This whole #BambuLab 3d printer fiasco reeks of engineers who don't actually know:
History: This reminds me of the time before HP LaserJet III compatibility became the sort of de facto standard because of the sheer quality of the printers. The important part there though was it was only an instruction set to operate the printers, and the real money was being made selling devices. The key difference to now every company wants to make shitty subscription devices.
Available tech: Mutually authenticated TLS has been possible for years, before the company was even founded. There's essentially zero reason they had to use their hodgepodge patched together with bailing twine and spit approach to interacting with the device. But if they did it another sane way, it'd be doable to expose all the functionality to the LAN and their "cloud" soon-to-be subscription options wouldn't be viable.
=> More informations about this toot | View the thread
I can't really provide advice on wildfires but to those of you on the other side of the US looking at heavy snow in your forecast, three pieces of advice from a Canuck to you:
Staying warm
Layers are key to keeping warm. A couple long sleeved shirts, a sweater and a windbreaker is the magic sauce to get the effects of a great winter coat without having one on hand. Goes for socks and pants too (joggers under jeans works).
Wear a hat, even if it isn't a winter one. Something as simple as a tea towel under a hat can do wonders. You lose a lot of body heat through your head. If you knit or crochet, there's plenty of toque designs online that are supposedly quick.
Don't wait til you get cold to zip up. Start zipping up in the warm spot. Kids should get +1 layer relative to what you find comfortable.
Navigating the weather (driving, walking, etc)
Easiest thing is to avoid travel altogether when possible. Eventually your typical warmer temps will take care of it.
If you don't have sidewalk salt, sand, cat litter, and sawdust are reasonable substitcutes. Just be careful with the sawdust, lest you accidentally make it permanent.
It may be tempting to throw boiling water onto the walkway but this is basically the fastest way to get a slip'n'slide out your front door. It will work to melt things faster once the temperature goes up though, but it has to be above freezing for a bit.
Driving, a stuck vehicle can be unstuck using sand and or cat litter as well. The trick is to really try to feel the road and the tires through the car and gently feather the gas once you feel it slipping. Traction control systems are universally useless at this specific task, even in AWD vehicles.
It is often safer to walk on the untouched snow than on a packed down path as the smoother that path gets the icier it becomes.
Fun?
Have some fun with it. Go play in the snow for an hour, then come back inside and enjoy the mandatory post-outdoors hot chocolate, tea, or coffee.
Recommended activities:
=> More informations about this toot | View the thread
@cloudflare Also hilarious that you have a "Verify you are human" checkbox but still rate limit the form submission such that an actual human fixing things which your form fails to flag as problems before submitting is prevented.
It's almost like you want to avoid responding to abuse.
[#]InfoSec peeps, I feel a storytime bitch session about CF is probably a great way to start the new year. :P
=> More informations about this toot | View the thread
I enjoy that @cloudflare makes reporting abuse more onerous than committing it using their platforms.
Really helping those #Phishing folks out hard.
I also enjoy that on their abuse reports page they link to their privacy policy around disclosing your personal information, and then call out they share it with a third party (Lumen) anyways. So if you report something for abuse, they make sure to publish your info so angry scammers can come after you I guess? I'm sure I'm missing how actually this is a good thing.
https://lumendatabase.org/notices/search?term=cloudflare
Hooray for #Privacy I guess.
=> More informations about this toot | View the thread
How to make older tech people feel old: Ask them about LapLink.
=> More informations about this toot | View the thread
AI companies are gonna force Google into abandoning important crawling standards.
I'm seeing lots of traffic in various places lately about how much worse #Search is these days and a lot about how great LLM chatbots are now at finding information.
The reality of this is that Google is honouring the robots.txt file, as well as the other no-crawl hints that sites provide. LLM trainers are just scraping anything and everything they can, at the expense of site owners.
If Google starts bleeding enough users, they will likewise be forced to abandon crawler instructions.
Site owners will of course then be forced to wall off their content. Get used to signing into sites to even see basic stuff. The entire Internet is about to go deep into #Enshittification and it'll basically be the death knell of the open idea of the WWW.
I don't see a path through that doesn't end up there at least.
=> More informations about this toot | View the thread
Insomnia is much more unfun when I can't type enough to code.
=> More informations about this toot | View the thread
Hey Fedifriends, I have an #Accessibility question specific to #Linux: what do you folks use for dictation?
I've recently found myself unable to properly type due to a wrist problem and am wondering what options are out there.
Temporarily I've set up nerd-dictation with one of the heftier Vosk models, and it does okay but I'm hopeful/imagining there's a better solution out there.
