Damus
Open in Damus

Recent Notes

Eleanor Saitta profile picture
Changing phones, and my god it's fucking annoying what a walked garden chrome and firebox both are. Like Jesus fuck, absolutely zero possibilities to move bookmarks if you're not using their fucking desktop sync protocols? Like, it's bad enough that you have to use sync in the first place, but there's literally no phone to phone option? Not to mention no option to, you know, just use a fucking json file.

[If you want to suggest an alternate browser, please spare me instablocking you]
Lesley Carhart :unverified: · 13w
Feels different than Iraq. In 2001-03 everyone was in for whatever and it was blasphemy to say the war was unjust or ill advised. Everyone was ready to enlist. People donโ€™t want to die for Israel ...
 Eleanor Saitta profile picture
Eleanor Saitta @Eleanor Saitta
@nprofile1q...
There was definitely a broad base of support then for military action and security โ€” one which was viciously abused in ways that we are still now seeing the fallout from domestically, let alone internationally.

That's said, as others have, I cannot let that statement that everyone was all in go unchallenged โ€” tens of millions of us were dead set against it and in the streets trying to stop what was in the end as predicted โ€” another round of pointless warfare that left the country and the world a much worse place.
Eleanor Saitta profile picture
Today I've been told that C is memory safe if you're just very neat, that code is documentation, and that expecting protocol specs is a form of bias?

I didn't realize it was 90s week; I'll go get a flannel.
๐“ผ๐“ฎ๐“ป๐“ช๐“น๐“ช๐“ฝ๐“ฑใ€ใƒ„ใ€‘โ˜ฎ(๐Ÿ“๐Ÿ‡จ๐Ÿ‡ฆ) · 14w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqq2u2afqm22e4k9kt4rxvl205pks6zmxuwq5dkuzgc6g8rp3x6cqqn9x9w4 nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpq5zducn0qs573hhreraem60awk3dpfc8...
 Eleanor Saitta profile picture
Eleanor Saitta @Eleanor Saitta
@nprofile1q...
@nprofile1q... @nprofile1q... @nprofile1q... and like, sure, building on convenient stacks with no properly documented security model is fast if your system will also have no documented security model and no security validation. But then you don't have a secure messaging tool, you have a vibes messaging tool.
๐“ผ๐“ฎ๐“ป๐“ช๐“น๐“ช๐“ฝ๐“ฑใ€ใƒ„ใ€‘โ˜ฎ(๐Ÿ“๐Ÿ‡จ๐Ÿ‡ฆ) · 14w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqq2u2afqm22e4k9kt4rxvl205pks6zmxuwq5dkuzgc6g8rp3x6cqqn9x9w4 nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpq5zducn0qs573hhreraem60awk3dpfc8...
 Eleanor Saitta profile picture
Eleanor Saitta @Eleanor Saitta
@nprofile1q...
@nprofile1q... @nprofile1q... @nprofile1q... and why would bittorrent not have threat model? Certainly, I'd expect that a safety critical app using it as a transport layer would need to take the time to figure what threat model it de facto implemented and make sure that was suitable for how they were using it. That's much more expensive than doing it the other way around, though, and leads to dangerous cases where the upstream does not know what security properties of their system downstream users are depending on them, leading to nasty and hard to fix vulnerabilities when they're broken without notice. Which is why folks building systems where security matters usually build on tools with a proper security engineering foundation.
๐“ผ๐“ฎ๐“ป๐“ช๐“น๐“ช๐“ฝ๐“ฑใ€ใƒ„ใ€‘โ˜ฎ(๐Ÿ“๐Ÿ‡จ๐Ÿ‡ฆ) · 14w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqq2u2afqm22e4k9kt4rxvl205pks6zmxuwq5dkuzgc6g8rp3x6cqqn9x9w4 nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpq5zducn0qs573hhreraem60awk3dpfc8...
 Eleanor Saitta profile picture
Eleanor Saitta @Eleanor Saitta
@nprofile1q...
@nprofile1q... @nprofile1q... @nprofile1q... Yes, that actually is a red flag, very literally. Especially if folks are suggesting it's the right stack to replace tools where a breach may result in many many deaths.