HackerTrans
TopNewTrendsCommentsPastAskShowJobs

tom_alexander

202 karmajoined 11 months ago

comments

tom_alexander
·yesterday·discuss
My team maintains a mix of typescript and python programs, so sometimes someone hired as a skilled typescript developer gets thrown onto their first python project. The languages are similar enough (garbage collected, object oriented, etc) that it doesn't cause problems but we save _a lot_ of developer time walking them through the initial setup so they can dive into the actual coding.
tom_alexander
·yesterday·discuss
In my case, I am a very senior member of my team so 25-50% of each day is spent helping and/or teaching teammates. In situations like that, it is useful to be deeply familiar with the tools that your teammates are using so you can tell them exactly what to do.

For example, if I'm teaching a new hire to set up their vscode it is not very helpful to tell them "now you need to activate the python venv". It is much more helpful to be able to tell them "Now we're going to activate the python venv. To do that, open your command palette and search for 'select python interpreter'".

In my personal life, I still exclusively use emacs (which I have scripted to auto-detect venvs) but I put up with using vscode at work to be a greater utility to my team.
tom_alexander
·25 days ago·discuss
They're referring to the partnership between GrapheneOS and Motorola: https://motorolanews.com/motorola-three-new-b2b-solutions-at...
tom_alexander
·last month·discuss
It's at the end on the conclusion slide @24:40:

https://www.youtube.com/watch?v=Se8E_SUlU3w&t=1480
tom_alexander
·2 months ago·discuss
My area has a net-metering plan available, so you can send any surplus out to the grid to offset energy pulled from the grid, essentially treating the grid like a large battery. That can extend the 8 hours into full 24-hour coverage with enough panels.
tom_alexander
·2 months ago·discuss
With enough solar panels it is!
tom_alexander
·2 months ago·discuss
Not necessarily. I was spending ~$150/month on vultr's kubernetes hosting. I spent $5k building out a pretty awesome 1U server and I put it in a colo that costs me $50/month. Next year I will break even financially and everything after that is saving money. I also am getting so much more out of this server than I was getting on vultr because I over-spec'd the machine. In addition to running more on my cluster, I spin up large virtual machines for development, experiments, and for offloading distributed builds. No shade to vultr, but owning my hardware instead of renting was absolutely the way to go. Unfortunately today the ram alone would cost over $5k, so the math has changed.
tom_alexander
·2 months ago·discuss
It has. For example, PirateFi back in 2025: https://www.bitdefender.com/en-us/blog/hotforsecurity/pirate...

The FBI were seeking victims for ~8 "games" earlier this year: https://forms.fbi.gov/victims/Steam_Malware/view
tom_alexander
·2 months ago·discuss
FWIW I'm one of those people. I have an old rotting pixelbook that I installed Linux on back-in-the-day thanks to Mr. Chromebox. It was a huge improvement over chromeos but I'd never buy a chromebook to install Linux on it again because there was too many small annoyances like needing to fix the keymap every time I did a clean install (the caps lock key was bound to super and I vaguely recall some craziness around the higher function keys), and sound didn't work.
tom_alexander
·2 months ago·discuss
Was there? I see 14 comments, of which only 3 have any value at all which are: fanf finding an irrelevant bug, oliverpool explaining the use of LetsEncrypt staging, and hexadecimal suggesting setting up expiration alerts.

The rest is:

  - People bitching about systemd and replies to their bitching totaling 7 posts (literally half the comments) 
  - conversational detritus like "well written blog post" and the whiteboard comment
tom_alexander
·2 months ago·discuss
Do you honestly think stackghost doesn't know what the "D" stood for? They were making a point, not seeking information. My answer directly responded to the point they were making.
tom_alexander
·2 months ago·discuss
That's more of a historical artifact. The BSDs started as just "BSD": a set of patches for AT&T Unix that were _distributed_ by Berkeley. Eventually the patches became complete enough to be an entire operating system. _Then_ the various BSDs that we know today (FreeBSD, OpenBSD, NetBSD, DragonflyBSD) all forked and became completely independent operating systems. For decades, FreeBSD's kernel and userland has been developed independently from the OpenBSD kernel and userland which is developed independently from NetBSD's kernel and userland, etc. You could not take an OpenBSD program and run it on FreeBSD. Even recompilation from source isn't necessarily enough since the BSDs support different syscalls.

They are completely independent operating systems with a distant shared history.

Whereas on Linux, the distros are taking a common Linux kernel source, and combining it with their choice of common userlands like GNU. Debian has the same kernel and GNU userland that Arch and Fedora use. You could take a program compiled for Debian and run it on Arch, which is common these days due to Docker where you're pulling another distro's userland and running it on your distro's kernel. That is how Linux distros are "distros" whereas the BSDs are independent operating systems.
tom_alexander
·2 months ago·discuss
I think the author was suggesting "wait a week" as a one-time wait for fixes to be written and patches distributed for these specific prematurely-disclosed vulnerabilities, not an on-going suggestion for delaying all updates. But otherwise I agree with you.
tom_alexander
·2 months ago·discuss
"I really wish I was eating in an airport" - literally no one ever.

Airports are expensive, loud, and uncomfortable.
tom_alexander
·2 months ago·discuss
In that situation, the multiplexing wouldn't be handled in the terminal. You'd use something like tmux or screen. Seems irrelevant to the discussion about terminals.
tom_alexander
·2 months ago·discuss
> tab-complete, history

Those would be handled by your shell, not your terminal, right?

> multiplexing

If you have a good window manager, then there is no reason to have a bespoke multiplexing implementation in your terminal. I can stack my terminals and _any other window I want_ with tabs and switch between them using the same hotkeys/interface that I use for my whole system, rather than each app implementing their own tabs.
tom_alexander
·3 months ago·discuss
Perhaps as a web client for the remote desktop on the BMC chips?
tom_alexander
·3 months ago·discuss
I was able to reproduce it using that script in my PS1 when `GIT_PS1_SHOWUNTRACKEDFILES=1` which triggers a call to `git ls-files`. Without that, it seems to be just calling `git rev-parse` which does not execute fsmonitor.

I was also able to reproduce it with `GIT_PS1_SHOWDIRTYSTATE=1` which invokes `git diff`.

As far as I am aware, this has been brought to the attention of the git maintainers years ago: https://github.com/justinsteven/advisories/blob/main/2022_gi...
tom_alexander
·3 months ago·discuss
> any competently set up shell PS1 will tell you that

I certainly hope your shell is not running `git` commands automatically for you. If so, that is a RCE vulnerability since you could extract a tarball/zip that you don't expect to be a git repository but it contains a `.git` folder with a `fsmonitor` configured to execute a malicious script: https://github.com/califio/publications/blob/main/MADBugs/vi...
tom_alexander
·3 months ago·discuss
Oh neat, thanks! I (clearly) did not know that command.