@asmodai@mastodon.social cover
@asmodai@mastodon.social avatar

asmodai

@asmodai@mastodon.social

Professional problem solver; DevOps; buddhist, dreamer and sometimes thinker

You cannot solve social problems with technology.

We are drowning in information, while starving for wisdom.
🇪🇺🇳🇱

This profile is from a federated server and may be incomplete. View on remote instance

mjg59 , to Random stuff
@mjg59@nondeterministic.computer avatar

Amazingly, https://github.com/mjg59/linux/tree/restrict_path_traversal actually seems to roughly work as expected do I attempt to upstream or not

asmodai ,
@asmodai@mastodon.social avatar

@mjg59 Looking quickly at the code, so that would apply for all path resolution doing something like cat ~/../../etc/shadow, right? I doubt anyone would ever enable this on a normal system, so why not send it upstream?

asmodai ,
@asmodai@mastodon.social avatar

@sten @mjg59 Ah, sorry, wasn't quite familiar with prctl(). Yeah, that's even more granular than I initially assumed.

asmodai , to Random stuff
@asmodai@mastodon.social avatar

Small project I just created that I name "ethical browsing"

Essentially I want to offer some filter lists to curate search engine results to skip websites I consider to be unethical. This includes, but is not limited to, SEO abuse, exploitative practices for writers, generative AI articles, and so on.

My main motivation was to boost signal to noise ratio and reclaim our valuable time.

https://github.com/ashemedai/ethical-browsing

encthenet , to Random stuff
@encthenet@flyovercountry.social avatar

@mwl how much longer till RYOMS is released? I need to add DKIM orSPF correctly to get mail to GMail working.

Looks like GMail "trusts" the domain name that is sent in the hello (or envelope) instead of doing reverse resolution, or the domain in the from address.

I think I fixed it now, but would be nice to see what I'm possibly doing wrong.

asmodai ,
@asmodai@mastodon.social avatar

@mwl @encthenet And I just learnt of this accursed addition to that: https://support.google.com/a/answer/10911320?hl=en

asmodai ,
@asmodai@mastodon.social avatar

@encthenet @mwl I guess the submission of your logo SVG to a CA to get a VMC. I think we found their new cash cow after their web certs income went away thanks to LetsEncrypt.

asmodai ,
@asmodai@mastodon.social avatar

@mwl @encthenet Even that might be overly gracious. :D

asmodai , to Random stuff
@asmodai@mastodon.social avatar
asmodai , to Random stuff
@asmodai@mastodon.social avatar

Fucking finally they are asking the judge to hold Trump in criminal contempt.

GossiTheDog , to Random stuff
@GossiTheDog@cyberplace.social avatar

A day after announcing he was cutting 10% of Tesla’s staff, Tesla are looking at the biggest pay deal in corporate American history for Elon Musk https://www.bbc.com/news/articles/cqqndqndpq5o

asmodai ,
@asmodai@mastodon.social avatar

@GossiTheDog Don't they get US federal subsidies?

bobvodka , to Random stuff
@bobvodka@mastodon.gamedev.place avatar

Using the UE5.4 preview.

Discovered a bug, which has been reported with a pretty comprehensive repo steps because I'm a good user 👍

Bug does require constantly closing and reopening a sequence however so slightly annoying to work around.

How long until I snap and try to fix it myself 😅

asmodai ,
@asmodai@mastodon.social avatar

@bobvodka Well, if it's in your common flow, yeah, that will get tiring real quick.

asmodai , to Random stuff
@asmodai@mastodon.social avatar

Question for the module writers:

If a parameter (param1) is required in both present and absent state and I already have a required_if set up, do I add required=True to the parameter or add this parameter to the required_if as well? From the explicit side of things, this reads better, especially with a module with many parameters:

required_if = [
("state", "present", ("param1", "param2")),
("state", "absent", ("param1"))
]

jani , to Random stuff
@jani@fosstodon.org avatar

Finland is raising the VAT to 25.5%. I'll dodge the politics, and wonder if anyone considered the impact on software everywhere. There's bound to be tons of (embedded) systems that have an int instead of a float for the percentage.

