towerful

joined 2 years ago
[–] towerful 4 points 1 day ago

Likely less informed as well.
Why the hell would homeless people in another country give a shit about another countries politicians which has had 0 impact on their lives

[–] towerful 17 points 3 days ago

IMO, that's the shiniest thing

[–] towerful 3 points 3 days ago

I stumbled across Amaranth a while ago. It's been years since I've done FPGA programming, and I haven't had a reason to get into it again.
But Amaranth seems like a cool paradigm instead of AHDL/VHDL.

https://github.com/amaranth-lang/amaranth

[–] towerful 10 points 3 days ago

I've only found GamersNexus in the past year or so.
They seem to be on point with the whole "not selling out" thing and not "enshittifying" thing.
They have garnered a huge amount of trust from me.
I hope they stick to it. Feels like they will.

[–] towerful 3 points 3 days ago (2 children)

XML is extremely verbose.
Again, requires some other tooling to generate (I feel I can point to JavaScript for an example of XML manipulation)

[–] towerful 3 points 3 days ago (1 children)

I feel I spend more time iterating yaml.
There isn't any tooling that actually helps you write it.

I feel like there is a gap in the market for a solution that uses typescript, typed python or some other type-able scripting language, which then generates the yaml files.
A language that has language servers, intellisense, all the modern dev tools. Schemas are provided as simple type descriptors. And whatever script you write then produces the correct result.
Some sort of framework on top of that to provide an opinionated workflow, and some tooling to lint/validate/produce.
And the result is yaml files which can be checked/diffed against in-place config, and version controlled for consistency.

[–] towerful 2 points 3 days ago

I guess it's like HTML if it tried to also adopt it's own scripting language. Whereas JS interacts with the HTML DOM. Sure, it has quirks, but essentially modified a config.

I've never found a nice way writing YAML with variables and configurability.
Trying to use yaml to natively describe how a yaml config should be produced is broken. It diverges from the underlying schema, and (because it's .yaml) isn't distinguishable from any other yaml.
Things like helm treat yaml as a template. And I don't think language servers & tooling are up to scratch yet (happy to be corrected). So basic yaml formatters shit the bed.

Yaml is a computer readable config file that tries to be human readable, and fails at being actually useful.

Why projects try and make it useful, I will never understand.

I honestly think generating yaml from something like python would be a million times easier.
But then tools like ansible adopt yaml to essentially be a scripting language. As opposed to creating an actually decent solution that uses both python (to generate) and yaml (to apply).
Or whatever language.

[–] towerful 61 points 3 days ago (13 children)

uses yaml for scripting so it's clean and readable.

Eh....

I guess yaml is fine.
I hate the significance of whitespace, and the fact that I cannot find any editor that can auto-format. Which are both related, I guess: there is no way to know a yaml document is actually correctly formatted without knowing the intended schema.

Whereas JSON doesn't have this ambiguity. But JSON has it's own drawbacks.

[–] towerful 2 points 3 days ago (1 children)

Can I just buy a phorus and connect to it?
Do I have to use their app?
If I have to use their app, do I need a phorus account?

[–] towerful 5 points 4 days ago

The researchers say that 41.5% of the attacks fail, 21% lead to account lockouts imposed by protection mechanisms, 17.7% are rejected due to access policy violations (geographic or device compliance), and 10% were protected by MFA.

This leaves 9.7% of cases where the threat actors successfully authenticate to the target account, a notably high success rate.

This actually has nothing to do with the fastHTTP library, other than it happens to be the library they use.

Sounds like a classic brute force attempt, which happened to have a 9.7% success rate.
Whether this is bad config on behalf of the user, or bad config on behalf of Azure isn't really clear.
Regardless, the fault is with Azure for not mitigating this and providing a secure-by-default service.
I can't believe 10% of users deliberately weakened their security settings.

The article does mention MFA fatigue. I guess where so many "type in the code"/"is this you" type prompts resulted in the user just accepting (or worse, accepting by force of habit) to get rid of them.
Unexpected MFA and security alerts should be investigated immediately.

[–] towerful 7 points 4 days ago

I'd rather stub my toe then see such simple mistakes

[–] towerful 18 points 4 days ago (1 children)

If only Britain could be part of the EU

26
let me sleep (imgflip.com)
view more: next ›