mastodon - Link to source

Good morning! Do we have any followers who read Marathi? We're looking to learn more about MARATHI WOMEN WRITERS, in particular those who work in adventure, romance, horror, crime, and other genres that rarely get translated or win awards.

We've got a couple of translators exploring the possibility of doing a Marathi pulp fiction anthology. They have some cool stories lined up. But ALL the authors are men! Seems very hard to find women writing genre fic in this language. Any tips welcome!

Front cover of Marathi magazine MENAKA, 1969 Diwali issue
This entry was edited (1 year ago)

mastodon - Link to source
Making data visualizations accessible: tpgi.com/making-data-visualiza… Great advice on alt text, color, usage, keyboard access, and code. #a11y #UIDesign #webdesign

Making data visualizations accessible - TPGi

Data visualizations aim to make information easier to understand through visual presentation, but they can have specific accessibility implications for people with disabilities.
Ricky Onsman (TPGi)
#a11y #webdesign #uidesign

mastodon - Link to source
The 21st Century Communications and Video Accessibility Act #CVAA marked a milestone in 2010, aiming to bridge the digital divide. Yet, the swift pace of technological evolution has left significant gaps in its coverage, affecting those with visual and auditory disabilities.
By visiting the National Disability Rights Network’s campaign page, you can urge your Congress member to incorporate solutions like #ScribeForMeetings into accessibility standards!
ndrn.salsalabs.org/cvta/index.…
An inclusive digital world graphic, depicting diverse individuals with visual and auditory disabilities using accessible technology, highlighted by symbols of accessibility such as the universal accessibility icon, sound waves, and braille on device screens, set against a backdrop of digital connectivity.
#cvaa #scribeformeetings

mastodon - Link to source

Our iOS app got banned from the Chinese appstore because it is able to influence public opinion or is "Capable of Social Mobilization".

See our blog post for details: monal-im.org/post/00010-ios-ba…

#xmpp #ios #china

iOS app banned from chinese appstore

Some may have predicted it, but now it happened: the chinese government banned Monal from the chinese appstore. Below is the complete email we got from Apple regarding this ban.
Thilo Molitor (Monal)
#xmpp #ios #china

akkoma - Link to source

A really brief #FediBlock:

If you blocked shitposter.club, it now has a related instance shitposter.world which appears to be its successor following technical issues. If you don’t find SPC block-worthy, you can ignore this post.

#FediBlockDetails.


My Fediverse blocklists

Documentation on which Fediverse blocklists I offer, how they are made, their differences, their caveats, and their intended use.
Seirdy’s Home
#FediBlock #fediblockdetails
This entry was edited (1 year ago)

mastodon - Link to source
Almost 10 years ago, in April 2014, I cobbled together a system to build some super-minimal Docker images using musl and BusyBox. I'm sure others were playing with this at the same time; I don't claim to be first at anything. But I think this was before the Docker Alpine images. Anyway, I blogged about it back then. mwcampbell.us/blog/tiny-docker… Note: I haven't touched that blog in a long time. Not surprisingly, the image links no longer work.

Matt's Musings

mwcampbell.us
in reply to Matt Campbell

mastodon - Link to source

Matt Campbell

I'm thinking about this today because I recalled how I looked at all of the transitive shared library dependencies in the Debian build of the PostgreSQL server, including libraries that are never actually used in that program in practice. Concern about such things now seems justified in light of the xz backdoor. But at the time I felt I had to defend how obsessive I was being.

mastodon - Link to source
Docker-Sponsored Open Source (hub) insists that one cannot have a path to commercialisation - docker.com/community/open-sour… ... seems parochial at best ... at worst why is docker hub getting involved ? Removing rate limiting as a benefit for us also seems to ignore that the benefit is almost entirely theirs. not sure #docker hub is for #curl

Apply Today - Docker-Sponsored Open Source Program

The Docker-Sponsored Open Source Program offers non-commercial, open source developers the tools they need to push their projects forward. Apply today!
Docker
#docker #curl

glitchsoc - Link to source

So today is #TransDayOfVisibility. As a cis person I'm going to challenge my fellow cis people to make a visible difference to #trans people's lives today.

Buy a trans friend a coffee. Bake them a cake. Invite them round for dinner. Offer to babysit for them. Anything you can do to make their life a bit easier. Don't have any trans friends? Think about why that is...

Or find some trans people on hashtags like #MutualAidRequest #TransMutualAid etc. and fling some money at them, if you have some to spare.

Or set up a regular donation to a trans-led organisation doing good work, such as @tsn via ko-fi.com/transsafetynetwork/


Support Trans Safety Network on Ko-fi! ❤️. ko-fi.com/transsafetynetwork

Support Trans Safety Network On Ko-fi. Ko-fi lets you support the people and causes you love with small donations
Ko-fi
#trans #MutualAidRequest #transdayofvisibility #transmutualaid @TransSafetyNetwork
This entry was edited (1 year ago)

mastodon - Link to source

Having a 40 megapixel sensor on my new camera (Fujifilm X-T5) is sometimes absurd.

For example, here's a picture of a little European ground squirrel that I zoomed into with the Fuji 70 - 300 lens + 1.4x teleconvertor.

And a crop @ 200%, showing the reflection in the ground squirrel's eye of a few of us people standing on a little deck around a good 3 meter (9 feet) away.

Edit: Uploaded 5 more ground squirrel photos from that day @ pixelfed.social/i/web/post/679…

#XT5 #photography

European ground squirrel on a log, with green plants. The plants are growing from the water and the log is directly above the water.
A 2x zoomed in crop of the reflection of the ground squirrel's eye showing people on a deck looking at the squirrel.

