nickwitha_k

@nickwitha_k@lemmy.sdf.org

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Upvotes and downvotes are public information on Lemmy⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:

put yourself in Putin’s position - it’s a complete non-solution. You don’t fold after going all in.

That’s literally no one’s problem but Putin’s. He has committed crimes. He should accept the personal reprecussions. You’re basically making the “affluenza” argument for someone who has been committing war crimes and murdering civilians because they dared to want to have a representative government.
⁨Comment⁩ on ⁨'Consumers are not okay with okay': Take-Two boss says BioShock 4 is taking so long because the company's goal is 'to make the best entertainment, not necessarily the most entertainment'⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Fuck. My wife did work with Hanger 13 a while back. Really cool place and good people.
⁨Comment⁩ on ⁨Gen Z Is Cutting Back On Video Game Purchases⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Someone downvoted because they don’t want to remember Bethesda’s shenanigans?
⁨Comment⁩ on ⁨IBM and Moderna have simulated the longest mRNA pattern without AI — they used a quantum computer instead⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:

And so, pivot to the next buzzword begins.

Please let this happen. I’m fucking sick of the willful and disinformation-based bullshit around LLMs.
⁨Comment⁩ on ⁨Nexon-owned game studio enters “indefinite strike” over employee bonuses allegedly being slashed while executive bonuses increased - AUTOMATON WEST⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
It’s the principle of committing wage theft, engaging in a contract (possibly verbal) and then keeping the promised compensation instead.
⁨Comment⁩ on ⁨Nexon-owned game studio enters “indefinite strike” over employee bonuses allegedly being slashed while executive bonuses increased - AUTOMATON WEST⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Lifetime plans are no longer available so, we’ve done you a favor and enrolled you in the pay-per-joke plan without your consent.
⁨Comment⁩ on ⁨Nexon-owned game studio enters “indefinite strike” over employee bonuses allegedly being slashed while executive bonuses increased - AUTOMATON WEST⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
There should be criminal penalties for that kind of shit. Letting management off the hook without any personal consequences just encourages it.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I appear to agree with your take.

the user that first responded to me is just feeding into it?

I don’t know if that was their intent. I read it as them pointing at the difference in verbiage between “a villain” and “the Real villain” but not expounding upon it. I may be mistaken though.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
If you want to discuss, I am pretty certain that the point being made was:

The right-wing push to add Allied leaders to the list of “villains” is to make the perception of the leadership of Nazi Germany relatively less “bad” and more palatable. Further, the wording and historical revisionism of labeling Churchill (who was a dickhead, TBF) as “the Real Villain” is to go beyond that and make the Nazis, who were literally bent on world domination and genocide of all groups deemed “undsireable” by their leadership into the “Heros” of WWII.

This is a part of attempts to obliterate any cultural values that are not “nazis/fascists are/were the good guys and democracy is dated”. Such efforts are heavily financed by openly fascist billionaires, like Peter Thiel, as well as the current President of the US who has been known to both be a pedophile and keep a book of Hitler’s speeches on his bedside stand.

Such views are also much easier to adopt when thinking in moral absolutist terms.
⁨Comment⁩ on ⁨X plans to show ads in Grok chatbot's answers⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
It’s like they really funny want me to use their pro-Nazi LLM, that I already didn’t want to use on account of the tweaks that they made to make it support nazism.
⁨Comment⁩ on ⁨This 81-year-old still works at Home Depot to support herself and her 90-year-old husband⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

What do you call being forced to work at 81 (with a 90 year old non-working husband), and only being able to work 4 of the 5 hour shift because you’re exhausted?

I call it “absolutely fucked up”.

You’re saying that moving is a death sentence. I’m saying homelessness is, which is what is in their near future.

Maybe I took you the wrong way, if so, my apologies. I think that this is a case of both statements bring correct. They are effectively being murdered through fiscal policy and corruption.
⁨Comment⁩ on ⁨ICE agents pointed guns at a US citizen when she walked out on to her yard to ask why they were arresting her (legal immigrant) partner.⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
If possession of an unlicensed suppressor can be legally considered attempted murder, I didn’t see how showing up armed, concealing one’s identity, brandishing firearms, and physically assaulting people (with the threat of said firearms) is not. States need to start trying all of these nazis.
⁨Comment⁩ on ⁨This 81-year-old still works at Home Depot to support herself and her 90-year-old husband⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Sorry but your last point is absolutely asinine. It ignores the hardships caused by relocating, the fact that rural hospitals like those available in WV are continuously shutting their doors as they are deemed unprofitable (the husband has health problems), and the fact that, based upon a wealth of international studies, the isolation from social support networks that they’d assuredly face, is pretty much a death sentence.

