It has now been twelve years since the paper "The most dangerous code in the world: validating SSL certificates in non-browser software" was published.

My blog post about it from back then: daniel.haxx.se/blog/2012/10/25…

It'd be interesting to know how much HTTPS clients are still skipping cert verification in the wild. I bet it is still widespread.

Anthropic released a fascinating new capability today called "Computer Use" - a mode of their Claude 3.5 Sonnet model where it can do things like accept screenshots of a remotely operated computer and send back commands to click on specific coordinates, enter text etc

My notes on what I've figured out so far: simonwillison.net/2024/Oct/22/…

Initial explorations of Anthropic’s new Computer Use capability

Two big announcements from Anthropic today: a new Claude 3.5 Sonnet model and a new API mode that they are calling computer use. (They also pre-announced 3.5 Haiku, but that’s …

^{simonwillison.net}

Some more work on testing congestion control in picoquic on high speed loopback links. I found out that the data rate for a 10GB download using Cubic was less than half the data rate of a 1GB download. The issue: ACK Frequency was setting a 1ms delay and a very large ACK Gap, causing feedback frequency to drop and Cubic to slow. The fix: cap the ack gap to 32. More in the blog.

privateoctopus.com/2024/10/23/…

@bagder

Sorry for "@"

Is it possible for `libcurl` to match the parallel http download performance of

`curl --parallel` with globbing?

stackoverflow.com/questions/79…

How to get peformance out of libcurl similar to `curl --parallel` with globbing

basically I want to do this: curl --retry 10 --retry-all-errors --remote-name-all --parallel --parallel-max 150 "https://api.pwnedpasswords.com/range/000{0,1,2,3}{0,1,2,3,4,5,6,7,8,9,A,B,C,D,E...

^{Stack Overflow}

Three years ago I blogged about #OpenSSL's decision to deliberately block #QUIC progress in the world: daniel.haxx.se/blog/2021/10/25…

Which is timely with the OpenSSL 3.4.0 release announced just days ago: that still does not offer a working (and performant) QUIC API. (yes, there is an attempt there but it's not production grade)

It's almost like the writing was on the wall already a long time ago.

#WenkoffRetro No. 163 🎶❤️
#retromusic

Klidný pátek u sedmdesátek!🤞

25.10.1950 se narodil Christopher Ward Norman, 🇬🇧 glam rockový zpěvák a hudebník.

Chris byl především tváří kapely Smokie, kde zpíval v letech 1964-1986. Mimo ni zaujal v r. 1978 duetem Stumblin' In se Suzy Quatro a v r. 1986 vydanou deskou Some Hearts Are Diamonds s hitem Midnight Lady.

Smokie i Chris dodnes vydávají každý svá alba. Pro mě ale ty největší ♥️ovky dál zůstávají v 70s a ujíždím na nich dodnes. Ujeď si 2x i ty.😉👇

Co je Pairdrop a jak funguje na Oscloud?

arch-linux.cz/co-je-pairdrop-a…

#Aplikace #pairdrop

UnitedHealth has confirmed for the first time that over 100 million people had their personal information and healthcare data stolen in the Change Healthcare ransomware attack, marking this as the largest healthcare data breach in recent years.

bleepingcomputer.com/news/secu…

Before you tell a disabled person that they need to “just make the healthcare worker mask”… please understand the imbalance of power that exists in hospital settings.

We can’t “just make them” do anything. If they refuse -our options are to take the risk or go without care.

There’s little recourse when a HCW refuses to mask - there’s almost NO recourse that exists in the moment.

You can file a complaint after the fact - but if the care you require is urgent or an emergency - that won’t help you

Imagine you’re taken to the emergency room with an urgent (or life threatening) issue. The doctor comes in and refuses to wear a mask.

Do you walk out? Throw a fit? These are not good options

Even if you manage to keep your composure and strongly advocate for them to reconsider - the longer you argue the more potential virus you’re being exposed to.

The more you “annoy” the staff - the greater the odds of retaliation or reduction in care.

This isn’t like telling a friend or a colleague to mask. The dynamic is completely different.

HCWs have the ability to help you or harm you. You want them on your side.

