boatswain

@boatswain@infosec.pub

This profile is from a federated server and may be incomplete. For a complete list of posts, browse on the original instance.

boatswain ,

I actually have met a concerning number of people who idolize The Empire in the original Star Wars trilogy. The one who was always loudest about it willingly moved to Florida recently and is turning sadly right wing. He used to be a super smart punk rocker, too.

boatswain ,

Definitely; OP's linked article doesn't have any quotes that refer to copyright, while this one of yours adds a lot of context that was otherwise missing. There's a world of difference between allowing retention of IP addresses and creating a cleaning house for IPs suspected of distributing works.

boatswain ,

It's especially insulting when you think about how many people you meet once and do remember their name.

What if that number is zero?

boatswain ,

Hardware controls are meaningless if an attacker gets you to click on a dodgy link in a phishing email or you fall for a social engineering scam when "Microsoft" calls you because your computer has a virus.

boatswain ,

I came to this thread expecting to see this, and even with that expectation it makes me sad to see; to me the books are unarguably superior, to a large degree because Tolkien is such an excellent writer. I'd encourage anyone who's bounced off the books a time or two to go back to them and try reading them aloud, even quietly to yourself: even though it's prose, the text has meter and flow almost as strong as poetry. It's undeniably a slow read, but it's just such a beautiful one that the films, fun as they are, don't hold up.

Plus, Jackson's Two Towers is garbage.

boatswain ,

To add some more detail about Web 2.0: it was a term that came after the dot-com crash at the turn of the millennium. There were a bunch of people saying the web was dead, the Internet was a fad that was dying, the bubble had burst and it was all over etc. Tim O'Reilly (of O'Reilly Books) came up with the concept of Web 2.0 to illustrate that the web wasn't dead and that it was still an evolving and vital thing. There's a lot more detail here: https://www.oreilly.com/pub/a/web2/archive/what-is-web-20.html

fathermcgruder , to Asklemmy
@fathermcgruder@jorts.horse avatar

What is it about the text messages and emails sent by older people that make me feel like I'm having a stroke?

Maybe they're used to various shortcuts in their writing that they picked up before autocorrect became common, but these habits are too idiosyncratic for autocorrect to handle properly. However, that doesn't explain the emails I've had to decipher that were typed on desktop keyboards. Has anyone else younger than 45 or so felt similarly frustrated with geriatrics' messages?

@asklemmy

boatswain ,

That's a little different: if you're quoting someone and cut words out of the middle of the quote, you'd use ... to indicate that you've modified the quote. It wouldn't go at the end of a sentence though. It used to be pretty common in newspapers, as I recall.

boatswain ,

The related thing that I've seen a few times and never understood is ",,,". What does an ellipsis of commas even mean?

boatswain ,

Ah, that makes sense

boatswain ,

Indicating trailing off is another way to use it; that's more literary vs the newspaper thing of indicating removed words. I wouldn't expect anyone to use it to indicate removed words at the the of a sentence, because you could just end the sentence instead. But some people are weird.

boatswain ,

The first guy I saw doing that was actually on a keyboard a dozen or so years ago.

Token2 is an open-source Swiss FIDO2 security key that brings innovative features at a cheaper price ( www.token2.ch )

Token2 is a cybersecurity company specialized in the area of multifactor authentication. Founded by a team of researchers from the University of Geneva with years of experience in the field of strong security and multifactor authentication. Token2 has invented, designed and developed various hardware and software solutions for...

boatswain ,

I don't see a good way to put it on a keychain; the only hole looks tiny, and right on an edge where it's likely to snap after a year or so of wear.

boatswain ,

You seem to be taking about something other than enshittification, which has a specific meaning and isn't just places not respecting privacy or whatever. Per Cory Doctorow (who invented the term) via Wikipedia:

Here is how platforms die: first, they are good to their users; then they abuse their users to make things better for their business customers; finally, they abuse those business customers to claw back all the value for themselves. Then, they die. I call this enshittification, and it is a seemingly inevitable consequence arising from the combination of the ease of changing how a platform allocates value, combined with the nature of a "two sided market", where a platform sits between buyers and sellers, hold each hostage to the other, raking off an ever-larger share of the value that passes between them.

