The only thing that surprises me is that anyone is surprised.
I don’t intend that to be snarky, more jokey. But, yeah, it’s pretty much common knowledge. Not the first time they’ve expressed unpleasant opinions on the subject, though not quite this bluntly. There was a minor kerfluffle over it not too long after the reddit exodus.
And it isn’t unexpected tbh, that’s a pretty bog standard tankie take, if perhaps a tad more trope filled.
To me, lemmy is kinda like a less important version of the Apollo missions. You put up with someone unpleasant because they can get the job done, until things get to the point it can be done without them. German scientists, tankie devs. Yeah, yeah, von Braun wasn’t a “real” nazi; whatever.
At some point, either lemmy gets enough movement to get a less extreme team on board, it gets forked, or something else comes along.
Genuinely curious … what exactly is the problematic stance here?
Is it that they think the boxer was a biological male and therefore trans female? Or is it referring to then as a biological male (which seems justifiably politically incorrect to me but not heinous in trying to point out that the Olympic/bougousie can’t be that transphobic, could honestly be a language problem).
Or is it the statement that the bourgeoisie aren’t trans phobic?
“The transgender topic” is already weird as a statement (kinda like “the gay agenda”, it comes off as only considering it as a political statement?), and “clearly promoted by the bourgeoisie” implies it’s bad.
“As far as […] lgbt flags on government buildings”: it’s… not far at all? Again, weird statement.
“Biological male” is both wrong for the boxer (she’s cis) and generally used for transphobia (trans women on HRT aren’t biological males by any reasonable definition). It’s also generally conspiratorial.
Overall it’s not explicitly transphobic or bad to me, but it shows at minimum a very misinformed perspective.
Overall it’s not explicitly transphobic or bad to me, but it shows at minimum a very misinformed perspective.
Yea that was my impression too. AFAIU, they’re from Europe so there may be a language barrier too. Don’t know how true that is though of course.
Otherwise, tangentially, as far as all the anti-tankie sentiments that may have been prompted by this are concerned, I’ve only seen good culture from them on trans issues.
I personally don’t see that in the statement … at all actually. Maybe they believe that, I don’t know … but I’d need to seem more to believe that.
From the context of the conversation, it seems more like the inversion, where they doubt that transphobia is some kind of bourgeoisie conspiracy given that trans-rights are getting support from enough parts of mainstream society.
Which IMO, as I’ve said in other comments, is a rather superficial angle on the whole thing (from both sides of the posted conversation). There’s undoubtedly a lot of transphobic energy in mainstream society, with plenty of influential people being shitty people about it, but whether it is or isn’t some conspiracy or whatever doesn’t seem like a helpful way of looking at it.
I could of course be wrong and ignorant. It just seems to me like the malice v incompetence dynamic, where most people can be vile for pretty base reasons, without culture playing a big role but without it having to be some conspiracy or organised effort (as the person nutomic was responding to was claiming)
Let’s lube up a leather couch, put it under a crate propped up with a stick in his Senate office, and once we catch him, see if the trap is filled with little Ottoman Vances.
Seems like a very reasonable objection to me. I’d guess that most of us Immich users are using it in the first place because it improves the privacy of our photos, and a third party seeing our location data certainly undermines that.
I would have complained had I noticed, so you might be the first one to notice. Immich’s userbase isn’t huge right now, it’s definitely possible.
Featurewise, I’d like: a) a clearly documented way to disable map data leaving my server; b) a set of well-integrated choices (maybe even just two, as long as one of them is something like openstreetmap); c) the current configurability to be well documented.
I’d love it if all such outbound data streams are also documented. Many security and privacy-focused products give you a “quiet” mode of some kind, where you can turn off everything that sends your data somewhere else. It’s a requirement in many enterprise installations.
Thanks for the detailed feedback. According to one Immich dev, they used to use OSM’s raster tile provider but switched away from it since they were causing too much load on OSM’s servers.
There does not seem to be any non-commercial vector-tile provider at the moment (though OSM seems to be currently working on it), and it seems really overkill to try and self-host a tile provider (at least with the default level of details). Maybe the way is to find a balanced level of details that makes it reasonable to self host
They could host their own caching proxy between OSM and their users though.
Also, Home Assistant uses OpenStreetMap and they have more users than Immich does.
Edit: Home Assistant does use OSM data, but they use it via another third-party called CARTO, who at least have a proper site: carto.com/basemaps. Tiles come from URLs like https://basemaps.cartocdn.com/rastertiles/voyager/12/657/[email protected]
Home assistant’s main use case is showing you where your house is on a single map, though. Not sure how immich works, but if it’s one tile per photo with location data, that would be a MUCH bigger ask.
At the end of the day, someone has to pay for it. Either the users pay, or Immich’s developers pay, or a map provider pays (by offering it for free and covering the costs).
Or you can quite easily configure nginx as your personal caching proxy with an arbitrarily long TTL/retention duration (you can check out my follow-up post for instructions on doing that)
You could also start by denying any outside connection to anything except private IP ranges for any docker container, and only allow it on a need to have basis.
It’s not enough to rely on the the good will and savvy of whoever made the software, you have to make the restrictions stick.
