rimu

rimu , 2 days ago

Like a blog?

Check out Wordpress, Hugo or Ghost.

rimu , 12 days ago

Employers would absolutely love to be able to ask their pet AI "hey tell me who to fire based on their computer usage"...

rimu , 12 days ago

You can see how using AI to analyze a video (effectively a video, they didn't say how often the screenshots are taken but they'd need to be pretty often for it to work) of their entire work life the whole time they've been at a company takes it to another level tho, right?

rimu OP , 14 days ago

Thanks for grabbing the chart.

My Stats 101 alarm bells go off whenever I see a graph that does not start with 0 on the Y axis. It makes the differences look bigger than they are.

The 'outsiders, gendered' which is the headline stat, shows a 1% difference between women and men. When their gender is unknown there is a 3% difference in the other direction (I'm just eyeballing the graph here as they did not provide their underlying data, lol wtf ). So, overall, the sexism effect seems to be about 4%.

That's a bit crap but does not blow my hair back. I was expecting more, considering what we know about gender pay gaps, etc.

rimu OP , 13 days ago

Really great comments at https://peerj.com/articles/cs-111/reviews/. The reviewers are very nice about it but do point out some big issues towards the end.

rimu , 26 days ago

Yeah I was heavily into peak oil once, too.

Don't underestimate the power of literally everyone on the planet really really wanting to avoid that situation. Life finds a way.

rimu , 27 days ago

No - the VPN provider has another DHCP server for use 'inside' the VPN.

rimu , 27 days ago

In the comments on the article people have debugged their cloudflare/caching configuration for them and told them what they're doing wrong.

rimu , 28 days ago

I'm sure kiwifarms and stormfront will appreciate this service. Read between the lines in the FAQ.

rimu , 1 month ago

Spoiler: not really envy, just the realization that they were too gormless to ever be competitive if they limited themselves to in-house resources.

rimu , 1 month ago

FYI the german word for "emotion triggered by a combination of sad, funny and stupid dystopia" is "Traludystopieunglücklichkomik".

ChatGPT told me.

rimu , 1 month ago

Surely their cars have general-purpose CPUs, not especially suited for this? Don't you need a GPU and gobs of RAM?

rimu , 1 month ago

Yep, the faster the better. The worst thing would be a slowly boiling frog effect where people don't notice and stay put.

rimu , 1 month ago

Ubuntu has a set of scripts you can run to harden a new server (not advisable on a server that has already been configured for something). You need an Ubuntu Pro subscription to access them but you can get a free trial and then cancel it after you've finished.

More info at https://ubuntu.com/security/cis.

I did this process for a customer recently and it was pretty straightforward and much much more thorough (over 100 configuration changes) than just tweaking SSH and fail2ban.

I expect other commercially-oriented distros offer something similar.

rimu , 1 month ago

Gossip protocol for instance discovery is a nice idea, I'm stealing that.

Check out what Mobilizon (a federated events platform) does to represent location in ActivityPub.

Best of luck with your project.

rimu , 1 month ago

An April fool's joke that went on too long, probably.

rimu , 1 month ago

Pretty much all content gets federated to lemmy.world so if you use site:lemmy.world that'll do it.

rimu , 2 months ago

This might just be for government computers, not the entire country - see https://www.ft.com/content/7bf0f79b-dea7-49fa-8253-f678d5acd64a

Still, the overall direction and intent is clear.

rimu , 2 months ago

It's quite disarming, isn't it?

But the nice happy guys coding the thing now are not the ones who are going to make the decisions later which will bring about the extend + extinguish phases, the ads, the crypto or whatever form the enshittification takes.

rimu , 2 months ago

A completely flexible tagging system sounds like a lot of work. But adding an extra checkbox for NSFL alongside NSFW would be pretty easy... PieFed already does this and federates it on Activities using a "nsfl" attribute.

rimu , 2 months ago

Hundreds of millions of dollars each year and in 20 years all they did is two redesigns, both of which sucked worse than what they had originally.

Oof.

rimu , 2 months ago

Yeah, too often Forbes will publish any old trash.

But it's hard to argue with maths.

rimu , 2 months ago

Just because Tesla made a lot of bad choices, that doesn't mean all EVs for all time will always be more expensive.

rimu , 2 months ago

They both implement the ACME protocol internally, allowing them to integrate with services like Let’s Encrypt to automate regularly obtaining the certificates needed to offer HTTPS.

