jj4211

@jj4211@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Alternatively⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Put them on a board for people using a thumbtack.
⁨Comment⁩ on ⁨That's a good question⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I think we all can get a metaphor, but when someone lives a super safe and convenient life keeping they’re head low even in the face of some things with sticking your neck out over… and then wears a cross to claim they too carry a cross like Jesus just because they put on a little trinket…

That metaphor in context cheapens the concept. Particularly as the meaning is somewhat inverted. The “cross” was for people that went against authority. Now the cross is more aligned with following authority. The executionor may wear a cross while they definitely kill the person using anything but crucification.
⁨Comment⁩ on ⁨That's a good question⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I feel though like wearing a token cross in honor of being told to take up a more literal cross seems like paying lip service to a very serious call to action with very low actual stakes.

Like being told to stand up to the guns of an army to stand firm for justice and then wearing little rifle pendants instead claiming that means you look to live your life consistent with that principle even as you start well away from actual fighting.

You may personally of course live your life consistent with the values and that is just a symbol, but it’s broadly a symbol that has been cheapened by casual overuse, and to some extent corrupted by folks using it as a symbol of their alignment to God and implied divine authority granted by that association.
⁨Comment⁩ on ⁨That's a good question⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
A difference exists in that those sentiments has less implications for daily life. People sharing spiritual speculation about the greater universe with the humility to recognize they have no way of knowing better than anyone else, fine.

I’m not bothered by the faith in something beyond what we can see in and out itself. But the bits where self asserted alignment to a silent but divine authority as a way to decide value and authority among people… There’s the problem.

I do not question the authority of someone’s God, I question the authority of the people claiming that God agrees with them.
⁨Comment⁩ on ⁨What did Musk and Trump fall out over?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Yes, as long as you were on the side that benefits from success, it was better to leave things “simple” and not challenge the incorrect stuff out loud you aren’t going to “well actually…” the “expert” if it risks your job and/or the wrong stuff isn’t too important or too hard to overcome when the rubber meets the road.

Still, sitting in a room or otherwise being a party to a conversation where an executive is constantly being confidently incorrect constantly and still praised as a smart expert likely making 7 figures is maddening.
⁨Comment⁩ on ⁨Hell⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I didn’t generally mind this quite so much …

Then someone just could calls me without even texting first… While I’m already in a meeting actively taking to someone else…
⁨Comment⁩ on ⁨What did Musk and Trump fall out over?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
While I have not reviewed a lot of Musk speak, let alone armed with enough to credibly review his commentary, but based on my own field and “respected technical leaders” that interview with customers and the press, with broad acknowledgement that they really know their stuff…

Most of them I’ve known can sound very confident and credible while saying completely incorrect stuff. No one tries to correct them because them being actually correct doesn’t add value and trying to fix that is more trouble than it’s worth much of the time. The people paying attention don’t know well enough to recognize they are wrong… usually…

Upon occasion my company throws one of these “geniuses” at a customer that actually knows what they are doing. Then I got to see our executive basically try to gaslight the audience when they challenged his competency. The sales people has to last minute pull in the actual technical people to try to repair our image after the customer interacted with the executive…

Now one would think, clearly, after such an embarrassment, surely the company learned to field the actual technical experts to deal with technical questions… But no, for every smart customer that is turned off by that executive, there’s 10 more clients that don’t know any better and respond so much better to his baseless confidence than actual competent discussion. Also, those 10 suckers will also get suckered into more high margin stuff versus the smart customer, that will be really good at getting the most cost effective products, with low margin and skipping the pointless addions.
⁨Comment⁩ on ⁨what is north?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
It is still valid to point out that “north of Antartica” is a silly phrase in context, even though it’s fine given the more specific Weddell Sea information. If you did want to help readers know the story based on a more well-known landmark, a less silly phrase would have been simply been “Weddell Sea, near Antarctica”.
⁨Comment⁩ on ⁨Kid gave a reasonable answer without all the math bullshit⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
It does not state that Marty only ate 4/6 of his pizza. Nor that he ate only of his own pizza. It defined a minimum pizza consumption threshold for Marty without further details.
⁨Comment⁩ on ⁨Kid gave a reasonable answer without all the math bullshit⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Or the kid just understands the given scenario and prioritized coming up with a valid answer instead of assuming the question is bad. You don’t have to be ND to be thoughtful/observant or to be surprised that the question expected to be called out as wrong that early.

On the handwriting, it could be that, or it could be typical elementary school handwriting. Or someone imitating elementary school writing for internet points in a fake math question.
⁨Comment⁩ on ⁨Kid gave a reasonable answer without all the math bullshit⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
People have already commented on fractions, there’s a lot of math that is way easier to keep accurate by leaving in fractional form as it goes.

