Mostly cybersecurity strugles. If you invest millons in a castle with a gigantic lock and a pit full of piranas, would you leave the service entrance open and give everyone in town the key? Yeah, more commom than not.
But an IT audit is only necessary if your company goes public or is the owner wants it, maybe if you are a tech company.
I do other audits, mostly safety and environmental, and my big question is usually “nobody made you write this, why would you write this down if you don’t want to do it?”
For most regulations, the laws and rules say something like “companies must ensure X doesn’t happen”, and the companies themselves have to come up with a way to do that.
Let’s say the law says “companies that transport apples must be able to show which batch went where”.
Company A says “to comply with the law, whenever we move a shipment, we store the shipping order on our computers”
Company B says “to comply with the law, the truckdriver will film the place they left, count the apples when leaving, then email the entire dashcam trip, and count the apples on arrival”.
Neither process is wrong, they both follow the law. But when I go to Company B, I promise you they’re going to fail the audit. They’re (probably) not doing anything illegal, but they’re going to fail their audit because no truckdriver is going to count a truck full of apples.
They made that rule, and they really didn’t have to.
there are 2 types of rules, or controls as we call it: Legal requirements and internal policies. The first one is clear there are legal requirements in place and you have to be in compliance with. The second one is where I get the most wtfs. Internal policies are rules the company itself crated and said had to be followed. For example let’s say you are the IT manager of your company and you discover that everyones password to you system is 1234. You go out and look for market best practices and create a policy saying “All passwords must contain 6 numbers and 2 letters”. For this to be official you write it down and “publish” it internally.
Now, me as an auditor go there, look at the rule you created and check if it’s really in place or if you just wrote because. A lot of times it’s not. The company creates the rule but forgets or just postpone implementing it
Found my wife on Hinge - it actually felt like an app to match with people you’d like. Having to actually comment on the profile instead of swipe left or right based on the feel really helped.
Dipshit. It’s my favorite insult. If you call a man an asshole or fucker, many take it as a sign of strength or say, 'i just tell it like it is." Dipshit is stupid and juvenile and naive and just perfectly describes so many people.
I tried to swipe some word earlier and it decided what really wanted to say was ConocoPhillips. Why the fuck is that even in the dictionary in my phone? When would I ever want to say that?
For real. If someone could SCTUALLY (oh look another issue. It fails to work out the word if the first letter is wrong far too often) *ACTUALLY answer this question I’d be halfway happy
Phones learn from what you’re typing. The more you type (typo) something, the more they will recommend it to you. Vicious cycle if it auto corrupts it for you, and you miss it/ignore it thinking the other party will understand you fine. Eventually it learns the ironic typos as actual words and then you’re stuck with them when you type. I kind of wish there’s a way to review / manage the autocomplete dictionaries, but I haven’t tried hard enough to find out yet.
On my phone if I hold down on the suggested word in the keyboard area, I can delete it from “learned words.” This is only really helpful if it’s a typo that isn’t also a real word.
My phone still doesn’t know what fuck means or suggests it to me when I want to write it even though I use it fairly often. I also daily greet my coworkers over threema and it still hasn’t learned what I want to write when my sausage fingers and the too smal keyboard are at a disagreement what should be written.
It was totally to give you content to share today on Lemmy /s
I have wondered for a while if both the predictive and spelling ‘help’ these keyboard provide are getting broken because they’re integrating “what most people do” to your phone.
autocorrect is like downright scary now. you have to double, triple check what you typed is what WAS typed.
Disabling autocorrect showcased how bad I am at phone typing. But I have to be very mindful of what is actually corrected and corrected to. Especially in sms where there’s no easy edit
Tin foil hat: Spy phone/app/browser looking at what you’re reading and adding it to your keyboard hints. That particular company was mentioned in a recently linked article about the company triggering an earthquake from fracking in northern BC, as well as being sued by the state of California.
