trelane @trelane@librem.one

Twenty years ago while a young grad student, I was asked to implement an experimental annealing algorithm some boffins in the U cooked up. Along the way I stumbled into one of the cleanest small-project architectures I've ever designed. On its strength, I was invited to speak at CodeCon 2006.

For its twenty-year anniversary I dusted it off & gave it serious attention for the first time in fifteen years. Way back I put a lot of work into making it as C++98 standards conformant as possible. I was pleasantly stunned how little code rot had set in. Overhauling to C++23 only took a few hours.

If you've found my political commentaries useful or my _Paranoia_ humor funny, well — it would please me a lot if you'd just take a quick look at the README.

I'm good with law and government, but I'm not proud of being good with it.

But I *am* an engineer, and I'm proud of some of my pet projects.

Drop a boost or favorite on this comment, or star/follow/fork on GitHub, if you think this kind of high-quality hackery is your bag. And as always, constructive criticism, useful bug reports, and high quality PRs are the best praise there is.

https://github.com/rjhansen/djinni

Computer science has had a bad case of identity disorder since the mid-'90s. I was in undergrad at the time and saw it take root. When I began my degree the only people taking CS were nerds: by graduation the web was beginning to take off, every company wanted to be Netscape.

In '98 I was a senior sitting in on an interview with a high school senior who openly said he wanted to study CS because his parents were insistent it would land him a good job, and computers were "fun enough," he guessed.

By '00, most of my alma mater's CS students were like that.

*There's nothing wrong with wanting a good job.* But CS is a hell of a way to get a good job. If you want to reach the serious bucks you have to have a fanatical commitment to *always* studying, because your tech skills are becoming obsolescent faster than you can learn new ones, for starters.

And if your commitment wavers, then no matter how rockstar you are now you are at most five years from being a mediocrity with an out-of-date skillset.

And the psychological toll this takes cannot be overstated, and that's on top of all the other psych tolls you have to pay.

Hot tip: if you're interested in learning the details of world sanctions against Russia, you should attend this free webinar.

I know some of the people involved. They're knowledgeable and violently allergic to bullshit.

https://instituteforfinancialintegrity.registration.goldcast.io/webinar/7a670fc9-a42e-41ec-a8d7-569c387c3f9a#Registration

Still using OpenOffice? It has unfixed security issues over a year old: https://en.wikipedia.org/wiki/Apache_OpenOffice#Security – So all users are strongly recommended to update to one of the actively maintained successor projects, like LibreOffice. (Please share and help raise awareness about this!)

LWN in EPUB format

https://lwn.net/Articles/1006562/ #LWN

Our dev blog helps new #LibreOffice developers to get started and explains core concepts. Here's what we'll be covering in 2025: https://dev.blog.documentfoundation.org/2025/01/16/outlook-for-the-new-year-2025/

So here is a weird one ... the LWN site has been seeing a steady stream of login attempts, all using weird yahoo addresses as the username. By "weird" I mean things like lllbnwidgqeerdyi@yahoo.com and other equally unlikely strings.

These do not correspond to LWN accounts, but somebody has looked at our login form for long enough to post the login attempts directly, without loading the form first. The attempts come from all over the Internet, suggesting that some sort of botnet is doing this.

I don't suppose anybody else has seen this sort of pattern, or has any idea what it is that they may be trying to accomplish?

[$] The OpenWrt One system

OpenWrt is, despite its relatively low profile, one of our community's most important distributions; it runs untold numbers of network routers and has served as the base on which a [...]

https://lwn.net/Articles/994961/ #LWN

If you were ever curious what working for me would be like, you have an opportunity to come experience it.

https://boards.greenhouse.io/tenstorrent/jobs/4485951007

Lots going on, lots of low level distro, packaging, ci/cd pipeline stuff, and in a very open source centric company.

#FediHire #FediJobs

There's a series of books/engineer notes on electronics by Forrest Mims which I think is fantastic.

https://www.ersbiomedical.com/Forrest-Mims-Series_ep_126.html

[Question] If you were buying a well-supported, software-developer #Linux laptop for work, paid for by the company, either in the UK or the USA, what would you buy?

🤔

(pls share for eyeballs and opinions)

Since the #xz incident started, I've been maintaining an FAQ/living document on what we know at https://gist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27.

I think most people in my extended circle either already seen it but posting about it given there's likely to be a lot more questions as we go into the working week.

Thank you to everyone who has contributed tips, suggestions, and edits. Thanks especially to @cadey who has helped a lot with editing.

This is the best timeline I've seen so far on what we know about the Xz backdoor. Some good info here for researchers: https://boehs.org/node/everything-i-know-about-the-xz-backdoor

My story about how telematics data from people's cars unexpectedly raised their insurance rates is on the front page today...

https://www.nytimes.com/2024/03/11/technology/carmakers-driver-tracking-insurance.html?unlocked_article_code=1.b00.DzhQ.GXkvg-kgWebx&smid=url-share

... and this is where it started: me lurking on car forums and seeing comments like this.

If this story doesn't convince lawmakers we need a strong federal privacy law, I'm not sure what will.

Blogged: “I don’t think the cheapest APC Back-UPS units can be monitored except in Windows”
https://strugglers.net/~andy/blog/2024/02/23/i-dont-think-the-cheapest-apc-back-ups-units-can-be-monitored-except-in-windows/

Another Chrome 0-day patched

https://therecord.media/google-chrome-zero-day-patch-webrtc

36 years ago today was the Max Headroom TV STL hijacking. https://en.wikipedia.org/wiki/Max_Headroom_signal_hijacking

I regard this incident as the best and purest hacking prank in modern history. The combination of sophisticated, meticulous technical planning and execution, utterly juvenile content, essential harmlessness, lack of financial motive, and never getting caught or identified (or later taking credit) remains, in my opinion, unmatched to this day.

Pure art.

Remember when over the air digital TV came in and unless you had a new TV you needed a converter box to watch the digital channels as analog channels went dark? Did you know it's happening again? But worse.

While the FCC just recently extended the required time for the existing (ATSC 1.0) system to stay operational, the new ATSC 3.0 system is loaded with encrypted DRM even on basic channels in many cases.

And get this, it appears that the external converter boxes currently available for this that can actually deal with that DRM reportedly require an Internet connection to work!

You read that right. To receive an over the air ATSC encrypted channel -- even a basic broadcast channel -- reportedly appears to currently require an Internet connection.

Now you might be asking, what the bloody hell is the point of over the air TV if you need a damned Internet connection to watch it?

And the answer is: I don't have a clue.

Stay tuned. No pun intended.