A note in your chart indicating you’re anxious, difficult, non compliant etc can follow you around and impact all your care going forward. Getting charts corrected and notes removed is a time consuming and difficult process

As a result many patients don’t push the issue. They delay medical care as long as possible and then just cross their fingers they will get a compassionate HCW when they do finally go.

These delays can also cause harm - and shouldn’t be necessary.

Hospitals have never been terribly safe places. They’re where the strongest and most resistant bugs thrive. They’re also where the sickest and most vulnerable people are.

At least before Covid it felt like hospitals were TRYING to prevent infection.

These days it’s as though any amount of infection control is seen as weak. People are actually bragging about how many times they’ve had Covid or about the risks they’re taking with their health. Staff aren’t masking even around babies, cancer & transplant patients

We have to change course. Our healthcare systems could barely handle the amount of chronic illness they were facing before Covid - they certainly can’t handle the constant influx of disabled patients and staff that Covid is causing.

This is why we need mandatory masks in healthcare settings. The responsibility to keep themselves and others safe should NOT fall on the vulnerable patient.

Many are unable to advocate for themselves - and others are unable to mask.

Mandatory masking protects everyone

Lastly - the solution to this problem should not be “don’t go to the hospital”. It’s not right to make ANY patient feel like they’re wrong for seeking care. Like they’ve somehow “failed” if they end up with Covid.

Until you’re facing a life threatening emergency or serious health challenges - you can’t possibly know what you would do.

Is it scary to go to the hospital right now? Of course. Is it also necessary? Absolutely.

Patients should never be blamed for needing care or for being unable to get HCWs to mask. The system is failing us - we aren’t failing each other.

If you need the hospital - you have all my love & support. It’s impossibly hard - and I will keep fighting to make it better.

As long as hospitals refuse to do what’s right to prevent COVID (hello clean air & mandatory masking)… the onus is unfairly on the PATIENT to avoid COVID.

My guide offers tips to reduce your risk of hospital acquired COVID (and other HAIs)

disabledginger.com/p/how-to-st…

#CovidIsAirborne #CovidCautious #CovidIsNotOver #CleanAir #WearaMask #Disability #LongCovid #Ableism #Denial #CleanAir #Pandemic #PublicHealth #InfectionControl #Eugenics #SafeHealthcare #N95 #Respirators #MasksWork #MaskUp #Spoonie #Discrimination #Dysautonomia #mecfs #pots #mcas #communitycare #wearamask #chronicillness #keepmasksinhealthcare #MaskBans #NoMaskBans

How to Stay Covid Safe When in Hospital

A guide to navigating the risk of hospital acquired Covid - as well as how to manage overall risk of nosocomial infections and hospital derived complications.

^{Broadwaybabyto (The Disabled Ginger)}

¿Nunca han pensado "se me antoja un buen #mezcal pero sólo tengo $20 MXN y son las 2 de la tarde"?

Bueno, en #Morelia tienen una respuesta clara:

Just posted on Six Colors: Use a cloned drive to recover from Mac failures

sixcolors.com/post/2024/10/use…

Use a cloned drive to recover from Mac failures

Last month, my Mac Studio stopped working. It went quickly from a bizarre error message to the inability to install software updates to a failure to reinstall the base operating system to a trip to…

^{Six Colors}

standupstandup.tech/

A fundraising drive for the US Election Protection Hotline.

Not a US resident or US citizen? Hate all the major parties? No problem! You can donate!

Then watch 8 minutes of nerd jokes about open source software and how programming skews your brain, and none about politics.

Fellow Canadians, would you like to sign up to be a FluWatcher and help the government track covid and flu cases?

They send out one short survey each week that asks if you’ve had symptoms like a fever or cough. It takes me less than 30 seconds to fill out: cnphi.canada.ca/fluWatcher/reg…

#Canada #Ontario #Quebec #Saskatchewan #BritishColumbia #PrinceEdwardIsland #Yukon #Nunavut #Alberta #Manitoba #NewBrunswick #NovaScotia #NewfoundlandAndLabrador #NorthwestTerritories #Covid #Influenza

Reaper made Easy Q&A coming up this Saturday 26 Oct.
As the end of October sneaks up like a cobra,
this Saturday brings Q&A, Jen might even stay sober.
Either way, Jenny K, Shay and muggins here will be there,
Helping peeps with the Reaps, til I'm too hungry to care.

