Mastodon Feed: Posts

Reblogged by jsonstein@masto.deoan.org ("Jeff Sonstein"):

metacurity@infosec.exchange ("Metacurity") wrote:

Don't miss today's Metacurity for the top infosec developments you should know, including

--Ukraine blocked hacked webcams used by Russian special services
--Xerox confirms ransomware attack,
--Cactus gang attacks Swedish supermarket chain,
--Emsisoft calls for ransomware payment ban,
--Black Basta subverts decryptor,
--Radiant Capital exploited,
--much more
https://metacurity.substack.com/p/ukraine-blocked-hacked-webcams-used

Reblogged by jsonstein@masto.deoan.org ("Jeff Sonstein"):

MrLovenstein ("J. L. Westover") wrote:

Secret Panel HERE 🌞 https://tapas.io/episode/2080763

Attachments:

• 1d7f91a0f45c1d51.png

Reblogged by jsonstein@masto.deoan.org ("Jeff Sonstein"):

cwebber@octodon.social ("Christine Lemmer-Webber") wrote:

Scheme written IN SCHEME and compiled to WebAssembly running in your browser, with a live REPL! https://spritely.institute/news/scheme-in-scheme-on-wasm-in-the-browser.html

It's so cool! It even has a tutorial on how to implement your own version of Scheme, borrowed from the Scheme Primer! https://spritely.institute/static/papers/scheme-primer.html

And it's all using Spritely's Guile Hoot which compiles everything to WebAssemblly!

Attachments:

• It's scheme! Written in Scheme! In WebAssembly! In the browser! (remote)

Reblogged by kornel ("Kornel"):

agturcz@circumstances.run ("Agnieszka R. Turczyńska") wrote:

PFFFF :D

Attachments:

• Map of Europe. People's reaction when you try speaking their language. Countries marked by colours and a description is given on the side. Wow I mean congrats but why would you put yourself through this - Iceland, Slovenia, Hungary, Czechia, Slovakia, Poland, Ukraine and everything North-East from there, including Finland. OMG you just said one word in my language we're now officially BFFs - Spain, Portugal, Italy, Balears, Sardegna, Balkan countries, Turkey, Cyprus Oh, that's so cute, let's speak English though - Switzerland, Austria, Germany, Belgium, Netherlands, Denmark, Sweden, Norway Please don't do that - France (including Corse) (no reaction) - UK, Ireland (remote)

nadim@symbolic.software ("Nadim Kobeissi") wrote:

Happy new year! We at Symbolic Software are offering one-hour consulting sessions on software security and applied cryptography audits free of charge throughout January 2024!

Help us help you get your software security and applied cryptography roadmap sorted for 2024 — book a call today! Small and medium sized businesses only. https://www.linkedin.com/posts/symbolicsoft_chat-activity-7148293731954159616-z7-K

pzmyers@octodon.social ("pzmyers 🦑") wrote:

Australia.

https://freethoughtblogs.com/pharyngula/2024/01/03/probably-venomous-too/

Attachments:

• Spiders in Australia are evolving faster than expected (remote)

Reblogged by nadim@symbolic.software ("Nadim Kobeissi"):

vinoth@infosec.exchange ("Vinoth (Mobile security)") wrote:

Given the inherent risks with selecting and implementing new crypto systems, I thought hybrid deployment of PQ was a no brianer. TIL Both NSA and GCHQ discourages hybrid deployment of post quantum crypto.

@djb has a good blog examining their objections.

https://blog.cr.yp.to/20240102-hybrid.html

fromjason ("Jason") wrote:

1920s News Flash: Tech underdog *checks notes* #Meta hasn't tried to topple our democracy in years! Is cultivating the occasional *squints at teleprompter* gen*cide all that bad? Who's to say? But wowza! Take-a look at that stock price.

