Most software is a terrible pile of unreadable code with no tests and horrible architecture choices, that somehow manages to keep working just through the power of years of customers finding bugs and complaining loud enough to get them fixed.
If you write any automated tests at all, you’re already better than most “professional” software companies. If you have a CI/CD pipeline, you’re far ahead.
Most of hacking is done by mass effort with maybe a couple percent of people that aren’t doing basic things to protect themselves being affected. That couple of percent is enough to keep the hackers flush. (So please, follow basic cybersecurity steps, people.)
The plain truth of the matter, though, is that if a hacker or group of hackers is targeting someone individually for reasons, that person is in real trouble.
This has been a PSA for everyone chasing fame and clout.
I miss the days of Anonymous (there was a sub group of the actual hackers whose name I can’t recall and a bunch of wannabes I guess providing them a crowd to lose themselves in) doing justice hacks. Not that they were always on the right side is things, but now everything is state actors trying to bring us all closer to Armageddon.
Alt2600?
Tips for being secure online:
- Use your browser’s password manager to generate random passwords.
- In the rare case you need to manually enter your password into a site or app be very suspicious and very careful.
- Never give personal information to someone who calls or emails you. If necessary look up the contact info of who called you yourself and call them back before divulging and details. Keep in mind that Caller ID and the From address of emails can be faked.
- Update software regularly. Security problems are regularly fixed.
That’s really all you need. You don’t even need 2FA, it is nice extra security but if you use random passwords and don’t enter your passwords into phishing sites it is largely unnecessary.
Im not so sure about your number 1. Fine if otherwise they won’t use one but personally I use bitwarden online for unimportant ones and a local keypass for important ones.
The reason I say browser password manager is two main reasons:
- It is absolutely critical that it checks the domain to prevent phishing.
- People already have a browser and are often logged into some sort of sync. It is a small step to use it.
So yes, if you want to use a different password manage go right ahead, as long as it checks the domain before filling the password.
What do you mean a password manager that checks the domain? Isn’t the auto fill based on the domain? I can’t imagine how a password manager could fill a password without checking the domain, it wouldn’t know which password to fill after all. Do any actually exist?
There are some password managers where you need to either manually look up passwords and copy+paste or autotype them or select the correct password from a dropdown. Some of these will come with an optional browser extension which mitigates this but some don’t really tract domain metadata in a concrete way to do this linking.
Some examples would be Pass which doesn’t have any standard metadata for domain/URL info (although some informal schemes are used by various tools including browser-integration extensions) and KeePass which has the metadata but doesn’t come with a browser extension by default.
I see, so you mean manually getting the password out of the manager instead of domain based autofill.
All your fancy shampoos, body wash, and dish soap are exactly the same. Just different smells, colors, and water contents. Also, all mainstream brands are owned by a total of 3 companies.
Yes, no, sort of.
I mean shampoo is definitely not the same as laundry soap.
And even between shampoos, there are differences (as anyone with skin conditions can attest).
Are products in any one category largely the same? Yes. But there are differences.
Wash your hair with conditioner instead of shampoo. Both have detergent so they will both clean your hair, but conditioner is less harsh.
Most conditioners contain silicone. Why would you put that in your hair?
For long hair it helps with combing. Just like the old silicone spray for ballpoint mice, it reduces friction with the comb.
ballpoint mice
A USB mouse … For ants?
Most lotions contain dimethicone, a silicone relative.
They both work by being moisture barriers, preventing moisture loss (for hand lotion).
As someone who struggles with skin issues, I don’t even bother with lotions that don’t have dimethicone, they’re practically useless for me.
Depends on hair type. Conditioner can be heavy on baby fine hair. I almost never condition my chicken feathers.
Shampoo is for cleaning your scalp…not your hair.
This is only really beneficial for certain types of hair, and definitely don’t do it with conditioners containing sulfates, parafinss, or silicones. This site has a comprehensive list of products that aren’t filled with garbage what’ll leave your hair drier than it started.
Any recommendations for “normal” hair?
If your hair is neither thick nor fine and you’re not having any problems with buildup or dryness, you’re totally fine to just keep doing what you’re doing. Also if you’ve got straight and/or short hair you can probably ignore the no-sulfates/silicones stuff.
