tikkabhuna (u/tikkabhuna)

tikkabhuna commented on Nearly all UK drivers say headlights are too bright bbc.com/news/articles/c1j... · Posted by u/YeGoblynQueenne

DannyBee · a month ago

Sure but you should be able to safely drive the speed limit under normal (Ie not pouring rain, snow, etc) conditions. Night is a normal condition.

tikkabhuna · a month ago

Bear in mind that the UK has a “national speed limit” of 60mph for much of the countryside. This is very much a limit, a maximum, and you’re expected to drive to the conditions of the road. If it’s perfect weather conditions and twisting roads not wide enough for 2 cars, you shouldn’t be driving at the speed limit.

tikkabhuna commented on UK Petition: Do not introduce Digital ID cards petition.parliament.uk/pe... · Posted by u/DamonHD

dazc · 3 months ago

The likelihood that it will become tied to your bank account, credit file, etc in a way which isn't currently possible with physical forms of id such as passports and driving licences.

tikkabhuna · 3 months ago

I’m pretty sure UK security services can link bank accounts to you already. Hell, credit score companies like Experian already do it.

This is beneficial for public services and companies that need to identify you. Having a single ID for a person is a huge improvement. As an example, when we got married, my wife was simultaneously both her maiden name and my surname. There is absolutely no link between passport, birth certificate, driving license, etc.

You have to go around to all these different organisations and have them update the details. They all have different requirements for updating the name.

Having a single consistent mechanism for referring to a person in systems seems hugely beneficial for both the organisation and the person.

tikkabhuna commented on A qualitative analysis of pig-butchering scams arxiv.org/abs/2503.20821... · Posted by u/stmw

tikkabhuna · 3 months ago

The Scam Inc podcast from the Economist was very interesting. You need an Economist subscription, unfortunately.

Amazing how much infrastructure is built up to support these operations.

https://www.economist.com/audio/podcasts/scam-inc

tikkabhuna commented on We built an air-gapped Jira alternative for regulated industries plane.so/blog/everything-... · Posted by u/viharkurama

uxp100 · 5 months ago

I have had the opposite experience with Jira at a relatively large corporation (years ago). Our local Jira was probably just configured weird or on underpowered hardware though.

tikkabhuna · 5 months ago

Having adopted a number of development tools, including Jira and Confluence, it’s amazing people let them sit there chugging away on underpowered machines with hundreds of users quietly complaining about the speed. Throwing some extra CPU cores and memory is so cheap for the quality of life improvement, let alone the productivity gain.

tikkabhuna commented on Philadelphia Transit System Votes to Cut Service by 45%, Hike Fares bloomberg.com/news/articl... · Posted by u/petethomas

dylan604 · 6 months ago

I honestly do not think I've ever heard someone say that taking mass transpo is faster. Even if it does take "forever" in a car, people do not mind sitting in their car "forever" compared to sitting with strangers "forever"

tikkabhuna · 6 months ago

Obviously a very different view, but public transport in London (UK) is very much seen as faster than driving. The only reason someone would choose to drive is if they needed to transport something difficult to take on public transport.

tikkabhuna commented on Microsoft Office migration from Source Depot to Git danielsada.tech/blog/carr... · Posted by u/dshacker

com2kid · 6 months ago

At one point source depot was Toincredibly advanced, and there are still features that it had that git doesn't. Directory mapping being a stand out feature! Being able to only pull down certain directories from a depot and also remap where they are locally, and even have the same file be in multiple places. Makes sharing dependencies across multiple projects really easy, and a lot of complicated tooling around "monorepos" wouldn't need to exist if git supported directory mapping.

(You can get 80% of the way there with symlinks but in my experience they eventually break in git when too many different platforms making commits)

Also at one point I maintained an obscenely advanced test tool at MS, it pounded through millions of test cases across a slew of CPU architectures, intermingling emulators and physical machines that were connected to dev boxes hosting test code over a network controlled USB switch. (See: https://meanderingthoughts.hashnode.dev/how-microsoft-tested... for more details!)

Microsoft had some of the first code coverage tools for C/C++, spun out of a project from Microsoft Research.

Their debuggers are still some of the best in the world. NodeJS debugging in 2025 is dog shit compared to C# debugging in 2005.

tikkabhuna · 6 months ago

I never understood the value of directory mapping when we used Perforce. It only seemed to add complexity when one team checked out code in different hierarchies and then some builds worked, some didn’t. Git was wonderful for having a simple layout.

tikkabhuna commented on JEP 515: Ahead-of-Time Method Profiling openjdk.org/jeps/515... · Posted by u/cempaka

tikkabhuna · 7 months ago

Is this similar/the same as Azul Zing’s ReadyNow feature?

tikkabhuna commented on TLS certificate lifetimes will officially reduce to 47 days digicert.com/blog/tls-cer... · Posted by u/crtasm

IshKebab · 8 months ago

I disagree. Think about every time you use a service (website, email, etc.) you've used before via a network you don't trust (e.g. free WiFi).

On the other hand providing the option may give a false sense of security. I think the main reason SSH isn't MitM'd all over the place is it's a pretty niche service and very often you do have a separate authentication method by sending your public key over HTTPS.

tikkabhuna · 8 months ago

But isn't that exactly the previous posters point? Free WiFI someone can just MITM your connection, you would never know and you think its encrypted. Its the worst possible outcome. At least when there's no encryption browsers can tell the user to be careful.

tikkabhuna commented on TLS certificate lifetimes will officially reduce to 47 days digicert.com/blog/tls-cer... · Posted by u/crtasm

pixl97 · 8 months ago

Unless they are web/tech companies they aren't doing that. Banks, finance, large manufacturing are all terminating at F5's and AVI's. I'm pretty sure those update certs just fine, but it's not really what I do these days so I don't have a direct answer.

tikkabhuna · 8 months ago

F5s don't support ACME, which has been a pain for us.

tikkabhuna commented on Determining IaC ownership – a tag-based approach token.security/blog/iac-o... · Posted by u/marsh_mellow

tikkabhuna · 8 months ago

I've never considered ownership in an IaC repo down to the individual resource and I'm struggling to see the usecase.

We also use tags/labels to link the generated "thing" back to the repository that created it with:

- The repo URL

- The pipeline URL

- The commit hash (also retrievable from the pipeline details)

These are all discovered via GitLab CI variables [1].

From this we would use the Git repository to identify ownership. We have the benefit of our Infosec team having wide access to our GitLab instance, which might hamper other companies.

How would you handle a situation where someone creates a resource but then leaves?

The good thing about looking at an entire repository is that it gives you the entire history and who else might have worked on it. In hierarchical Git providers (eg. GitLab), it can also indicate where the project sits relative to others. If you just have a single person, you may struggle to find out who now owns a resource.

[1] https://docs.gitlab.com/ci/variables/predefined_variables/