Notices by Mike P (fentiger@mastodon.social)

So you want to build a piece of high performance, deeply pipelined hardware, and write a device driver for it?

The hardest problem is usually: "How do I bring it to a clean stop?"

Get this right. Early.

I hear SW folks proposing "optimisations" to stop the pipeline 10ms faster at the expense of corrupting kernel memory when unexpected errors occur, and I hear HW folks asking "Why do you need to do that? Just reset it!"

Don't be like these people.

#FPGA #ARGHHHHH #BangHeadHere

@silverpill @steve Fair enough - but in that case I'd suggest linking to a description of the attacks, so that readers can judge the importance for themselves. It's very easy to overlook things like this if nobody's told you that they exist.

@silverpill @steve One suggestion: the content negotiation section should, IMHO, be phrased as a "MUST" level requirement, in the light of the attacks on Mastodon that were discovered at around the turn of the year. That is, senders MUST set the correct Content-Type, and receivers MUST reject any message without it set correctly.

At least, that's how I'm treating them now.

@evan @tomcoates Will this be based on your proposal here?

https://evanp.me/2023/05/19/end-to-end-encrypted-messages-over-activitypub/

@silverpill I'm curious about the "publicly accessible feed" requirement. It's not at all clear to me what this means.

Will they refuse to federate with a site that's entirely hidden behind a login page?

Or a site that doesn't have a web front end at all, and only provides service via, say, mobile apps?

@tedinski @inthehands Junior developers think that writing code is hard work, and they appreciate anything that makes it seem easier.

Experienced developers know that writing code is the easy bit. They appreciate anything that makes the really hard stuff easier.

@feditest Will this be recorded?

I'm interested, but I'll be on a plane at the time, and will be unable to join.

@Edent I think I'll start a new social media site where nobody will be able to post anything at all. Security and privacy - guaranteed by design!

Also the software will be really simple.

@hypolite Yesterday I got caught twice. In the same day.

You'd think I'd have learnt my lesson after the first one. ;)

@bekopharm @hypolite Now I need to be careful to pay the ransoms in the right order, so that all my files get decrypted properly.

@crepels Nice article! In particular, this is the best explanation I've seen yet of the "infinite signature recursion" problem, and the way around it.

I haven't tried to talk to Threads from my own toy implementation yet. I have a suspicion that the "instance actor" requirement is going to give me a headache.

@evan @ainali @tchambers @andypiper Maybe this could be done - or at least prototyped - with some kind of proxy.

@jrashf https://socialhub.activitypub.rocks/t/fep-0837-federated-marketplace/3501 ?

@kaia Is it a spanning tree?

@futurebird I would actually wear that "MY ANCESTOR" T-shirt. I'm almost considering getting one printed.