Garrett LeSage (@garrett@pixelfed.social)

European ground squirrels #GroundSquirrels #squirrels #squirrel #Ziesel #cute #darktable #Fuji #XT5
Pixelfed
#photography #xt5
This entry was edited (1 year ago)

mastodon - Link to source
For anyone looking for courage to emigrate, yes you give up a lot. Yes you have to sacrifice your previous identity and start all over, speak a new language, give away precious things. But there's another part, all the brand new stuff, all the wonderful discovery. What's more, you are older now and your learning curve is faster. You know more and can sort and rebuild more quickly. Here are bells and fish and turtles for Easter, from my neighbors, homemade. As promised the caramel is the best!
An assortment of handpoured Easter chocolates spilled from a cellphone bag onto a wooden countertop. There are turtles hens nests fish shrimp and bells in 3 flavors: dark, milk, caramel.

akkoma - Link to source
xz

This is wrong:

Using systemd on publicly accessible ssh: update RIGHT NOW NOW NOW
Otherwise: update RIGHT NOW NOW but prioritize the former


gist.github.com/thesamesam/223…

No, the exploit doesn’t rely on systemd being run or even installed. If you have the poisoned version, update right away please. The infected version is infected even without systemd (just as long as it’s run as other than arg0, which is the case with many init systems.). Now, it is because of systemd that Debian and Red Hat shipped a version of sshd that was dynamically linked to liblzma. So that’s the connection to systemd. But it’s “SSH linked to liblzma” that’s exploited, not “SSH inited by systemd”.


xz-utils backdoor situation

xz-utils backdoor situation. GitHub Gist: instantly share code, notes, and snippets.
Gist

mastodon - Link to source
Padesátník Golf. Jeden z nejslavnějších Volkswagenů dostal jméno po mořském proudu
wallabag.arch-linux.cz/share/6…

Padesátník Golf. Jeden z nejslavnějších Volkswagenů dostal jméno po mořském proudu

První Volkswagen Golf sjel z výrobní linky hlavního montážního závodu automobilky VW ve Wolfsburgu téměř před lety - 29. března 1974. V té době nikdo netušil, že se malý hatchback stane takovým bestsellerem.
wallabag.arch-linux.cz

mastodon - Link to source
NASA našla důkazy hydrotermálních systémů na Marsu. Jako další bude pátrat po známkách života
wallabag.arch-linux.cz/share/6…

NASA našla důkazy hydrotermálních systémů na Marsu. Jako další bude pátrat po známkách života

Nejnovější objevy marsovského vozítka Perseverance naznačují možnou existenci termálních pramenů a gejzírů na rudé planetě – ovšem velice, velice dávnou.
wallabag.arch-linux.cz

mastodon - Link to source

The #Easter Bunny brought more than #eggs this year! 🐰🥚

With the release of post-quantum #encryption, keeping your #data safe is now just a jump, skip, or a even a hop away! 🐇

You can learn more and maybe find a surprise or two scattered around on our website: tuta.com/blog/post-quantum-cry…

#easteregg #scavengerhunt #fun

An image of a padlock styled to look like an atom surrounded by widgets for email, calendar, and contacts.

Post Quantum Cryptography: Why We Need Resistant Encryption NOW.

Quantum-resistant or post-quantum cryptography is our best bet against attacks from upcoming quantum computers to increase security and privacy.
Tutanota
#encryption #fun #data #easter #easteregg #eggs #scavengerhunt

mastodon - Link to source

🙅 xz update: Don't do this: micro.webology.dev/2024/03/30/…

The one where I suggest we have a canary test, and if Django doesn't score well, your metric, scorecard, or whatever is probably bullshit. 💩

xz update: Don't do this

Don’t do this. Compromised packages because of burned-out maintainers aren’t a time to shill your scorecards that no one cares about.
micro.webology.dev
This entry was edited (1 year ago)

mastodon - Link to source
About my boost from @aeva, on the importance of simply not abusing maintainers, I'm reminded of the story that @freakboy3742 recounted near the end of his PyCon US 2019 keynote, highlighting the toll that verbal abuse can take on a person. This story was not about open source; it was about C. Y. O'Connor, a well-known engineer in Western Australia in the 1890s. And he was (I presume) being *paid* for his work. youtube.com/watch?v=ftP5BQh1-Y…

Russell Keith-Magee - Keynote - PyCon 2019

"Speaker: Russell Keith-MageeKeynoteSlides can be found at: https://speakerdeck.com/pycon2019 and https://github.com/PyCon/2019-slides"
YouTube
@aeva @Russell Keith-Magee
in reply to Matt Campbell

mastodon - Link to source

Glyph

@matt my own personal guess would be “not enough, but more than under any other presently available scheme”. My logic is decentralization. Both socialists and libertarians have ideological language for this type of failure, “autocracy” or “central planning”, where centralized power cannot see the problem, and devolving power (democracy, “free markets”) results in better outcomes. I am not naive enough to believe this fixes everything, but what we are doing now is for sure not working
@Matt Campbell
in reply to Matt Campbell

pleroma - Link to source

Jason J.G. White

"Critical infrastructure" generally needs to include the logical closure of all the dependencies of whatever belongs in that category on other grounds. Shouldn't a properly designed remuneration scheme do likewise? Contributions to OpenSsh would then also be partly distributed among the dependencies, including xz. A slight complication is that, according to comments on LWN, xz is only a dependency in certain Linux distributions, not upstream.

mastodon - Link to source
The poor original maintainer of xz is on it now, and has already found another "fun" thing: git.tukaani.org/?p=xz.git;a=co… . The configure check for enabling the Landlock sandboxing facility was subtly broken, so that Landlock support would never get enabled. The original malicious commit landed around the same timeframe as the main backdoor, also at an abnormal time of day compared to the new maintainer's historical activity pattern.

git.tukaani.org - xz.git/commitdiff

git.tukaani.org