hannoI wonder if one day someone can explain to me why Google thinks the fact that I am in a foreign country means I immediately am fluent in that country's language, and prefer it over English or my native language. I mean, there's an Accept-Language header, I think it's older than Google.
domenpk
- 11 Followers
- 69 Following
- 162 Posts
@OverSoft
No experience, but that surprises me and maybe I should play with it a bit
Have you used it before, or is this like a first real try?
Hisham@zwol This is not a toot. This is a high-quality blog post that should be in an easily referenceable URL that is more permanent than a microblogging server history. (As others have said, this should probably be an RFC or at least something with a name giving it a probability of catching on like SemVer did... SemMagic?)
@grawity
Still very much used in Slovenian, but in informal speak it's commonly replaced with plural for feminine nouns, so I wonder if it might be on its way out.
Still very much used in Slovenian, but in informal speak it's commonly replaced with plural for feminine nouns, so I wonder if it might be on its way out.
nixCraft 🐧
@varx
Make it an attractive target for a research publication.
Saying it's impenetrable or similar might work, but probably only once ;)
If it's not paid for, the researcher would need to have some interest in it. And then work either in their free time or convince their company it's worth spending at least a week on it.
If paid for, you need to get funding. Crowdsourcing, sponsorship... It comes to convincing someone it's worth it. It being open source and being able to publish the report might get you some discount.
Make it an attractive target for a research publication.
Saying it's impenetrable or similar might work, but probably only once ;)
If it's not paid for, the researcher would need to have some interest in it. And then work either in their free time or convince their company it's worth spending at least a week on it.
If paid for, you need to get funding. Crowdsourcing, sponsorship... It comes to convincing someone it's worth it. It being open source and being able to publish the report might get you some discount.
SETI Institute#PPOD: NASA's Curiosity rover ran over a rock and found crystals inside! They're pure sulfur. Elemental sulfur is something we’ve never seen before on Mars. We don't know much about these yellow crystals yet, but the team is already at work to figure it out! Credit: NASA/JPL-Caltech
Their products are flawed not just because they're badly implemented - which they are - but because they are based on a stupid idea. The idea that you improve your IT security by adding more complexity. Doing the opposite is the right approach. But you can't sell that as a product. (You can still sell it, but it's not something you just plug into your network and get security magically.)
I told you I wasn't done with BIMI yet. Part of the BIMI spec is that the SVG logos have to be compliant with a Relax NG schema that defines a secure subset of SVG. This does not look like a bad idea. You can easily validate SVGs against this profile with existing XML tools. Yet... if you don't do it, it doesn't help. I noticed that many BIMI certificates contained non-compliant SVGs https://mailarchive.ietf.org/arch/msg/bimi/xzYRH72V2HE9xeUfXK_zUgYSI7k/ 🧵
@FediTips
This makes me feel a bit uneasy.
I know as an attacker you'd need correct credentials for it, but if you have them you could steal followers and there's no recourse (the new server just won't cooperate to transfer them back).
I'd hope such account actions trigger more authentication.
Disclaimer: I've only read the linked page and not spent much time looking into this.
@briankrebs
This makes me feel a bit uneasy.
I know as an attacker you'd need correct credentials for it, but if you have them you could steal followers and there's no recourse (the new server just won't cooperate to transfer them back).
I'd hope such account actions trigger more authentication.
Disclaimer: I've only read the linked page and not spent much time looking into this.
@briankrebs