johnduggins

@[email protected]
213 Followers
137 Following
800 Posts
I enjoy talking about coffee and coffee related topics. I do the thing where I find information and help protect companies from bad things happening.
pronounshe/him
johnduggins1h ago
Fesshole 🧻2h ago
I was a prolific school graffiti artist. My favourite piece was when I wrote the full script to the British Army advert, the one where they are in a Land Rover and shout "get off the road", in full on a desk and at the end I wrote "join the army, be a twat". I was the caretaker.
johnduggins1d ago
My new favorite theme for short videos is the maker + the other person type. They generally have the maker person who is making something like a knife or bookshelf. The other person plays the role of camera operator and either the jokester or the stoic observer.
johnduggins2d ago
AmyFou 🕊️2d ago

Good morning, friends ☕ ☕ 🐕 🐕 💞 💞

#Niko #Gracie #dogs #dogsOfMastodon #fediDogs

johnduggins2d ago
Lady Laura 2d ago
johnduggins2d ago
I have no idea why. Coffee tastes better in the afternoon.
johnduggins3d ago
Jerry Gamblin3d ago

The "Zero Day Clock" is a Masterclass in Bad Data Science.

I've heard this clock mentioned multiple times at #RSAC this week. It predicts an "exponential collapse" of the time-to-exploit (TTE) toward zero. It makes for a scary keynote slide, but the math is fundamentally broken.

The model suffers from:

Right-Censoring: It ignores that slow exploits for 2025 haven't happened yet, artificially forcing the "average" to zero.

Selection Bias: It only tracks the fastest 1.5% of vulnerabilities and ignores the "long tail."

Administrative Lag: It mistakes the growing NVD backlog for "attacker velocity."

We don’t need hyperbolic "scare-ware" statistics to justify our urgency. Defense is hard enough without distorting the data.

I’ve written a full technical audit on why this methodology fails a basic statistical peer review:

Technical Breakdown: https://gist.github.com/jgamblin/91f7843b62069616c951f32957c921cd

#RSAC #RSAC2026 #Infosec #CyberSecurity #DataScience #VulnerabilityManagement

A Critical Audit of the "Zero Day Clock" Methodology

A Critical Audit of the "Zero Day Clock" Methodology - zeroday.md

Gist
johnduggins3d ago
Norcal Gma 23d ago
Today is sunny and warm.
I took time from our chores to run Summer down to the beach. She was a very good girl.
There were other dogs on the trail that were very thirsty, in the dry sand, so she let me share her water. We always bring extra just in case.
Summer said that she wanted to send a message out to all of her Mastodon friends.
She says peace and love are the way to make things better for everyone.
#Summer #DogsOfMastodon
johnduggins3d ago
Micro SF/F by O. Westin3d ago

"It's none of my business," the woman said, "but..."

The witch did not roll her eyes.

"...I heard you gave the baker's gal fangs, and claws."

"She asked."

"You've made her a monster!"

"Adding doesn't make you a monster. Removing does."

"Removing what?"

"Someone's right to be who they are."

#MicroFiction #TootFic #SmallStories

johnduggins4d ago
Paul Fenwick4d ago
Teacher strike tomorrow, so I'm taking Mr 11 to a museum to learn about the history of organised labour in solidarity.
johnduggins4d ago
Sam Litzinger4d ago

“Two Iranian semiofficial news agencies close to the paramilitary Revolutionary Guard claimed that there had been no negotiations — direct or indirect — with Washington as described by Trump. The Fars and Tasnim news agencies instead portrayed the American president as backing down due to Iran’s threats.”

- AP

A sad state of affairs when I put more trust in Iranian news agencies than I do the President of the United States…