NaibofTabr

@NaibofTabr@infosec.pub

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨User "threelonmusketeers@sh.itjust.works" is banning users for downvoting his posts.⁩ ⁨⁨6⁩ ⁨hours⁩ ago⁩:
Not even a guideline, just some guy’s personal opinion.
⁨Comment⁩ on ⁨The Stop Trump coalition published this video⁩ ⁨⁨10⁩ ⁨hours⁩ ago⁩:
Which ones are the “real Britons”? the Celts? the Romans? the Normans? the Saxons?
⁨Comment⁩ on ⁨User "threelonmusketeers@sh.itjust.works" is banning users for downvoting his posts.⁩ ⁨⁨23⁩ ⁨hours⁩ ago⁩:

moderation policy for niche communities

That’s a whole lot of mental gymnastics to try to justify enforcing toxic positivity.
⁨Comment⁩ on ⁨Fuck you in particular⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Are you already logged in / automatically logging in to shopify?
⁨Comment⁩ on ⁨Rust⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Learn more about this dangerous, unregulated chemical: dhmo.org
⁨Comment⁩ on ⁨Fuck you in particular⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Website seems to force a login to even browse the store?
⁨Comment⁩ on ⁨People using fancy characters in their online username ironically makes them harder to be searched⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Image

xkcd #1105: License Plate
⁨Comment⁩ on ⁨Many of the younger generations of folks don't know what it's like to watch TV series out of order by virtue of channel surfing on live TV and grabbing random episodes here and there⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
They also don’t have the experience of only seeing half the episode because you were channel surfing, and not getting to see the rest of it until you catch another rerun two years later.
⁨Comment⁩ on ⁨does the new employee eventually stop being the one given the most tasks?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Yes, when there’s a new new guy.

Common practice in most workplaces is to continue the cycle. But, if you want to build influence, you don’t do that. When the next new guy comes along, you adopt them, you show them how to get things done, and when other people dump shit on them you help clean it up. You don’t do their work for them, but you also don’t leave them to do the work alone.

And you teach them to do the same thing with the next new guy. When they’re up to speed you start load balancing with each other intentionally. Maybe you’re still shoveling shit, but you’re not doing it alone. If you don’t have a tribe, build one.

And then break the cycle.
⁨Comment⁩ on ⁨Mandatory self-reflection hours⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
wut.
⁨Comment⁩ on ⁨Mandatory self-reflection hours⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Seems to have quite a few worshippers anyhow.
⁨Comment⁩ on ⁨Episode Discussion | Star Trek: Strange New Worlds | 3x09 "Terrarium"⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Questions at the end of the episode:
1. Are we going to address the moral issue of Ortegas just stealing from the Gorn? No, OK cool.
2. Why did the shuttle collapse into the ground at that exact moment? or, at all? We saw no other instances of things just falling into the ground on this planetoid.
3. Are we going to address the moral issue of Uhura putting 400 lives at risk for the sake of her personal feelings? No, OK cool. That little conversation with Pike doesn’t count. The moral at the end of the story is “It’s OK to lie and put everyone at risk to make yourself feel better.”
⁨Comment⁩ on ⁨Episode Discussion | Star Trek: Strange New Worlds | 3x09 "Terrarium"⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
1. Also, as noted in the episode, we have shuttles… even if it’s slower, you can reduce risk by sending the slower ship with the critical McGuffin toward the rendezvous, and ask the other ship to speed up to compensate. If you’re able to finish the rescue then you can just overtake the shuttle and pick it up on your way to the rendezvous. Either way the critical McGuffin gets delivered. Problem solved.
⁨Comment⁩ on ⁨It's been downhill since 2020⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Shaka, when the votes fell.
⁨Comment⁩ on ⁨where did we go wrong⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
So imagine this but with a 40% obesity rate.
⁨Comment⁩ on ⁨⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
noai.duckduckgo.com
⁨Comment⁩ on ⁨what are the grievances with the "male loneliness epidemic"?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
“male climate change”?

