Patrick O'Doherty

@[email protected]
380 Followers
298 Following
1,060 Posts
Irishman in San Francisco. Amateur photographer, musician, artist and electronics tinkerer. Professional security computer comrade. Security @ Tailscale. Only together can we defeat the computers.
pronounshe/him
locationSan Francisco, California
bloghttps://patrickod.com
githubhttps://github.com/patrickod
instagramhttps://www.instagram.com/podoherty/
Show threadPatrick O'DohertyFeb 13
@AlexanderMars you can BYO OIDC provider https://tailscale.com/blog/custom-oidc-ga
Custom OIDC is generally available

We’re pleased to announce that custom OIDC is now generally available for all users. With custom OIDC, users can sign into Tailscale using any identity provider that supports OpenID Connect (OIDC). To use a custom OIDC provider with Tailscale, you must verify domain ownership by setting up a WebFinger endpoint.

Patrick O'DohertyAug 11, 2025
tefAug 9, 2025
yeah github is the ai powered... hold up the page isn't loading ... yeah so github is ... yeah i'm just going to open this in a new tab, there we go yeah so github is the world's leading ai powered platform for collaboration, and yeah i think the page has almost loaded now, one sec
Patrick O'DohertyJun 3, 2025
HaileyJun 3, 2025
shot, chaser
Patrick O'DohertyMay 8, 2025
Coding Cottagecore BogwitchMay 7, 2025
As computer keyboards get smaller and smaller, I can't help thinking, that eventually we'll reach a point of no return
Patrick O'DohertyMay 6, 2025
💀 𝓕airchild 💀May 6, 2025

Anyone surprised by this has not been paying attention. Israel his routed Gaza, killing or displacing its residents in order to empty it and reduce resistance, and its intention all along was to use this as a pretense to seize the Gaza strip.

https://apnews.com/article/israel-palestinians-gaza-war-plan-reaction-e11aa45f829100c6e9b8afdaa4b2567f

An Israeli plan to seize the Gaza Strip is met with alarm

An Israeli plan to seize the Gaza Strip and expand the military operation has alarmed many in the region. Palestinians are exhausted and hopeless, pummeled by 19 months of heavy bombing. Families of Israeli hostages still being held in Gaza are terrified that the possibility of a ceasefire is slipping further away. Israeli officials said Monday that Cabinet ministers approved the plan to seize Gaza and remain in the Palestinian territory for an unspecified amount of time. Details of the plan were not formally announced. It may be another measure by Israel to try to pressure Hamas into making concessions in ceasefire negotiations.

AP News
Patrick O'DohertyApr 15, 2025
was rummaging through my bookshelves for something and out pops a hand drawn postcard sent by a since deceased close friend of mine from secondary school. I thought I had lost it and I'm so glad that it is found. A perfect time capsule of their amazing presence and art in the world. We miss you Andy.
Patrick O'DohertyApr 11, 2025
Molly WhiteApr 11, 2025

Yep. I saved hundreds or even thousands of dollars a month just from switching from Substack to self-hosted Ghost.

https://digiday.com/media/former-substack-creators-say-theyre-earning-more-on-new-platforms-that-offer-larger-shares-of-subscription-revenue/

I pay a roughly flat $85/month now (~$75 for mailsending, $10 for hosting), vs. 10% of all my subscription income.

Here’s some napkin math for how expensive Substack is compared to its competitors, assuming that roughly 7% of all subscribers will pay for their subscriptions, and that subscriptions cost $5/month.

Former Substack creators say they’re earning more on new platforms that offer larger shares of subscription revenue

Former Substack writers who exited the platform in early 2024 are making more money on Beehiiv and Ghost thanks to their fixed pricing models.

Digiday
Patrick O'DohertyApr 11, 2025
Matthew GarrettApr 11, 2025
Could someone please help me understand why dpop (where every request requires its own signature) is preferable to mTLS (where multiple requests can be made in one authenticated channel) other than being able to implement it without having to engage with browser authors?
Patrick O'DohertyApr 8, 2025
Everyone should be so lucky as to have a colleague as wonderful as @creachadair whose code reviews are so educational and kind and have the rarest property of making me actually want to write _more_ software.
Patrick O'DohertyMar 31, 2025
Sufficient time has passed and I'm excited to share a demo and details of a CSRF vulnerability that I discovered in the popular gorilla/csrf library that has been present since its creation 😲 https://patrickod.com/csrf
gorilla/csrf CSRF vulnerability demo

A demonstration of a novel CSRF vulnerability in the gorilla/csrf Go library.