So, from that point alone, your statement could be paraphrased as: “They don’t need to live in such an unaffordable place; they could just die instead.”
⁨Comment⁩ on ⁨AI chatbots are becoming popular alternatives to therapy. But they may worsen mental health crises, experts warn⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
It is an unfortunately shared initialism. Cognitive Behavioral Therapy.
⁨Comment⁩ on ⁨What's the easiest way to get hookups without seeing escorts?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I agree and disagree at the same time. Bars/clubs/etc can be good for quick hookups. Social hobbies can lay groundwork for much greater depths of sustained sluttery.
⁨Comment⁩ on ⁨What's the easiest way to get hookups without seeing escorts?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Honestly, one doesn’t really have to have low standards when taking that approach. Just go to bars that fit one’s vibe and talk to people, and don’t be judgemental on superficial things. Either it’ll click with someone or not.

To be fair, it does help if one finds the majority of people of their preferred gender(s) to have something beautiful about them.

And being a bit of a slut. I can state from personal experience that that helps. Embrace your inner slut (ethically).
⁨Comment⁩ on ⁨Researchers quietly planned a test to dim sunlight. They wanted to ‘avoid scaring’ the public.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I thought that name sounded familiar. I keep seeing people float the idea of her relative as a presidential candidate as if we need another fucking ultra-wealthy dickhead in a high position of governmental power.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Fortunately, it looks like that was done already with Swanstation, which also has many more contributors.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yes. The license doesn’t technically appear to forbid forking, just sharing the fork.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I have some issues with flatpak, myself, but that mainly stems from having trouble finding documentation to clear up how to properly use extensions and non-standard dependencies that are easy to do with OCI images.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yeah… That’s pretty terrible. I was meaning packaging patchsets for other distros. Hopefully the GPL-preserving fork is better.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yeah… But then it sucks for anyone not running Arch (btw) or derivative distros. I really don’t have a dog in this merge conflict but really would feel bad for any packager maintainers.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Would have to go back to before the license change in September 2024. The current license basically forbids forks, from my reading.
⁨Comment⁩ on ⁨Duckstation(one of the most popular PS1 Emulators) dev plans on eventually dropping Linux support due to Linux users, especially Arch Linux users.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yeah. That’s a pretty shitty license to move to for endusers and others. Disallowing derivatives, etc. is within their rights but, really a dick move but, considering this commit message, not surprising.
⁨Comment⁩ on ⁨Women’s ‘red flag’ app Tea is a privacy nightmare⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
As I mentioned in other comments, I am a noob when it comes to web-sec; please forgive what may be dumb questions.

There’s nothing to forgive. Asking questions and being curious is how you learn this stuff.

Is it really just permission rights “over-exposure” issue?

From what I’ve read, it’s more fundamental than that. It’s a basic architecture issue. The datastore was publicly accessible, which it should never be. If they had it setup according to best practices, with an API to proxy access and auth, the datastore’s permissions would be of minimal consequence, unless their network was compromised (still best practice to secure it and approach with a zero-trust mindset).

Or does one need to also encrypt and then decrypt the data itself that must be sent to a database?

Generally, cloud datastores handle encryption/decryption transparently, as long as the account accessing data has authorization to use the key. They probably also didn’t have encryption setup.

Also, if you have time, recommend any links to web/cloud/SaaS security best practices “for dummies”?

Here are some more resources:
⁨Comment⁩ on ⁨Women’s ‘red flag’ app Tea is a privacy nightmare⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I’d argue that it should not even be done in Dev. Dev, staging/testing, and prod environments should all be as close to one another as possible, especially for infra like datastores.
⁨Comment⁩ on ⁨Women’s ‘red flag’ app Tea is a privacy nightmare⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I agree. Some sort of solution is necessary but this probably isn’t it.
⁨Comment⁩ on ⁨Women’s ‘red flag’ app Tea is a privacy nightmare⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
On one hand, yes. On the other, women have, based upon crime statistics, legitimate reasons to avoid putting themselves in a situation where they may be assaulted or murdered for reporting problematic and/or worrisome behavior.
⁨Comment⁩ on ⁨Women’s ‘red flag’ app Tea is a privacy nightmare⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yup. It sounds like they were following security worst practices.
⁨Comment⁩ on ⁨Women’s ‘red flag’ app Tea is a privacy nightmare⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yeah. You also landed on a correct thought process for security. Cloud providers will let you make datastores public but that’s like handing over a revolver with an unknown number of live chambers and saying “Have fun playing Russian roulette! I hope you win.” Making any datastore public facing, without an API abstraction to control authN and authZ is not just a bad practice, it’s a stupid practice.