Did an eggnog taste test, and was surprised to find that I liked the supermarket brands over our local creamery.

Happy eggnog-in-one’s-coffee season to all who celebrate!

Teaching my nephew about the important things in life.

@DaveMWilburn @adamshostack I’ve decided to call this “slop-forking”

Tim Brown from Solar Winds suggests that a lot of AI-generated code will bend the curve away from explicit code reuse via dependencies and just rewrite code bases in a similar style. There are obvious #SBOM and #supplychain considerations.

1) do you agree that this style of code is increasingly common?
2) will snippet engines and AI-powered pattern matching help detect this code reuse and “AI-forking”?

"Cody Kociemba, the developer behind the Hack/House project, has taken it upon himself to maintain these aging devices. The solution is called "No Longer Evil," or “NLE” for short. It's an open-source project designed to give decommissioned Nest Thermostats a second life."

https://www.howtogeek.com/google-killed-old-nest-thermostats-but-hackers-are-making-them-work-again/

Updated "greek task list":

orphean task: when you almost succeed, but lose everything the moment you turn around to check your progress.

daedalean task: when you’re forced to design something brilliant and functional… that you yourself will inevitably become trapped inside.

medusan task: when your project becomes so horrifying that everyone involved freezes in place rather than deal with it.

tantaline task: when success is right there, but bureaucracy or budget cuts keep snatching it away at the last moment, forever.

pandoran task: when fixing one small issue unleashes a thousand new ones, but hey — at least there’s still hope somewhere in the ticket backlog.

odyssean task: when the assignment technically has an end, but it’s buried under so many side quests that you forget what the original goal was.

narcissian task: when the entire effort is about maintaining appearances rather than achieving anything of substance.

promethean task: when you give people a powerful new tool that could transform their work — and are punished eternally for doing so.

orestian task: when the mess you’re cleaning up is the direct result of the last cleanup you performed.

thesean task: when the only way to finish is to disassemble everything piece by piece — until you’re no longer sure if what’s left is the same project you started.

achillean task: when your work is flawless except for that one fatal oversight that will, inevitably, destroy you.

penelopean task: when you diligently undo by night what you accomplish by day, just to keep the stakeholders pacified.

midasean task: when everything you touch turns into paperwork, compliance documents, or gold-plated nonsense nobody actually needs.

gordian task: not intended to be actually done, but violence is the answer.

@patrickcmiller I’m pretty good at bureaucrat-speak, and I have no idea what this actually means…

Science is delicious. I was curious about sous vide vs reverse sear for cooking steak.

Methodology: two similar weight & thickness boneless ribeyes from the same primal were salted and treated with a bit of MSG. One was slow roasted in 200F oven until ~133F. The other was bagged and sous vide’d at 133F. Then both were dried and pan seared in cast iron.

Evaluation was a 3 sample Triangle Test with two tasters. Tasters were blinded but could talk as they tasted. Sample A & B were sous vide. C was reverse sear. N = 2.

Results: Tasters felt that the steaks were very similar, but both guessed that A and C were the same prep. Tommy liked C the best; I liked A. But both expressed that the preference ranking was very close.

Conclusion: sous vide and reverse sear are not significantly different preparations.

I’m training my palate to reacclimatize to spicy. What’s a hot sauce that’s one layer up from Tabasco?

Finally have a Sunday free. Anyone in the DC area up for watching the Steelers-Colts game tomorrow at 1?

@msmeissn @bagder happy to chat about vex and CSAF

Sigh. Grim news from our friends in Canada about skiddies poking at OT systems, but a potential wake up call for small operators and the policymakers who love them. It’s time to [quoting @joshcorman] SOS - get our Shit Off Shodan.

https://www.theregister.com/2025/10/30/hacktivists_canadian_ics_systems/

A nice crisp autumn day for playing in the kitchen. Breaking down pumpkins for kaddo bourani, the Helmand-inspired candied pumpkin w meat sauce and smoked lamb shanks.

Sunday morning chorin’

The SPDX community is now creating a new list — similar to the SPDX License List — but focused on cryptographic algorithms. This post shares how this effort started, its current status, the next steps, and a final call for participation.

http://toscalix.com/2025/10/14/introducing-the-spdx-cryptographic-algorithm-list-a-personal-view/

#spdx #sbom #cyclonedx #cryptography #algorithm #linuxfoundation

RE: https://infosec.exchange/@jerry/115390401039942891

I want to grow up and be like @jerry, doling out thought leadership from the beach.

He says that forced password resets don’t address the most pressing problems we face right now (such as refilling @jerry’s daiquiri.)

I’m probably not the first to make this joke, but:

If we are now referring to the Department of War, does that mean we need to focus on securing the War Industrial Base (WIB)?

Finally feeling heathy enough to start doing some proper cooking. Thick cut pork chops with apple’n’onion pan sauce, nicely paired with a lovely crisp autumnal evening.

I’m still avoiding wine, etc (pairs poorly with nerve inflammation) but I prepped a batch of pear cardamon shrub.

‘Tis the season!