@PurpleBooth@hachyderm.io
@PurpleBooth@hachyderm.io avatar

PurpleBooth

@PurpleBooth@hachyderm.io

I write code, and help others write code too. :transgender_pride_potion: :bisexual_potion: :potion_polyamory:

This profile is from a federated server and may be incomplete. Browse more on the original instance.

ryanc, (edited ) to random

It's been ten years, so a short story about the "gotofail" bug.

Someone came to me about a catastrophic vulnerability in Apple's TLS implementation.

I shit you not, they'd overheard someone at a bar drunkenly bragging about how they were going to sell it to a FVEY intelligence agency for six figures.

They didn't know exactly what it was, just some vague details and the key point that it allowed use of the real certificate.

This was enough for me to find the bug (yay open source), which would go on to be known as "gotofail", and produce a working exploit in less than a day.

The details were anonymously back channelled to Apple, who released a fix.

@matthew_d_green posted on Twitter about it, concerned by Apple's vague release notes.

I used a burner phone to share the details with him anonymously.

Then everyone forgot about the whole thing because heartbleed.

¯_(ツ)_/¯

PurpleBooth,
@PurpleBooth@hachyderm.io avatar

@ryanc @matthew_d_green wow ok, TIL about LD_PRELOAD I am going to do terrible things with this

gintoxicating, to random
@gintoxicating@mastodon.social avatar

every time.

every. single. time.

PurpleBooth,
@PurpleBooth@hachyderm.io avatar

@gintoxicating It's just so tempting, like Constantinople to the Latin armies at the end of the Fourth Crusade.

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

I am shocked I tell you, shocked!
https://lemmy.world/post/10481867

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

If your agile has an official certification, it's not agile, it's just sparkling waterfall.

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Fun word rot updates I have noticed in the tech industry:

  • Agile now means SAFe
  • Trunk based development now means Feature Branching
  • Tribe now means department
  • Continous deployment, Delivery and CI all mean the same thing
  • TDD means you write tests at some point
  • Automated testing means there is one or more automated test but most things can still be manual
PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Oh wow, the install process for windows is not friendly, it needs extra drivers for pretty common stuff like nvme. I haven't done this in years and I have been spoiled by how much easier this is on Mac and Linux. Lets not get into that I had to spin up a remote machine to even download the iso...

PurpleBooth,
@PurpleBooth@hachyderm.io avatar

I am currently setting up a windows VM (this time local), to use the install media tool, in case that is the source of my problems. Increasingly feeling like maybe I just install Linux and be done with it lol, it's supposed to be a gaming machine tho

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Librarians are really cool

PurpleBooth,
@PurpleBooth@hachyderm.io avatar

There is something heroic about cataloging and sharing knowledge, to disregard copyright, to save the knowledge, to break down the fences on the global commons. The Anarchist Library, Sci-Hub, Warez groups, and those who forcefully extract community histories from the hands of corporations, like ArchiveTeam.

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

For those of you with robot vacuums: "Idiot, stop stealing my panties" is "Kono baka, pantsu wo nusumu no wo yamete!" in Japanese

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Little proud of this, I have spent the past couple of days, trying to lower the barrier to start making technology a little carbon intensity aware. We made a tiny little github action that will help you skip the build when carbon intensity is high! Meaning if you have workloads that you don't need to run every time, it's super easy to skip them. It's really tiny, but I hope that it inspires others to do similar things!

https://github.com/armakuni/carbon-guard

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

The suit is a more suspicious outfit than the hoodie

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Listen, how was I to know that 180 degrees wasn't how much I was supposed to rotate th oven

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

God I am getting so tired of people at work commenting that I look grumpy or fed up, piss off I am allowed to feel how I want

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

My favourite thing about Agile is how it's just waterfall with different names.

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

‘You didn’t just succeed, you Exceled’

They saw the opportunity and took it.

https://www.theguardian.com/australia-news/2023/dec/15/you-didnt-just-succeed-you-exceled-sydney-man-dubbed-the-annihilator-wins-excel-world-championship

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

I miss working on interesting technical challenges at work

PurpleBooth,
@PurpleBooth@hachyderm.io avatar

Being a consultant is basically going into organisations and teaching them the basics, over and over again. So like if you ever want to save money on a consultant, just teach your peeps modern development and leadership techniques. The biggest problem is largely people get promoted into leadership positions then never bother to treat their job as a craft they need to learn, and they end up creating situations where their teams struggle to keep learning

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

on my deathbead Let the shareholders know I created value for them

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Agile Release Trains are like the least credible thing that SAFe has come up with. The first image is the supposed problem, the second image is the solution. The solution seems to be magically theory of constraints doesn't apply, or that they still move at the cadence of the slowest team, or alternatively that the bottleneck will constantly be in crunch.

3 teams now mystically in sync because they have system demos

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

YSK:

  • example.com
  • example.net
  • example.org
  • .test
  • .example
  • .invalid (for domains that should be invalid)
  • .localhost

are the list of domains you should use for documentation or testing (rfc2606, rfc6761)

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

You probably want to upgrade your gnu c apps that call syslog https://blog.qualys.com/vulnerabilities-threat-research/2024/01/30/qualys-tru-discovers-important-vulnerabilities-in-gnu-c-librarys-syslog

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Many organisations have a C10K problem when it comes to work. They think they are optimised for high volumes of non-interdependant work - which requires the fastest possible response time, when instead they need to optimise for throughput, which instead requires careful sheduling and a deliberate approach to changing focus.

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Ok! I did it, so to install windows I spun up a remote vm and get the url to download the windows iso, then I downloaded it to my mac laptop and used it to spin up a windows vm, in that windows vm I used rufus to make install media, and finally used that to install windows. I will never complain about the Ubuntu installer ever again.

PurpleBooth, to random
@PurpleBooth@hachyderm.io avatar

Fully automated luxury bdsm space communism when?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • InstantRegret
  • mdbf
  • ethstaker
  • magazineikmin
  • GTA5RPClips
  • rosin
  • thenastyranch
  • Youngstown
  • osvaldo12
  • slotface
  • khanakhh
  • kavyap
  • DreamBathrooms
  • JUstTest
  • Durango
  • everett
  • tester
  • cisconetworking
  • Leos
  • cubers
  • modclub
  • ngwrru68w68
  • tacticalgear
  • anitta
  • provamag3
  • normalnudes
  • lostlight
  • All magazines
    •