shortridge

shortridge, 7 months ago to random

wanting to learn some nerdy things tomorrow (Wednesday the 18th) at 11:05 ET / 08:05 PT?

I’m presenting “Watering the Roots of Resilience—Learning from Failure with Decision Trees" virtually as part of the O’Reilly Security Superstream https://www.oreilly.com/live-events/security-superstream-devsecops/0636920090132/0636920090131/

We’ll cover the Resilience Potion Recipe™, how humans are the mechanism for adaptation in software, mental models, resilience stress tests, and how to use decision trees to support all these #resilience things.

Hope to see you there 🖤

jakelazaroff, 7 months ago to random

Surprise part three to my CRDT blog post series: Making CRDTs 98% More Efficient! We'll learn how to significantly reduce the state-based CRDT metadata overhead.

https://jakelazaroff.com/words/making-crdts-98-percent-more-efficient/

puffer, 8 months ago to mastodon

So many times I see someone boosted into my timeline saying some variation of "Hey! looking for my people. I'm interested in XYZ. Seems kinda quiet around here." And I look at their profile and they're following less than 100 people. Honestly, I think it's one of the biggest drivers for people leaving this platform, not getting over the hurdle that you have to follow A LOT of people. There's no algorithm filling in the blanks.

#mastodon

shortridge, 8 months ago to Cybersecurity

new post: the SUX Rule for safer code https://kellyshortridge.com/blog/posts/the-sux-rule-for-safer-code/

it’s short for Sandbox-free - Unsafe - eXogenous. If your code does all three of:

• running without a sandbox
• written in an unsafe language
• processing exogenous inputs

it’s certain your code SUX.

it’s basically me tweaking Chromium’s excellent Rule of Two because it conflicts with Star Wars lore (among other reasons I describe)

#cybersecurity #memorysafety

dan, 8 months ago to random

reluctantly conceding that it is already October by breaking out the SAD lamp

shortridge, 8 months ago to random

awesome paper by @dykstra & compatriots that audits three compliance standards (including PCI) to see if there are security gaps even if you’re 100% compliant.

The answer is yes, there are gaps even with perfect compliance — and they back it up with thorough evidence and analysis that is well worth reading: https://josiahdykstra.com/wp-content/uploads/2020/02/NDSS2020_Compliance_Cautions.pdf

#compliance #cybersecurity

shortridge, 8 months ago to random

always love getting called a Senior Principle Engineer, rightly reflecting my esteemed status of being a fundamental, foundational — and dare I say iconoclastic — truth of reality

shortridge, 8 months ago to random

this has been a devastating fall from grace to watch from afar… Ariely was one of the behavioral economists that inspired me to pursue it https://www.newyorker.com/magazine/2023/10/09/they-studied-dishonesty-was-their-work-a-lie

this natural meta “experiment” about dishonesty is almost Shakespearean. A man makes his career on the study of dishonesty — claiming people need only a small reminder to be decent — yet egregiously “fudges” facts to get there.

Truth continues to outwit fiction.

shortridge, 8 months ago to Cybersecurity

The etymology of “aware” is rooted in being “wary” of something and I agree, this month we should be very wary of #cybersecurity as an industry.

shortridge, 8 months ago to random

OH: “whenever someone says they’re going to rewrite the manifest I think of Ted Kaczynski”

shortridge, 8 months ago to random

I got up to refill my water glass and my cat somehow added 800+ slides to my keynote draft

shortridge, 8 months ago to Cybersecurity

it’s rare I meet someone in tech who has a kindred philosophy / literary bent, so I had a blast chatting with the Scaling Tech hosts about my book recently

David totally picked up what I was throwing down when writing the book and it sparked much joy in my icy heart. Give it a watch/listen: https://scalingtechpod.com/kelly-shortridge-on-security-chaos-engineering-and-resilience-scaling-tech-podcast-ep23/

#resilience #chaosengineering #softwarequality #cybersecurity

shortridge, 8 months ago to firefox

so, firefox doesn't seem to record when you try to visit a URL but it results in an error (Chrome does seem to record as part of your history) -- does anyone know why #firefox doesn't?

shortridge, 8 months ago to FF

can I get a follow Friday of distributed systems nerds who frequently talk about or boost distsys nerd shit?

bonus points for talking about Wasm

#ff

shortridge, 8 months ago to random

love prepping a keynote where I have a slide that just says

BRAINS

🧟

hazelweakly, 8 months ago to random

You know, I bet that people with different neurotypes interacting with each other is pretty draining and if you've spent your entire life interacting with people of a different neurotype, you could easily find yourself thinking you're introverted when you're actually not.

shortridge, 9 months ago to nyc

Twitter I can instantly find other humans’ pics of the double rainbow that blessed us in #nyc earlier.

I cannot find any via Mastodon. I tried all the forms of search on here I know. Maybe I am doing something wrong but “how quickly can I find more rainbows” is a very important metric!

shortridge, 9 months ago to iPhone

any leaks on whether the new #iphone will let you disable postprocessing or else has postprocessing that doesn’t make you look like a grainy, microwaved zombie in every lighting condition except perfect golden hour light?