Honestly, I feel this on a spiritual level — or, well, an infernal one.
My native language is PHP, which, as everyone knows, is the demonically fluent tongue of the Ninth Circle. Down there, variables appear from the void, arrays shift shape without warning, and error messages read like ancient curses. Beautiful stuff.
Recently I tried picking up Rust, which people kept hyping as some kind of angelic, higher-order language… but after using it, I’m convinced it’s just the void teaching itself self-esteem. Every compiler message sounds like: “I’m perfect. You’re the problem.”
So yeah — working in a non-native language is tough. But if I can survive switching between demon-speak and cosmic-void-whispering, you’ll be fine too.
Haha I should have been clearer that I meant human rather than programming (or demonic) language. But by the sounds of it, I should be down there in the infernal PHP realms! The boringest part of type safety is surely the safety...
1. Make all port not respond (Stealth in the firewall), unless they are public like http..
2. Change the SSH port # (over 8192 also)..
3. Setup port knocking watchdog so they have to knock first in a specific order on three ports before being allow to connect to real port.
4. Setup fail2ban. Including if someone pings the knocking ports (in the incorrect order) or real ssh (Without knocking first) then after a couple of times, add their ip to fail2ban list for 48hours..
You get rid of 99.98% of the lookers instantly, by just doing step 2...
This assume you have control over the server, there are several script online that help you provision something like that with ansible.. (Most of them helper related to configuring fail2ban.
I too change my default port on all nodes except public SFTP servers. I also restrict the TCP SYN MSS, Window and TTL and allowed CIDR blocks for non public SFTP servers. It keeps most things very quiet. Quiet makes it easier to spot more serious and targeted attempts.
This is an attempt to see what fun I can have with the bots on public SFTP servers. I am also curious if I can crap-up their logs a bit, depending on what they log. It's also fun to get them stuck using OpenSSH rather than depending on netfilters tarpit which AFAIK is not available via nftables.
This poor bot for example is stuck in a loop and can't even try to authenticate because of something I put in the sshd_config a copy of which is available on the SFTP server. Legit SSH clients can attempt to authenticate however.
srclimit_penalise: ipv4: new 128.199.x.x/24 deferred penalty of 9 seconds for penalty: connections without attempting authentication
# since I cleared the logs this morning
logread | grep -c "128.199"
591
A type of yes man/fall man often destined for a jail sentence, when a company has or is going to commit something they know is not in a legal and actually likely to result in criminal investigation they hire this kind of person "Just before" the act. This person is also allowed to acknowledge things but not fix them, because reaching product shipment is more important. Their job description can be basically summed up by getting a chimpanzee to learn how to say yes, and find and fling feces everywhere, when there given the command to clean this mess up.
Test if humans can detect the difference between a bot/ai amongst a set of humans and the bot/ai (I don't even thing the bot has to be AI to take the test).. If more humans detect one of the humans as a bot and don't id the bot at all, it considered a good success. This is from my understanding of the test. I think there has been historically multiple inconsistent procedures.. That's really not what I worry about though what I worry about is the bots/AI that purposely fail to the test to hide their intelligence.
Basically you get an invite from someone else there, you can still be in chats and read the news with out it... Which is good enough for me, so sorry can't send you an invite. So the easiest way would be to join a chat, make some friends then ask for invite, they have like a chain tree that also takes people invite quality into account, so the person that give you an invite need to trust you a bit.
My first thought is people in position that look pretty and actually don't contribute any meaningful work... (Marketing Exec, Management, recruiters, sometime customer retention specialist (The one that are not in a call center pool, for special accounts))..
Years ago, when my vantage point was support and consulting, I had the same view of sales and marketing. I encountered too many buyers who did not know what they were buying, too many sellers who did not know what they were selling, and me in the middle having to reset everyone's expectations. The authority held by sales and marketing to steer the product into insane directions seemed like an injustice. It's an unfortunate reality that customers who already paid for something are often de-prioritized for new customers with different requirements and less expertise.
Much of my job is now customer onboarding, so I work closer with sales and solution architects. I also fill in for the solution architects when they're spread too thin for the events marketing has set up. The struggles faced by those teams are entirely different than those on the engineering and support side, and while it might not seem fair, a good corporate culture means everyone is motivated to work hard. Many of those roles are based on comission, so their financial and career prospects are worse than ours when they're not fully dedicated and producing results.
In terms of who gets what computer, it's unfortunate that the majority of users will be people who have average (or less than average) technical skills. That means a lot of them are afraid to even try macOS and will want to go back to PCs as soon as some trivial difference gives them the slightest uncertanty. Personally, I'd love to work on a rice'd hyprland system all day, but the fact that the business relies on BS like MS/Google collaboration software, our CRM has no keyboard shortcuts, etc. means technical users will always be held back.
I also work in consulting as a staff consultant for a third party cloud consulting company. I’m in “delivery”. A statement of work doesn’t go to the client until it has been approved by someone high up (like me) from the delivery side.
I’m always amazed how people dismiss the contributions of people who actually bring in revenue so that you can get paid.
I’m not in sales. I’m what would be considered a “post sales architect” who is the first person a client talks to once the sale is closed and responsible for delivery. But I’m high enough up the funnel and work closely enough with sales and marketing to appreciate them.
That's true. On the other hand it also happens that software devs, who develop software running on Linux, have to work with Dell Windows laptops while the VP who mostly deals with Teams, Zoom, and emails is able to have a Macbook... and an Apple 5k monitor.
Is working on Windows itself that bad with WsL 2.0? I had to use Windows for one year at a shitty consulting company before I left out of the 5 years since I’ve been AWS focused. My workflow wasn’t that different with VSCode, Docker and WSL than on my Mac.
And honestly before ARM based Macs, Mac laptops sucked about as bad as Windows laptops and near the end of the x86 run, they were actually worse.
What a weird take. I'm an engineer and I haven't worked at a single company that has issued windows laptops to engineers unless they asked for it. The default for a lot of dev work has been mac for a very long time. I think that's shifted in recent years, but still I'm actually kind of astonished to hear your take.
What’s “weird” about a take that’s based on both widely accepted market share numbers, that were cited in the article being the opposite of your anecdotal experience?
It is simply the superior product, who wants the other locked-in, locked down, horrible designed, overpriced, product that basically has to bought each year while features are taken away from it and it's price seems to increase yearly in a logarithmic manner...
