Notices by Wolf480pl (wolf480pl@mstdn.io), page 4

@nadia I tried filtering by CVSS score, leaving in only "Critical". There was a single-digit number of those per year. I would read the descriptions and linked writeups for each of them, and after that it usually turned out half of them are clearly not applicable or just pure bullshit.

For the rest I wasn't sure whether we're affected because I didn't know how the application uses them, so I opened tickets for the devs. It turned out half were not applicable either.

And it was a PITA.

If CVE scanners are stupid, then what should I do instead?

Suppose I'm a sysadmin / devops at a small sofrware company. The devs write webapps with lots of dependencies, which they rarely update.

Is there anything I can do to meaningfully reduce the risk of a vuln in one of those dependencies getting us pwned, without that consuming all of my time?

@domi what's next, guthub without Copilot?

Is there a self-hosted password manager with a firefox plugin with which I can give different computers access to different subsets of passwords?

@piggo don't touch the mouse while typing in your password manager password, or you may accidentally send the password to an IRC channel :P

@quad @lanodan
I heard a story that one of my family members who had joint surgery turned out to be resistant to morphine. He was feeling a fuckton of pain, and the doctors gave him a lot of morphine, and it had no effect. Then they gave him regular painkillers and it worked.

tfw no harddoom on Zynq

@sp6mr reject image upload and quote posts, embrace ASCII

@mothcompute RAID10 programming.

Two pairs of programmers do pair programming, and then their code is compared.

@mark @jk yet JQuery-based websites were somehow able to load on a netbook with Intel Atom and 1GB of RAM. IIRC you could even load more than one at a time.

@jk

@izaya we have Suzuki Cappuccino at home

Suzuki Cappuccino at home:

@merlin what are 1ct transactions?

Also, do people really use 1x1 gifs for anything other than tracking?

@merlin hmn ok

Why are financial transactions of 0.01€ used?

@0x47df I agree with the bring them to the office part, but rack rails are too nice for me to give up :/

@izaya was it a 42" CRT?

@kly I also recommend @HourlyFoxes and @FoxNews

Does anyone here know of a good overview docs / talk / writeup / can give me an infodump of how ACPI works?

@izaya finally a usecase for RGB

@robey I thought the only time you'd use adduser is when writing a pre-install script for a deb package...