Skip to Content Skip to Navigation
Profile image for Jon Wood

Jon Wood

@jon@blankpad.net
1001 Posts Posts & Replies 163 Following 72 Followers Search
Jon Wood boosted

Me, standing atop a cherry-blossom-swept bridge, re-sheathing my katana

Jon Wood boosted

It’s the time of year when I can go out for 90 minute walk at 7pm, absolutely beautiful in the woods this evening, so beautiful in fact I didn’t think to stop and take a photo so you’ll just have to believe me.

You know things are bad when you find yourself reading the source code for NetworkManager 8 hours into the work day.

@marioguzman @eval every now and then someone reminds me what Aqua era macOS looked like and I lament the loss of both the playfulness and the functionality.

When did become ok to use the phrase “up to 100% [positive aspect]” in advertising? Could be 100%. Could be 0%. Who knows?

Jon Wood boosted

Let's try something. I'm an English technology lawyer in private practice. I can help with tech contracts, software licensing (including FOSS), SaaS and the like, and data protection.

Unlike most lawyers I'm actually technically literate, in that I spent a number of years as a sysadmin before becoming a lawyer, and I've kept up my knowledge since.

I'm practical, quick, and my rates are reasonable. Maybe I could be useful to your business?

Boosts appreciated!

Do you want to play a slightly rubbish version of Flappy Bird? Well you’re in luck, because I just published a slightly rubbish version of Flappy Bird: jellybobuk.itch.io/crappy-bird

Back on my learning to make games bullshit, now in Godot rather than Unreal Engine because I am not a AAA game studio. I’ve decided to do a bunch of super simple ones just to build up confidence and form some muscle memory, resulting in a version of Flappy Bird I made in two hours this evening. I might post it online somewhere tomorrow if I don’t feel too self-concious about blatantly ripping off someone else’s game.

Jon Wood boosted

www.pentestpartners.com/securi

Something to be aware of if you work in a Microsoft shop with security requirements: Copilot on Sharepoint will apparently allow ACL bypass without logging or alerting.

You can just ask it for things.

It looks like what's going on under the hood here is that Copilot introduces a new category of user account for their agents, who have expansive read permissions by default and Copilot doesn't know how to map what the agent can read/reply against user permissions.

Edited 36d ago

Does anyone have recommendations on encouraging an eleven year old to take on small achievable projects? He’s endlessly lamenting he can’t do things that are either huge, or actually impossible, but I can’t for the life of me get him to try smaller things to build up to bigger ones and get a sense of achievement.

@chrismarquardt @pascoda it’s an arms race. It starts with cars getting a bit bigger than a VW Golf, and feeling a bit intimidated by all these larger vehicles, so you get something a bit bigger. A decade or two later here we are, with everyone needing a tank to not be immediately crushed when someone stops paying attention.

Tolly thought I should be stroking him instead of my laptop.

Jon Wood boosted

We got this "HIGH security problem" reported for earlier today:

"The -o / --output parameter in cURL does not restrict or sanitize file paths. When passed relative traversal sequences (e.g., ../../), cURL writes files outside the current working directory, allowing arbitrary file overwrite. In automated or privileged environments (CI/CD, root containers), this leads to Remote Code Execution (RCE), privilege escalation, and supply chain risk."

Never a dull moment.

Edited 43d ago

While I appreciate the anti-competitive nature of Apple’s insistence on all transactions going through them, I fear this is going to lead to a rapid downhill spiral in app trustworthiness on iOS. I really like that when I hit the subscribe button on iOS I’ll be able to unsubscribe easily in a known location, and that I’ll keep access until the period I paid for is up.
techhub.social/users/rayckeith

Why would you give me this choice PayPal?

@strcpy @saraislet plot twist, one of the payloads is a prompt injection which tells any LLM being asked about it to generate an image of a catgirl instead.

Jon Wood boosted

As Liverpool win the Premier League for the second time, they complete the opening of a quite remarkable sequence, 33 years in the making.

That’s credits on Blue Prince. I’ll be back, because I have Theories on what that ending cutscene was about. For now though I need a break, and to play a game that doesn’t hate its players quite so much,

I’m so split on Blue Prince. Without the roguelike element it would be a stone cold 10/10 for me. As it is, I spend as much time resenting how little it cares about my time as I do in awe of the good bits. My latest run had me on the cusp of getting to Room 46, but I was cursed by poor RNG to god knows how many more runs.

I nearly rage quit Blue Prince earlier and then it threw a whole new room at me and I spent half an hour writing Python to try and solve a puzzle. (It didn’t work, there are too many potential options to brute force it)

It seems I replaced smoking with Blue Prince. So far this is going quite well, except for the intense withdrawal I feel when I’m not playing Blue Prince. Not entirely sure how I’m going to cope when I run out of game to play but I reckon I’m at least a week off that being a problem that needs solving.

We’re hiring at Demand Logic for various flavours of engineer, cloud infrastructure, web front end, and IoT. IoT is clearly my favourite because you get to plug boxes into huge buildings and pretend you’re in Hackers, but they’re all good. 4 day work week at full pay, remote friendly (probably within the UK because of employment law), and we make money by reducing big companies CO2 emissions.

www.demandlogic.co.uk/careers

Where would you buy shoelaces for a pair of walking boots from that isn’t Amazon? I keep looking in shops for some and coming up blank.

In an attempt to give up vaping I’ve switched to nicotine spray. So far it’s working through of virtue tasting like I’ve sprayed deodorant directly into my mouth, really makes me consider whether I want nicotine that badly.