If enshittification is what you're assist interested in reducing, check out Cory's book, The Internet Con: How to Seize the Means of Computation.

Can Milky Way and Andromeda collision reconcile with an Expanding Universe with galaxies spreading away from each other like "raisins in a loaf"?

I understand that our local galaxy group is considered "gravitationally bound" and therefore exempt from the expansion from each other ((, but we don't seem to have other galaxies collected into their own "local groups" of gravitationally bound clusters, so are we saying we're somehow unique? Is there a trick of perception...

boatswain ,

FYI might want to rethink your choice of punctuation for your edit: https://en.m.wikipedia.org/wiki/Triple_parentheses

boatswain ,

Figured it was inadvertent, yeah

boatswain ,

Half of a bottlescrew or turnbuckle.

boatswain ,

How is taking a pay cut when there's massive inflation even remotely understandable? Inflation means that they need to pay you more, not less; your costs are rising.

boatswain ,

Speaking of D&D Patreons, Conflux Creatures creates more interesting versions of thousands of monsters; using those had really spiced up my game, since the players have no Idea how combats are going to go any more.

boatswain ,

https://en.m.wikipedia.org/wiki/The_Electric_Company

boatswain ,

Terminator 2. The ad campaign and trailers revealed what had the potential to be an amazing reversal of expectations well ahead of time. I actually got to see it with a friend who was out of touch enough to not have seen any spoilers; I wish I'd had his experience.

boatswain ,

That's a solid friend

boatswain ,

I'd suggest it can be used even more lightly than that, to express that someone is pitiable in some way. My boss, who is from the Carolinas, was talking about her mother who had just had a stroke, and said "my momma, bless her heart".

As you say, there are shades of meaning, and context is sorry important.

boatswain ,

For real, they're The Only Band that Matters.

boatswain ,

"To know which questions are unanswerable, and to not answer them: this is the skill that is most needful in times of stress and darkness."

  • Ursula K. LeGuin, The Left Hand of Darkness
boatswain ,

Advertising

boatswain ,

Haven't read Egan or Rucker, so I can't speak to them. Vinge had amazing ideas that still pop into my head from time to time, but I couldn't get into his writing style; he never really pulled me in, despite how much I wanted to bet pulled in.

boatswain ,

I think you mean "than other thieves stole." Don't want to accidentally imply they aren't thieves.

At what number of grains of sand does a non-pile graduate into being a pile?

I'm of the view that this is a semantic question where we have a word, "pile", that describes a general amount but doesn't have a specified quantity to it, and so the only way we can determine the amount of units required to constitute a pile at the bare minimum, is through public consensus on the most commonly shared idea we...

boatswain ,

As many others have said, "pile" is not about number: it's about distribution. I'd suggest trying to specify the overall slope of a number of objects or something: if it rises at a certain rate it becomes a pile rather than a layer, up until it becomes a tower. Or something like that.

boatswain ,

Saw this a while ago and it solves that "paradox" nicely.

The Paradox of Tolerance disappears if you look at tolerance, NOT as a moral standard, but as a social contract. If someone does not abide by the terms of the contract, they are not covered by it. In other words, the intolerant aren't deserving of your tolerance.

boatswain ,

Pure unlimited tolerance would include tolerating someone's breach of contract, logically speaking.

That "pure, unlimited tolerance" is what they mean by tolerance as a moral standard. Tolerance as a contract is "we have each entered into an agreement to be tolerant of each other. If you are not tolerant of me, you have broken the terms of our agreement, so I will not be tolerant of you."

I don't see a slippery slope here; I'd be interested to hear more about why this is a dangerous road to go down.

boatswain ,

I wouldn't think anti-collision systems would be feasible on a container ship: they're too big with too much inertia. It can take miles to slow to a stop or execute a turn. It's not like a car, where you can just hit the brakes and have immediate results. All that extra braking and re-accelarating would burn a bunch more fuel, too.

boatswain ,

I keep taking about wanting to use markdown files for contacts and policies at work, stored in reports repos for change tracking. The problem is always "the legal team isn't going to use Git". What I'd love to see is a front end for Git that allows direct markdown editing and emulates the Track Changes feature in Word.

boatswain ,

I've been doing a lot with organizing my data in Obsidian, and I've found utility in having both folders and metadata. Using the Dataview plugin makes proper metadata fields really powerful; you basically turn your collection of markdown files into a NoSQL DB. Having a folder structure is handy too though because you can have different metadata templates applied to new files in different folders with the Templater plugin.

