I am making the #signet client work better with screen readers. I've made a good amount of progress, but if annyone knows what I have to do to a QLabel to get screen readers to read the text, please let me know! I'm currently using QT5. The label has instructions/status messages like "Scanning for device..." or "Enter device password". I guess I could cheat and make the AccessibleName be "Enter device password..." I already have a hack for reading "labels" when there are not any inputs on the screen. I make them a readonly text input field with a custom style (so it doesn't look like an input field). #GrowNostr #Security #Accessibility #infosec #ScreenReaders

Green onions from 11/16 vs 12/7. So if we get 3 or 4 sets of these, we should have an infinite supply of scallions. #gardening #GrowNostr #garden #food #vegetables sort of #homesteading

It is bananas that people can get paid at all for helping, inspiring or entertaining other people on the internet. Like, I get it, it makes sense and I agree with it, but this isn't some hypotherical thing some economist's thought experiment or some tech person's vaporware. It's already happening now. Even if it is only an average of 1¢ per day, just seeing it play out **in practice** is mind boggling. Not only that, but there are people talking about making meaningfuly sized #zaps their standard, and they're backing up that talk with action. All of this gives me hope. - Hope that the cynics that say human nature is to be selfish and greedy are wrong. - Hope that people might someday be able to make ends meet in this #v4v #economy - Hope that it could someday be a model for funding open source software and making it actually be sustainable, or 3D modeling, art, music or other such things And this is one of the biggeset reasons that I'm glad I joined #Nostr and found this community. Sure, there are a tons of assholes on here too, but once they're filtered out, it reveals a more compassionate community than exists on most of the internet.

If the internet suddenly went away, how would it affect me? Little to no impact: - IoT temperature sensors - Cloud file storage - Shared TODO lists - Backups - food: the local grocery store still accepts cash and credit (but not debit) cards when the internet is down; coop takes cash, but the weekly farmers market would be little help this time of year - manufacturing: slightly degraded; no thingiverse, but can use CAD, slicers, 3D printer and the wood shop - shopping (non-food): local hardware stores are well stocked and take cash; we have a local supplier of 3D printing filament; electronics parts would be limited in supply Significant impact: - email: main accounts would work fine but unless I'm emailing someone in the house, that doesn't do a ton of good - Social interaction: total loss of social media, monthly 2600 hangouts would remain, and places like the local Makerspace would be popular - information: no copy of wikipedia, only printed encylopedias and other books - Software updates: total loss - Texting: almost a total loss. We have a community run GotennaMesh, but I haven't tested that on my devices and probably wouldn't be able to get the app. Also have a local Matrix server, but only for people in the house It's a fun thought experiment, but would be a pretty unplesant actual experiment. 🤣 I have a ticket open to set up a mirror of wikipedia and keep it updated. I also have a vague intent to set up a community network, which would quickly come into the foreground! That'd address email, local social media, and texting all at once. I also know a ham operator that I'd go to for longer distance communications. #resiliance #planning #SelfReliance #GrowNostr #independence #internet #tech #IT #ThoughtExperiment

Earlier this week, the DoD Inspector General released a list of cybersecurity weaknesses in DoD contractors. It's pretty embarrassing. Bad password policies, access to facilities/networks not controlled, inactive user accounts not disabled, incident handling not tracked, documented, or reported... https://www.dodig.mil/In-the-Spotlight/Article/3606048/press-release-special-report-common-cybersecurity-weaknesses-related-to-the-pro/ #Cybersecurity #Infosec #security #NationalDefense #defense #cyber #government #hacking #GrowNostr

Hey #Nostr, you can grow your own herbs and spices. Why bother? It's cheap, easy, gets you higher quality seasonings and allow you to be more #SelfReliant. Here's some before/during/after pics of basil I just dried. You don't even need a dehydrator, it just makes the process faster. Spread the word. Get people to fill their windowsills with delicious plants. 😋 #garden #gardening #SelfSufficiency #GrowNostr #herbs #spices #homesteading

Just sold a couple more #Signet devices. I am #decentraling #password #management, one person at a time. It's just like building my #Nostr timeline, really. #infosec #security #cyber #cybersecurity #GrowNostr

Boost this if you remember #Kazaa, #DirectConnect and #eMule. Don't lie.

For all you #hat wearing #nosteriches out there, I made a hat hook that doesn't suck. Key features - The hats aren't expected to cling to the wall, defying gravity - They don't fall off at the slightest bump - They don't crumple your hat against the wall If you're interested, I'll sell you one for 0.4 mBTC. Buy 2 get one free. #shopping #shopstr lnbc400u1pjkut49pp50tkz3cevcyhdh32wl6st5uptrym3knkk5aqfrws458prrdmff7hqhp5l5p5jmckydlehx0f9af82crvkmz0sxfx4qm8mm2whwmskk0upwlscqzzsxqyz5vqsp5jn0vqnvlagldte2d22l4gkfkqv4ec7gckxp96z3pk9ytfmduhc6q9qyyssqveguqmu6c7e8aa99x6n9xgevm0qmexd7k2ushstwtu3vcr4l06m9gvpmhd0hjru6w9a5rz39ytgq3eu3dy4fywr6knf2cgfvyrr6tsgqclm6va

Looks like one small step closer to legalized #hacking.

