Why escalating complexity in both hardware and software is going to keep security people busy for a while: docs.google.com/presentation/d…

After Cert Spotter (sslmate.com/certspotter/), which monitors TLS certificates issued for your domain, there's now another handy FOSS tool from @sslmate to restrict the CAs allowed to issue certificates for your domain: sslmate.com/caa/

You may want to trim your HTTP referrers (feeding.cloud.geek.nz/posts/tweaking…) next time you use an airline's online check-in: medium.freecodecamp.org/how-airlines-d…

Effective code reviews take into account the human on the receiving end of the review: mtlynch.io/human-code-rev… mtlynch.io/human-code-rev… In particular: - never say "you" - aim to bring the code up a letter grade or two - respect the scope of the review

This is a tracking protection evasion trick I hadn't seen before: muchoburrito(.)com is loading a snapshot of the Google Analytics script from web.archive.org. Of course, it's already included in the EasyPrivacy list.

Not only is Commento.io a FOSS privacy-friendly alternative to Disqus, but it's also much faster (no real surprise given the business that Disqus is in - adtech web tracking): victorzhou.com/blog/replacing…

If you're responsible for a web server, it's time to upgrade your TLS config to the latest version (5.0) of the Mozilla guidelines: wiki.mozilla.org/Security/Serve…

This is a rare inside look at how a new business goes from hiring its first employees to releasing its 1.0: the @Brave origin story as told by Brian R. Bondy, one of its co-founders brave.com/the-road-to-br…

The Turris Omnia is exactly what a home router should be: powerful, repairable, upgradable, automatically updated, FOSS, and extremely flexible. turris.cz/en/omnia/

If you include any third-party scripts on your site, anything you put in the query string will be shared broadly and without user consent: medium.com/@thezedwards/t…

TIL: In addition to the primary X selection, there is a also a secondary X selection. It's readily accessible in emacs: mbork.pl/2020-11-23_Ema…

If you've ever wondered how to get the classic UNIX tool `cal` to start the week on Monday: alias cal='ncal -bM'

sudo has some cute rhyming insults: $ sudo apt upgrade [sudo] Mot de passe de root : Hold it up to the light --- not a brain in sight!

Interesting discussion by Dan Luu of the tendency to assume that things are simpler than they really are when one doesn't know very much about a field: danluu.com/cocktail-ideas/

A good reminder from @Seirdy that accessibility is not just for websites: seirdy.one/posts/2022/06/…

TIL: If you're using `blacklist bluetooth` in /etc/modprobe.d/ to fully disable Bluetooth on Linux, you may need `blacklist btusb` instead.

sponge is a really handy UNIX tool (part of the moreutils package) to avoid creating a temp file when using formatting tools that don't support in-place editing. For example: json_reformat < example.json | sponge example.json

Deep dive into what works in terms of feature prioritization, bug handling and estimation. apenwarr shares his project management insights and experience in a compelling data-driven way: apenwarr.ca/log/?m=201712#… Well worth reading the whole thing!