Threads for surstromning
-
Never heard the term page builder before. Does this just mean CMS?
-
-
Actually, I was referring to tools like these: https://www.wpbeginner.com/beginners-guide/best-drag-and-drop-page-builders-for-wordpress/.
-
The article mentions “ I am referring to the WordPress and Shopify ecosystems here”. So CMS-ish.
-
Think Google Sites, Squarespace or Wix. These are WYSIWYG interfaces where you drag and drop text boxes, images, forms and so on to create pages. They are technically CMSes, but a lot less sophisticated and but more easily made to show a custom page than a true CMS like drupal.
-
-
It has been about a year now. Is this guide still valid?
-
It is, very few things change and I updated it.
-
-
Warrant canaries seem to be useless:
-
they’re built on a legally questionable premise
-
there’s no way to monitor them in bulk because no standard format exists
-
providers update them with meaningless frequency and discontinue them without any acknowledgement
and the worst point: all those things train us to ignore them. If you accept the premise we’d be treating Talos as compromised, right now. That’s what a warrant canary expiring means. It doesn’t mean “ask (the federal agent) on Twitter if they’re going to sign a new canary”, it means “you now must assume this entity has been compromised because they took the time to build a system to tell you that and look they’re now using it”.
Sadly it seems warrant canaries are a fail open system.
-
-
-
-
When Riseup’s canary expired HN was saying the same things:
https://news.ycombinator.com/item?id=13007234
The top comments from a techno wonk audience that would be likely to understand canaries were dismissive of the situation, even when Riseup posted suggestive tweets and stalled when asked about the canary.
If Occam’s Razor points you to thinking that the expiry of a canary is anything other than signal, the channel is nothing but noise.
-
Anybody who knows the state of infosec understands that they ought to be paranoid.
Actually being paranoid is exhausting, so when it comes to the brass tacks, few people actually go to the hassle of being truly paranoid.
-
-
-
-
-
Agree. What good alternatives are there for riseup?
-
-
Yes, it’s only my best guess about the company that says they aren’t. I can’t prove they’re not until they update it, which they haven’t so far.
-
-
-
https://opentimestamps.org is good for this I believe.
-
-
-
-
Thanks for creating wireguard. Do you still mail out stickers?
Wow. These are great. I would love if it would be possible to run “perf stat” as a regular user in some limited form so that it would be a replacement for ‘time’ but with more details.