Attachments:

• Screenshot of threads comments: Commenter: the most revealing thing for me has been that meta has an underdog aspect to their culture, which is WILD from the outside Self-described Meta employee: Is it? I've been here 4 years and most of that time has been people threatening to sue us from all directions, accusing us of things that haven't been company practice in years. People (justifiably) criticizing bad product experiences that we ourselves are usually unhappy with. I have to document every product (like was this button clicked) logging call, and link it to an approved legal review, because since 2021 we've been that careful about wayward logging and FTC compliance.
• Continued comment: Just years of demoralizing crap + extensive layoffs + being beaten down, and now the stock price is up again and we're kind of succeeding at something (for the time being).

fromjason ("Jason") wrote:

In all the commotion I forgot to wish everyone a happy #TacoTuesday

Reblogged by slightlyoff@toot.cafe ("Alex Russell"):

simon@simonwillison.net ("Simon Willison") wrote:

As a believer in the motivational power of streaks (thanks, Duolingo), massive respect to @tomscott who just ended a ten year streak of posting a video to YouTube once a week (and gained over 6 million subscribers in the process)

His sign-off video is an extremely stylish way to go out https://www.youtube.com/watch?v=7DKv5H5Frt0

Reblogged by slightlyoff@toot.cafe ("Alex Russell"):

tychotithonus@infosec.exchange ("Royce Williams") wrote:

@robertatcara As someone who personally discovered and fixed Y2K bugs that would have had significant real world impact, it is disturbing to hear someone propagate this myth [that it was a "big fuss about nothing"]. And it is a myth.

This is what really happened:
https://time.com/5752129/y2k-bug-history/

The testing methodology insured that these impacts were not hypothetical. At my company, the testing was performed by actually rolling the clock forward to test systems to see what would happen. For example, I discovered that every ATM in the state of Alaska operated by my company would have locked up until a PROM chip was swapped. Someone had to fly all over the state to proactively swap the chip beforehand, to avoid significant customer impact.

And that was just one story. I personally oversaw investigation and fixes for other hardware and software at that company that would have failed.

And that was just my company. I spoke with others in IT at that time with similar stories. And that was just the people I knew.

So no, it wasn't "a big fuss about nothing" - and saying so is both dangerously revisionist, and disrespectful of the work it took to prevent real impacts.

#Y2K

Reblogged by kornel ("Kornel"):

alice_i_cecile@mastodon.gamedev.place ("Alice I. Cecile") wrote:

Voting on the @bevy game jam #4 has wrapped up! Check out https://itch.io/jam/bevy-jam-4/results for the results, and to try the games out for yourself!

Congratulations to  AndrewB330 and Gnomus042 for their winning entry: "**That's a LOT of beeeeees"! **Please contact Cart for your sweet sweet reward of forbidden Bevy swag. We're still looking for a better supplier.

Sixfold (my wonderful partner and cofounder of Leafwing Studios) and I spent some time playing the top entries: stick around to hear more!

jsonstein@masto.deoan.org ("Jeff Sonstein") wrote:

probably-final version of slideset for preso on JS8 / JS8Call I'm giving tomorrow night posted at https://www.well.com/~jeffs/RARA/ in various formats. they are not my talk, they are what I will talk from... what I will riff off of.

feel free to tune in by getting a meeting link from here: https://rochesterham.org/club_meetings.htm

#AmateurRadio 📡

There Will Be Demo

Attachments:

• "Disaster Girl" image/meme (remote)

Reblogged by xor@tech.intersects.art ("Parker Higgins"):

pomological@botsin.space ("fruit toots") wrote:

prosperity strawberries, painted by deborah griscom passmore, 1902

Attachments:

• 74f691db76ce8892.jpg (remote)

Reblogged by fromjason ("Jason"):

bengo wrote:

