A LOT of plugins in many projects are a huge concern. I say this as someone who ran security for an OS for a while. It’s just people making bad decisions for everyone and then hand-waving the risks when questioned.
- 1 Post
- 766 Comments
Joined 2 years ago
Cake day: June 12th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
71·2 days ago- rpm: signed payload and manifest with signatures in bill of materials that integrates and coordinates with system db and allows enterprise content review and validation at every step and/or easy back-out.
- flatpack/app image - none of these.
Anyone interested in build, security, deployment, should have issue with that. But look at its corp champions and discover their motive.
It was subtle. It was well-done. Roasted, even.
“you’re holding it wrong”?
1·3 days agofuck managing ssh key auth for hundreds of engineers.
You can pull the ssh key out of LDAP/AD. We did this 10 years ago. Really slick.
Now with modern config management (sit down, Ansible, you millennial junk) the keys update anyway in about a second.
AT BEST it’s gonna be some ridiculous npm svalbard worth of projects in one tree, require all new hardware, and declare bankruptcy on the way. Canada did this with the Phoenix Pay System, except didn’t have ‘efficient’ funding so it only sucked but didn’t die.
23·7 days agoStill Systemd?
No, they just need to enforce PDFs for things that leave an office so everyone else isn’t locked into loading and running a bloated mess just to view a read-only spreadsheet.
The analogue to the printed chart isn’t an XLS6 attached to e-mail. It’s a PDF.
That’s it. Done.
“easier solutions”
No: pet solutions. Don’t let false consensus dictate the wrong labels.
I saw my retirement fund .
I’ll probably be in the ground and STILL working.
A book isn’t a till.
“Simpsons did it!” – South Park
I know specifically what I need information about, so I need to be in control of the experience.
EXACTLY this.
But I get the 30-min-movie thing too. I’ll catch something as I munch the lunch, or hit play on the backgrounded window if I win a problem fast. It could be a little dopamine back-pat there. I’m pleased that I can go back to it, too, most of the time. I’m enjoying the new Noah Wyle doctor show, for instance.
I fled curse forge during the troubles, but I get you.
And that’s great news. I have so few vices and I love popping in as a stinking casual when I have a half-hour.
There’s enough work without them going all social.
Kerberos, you say? Single sign-on?
Have you heard about the LDAP and Kerberos configured as part of setting up samba4ad?
I accidentally enabled SSO SSH a few years back. My samba units aren’t on PIs but they could be. They’re just on tiny tiny VMs.
23·13 days agoFacebook made one. They attached a gorgeous voice-controlled video-chat-on-tv setup to it, and released it just as they lost all consumer trust.
Then they decided it wasn’t selling.
So they killed it instead of open-sourcing it
just saying.
Linux (Flatpak)
So, no, then.
Glass house?