For word problems, done correctly, the math is pointless if you can’t map it to more realistic scenarios. In terms of applying math to the real world, it’s supremely rare that the world just spits out the equation ready for you to solve, the ability to distill a scenario described by prose to a mathemetical solution is critical. Problem is when they are handled incorrectly and have ambiguous solutions or parameters, but dealing with kids’ homework, this is pretty rare, though it’s admittedly utterly infuriating when it comes up.
⁨Comment⁩ on ⁨Kid gave a reasonable answer without all the math bullshit⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
But could he draw red sides with blue ink?
⁨Comment⁩ on ⁨Kid gave a reasonable answer without all the math bullshit⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Maybe it’s not smaller, just farther away?
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Sure, though at least it doesn’t take too many words to clarify…

windows app on the other hand…
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Do you mean teams for work or school or teams for personal?
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
That compatibility matrix, the windows app does not support connecting to Windows from Windows… That’s some amazing product planning there from Microsoft…
⁨Comment⁩ on ⁨Rawr⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Realistically speaking, MFA most importantly is to get away from the “something you know” factor since that is generally more vulnerable. Even if it is a single factor, it’s a better factor.

Also enables people to meaningfully have multiple factors if they choose. The password managers generally require a master passphrase and/or unlocking through something like “Windows Hello”
⁨Comment⁩ on ⁨My password is not accepted because it is too long⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Sure, you could do something like that to normalize all manner of passwords to a manageable string, but:
- That hash becomes the password, and you have to treat it as such by hashing it again server side. There’s a high risk a developer that doesn’t understand skips hashing on the backend and ends up insecurely storing a valid password for the account “in the clear”
- Your ability to audit the password for stupid crap in the way in is greatly reduced or at least more complicated. I suppose you can still cross reference the password against HIBP, since they use one way hash anyway as the data. In any event you move all this validation client side and that means an industrious user could disable them and use their bad idea password.
- if you have any client contexts where JavaScript is forbidden, then this would not work. Admittedly, no script friendly web is all but extinct, but some niches still contend with that
- Ultimately, it’s an overcomplication to cater to a user who is inflicting uselessly long passwords on themeselves. An audience that thinks they need such long passwords would also be pissed if the site used a truncated base64 of sha256 to get 24 ASCII characters as they would think it’s insecure. Note that I imply skipping rounds, which is fine in such a hypothetical and the real one way activity happens backend side.
⁨Comment⁩ on ⁨My password is not accepted because it is too long⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
That would suck to enter. Much better to do qwertyuiopasdfhhjklzxcvbnm

Or if you are cool: pyfgcrlaoeuidhnnsjkxbmwvq
⁨Comment⁩ on ⁨My password is not accepted because it is too long⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
A 24 char passphrase while not as bulletproof as a machine generated string is still credibly strong even to offline cracking attacks when possible. In all the datasets of passwords acquired through that sort of cracking I don’t think I’ve ever seen it catch even a 4 word passphrase.
⁨Comment⁩ on ⁨My password is not accepted because it is too long⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Though it could also amplify DDOS. Allowing 72 character passwords lets a DDOS be three times rougher despite being a seemingly modest limit for a single request.

If a password/passphrase is 24 characters, then any further characters have no incremental practical security value. The only sorts of secrets that demand more entropy than that are algorithms that can’t just use arbitrary values (e.g RSA keys are big because they can’t be just any value).
⁨Comment⁩ on ⁨My password is not accepted because it is too long⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
So I just went through something similar with a security team, they were concerned that any data should have limits even if transiently used because at some point that means the application stack is holding that much in memory at some point. Username and password being fields you can force into the application stack memory without authentication. So potentially significantly more expensive than the trivial examples given of syn and pings. Arbitrary eaders (and payloads) could be as painful, but like passwords those frequently have limits and immediately reject if the incoming request hits a threshold. In fact a threshold to limit overall request size might have suggested a limited budget for the portion that would carry a payed.

24 characters is enough to hold a rather satisfactorily hardened but human memorable passphrase. They mentioned use of a password manager, in which case 24 characters would be more entropy than a 144 bit key. Even if you had the properly cryptid and salted password database for offline attack, it would still be impossibly easier to just crack the AES key of a session, which is generally considered impossible enough to ignore.

As to the point about they could just limit requests instead of directing a smaller password, well it would certainly suck of they allowed a huge password that would be blocked anyway, so it makes sense to warn up front.
⁨Comment⁩ on ⁨doctors⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
The environmental causes are availability of options we crave but are still not forced into, so individual responsibility is absolutely a thing.

I was obese and it sucked but I got down to a healthy weight, and keeping it off kind of still sucks but it doesn’t take a lot of time or money, in fact it’s generally cheaper.

Fast food is constantly highlighted as an impossibly unhealthy reality, the nicer places cost more and take too much time. Except you can choose passable choices in fast food.

