So, if you ask me what my takeaway from the Crowdstrike issue is, I'd say: boot counting/boot assessment/automatic fallback should really be a MUST for today's systems. *Before* you invoke your first kernel you need have tracking of boot attempts and a logic for falling back to older versions automatically. It's a major shortcoming that this is not default behaviour of today's distros, in particular commercial ones.

Of course systemd has supported this for a long time:

https://systemd.io/AUTOMATIC_BOOT_ASSESSMENT/

**Chris Ellis** · Jul 19, 2024, 16:48

Chris Ellis boosted

**pronto** @pronto@chaos.social · Jul 19, 2024, 16:48

Jul 19, 2024, 16:48

pronto @pronto@chaos.social

KIT KAT wins the internet today

45c0029b01728922.png

**Chris Ellis** · Jul 19, 2024, 12:10

Chris Ellis boosted

**hanno** @hanno@mastodon.social · Jul 19, 2024, 12:10

Jul 19, 2024, 12:10

hanno @hanno@mastodon.social

Let's cut the bullshit and spell out a few things. The IT security industry is about as trustworthy as the food supplement and vitamin industry, but somehow they escaped the same reputation. Their products are overwhelmingly based on flawed ideas, and the quality of their software is exceptionally bad. And while not everyone will agree with the harshness of my words, I'll say this: Essentially everyone in IT security who knows anything in principle knows this.

**Chris Ellis** · Jul 19, 2024, 10:56 *

Chris Ellis boosted

**Hector Martin** @marcan@treehouse.systems · Jul 19, 2024, 10:56 *

Jul 19, 2024, 10:56 *

Hector Martin @marcan@treehouse.systems

Ah yes, let's ship a kernel driver that parses update files that are pushed globally simultaneously to millions of users without progressive staging, and let's write it in a memory unsafe language so it crashes if an update is malformed, and let's have no automated boot recovery mechanism to disable things after a few failed boots. What could possibly go wrong?

🤦‍♂️

**Chris Ellis** @intrbiz@bergamot.social · Jul 19, 2024, 09:55

**Chris Ellis** @intrbiz@bergamot.social · Jul 19, 2024, 09:55

Jul 19, 2024, 09:55

Chris Ellis @intrbiz@bergamot.social

@tomasv haha indeed. Or who needs to target XZ, when you could target security software.

**Chris Ellis** @intrbiz@bergamot.social · Jul 19, 2024, 08:10

**Chris Ellis** @intrbiz@bergamot.social · Jul 19, 2024, 08:10

Jul 19, 2024, 08:10

Chris Ellis @intrbiz@bergamot.social

Feels like a good day to be a Linux Desktop user :)

**Chris Ellis** @intrbiz@bergamot.social · Jul 18, 2024, 21:47

**Chris Ellis** @intrbiz@bergamot.social · Jul 18, 2024, 21:47

Jul 18, 2024, 21:47

Chris Ellis @intrbiz@bergamot.social

@badlogic as in a device which speaks some prerecorded messages as random?

**Chris Ellis** @intrbiz@bergamot.social · Jul 18, 2024, 21:24

**Chris Ellis** @intrbiz@bergamot.social · Jul 18, 2024, 21:24

Jul 18, 2024, 21:24

Chris Ellis @intrbiz@bergamot.social

@badlogic

Anything under 12V its very hard to do any damage, except to your wallet.

Don't get too hung up on component values, most simple electronics is a lot more forgiving than people think. We often only care about being within an order of magnitude, or the rule of thumb.

**Chris Ellis** @intrbiz@bergamot.social · Jul 18, 2024, 21:21

**Chris Ellis** @intrbiz@bergamot.social · Jul 18, 2024, 21:21

Jul 18, 2024, 21:21

Chris Ellis @intrbiz@bergamot.social

@badlogic I'd start with an idea, what do you want to make?

Once you have that, it's way easier to make it happen, since you'll want to do it, despite it maybe being hard.

A lot of the same logic from software applies in hardware, the gratification cycle is somewhat slower and longer, with bigger highs and deeper lows, in my experience.

Failing that, pick up a RPi Pico, some basic kits of components, a breadboard and a reel of single core wire. Then give your idea a go.

