Firstyear

@[email protected]
797 Followers
219 Following
2.4K Posts
Senior LDAP/IDM Tech Debt Collector
@SUSE. Supermarket Thought Leader. Author of Kanidm, concread and webauthn-rs. he/him
Firstyear6h ago
Show threadNina Kalinina22h ago

A friend just asked me a few more questions about the reasons I decided to try and move to *BSD, given that these systems are, generally, far less polished than Linux, and do not support as many packages/programs. I vaguely gestured at the situatuion with genAI/LLM uprooting the trust in the Linux kernel, core system components and so on. She wasn't convinced; AI is everywhere these days, and avoiding it is a lot like trying to avoid other unethical things: very hard and probably will affect your quality of life.

And I get it. The situation is actually quite similar with "just install Linux": running Windows is bad, and for many people, moving to Linux (or BSD) is impossible. But there are _also_ many people who don't know they could run Linux - sometimes with more comfort than their obsolete and buggy Windows.

So I want to try and run *BSD and share how it feels, and maybe this way I could remove a few roadblocks for others. Ultimately, I just want to feel better about my computing habits.

Firstyear15h ago
Karl Auerbach17h ago

Gawd sometimes I hate passkeys.

I have to deal with some fairly old people - people who have lost much of their vision and who have never been particularly technically minded.

The modern race-to-lock-everything has moved a lot of services (such as outlook) to move to passkeys.

That's nice - unless one is trying to deal with problems for an old person who is 800 miles away.

It appears that many of these services treat having a passkey as a one-way ratchet. Once someone (me) has set up a passkey (limited to my computer and phone) then the service switches to demand a passkey rather than the password to get in - but the old person's phone/computer does not have the passkey nor knows how to use it even if they did.

Our present Internet - largely programmed by young people with tech knowledge and good eyesight - is becoming increasingly hard to use by older people while things (like medical services) increase security that these people do not know how to use and can't be managed remotely.

Firstyear15h ago
1.3.6.1.4.1.6151316h ago
Passkeys are just sparkling TLS client certs
Show threadFirstyear2d ago
Actually, looking into it a bit more, I think Kanidm and OpenLDAP might be the only two large opensource IDP's left that don't accept AI slop.
Firstyear2d ago
Looks like both FreeIPA and SSSD accept AI PRs now, so if you're looking for an alternative then consider Kanidm - we even have a FreeIPA migration tool to help you move away, and we're working to make a SSSD replacement available in future.
Firstyear3d ago
Fesshole 🧻3d ago
Have a technical job in IT with a lot of responsibility. Just found out that a few people in the team who constantly come to me for help with *everything* and near-zero responsibility are paid 15% more than I am. Guess they'll be having to sort their own problems out from now on.
Firstyear3d ago
I don't know at what point it became socially acceptable to drop a fully AI generated 70kloc PR, but I don't think I've ever hit the "close" button so fast in my life.
Firstyear4d ago
I have learnt some people have me on notify here on masto, and I promise I will not use this power for bad.
Firstyear4d ago
Security Writer 4d ago

RE: https://infosec.exchange/@flyingpenguin/116399482954754093

Can I bring your attention to one of the best security write-ups I’ve read in a long while.

Bravo, Davi.

@mttaggart flagged this one to me.

Firstyear6d ago
Eniko FoxApr 19
the governments of the world are all bending over backwards to avoid regulating social media platforms to the point they're now trying to regulate literally everyone on the planet instead. it's absurd