circafuturum

@circafuturum@infosec.exchange
94 Followers
703 Following
880 Posts

Software engineer.
Oncer.io - encrypted messaging without history.

I'm here for good vibes and new and interesting perspectives on business and technology, especially with security themes.

### Profile image ChatGPT 4o prompt

Please draw a line drawing of an embodied but hollow business suit with no head lying relaxed atop a giant single puffed grain of rice. Use only a black pen in white background, no shading. There must be a horizon line near the top of the image for perspective but no other objects.

### Profile background ChatGPT 4o prompt

Please show an extra wide ratio landscape of pure dusty sand with the horizon out of the shot so the image is all sand, no sky. Do it in an abstract jarring style with sharp angles and make the image grainy, and block shapes representing dunes and rocks.

Oncer.iohttps://www.oncer.io/

Working at one of the largest vaccine distributors in the country, i've noticed a horrifying pattern.

Can you imagine what it's like to gradually notice vaccine shipments slow down to a trickle for less wealthy areas, while volume to places with more money stays the same?

You think the wealthy on the right aren't vaccinating their own children? Despite the propaganda machine, i assure you that for the most part they still are.

But not the impoverished masses, though. Not those parents, those enthralled to the gods of Fox News, who have "done their own research" and would sacrifice their own children on its altar.

And then i see the numbers. Measles outbreaks are surging. Poor children are dying. Why? So the elites can wring out the last bits of wealth from their parents? Or do the elites just not see them as human?

For today's #ThankYouTuesday, I'd like to thank everyone who supports the Fediverse. So, that means *you*. Yes, you, the one reading this.
Thank you!

The Fediverse truly is for everyone: if you don't have the skills or means to set up your own instance, you can join one of the public instances that aligns with your aspirations. If you can and want to, you can create your own instance, and thanks to lightweight (and interoperable) software, you can do it with spare hardware or very affordable VPS.
So thank you to all of you, friends of the Fediverse!

#Fediverse #Mastodon #snac #GoToSocial #Wordpress #Mitra #Akkoma #Pleroma #Honk #Peertube #Pixelfed #TooManyToEnumerateHere

3 good things for 07JUL2025:
1. Showering in the morning when the sun is streaming in through the high shower window. The way it light up the water and the steam is magical.
2. Finally got a good photo of a hummingbird that visits our backyard.
3. Hacked in some CSS for images on my 11ty site. Could use some more work but it's up.
#ThreeGoodThings #3GoodThings @threegoodthings

Also USB2.0 is super cursed. It's actually 480Mbps if you send enough "0" bits. If you send too many "1" bits, then it drops down to 411Mbps. Variable speed depending on the data?!

Of course it's also very inefficient for other reasons so you never get anywhere close to those speeds anyway...

Ich: "Manchmal führe ich Selbstgespräche, weil ich intelligente Konversation mag."

Ich: "Tatsächlich? Ich auch!"

I'm doing a keynote next month at an Open Source conference about AI (abuse) in #curl's security program etc. I could use your help:

1. Give me a clever title
2. What details would you like such a talk to contain?

10k posts? that was quick

$8.8 trillion. Yes, with a T.

In 2024, my friend Frank Nagle (et al.) at Harvard Business School dropped a paper titled The Value of Open Source Software

https://www.hbs.edu/ris/Publication%20Files/24-038_51f8444f-502c-4139-8bf2-56eb4b65c58a.pdf

It’s not light reading, but here’s the TL;DR:

* Supply-side value of creating and maintaining popular open source software? About $4.15 billion.

* Demand-side replacement cost if companies had to rebuild that OSS themselves? A casual $8.8 trillion.

Let that sink in. Open source software is quietly propping up the global economy like a tired BOFH running on coffee and unpaid emotional labor.

And how do we reward open source maintainers, the unsung heroes keeping the digital world upright?

Enter the AI Slop Era.

Take @bagder — creator and lead maintainer of cURL and libcurl — two of the most widely used OSS projects in existence. Instead of sipping margaritas on a beach somewhere (as he should be), he's busy triaging nonsense AI-generated “exploits” reported via HackerOne.

Want a peek into his inbox of doom?
1. HackerOne cURL Hacktivity https://hackerone.com/curl/hacktivity?type=teamFilter
2. Filter by: Report State = Not Applicable
3. Feel: 😬 existential dread

This is what happens when people feed vibe-code into an LLM, squint, and hit “submit.”

So, what can you do?

* Using AI to vibe-code security bugs? Please stop. Seriously. Shut the laptop. Go touch grass. Maybe talk to a human.
* Using OSS in your business? Chances are, you are. Time to give back — with funding, sponsorships, or actual engineering help.
* Using OSS personally? Thank a maintainer. Donate. Contribute. Even fixing a typo in the README helps.

Open source built the internet. It’s still holding it together with duct tape and goodwill.

Let’s treat it — and the people behind it — like the $8.8 trillion miracle it is.

#aislop #opensourcesoftware #security #cybersecurity #touchgrass

😂😂😂

'Vibe Coder' Who Doesn't Know How to Code Keeps Winning Hackathons in San Francisco - Slashdot

https://developers.slashdot.org/story/25/07/06/0357235/vibe-coder-who-doesnt-know-how-to-code-keeps-winning-hackathons-in-san-francisco

'Vibe Coder' Who Doesn't Know How to Code Keeps Winning Hackathons in San Francisco - Slashdot

An anonymous reader shared this report from the San Francisco Standard: About an hour into my meeting with the undisputed hackathon king of San Francisco, Rene Turcios asked if I wanted to smoke a joint with him. I politely declined, but his offer hardly surprised me. Turcios has built a reputatio...