Is that what you call it when you shrink up because it’s cold?
⁨Comment⁩ on ⁨Cornell's world-first 'microwave brain' computes differently⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Analog computers were also bulkier, had more mechanical complexity, and required higher power to operate and generated more heat as a consequence. The Heathkit EC-1 logic circuits operated at 0-100V. There are some real physics problems with scaling analog circuits up to hugger complexity.
⁨Comment⁩ on ⁨How do I beat the roaches in this house?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
There’s a food source somewhere. Assuming they’re not getting food from your kitchen (you’re not finding them in the pantry), there must be something else nearby. What’s around? Anything you can get rid of? Old cardboard boxes? Dead plants/yard waste? Pet food?

How old is the house? Does it have wallpaper? If you are unlucky they might be eating wallpaper glue or something like that. Also have you made sure there isn’t a sewage leak under the house?
⁨Comment⁩ on ⁨The internet kind of sucks right now⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

There is rarely a good reason to use cloudflare […] By using cloudflare, you surrender your digital sovereignty for a mirage of convenience and safety.

Heh, man you have no idea how bad the DDoS attacks are without some form of protection. It doesn’t necessarily have to be Cloudflare, but if you’re putting up a public-facing website that you want people to be able to access, you absolutely need some DDoS protection service. You need someone to detect large-scale malicious traffic and offload it before it hits your system. It’s no mirage. Arch has been under attack for days. DDoS-for-hire is a profitable criminal enterprise.

Self-hosting a bot-interference tool like Anubis does nothing to help with DDoS attacks. You need a high-bandwidth shield that can absorb the incoming connection requests, filter out the legitimate users and dump the rest, and that means a CDN.
⁨Comment⁩ on ⁨Kirkland strong⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Yup, they buy up portions of production runs and relabel it. This is why some products are not available sometimes - because they couldn’t negotiate the contract to be able to sell it at the Costco price.
⁨Comment⁩ on ⁨Microsoft says U.S. law takes precedence over Canadian data sovereignty⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Certainly, but it doesn’t exist yet, and Microsoft has been developing their system for more than two decades. There is a lot of catching up to do to get to feature parity.
⁨Comment⁩ on ⁨Microsoft says U.S. law takes precedence over Canadian data sovereignty⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Maybe… almost universally, open source software requires more initial configuration work and more long-term oversight to keep operational, so if you’re making a statement like this you have account for additional labor costs. Proprietary software is usually sold as an out-of-the-box solution (it usually isn’t, but it’s usually a lot closer than open source equivalents).

The entry cost for an open source solution might be lower (no licensing fees) but the long-term cost might actually be higher, especially when you start trying to make various pieces of software work together. One of the areas where Microsoft does really well is system administration tools. Active Directory is a full suite of tools that all work together through a unified interface. To replicate AD you would have to patch many different open source projects together, some of which would overlap in functionality and some of which wouldn’t quite meet in the middle. As your environment increases in complexity and your sysadmin needs expand, these interoperation problems grow exponentially, which means more labor time and more expertise requirements, less stability and more security holes between the patched-together solutions.

Don’t get me wrong, I love open source software, but so far there are no good open source sysadmin solutions that scale well for organizations with thousands of users.
⁨Comment⁩ on ⁨Get to know the robot dog that can clean your house and serve you soda⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It’s highly unlikely that this thing would be able to operate without an Internet connection. There’s no way it would have enough compute power on board to do a significant amount of image recognition (find the socks, pick up the socks, find the laundry hamper, deposit the socks in the laundry hamper) or voice command processing.

I hate to disappoint but I am not some secret agent hiding a bunch of shit.

This is a very bad attitude to take towards your personal security, and part of the point I was trying to make is that there’s a very high chance that a device like this would have poorly secured software. When you look at incidents like the multiple Wyze security camera breaches, you have to expect that consumer security is always an afterthought for companies that make these kind of products. They will only start to care about it after something goes wrong and gets public attention (because it threatens sales). So, don’t just think about the manufacturer/distributor having access to the surveillance data this thing will collect. Think about random people on the internet, a criminal with an interest in blackmailing people, or some random van driving by with a bunch of network gear on the back.
⁨Comment⁩ on ⁨⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Basically, .COM files are not commonly used and definitely not commonly shared on the Internet. The overlap between use cases for .COM files and .com TLDs is almost nothing.

