@eb@social.coop cover
@eb@social.coop avatar

eb

@eb@social.coop
  1. Is a programmer, hacker, and maker, busy crafting intricate, exciting, and people focused experiences.
  2. Is interested in breaking barriers, building communities, and learning new things about the world.
  3. Is happiest doing what makes him feel free. Biking, skiing, travelling to name a few

This profile is from a federated server and may be incomplete. For a complete list of posts, browse on the original instance.

eb , to random
@eb@social.coop avatar

Sensationalism will be the death of us. They sprayed the rocks with corn starch and food dye. But “protestors spray Stonehenge with cornstarch” doesn’t generate the clicks.

Here’s the story in a way you never heard it:

“It’s time for us to think about what our civilisation will leave behind – what is our legacy? Standing inert for generations works well for stones – not climate policy.”

For the sake of our future, the media must do better.

eb OP ,
@eb@social.coop avatar

@GuerillaOntologist a couple things:

  1. The media’s job is to inform. I don’t care what conclusions people draw, so long as they are informed. But the media, including the liberal media, is exhibiting disgusting bias
  2. Re: your opinion, historically, this sort of peaceful demonstration has proved effective. Targeting oil wouldn’t tell their story: “oil is coming for the things we love”. The paint is symbolic of that. IMO people would be much more sympathetic without the spin.
eb , to random
@eb@social.coop avatar

BUT I WAS UP ALL NIGHT

eb , to random
@eb@social.coop avatar

Probably time to revisit my XZ article and make it a real piece, instead of a desperate brain dump

briankrebs , to random
@briankrebs@infosec.exchange avatar

It's always amazed me that ID.me, which you have to use in order to interact w/ the IRS online these days, has a top level domain from the country of Montenegro. Ublock Origin says they're injecting tracking links from Italy's TLD when you login at the irs.gov website.

What's next? Cookies from Colombia? AI from Anguilla?

eb ,
@eb@social.coop avatar

@briankrebs The US is in a position of power where I don't think a country would consider hijacking domains it uses. Not to defend this, but

eb ,
@eb@social.coop avatar

@briankrebs @alex related: my recent https://boehs.org/node/medicicnes

eb ,
@eb@social.coop avatar

@briankrebs @alex I’ve received private disclosure of a potential vulnerability that I have independently verified as still active. I would disclose it as we are a whole year past the responsible disclosure period, but it’s the state of Georgia and incompetent governments don’t take too kindly to this: https://www.theverge.com/2021/10/14/22726866/missouri-governor-department-elementary-secondary-education-ssn-vulnerability-disclosure

eb , to random
@eb@social.coop avatar

What’s wrong babe? You’ve hardly created any shareholder value today

eb , to random
@eb@social.coop avatar

TRUTH SOCIAL SENT ME THEIR SOURCE CODE: https://boehs.org/node/truth-social

Fedi takes another huge win. I wonder what we'll find.

eb , to random
@eb@social.coop avatar

With local software, there is no DDoS
With local software, there is no need to scale your cloud
With local software, there is no XSS
With local software, there is no SQL injection
With local software, there is no SSRF, CORS, and CSRF
With local software, there is no broken authentication
With local software, there is no V8 sandbox escapes

eb , to random
@eb@social.coop avatar

Have you ever looked at an RSS feed and thought to yourself "what if this XML file did have style information associated with it?"

I'm curious if any other sites do this? I haven't found any.

A picture of my RSS feed. It has fonts and fun colours and other pretty things.

eb , to random
@eb@social.coop avatar

Unfolding now: https://news.ycombinator.com/item?id=39865810

An incredibly technically complex in xz (potentially also in libarchive and elsewhere) was just discovered. This backdoor has been quietly implemented over years, with the assistance of a wide array of subtly interconnected accounts:

The timeline on this is going to take so long to unravel

eb OP ,
@eb@social.coop avatar

https://boehs.org/node/everything-i-know-about-the-xz-backdoor

I have begun a post explaining this situation in a more detailed writeup. This is updating in realtime, and there is a lot still missing.

eb OP ,
@eb@social.coop avatar

Holy shit.

eb , to random
@eb@social.coop avatar

Imagine you have a dam. Fish want to get through the floodgates, but the gates are locked. You want to open the gates when a fish wants to pass through.

If you are a tech bro, you might say “we can use AI to solve this problem”

If you are the municipality of Utrecht, you instead say “what if we put a livestream of the canal on the internet and instructed viewers to push a button when they see one”

https://visdeurbel.nl/

dabeaz , to random
@dabeaz@mastodon.social avatar

Thought: I'd bet a lot of projects would have fewer dependencies if pip was 100x slower. Maybe we should try to do that.

eb ,
@eb@social.coop avatar

@colby @robpike @akkartik @rhempel @dabeaz what about performance?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • test
  • worldmews
  • mews
  • All magazines
    •