David Leadbeater

@[email protected]
331 Followers
304 Following
141 Posts
Monitoring 📊, SRE, Open Source, Security 🔐. Emoji fan 🦸‍♂️. Just your average cynical Brit 🇬🇧 in 🇦🇺. He/him.
🕸https://dgl.cx
🛸https://dg.cx
David Leadbeater4d ago
Show threadBryan Steele 4d ago

David Leadbeater (welcome dgl@! ​) has shared some information regarding the recent __pledge_open(2) changes in #OpenBSD 7.9-beta, including some good advice for porters. 

https://marc.info/?l=openbsd-ports&m=177389567528083&w=2

'Pledge changes in 7.9-beta' - MARC

David LeadbeaterMar 12
mhoyeMar 11

The core insight of DevOps, at the very beginning, was that when people need to carry the pager for the code they write, they write code that won’t wake them up at Oh My God, What The Fuck O’Clock after it falls over in production again. Everything since - DORA, all of it - has been in service of this one idea that aligning software discipline with quality of life consequences makes better software.

It’s an idea that should be everywhere and in everything.

David LeadbeaterMar 7
daniel:// stenberg://Mar 7

Looking back at all (now) published vulnerabilities in #curl that were present in code from 2020 until now, at no point in those years was the share of "C mistakes" higher than 15% of all vulns.

Through all years, the C mistake share of all vulnerabilities in #curl was never above 45% at any single point in history.

David LeadbeaterDec 27
Interesting talk from 39c3: https://gpg.fail including my favourite classes of issues ANSI escape spoofing and abusing CR. A partial response from GnuPG is here https://www.gnupg.org/blog/20251226-cleartext-signatures.html — although there’s other issues that do seem more fixable. IMO better to use age if it makes sense and/or ssh signing (e.g. for git commits)
gpg.fail

David LeadbeaterDec 20
Show threadRob RicciDec 20
Here's a copy of the filesystem that has been extracted as a .tar file: http://squoze.net/UNIX/v4/
David LeadbeaterDec 20
Show threadRob RicciDec 19

Here's the document release you were waiting for today!

The UNIX V4 tape!

https://archive.org/details/utah_unix_v4_raw

Credits:

* Jay Lepreau for holding on to this tape
* Aleksander Maricq for finding it
* Jon Duerig for driving it to the Computer History Museum
* Thalia Archibald for doing a huge amount of research into the tape, its history, and file formats, and the upload
* Al Kossow for the tape-reading equipment and doing the actual read
* Len Shustek for the lab where the read was done and the software used to decode it

#retrocomputing

UNIX V4 tape from University of Utah (raw) : Computer History Museum : Free Download, Borrow, and Streaming : Internet Archive

UNIX V4 tape from the University of Utah, received by Martin Newell in June 1974 around when he modeled the Utah Teapot.This is the raw analog waveform and the...

Internet Archive
David LeadbeaterDec 9
Sophie SchmiegNov 26
Unicode normalization.
David LeadbeaterDec 9
Can I use has a strange entry for Zstandard on Safari (https://caniuse.com/zstd). I can’t find many references for it but indeed, if you serve Zstd to Safari >= 26 it does work. There doesn’t even seem to be a feature flag to turn on sending it in the Accept-Encoding header.
zstd (Zstandard) content-encoding | Can I use... Support tables for HTML5, CSS3, etc

"Can I use" provides up-to-date browser support tables for support of front-end web technologies on desktop and mobile web browsers.

David LeadbeaterDec 6
KadinDec 6

Should you ever be looking for information on a weird old plug or socket, or are just interested in such things, the online "Museum of Plugs and Sockets" is one of those sites that makes the Internet seem like less of a terrible mistake than usual.

https://plugsocketmuseum.nl/

The page on old British "BS 546" is unmatched, in particular: https://plugsocketmuseum.nl/OldBritish1.html

#BestOfTheWeb #OldInternet #IndieWeb #Electronics #DIY

Museum of Plugs and Sockets: home page

Annotated display of 1000 domestic electrical plugs and sockets from all over the world, including classic and obsolete types.

David LeadbeaterDec 6
I’m experimenting with @bsky.brid.gy so this account is now bridged to Bluesky as @dgl.cx — there was a previous Bluesky account which that replaces (it now shows as “invalid handle”) and Bluesky doesn’t have a a Mastodon like way of migrating followers, so you will need to refollow if you’re on Bluesky.