Notices by Bynkii (they/them) (bynkii@mastodon.social)

@inthehands @stephstephking @markmorow at least half of my success in it is because I can write well. I can communicate my ideas to people who aren’t me or aren’t in tech.

@foone @inherentlee try OS/2, it’s a more stable environment for Win3.1

@shortridge actual conversation I’ve had:

Them: “you have a vulnerability relating to <CVE>”

Me: <reads CVE> “the CVE refers to a file not on <server>, vuln scanner is doing <process I understand *very* well because I use it daily> which only gives a version number. It’s a dumb plugin”

Them: “how will you mitigate?”

Me: “the file referenced does not exist on the server, it is perfectly mitigated”

Them: “when will the vendor fix?”

Me: “never, they do not use that file”

Goto 10, endlessly

@shortridge but if everyone used modern best practice and architected systems to be both resistant and resilient by design, then cyberbros would no longer be seen as Superman!

@shortridge it’s how they’ve been taught to see things. If you look in their lives, they view almost everything through the “value is determined by pain” lens.

They can’t just work out, they have to find the most extreme gym. They can’t just have a nice home wifi, they have to run conduit for fiber to everything.

A *lot* of them have to make everything hard so they feel fulfilled in accomplishing it.

@jacklaridian @KingShawn I’m sure tone-policing gets lots of people on your side.

I appreciate the lengths apple goes through to prevent rogue devices, but there’s some rough edges in the workflow that need work.

#ipadprom4

Okay, new iPad Pro is downloading its initial SW update. Using my iPhone for the initial setup really removes so many pain points. It is indeed very thin.

#ipadprom4

Musk is saying you’ll soon be able to use a dorktruck as a boat. MFer, it can’t handle a CAR WASH or RAIN. But the culties will absolutely take him seriously and someone is going to drown in the fucking thing.

@AnarchoNinaWrites the only movie of voigjt’s I’ll watch *ar all* is anaconda. Although I feel bad for the snake.

@SwiftOnSecurity you also have to demonstrate facility in Bulgarian folk dance

@shortridge Us: “no, we want better communication”

My security team: “we don’t exist to make your life easier”

Us: “Wait what?”

My security team: “WHEN WE SAY JUMP YOU JUMP, YOU DON’T WASTE OUR TIME WITH STUPID QUESTIONS ABOUT HOW HIGH!!!”

s i g h

@shortridge

My security team: “we just eliminated a core functionality without warning or notice and you’re only going to find out when your users start complaining.”

Us: “we understand why you did that and in many ways it was a good idea but there’s no way this was a spur of the moment decision so we’re a bit put out that we got no warning so we could have new systems in place to replace that functionality”

My security team: “so you want to be insecure!”

I will say this until it is no longer true:

If a non-admin user clicking on a link or opening up an infected word file damages anything on your network your security is shit.

Periodt.

@dankwraith every bounds and overflow error was crafted with love.

Today I was reminded of the best description of IT I have ever encountered: My first IT job, my boss explained IT this way:

“It’s like being a doctor & you’ve a patient sayings:

“Doctor, it hurts when I stick a fork in my eye.”

You, being a doctor, use your knowledge & expertise & tell the patient to not stick forks in their eyes.

They say: “You misunderstand: I want you to make it stop hurting.”

IT in a nutshell: the unending quest to make it not hurt when they stick a fork in their eye.”

@AnarchoNinaWrites I’m absolutely unsurprised. Mastodon is indie dev nerd heaven and I can tell you from personal experience that indie dev nerds are the most vicious motherfuckers ever.

And they are always able to justify that shit as “for the greater good”.

They will absolutely shove people into ovens in the name of whatever purity of cause they love, and the cause is unimportant. They’ll do it to lord power over the targets.

Mastodon was always going to be what it is.

@nocontexttrek Iggy pop as a vorta on DS9

@RenewedRebecca @BlackAzizAnansi given the community that created and largely runs mastodon, the fact that participating in heterogenous communities is hard, and not a design feature is unsurprising.

@bytebro @StillIRise1963 @mishi @jdp23 @EricFielding @Kaetchi okay, but “block and move on” and “just keep changing instances” put all the work on the target, and the latter assumes that somewhere is a magical instance where this doesn’t happen and won’t be encountered.

Neither require anything from the attacker or their enablers.