The best take I've seen so far is that going forward Microsoft Excel is going to interpret the VAT in Finland to be May 25th.

asmodai ,
@asmodai@mastodon.social avatar
asmodai , to Random stuff
@asmodai@mastodon.social avatar

Why Proposing Tip Jars For Mainstream Videogames Is Either Stupid Or Malicious (The Jimquisition)

https://www.youtube.com/watch?v=g-g1lyl1J8s

My non-American cultural point of view: fuck tipping, pay decent wages and limit C-level payouts.

asmodai , to Random stuff
@asmodai@mastodon.social avatar

deep sigh

Acrobat Reader now also has an "AI Assistant" button.

Getting really tired of every single fucking company shoving an "AI something" into their products.

lritter , to Random stuff
@lritter@mastodon.gamedev.place avatar
asmodai ,
@asmodai@mastodon.social avatar

@lritter It's missing a dedicated website and a logo. :D

dangoodin , to Random stuff
@dangoodin@infosec.exchange avatar

AWS and Google Cloud are vulnerable to an attack that can expose passwords, secret keys, and other sensitive data, researchers at Orca Security say. They are calling the attack LeakyCLI, because it targets the services' command line interface when they process certain commands. Last year, Microsoft Azure fixed what Orca says was the "exact same vulnerability," which had a severity rating of 8.6.

Both Amazon and Google say the behavior described by Orca is expected based on current design.

I'm curious to know what people with experience in cloud security think. Is LeakyCLI something Amazon and Google should fix? Is it something their users should be concerned about? Is it expected behavior? Thanks for any help or perspective you can provide.

https://orca.security/resources/blog/leakycli-aws-google-cloud-command-line-tools-can-expose-sensitive-credentials-build-logs/

asmodai ,
@asmodai@mastodon.social avatar

@dangoodin As someone who deploys to these services, I am really wondering why they are echoing back these details in the first place.

I would not consider it expected behaviour.

jpmens , to Random stuff
@jpmens@mastodon.social avatar

I'm desperate: chat gpt (I promise I'll wash out my mouth as soon as I finish typing this) said under Debian 12 I should configure GNUPG_EXTRA_SOCKET in the [Service]'s Environment stanza and all would be good.

I did, and it didn't work.

A strings on /usr/bin/gpg did't show me that string, so I asked the goog.

Gurls, I found a query with zero hits!

image/png

asmodai ,
@asmodai@mastodon.social avatar

@jpmens Looks like a container-related env var:
https://github.com/search?q=GNUPG_EXTRA_SOCKET&type=code

Unless they all blindly followed the same advice. 😂

dhoe , to Random stuff
@dhoe@sigmoid.social avatar

Outside of your bubble, AI art is already moving people to tears.

asmodai ,
@asmodai@mastodon.social avatar

@dhoe Ah yes, six-fingered Jesus hold me.

dotstdy , to Random stuff
@dotstdy@mastodon.social avatar

Oh no :')

ALT
  • Reply
  • Expand (6)
  • Collapse (6)
  • Loading...
  • asmodai ,
    @asmodai@mastodon.social avatar

    @dotstdy Well, I am fucked then.

    asmodai ,
    @asmodai@mastodon.social avatar

    @dotstdy I was being thoroughly tongue in cheek here though. If my not completing higher education said something about my character for work, I'd not have had my career so far. 😅

    It did give me perspective to be more open to others who also didn't complete their education. Lots of employers are missing out on great people simply because of the focus on ticking a box, but what else is new.

    asmodai ,
    @asmodai@mastodon.social avatar

    @abyrd @dotstdy Oh absolutely agree. I've seen great and horrible people on either side of that divide.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Godot drivers/vulkan/rendering_device_vulkan.cpp tripping all kinds of issues with the AMD Vulkan driver it seems:

    9286 - 1 RID of type "StorageBuffer" was leaked.
    9286 - 1 RID of type "Framebuffer" was leaked.
    9626 - 4 RIDs of type "Texture" were leaked.