"Throughout this process, Meta has repeatedly sought to delay proceedings and use its influence to attempt to strongarm the regulator from making public further damning evidence that Zuckerberg, Meta’s CEO, knew about British consultancy firm Cambridge Analytica much earlier—January 2017—than when he told Congress he first became aware in March 2018. "

https://facebook-receipts.the-citizens.com/2023/10/02/rfob-gains-access-to-latest-zuckerberg-sec-transcripts-in-cambridge-analytica-case/

Reblogged by fromjason ("Jason"):

bengo wrote:

"First, I feel you. I get it. Everything around us that falls in the pro-Meta sentiment feels impossibly coordinated. Talking points and amplification from the “everything is awesome” camp are targeted and highly visible. Conversely, resistance feels scattered and unorganized. It feels like we’re not making progress. It feels like we’re just talking and not taking action.

But we are making progress. And we can continue doing so if we all keep talking."

https://www.fromjason.xyz/p/notebook/how-do-we-stop-meta-in-2024-we-fix-the-information-loop/

jsonstein@masto.deoan.org ("Jeff Sonstein") wrote:

done with this week's usual local voice net on 50.250MHz

4 of us this time around, which is about right for chatting

#AmateurRadio 📡

Reblogged by xor@tech.intersects.art ("Parker Higgins"):

sanbornmaps@palewi.re ("Random Sanborn Maps") wrote:

Palo Alto, Santa Clara County, California. https://www.loc.gov/item/sanborn00747_004/

Attachments:

• 77016097efa6a616.jpg (remote)
• 1920772ad0e80228.jpg (remote)
• efaebc251d0c8521.jpg (remote)
• 972e575c9c6072b1.jpg (remote)

rmrenner ("The Old Gay Gristle Fest") wrote:

It's insane how many games I've played since then that decided to borrow THIS particular mechanic. It feels way too demanding of your time for a genre of games that sell themselves as cozy or relaxing.

The most recent offender I've found is Potion Permit. The only thing that makes this slightly more tolerable than Stardew is that alchemists have much less rigidly scheduled lives than farmers, so it's fine to just cut the day short.

slightlyoff@toot.cafe ("Alex Russell") wrote:

So HN is a reading comprehension test where folks who fail are forced to post comments.

Do I have that right?

Reblogged by jsonstein@masto.deoan.org ("Jeff Sonstein"):

hrheingold ("Howard Rheingold") wrote:

⏳ Application deadline is Jan 11 for Santa Fe Imstitute’s Undergraduate Complexity Research program!

Ready for a new mindset and ways of thinking? Feed your intellectual curiosity & challenge your limits.

$7k stipend + room, board, & travel.

Apply now: apply-sfi.smapply.org/prog/ucr2024/

Reblogged by jsonstein@masto.deoan.org ("Jeff Sonstein"):

tutormentor1 wrote:

@hrheingold

I've been using #ConceptMaps, built using cMapTools, since 2005.

Since my maps are layers of information, w links to external websites & other cMaps, & many people might not dig through all the layers, I created this page to show my collection. https://tutormentorexchange.net/conceptmaps

In these I embed geographic maps of #Chicago, where I've focused my efforts. Thus, I encourage others in different cities, to create their own maps, based on their on research and borrowing from work I've done.

Attachments:

• This concept map is part of a collection created since 2005 by Dan Bassill, via the Tutor/Mentor Connection (1993-present) and Tutor/Mentor Institute, LLC (2011-present). Follow the lines connecting the top middle blue box, to nodes on the maps, to read the message. In this case, going to the left it reads "my goal is to help kids in high poverty areas move from birth to work with help if volunteers they meet via organized tutor/mentor programs" To the right it says "supports the involvement of workplace volunteers in comprehensive, volunteer-based programs, located in poverty neighborhoods, where youth who NEED help, are able to connect with long-term tutor/mentor programs, learning resources, a network of adults and one-on-one tutors and mentors."

jsonstein@masto.deoan.org ("Jeff Sonstein") wrote:

the Housepanther 🐈‍⬛ is marching back and forth in front of the treat-jar chanting “Food Now!”… if he starts waving a sign, I’m running for the hills.

