Notices by Lorenzo Stoakes (ljs@social.kernel.org), page 4
-
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 26-Mar-2024 05:34:23 JST 
Lorenzo Stoakes
@a1ba @kirby @lanodan yes in the same way you 'share' your living room with a home invader -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 26-Mar-2024 05:31:22 JST
Lorenzo Stoakes
@lanodan @kirby @a1ba FreeBSD engineers stop crying long enough to give recommendations? Wow -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 26-Mar-2024 05:31:16 JST
Lorenzo Stoakes
@kirby @a1ba it works best on ATMs -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 26-Mar-2024 05:30:18 JST
Lorenzo Stoakes
@a1ba @kirby NO. OS/2. -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 26-Mar-2024 05:27:01 JST
Lorenzo Stoakes
@kirby @a1ba actually you definitely shouldn't use linux it's terrible
Use OS/2 instead -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 26-Mar-2024 05:24:39 JST
Lorenzo Stoakes
Since I'm being boring and moaning about the scam de jour again, let me also go 'WTF' about people blindly taking the word of people who stand to make BILLIONS OF DOLLARS on this topic at face value?
Like I don't fucking want to hear 'the CEO of nvidia says AI stuff is incredible', yeah OBVIOUSLY he says that, I mean jesus christ how naive are people??
"I asked the local butcher whether he thinks more people should buy meat and he said they should!"
WOWWWW!! -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Saturday, 16-Mar-2024 06:43:00 JST
Lorenzo Stoakes
Linus Clawvalds as much as we love him has a brain the size of a walnut -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Saturday, 16-Mar-2024 06:25:01 JST
Lorenzo Stoakes
@vbabka @pony the WHAT PUMP??? -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Friday, 08-Mar-2024 21:39:54 JST
Lorenzo Stoakes
@kernellogger you know being part of the kernel community involves actually PUSHING BACK sometimes instead of just repeating the 'company line'.
So far it seems you are simply repeating Greg's points and ignoring the (copious) push back on this.
Quite credibly this is one giant troll designed to essentially attack the whole broken mess of CVEs, many people have pointed out how this is an issue.
It strikes me as quite naive to think that companies should now funnel cash + resources into filtering a ton of 'security' issues that are very obviously not, on top of the already questionable stable practices. -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Friday, 08-Mar-2024 21:34:59 JST
Lorenzo Stoakes
@pavel @vegard @gregkh @kernellogger @larsmb the issue for me as an outsider to this (currently not employed within the kernel, though contributing to it a fair bit) is the utter denial that there are consequences like that coming from the pro- side despite the opposing side saying 'yes maybe we shouldn't care but customers care, regulators care, etc. etc' and the other side >/dev/null.
Having a conversation starts with acking or refuting what the other side has to say, not acting like it wasn't said.
Again, happy to stand corrected if I'm wrong here! Just my perspective. -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Friday, 08-Mar-2024 21:34:58 JST
Lorenzo Stoakes
@vegard @kernellogger @larsmb @gregkh @pavel yes, I've generally not commented on this as a. I'm not involved with an enterprise kernel at this point and b. the complexities of the issue, but from my perspective it's the lack of acking how the _reality_ of how kernels are used by the companies which fund a huge amount of core dev.
I mean even if you think the way it's done is awful there should be some acknowledgement of that fact, especially when people are explicitly saying 'dude we are in a position where we _have_ to filter through this stuff'.
And I think the whole 'well there's a ton of bugs who knows which could be a security flaw' is dubious at best.
Some bugs are very clearly more problematic or have more clearly been shown to be security flaws than others.
Of course all this speaks to how incredibly crap the whole CVE system is as a whole, but I'm just not sure going nuclear is the way forward.
I think the kernel taking control of the CNA side is _good_, the spamming aspect, seems not so good. -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Friday, 08-Mar-2024 21:34:57 JST
Lorenzo Stoakes
@vegard @kernellogger @larsmb @gregkh @pavel I am pretty sure there are scripts involved here, look at Pavel's example.
EDIT: Also on the 'go nuclear' point, the original email literally states 'the CVE assignment team is overly cautious and assign CVE numbers to any bugfix that they identify. This explains the seemingly large number of CVEs that are issued by the Linux kernel team."
That very much speaks to going nuclear, every single 'bug fix' (however you want to define that, autosel for instance blurs lines) is likely to be quite a few. And given the use of scripts in stable process highly likely to be at least partially automated. -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 05-Mar-2024 19:58:15 JST
Lorenzo Stoakes
@pony @oleksandr @lkundrak yeah in the uk they can literally run their own police prosecutions it's fucking insane -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 05-Mar-2024 19:57:20 JST
Lorenzo Stoakes
@pony @oleksandr @lkundrak sadly not, it's more like an ongoing effort to try to make delivery drivers not find you.
The issue is when you get deliveries even the slightest complexity means a certain % simply won't find you or you end up giving directions on phone.
So some of these fuckeries can lead to you not getting your coffee -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 05-Mar-2024 19:57:18 JST
Lorenzo Stoakes
@lkundrak @oleksandr @pony have you also seen the documentary about how the royal mail perpetrated one of the biggest miscarriages of justice in British history against their own employees?
Lol -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 05-Mar-2024 19:57:16 JST
Lorenzo Stoakes
@lkundrak @oleksandr @pony no they literally sent people to prison because they overpaid for some extremely shitty enterprise software (surprise surprise) that was a total fucking mess and it was saying 'this person stole 100,000' when it wasn't true. They also bankrupted them etc.
It's quite grim -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 05-Mar-2024 19:55:35 JST
Lorenzo Stoakes
@pony @oleksandr @lkundrak yeah thanks I'd rather have actual numbers.
Then again UK has fuckeries too.
Like you have numbers, but sometimes you have house names for fuck's sake. And sometimes both.
And then you can have groupings of houses like here there's '4 xxx cottages' which happens also to be '4 xxx road'.
Then you have letters, like 2a, 2b, 2c.
And also things like 'ground floor flat'
So 'Ground floor flat B 2C Samantha House 137 Peter Drive, Abomination Town, SE7 6AB' -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Tuesday, 05-Mar-2024 19:49:33 JST
Lorenzo Stoakes
@pony @oleksandr @lkundrak wait you have a postman call you?
Actually here my local postman is great to be fair, lucky to have him, but he doesn't have my number ordinarily! -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Monday, 26-Feb-2024 00:37:41 JST
Lorenzo Stoakes
I must confess I am not a HUGE fan of python -
Embed this notice
Lorenzo Stoakes (ljs@social.kernel.org)'s status on Monday, 26-Feb-2024 00:37:39 JST
Lorenzo Stoakes
@a1ba I'm 166cm but the fan element is less the case
All GNU social JP content and data are available under the