krinkle

krinkle, 7 months ago (edited 7 months ago) to webdev

"Google Sites" now supports embedding images.

What you want: <img style="margin: 0 auto;">

What you get:

• ~100 HTML elements, including 57 unique CSS class names across 83 attributes, 30 hidden DIVs, 3 iframes, 2 external script tags, 2 inline script tags, and 1 actual <img> tag.
• the <img> is inside an iframe, nested 3 (!) levels of iframes deep.
• an image cut off in both X and Y directions.
• not one, but two unwanted scrollbars.

#enshittification #webperf #SemanticHTML #html5 #HTML

krinkle, 10 months ago (edited 10 months ago) to php

WordPress now automatically adds the fetchpriority=high attribute to the image it determines likely to be the LCP image. This prioritizes the image ahead of the browser computing page layout, and typically improves LCP by 5-10%.

https://make.wordpress.org/core/2023/07/13/image-performance-enhancements-in-wordpress-6-3/

This follows from 2 years ago, when analysis showed native <img loading=lazy> makes browsers delay even above-the-fold visible images, regressing the Largest Contentful Paint metric.

https://make.wordpress.org/core/2021/12/29/enhanced-lazy-loading-performance-in-5-9/

#worpress #webperf #LCP #PHP

krinkle, 8 months ago to php

DuckDuckGo has opinions.

Time to upgrade your servers!

#PHP

slightlyoff, 4 months ago to random

TIL that Wikipedia publishes their browser stats; a goldmine!

https://analytics.wikimedia.org/dashboards/browsers/#all-sites-by-os-and-browser

krinkle, 2 months ago to random

Fastly uses the H2O reverse proxy for fast and secure TLS termination over QUIC, HTTP/3, HTTP/2, and 1.1.

The project site compares its benchmarks only to Nginx. I'd love to see a more recent comparison that includes ATS (Apache Traffic Server), HAProxy, and Varnish/Hitch as fellow reverse proxies for TLS termination.

https://www.fastly.com/blog/tls-more-secure-always-fast

via @devs and https://ieji.de/@SolSoCoG/109392993726218659

#webperf #nginx #varnish #apachetrafficserver #H2O #fastly #HAProxy

krinkle, 7 months ago to infosec

How does Wikimedia approach security and performance?

We're quite selective in our dependencies and often audit the sources ourselves. Progressive enhancement makes for a blazing fast and accessible site, and, I argue, it's also the cheaper choice in the long run!

Read more over @openjsf:

https://openjsf.org/blog/2023/10/05/wikimedia-case-study/

#infosec #webperf #OpenJS #foss #floss #Wikipedia

krinkle, 18 days ago to Wikipedia

Best sentence of the Wikipedia article about temperance activist Carrie Nation:

“Her methods escalated from simple protests to serenading saloon patrons with hymns accompanied by a hand organ, to greeting bartenders with pointed remarks such as, ‘Good morning, destroyer of men’s souls'.”

https://en.wikipedia.org/wiki/Carrie_Nation

via https://juliawise.net/how-bad-is-alcohol/

#prohibition #temperance #Wikipedia #JuliaWise

krinkle, 1 year ago to legal

Herbert B. Dixon Jr. (former DC Supreme Court judge) provides examples of some embarrassing redaction failures as part of public court document filings:

"""
Unfortunately, when such a document is converted to PDF format, the text merely appears to be hidden by the black rectangular boxes [..]
"""

https://www.americanbar.org/groups/judicial/publications/judges_journal/2019/spring/embarrassing-redaction-failures/

(via Matthew Butterick's "What we can deduce from a leaked PDF" https://matthewbutterick.com/chron/what-we-can-deduce-from-a-leaked-pdf.html ) #pdf #court #legal

krinkle, 9 months ago to random

Making The Indian Rupee Work For Humans and Databases

Marco Gaspari, at Etsy:

"""
Technically, the rupee is like the US or Canadian dollar: it has a fractional denomination equivalent to the penny, called a paisa. But paisa are [..] no longer in circulation.

In practice, the rupee is more like the yen, its own (non-fractional) denomination.
"""

https://www.etsy.com/codeascraft/indian-rupee-users-database

#i18n #l10n #localization #Etsy #INR

krinkle, 9 months ago to til

Apparently there's a a cross-over between Magento and Twitter.

In 2011, when eBay acquired Magento (an open source e-commerce CMS), it was intended to become part of eBay's "X Commerce Group" at www.x.com. No doubt a domain eBay had inherited from the time where Musk was involved.

Today, that domain of course redirects to Twitter.com.

https://techcrunch.com/2011/06/23/ebay-acquired-magento-for-over-180-million-but-not-everyone-is-smiling/

https://en.wikipedia.org/wiki/Magento

#TIL #Magento #Ebay #PHP #Adobe

krinkle, 7 months ago to Ethics

What are the ethical expectations of an open source project? by Alex Kladov

https://matklad.github.io/2023/10/18/obligations.html

#matklad #ethics

krinkle, 6 months ago to random

Recall 10-second Tom? Background character in "50 First Dates", the 2004 rom-com starring Adam Sandler and Drew Barrymore.

He's a punchline to comfort the main character who "merely" has a one-day memory.

But, do you know the real story of Clive Wearing? British music producer who has severe retrograde amnesia for over 20 years. He has a 7-second memory...

Watch the first three minutes to get the gist.

https://youtu.be/k_P7Y0-wgos?feature=shared

https://en.wikipedia.org/wiki/Clive_Wearing

#CliveWearing #RealStories #amnesia

krinkle, 4 months ago (edited 4 months ago) to Youtube

Basically, an Uzbekistan TV channel used part of a film by Blender Studio. Another artist also embedded part of that same film (both legal under CC license).