**Chris Ellis** @intrbiz@bergamot.social · Jul 16, 2024, 13:19

**Chris Ellis** @intrbiz@bergamot.social · Jul 16, 2024, 13:19

Jul 16, 2024, 13:19

Chris Ellis @intrbiz@bergamot.social

Schedule Published For PGDay UK 2024 - @postgresuk

We're excited to publish the scheduled for this years PGDay UK PostgreSQL conference.

The schedule offers a wide range of talks covering different topics, which I'm sure will appeal to a wide audience.

Take a lot of the schedule:

https://pgday.uk/events/pgdayuk2024/schedule/

And get yourself a ticket to the UK's best PostgreSQL Conference.

#postgresql #pgdayuk #pgday #pgconf

7169bc3c642d596f.png

**Chris Ellis** · Jul 10, 2024, 18:55

Chris Ellis boosted

**Jared White** @jaredwhite@indieweb.social · Jul 10, 2024, 18:55

Jul 10, 2024, 18:55

Jared White @jaredwhite@indieweb.social

Programmers using LLMs:

I type in a comment and poof, new code appears! I am productive.

Programmers not using LLMs (like me):

I sometimes re-type code carefully that's similar to what's already in the codebase because the act of typing it out helps me bond with the concepts I'm expressing in code.

----

The thing is, we're not just arguing about tools.

*We're arguing about how to be artists.*

My code is the same as my music, photography, and writing.

Why are you outsourcing your art?

**Chris Ellis** · Jul 09, 2024, 17:29 *

Chris Ellis boosted

**Claire Giordano ✨** @clairegiordano@hachyderm.io · Jul 09, 2024, 17:29 *

Jul 09, 2024, 17:29 *

Claire Giordano ✨ @clairegiordano@hachyderm.io

We renamed the #PathToCitusCon monthly #podcast & the new name is #TalkingPostgres!

If you're already subscribed, everything should just work. & if you've not yet listened to the podcast about #PostgreSQL, maybe it's time? People say they like it 🙏 & that makes me happy, will keep making it useful & interesting ❤️

Boosts appreciated...

https://techcommunity.microsoft.com/t5/azure-database-for-postgresql/say-hello-to-the-talking-postgres-podcast/ba-p/4186111
#Postgres #community #OpenSource #Microsoft #database

**Chris Ellis** · Jul 08, 2024, 08:23 *

Chris Ellis boosted

**Claire Giordano ✨** @clairegiordano@hachyderm.io · Jul 08, 2024, 08:23 *

Jul 08, 2024, 08:23 *

Claire Giordano ✨ @clairegiordano@hachyderm.io

You can join us for the next LIVE recording of the #TalkingPostgres #podcast (Ep17, formerly called #PathToCitusCon), with a parallel live text chat (it's fun!) 👋

🗓️ Wed July 10 @ 10:00am PDT
🎙️ Guest: the awesome Pino de Candia (& former co-host)
✅ Topic: Podcasting about Postgres
📣 Cal invite w/instructions on how to join the Discord: https://aka.ms/TalkingPostgres-Ep17-cal

#discord #OpenSource #community #PostgreSQL #Postgres #database #Microsoft

558fc2795306046d.png

**Chris Ellis** · Jul 09, 2024, 09:58

Chris Ellis boosted

**PGDay Lowlands** @pgdaylowlands@hachyderm.io · Jul 09, 2024, 09:58

Jul 09, 2024, 09:58

PGDay Lowlands @pgdaylowlands@hachyderm.io

The final countdown! Our #CfP closes in 12 hours from now! Get all your talk proposals in or be square 🟦: https://2024.pgday.nl/call-for-papers/

**Chris Ellis** · Jul 05, 2024, 23:17

Chris Ellis boosted

**RAOF** @RAOF@toot.cat · Jul 05, 2024, 23:17

Jul 05, 2024, 23:17

RAOF @RAOF@toot.cat

Vague subtoot:
The aversion to “politics” is a pathology of the tech scene. It's an extension of our denigration of “soft skills”.

Politics describes the process by which a group of two or more people make decisions.

Rejecting a PR to make documentation language gender-neutral is a political decision. Accepting such a PR is a political decision.

But! Accepting or rejecting a PR that adds a command line option is also a political decision! The difference is that this sort of PR is¹ less contentious.

¹: probably! There are plenty of examples of extremely contentious PRs.