EU Council president proposes ‘European cyber force’ with ‘offensive capabilities’

There should be “a European cyber force … equipped with offensive capabilities,” according to the president of the European Council, which se...

If the #EU is allowed to take offensive actions, why not the citizens too? That'd drive the biggest real world improvements in #infosec in history. Experts know people shouldn't use crummy passwords and reuse them everywhere. They know people should get security updates. And they tell people not to click on links in emails and then enter your password into whatever site the link takes you to. Yet these are three of the biggest issues in practice. Don't wasn't to be #hacked? #Secure your stuff.

Supertestnet, if you are out there, please merge in my update to #MagicWebStore. It removes all JS code loading from 3rd party servers. #SelfHosted for life. I can maintain my own copy of the repo, but I really try hard to upstream changes whenever possible. I don't like fragmentation.

#Signal is not decentralized, nor do they want to be. They don't allow using any other client to connect to the server except the one they wrote. They block the completely open source edition of their app (Signal-FOSS) from being listed in F-Droid. But everyone will cheer and forget all of this when they allow usernames, even if they are still collecting phone numbers and tying them to the usernames behind the scenes Usernames will be good, but not sufficient for me to recommend Signal again. #Matrix still wins #Privacy #Security #infosec #SecureMessaging

Sounds like beta testing of @ZEUS 0.8 must not be going well. That version has been in beta for a loooong time now. I like Zeus alot, but at some point I'm going to start looking for a non-custodial solution. Preferably one that doesn't require having to run my own server and care about 24/7 uptime or manage liquidity.

I designed and produced hat hooks that don't totally suck. I was tired of hats falling off those dinky, horizontal pegs. My design is away from the wall, and it's supported from underneath instead of from the side. I'm honestly not sure how nobody has made these before. It seems like such an obvious design.

It's interesting to see such a mixed bag from someone claiming to be an independent thinker. https://deltacharlie.tech/45890 I agree with most of what they wrote, but there are also so glaring problems. I agree with the editor's choice of omitting what are essentially personal attacks. In the case near the end, about growing food, it didn't even seem relevant to the points being made. Next, hacking and 2600 in particular, has always been political. From the issue of being able yo hook up you're own equipment to the phone lines in yhe 80s to, PGP debate in the 90s, to protesting Carnivore and Echelon, or opposing the corporate big data collection and exploitation. Many of the sources of information they suggested block Tor, which is especially ironic since the author specifically suggested using Tor. Perhaps more importantly, Zerohedge in particilar tracks SO MUCH of their readers' data and sells it to SO MANY people, it boggles the mind. It should be clear to any free thinker that they are going to say outrageous things to get clicks so they can sell the information they harvest. This is the exact type of exploitation that the author is accusing the mainstream media of doing (and I don't disagree, they have an incentive to do whatever sells). ShadowStats at least seems good on the privacy front, and the content looked reasonable at a glance, but I have not dug into it in any detail to figure out if I can trust them. I couldn't get to most of the other sites on account of blocking Tor. Also, the article was too long. The same points could have been made much more succinctly. At a minimum it would have made sense to break them up into more focused pieces. I understand the author's decision to not debate the topic with trolls, but I would hope they do not shrink from legitimate debate. I guess time will tell.

I printed out a fancy #signet case this the small head on the borrowed 3D printer. I even managed to shave a half millimeter off the opening for the USB connector, so it fits just a tiny bit tighter now. Beautiful!

Here's yet another example of how containers make vulnerabilities even worse while VMs actually provide the protection that containers wish they could provide.

Ars Technica

ownCloud vulnerability with maximum 10 severity score comes under “mass” exploitation

Easy-to-exploit flaw gives hackers passwords and cryptographic keys to vulnerable servers.

Modern computers have hardware support for running VMs. The performance is pretty much the same between VMs and containers. Containers require technology-specific tools, whereas VMs can use the same tools for physical servers, VMs with any hypervisor, or even containers. Don't set up new systems on Docker.

Today, was garlic olive oil day! https://nostr.cooking/recipe/naddr1qqvxwctjd35kxttfden82um9vskk7mrfwejj6mmfdspzq8t2qgxx7kd8w7wx9fud7n3kz5fxqlhzp633tcy4mww5gfhfeusrqvzqqqr4guna6t94 #nostr #cooking #GrowNostr