Notices by daniel:// stenberg:// (bagder@mastodon.social)

This blog post touches my reality in ways I can relate to. "The reality of long-term software maintenance from the maintainer's perspective"

People often ask me what I do all days working full-time on a product that to them seemingly does the same thing now it did already ten years ago (at least). Maintenance is the gift that never stops giving.

https://www.construct.net/en/blogs/ashleys-blog-2/reality-long-term-software-1892

I have this nailed down as what I would like to get to during 2025 for #curl. I assume other things will happen as well. Some of these things will only happen given enough support/sponsorship.

it boils down to this, but I don't think I will include this slide in the set

It's time to re-enjoy this golden quote about me and #curl, shown in the most awesome way.

The oldest #curl release a bug report was filed against today - so far:

11.8 years

$ git log --author="Daniel Stenberg" --oneline | wc -l
18888

@amszmidt @jpmens @icing ok then, only implied.

I actually found this just now:

> The preferred document format for the GNU system is the Texinfo formatting language. Every GNU package should (ideally) have documentation in Texinfo both for reference and for learners

https://www.gnu.org/prep/standards/html_node/GNU-Manuals.html#GNU-Manuals

and:

> In the GNU project, man pages are secondary

https://www.gnu.org/prep/standards/html_node/Man-Pages.html#Man-Pages

@jpmens @icing agreed. The mandatory info format has remained an argument for me to never push for any projects of mine to become part of GNU.

I will speak at #fossnorth in Gothenburg in April 14-15:

What comes after world domination?

Open Source has in many ways already won. It is used in every product by every company, to very a large degree. But we are not done. We can improve: we can take this further, we can make our projects better, we can enhance our communities and make sure it is done sustainably. The future is ours.

https://foss-north.se/news/daniel-stenberg-to-speak-at-foss-north-2025-4/

I love it when my blog posts are read by the right people:

https://daniel.haxx.se/blog/2025/01/23/cvss-is-dead-to-us/comment-page-1/#comment-27130

hacker news: https://news.ycombinator.com/item?id=43013666

#OpenSSL suddenly decided to provide an API for others to do #QUIC with it: https://github.com/openssl/openssl/pull/26683

"disabling cert checks: we have not learned much"

I put my ramblings into a blog post

https://daniel.haxx.se/blog/2025/02/11/disabling-cert-checks-we-have-not-learned-much/

https://github.com/php-mod/curl/issues/108 #curl

@annika https://github.com/php-mod/curl/issues/108

@annika 😱

lemme show you 140,000 (!) places in code where certificate verification is switched off when using libcurl: https://github.com/search?q=CURLOPT_SSL_VERIFYPEER%2C+FALSE&type=code

#curl has supported rustls for four years already, still experimental:

https://daniel.haxx.se/blog/2021/02/09/curl-supports-rustls/

Yikes, the percent output when doing >81 petabytes parallel transfers with #curl would display wrongly.

Presumably not too many users saw this.

and actually, doing larger than 8912 petabytes transfers are also icky, since then it goes beyond 63 bits (signed 64 value) and then... things aren't ideal