It’s the clients (web/android app, probably iOS too) that are making these requests.
To the best of my knowledge, the Immich server inside the container is not making requests to the outside. It is merely sending a style.json to the client displaying a map, which then fetches tiles from the Cofractal URL inside this JSON.
I have posted about this before. I’m pretty sure I win.
I’m not going to name names. I worked for a company, three of their clients include the United States Air Force, the United States army, and the United States Navy. They also have a few thousand other clients, private sector, public, and otherwise. Other nation states services as well.
I worked for this company quite recently, which should make what I’m about to tell you all the more alarming. I worked for them in 2021.
Their databases were ProgressABL. I linked it because if you’re younger than me, there’s a slim chance in hell you’ve ever heard of it. I hadn’t. And I’m nearing 40.
Their front end was a bunch of copy/pasted JavaScript, horribly obfuscated with no documentation and no comments. Doing way more than is required.
They forced clients to run windows 7, an old version of IE, all clients linked together, to us, in the most hilariously insecure 1990s-ass way imaginable, through tomcat instances running on iis on all their clients machines.
They used a wildcard SSL for all of their clients to transact all information.
That SSL was stored on our local FTP server. We had ports forwarded to the internet at large.
The password for that ftp server was 100% on lists. It was rotated, but all of the were simple as fuck.
I mean, “Spring2021”. Literally. And behind that? The key to deobfuscate all traffic for all of our clients!!
The worst part was that we offered clients websites, and that’s what I worked on. I had to email people to have them move photos to specific directories to get them to stop failing to load, because I didn’t have clearance to the servers where we stored our clients photos.
We had legit secure servers. We used them for photos. We left the keys to the fucking city in the prize room of a maze a 12 year old could solve.
I worked with Progress via an ERP that had been untouched and unsupported for almost 20 years. Damn easy to break stuff, more footguns than SQL somehow
Lol you can totally do it in a home server application. It’s even okay if I’m a e-commerce store to use wildcard for example.com and shop.example.com. not a best practice, but not idiotic.
Not idiotic unless you also have a hq.example.com that forwards a port into your internal network…
…where ftp://hq.example.com takes you to an insecure password shield, and behind it is the SSL certificate, just chillin for anyone to snag and use as a key to deobfuscate all that SSL traffic, going across your network, your shop, your whole domain.
Have you ever been behind a car with a driver that has one foot on the brakes and the other on the gas. It seems to resemble the effect you are looking for and incredibly distracting and annoying. When brake lights go on you expect them to be making a stop or rapid deceleration so you do the same as well as the people behind you and all of the sudden you are speeding up, slowing down, back and forth. It's becomes a terrible way to drive. The reason we have 2 eyes is to be able to judge these things and it works fine if you aren't driving distracted.
Some EVs and hybrids have a ‘one foot driving’ mode where if you take your foot off the gas, it does start to actively brake and you will eventually come to a complete stop. Technology Connections did a video on it a little while back, showing how it can be bad if the brake lights aren’t programmed to come on in this situation.
Actually, that game breaking bug was caught weeks ago by QA. Unmoving deadlines set by upper management meant that a fix couldn’t be made in time for the content schedule.
Also, by the time the game has been released for 1 hour, the players have already racked up more playtime than the full QA team could reasonably achieve throughout several years of development (and for most of that time QA we’re playing an older version…). So, if your game has a lot of player choice, randomization, simulation, complex systems, chances are the players are seeing things that QA never did. And then the players wonder how QA could miss such an obvious bug.
I’ve mothballed multiple RCs from finding P0 issues by pure chance. In my experience, 90% of bugs are already caught by QA, 8% were isolated bugs that would realistically never get caught in QA, and 2% just slip through.
I’ve used a decompiler to peek at the source code of an app written in Visual Basic I wanted to recreate as a browser addon. It was mostly successful but some variable and function names were messed up.
Variable names, class names, package structure, method names, etc. won’t normally be maintained in the disassembled code. They are meaningless to the CPU, and just a series of memory addresses. In cases where you have method names being mentioned, it’s likely a syscall, and it’s calling a method from an existing library. I’m not familiar with VB, but at least in .Net and .Net Framework, this would be something like the System.Collections.Generic providing the implementation for List<string> and when .Sort() is called, it makes the syscall to that compiled .dll.
Instead of just getting the down votes, I’ll explain why that wouldnt work.
The AI itself cannot decompile it without the same tools I would use. The AI would then end up with the same starting spot I have.
Current LLMs do not know how to interpret code logic, and would likely make mistakes in Syscalls, register addresses, and instructions.
Assembly languages themselves have nothing further than instruction sets. I’m sure there are ways to organize it in the super rare case of actually writing assembly, but not to the effect of object oriented or functional programming.
Lastly, other comments have pointed out decompiled code is extremely expensive to analyze. The output from whatever we decompile would easily exceed the input limits for all existing LLMs.
Thanks. I was thinking that you could have an AI “looking over the shoulder” of a compiler, seeing what comes out for the code going in to it. Basically training it to spot sequences in compiled code in order to guess the instructions that compiled into that code.
