Twitter | Search | |
Sven Slootweg
RIP Aaron Swartz. Don't let his efforts be in vain.
33,354
Tweets
429
Following
4,798
Followers
Tweets
Sven Slootweg 1h
Crucially missing from Github's blathering about how important open-source is, in their Semmle acquisition post: Semmle is not, itself, open-source. It's not a contribution to the open-source community, to the public commons - open-source is just its marketing vector.
Reply Retweet Like
Sven Slootweg 23h
Replying to @anildash @tverka
cc
Reply Retweet Like
Sven Slootweg Sep 17
Replying to @gsuberland
(That is, I might think something is mediocre, and then someone goes "huh, that looks fine, there's nothing wrong with it" - both for code and writing.)
Reply Retweet Like
Sven Slootweg Sep 17
Replying to @gsuberland
There's a good chance that your work isn't actually bad, you've just raised the bar of expectations to an unreasonable level. I've been having the same issue, as time (and experience) progresses. Yet I'm continuously surprised about how much better others think my work is.
Reply Retweet Like
Sven Slootweg retweeted
Gary Bernhardt Sep 15
In my work, I'm often significantly limited by things that I see other programmers dismiss as nitpicking. Editing efficiency. Incorrect autoindent. Waiting for slow tools. Broken file watchers. Bad error messages. Programming is only sometimes the bottleneck in programming.
Reply Retweet Like
Sven Slootweg retweeted
Gary Bernhardt Sep 15
I hope that a future version of us looks at us talking about corporations having opinions or "caring about" things with the kind of boggled, incredulous disbelief that so much of our ancestors' bizarre behavior brings out in us.
Reply Retweet Like
Sven Slootweg Sep 15
Replying to @fasterthanlime
Reply Retweet Like
Sven Slootweg Sep 15
Replying to @PinoBatch @eevee
(I've usually called it "build communities, not platforms" -- but the underlying distinction appears to be more or less the same one.)
Reply Retweet Like
Sven Slootweg Sep 15
Replying to @PinoBatch @eevee
Oh hey, good to see that I'm not the only one calling for the abolishing of 'platforms'!
Reply Retweet Like
Sven Slootweg retweeted
badidea 💫 Sep 14
Replying to @0xabad1dea
I share this to reinforce the fact that yes, people who pretend to Just Have Questions with the aim of causing strife and wasting your time are absolutely real
Reply Retweet Like
Sven Slootweg Sep 11
Replying to @hdevalence
(Whether it actually does that is a hotly debated topic with a lot of Opinions, but there definitely appears to be a *lot* of cargo culting going on around it.)
Reply Retweet Like
Sven Slootweg Sep 11
Replying to @hdevalence
Ooohhh man, that's a Pandora's Box you probably do not want to open. As I understand it, this question is basically the "tabs or spaces?" of the lawyer world. If you want to learn more about it, the keyword is "conspicuous language" -- it's used as a way to satisfy that req.
Reply Retweet Like
Sven Slootweg retweeted
Altytwo Altryness, ⬡ BS Sep 11
Now that’s a solid critique of the idea, along with how to make it better. A thread.
Reply Retweet Like
Sven Slootweg retweeted
Matthew Green Sep 11
Replying to @matthew_d_green
Weirdly enough it turns out that when you create a spyware industry, the people who line up to spend the real money *aren’t* the friendly law enforcement agencies you pointed to when (smarter) people were telling you why this was a bad idea.
Reply Retweet Like
Sven Slootweg Sep 11
IMO, one should only hire 'smart' people if those people are willing to use that to lift up others, not just themselves.
Reply Retweet Like
Sven Slootweg Sep 10
BLAKE2b, for example, would also be unsuitable for passwords even though it upholds its security properties as a general-purpose hashing algorithm.
Reply Retweet Like
Sven Slootweg Sep 10
Welll, there's an additional concern with MD5 for passwords, and that's that it's too fast for password hashing (ie. too easy to bruteforce). Hence why nowadays people use things like argon2i, scrypt, or bcrypt (in that order of preference), which are made artificially slow.
Reply Retweet Like
Sven Slootweg Sep 10
Go read the article I linked you to. I'm not playing this game. Play stupid games, win stupid prizes, etc. and I'm very much not interested in winning a stupid prize.
Reply Retweet Like
Sven Slootweg Sep 10
To the point that Schneier debunked this particular flavour of bullshit ("cracking contests" as a security proof) over 20 years ago:
Reply Retweet Like
Sven Slootweg Sep 10
Oh, sure, that can be a valid reason to still use MD5. So long as you don't expect it to provide security properties :) (SHA-1 will probably still be faster, though, and is also available on most systems!)
Reply Retweet Like