shot, chaser
Irishman in San Francisco. Amateur photographer, musician, artist and electronics tinkerer. Professional security computer comrade. Security @ Tailscale. Only together can we defeat the computers.
As computer keyboards get smaller and smaller, I can't help thinking, that eventually we'll reach a point of no return
Anyone surprised by this has not been paying attention. Israel his routed Gaza, killing or displacing its residents in order to empty it and reduce resistance, and its intention all along was to use this as a pretense to seize the Gaza strip.
was rummaging through my bookshelves for something and out pops a hand drawn postcard sent by a since deceased close friend of mine from secondary school. I thought I had lost it and I'm so glad that it is found. A perfect time capsule of their amazing presence and art in the world. We miss you Andy.
Yep. I saved hundreds or even thousands of dollars a month just from switching from Substack to self-hosted Ghost.
I pay a roughly flat $85/month now (~$75 for mailsending, $10 for hosting), vs. 10% of all my subscription income.
Here’s some napkin math for how expensive Substack is compared to its competitors, assuming that roughly 7% of all subscribers will pay for their subscriptions, and that subscriptions cost $5/month.
Could someone please help me understand why dpop (where every request requires its own signature) is preferable to mTLS (where multiple requests can be made in one authenticated channel) other than being able to implement it without having to engage with browser authors?
Everyone should be so lucky as to have a colleague as wonderful as @creachadair whose code reviews are so educational and kind and have the rarest property of making me actually want to write _more_ software.
Sufficient time has passed and I'm excited to share a demo and details of a CSRF vulnerability that I discovered in the popular gorilla/csrf library that has been present since its creation 😲 https://patrickod.com/csrf
Think we’ve forgotten about the time that Elon was booed so badly by fans of Dave Chapelle (of all people) that he locked himself in his office and Twitter employees considered calling the cops to do a wellness check.
What I’m saying is we can go harder.
Sometimes when I talk to homeless people in the Bay Area, I ask them how they became homeless.
Sometimes, they say that they lost their homes in a wildfire.
More painful than seeing people lose their homes in a forest fire, is watching them lose their humanity, as our empathy for them evaporates.
In the immediate days after someone loses their home in a wildfire, our talk is full of empathy.
But as days turn to weeks and months, we stop caring *why* someone doesn't have a home, and only care *that* they don't have a home.
We start planning to throw away their remaining possessions.
Homeless people aren't different people than us. They are us.
Many homeless people just experienced a sequence of unfortunate events that led them to this place.
"No! They're drug addicts! They did this to themselves!"🤡
Again, ask people with addiction how they became addicted.
They'll tell you
There's a pervasive myth that people still believe about California homeless: that homeless people "come to California for the weather."
That's a lie that fortunate people 🙋🏿♂️ tell ourselves.
California homeless are almost all California residents (90%) who just had a bunch of bad luck in a row.
Anyway, I skipped the "burrito taxi" discourse, AKA the meal delivery discourse.
Because if tomorrow you lost your home and your job to wildfire, and only had your car and a few hastily gathered possessions, and you needed to earn some money?
Your car would become a burrito taxi too.
I don't care if you know how to cook food for yourself for cheap, or if you treat yourself by having burritos delivered to your house.
I care that we live in a country so cruel, that some people deliver food in the cars that they live in, while those receiving the food don't even know or care.
@phire there's a spot in our neighborhood called “Jenny Burger" so my head immediately went to the simple "Jenny Bar” and I'd most def patronize such an establishment.
@phire we've lost some choice spots in recent months in our neighborhood and surroundings also. suuucks
How do we get by with such a small infra team? Our tech lead explains how we use Tailscale while building Tailscale, which keeps her attention off finicky networking problems https://tailscale.com/blog/infra-team-stays-small
We are hiring (in the USA and Canada) for another Security Engineer to join my team at @tailscale https://job-boards.greenhouse.io/tailscale/jobs/4480511005 If you're a security generalist who likes solving intertwined security and product problems we'd love to hear from you. Happy to answer any questions about the role here or in DM 😄
got laid off in the big dropbox layoffs today.
if anybody is looking for a staff-level engineer who loves mentoring and who is an expert in web security, email security, TLS/PKI, key and secrets management, and general defense security stuff, please feel free to hit me up.
"This piece was originally commissioned by an editor at The Guardian, who asked me to write about the wave of retaliation and censorship of political expression in solidarity with Palestinians that we’ve seen in the past two weeks. Amid my work as an attorney on some of the resulting cases, I carved out some time to write the following. Minutes before it was supposed to be published, the head of the opinion desk wrote me an email that they were unable to run the piece. When I called her for an explanation she had none, and blamed an unnamed higher-up. That a piece on censorship would get killed in this way—without explanation, but plainly in the interest of political suppression—is, beyond the irony of the matter, a grave indictment of the media response to this critical moment in history. —Dylan Saba"
https://www.nplusonemag.com/online-only/online-only/a-surge-in-suppression/
#Palestine #media #propaganda #censorship #Gaza #PalestineUnderAttack #politics #democracy #hypocrisy #SupportPalestine #complicity
After I refused a bribe to remove a @web3isgreat post about alleged crypto pyramid scheme co-founder Roman Ziemian, I’ve now received a fraudulent copyright claim aimed at forcing me to take it down
The BlogSpot website that is rehosting my post and claiming to be the original is full of other such posts from other websites, suggesting this is part of a wider campaign to scrub information about Ziemian.
@neverpanic @tailscale We are also open to hiring in Canada but are not considering candidates outside of US/CA for this role at this time.