jbloggs777

@jbloggs777@discuss.tchncs.de

• ⁨Comment⁩ on ⁨Microsoft bars employees from using words ‘Palestine,’ ‘Gaza’ and ‘genocide’ in internal emails: report⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:

  Don’t they know that the kids deserved it, because they like Hummus. Yes, I’m sure that was it.

• ⁨Comment⁩ on ⁨Pocket shutting down⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:

  I used to love Pocket … I remember they changed something, and then I refused to use it since. I don’t remember what it was now, though. I assume enshittification of some kind.

• ⁨Comment⁩ on ⁨Secrets Management⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:

  Yeah, at that point I wouldn’t worry. If someone has docker access on the server, it’s pretty much game over.

• ⁨Comment⁩ on ⁨Secrets Management⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:

  Encryption will typically be CPU bound, while many servers will be I/O bound (eg. File hosting, rather than computing stuff). So it will probably be fine.

  Encryption can help with the case that someone gets physical access to the machine or hard disk. If they can login to the running system (or dump RAM, which is possible with VMs & containers), it won’t bring much value.

  You will of course need to login and mount the encrypted volume after a restart.

  At my work, we want to make sure that secrets are adequately protected at rest, and we follow good hygiene practices like regularly rotating credentials, time limited certificates, etc. We tend to trust AWS KMS to encrypt our data, except for a few special use cases.

  Do you have a particular risk that you are worried about?

• ⁨Comment⁩ on ⁨Secrets Management⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:

  Normally you wouldn’t need a secrets store on the same server as you need the secrets, as they are often stored unencrypted by the service/app that needs it. An encrypted disk might be better in that case.

  That said, Vault has some useful features like issuing temporary credentials (eg. for access to AWS, DBs, servers) or certificate management. If you have these use-cases, it could be useful, even on the same server.

  At my work, we tend to store deployment-time secrets either in protected Gitlab variables or in Vault. Sometimes we use AWS KMS to encrypt values in config files, which we checkin to git repositories.

• ⁨Comment⁩ on ⁨‘The Worst Internet-Research Ethics Violation I Have Ever Seen’ | The most persuasive “people” on a popular subreddit turned out to be a front for a secret AI experiment.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  It would be naive to think this isn’t already in widespread use.

• ⁨Comment⁩ on ⁨Marc Andreessen predicts one of the few jobs that may survive the rise of AI automation⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  Challenge accepted.

• ⁨Comment⁩ on ⁨Epic Games is delisting Dark and Darker due to an ongoing legal dispute⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  It feels more like a dance game to me. Boring and awkward choreographed moves in response to predictable monster moves. Once you’ve learned the moves, then you can pay and play!

• ⁨Comment⁩ on ⁨Why are there so many graybeards in FOSS?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  Hah. I was just playing a YT video of modem sounds for my son, after showing him some “history” videos about early PCs, BBS’s, text adventure and early commodore* and PC gaming.

  History? I lived it, son.

• ⁨Comment⁩ on ⁨Why are there so many graybeards in FOSS?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  Grey-stubble Gen-X’er here… The 80s and (moreso for me) 90s were a great time to get into tech. Amiga, DOS, Win3.11, OS/2, Linux… BBS’s and the start of the Internet, accompanied by special interest groups and regular in-person social events.

  Everyone was learning at the same time, and the complexity arrived in consumable chunks.

  Nowadays, details are hidden behind touchscreens and custom UXs, and the complexity must seem insurmountable to many. I guess courses have more value now.

• ⁨Comment⁩ on ⁨Apple, Microsoft Joining Google Using Gulf of America in Maps Programs⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

  Only in the US, and for mapping companies that now have to treat the US as a “sensitive” country.

  The rest of the world can continue to call it by its internationally recognised name.

• ⁨Comment⁩ on ⁨‘If 1.5m Germans have them there must be something in it’: how balcony solar is taking off⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

  Don’t know about “happily”. “Readily” might be more accurate.

• ⁨Comment⁩ on ⁨Uber Eats undercover: Delivering your food for $1.74 an hour⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Not A.I, just a terrible system that incentivises (and even demands for public companies) abusive behaviour.

• ⁨Comment⁩ on ⁨Is there any open-source project that serves the same purpose of Duolingo that can be self-hosted?⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:

  Ha, mia samideano! Tre bon’!

• ⁨Comment⁩ on ⁨Is there any open-source project that serves the same purpose of Duolingo that can be self-hosted?⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:

  25 or so years ago, I learnt Esperanto ( Y first second language) by chatting on the Internet. I’d have two windows open - one with the IRC client, and the other with a terminal and a shell alias that would grep a txt file with consistent formatting. “esp esperantoVerbPrefix/” or “esp noun,” or “esp affix-” would typically return the correct result in a split second. Thanks to the simple grammar (that I had quickly memorized), I could hold conversations in near real time as a result.

  I wish I could have learnt my other languages as easily.

• ⁨Comment⁩ on ⁨Is there any open-source project that serves the same purpose of Duolingo that can be self-hosted?⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:

  Anki ?