> I wouldn't be able to count on my 2 hands how many times I've Googled the term tailwind line-height, because of course, it's leading and I keep forgetting that.
Me too! Some being text, others font, is one that constantly trips me up.
I was looking forward to good UX accessing HBO through Netflix. Too bad, but looking forward to good UX accessing HBO, and paramount (?) some day down the line through Netflix when this converges.
"geopolitics" are an abstraction that tries to pave over guilt. But Abstractions are only useful if they provide some benefit. Geopolitics provide no benefit when assigning guilt so its easily ignored.
Don't need to use China even, Microsoft, or Palantir, etc will continue to support the US military, likely using Google technology in the process (Guava, gRPC maybe?, k8s assuredly? etc).
Sorry but if you truly believe in technology not using in bad context, the only way to avoid it is to change careers. The issue with news like this is it's hard to actually trust the protesters, they probably are happy to clear their conscience personally while continuing to reap the benefits of living in the tech industry. Have your cake and eat it too.
Sometimes people do quit - they're probably the ones you want to hire if you care about ethics. Most don't though.
Password managers generally send a hash but for almost all services I would say plain text password is standard, I would definitely go with something like firebase or auth0 vs rolling your own auth in most normal situations. The poster is explicit about not knowing anything about security though so all good.
This makes sense, I guess encrypting it on top of TLS doesn’t meaningfully improve security. My concern is that you’re trusting the server to immediately salt and hash upon receipt (especially before storing), but if the client at least obfuscated the password, then in the worst case of a leak you have an email and an obfuscated password that can be used to login to the pwned service but nothing else. My specific threat model depends on the average person not adopting password manager hygiene and 2fa across their services, which is fairly common amongst my friends personally.
Salts are fixed - so if you salt with, i.e. the email address, any attacker will also do that. The key derivation strategy of password managers is already known. Especially in a browser, salting strategy cannot be hidden so it's a known factor. As sad as it is, for those without good hygiene, either they are at risk of compromise, or tie identity to a device and are at risk of losing access entirely. There is currently no magic solution.
I think the main issue people have with this comment is the word "recent" and to a lesser degree "U.S.". All countries have done anything to further their goals regardless of any common point of agreement, some times framing within that framework, sometimes not. This is not a recent or US-only phenomenon, it's the definition of geopolitics.
I'm all for an alien invasion uniting us but not sure when that will happen.
One issue I found is that for new projects, it is much harder to market now. shownew is flooded and subreddits have turned up their spam filters high so quality projects will have trouble getting eyes without significant social activity before wanting to share. So the bar for introverts writing (not vibing) good OSS feels like it has gone up in an unfortunate way.
Ah good reminder to see if I should repatch with revanced. Not that I actually use YouTube on my phone much, I mostly catch up on SmartTube on weekends. But great to be in control.
Interesting - I was surprised to see a note on Wefunder, though the opposite direction that Canada residents aren't allowed to use the platform to invest. For context, no problem from Japan.
It sounds like Canada has some unique regulations here, wouldn't have expected that.
reply