In contrast, .ZIP files are very commonly shared on the Internet as a convenient way to transfer a group of files all at once, and there are a few different techniques for using .ZIP files maliciously. There is a lot more potential for conflicts between .ZIP files and the .zip TLD on the Internet.
⁨Comment⁩ on ⁨New to printing, not sure how to diagnose issues⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
OK, so you’re new to 3D printing, but you’re not new to asking for help on the Internet. If you want people to be able to help, rule #1:

More. Pixels.

This might’ve been considered high quality for a digital image… in 1995. OK, maybe early 1995. Not by the end of the year. Find some more pixels. Don’t be stingy with them.

So next, for 3D printing it’s like asking for help with any tool - what kind of tool is it? Who made it? What model is it? Did you buy it new, or used? Does it have any modifications? Does it have an enclosure? What kind of work environment is it in? bedroom? garage? Is it a bed slinger? CoreXY? Delta?

What kind of software/firmware is the printer running? Which slicer are you using? Did you design the model yourself, or download it from somewhere? What software are you using for design?

And then what kind of material are you printing? PLA? PET? ASA? TPU?

Basically, we don’t know what you’re working with, or how you’re working with it, or what you’re trying to accomplish, and we can’t guess. There are hundreds of different printer models on the market, a few dozen different pieces of software that might be involved, and thousands of different print material options. Context, please.

On your issue - the most common problem with larger objects is that plastic tends to shrink as it cools. The longer the piece of extruded plastic is, the more effect the shrinkage has. As the top layer cools, it shrinks and pulls away from the layer below it. The larger the object is, the more time each layer has to cool before the next layer of hot plastic gets put on top of it. If your printer is open frame (not enclosed) this will be worse. If your printer is open and in a room with a draft, it will be even worse.

Resources:
- Stefan CNC Kitchen has published more video content of testing various aspects of hobby 3D printing than anyone else I know of.
- Michael Teaching Tech has a lot of specific advice for troubleshooting various issues, and some really interesting material on testing experimental new features. He has put together a fantastic resource for printer calibration teachingtechyt.github.io/calibration.html If you want to really learn about how your printer operates, go through that step-by-step guide.
And finally, the pixels… don’t forget the pixels.
⁨Comment⁩ on ⁨Get to know the robot dog that can clean your house and serve you soda⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Get a robot to ~~help around the house~~ observe your daily schedule, your habits, your every movement, and upload video, audio, sonar, lidar and radar recordings to ~~the cloud~~ probably just an unesecured S3 bucket. And then use all that to profile you, sell you stuff, and send automatic reports to law enforcement about anything that triggers the AI as a possible indicator of criminal behavior.

Oh yeah, sign me right up for the corporate-controlled self-propelled surveillance platform. Maybe I’ll get two, so there’s never a gap in surveillance while one is recharging.

And if you think any of that sounds paranoid, you should be aware it’s already happening with robot vacuums:

A Roomba recorded a woman on the toilet. How did screenshots end up on Facebook?

While it’s vacuuming your dirt, Roomba also collects data on you: Next, it could be sold
⁨Comment⁩ on ⁨This CEO laid off nearly 80% of his staff because they refused to adopt AI fast enough. 2 years later, he says he’d do it again⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
No don’t you see - fewer employees means there’s less of anything getting done, and this company is just a parasite that produces nothing of value.
⁨Comment⁩ on ⁨⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
The “.zip” TLD isn’t itself a security risk, but it should never have been created in the first place due to the overlap with .zip files.

Understanding the context of why the .zip TLD is a bad idea, you should be questioning the general competence of a web admin that would intentionally purchase and operate a .zip website. It’s such an obvious and avoidable problem that you have to wonder what other obvious problems they are failing to avoid.
⁨Comment⁩ on ⁨This CEO laid off nearly 80% of his staff because they refused to adopt AI fast enough. 2 years later, he says he’d do it again⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Ah, so removing employees from this dumpster fire was a net positive for society.