I did not realise this. Very nice, I'll be trying Caddy on my next server!

rimu , 2 months ago

Too much far right content. You can't have that stuff on there.

rimu , 2 months ago

No, that's not how it works. You absolutely have to set a minimum standard (which excludes nazis) otherwise the nazis drive everyone else away.

You can find this out the hard way or you can look into the history of every reddit replacement platform over the last 10 years. They all got overrun with nazis because of attitudes like yours.

rimu , 2 months ago

Oh I just saw the youtube video you posted the other day.

That wink makes more sense now.

You're one of them.

rimu , 2 months ago

This sounds like a situation where a "distributed append-only ledger" might actually be useful for once?

rimu , 3 months ago

Netlify has the highest network data transfer fees. If you're going to use them, you must have a CDN.

rimu , 3 months ago

Toyota say they can make 90 hybrids using the same raw materials as one BEV or six PHEVs, leading to a 37-fold reduction in lifetime carbon emissions .

There's the rub. 'The market' is demanding EVs with massive range-per-charge, leading to huuuge batteries (of which only 10% capacity is used, most of the time) and high prices. It's all a bit crazy.

rimu , 3 months ago

Yes, I'm sure Toyota is massaging that statistic heavily. They are all about hybrids.

rimu , 3 months ago

GPUs these days use a whole lot of power. Ensure your power supply is specced appropriately.

rimu OP , 3 months ago

White text on a white page?

rimu , 3 months ago

or they could just comply with the law:

sites will have to provide a reason to users when their content or account has been moderated, and offer them a way of complaining and challenging the decision. There are also rules around giving users the ability to flag illegal goods and services found on a platform.

Doesn't seem like a big deal to me.

rimu , 4 months ago

You've made a great start but it's not a switch you can flick - it's a process and it takes time to rewire your brain's reward systems. Weeks.

Hang in there.

rimu , 4 months ago

I notice that monero.town has a large image of Pepe the nazi frog in it's sidebar: https://monero.town/pictrs/image/afb3860f-022e-4723-be3f-74041da2abc9.webp?format=webp

What's the connection between Monero and the alt-right?

rimu , 4 months ago (edited 4 months ago)

Pepe the frog is absolutely a hate symbol

https://en.wikipedia.org/wiki/Pepe_the_Frog#Use_by_the_alt-right

https://www.youtube.com/watch?v=nTQLaLwz88Y

https://www.diggitmagazine.com/articles/amplifying-far-right-reassessing-case-pepe-frog

https://www.latimes.com/politics/la-na-pol-pepe-the-frog-hate-symbol-20161011-snap-htmlstory.html

rimu , 4 months ago

Check gitlab-rails/production_json.log for HTTP requests to the /users/password path with params.value.email consisting of a JSON array with multiple email addresses.

Jesus Christ. Their frontend was sending a list of recipients to the backend. That's an intern developer level of fuck up, in their login system, no less.

If this got past them, it's a sign of deep problems.

rimu , 4 months ago

Gitlab has a backend, which runs on a server, and a frontend, which runs in all the user's browsers. When the user does anything it sends some network requests to the backend in order to save the changes the user has made, send the necessary emails or create a session, etc.

The thing with this architecture is the backend and frontend are effectively separate apps. Also as the frontend is running remotely on the attacker's computer the attacker can change it to behave however they want. The backend can't trust the frontend to "do the right thing", ever. The backend needs to assume the frontend will do every bad and silly thing possible, and treat anything coming from the frontend with maximum suspicion.

So you simply can't allow the frontend code to provide a list of email addresses to send an email to, because it'll allow the attacker to send emails to anywhere. Where the email goes to needs to be determined by the backend. The frontend should only be concerned with hiding and showing stuff in the UI, and pretty much all intelligence and business logic needs to reside on the server where we control the code and environment. A good understanding of the roles and responsibilities of the front vs back is a fundamental concept and if the developer hasn't grasped this then they're going to introduce security problems everywhere they go.

This is one of many pitfalls of the "frontend + backend" architecture. I vastly prefer to build monoliths instead.

rimu , 4 months ago

There was a discussion in this community about this 2 days ago. Check it out - https://lemmy.world/post/10777395

rimu , 4 months ago

Admitting that your tech requires fusion power is admitting that it is a fantasy.

rimu , 4 months ago

Cloudflare has been controversial for dragging their feet when it was time to stop providing protection to nazi websites like The Daily Stormer, 8chan and Kiwi Farms. Also the Taliban, ISIS and so on More about this.

For this reason, a lot of fediverse servers do not use CloudFlare.