Show newer

> Any Twitter engineer in any country is presently provided direct access to production systems.

> The accesses to these production systems are not audited.

That's about 5.000 people. :blobcat:

> At Twitter engineers work on live data when building and testing software because Twitter lacks testing and staging environments; work is instead conducted in production and with live data. 🤣

#Twitter #Mudge

...I really need to get off of this unhealthy habit of doomscrolling Ukraine war news that I seem to have developed after the recent offensive happened.

Huh. I wasn't aware of the Samsung Xcover "ruggedized" smartphone series. The recently released Xcover 6 still has a swappable battery and a headphone connector.

Doesn't seem anyone has ever worked on porting LineageOS on any device of that series though.

Ah-ha! It seems that Pi-hole also added internal blocking of iCloud Private Relay domains last year, so even when you specifically unblock an iOS device, it will still run into problems as long as Private Relay is active in the network configuration.

There's an option to disable interception of Private Relay in the FTL config file:

Show thread

Managed to get uucp working on the cdtv and a raspberry pi, and also running scripts remotely on the pi from the cdtv. I made a quick tool to download and resize images from the internet to fit on an #amiga screen. The image is from NASA's APOD site. This opens up the possibility of synchronizing notes, calendar, mail on a machine with no concept of TCP/IP. #retrocomputing

Surveillance, USpol, Palantir, documentation 

...uuuuurgh: When you've been working on a compact keyboard with a slightly weird layout (pgup/pgdown on Fn+up/down, insert on Fn+Del) for some time, and then have to use laptop keyboard with real keys for those (where Fn+up/down changes volume instead).

Huh. I guess I've never run an fstrim on this 16GB SD card in a RasPi (took a good five minutes to complete):

~# fstrim -av
/boot: 202.5 MiB (212324864 bytes) trimmed on /dev/mmcblk0p6
/: 10.9 GiB (11650162688 bytes) trimmed on /dev/mmcblk0p7

What the hell is it with Android and Wifi networks? I currently run an access point with a minimal hostapd configuration on a RasPi, and half a dozen systems connect to it just fine (including an older Android 8.1 device), but this Android 11 tablet just keeps dropping from the network and then reconnects, again and again.

@cks ...the target systems have a route back to the management network through their usual gateway, but this still requires hide NAT using the address of the NAT gateway on the return path.

It's not a great setup that requires additional work in several aspects, but it provides just enough isolation for the end hosts, and they don't need any additional routes into the management network / VPN.


Show thread

Just now seen an article by @cks in my rss reader,
This reminded me of our old management network setup, where we'd have a destination NAT address on each management LAN that has forwards for the relevant services to the actual destination. So the end systems would send, for example, syslog to an address on their management LAN, using their own management address as source. The same concept should work in a (Wireguard) VPN.

Folks, if you’re using @small-tech/auto-encrypt in your projects, please make sure you’re running the latest version of the package (3.1.0) or certificate provisioning/renewal will fail due to the latest Let’s Encrypt protocol update.

#tls #https #letsEncrypt #autoEncrypt #js #javaScript #nodeJS #web #dev #smallWeb #smallTech

Ok, need to know of free or low cost resources for learning IT security at a self paced speed.

This is more about practicals than about certs.

Let the firehose commence.. um, i mean- Feel free to boost.

Somehow having to enable Location Services in order to permit functions like Wi-Fi scanning to apps is an extremely annoying dark pattern on recent Android versions... This bullshit wasn't required back in Android 8.1.

Some terrible news for all the users of the "I don't care about cookies" extension...


Bought a polarizing filter with the new lens, so of course I now have to take endless pictures of clouds.

Here is the rule they say Tusky violates. Yes Tusky shows "User generated content" but I don't have any control over it. There are also no terms of use, why would Tusky have terms of use, it makes no sense.

Show thread

"When people ask me: “Why are you into floppy disks today?” the answer is: “Because I forgot to get out of the business.”"

Show older
INFRa Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!