happy to jump on the bandwagon of America, they just want someone else to go first

Like an engine that runs on FOMO?

When my nephew was young, it was impossible for him to go to bed on time. Just impossible! He tried nothing and it didn’t help! Please tell me that’s not what’s happening to the GDPR.

Everyone else will be able to trade

🇨🇦 Phew!

follow [best practice]

Install flatpaks

Dude. Find a security guy who knows about validation and supply chain risks. Tell that person those two phrases. Learning should commence if they’re any good.

Wow.

They were thinking mgmtconfig.

To summarize, “I have a POV that almost no one else has. Why is everyone not naming things the way I see them.”

Yes, pinocchio, your company is a real tech company because they use tech tools.

(sorry, it’s just a tech leveraging company, the same way my bus driver leverages the bus but does not fix or build it. My bus driver is not a bus; just the driver)

can’t seem to find a whitelist-only-JS feature

There’s one in your browser.

Do you really run a whitelist rather than a blacklist?

That’s a weird question. That ‘yes’ seems as easy as “do you wear your seat belt? Every TIME?!?”

Is it not tedious to add hundreds of domains to one rather than a few to the other?

After about a dozen you’re kinda set. I will enable one-offs in a private window, usually for shit news sites or the very occasional referral farm, and the exceptions are all reverted when I close the tab.

You need to disable JavaScript to read my blogspam.

Off by default already.

So English has been devolved by vapid influencers anew.

They are not ran by smart people

not ran

Glass house?

A LOT of plugins in many projects are a huge concern. I say this as someone who ran security for an OS for a while. It’s just people making bad decisions for everyone and then hand-waving the risks when questioned.

• rpm: signed payload and manifest with signatures in bill of materials that integrates and coordinates with system db and allows enterprise content review and validation at every step and/or easy back-out.
• flatpack/app image - none of these.

Anyone interested in build, security, deployment, should have issue with that. But look at its corp champions and discover their motive.

It was subtle. It was well-done. Roasted, even.

“you’re holding it wrong”?

fuck managing ssh key auth for hundreds of engineers.

You can pull the ssh key out of LDAP/AD. We did this 10 years ago. Really slick.

Now with modern config management (sit down, Ansible, you millennial junk) the keys update anyway in about a second.

AT BEST it’s gonna be some ridiculous npm svalbard worth of projects in one tree, require all new hardware, and declare bankruptcy on the way. Canada did this with the Phoenix Pay System, except didn’t have ‘efficient’ funding so it only sucked but didn’t die.

Still Systemd?

No, they just need to enforce PDFs for things that leave an office so everyone else isn’t locked into loading and running a bloated mess just to view a read-only spreadsheet.

The analogue to the printed chart isn’t an XLS6 attached to e-mail. It’s a PDF.

That’s it. Done.

“easier solutions”

No: pet solutions. Don’t let false consensus dictate the wrong labels.