@steely_glint@chaos.social
@steely_glint@chaos.social avatar

steely_glint

@steely_glint@chaos.social

I write secure opensource niche realtime social apps
and provide End-to-End IoT security for +2bn endpoints using #webRTC.
I read sci-fi, watch films and try to learn new things.
I Co-host of the “Distributed Future” podcast where we try and figure out what the future at the intersection of tech and society looks like by asking people who might know and listening to what they say.
I play the flute badly.
Find me in Berlin, Manchester, Nowhere
He/Him

This profile is from a federated server and may be incomplete. Browse more on the original instance.

th, to random
@th@v.st avatar

We’ve put the Golden Gate Bridge behind our rudder and will be off line for the next month as we cross the Pacific.

steely_glint,
@steely_glint@chaos.social avatar

@th Is your route/location public ? It would be fun to follow it on a map...

penwing, to random
@penwing@wandering.shop avatar

Arghhh! All these adverts interrupting the NASA Eclipse Livestream...

steely_glint,
@steely_glint@chaos.social avatar

@penwing So far this one (run by an ex-boss of mine)

https://www.youtube.com/watch?v=wEINHJSriow

has been both ad and commentary free...

steely_glint,
@steely_glint@chaos.social avatar

@penwing Occasional cloud though - from AR I think.

steely_glint, to random
@steely_glint@chaos.social avatar

Having one of those days when the getting the newfangled thing (jq) to do what I want is too hard. So I'm falling back the old faithful (awk).

Is this a sign of old age ?

steely_glint,
@steely_glint@chaos.social avatar

@bert_hubert Ha, that's good to know. I can still write xpath and xslt - but jq has me lost far too often.

steely_glint,
@steely_glint@chaos.social avatar

@wader I think I struggle to tell the difference between sequences and arrays.

steely_glint,
@steely_glint@chaos.social avatar

@wader I'm pretty happy with lambda arguments - I think I'm mentally translating from xslt/xpath and it doesn't quite match.

lilithsaintcrow, to random
@lilithsaintcrow@raggedfeathers.com avatar

So…if I were to learn a programming language (I think I once knew BASIC in fourth grade, waaaay back before Al Gore's Internet), which one would my hacker pals suggest?

steely_glint,
@steely_glint@chaos.social avatar

@lilithsaintcrow I think if you want to get things done, Python is a good choice.

If you want to learn about the 'art' of programming you might want to choose a more structured language - like Kotlin.

If you want to mess with webpages and see quick results then perhaps JavaScript ?

mw1cgg, to random
@mw1cgg@mastodon.radio avatar

FFS. I can't even look at tumeric without turning my hands all Simpson.

steely_glint,
@steely_glint@chaos.social avatar

@mw1cgg rub some oil on your fingers first. They still go yellow, but it comes off in the washing up.

steely_glint, to random
@steely_glint@chaos.social avatar

I'm somewhat hesitant to follow the advice
"run xz -V to check your system"
I mean

a) If the box is compromised you probably shouldn't ssh into it - so best do this from the console only ?
b) Is it really good practice to run a binary you think may be compromised ?

Or am I being paranoid ?

https://www.tenable.com/blog/frequently-asked-questions-cve-2024-3094-supply-chain-backdoor-in-xz-utils for example...

steely_glint, to Twitch
@steely_glint@chaos.social avatar

Anyone used whip with twitch ?

I'm getting a http 400 back with the message :

"failed to handle offer: failed to create broadcast session: h264 codec is missing in the SDP offer"

But there is an
a=rtpmap:112 H264/90000
line - so ?!?!

Help ?

@danjenkins ?

steely_glint,
@steely_glint@chaos.social avatar

@danjenkins
Oh, excellent. Thanks.

Turns out you can send High Profile h264 - and twitch is happy, but you can't say that you plan to do that.

Like I said at @commcon last year, creatively lying about the codec profile is a necessity .

Sigh.

