Jeff GeerlingOpen source maintainers already had enough to worry about before the ongoing agentic AI revolution... my thoughts on recent AI-induced problems in open source development: https://www.youtube.com/watch?v=bZJ7A1QoUEI
David
- 18 Followers
- 57 Following
- 194 Posts
So this sort of thing actually happens (and apparently more than I thought). You never know what's going to be in the firmware of the stuff you buy (especially if you don't recognize the brand).
https://www.reddit.com/r/homelab/comments/1r5ppwr/my_home_lab_finally_paid_off_caught/
OAuth2 client secrets with forced expiration are annoying. The goal is for them to to be "actively monitored" by the owners, but this effectively creates a dead man's switch, and I *really* hate those, as they create a need for low-value human work from high-price workers.
I'm on a bit of an insane quest to make all of my Windows 10/11 and Linux RDP services use proper TLS certificates just because I *really& hate self-signed certs. Xrdp is easy enough, but Windows is a bit more tricky.
https://techcommunity.microsoft.com/blog/askds/remote-desktop-services-enrolling-for-tls-certificate-from-an-enterprise-ca/4137437 gives the best advice, but I don't know if it works when not joined to a domain.
I dislike the security vendor space because big companies are constantly acquiring, divesting, and rebranding stuff. Old documentation and support information is constantly being lost in the churn. Perhaps these big corps are more like private equity companies.
I know ths is an old post, but Google Workspace still does have the old workflow provided you have "Allow users to skip passwords at sign-in by using passkeys" turned off in Security > Authentication > Passwordless. I don't know how to do the equivalent with consumer accounts.
@briankrebs If he knew what was good for him, he'd quietly drop all this nonsense and let advertisers slowly come back instead of creating this legal mess.
Matt BlazeA reminder that "executive orders" are exactly that - orders from the president for the executive branch. They are not laws, and they do not directly bind anyone not in the executive branch of the US government. They might affect how laws are enforced and other things the executive branch does that affect private individuals, but they are not "orders" that private individuals (or organizations) are required to obey.
@mattblaze It's worth remembering that Congress explicitly has the power to "make Rules for the Government and Regulation of the land and naval Forces". Of course, this takes the form of the UCMJ. Unfortunately, it also takes the form of bases and weapon systems the military doesn't want. But that's something Congress needs to stop.
https://theonion.com/congress-reluctant-to-cut-funding-for-tank-that-just-sp-1819576530/ satirizes this.
Congress Reluctant To Cut Funding For Tank That Just Spins Around And Self-Destructs
WASHINGTON—Escalating recent budgetary disputes with the White House over military spending, members of Congress signaled their hesitance Thursday to curtail funding for the M114 Armored Combat Vehicle, a midsize tank whose sole capability is spinning 360 degrees in place and then exploding.
One thing that's annoying about using SSH with Kerberos (or Kerberos in general) is delegation. When you connect to a server, you don't get a TGT there. That's generally good, but I wish you could have the SSH client on the other end at least generate service tickets to be used by the server. This way, the client itself could constrain this "pseudo-delegation" by only allowing certain service tickets.