Login

Recent searches

No recent searches

Search options

Not available on shivering-isles.com.
shivering-isles.com is one of the many independent Mastodon servers you can use to participate in the fediverse.
This is my personal microblog. It's filled with my fun, joy and silliness.

Administered by:

Server stats:

1
active users

shivering-isles.com: AboutPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

Sheogorath boosted
Public
Scott Jenson

Dear #OpenSource folks, I'd like to offer #UX help to your teams. I've tried "making a small PR" on projects and it turns out that's TERRIBLE advice for a UX designer. The PR is usually misunderstood or ignored. I don't fault the teams for this! It's just the wrong tool for the job.

So I'm trying something different. I'm offering free consulting time to any project that wants it. Sign up here: cal.com/scottjenson/exchange

Cal.comIdea Exchange | Scott Jenson | Cal.com Idea Exchange
Sheogorath boosted
Public *
John Carlos Baez

People are desperately rushing to save data from the National Oceanic and Atmospheric Administration (NOAA) before their Amazon Web Services go dead tonight... thanks to DOGE. That's a lot of weather and climate data.

The thread continues:

"Help very much needed. Some tips…

Instructions for scraping from SciOp
If you begin working on an archive, please mention that you’ve claimed it in a reply to this thread and then edit your reply with an update when it’s completed and/or uploaded
If you archive a resource but can’t upload it to SciOp, that’s okay, just let us know
Possible third-level domains based on certificate issuances (thank you, @jenniferplusplus)
Possible sites/datasets based on the master NOAA github account (thank you, @Catladylilia)"

If you want to help, go to the Safeguarding Research & Culture website:

forum.safeguar.de/t/noaa-all-s

and read the whole thread, then sign up.

[EDIT: Wait a minute! See some *good news* in part 3.]

(1/n)

NOAA all services, specifically Amazon Web Services (URGENT) Requests 🔰 AWS Services for NOAA will be going offline as soon as tomorrow night. (april 4th) Things affected to include: Claimed: research.noaa.gov epic.noaa.gov adp.noaa.gov ci.noaa.gov oeab.noaa.gov orta.research.noaa.gov testbeds.noaa.gov qosap.research.noaa.gov oss.research.noaa.gov eeo.oar.noaa.gov globalocean.noaa.gov cpo.noaa.gov seagrant.noaa.gov researchprojects.noaa.gov pier.seagrant.noaa.gov drought.gov noaa’s internet proving ground viz.pmel.noaa.gov global systems laboratory’s DESI 3.0 fire weather testbed (part of gsl.noaa.gov) gsl.noaa.gov www.noaa.gov (the mothership is in progress) ospo.noaa.gov Help very much needed. Some tips… Instructions for scraping from SciOp If you begin working on an archive, please mention that you’ve claimed it in a reply to this thread and then edit your reply with an update when it’s completed and/or uploaded If you archive a resource but can’t upload it to SciOp, that’s okay, just let us know Possible third-level domains based on certificate issuances (thank you, @jenniferplusplus) Possible sites/datasets based on the master NOAA github account (thank you, @Catladylilia)
Public
Sheogorath

Well, this one was unexpected: github.com/tarampampam/error-p

I just discovered that some of my services were open to the internet, thanks to the default-backend for my ingress-nginx changing the status codes when switching from v2 to v3 of the backend container…

It's not really a vulnerability, but somehow a security issue for potentially more people. My monitoring caught it, but I didn't really understand until I looked deeper into it.

After upgrading to v3, I noticed that some of my pages, running behind oauth2-proxy in combination with ingress-nginx were experiencing strange problems. API calls would fail, some things wouldn't ...
GitHub--send-same-http-code=false considered harmful · tarampampam error-pages · Discussion #336After upgrading to v3, I noticed that some of my pages, running behind oauth2-proxy in combination with ingress-nginx were experiencing strange problems. API calls would fail, some things wouldn't ...
#IngressNginx#kubernetes#errorPages
Sheogorath boosted
Public
Joerg Jaspert :debian:

Kenne Ich hier jemanden mit einer (halbwegs guten) Kameradrohne? Der mir jetzt, und in den nächsten 12 bis 18 Monaten ein paar mal wiederholt, Fotos/Videos mit der Drohne drehen könnte?

Würde gerne den Baufortschritt beim neuen Haus immer wieder mal aufnehmen, aber dafür eigens Drohne kaufen ist auch meh...

Umgebung von #Fulda, Unkosten die entstehen trag Ich.

Sheogorath boosted
Public
Richard Hughes

PSA: The #LVFS has been down from about 5AM this morning; the machine the database is running on appears to be OOMing. I've opened a ticket with the sysadmin team at the Linux Foundation and am trying some mitigations in the meantime.

No idea on the root cause yet -- debugging now. If you see error messages from fwupd or gnome-software when refreshing or downloading firmware then that's why. Some downloads may work, as AWS is starting and draining containers like crazy. Send hugs!

Sheogorath boosted
Public
MEActNOW

ℹ️ GOOD POINT 👇🏼
Let's talk about the elephant in the room.

Project 2025 calls for using public channels of communication (like Signal) instead of secure government channels, to subvert FOIA requests and conceal damning information from the public. This was no rookie mistake. It's the plan.

Public
Sheogorath

I'm a bit unhappy with the coverage for CVE-2025-1974. While it might be true that ">40%" of all clusters run ingress-nginx, only a small fraction will actually at risk of being exploited. If you run an overlay network (non-IPv6) and don't let non-cluster-admins create Ingress resources, the risk is drastically reduced. Remains the risk of attacks by workloads directly talking to the webhook endpoint.

It's an exciting finding, but still… keep calm and patch.

Sheogorath boosted
Public
Micah Lee

Trump admin uses Signal to coordinate military operations, and also accidentally added the editor in chief of The Atlantic to a group about bombing Houthi targets in Yemen that includes JD Vance, Stephen Miller, Marco Rubio, Pete Hegseth, and other dipshits theatlantic.com/politics/archi

The Atlantic · The Trump Administration Accidentally Texted Me Its War PlansBy Jeffrey Goldberg
Sheogorath boosted
Public *
Tim 🎮

Have you had that "Upcoming price change for your Microsoft 365 subscription" email yet? They want to charge you an extra 50%ish for AI features, and they do *not* make it easy to find the way to turn it off. It took me minutes of searching - this is a particularly evil dark pattern.

"Switch plan" just lets you pick between annual and monthly billing. You want "Turn off recurring billing" and then "Current subscription without AI".

You're welcome. Please boost for others.

Screenshot from the Microsoft 365 subscription page, showing the "Turn off recurring billing" item as highlighted.
A screenshot from the Microsoft 365 subscription website, highlighting a "Current subscription without AI" option, which is A$109/year, instead of the $159/year option with Copilot and AI nonsense.
Search
About

Sheogorath's featured hashtags

#infosecLast post on Sep 02
122
#linuxLast post on Nov 15
88
#kubernetesLast post on Mar 31
75