I’d assume it was something you’d typed once (maybe while searching or a typo). I always delete those words when they come up (for me that’s dragging the word up and a bin appears).
They used to have a nice obvious detail page for every app, now I get some small entry, a bunch of other apps that I might also want to install (spoiler, I don’t), and it’s harder to see useful information.
Do they really think I’ve gone to the Play Store to install my bank’s app, but I might also want to install a different bank’s app?
Dear Amazon, I bought a toilet seat because I needed one. Necessity, not desire. I do not collect them. I am not a toilet seat addict. No matter how temptingly you email me, I’m not going to think, oh go on then, just one more toilet seat, I’ll treat myself.
I find it bloated if the system have things I don’t need are noticeably using up RAM and CPU. I couldn’t care less about extra unused packages on disk, they’re dormant. I don’t care about a few daemons or resident apps I don’t use either if they’re idle all the time and use minimal RAM. Bloat for me is something that noticeably affects my running system.
I would probably add (as a couple of others have already mentioned) if it slows down the update process by pulling loads of software/dependencies that I’m not using.
Oh god, the “your computer slows down over time” BS from people who have no idea what they are talking about so “fuck it - just nuke and reinstall”.
Remove repos you aren’t using. Uninstall / purge things you don’t want anymore. If you don’t know how to fix it then you’ll just re-do everything that made it “slow” again.
I completely agree. This is also why I find find teams and discord to be especially frustrating; they're slow out of the box on the literal best possible hardware.
It's too early to say, as the method of accounting for 'active user' changed recently.
Seems to me like Lemmy is "consolidating". Some people are leaving but the community is deepening in norms, understanding, commitment and cohesion. This shows up as better content and discussions all the time. Spam is snuffed out quickly, more communities have better moderators. Our infrastructure is maturing and the software is getting better.
Theses stats are a bit weird to read and idk how trustworthy they are, but generally i would agree because even though total active user count might be stagnant, the comment and post numbers are steadily growing.
The total user count is meaningless. Look at the monthly active users. That gives a good picture. And those are the correct links and graphs.
(The total users mainly show how the Reddit exodus happened. Lots of people made an account and used it once. Thus the steep incline in users. But they’re not real, just zombie records. Also it’s heavily affected by instances moving, shutting down or doing maintenance. Also lots of people here have multiple accounts. And there is some degree of farming and bot activity…)
Hehe, now I get you. But I don’t think there is something like “total active…” 😆 It’s either the active users or the total amount… You just confused me by using both opposing words in a row.
Canada uses a mixture of imperial and metric, but not weights, so that’s an entirely false conclusion you’ve come to.
And that doesn’t help much, that’s only at sea level and a certain temperature, go do some baking with those exact conversions on a mountain and your cake won’t turn out at all.
You’ve completely missed the point, which is that most of the world measures ingredients (like flour for instance, where one pint is not one pound) by weight and not by volume.
In addition to what others said, the way you perceive light intensity is not linear. Between your eye adjusting to changing light levels and just the way your brains visual centers work, it’s closer to logarithmic. Indoor lighting at night probably feels like, what, 10% of the brightness of daylight? In reality it’s less than 1%, sometimes closer to 0.1%.
Our eyes also have the ability to desensitize to higher levels of light input, so the sun at high noon will be really bright but it’s the same as if you were in the complete dark for an hour and walked out into a brightly lit room. The eye gets used to the bright light. The same thing happens walking inside a low-light house from a bright day, it will take a minute to adjust but once you do your eyes have a completely different perception of light intensity.
With the solar eclipse, even 1% of the sun showing still lights an area greater than indoor lighting or perhaps even outdoor lighting, so we perceive it as still somewhat bright. This is sunset-level sunlight but the source is above instead of behind the horizon.
To me they look like chickpeas wearing windbreakers, and I prefer pecans. But you are welcome to your own preferences, enjoy! I do think hazelnuts are the very best nut with chocolate, even over pecans.