(Don't we all love SDP).

steely_glint,
@steely_glint@chaos.social avatar

@f09fa681 @danjenkins @commcon Do you mean a rant ?

https://webrtchacks.com/tim-rant/

🙂

steely_glint, to random
@steely_glint@chaos.social avatar

I've just updated https://github.com/pipe/whipi

Use a Raspi to send video to a Whip service - like Galene, millicast, twitch and others.

Thanks to @danjenkins and @lminiero for the help

steely_glint, to random
@steely_glint@chaos.social avatar

You know that feeling that the threat modelling you are doing is paranoid - I mean no big co would ever offer a VPN for the purpose of intercepting their competitors.

Oh, right, they would, Meta did.

https://storage.courtlistener.com/recap/gov.uscourts.cand.369872/gov.uscourts.cand.369872.735.0.pdf

This makes 's DTLS-SRTP requirement seem positively prescient.

steely_glint,
@steely_glint@chaos.social avatar

@f09fa681 Well, true, but there are ways to detect/block that.

For example at pi.pe we won't accept connections from fingerprints we don't already know from an out-of-band introduction.

steely_glint,
@steely_glint@chaos.social avatar

@f09fa681 One way to think of pi.pe is HPKP for webRTC - but with an out-of-band introduction mechanism and a verifiable address space.

penwing, to random
@penwing@wandering.shop avatar

Oooh.... Sat 6th April I could do Luca (the oh-very-much-not-a-queer-film-the-creators-said-so film, not a guy) and Speed (the Keanu Reeves film, not the drug) at the local cinema...

And then Sunday will be Mika...

steely_glint,
@steely_glint@chaos.social avatar

@penwing Ah 'Speed' the runner up in the "best bus in a supporting role" category 1994 ;-)

steely_glint,
@steely_glint@chaos.social avatar

@penwing I'm still slightly shocked you didn't guess.

https://en.wikipedia.org/wiki/The_Adventures_of_Priscilla,_Queen_of_the_Desert also came out in 1994 ;-)

steely_glint,
@steely_glint@chaos.social avatar

@penwing Indeed, they don't feel like the same era. I wonder how badly each has dated.

steely_glint,
@steely_glint@chaos.social avatar

@penwing which tells you that LA's public transport hasn't changed in 30 years ;-)

jenniferplusplus, to random
@jenniferplusplus@hachyderm.io avatar

Okay, sure, let's do this. "nomadic identity"

  1. No one has ever even come close to explaining how using a did: uri is supposed to work
  2. Even assuming it works, no one can explain how it's different than oidc
  3. Even assuming it was different, what happens when I need to find a responsible adult to come collect an asshole in my mentions?
steely_glint,
@steely_glint@chaos.social avatar

@mikedev Have you looked at the previous attempt to do this - the .tel domain ? I don't recall exactly why it failed (obsession with e164s I think) - but there may be lessons there.

steely_glint, to random
@steely_glint@chaos.social avatar

High time for a break, I just tried to bite my iPhone and put a hobnob on to charge.

steely_glint,
@steely_glint@chaos.social avatar

@sammachin I wonder if one could infuse something into stroopwaffels so they warmed on an inductive charger?

steely_glint, to random
@steely_glint@chaos.social avatar

Reading @Patricia 's recent small rant on corporate security made me think about how lucky we were with the people we got to talk on https://distributedfutu.re .

I'm very proud of what we did there, even if it didn't fit the commercial podcast model.

Have a listen to literally any episode and I promise you will learn something - every one contained an 'aah haa' moment for me.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • mdbf
  • ngwrru68w68
  • modclub
  • magazineikmin
  • thenastyranch
  • rosin
  • khanakhh
  • InstantRegret
  • Youngstown
  • slotface
  • Durango
  • kavyap
  • DreamBathrooms
  • JUstTest
  • GTA5RPClips
  • tacticalgear
  • normalnudes
  • tester
  • osvaldo12
  • everett
  • cubers
  • ethstaker
  • anitta
  • Leos
  • cisconetworking
  • provamag3
  • lostlight
  • All magazines
    •