me but I got on it because of them talking about it.

Because our relationship was sort of this absurd, avant-garde thing I was under the assumption that that was how our relationship would roll on instagram. However, they quickly distanced themselves from me because I wasn’t “professional” and it could hurt their brand (this was before influencers were really a thing but the idea of a person being a brand had already taken off)

Ultimately the friendship died because as we got jobs and life took us elsewhere and the digital realm was the only place we could connect and, well, since they were “professional” there was little room for the crazy sandwich board toting guy.

Point is, while conformity and peer pressure is a very real thing, the system set up by FB, insta, twitter, etc. also created a reinforcing behavior of people as one-dimensional brands with little room for the quirks and varied interests that make people human.

So when I object to Facebook, twitter, etc. it’s not simply because they’re an evil corporation (they are) but also because they’re designers of systems that deliberately dehumanize us.

The fact that they know this and study it and run tests on their users should be enough to cause a mass rebellion but the fact that it isn’t speaks to just how incredibly self-reinforcing those systems are.

I sympathize heavily with the small artists and others who are stuck in instagram, FB, or twitter because they aren’t free to leave without severely hurting their livelihood. It’s a tough deal but at some point the break needs to happen.

Stockholm syndrome is very real but this time it’s baked into the system by the captors.

#ProjectToot: I've finally completed an initial version of dlayer, my graph query library; it's kind of like GraphQL, but without the Facebook, without the weird DSL, and without the weird monolithic "design your whole API at once" design.

Instead, it's an extensible, modular design; an API is composed at runtime of one or more modules, which may or may not be aware of each other's existence, and extend each other's types with extra attributes as well!

This makes it much more useful for collaborative projects where different people might design different extensions for a (semi-)standardized API structure, as well as organic development, rather than GraphQL's assumption that you have one "team" that "designs the API" - which I'm sure works great in a startup, but *sucks* for community projects.

It shares the same useful property as GraphQL does, however; it lets you very easily assemble a coherent API out of many different, inconsistent data sources, regardless of whether any HTTP is involved. (There's currently not even any HTTP anything!)

The current implementation is in JS, but the design (and extensibility method) are simple enough that I see no reason it couldn't be ported to other languages!

Here's a rough example of how it works, with some dummy "modules" and data: https://gist.github.com/joepie91/a01a59485cd399324e37e3c6f00ebf78?ts=4

I need to sleep now, but I'll post a link to the code and some initial documentation tomorrow, probably. Let me know if you're interested in testing this out though :)

I wonder how much of apples profits are just from people buying a mac because that's the only way to make the apple developer experience even marginally tolerable

Old work, Reality Virtuoso was an illustration that got shared thousands upon thousands of times via repost accounts on IG. 💔 touching upon my gaming to ignore surroundings.

#artwork #illustration #mastoart #art #vr #videogameart #digitaldrawing #digitalpainting #digitalart

"I am not angry because the submarine was badly-made. I am angry because I live in a vastly larger pressure vessel being managed and maintained by the exact same people." -- https://cohost.org/hystericempress/post/1731218-reflecting-on-it-th @hystericempress

Posted because I kept seeing this quote posted with the names filed off, so I did a quick google search to find the original so I could share it with full attribution.

I'm getting super-spammed with retoots and faves, so I don't need any more.

I‘m not superstitious generally but I believe that Computer People have an aura that makes any computer in their vicinity switch from broken to working and vice versa