Attachments:

• black cat on red tablecloth on kitchen table (remote)

Reblogged by slightlyoff@toot.cafe ("Alex Russell"):

lilPWA@tech.lgbt ("Lil PWA") wrote:

Did you know PWAs can implement shortcuts? They can, and it works on desktop and mobile!!

https://web.dev/articles/app-shortcuts

fromjason ("Jason") wrote:

Tagging one of the most powerful people at #Meta to make them aware of a conversation about the company's unethical practices sure feels like an intimidation tactic. If it is, then hey, it's working! I'm sufficiently intimidated. If it's not, then the inventor of the hashtag should probably know better?

We learned about Meta's intentional amplification of contentious content because of a whistleblower.

https://www.theverge.com/2021/10/3/22707860/facebook-whistleblower-leaked-documents-files-regulation

Attachments:

• Screen shot of comments on Threads: jasondotgov: All the transphobic, race-baity, and overall contentious posts on all our feeds seems more like a feature than a bug. I'd really be suspicious if Meta was known to manipulate our moods and behaviors with algorithmic amplification. chris: Could be. I wouldn't put it past them either, but I'm still more inclined to believe that blackbox algorithms work on mysterious ways to put content in front of us that causes is to engage, rather than Meta choosing rage-inducing content just to spike short term engagement. IIRC @mosseri has said that such an approach would not lead to sustained growth, and that showing content that fits people's interest would keep them around longer (though a dearth of content may ultimately inhibit that).

fromjason ("Jason") wrote:

I'm never escaping the "touch grass" allegations 😭 ❤️

Attachments:

• Screenshot of email I received: While writing this out, I think I figured out why I couldn't engage with your piece: it is completely unrelateable to me. It is written for other techeratti -- those so plugged into the internet and the digital world, that they lose all connection to others unlike them. I am no longer one of those sorts. I'm busy living out in the real world, dealing with real people, and real problems (see: the war in Ukraine). People are being bombed, lives destroyed: and here I find a think peace about what can essentially be boiled down to a power struggle between people vying for things that don't exist nor matter. There is a
• Screen shot of a post script included in all my posts. It identifies the audience I'm writing to: Assumed audience: fediverse † Article's assumed audience (AAA) Sometimes, lidentify who l'm writing for as a way to provide context. It's like saying, "I'm using a lot of technical terms because I wrote this post for frontend developers," or "Sorry if I'm getting too symmetrical, this one's for my Wes Anderson fans." But, all are welcomed, always. If you're not in this article's intended audience, but you find this article interesting, wonderful! Please stick around, read the post, and feel free to ask me questions.

slightlyoff@toot.cafe ("Alex Russell") wrote:

New year, same question: why is the tech press whiffing the app store story of the decade?

https://infrequently.org/2024/01/the-web-is-the-app-store/

Gargron ("Eugen Rochko") wrote:

It's hard to believe it's been 10 years since #CasualtiesOfCool was released. I've listened to that album about 110 times since then. If I remember correctly, this was the first song anyone heard, as a preview on their PledgeMusic campaign. PledgeMusic doesn't even exist anymore.

https://www.youtube.com/watch?v=mE9au9zL3_Q

Reblogged by slightlyoff@toot.cafe ("Alex Russell"):

bagder ("daniel:// stenberg://") wrote:

The I in LLM stands for intelligence

On how people now use AI to submit security reports on #curl.

https://daniel.haxx.se/blog/2024/01/02/the-i-in-llm-stands-for-intelligence/

Attachments:

• fa58f153129cb517.jpg

collinsworth@hachyderm.io ("Josh Collinsworth") wrote:

So much of my life as a web developer is spent making things work in Safari that already work like they should in every other browser.

(Today's example: blending color with transparency, which doesn't even work right with the new `color-mix` function.)