r000t @r000t@infosec.exchange

Hey 4ocean:

Making mask braces out of the recycled plastic is neat. Know what would be neater?

Turn that shit into 3D printer filament. Make repeat sales.

Right now, people don't have any particularly good reason to not get the cheapest brand of a given material filament. And I guarantee you that's virgin plastic.

I know I'd pay a premium for 100% (or even just "mostly") recycled filament.

@x_cli
There's always going to be *some* valid use case. "I'm literally letting users pass in executable code because I wanted to provide add-ons" is the one I go to. And of course eval() and exec() can be used safely if you're sanitizing and validating the living shit out of the input.

Might I also suggest the performance argument? getattr() setattr() and hasattr() are likely orders of magnititude faster than setting up the interpreter for a single line.

DO NOT USE eval()
DO NOT USE exec()

For the use case mentioned here ("you don't know what the variable name could be"/"you need to dynamically change the name) use getattr() instead.

DO NOT USE eval()
DO NOT USE exec()

If you use eval() and/or exec() in your code, you are literally begging your application to get hacked. You've taken out a billboard saying "please RCE my face"

If you're ever wondering "How the hell does my company find customers", remember that there's a place that says...

"Our company specializes in the design of a variety of equipment to thicken the ice on lakes and rivers for commercial and industrial purposes," Rossington noted. "We undertake contracts to build ice all across Canada."

If the ice thickeners found a market, you can, too.

https://www.thedrive.com/news/39914/saving-this-frozen-chevy-silverado-from-a-canadian-river-took-skill-money-and-weeks-of-planning

Billions every day...

@iron_bug
These are the folks telling everybody else who to ban. So they themselves are exempt. I seriously wish I was joking.

@sith I'M SO GLAD YOU ASKED!!!!!!

I made a website that said "beep boop now archiving!"

@Lofenyy @icedquinn Howdy!

All users featured in those screenshots have posts on their timelines clearly demonstrating that they are part of the anti-free software mob.

Definitely some correlation between being a bully and bullying RMS....

@be
Here's some of the threats I've gotten. Objectively worse, but.... It's okay to bag on me, huh?
@robbyoconnor @downey @fsf

@coin
Mhm.

And you know what @Gargron said when I reported it to him and his "official" flagship instance my main is instance blocked on?

He said I deserved it. For being too loud.

I wish I was valid, too.

Man I wish I was a woman so anything negative said to me was automatically considered harassment and anybody actually gave a damn.

Please compare: The "harassment" Molly White claims to have received (no screens tho 🤔)

And the real actual threats of physical violence I've received.

Cry me a fucking river, Molly. #fsf #rms

@downey @fsf
Damn bro imagine blocking me for sharing my experiences with trolls on the internet.

@downey
These are some that I've gotten
@fsf

The rms-open-letter hardcodes the signatures into index.md and asks signers to put the name in the correct alphabetical order like chumps doing error-prone work that is better suited for a computer.

The rms-support-letter people instead ask you to add a unique file and then a 1-line script in a template sort it.

An support letter for RMS is literally more sensible software than an open letter against him.