varx boosted

Oh, so actually is actually a working process to get extensions removed from Chrome Web Store, other than having a contact on the inside. The Developer Data Protection Reward Program works apparently, at least if a privacy issue can be demonstrated. duo.com/labs/research/crxcavat

varx boosted

Received an press release via email, apparently they are shutting down. Which is the right consequence if you look at their stock price. The reason is of course that "some users questioned our mission" which is as close to "we messed up" as it will probably get.

Reminder that the Y2038 problem is not 18 years away, but *already here* for some systems:

twitter.com/jxxf/status/121900

varx boosted
varx boosted

So toots I *do* hashtag, generally (preceding is an exception) are made *Public*.

My view of the Zignani Affair is that it's far more about miscommunicated and misunderstood elements of Mastodon. Those who think that Mastodon is a private walled garden are, to my view, misguided. Possibly misled.

If I want to comment directly to a user or users on Mastodon, I'll use the "Direct" option, *and am very much aware that this remains viewable to others, especially administrators*.

4/

Show thread
varx boosted

one time I left Waze open when I was walking into a Meijer and when i got to the front door my phone loudly said "YOU HAVE ARRIVED AT YOUR DESTINATION" and everyone around me looked at the sad bearded guy who needs directions from the parking lot to the front door

@sir Pushing commits to Sourcehut went from hella slow to hella fast some time in the last month. Did you fix some kind of perf bottleneck, or throw more resources at it, or what?

(Either way, it made me happy.)

varx boosted

Yet another article from an ex-Googler highlighting the culture change at the company. Yes, "don't be evil" is a thing from the past.

medium.com/@rossformaine/i-was

/me makes another tick mark under "I wonder if there's a vulnerability here. Nah, can't be, there's no way they messed that up. Oh, will you look at that..."

Mine is going to be versioned, like HTML used to be (a "living standard" is no standard at all) and I expect to go through a couple of (mostly additive) iterations, but it would be nice to get it As Right As Possible on the first pass.

It's also a good chance to fix some oddities in HTML, such as the anchor tag.

Show thread

At minimum, I need to look through the latest snapshot of the HTML5, ignoring all the interactive and presentation elements.

I wonder if I should also look at ARIA and some other accessibility specs, but I'm not actually sure how relevant this will be.

Show thread

I will soon be writing a spec for a semantic markup language (likely a variant on HTML, but with hardly any presentation elements). The first use will be for a social media system, but it should be applicable to documents in general.

What prior art should I know about?

What else do I need to know, in order to not fuck this up?

(Boosts appreciated!)

varx boosted

Whenever you imprison an ancient evil, make sure the one night of the year it’s possible for it to escape is a reasonably large random prime number of years from the time you imprisoned it, to minimize the likelihood of future generations having to deal with sixty different terrifying evils all being released at once. Cyclically. Every thousand years.

varx boosted

@szbalint the sheer quantity of security advice that boils down to 'don't use your computer to accomplish anything' is mind-boggling to me.

varx boosted

Well, that's it! I successfully spent 2019 reading and blogging about each of the first 365 RFCs.

I have more posts to come, including some related research that didn't quite fit with the RFC-a-day format, and an interview with the brilliant outgoing RFC series editor, Heather Flanagan.

write.as/365-rfcs/table-of-con

varx boosted
varx boosted

Going to try this federated thing through this year and see how it goes. Any good accounts to follow around journalism, Ruby or New York City?

« Facebook’s Mark Zuckerberg won’t talk to the Guardian. So we fed everything he says into an algorithm, built a Zuckerbot, and interviewed it »

theguardian.com/technology/201

varx boosted
varx boosted

TFW you've been working on a bug for hours and suddenly...

I have no idea what I did

Show thread
Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.