Most hair care products are designed for a specific kind of hair, usually straight and pretty flat. I started using black hair care products and my hair went from wavy and frizzy to natural ringlets and only sorta frizzy! SheaMoisture is my personal favorite brand.
I don’t think this one is true. I’ve definitely had different brands and types of shampoo and conditioner give better and worse results for my hair.
If you’re using CG approved products this isn’t necessarily true. Highly recommend for anyone with even a tiny bit of natural curl, you might actually have some beautiful ringlets in there if you care for em properly.
Oh hell yeah, the shampoo I use is on here!
What about baby shampoo? Isn’t it better for you than regular stuff?
They are generalizing, because if you delve into non major brands some are glyvlcerine based some, have aloe base , oatmeal etc rather than ethylene glycol and sodium laurel sulfate type standards ingredients (coconut extract is that nautral source of sodium laurel sulfate, some natural branda might be actual cocunut milk, but many use manufacture chemical additive)
Having just switched from Old Spice Swagger to SheaMoisture products I can assure you that ‘different smells, colors and water contents’ result in radically different outcomes in hair softness and smoothness!
The interview is a vibe check first and foremost. If you vibe with the team we will overlook other things in your application. If you made it to interview, we already think you’re good enough so don’t stress trying to impress or apologize.
Managers are mostly people who get tired of watching other people do things badly and decide to try to do better. You don’t need a special degree or any magic to be a good manager, you should like people though.
Everyone is faking it to some degree.
Everyone is faking it to some degree.
Most valuable lesson I was ever forced to learn.
Can confirm with a very condensed anecdote: I once applied for a job that required engineering degree in electronics or mechanics. I’m a hischool dropout. Interview went well, and I got a job offer a month later. I got the impression that they were more interested in the right type of person with relevant hands-on experience, and in my case that experience meant IT/Linux (I was always a hobbyist geek)and being used to operating heavy machinery (Grew up on a farm).
I’m still in the same industry, and I earn more than my friends with masters degrees.
The „you have to like people“ part took me nearly 20 years to figure out. I hate people in general with possible remedy for people who are nice. I‘m exceptional at managing people, I just dont vibe with them. This leads to absurd situations where everyone is happy, professionally but folks just hate my guts.
So, I now work alone and am happy with it. :)
If people hate your guts chances are you’re not a good manager.
I actually am genuinely interested in that fellow’s reasoning behind believing both that his job of managing people is successful, and also that all the people he managed do not like being managed by him.
Anecdotally, I have encountered workplaces containing a manager or employee that was universally disliked, and it was never because they were doing an awesome job. They did appear to think that people disliked them personally but benefited from their results. Often they seem to also believe those results would be unachievable in ways that do not produce the distaste. I am not sure these contradictions are entirely defensible.
As a fellow non people person, god I wish I was part of your team!
God I wish I was part of your team
As a fellow non people person
Press X to doubt.
people are generally ok. put them in a situation where they can climb over other people to advance and watch the rot begin.
so, while people are generally ok, corporate people are generally not.
Or any business, not even corporate.
You see the same crap in SMB.
Super Mario Bros?
Personality, presence and confidence
Natural self confidence, but an arrogant selfish confidence.
Some people naturally have confidence and presence and some people need to build it as a skill.
I know guys and gals with little to no knowledge or skill build up careers because they just knew how to talk and connect to people.
I also know guys and gals with years of education and degrees but have little to no way of politely or easily getting along with people.
The world is littered with fake empty buildings used to obscure phone line junctions and internet provider stuff.
Almost every neighbourhood has one. But they look like normal houses, so you can never tell unless you know where to look for.
IT, more specifically user support.
Let’s talk passwords. You should have a different password for every site and service, over 16 character long, without any words, or common misspellings, using capital, lowercase, number and special characters throughout. MyPassword1! is terrible. Q#$bnks)lPoVzz7e? is better. Good luck remembering them all, also change them all every 30 days, so here are my secrets.
