The problem is if I was going to do that with the open source projects I use, it is more like a penny a month * 1000 projects.
$.01/user/month would be quite a bit here
Readit Newsbobmcnamara commented on Todd C. Miller – Sudo maintainer for over 30 years millert.dev/... · Posted by u/wodniok
bobmcnamara commented on Todd C. Miller – Sudo maintainer for over 30 years millert.dev/... · Posted by u/wodniok
Why would you be running sudo in production? A production environment should usually be setup up properly with explicit roles and normal access control.
Sudo is kind of a UX tool for user sessions where the user fundamentally can do things that require admin/root privileges but they don't trust themselves not to fat finger things so we add some friction. That friction is not really a security layer, it's a UX layer against fat fingering.
I know there is more to sudo if you really go deep on it, but the above is what 99+% of users are doing with it. If you're using sudo as a sort of framework for building setuid-like tooling, then this does not apply to you.
Auditing.
bobmcnamara commented on Defeating a 40-year-old copy protection dongle dmitrybrant.com/2026/02/0... · Posted by u/zdw
Hardware dongles are incredibly rare now. Even on airgapped machines, you'll see a local Flex license server running. This is especially true when you have a small network of multiple machines that may require the use of a network license. Dongles are just too delicate, they get lost or break. Or you end up with overzealous security software that decides to block anything that isn't a mouse or keyboard. There are plenty of modern day solutions for a transferable license.
I once had a goon glue the mouse and keyboard ports and fill the unused USBs with glue.
bobmcnamara commented on People who know the formula for WD-40 wsj.com/business/the-secr... · Posted by u/fortran77
For the PDF impaired
- LVP Aliphatic Hydrocarbon (CAS #64742-47-8) 45-50%
- Petroleum Base Oil (CAS #64742-56-9, 65-0, 53-6, 54-7, 71-8) <35%
- Aliphatic Hydrocarbon (CAS #64742-47-8) 10 - <25%
- Carbon Dioxide (CAS #124-38-9) 2-3%
Note: The specific chemical identity and exact percentages are a trade secret.
I don't know the distribution between aromatic and aliphatic hydrocarbons, but there's lots of each.
> specific chemical identity
I wonder if it's just two hydrocarbons then? Odd that identify is singular.
bobmcnamara commented on When employees feel slighted, they work less penntoday.upenn.edu/news/... · Posted by u/consumer451
My company gave out nice plaques for ten year anniversaries. As my anniversary neared I frankly got really excited to receive mine.
My manager started a couple months before myself, and a colleague started a couple months later. We still work together all our anniversaries in a line.
My manager got his plaque and showed it off. I patiently awaited mine.
When my 10 year anniversary came around we were in the middle of being acquired. It seemingly got lost in the fuss. My anniversary came and went. Zero acknowledgement beyond an automated email and some points towards the company store. No plaque.
When my colleague's 10 year anniversary came around a few months later and he got an even nicer plaque than my manager AND a small celebration...
I'm not one to usually express anger or disappointment, but I got salty and maybe said some things I shouldn't have. I'm frankly still salty and it's five years later.
I feel a little childish but I just wanted a plaque. I waited ten years for my plaque. My wife had offered to make me one.
My fifteen year anniversary is coming in a few months. We'll see if anything comes of it.
The little things are more important than they seem.
Oof.
I was the second person to not get a plaque after they stopped the 10-years at work. Instead I got an email.
I knew one of the last people to get one, so was expecting mine two weeks later.
And I knew Sarah, who started a week before me, and had printed out her 10-year email and a picture of the clock. I found mine at a thrift store. When I left I set it on her desk on the way out. Hope she liked it.
bobmcnamara commented on Deutsche Telekom is throttling the internet netzbremse.de/en/... · Posted by u/tietjens
The "glass fiber modem" is an inherent part of the GPON network. These are complicated. The "P" stands for "passive". Yours and and up to 127 other houses are all on the same "light domain" i.e. the downstream is passively split, and the upstream is passively combined, in optical boxes that don't even have electrical parts.
This needs crazy accurate timing for the upstream. The head end needs to know the exact delay to your particular box to give it a "grant" to transmit at exactly the right time so transmit bandwidth is not wasted by idle time or multiple boxes transmitting at the same time and corrupting each other.
You don't want brand X modems with dodgy configurations in this. Of course as a consumer you'd want "as little modem as possible" i.e. just give me an ethernet port running DHCP or PPPOE and let me do the rest.
I cloned mine into an SFP+ for a handful of microseconds of latency improvement.
bobmcnamara commented on Deutsche Telekom is throttling the internet netzbremse.de/en/... · Posted by u/tietjens
I own a FTTH connection to Telekom since 2018, as the only provider in my street, allowed to install an internet connection (only glass fiber).
Since then, I have always used my own device and I maintain a GitHub Snippet in how to connect OpenWRT modem (and by extension, any other modem that supports pppoe), rather than their Huawei SpeedPort crap or the more expensive Fritz Box). Link to Gist : https://gist.github.com/madduci/8b8637b922e433d617261373220b...
I use PiHole in my own network, circumnavigating the DNS limitations, using Quad9 as my main DNS provider, but Unbound is on my to-do list.
The most concerning limitation in the German market is the unavailability of native Glass Fiber modems, that can accept as input a Glass Fiber connection: at the moment, providers install their own Glass Fiber modem. Without it, you can't actually have an internet connection at home
For PONs you can get a programmable SFP+ and clone the manuif, devid, and password into it.
> Microsoft is legally entitled to refuse a request from law enforcement, and subject to criminal penalties if it refuses a valid legal order.
This is a problem, because Microsoft operates in a lot of jurisdictions, but one of them always wants to be the exception and claims that it has jurisdiction over all the others. Not that I personally am of the opinion, that it is wise for the other jurisdiction to trust Microsoft, but if MS wants to secure operating in the other jurisdiction it needs to separate itself from that outsider.
Or maybe not stash everybody's keys?
bobmcnamara commented on Booting from a vinyl record (2020) boginjr.com/it/sw/dev/vin... · Posted by u/yesturi
Old scanners were SCSI, which made me wonder if you could use them as boot devices, if you could stuff the scanner driver and OCR software into the BIOS. Might be easier now that we have uEFI.
Forth it up on a middle aged PowerPC Mac!
I think JPEG XL's naming was unfortunate. People want to associate new image formats with leanness, lightness, efficiency.
I found it unfortunate because it's not a JPEG.