Usual start time, 8PM UK, 3PM Eastern, or the equivalent time wherever you lay your hat.
TeamTalk details, a calendar invite and a way to send us something to play are all over at reaperteacher.com. The part where we listen to things people have shared and give them objective feedback has been getting popular, so if you've got something you want our take on, don't snooze on getting that uploaded, we can only play a couple things each month and most of the time, it's gonna be first come first serve.
As always, any amount of experience is welcome, and we do our best to make sure newcomers get their questions answered.

See ya there,

scott and Jen

“our lead shares our philosophy that technology should serve the user, not the reverse

this is why they focus on blockchains, a technology basically always used at the expense of its users”

#Bluesky

This is why I have been trying to warn about #BlueSky.

BlueSky has just been partially bought by a cryptocurrency company "Blockchain Capital" and appointed a blockchain / cryptocurrency expert to their board:

bsky.social/about/blog/10-24-2…

The board member is a bitcoin researcher involved with NFT analytics.

BlueSky describe the tie-up with Blockchain Capital as a "natural partnership" and says the blockchain company has "a uniquely deep understanding of our decentralized foundation".

(via @jwz)

Bluesky Announces Series A to Grow Network of 13M+ Users - Bluesky

Bluesky now exceeds 13 million users, the AT Protocol developer ecosystem continues to grow, and we’ve shipped highly requested features like direct messages and video.

^Bluesky

Search for the FISH pt. 4523

#unix_surrealism #technomage #cirno #9front #openbsd

Vyzera to tak, ze populacia SR ma vcelku problem¹ vyhodnotit, co im skodi viacej:

- mafiani vo vlade
- zvysenie DPH o 3%
- alkohol
- tabak
- marihuana
- nejaki bratislavcania debatujuci pri kave
- zopar qeeer manzelskych parov
- …

via @aktuality_bot

rockosbasilisk.com/@aktuality_…

¹ alebo su skratka az taki prajni, ze obetuju seba a rodinu kludne aj mafianom

This makes me want to scream and pull out my hair.

"Reduce your vocabulary by 10-20% to prove you're a human."

Ballots damaged in USPS mailbox fire in Phoenix

nbcnews.com/politics/2024-elec…

Ballots damaged in USPS mailbox fire in Phoenix

A blue U.S. Postal Service mailbox in Phoenix, Arizona, was set on fire Thursday morning, damaging approximately 20 ballots and other pieces of mail.

^{Jane C. Timm (NBC News)}

#AndroidAppRain at apt.izzysoft.de/fdroid today brings you 16 updated and 1 added apps:

* Paranoid's Pal - Privacy Lock: lets you quickly lock your device and safeguard your data

Enjoy your #free #Android #apps with the #IzzyOnDroid repo

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

Apple created a Virtual Research Environment to allow public access to testing the security of its Private Cloud Compute system, and released the source code for some "key components" to help researchers analyze the privacy and safety features on the architecture.

bleepingcomputer.com/news/appl…

#IzzyOnDroid adopted the Contributor Covenant (see contributor-covenant.org/). So while in the past we suggested you to add our badge or shield to your Readmes when your app became available at the #IzzyOnDroid repo, now it's time for us to adopt a shield. The first of our repositories already have it in their Readmes, the others will follow soon, so you can easily find it: codeberg.org/IzzyOnDroid/.prof…

#codeOfConduct #contributorCovenant

.profile/CODE_OF_CONDUCT.md at master

.profile - Profile page for IzzyOnDroid

^Codeberg.org

Ustup, Jamesi Bonde, přicházejí Clever a Smart 😎😎

Pracovat na těchhle španělských kultovkách je radost.

První díl je venku, druhý v tisku, třetí rozpracovaný, čtvrtý podepsaný.

Těšte se na hybridní hantecíček, zpotvořenou němčinu, slovní hříčky vázané na obraz (dík, komikse ❤️) a originální citoslovce od mého manžela, protože já nikdy nevím, co to dělá za zvuk, když někdo třeba maluje barvou zeď. @stepan ví, že "šmrdli šmrdli". 🤷‍♀️