1: write your password down somewhere, and obfuscate it. If an attacker has physical access to your desk, your password probably isn’t going to help much. 2: We honestly don’t expect you to follow those passwords rules. I suggest breaking your passwords down into 3 security zones. First zone, bullshit accounts. Go ahead and share this one. Use it for everything that does not have access to your money or PII (Personally Identifiable Information). Second zone, secure accounts, use this password for your money and PII accounts, only use it on trusted sites.Third, reset accounts. Any account that can reset and unlock your other accounts should have a very strong and unique password, and 2FA.
Big industry secret, your passwords can get scraped pretty easily today, 2FA is the barest level of actual security you can get. Set it up. I know it’s a pain, but it’s really all we’ve got right now.
Many game companies specifically target vulnerable people, who end up spending their entire pay check every month, and are called Whales.
The use of chatgpt for writing is so widespread in higher ed, it will cause serious problems to those students when entering the workforce.
Lots of fancy stuff is written about how we just have to change the way we teach!, and how we can use chatgpt in lessons! blablabla, but it’s all ignorant of the fact that some things need to be learnt by doing them, and students can’t understand how they hurt their own learning, because they don’t know what they don’t know.
The quality of education at college and university is in free fall.
@protein Many things that you’d think would be under lock and key… are not. Credentials for, say, a database of subscribers to a telephone company? Just ask the team and say you’re working on an integration, they’ll happily send you the password in plain text
In the UK, slot machines fall into 4 main categories. Of particular interest are category C machines, as these can remember a fixed number of previous games. I.e. the “myth” that a machine is “about to pay out” because “someone lost a lot to it” can hold for these games.
Cat A and B machines are completely random, previous games can have no impact on probabilities of winning (though pots can climb).
Online games have different rules, not always fair ones!
Oh, and ALL games (in a physical location) must (by law) show “RTP” (return to player) somewhere. It usually gets stuck it in a block of text in the manual since no-one reads them. (If it’s below 97.3% just go play roulette as it offers better returns).
These aren’t secrets, but may not be well known (unless you watch LPL):
Sentry Safes aren’t safes, they are fire boxes with a fancy lock.
High security locks are not high security because of the lock design, but because the keys are very difficult to have duplicated.
No one (except maybe intelligence agencies) breaks in to a house by picking a lock, especially in the US. Windows, weak door frames, and, in a pinch, making a hole in the wall are all faster ways of getting in.
Car keys are so expensive because many manufacturers charge a subscription or per-use fee to access and program the keys to the ignition. These costs are passed on to consumers
No one is picking your locks just to move things around or steal small, insignificant items. You are either suffering from a mental disorder or a trusted member of the household is gaslighting you (it’s not gaslighting though, you’re grasp of reality is slipping. Don’t call me for a pick proof lock, just get help please)
Some manufacturers (you know, in China) will put any sticker you want on the products they produce, including UL and ANSI stickers. Before buying a product that is supposedly fire-rated, such as a fire safe, check the UL website to verify the item is actually listed with them.
“Grade 1” door hardware sold in stores like Lowe’s or Home Depot is, at best, Grade 2, and is likely Grade 3 (residential grade). These grades are really just about how durable the product is over time, and how much abuse they will endure by the public.
And just a little practical advice. Find a qualified, honest locksmith before you need one. We’re like plumbers. If you wait until you have an emergency to find one, the quality will be questionable. There are a lot of scammers out there. If you don’t have a resource for locksmiths beyond Google, look on the ALOA website for members in your area. The good ones will know who the other good ones are, and won’t be shy about sharing that info if they are unavailable or too far away
Soylent Green is people.
If you value your privacy and you have a choice between using a browser to access a service vs installing their app, use the browser.
Online services can get much more information about you through an app vs the browser. Browsers are generally locked down more. Apps in general have access to much more information from your device.
With the exception of at large buildings in dense city centers, just about everywhere else, utilities enter a building at just some point on the back, out in the open. This includes utilities that feed alarms and security cameras.
While some places will have systems in place for situations where these outside connections have been severed, like independently operated cameras on an intranet, cellular data backup for alarms, electrical generators, etc., most places don’t, so successfully circumventing their security is just a matter of cutting all the cables on the back of their building at the same time, and then being gone before they notice
