FSMaxB @FSMaxB@mastodon.cloud

Today's tip: Don't partition already partitioned data using the same hash function that it has already been partitioned with.

Or: Application specific keys for hash functions are there for a reason, don't use the same for different applications.

@alva that might actually be a really bad idea since shuffle most likely doesn't use cryptographically secure random numbers.
They are most likely time based which significantly decreases the ranges of numbers to brute force.

@alva Oh ok, haven't thought ablut that so far. But should be doable by combinig the wordlists together.

@alva https://fsmaxb.github.io/correcthorsebatterystaple/

Although the word lists are kind of suboptimal.

@alva it allows editing the staging area directly

@alva I recommend vim-fugitive

Key takeaway: Consider your /etc/shadow to be containing essentially plain text passwords.

-> Don't reuse Linux login passwords for anything else
-> Encrypt your system partition (and be sure to configure a sensible key derivation function when setting it up using cryptsetup, I don't think they use sensible defaults yet. In other words: Tell cryptsetup to use Argon2id and optimise --iter-time and --pbkdf-* to be as slow and memory consuming as acceptable)

OMG, why can't we have nice things. Just found out that passwords in /etc/shadow are hashed using SHA-512 by default (which is the least bad option ...) but only 5000 rounds by default (not that more rounds would make it significantly more resistant against brute force in any case).

Today: Have you ever looked at the semantics of "round" in your programming language. Look at JavaScript and Python for example.

The biggest unsolved problems of applied computer science:
* floating point numbers
* date/time
* text

@alva I'm not in a union either but we're such a small startup that I only have a few programmer colleagues, if just two of us started protesting there would be a problem for the company ...

@alva mostly nil dereference I guess?

@alva It's sad that there's not more stores that sell consumables without packaging.

@alva that's fair!

@alva but what you were saying reminds me of the plastic bags in 7/11 stores in thailand. In the bags it says something about saving the environment because of recycling and them using thinner bags or such. But: Why do you even put EVERYTHING in those bags in the first place then? (And for heavy stuff, like big bottles, they sometimes even give you to bags)

@alva it is relevant for the environment and it shows you that even if you avoid eating animals, you still fall victim to how food is sold in stores.

It does not invalidate your point, just adds to it.

@alva but then again most vegetarian and vegan food is still wrapped in plastic ...

@alva "freilegen" 🤔

Just found some interesting code in jemalloc's implementation of a mutex:

if (ncpus == 1) {
goto label_spin_done;
}

https://github.com/jemalloc/jemalloc/blob/1df9dd35154ca460facbd74f779a13dcece78dac/src/mutex.c#L51-L53