    In light of the critical section stuff triggered with the same driver, makes me wonder what's going on with that driver.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Ugh, the amount of VERIFIER STOP 0000000000000210: pid 0x88EC: Critical section not initialized breaks being thrown due to amdvlk64.dll is making this a bit annoying.

    BrodieOnLinux , to Random stuff
    @BrodieOnLinux@linuxrocks.online avatar

    You've seen package managers
    You've seen piping curl into bash
    But have you ever seen sourcing a script from curl every time you launch the shell

    asmodai ,
    @asmodai@mastodon.social avatar
    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Seeing those Intel Core 13th and 14th Gen CPU (Raptor Lake and Raptor Lake Refresh) instability issues being called out in Nvidia device driver release notes indicates the seriousness.

    Oh, wow, RAD Game Tools, sorry, Epic Games Tools, is also calling it out: https://www.radgametools.com/oodleintel.htm

    Although, to be fair to Intel, it seems the culprits are the motherboards essentially setting an uncapped CPU power limit or similar.

    asmodai OP ,
    @asmodai@mastodon.social avatar

    @pmdj Ah, that definitely changes the story, yes. Then it's squarely in Intel's camp.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    @akien Playing around with Godot 4 now. Do you/we expect all official demos to work with 4 out of the box?

    asmodai OP ,
    @asmodai@mastodon.social avatar

    @akien I think I already encountered a bug, should I use that issue for reporting them or use separate issues?

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Ludum Dare website:
    Ludum Dare 55 — April 12th - 14th, 2024

    Ldjam website:
    Saturday April 13th to Tuesday April 16th, 2024

    Someone might want to fix the main website to be accurate. And fix the next event, which still points to 51.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Yeah, fuck Substack.

    Again, my email address is added to someone's shitty newsletter and I never signed up for this. But they also conveniently don't really have a proper reporting mechanism in place via the web. You can only report via their fucking app.

    lritter , to Random stuff
    @lritter@mastodon.gamedev.place avatar

    what if terminal REPL but running in lynx? how javascriptable is lynx anyway?

    asmodai ,
    @asmodai@mastodon.social avatar

    @lritter Unless it changed in recent years, lynx never did JavaScript. Links, w3m and such do.

    asmodai ,
    @asmodai@mastodon.social avatar

    @lritter Been a while since I looked at which ones are properly maintained, but links, elinks, w3m generally did some CSS and graphics support along with JavaScript via SpiderMonkey.

    CoolSWEng , to Random stuff
    @CoolSWEng@mastodon.acm.org avatar

    In the past year I've issued more than 10,000 generative AI prompts, covering both simple and complex programming and system administration tasks. Based on this experience, my just-published IEEE Software column describes how programmers can effectively use generative AI: the good, the bad, and the ugly dimensions of this striking technology's offerings.

    “Pair Programming With Generative AI”

    https://www.computer.org/csdl/api/v1/periodical/mags/so/2024/03/10493185/1VTveFojex2/download-article/pdf

    asmodai ,
    @asmodai@mastodon.social avatar

    @CoolSWEng Thanks for writing, Diomidis. That definitely lines up with my experiences looking at people of various skill levels around me who are using it.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Russia: Putin’s propaganda machine - Manipulating the people

    https://www.youtube.com/watch?v=TaDxSo7oVuE

    asmodai , to Game Development
    @asmodai@mastodon.social avatar
    asmodai , to Cats
    @asmodai@mastodon.social avatar

    Not my cat restarting two of my in-progress Balatro runs by standing on the R-key long enough.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    AMD Zen 5 Execution Engine Leaked, Features True 512-bit FPU

    Giving "Zen 5" a 512-bit FPU meant that AMD also had to scale up the ancillaries [..]. The L1 Data cache has been doubled in bandwidth, and increased in size by 50%. The L1D is now 48 KB in size [..]. FPU MADD latency has been reduced by 1 cycle. Besides the FPU, AMD also increased the number of Integer execution pipes to 10, from 8 on "Zen 4."

    https://www.techpowerup.com/321201/amd-zen-5-execution-engine-leaked-features-true-512-bit-fpu