It’s just deceivingly worded. It’s not like they took that much out of the total supply, taking away from others that would have needed it. Reality is that hazelnut farmers were farming them in order to sell them to Ferrero.
I’m using the Pixel 5a. Solid phone, low price, unlocked so it can move networks, virtual SIM ready, 5G capable, and it has a headphone jack. Mine is a few years old and still cruising along just fine. I think they were under $500 at launch, so don’t believe anybody’s bullshit about headphone jacks drastically raising costs.
Pixel 5a was great, but the units that are a couple years old are having major issues with the charging circuitry / motherboard. My phone bricked overnight while charging. It seems widespread enough right now that they’ve completely run out of refurbished stock of 5as and 6as to send out for replacements. I waited 6 weeks for an RMA with absolutely no updates – was about to just give up, buy a new phone, and take Google to small claims court. Finally got a replacement unit because the “social media team made an exception for me” after I tweeted them.
No, definitely people wouldnt quarantine like that. But, H5N1 can have a really high mortality rate. From what I can tell, a near 100%. for birds and some marine mammals. I.e. every animal that catches it, dies.
Not to be macabre, but I don’t mean how long would people have to quarantine to beat back the virus. Im asking how long would an individual have to hide from everyone else, before everyone else, who refused to believe it was real, and whatnot, caught the virus and just…died.
Mortality rate has an inverse correlation to infection rate. So I would guess a really long time. Depending on infection vectors, maybe it could burn through dense population centers quickly. But anywhere rural it could come by whenever, it would be impossible to predict.
Anti-viruses are a scam and always have been. They aren’t much more than security theater and box ticking. Don’t get into the mindset that you can outsourse security to a single product. Security is something that happens in depth. The more intrusive av software can itself become an attack vector as it often runs with lots of privileges.
Distros operate with webs of trust and cryptographically signed packages. Your distro installer verifies the integrity of the package. There is no need to check a third party signature database. It adds no value. Even well audited software could contain hidden vulnerabilities so increasingly we are running software with less capabilities via systemd, flatpak/brwrap or in containers. The environment is very different to the origins of av software on Window 9x where people would download random unsigned executables to a system with no privilege restrictions.
There are lots of challenge for the FOSS community. We love features and freedoms and those features and freedoms sometimes make security more complicated. We need to show more restraint packaging software like ssh and not add so many patches and additional dependencies. We also need to show more restraint in the typical rust, go or javascript project where adding dependencies is so easy we end up sometimes including hundreds of them for stupid crap like coloured messages or being able to handle a dozen config file formats. I don’t care about your garbage collection or advanced compile time checks, if you include hundreds of crates from other developers you are no better than npm and I would put more faith in a 20 year old c library.
Antivirus software is really useful if you’re running a lot of workstations and/or severs and you can’t trust the users. It is just another layer of security.
For a single Linux user, there’s really no need for one.
And more, it’s known that av can increase sloppy behavior regarding security in people that does not know about security, making them feel safe and, therefore, clicking anywhere and installing anything
Av does increase the risk of being infected for most people
The way this xz backdoor was treated is good enough!
Identify
Announce
Evaluate
Rollback
Always with good version control and cryptographic keys to sign the packages
Don’t worry about WW3. The more inevitable thing that will destroy us is climate change.
But seriously, why worry about stuff you can’t change? If they launch the nukes, then you’ll be dead and so it won’t matter if you worried about it or not. So you might as well just not worry.
I don’t think parent poster meant to espouse nihilism. Rather just acceptance. You can still find meaning in living day to day if worrying about the future becomes debilitating.
This. Seeing one person who you helped smile makes you happy, even if it may not solve all the worlds problems. Volunteering has always brought me much more joy and helped me deal with existential dread better than ignoring the news or any other change I can make
Public service announcement that the OG nihilists like Nietzsche were actually pretty hyped about the meaninglessness of the universe. The idea was that it gave you more freedom to live life and find your own meaning, like you said.
kbin.life
Top