The TV company's rant-a-scam "copyright protection" agency semi-automatically reports the artist's video to YouTube as illegal copy of its TV content, despite holding no copyright to do so, and wins. The artist had to risk a channel strike to appeal - and still lost.

https://torrentfreak.com/company-hijacks-blenders-cc-by-licensed-film-youtube-strikes-user-221205/

#youtube #copyright #DMCA @torrentfreak

krinkle, 4 months ago (edited 4 months ago) to random

Steve Jobs in 2010 internal email:

> digital hub [..] moving from PC to cloud
> * we invented Digital Hub concept [..] for all your contacts, calendars, bookmarks, photos, music, videos
> * PC now just another client alongside iPhone, iPad, iPod
> * Apple is in danger of hanging on to old paradigm too long (innovator's dilemma)
> * Google and Microsoft are further along [..], but haven't quite figured it out.

Interesting to see it all spelled out (§14).

https://www.theverge.com/c/22611236/epic-v-apple-emails-project-liberty-app-store-schiller-sweeney-cook-jobs

#EpicVsApple

krinkle, 2 months ago (edited 2 months ago) to random

Difficult.

Difficult is a cult centered around the exchange of Diffie–Hellman public keys. Its members are primarily known for their interest in obscure cryptographic inventions.

#FakeDefinitions #cryptography

krinkle, 11 months ago to linguistics

🐓 "The chickens come home to roost."

This proverb means that a bad deed or unsolved problem will eventually return to the person causing it.

So..., why chickens? Turns out, "Chickens didn't enter the scene until the 19th century".

Origin:
https://www.phrases.org.uk/meanings/chickens-come-home-to-roost.html

By the way, the literal meaning is:
https://en.wikipedia.org/wiki/Communal_roosting

#english #linguistics #IsItASoupMetaphor #ShowerThoughts

krinkle, 7 months ago to webdev

Breakdown of GPU attack:

• Cross-origin iframe should be opaque (can't see fetch response, DOM, or draw to canvas).
• CSS filters on iframe to skew 1 pixel into 2000px black/white square.
• Draw complex SVGs (>16ms).
• Observe time between requestAnimationFrame calls.
• Repeat for 30 min.
• Deduce that render speed might imply the GPU saw similarity (think GZIP) between your SVG and the iframe pixel elsewhere onscreen.

https://arstechnica.com/security/2023/09/gpus-from-all-major-suppliers-are-vulnerable-to-new-pixel-stealing-attack/

https://www.hertzbleed.com/gpu.zip/GPU-zip.pdf
#appsec #webdev #gpuzip

krinkle, 1 year ago to webdev

Blogroll, it's been a while!

Below are my feed subs (I use NetNewsWire), which help me stay informed and keep learning every day (as fullstack dev interested in web, UX, and perf).

https://gist.github.com/Krinkle/e0d13f84b91e829afffa7b27822482be

#blogroll #rss #feedreader #NetNewsWire #webperf #webdev

krinkle, 1 year ago to random

Peter Whiting, on companies that offer you to sell your own personal data:

"""
If you know that a thief will steal your watch tomorrow so you offer it up today in return for a quarter, the core problem has not been solved. In fact, you have shown the robber a way to steal from you without even needing to mug you in the first place.
"""

https://nullpxl.com/post/should_you_sell_your_personal_data/

#privacy #adtech #tracking

krinkle, 8 months ago to random

1998: <div onclick="foo(bar)"></div>

2023: <VeryNiceDiv onClick={foo(this.bar)} />

Ah... the progress we've made.

🥸

The former was of course never best practice. It was poor separation of concerns to mix JS in your content.

Btw, did you know that the former actually checks local props/methods first?

Native event attributes are evaluated in an implicit 'with(this){}' block. That's why stuff like <textarea onclick="select()"> or <input onblur="alert(value)"> works even without 'this'.

krinkle, 9 months ago to firefox

SpiderMonkey Newsletter (Firefox 116-117) by @SpiderMonkey:

https://spidermonkey.dev/blog/2023/08/07/newsletter-firefox-116-117.html

"""
We added a fast path for JSON.stringify.
[..]
We’ve disabled Spectre mitigations in Fission content processes (Nightly-only for now).
"""

Interesting to see the initial generation of Spectre mitigations slowly come down, regaining some perf losses.

Also awesome progress on Speedometer 2, now on par with Chrome! https://mozilla.social/@stevetex/110696689018983577

#webperf #spidermonkey #mozilla #firefox #gecko #spectre

simevidas, 3 months ago to random

In German and Croatian, vote = voice. It’s the same word.

🇩🇪 Meine Stimme an der Wahl.
🇭🇷 Moj glas na izborima.

In these languages, my vote in the election = my voice in the election.

lapcatsoftware, 4 days ago to random

WWDC 2004: Redmond, start your photocopiers.

WWDC 2024: Redmond, we’ve started copying your Copilot.

chris, 15 hours ago to random

Oh great... As if it isn’t bad enough that I have to clear every single mention notification twice in Ivory (and there is no way to turn off the rest of the notifications)... now even going to each tab no longer clears them and I need to quit the app entirely to do so.

I think it's time I put all my computers away... in the trashcan.

krinkle, 8 months ago (edited 8 months ago) to random

"When the pyramids were being built, there were still woolly mammoths."

Ah, another great mystery revealed about the pyramids. It was the mammoths all along! 🦣

via @jkottke

https://kottke.org/14/02/unlikely-simultaneous-historical-events

Learn more: https://en.wikipedia.org/wiki/Woolly_mammoth#Extinction