Well decompiling is only one step in the reverse engineering process. I would recommend taking a look at the Legend of Zelda: Ocarina of Time decompile projects. They reversed engineered the whole thing, which took years and was a team effort.
In the end they got perfectly readable source code, fully documented. And the most amazing thing is, when compiled with the right compiler and right flags, it recreates the original rom perfectly.
I would also recommend a YouTuber called Kaze. He’s been working on Mario 64 for years, re-writing large parts of the engine to get some pretty cool stuff going.
The hard part isn’t reading assembly. The hard part is figuring out why it’s doing what it’s doing with no comments or function names or anything useful to help.
This is like saying if you can read English you can understand an advanced math or physics paper written in English without having any knowledge or context of those subjects.
At least that’s actually easy and quick to do and is the only way of doing it. Centering a div however has 81639393 ways and it seems the one that works is different every time
Bro its so easy bro, just use flexboxgridcolumns its been a standard since 2010 just flex it bro you haven’t learned to flex yet just check w3c schools and add a flex you can polyfill it but don’t use that hacked one use the good flexpolyfill then { content-align-middle-child-elements: center-middle-true-neutral } so easy with flex bro
I know you meant this sarcastically, but yes, flex is a good option for centering something. Either that or setting the left and right margins of the element to auto, which is generally even easier.
Basically, if you’re in a flex container use flex, if you’re in a grid use grid, and if neither of those apply set the left and right margins to auto.
I’m not sure there’s any version of it for grids, but IMO grids are inherently more intuitive, so it may not be needed. Flexbox is the one that is hard to learn.
Well, flexbox and grid have different purposes in my opinion/experience. Personally I use grid for “top level” layouts like the layout of the whole site, while I tend to prefer flexbox for layouts inside the grid. Of course that’s just a rule of thumb, there are absolutely cases where this isn’t the best option.
Sure. Here you go. The green container should cover all red boxes in both cases. I’ve been bashing my head against this issue for a while, but, as far as I understand, this is a bug that’s never going to be fixed. Which sucks, because I wanted to re-design some of the apps in the horizontal metro-style scrolling manner for the bottom screen on my zephyrus duo, but this effectively prevents me from doing so (Unless I use grids and set positions manually).
Chromium is a superior engine, yes. But Chrome itself, at least in my eyes, looks to be the least capable browser out of the bunch. I’d rather Vivaldi if I had to switch.
EDIT: Alright, this is a terrible case because the parent element has flex and therefore no inline-flex is necessary there, but I’d argue it’s the parent element being flex that is redundant, rather than child element being inline.
Inline means that your element should be treated like text. If your element is not text, then you shouldn’t use inline. In this screenshot the element is text, so it’s ok.
Take the treat, thank the management and still fight for better wages and conditions. Its not either/or and if you think it is you’re a fucking idiot. You should ALWAYS be fighting for more.
Its a mindset thing, it really ticks me off that I see this type of image on social media and at my own job all the time like its a either/or thing. Admittedly this one isnt as infuriating as most but still…
When they have a BBQ breakfast at my work. Between 60 people they spend $300 on bacon, eggs and sausages. It costs them $5 a head once a month and theres always 2 or 3 people spouting off about raises but these idiots arent in the union, they just complain about being given a free breakfast and do nothing to actually generate momentum towards better wages and conditions.
If my union came back from wage negotiations with $5 per month I would immediately quit the union and start looking for a new job. $5 a month is an INSULT of a raise, but a free lunch is still a free lunch. Take the free lunch, thank the boss for organising it and still fight for better conditions. This was given to you, you didnt have to fight for it so be grateful, but still fight for what you deserve.
Yea, I’m not that desperate, though. These worthless acts should be openly mocked for exactly what they are: management’s idea that we are stupid enough to actually be fooled by that shit.
It would be far more worth it to me to take the bottles and return them than give them any satisfaction and/or validation. They are worth so little to me that I don’t mind throwing them back and management should know that. These aren’t “treats”, they’re cheap replacements for significant moneyary compensation.
Free breakfast is certainly a little bigger than this, but it still doesn’t actually do anything to help anyone. It’s just another thing they can point to to pretend like they care while ignoring the only thing that will ever truly matter which is that they need to fucking pay us. I’ve had bosses before that pull that shit and then you ask for a raise that at least matches inflation and they try to tell you that “inflation doesn’t work that way.”
So if we’re talking “mindsets” I really don’t have much time for people that think shit like vitamin water instead of a bonus is a “treat” we need to be grateful for. I never did like the taste of boot.
The point is taking the free shit DOESNT give them leverage. If they imply it does you call bullshit because it IS bullshit. I dont fight for what I’m worth any less hard because I get a free bacon and egg sandwich.
The free breakfast is different, though. You’ve introduced it to the conversation and are leaning into it but it’s different than the post to which you made your original comment. The free lunch is not, unlike the vitamin water, a replacement for significant monetary compensation.
And no one has even said whether or not the person who took the picture took them or not, nor whether they would themselves. They are made because they’ve been, essentially, stolen from in broad daylight and are expected to be grateful for it.
kbin.life
Top