Trying to do a post-monthous #WritingMonth given my typing limitations have killed my main hobbies (gaming and hacking/coding).
=> More informations about this toot | View the thread
I keep seeing (on LinkedIn and #InfoSec / #Hacker Tech media spots on the web) this narrative that supply chain attacks are increasing as if it's some sudden thing.
Every supply chain attack that's been uncovered so far seems to have happened months to years before being reported. We're just finding them finally.
Put another way: We've been smoking for years and we've discovered the cancer.
=> More informations about this toot | View the thread
I think I've finally put the finger on what made me slowly leave #IRC and #Matrix chats: Slack and Discord.
Hear me out on this though, because it's probably not for the reasons you expect.
Work uses Slack and thus demands my attention for a particular period of the day. Because of how ubiquitous it is, I wind up in many many channels, a good chunk of which I cannot mute.
Discord is much the same. Certain specific communities essentially require using it (at least for now), and similar story. Few servers for these communities are 1-5 channels -- most are 50+. Just look at the Defcon discord for example. In these cases I can mute entire servers (and generally do) but there's a couple I need to pay attention to.
I don't like either experience more than IRC or Matrix. In fact they're way worse in almost every way.
But I'm kinda forced to use them if I want to engage with certain communities. Slack due to work, Discord because of the death of independent forums.
Really sucks.
=> More informations about this toot | View the thread
Listening to @jerry on the most recent #DefensiveSecurity podcast. Specifically the point about how nobody really paid attention to border firewalls and then suddenly they did.
My pentest experience has mostly revealed an ugly truth: 99% of the time, any given piece of software which doesn't have a ton of CVEs reported for it isn't because it's secure, it's because nobody's looked.
Better education is key but I see a lot of colleges and universities taking the completely ass backwards approach. Instead of teaching every single developer how to securely code, they've spun up Cyber programs to chase those dollars. From an academic perspective it's a completely disappointing letdown.
=> More informations about this toot | View the thread
Moore's other law:
The number of transistors required to perform simple text editing doubles every 18 months.
=> More informations about this toot | View the thread
The people pushing that #LLMs are real #AI make sense when you consider they're the same people who think spewing a bunch of facts at people at parties is a personality.
=> More informations about this toot | View the thread
Uhhh, you keep using the word 'unprecedented'. I do not think it means what you think it means.
https://www.wired.com/story/russia-gru-apt28-wifi-daisy-chain-breach/
For those not in the #Pentest / #Hacking business, pivoting to different networks via middle host is common enough it's part of the good certifications' curriculum.
=> More informations about this toot | View the thread
It's about my luck that #WritingMonth has coincided almost perfectly with some big health issues.
All my goals and plans gone in an instant, like a racoon trying to eat cotton candy.
=> More informations about this toot | View the thread
Missed out on @hackfest this year sadly but from others who went it sounded like it was a good time as usual.
=> More informations about this toot | View the thread
People who play #MtG and specifically EDH/Commander, gentle reminder: the format is literally a social one -- talk to your play group. Nobody is actually in charge of this crap around YOUR table.
=> More informations about this toot | View the thread
Just a reminder that @mozilla has feedback open on adding their AI sidebar directly into #Firefox:
https://connect.mozilla.org/t5/discussions/share-your-feedback-on-the-ai-services-experiment-in-nightly/td-p/60519
As I write this there are over 3100 replies, the overwhelming majority of which are negative.
I enjoy all the tags people attached to the post requesting feedback:
=> More informations about this toot | View the thread
I've discovered I've been soldering wrong for years and am shattered.
=> More informations about this toot | View the thread
[#]PWHL
Then there's the logos.
Oh boy.
Boston is clearly lifted straight from the old Hartford Whalers logo. Sure they're both New England but tell that to Whalers fans.
Minnesota Frost is a purple lightning-y F. No notes; it grades itself. Probably the second lowest effort of the logos.
NY Sirens - I get what they're going for here. The colour scheme matches with other women's sports franchises in NYC. The problem is the sides of the Sirens looks like the CBC logo gone rogue and the NY being covered up makes it reasonably unclear.
The Victoire de Montréal logo looks like an art deco political party poster. The use of red and black and an eagle draws a bunch of lines that probably are best left undrawn.
Ottawa's got the worst logo of all as well. People online are pointing out that it's as though the Calgary Flames logo and the Cleveland Cavaliers logo had offspring. More than that, there's nothing really "Ottawa" about it. The logo could be an O or a C, whoopee. D- for effort.
=> More informations about this toot | View the thread
=> This profile with reblog | Go to fennix@infosec.space account This content has been proxied by September (3851b).Proxy Information
text/gemini