Just looked through the security assessment on the rust rewrite of core utils, and this is why just rewriting everything in the last language is such a dangerous things.

@encthenet That said, I have yet to see a software project that has such a clear collection of "historical bugs and how we fixed and prevented them" body of knowledge. I doubt coreutils has one.

@encthenet I recently bought two books by Shigeo Shingō, from the mid-1980s. One of them (Zero Quality Control: Source Inspection and the Poka-Yoke System) consists for a large part of single-page forms explaining factory worker's mistakes causing faulty products, countermeasures taken, the costs involved, and the estimated savings of not shipping faulty products.

As I browsed through them, I had a similar realisation: this history isn't just to show off how valuable the quality control is, or how to appreach quality control work, but it is capital. It is know-how that comes with the design of the product. Some of those fixes were as small as "make a little raised lip of metal so that you can't install the switch the wrong way around". But if you'd disassemble the end product and see that bit of metal jut out, you might just think, "huh, that looks useless."

A redesign that doesn't also scrutinise all the mistakes that were made is doomed to repeat them.

@encthenet I don't think you can use Python's own `and` and `or` operators. I seem to remembee that that won't work as expected, and the manual doesn't mention their use. Either make two chained `.where()` calls, or import and use `and_()` and `or_()`.

Using SELECT Statements — SQLAlchemy 2.0 Documentation

(docs.sqlalchemy.org)

@freddy This is going to be on OSCP tests for years to come.

@nazokiyoubinbou @freddy Linux 7.0 (as of -rc7)

@veronica Maybe not later either.

@bert_hubert Niet geremd door enige inhoudelijke kennis van zaken, maar hoe moeilijk kan het zijn om de komende 24 maanden 100% te wijden aan het bouwen van een nieuw clustertje van SAML-servers op een andere hosting? Is DigiD nou echt meer dan dat?

@MediaActivist Don't be misled by that second graph under "impact on carbon". The vertical axis ranges from 30 to 40 gigatonnes, rather than 0 to 40.

@mndflayr I'm aware. My point was that, even if the guy's initial assumption would be correct, his general insistence to be tolerant of the intolerant makes things worse.

@jwildeboer@social.wildeboer.net @_elena@mastodon.social On top of that: even if it's "only" one fascist, if you don't chase them away, you'll end up with a nazi bar. So yes, it is a good idea to invest energy into this phenomenon, @codebuzz@indieweb.social. "Laten we het gezellig houden" is exactly how these undercurrents can fester and grow.

@edgeofeurope Daar zijn al Europese voorschriften voor, maar Nederland is inmiddels anderhalf jaar te laat met het wettelijk verankeren van de meest recente versie ervan. De Cyberbeveiligingswet eindelijk goedgekeurd door de Tweede Kamer, maar is dus nog niet van kracht.

Zodra dat eindelijk het geval is, worden bestuurders van bepaalde organisaties hoofdelijk aansprakelijk. Bij gemeenten zijn dat de burgemeester en de wethouders.

@Roodbaard @soverin The map just shows what's visible on the outside. "Independent" in this case means that Den Haag itself owns the IP addresses of the email server. Apeldoorn's email server has an IP address owned by VodafoneZiggo B2B NL. It says nothing about if and how email is routed after it's accepted.

Besides, it's plausible that those municipalities have a Microsoft 365 subscription, because there are "Microsoft Online Email Routing Addresses" (MOERA) with the names denhaag.onmicrosoft.com and apeldoorn.onmicrosoft.com. It's not rock hard proof (those MOERAs could point to tenants belonging to anything else than those municipalities, and they could even be alias MOERAs, and there are licenses that don't really include Outlook 365, and you don't have to route your email through Microsoft 365, etc.), but it doesn't bode well.

If you look at public records, you can see that Den Haag acknowledges its infrastructure is Microsoft-based (see section 5.4 of https://denhaag.raadsinformatie.nl/document/16421637/1 on page 40), and Apeldoorn reports that they're integrating Copilot into their email software (see the paragraph on "Kunstmatige intelligentie: kansen verantwoord benutten" of https://apeldoorn.parlaeus.nl/vji/public/postin/action=showdoc/gd=2a8880888a8a20a002a20a08e3f23646/Raadsbrief_iVisie.pdf on page 3).

@simonwilliamson @soverin Terneuzen, Heerenveen, Tytsjerksteradiel, De Fryske Marren, and Datumadiel all use a Microsoft MX. So do Rozendaal, Etten-Leur, and Albrandswaard, the other greyed-out municipalities.

@Rachelburch They picked the one species of woodpecker that doesn't really peck wood all that much.

@thevhswizard Angel's Egg (1985)

Grondpersoneel werd vorig jaar gehinderd met juridisch gekonkel bij stakingen voor een eerlijker loon, en hetzelfde jaar krijgt de topvrouw niet een dertiende maand maar een vijfde kwartaal. Eet de rijken. https://nos.nl/artikel/2608939-klm-topvrouw-verdiende-30-procent-meer-in-roerig-2025

@GossiTheDog Satya wears a flower on his vest. "Smell it!" he says. Nobody wants to, but they all have to say, "maybe later." Just to amuse himself, even when nobody smells the flower, Satya regularly squeezes the hidden bladder. Slop squirts out of the flower. Nobody enjoys this.

@GossiTheDog "These Terms don’t apply to Microsoft 365 Copilot apps or services unless that specific app or service says that these Terms apply." - Satya the Clown, after renaming Microsoft 365 to Microsoft 365 Copilot.

@InorganicFella @JessTheUnstill I mean, someone built a footgun for that about two months ago https://github.com/bramkanstein/startwithbitcoin-skill

@marije De wereld zou er een stukje mooier uitzien als er minder Excel en meer van dit soort single page applications zonder backend zouden bestaan.