If you can freely pick, there are fast food places that offer salads with maybe some grilled chicken, which can be healthy unless you opt to drown it in ranch.

But let’s say you are in a group and they pick a restaurant without an option like salad. Just asking for water instead of a big sugary drink gets you so much closer to healthy. Skip the fries, skip the mayo, get a smaller burger. All these things are cheaper and friendlier to a reasonable caloric budget.

It sucks because it means eating to feeling “ok” while skipping the most awesome foods and rarely getting to feel just utterly full, but that was just life when people had healthier weight.

Similarly on activity. It does suck that work has people sedentary, but our idle pursuits are similar. When I was a kid, TV was stuck on a schedule and video games were only so engaging, so we would get bored and want to do something. Maybe it was walk amongst some trees to see if anytime interesting was around. Maybe do something with a ball. Nowadays we can get endless engagement from streaming, video games, and Internet. So tempting to just be on the couch. We can still choose those more active things, but we don’t want to.

Note all this awesome stuff is still great in moderation. I just went full on gorging at a restaurant a week ago on pretty much whatever I wanted. The thing is this is maybe like once every 2 or 3 weeks, not daily like we really want to.
⁨Comment⁩ on ⁨Want happier employees? Start with a 32-hour workweek – and 4 weeks vacation.⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
A dock worker wouldn’t be more productive remote. There’s obviously some responsibilities that cannot be done in person, and a lot of jobs require both.

But let’s say we discard all obviously in-person sorts of work from the “jobs that can move to remote”, the so called “knowledge work”, and we are deep in an area where objective measure of “productivity” has proven elusive. For example, one such study I looked at used “how productive do you feel?” as the basis. Another facet is individual productivity versus group productivity, particularly over time. A pretty middling junior employee spends a lot of time flailing hopelessly because no one knows to get with him and help him become better, both in terms of his job and in terms of communication and confidence (e.g. not trying to hide having difficulty to avoid people thinking he is less competent than he should be, when everyone has those sorts of struggles).

The commute, morale, ability to avoid low value coworker distractions (no, I don’t need the daily reminder that my coworker in fact has a boat…) , and ability to manage the work related distractions better certainly help remote work. However home life distractions and the ability to tune out work related distractions a little too well at the expenese of peer productivity can impact work at home. Different people and situations manipulate this balance and for the best employees, that morale can go a long way to having a good outcome, but I think we have to confess that in-person has some value.
⁨Comment⁩ on ⁨Want happier employees? Start with a 32-hour workweek – and 4 weeks vacation.⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
My experience is that in person and remote favors different sorts of tasks. For me I have both so I think hybrid is the most ‘productive’, though I’m much happier with the ‘remote’.

So on pure productivity, I could see some roles favor in-person.

But if you want to more cheaply recruit and retain, favoring remote is certainly going to help.

I really want a new normal of shorter hours, though that might be a trickier discussion so long as we have very highly utilized labor pool.
⁨Comment⁩ on ⁨OMG no please don’t call me.⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
For me I’ve got to put live recording away toward the end. If I’m doing a recording, I’ve got way too much opportunity to second guess myself in editing and zero indications whether I’m going a useful direction in my talk.
⁨Comment⁩ on ⁨If I snapped you back in time 650 years right this very second, how would you use your current knowledge to succeed?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Well you can do that today. Find a tree out in the middle of nowhere and sit under it without any electronic devices. Then you are oblivious to all that stuff. You may be bothered by the fact that the things are still happening, but there are also plenty of horrific things happening in that time period you went to, you just won’t be keeping track of them.
⁨Comment⁩ on ⁨Philosophy moment⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
This may shock you, but guns are banned more often than phones in school, and the bans are more severe as are the consequences.
⁨Comment⁩ on ⁨What are some FOSS programs that are objectively better than their proprietary counterparts?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Heh, recently I was looking up things about terminal graphics and came upon: github.com/microsoft/terminal/issues/8389

And DHowett’s reply was pretty dismissive. Guess that was the tip of the iceberg.

But this anecdote is a good ‘corp’ versus ‘open source’ anecdote. There’s simply no way a business with project management would even think about optimizing performance of a terminal emulator that seems to vaguely work according to the marketing requirements. What a waste of time, right? My experience with a software development organization is 99% of management work is to rationalize away doing anything.

Meanwhile, open source someone says “screw it, this is crap, I can fix it”.
⁨Comment⁩ on ⁨What are some FOSS programs that are objectively better than their proprietary counterparts?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I don’t know, I mean I’ve seen a fair amount of IDE capability out of VSCode after some invested effort to try to get it there, but at it’s best I haven’t seen it as comprehensive as what I’ve seen in a Jetbrains IDE. That said, in my use case the IDE capabilities don’t apply very well anyway, so it’s moot for me and I’m happy with Kate with LSP.