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Alanah Pearce in conversation with Neil Newbon | VA 101

    https://www.youtube.com/watch?v=twWgo-wH6e8

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Yeah, good luck guessing today's FromSoftware heardle within 3-4 tries.

    https://soyeardle.glitch.me/

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Russia is trying to sabotage European railways, warns Prague

    Russia has made “thousands” of attempts to interfere with European rail networks in a campaign to destabilise the EU and sabotage critical infrastructure, the Czech Republic’s transport minister has said.

    https://www.ft.com/content/f8207823-f5e1-4caf-934d-67c648f807bf

    asmodai , (edited ) to Random stuff
    @asmodai@mastodon.social avatar

    "This report delves into the inner workings of the criminal networks that pose the highest threat to the EU’s security. The report, which features a Europe-wide analysis from the perspective of law enforcement, is a first of its kind. It describes, in detail, how the most threatening criminal networks are organised, which criminal activities they engage in, and how and where they operate."

    https://www.europol.europa.eu/publication-events/main-reports/decoding-eus-most-threatening-criminal-networks

    Report: https://www.europol.europa.eu/cms/sites/default/files/documents/Europol%20report%20on%20Decoding%20the%20EU-s%20most%20threatening%20criminal%20networks.pdf

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    It's so silly that the Android app has a reading list feature, but you cannot access this information from the normal website's interface at all.

    rysiek , to Random stuff
    @rysiek@mstdn.social avatar

    FuckFuckNo. 🤦‍♀️

    I just want a search engine that works. I have zero need for a godawful "AI" hallucinating mansplainer in my results. Just… no.

    Time to move off of DDG. What else is out there?

    Edit: yes, it seems to be for real:
    https://www.reddit.com/r/duckduckgo/comments/1adxgy4/give_duckduckgo_ai_chat_a_spin/

    asmodai ,
    @asmodai@mastodon.social avatar

    @wojciech_space @rail_ @rysiek Can't currently replicate this with uBlock Origin and Privacy Badger active.

    asmodai , to Soulsborne
    @asmodai@mastodon.social avatar

    Bloodborne Cut Content - Underground Library Deleted Lore - Development History

    https://www.youtube.com/watch?v=_ATsaKIA6jA

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    AMD Working To Release MES Documentation & Source Code

    "[..], AMD now says they will be releasing documentation followed by the source code for their Micro-Engine Scheduler (MES) IP block found within Radeon GPUs."

    Note: towards the end of May

    https://www.phoronix.com/news/AMD-MES-Docs-And-Source-Code

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Finland's eastern border to remain shut indefinitely, including boat harbours

    "Spring will provide opportunities to put more pressure on Finland," warned Interior Minister Mari Rantanen (Finns).

    https://yle.fi/a/74-20082123

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    Just received a phishing email on my gmail address.

    Bizarre thing. Apparently created on 28 December 2023 at 14:26 and only after 8479297 seconds did it get delivered.

    Further investigation of the email shows that it has multiple reasons in the email, e.g. for my country it seems to have selected MediaMarkt. However, for other regions it has things like "Portland Center Stage at The Armory", "graduate study" or "returning to Leeds".

    From a technical perspective, quite nifty done.

    asmodai , to Random stuff
    @asmodai@mastodon.social avatar

    So tired of projects depending on GitHub's URL path for version identifying assets.

    If every asset for every release, nightly, weekly, whatever is called blah.zip or blah.tgz it is a pain in the arse to differentiate your downloads. Embed your version string in your generated assets, folks.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • supersentai
  • WatchParties
  • pixo
  • jeremy
  • Lexington
  • cragsand
  • mead
  • RetroGamingNetwork
  • MidnightClan
  • neondivide
  • xyz
  • PowerRangers
  • AnarchoCapitalism
  • kamenrider
  • electropalaeography
  • WarhammerFantasy
  • Rutgers
  • Teensy
  • itdept
  • space_engine
  • steinbach
  • learnviet
  • bjj
  • loren
  • AgeRegression
  • khanate
  • mauerstrassenwetten
  • Mordhau
  • All magazines