Obviously that is dependent on a fairly specific workflow, but I think it's worth considering "why not both?"

boatswain ,

That looks interesting, thanks! I'll check it out too see if it might be suitable.

boatswain ,

Cinnamon is awesome on pepperoni pizza; throw it on before baking.

boatswain ,

The first rule of tautology club is the first rule of tautology club.

boatswain ,

Eldrow is pretty entertaining, though it's not really limited to once a day. You pick a word and the computer makes guesses until it figures it out.

boatswain ,

No, that's an escape character. You have to double up on it for it to show up.

boatswain ,

"all 16 digits" implies that there aren't any more digits of pi, which isn't true. Just FYI.

boatswain ,

Why is it a terrible idea?

boatswain ,

If you're pulling on a rope really hard, don't wrap it around your hand to get a better grip. If it starts to pull away from you, you won't be able to let go, and if someone runs up to help and starts hauling on the end, your hand is going to be in a world of pain.

boatswain ,

Hey all! I'm trying to figure out where I go next in this career. I'm working at a mid sized company that is owned by a company that is owned by another company. Started out as a software dev about right years ago and spent a lot of time as a security champion; finally moved to the InfoSec team about two years ago. It's a small InfoSec team: three people total. So I do a lot of stuff: contact reviews, vendor security assessments, firewall log monitoring, code reviews, run security trainings, coordinate external pen tests, gather SOC 2 evidence, incident response... Lots of stuff.

I like most of the work well enough (though the GRC stuff is not my favorite), but recently my boss and my teammate quit, so our team of three is down to me. There's some support available from the security team of the parent organization, and a very competent contractor, but it's largely just me.

What I'm wondering mostly is: if I go elsewhere, what kind of role am I looking for? I feel like this Jack-of-all-security-trades thing I've got going on can't be super normal, can it? And also, is my current situation something I should embrace, and take the opportunity to run the InfoSec team? Having someone with two years of security experience at the wheel seems suboptimal to me, but maybe it's worth doing for the experience?

My ideal would be working with a team of five or six, with people I can learn a lot from; my concern is that right now, most of the learning I can do is from my own mistakes.

boatswain ,

I think I'm good as far as job security goes, so that's a plus. I should ramp up the job hunt I suppose. Already trying to study for the CISSP after work though and I am a big fan of having down time to unwind.

boatswain ,

Is the market actually bad at the moment, though? We've been trying to fill one of the vacant positions on my team, and the offers we've extended have been declined for other options. That makes it seem to me like candidates have plenty of options at the moment.

Do you often hear the ringing of switching power supplies and devices when you are in a quiet space?

I'm curious, how many people are aware of these sounds. I have designed, etched, and built my own switching power supplies along with winding my own transformers. I am aware of the source of the noise. So, does anyone else hear these high frequency sounds regularly?

boatswain ,

Used to, until the tinnitus kicked in.

Use work laptop as personal device by dual booting on a separate internal drive?

I currently have a Dell laptop that runs Windows for work. I use an external SSD via the Thunderbolt port to boot Linux allowing me to use the laptop as a personal device on a completely separate drive. All I have to do is F12 at boot, then select boot from USB drive....

boatswain ,

On top of all that, most hitting contacts I've seen contain language saying that if you use company resources to make a thing, that thing, the company owns that thing. Seems likely that in addition to firing they could compel you to turn over the drive and wipe it.

boatswain ,

So does it just stay at the same point relative to the gravitational center of Earth? What about the day/night cycle; does the Earth keep rotating under it? And how big a mass is needed to lock it in place? It'd be pretty sweet for long plane trips if it traveled with the plane.

boatswain ,

I see this claim all the time, and it bugs me every time. Obfuscation is a perfectly reasonable part of a defense in depth solution. That's why you configure your error messages on production systems to give very generic error messages instead of the dev-centric messages with stack traces on lower environments, for example.

The problem comes when obscurity is your only defense. It's not a full remediation on its own, but it has a part in defense in depth.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • test
  • worldmews
  • mews
  • All magazines
    •