Tweet archive

At the Mandiant conference, digitally. Nothing says cyber security like Doja Cat!

Teaser https://t.co/IQj14qP1yr

I could not force it to unescape just the BaseURL, I had to printf the entire line, come onnnnnnnnnnn. (As a bonus my editor has absolutely no idea what to do with this syntax.) https://t.co/grR32PAtWg

@Jowjoso :( It really seems to me that we have an unnecessary dearth of HIDs. I'd love a world where we have more options: foot pedals, eye tracking, voice, etc.

I like Hugo a lot but it really needs a StopFuckingSanitizingMyStringsGoddammitIMeanIt filter. "asdf" | safeHTML | safeCSS | safeHTMLAttr | safeURL | urlUnescape | AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

@_StevenFan Yesss. I think what resonates with me is using technical skills for interpersonal purposes. So much of my experience in tech is thinking at scale, which is interesting but not the only interesting thing in the world.

i wish i could write more. my rsi bothers me too much to do it with regularity. i keep meaning to try out something like talon or other voice recognition software, but the barrier to entry is a real pain in the dick

@mrled wouldn't it be cool if one could subtract all the bits of SW one didn't use?

@mrled yeah I love this they go further than I do! I really love the idea of situated Software, built for one purpose and seamlessly blending in with life

That feeling of looking around wherever "here" happens to be for you and realizing that it fucking sucks now, where the fuck did everyone go who was MAKING something. https://t.co/KMtScJYVEm

@_StevenFan Have you read this? It seems aligned with your vision. Personal, even cozy https://t.co/XS8p8X07LV

Also I just found Polacode, is this how u guys are all doing those nice code screenshots? Makes it a snap in vscode, just select code you already wrote. https://t.co/Vlqu11xeaa

https://t.co/PtqMHGnTg4 sleaze: "You must attribute the artist", but clicking the button copies a link that goes to their page for the search term, not the artist, and includes a title="Search Term Icons" attribute to juice their SEO https://t.co/V8efSPhuSm

comment on the tech: I've been raised through tech and inhabit so much of it, yet I realize much of it is here to extract from me. my vision involves creating a media which directs me back to myself and helps me extend what im already doing in life

comment on commitment: there's only so much i can do. I realize I can only hold a few centers and many of those are related to conventional secureness, e.g. employment, my marriage, raising a child

in my finitude I get one serious side project I'm committed to and a couple close, regularly in contact, relationships I want to keep a priority everything else is lightly held and not trying to extend much beyond a single step beyond what it could be making my life lean

my plan is 1. get good with my own tech endeavors to eventually subsidize projects of uncompensated care aligned with wisesociety. 2. bootstrap these smaller projects with material immediately available to me and offer ways to participate for other folk who are interested.

there's no need to make these projects of care bigger than what meets my immediate needs and the needs of those who want to co-create.

I think these projects of care are best thought of as each a small commons which might then evolve into something more coordinated and material.

@joshsojoshsoj I haven't looked at publishing anything on IPFS, kind of interested in it. Currently working on a Hugo site that I will publish to an onion hidden service though. I am interested in privacy and censorship-resistance properties of IPFS, I dunno anything about what it guarantees

@mrled For sure. But yeah I think publishing a react app to IPFS is pretty easy. Using ENS as the domain is more difficult though, at least without something like Dappnet

@joshsojoshsoj I do think Tor has a particularly good use case for removing features in order to reduce attack surface. More than one darknet guide recommends disabling JavaScript altogether. Would be interesting to see a hardened JS that always chose privacy over features.

@joshsojoshsoj I would be very interested in a dapp/web3/whatever movement toward attack surface reduction. I have seen a lot of claims without a lot of receipts though.

@mrled I don’t know about Tor, but this might give you what you want (I don’t think it’s been published yet tho. I haven’t used it yet.) https://t.co/GWjbYJOzQa

A ton of value in being able to do heavyweight app stuff in Tor imo. Like Facebook offers a Tor hidden service to evade government censorship, this is good. OTOH some popular darknet guides recommend disabling JavaScript completely in order to reduce attack surface.

Idly wondering if there is any Tor-only website that uses React or similar heavyweight app framework. My guess is no but idk.

I wonder if it would ever make sense for Tor to use a reduced set of web features. Like could the Gemini people and the Tor people get to some good middle ground for websites that provides good features with reduced attack surface that changes less frequently than HTML/CSS/JS?

Also yeeeeeeeeeesh I am trying to build something in plain CSS (for basically uhhh, no good reason, but I obviously can't change it NOW, I've already started) and jesus christ it is insane that there is no SASS-like nesting. Fugly. (Apparently this might be coming soon.)

One time I read someone say they never remembered if the "ln" syntax was "ln src dst" or "ln dst src". I thought "come on, it's easy". CSS people would think same of me if they knew how often I looked up static/absolute/fixed/sticky. The only one that makes sense is "relative"!

It would also be REALLY nice to see some annotation that indicates "This class never gets used" (when writing CSS) and "This class is not defined" (when giving a class to an element). Constantly realizing oh, that classname has a typo / was never written.

Wish I had an IDE that understood HTML/CSS/JavaScript, and also Hugo, so I could ask it questions like "Is there any CSS that targets this element?" and "What file contains this class?". I've only used VS Code to write websites, is there something magical out there I'm missing?

RT @HugOfThunder: @showipintbri Something I have: console cable Something I know: login creds

I learned about webgardens recently https://t.co/zr6zgQWSqJ

@showipintbri Something I have: console cable Something I know: login creds

@HugOfThunder Lame 👎 If there aren't 4 levels of authentication and abstraction, is your device even secure 😜

@showipintbri I stand up, walk my ass directly next to the device, plug in serial cable and use a term emulator to send commands to device.

In prod do y'all use jumpbox for ssh or ssh directly to devices from a workstation? Are y'all using ssh-keys or still un/pw? 1/4

RT @SwiftOnSecurity: A Porsche is an ambulatory coffin for dreams, a statement to the world - "I am playing through the life other people e…

A Porsche is an ambulatory coffin for dreams, a statement to the world - "I am playing through the life other people expect me to be living." I have never seen a Porsche drag-race an Altima. The Nissan always wins because a Nissan driver doesn't wait for the world to be ready.

I have never seen a Porsche somewhere it wasn't supposed to be.

Intentionally refusing to look this up ahead of time so that I don't have to learn that someone else thought of it first

If you are making an incendiary statement about fashion are u making a haute take

RT @bobpoekert: software that was made before everyone was tracking and optimizing for engagement is better in a way that's hard to describe

@joshsojoshsoj @webcatalog_app @browsercompany Damn that looks so nice

@mrled @webcatalog_app @browsercompany Also have this set for YouTube https://t.co/dCganYwKOU

@mrled @webcatalog_app Using the @browsercompany with custom CSS for twitter and it looks like this. Very pleased ✨ https://t.co/GPhUowZOWR

The most boring people in a city are the "don't move here" people. Austin is great and if u r too then come, I'll show u some good spots

Has OFAC violated your rights? You may be entitled to decentralization .............. Introducing Dappnet 🍸 https://t.co/dh6FqXkLjc

@altluu The way I read this screenshot, it sounds to me like he's trying to say that this would add noise to the engagement metric for Canadian creators only, which would still hurt even if they try to take that into account. Framed in the most incendiary terms for political reasons ofc

@depthsofwiki Whoa 😳 https://t.co/qYA7P8ieh2