Show newer

"...I recommend this job to anyone who is looking for a dynamic, fast-paced work environment."

OK listen. Doll.

NO ONE is looking for a dynamic, fast-paced work environment in 2024. We are exhausted. Get in your DeLorean and take that attitude back to 1984.

Given chatGPT and the other AI nonsense is the equivalent of an enormous predictive text box. How does anybody know that “summarising academic papers” isn’t just making shit up?

oh snap, i accidentally started spreading misinfo, and someone else is also spreading misinfo, so let’s clear the air here:

vultr has not changed anything recently, and they do not claim full pepetual commercial rights over hosted content.

this is a post made to drum up bullshit over terms that existed since 2022, and did not pertain to the content you hosted on their VPSes. for reference, the account that made this post was made 5 days ago.

i found this out because when i went to send an email to close my account, they sent this back, which clarified that no, this information is bogus. and that, regardless, the lines are being removed from the ToS to clarify things.

https://www.reddit.com/r/selfhosted/comments/1bouuv7/warning_vultr_a_major_cloud_provider_is_now/

@DrALJONES These articles are missing a zero on the casualties. The Palestinian health ministry puts out only hospital confirmed deaths. All the hospitals are now part of the rubble and so is the record keeping system. The low numbers make it look like the US backed abuses and atrocities are not so bad.

"Crucially, the state has increasingly become a commissioner and regulator of services, rather than a provider – a hollowed-out state rather than a smaller state."

bylinetimes.com/2024/03/27/out

Cancelled my recurring donation to the Wikimedia Foundation. As others have pointed out, they're rolling in money, and I've come to dislike their hands-off editorial stance, with editors deleting content by and about women, their continued publishing of the exact location of Aboriginal cultural sites leading to damage by trespassers, not to mention their idly standing by while French Wikipedia deadnames trans people. They can go away and think about their moral high ground without my support.

One way (but not the only way) to measure the mental health crisis that has beset Britain is to try and calculate its cost(s).

The Centre for Mental Health has tried to do that & come up with a figure of £300bn.... which they think is a likely underestimate.

For individuals the coats are not measure in money but in pain, lost social opportunities & a degradation of wellbeing. Putting an aggregated cost on this does, however, the scale of the issue.

#mentalhealth
theguardian.com/society/2024/m

In 2025, the top 1% will get a tax cut of more than $60,000.

Meanwhile, the bottom 60% will see a tax cut of less than $500.

This is why we called the Trump tax cuts a giveaway to the super-rich.

Because that’s exactly what they were.

@pleaseclap @BlauesLicht

I have said, and I've printed a sticker in case you don't hear me say it:

Defend Dangerous Computing

I don't know if I've ever said why.

VS Code + Github hold a monopoly on the software development process like hasn't been seen since before the days of GNU. (You can @ me about GNU later, that's not the point right now.) Developers have been lured to this end by very nice to use tools, that are "free." These tools are both owned by Microsoft who can integrate them together as tightly as anything. The average, I would guess, developer experience is completely tied up in VS Code and Github.

Many of us don't use either, we can get back to that point later.

Now that we're all settled in to the default MS workflow, let's introduce a couple more technologies that seem obvious for security: Trusted Computing, SBOM and Software Identification.

There is a movement to secure the open source supply chain. I'm intimately familiar, and have been working in that space for a few years now. There are others more involved and smarter than me, look them up. A large open source software ecosystem has a broad attack surface, and this is making some people nervous. With something greater than 80% of enterprise software comprising of open source components, there are those in the security community who are nervous about the potential for malicious code to be introduced somewhere within this vast, porous field. In order to answer to this threat, new elements of control are being explored. Most of these seem benign on their own.

Having a bill of materials for a piece of software is fine. Having a reasonable assurance that the software you are running is the software that you think you are running is fine. Signing packages, libraries, SBOMs and various attestations is also fine, probably even good.

VS Code and Github are already starting work to make providing signed SBOM and attestations seamless for developers. Additional work being proposed by CISA aims to make it easier to identify software packages, and Microsoft will no doubt provide free, robust tools to make this simple for developers as well. No doubt, these tools will integrate seamlessly between Code and Github with little to no effort. We have an open source code ecosystem we can trust.

Did somebody say Trust? Let's add Trusted Computing. Without getting way into implementation specifics, Trusted Computing (and it's ilk) are designed to ensure that only the software that the hardware manufacturer deems "safe" may be run. Combined with secure software identification, SBOMs and trusted certificates, Trusted Computing we have an impenetrable fortress within which approved software may be safely run. Right?

"Safe" is not necessarily determined by the user of the system, but by the manufacturer, by regulators, by law. With a hegemony in place to ensure that software is identified, signed and approved, and hardware will only run approved software, this is looking pretty sweet for the monopolists - all with the blessing of regulators to give real teeth to any punishment for violation. CFAA gets even more powerful, no?

By willingly leaning into the VS Code + Github monopoly, developers are cutting a clear path to domination in exchange for "free", convenient tooling. These same folks might say of Alphabet or Meta, "If you're not paying, you're the product." Why would this be any different for corporate development tools?

This story gets even spookier when you add browser monopoly, cloud monopoly, what have you. If you don't like the word "monopoly", try "monoculture" and see if that makes you feel any better.

So, I say fuck safe (I work in cybersecurity, the irony is not lost on me), give me Dangerous Computing. Give me keen tools that I control that, yes, I might be able to cut myself on. Give me weapons, or get out of my why while I build my own.

DEFEND DANGEROUS COMPUTING

People who can comfortably live off 30% of their income cluelessly explaining savings to people who can barely live off 100% of theirs is a phenomenon I encounter way too often.

YOU'RE NOT BETTER AT BUDGETING YOU JUST HAVE MORE MONEY.

Look like one group is doing well out of the cost of living (enforced poverty) crisis & the financial plight of local councils (now often taking a zero tolerance approach to outstanding payments)...

Yup, the Bailiffs are have a good time (and of course, the bosses are paying themselves accordingly.

Yet one more symptom of a country in which callousness has been normalised & poverty is increasingly violently punished.

#poverty #localgovernment #debt

opendemocracy.net/en/dark-mone

Millenials having "little to no loyalty in the workplace" is a sign of *progress*, not concern, you fucking deliberately obtuse coercive capitalist fucks.

Repost this if Trans people are welcome and safe with you.

Britain's poor have been the victims of fifteen years of Tory austerity & poor economic management.

But you don't have to believe their critics on this, as Tom Clark sets out here (with links) the state's own data show conclusively the effect of shredding the safety net for the vulnerable & poor.

We have a callous govt. that has wrecked this country for so many; now no-one can now claim they were unaware.

Will Keir Starmer act on this?

#austerity #poverty #politics

theguardian.com/commentisfree/

Show older
Green Plenty

This is the companion community to the Green Plenty substack