When you solve the issue, take a pause and then walk back the problem and how to fix it.
If it’s a “forgot where something was”, take a pause then start with “sorry bout that, it’s this…”.

Own the mistake, learn from it, let others learn from it. But dont waste everyone’s time

Stephen King dark tower?
No. Not western, no guns, no science, not really horror.

WoT is the whole “forgotten/suppressed magic, ‘the one’, forces of long imprisoned evil” kinda fantasy, along with a rise to power, world politics, massive battles, adventure, and - I guess - romance.
Has a lot of the tropes, but carves a great story and adventure.
I genuinely recommend it. I’ve read it 3 times, and I enjoy the TV series.

It’s a 15 book epic fantasy, with the last 3 books written by Brandon Sanderson according to (deceased, 2007) Robert Jordans notes.

It’s good.
It has it’s faults, Robert Jordans writing has it’s faults.
But it is good, a great story, a great adventure, a great over-arching story. And 15 books long, makes it great read to sink into and enjoy.

Hmm, maybe I mean moral?
Like, there is a correct way to go about something regardless of context.
As opposed to doing something because of the context.

Any exploit should be notified to the software/platform maintainers with a proper disclosure timeline to ensure it gets fixed in a timely way.
That is the correct way.

Abusing the shit out of a poorly implemented nazi government is the moral thing to do, but would go against a white hat’s ethics. Collectively a good thing to do, but not the correct thing to do as a white hat.

Are gray hats more ethically and morally true?
This is getting to deep for me.

Yeh, venting on the internet helps. And it’s always great when you actually connect with someone.

I always wish I’d learned a trade. Electrician, plumber or tiler. Get an apprenticeship, learn a trade, be a sole trader, do something physical that’s always in demand.
Plenty out there to do, and it’s ok to mourn your last job (being a student/doctorate is a job).
Connect with old friends and family. Meet some new people. Somebody will be looking for someone smart and compassionate

I guess what I mean is that they are blasting through flimsy guardrails.

Yeh, the difference between being high value (twitter) and an actual high value (government) target are entirely different. I bet many countries were salivating over the mere idea of these servers.

I guess they will pass some laws about “hacking being illegal”, arrest some poor self-hosters that did nothing wrong, declare a victory, and change absolutely nothing - other than ruining people’s lives.

I remember an article about a batch of compromised NICs from China that had backdoor firmware in them. You can harden your software system all you want, but when the literal hardware is backdoored, you are doomed.
I think it was Supermicro. So am American company and not a small Mfr.
I wonder if DOGE have reputable hardware, or if they cheapest out on servers.

Yeh, but they aren’t keeping control.
They have been elected. They have 4 years.
So far, it doesn’t seem that they have broken any laws or whatever, that would cause the system to reject their workings. They’ve rigged the courts, so the system is unlikely to reject their workings.
I’d say it’s more of a constitutional coup. They are using loop holes to seize more power.
I think it will be an attempted self-coup in 4 years.

Regardless, it isn’t worth arguing about.
It’s wrong. It’s a shit sandwich, the flavour of shit doesn’t matter.

Nice.
With the tongue in cheek context, I understand your comment more: DEI (as an idea & movement) blossomed under trumps first term, because of the bullshit he caused and the reaction of the public.
The government had actual civil servants (as opposed to appointed oppressors or whatever), and reacted in a sensible way.

But yeh, the damage being done to people is unimaginable. People’s entire careers are being deleted from public records because they are a woman in STEM, or because they are the wrong colour, or because they don’t fit Christians opinion of normal. It’s fucked up

I’d love to believe it.
I can’t find anything backing this up.
The has become a wall of text. Sorry.

1st half of this post is refuting “trump defined DEI”. I would live to be proved wrong on this, but it seems like something that happened during trump and was defined by Biden.
2nd half is more positive.

1st half…

Mostly sourced from https://en.m.wikipedia.org/wiki/Diversity,_equity,_and_inclusion ( https://en.m.wikipedia.org/wiki/Diversity,_equity,_and_inclusion incase the commas fuck up formatting).

I don’t know when DEI actually became the official term. Probably during the Biden administration .
According to wiki, however, DEI has been around since the 60s, in principle.

Executive Orders that first mention “equity” along side diversity and inclusion seems to be https://en.m.wikisource.org/wiki/Executive_Order_13583 an Obama EO.

The best I can find relating to what you say is along the lines of this:
https://www.britannica.com/topic/diversity-equity-and-inclusion-programs

Basically, government bodies using their autonomy to enact DEI policies in response to #MeToo, #BlackLivesMatter, George Floyd, and lots of other public sentiment & unrest. However nothing official at the government level of “DEI”.
Essentially, trump was asleep at the wheel with COVID and civil unrest, did fuck all (or encouraged civil unrest), and government bodies (which still had autonomy) enacted policies inline with the population.

So, what constitutes DEI?
What the right is defining it as? What it has been since the 60s? What Biden enacted? What the government bodies enacted during sleepy trump?

The 2nd half:

Being against DEI is like being against Antifa, or declaring Antifa a terrorist organisation. It’s not really a thing.
DEI is the awareness that previous centuries of discrimination no longer applies.
DEI isn’t a tangible thing. It’s humanity.
It didn’t happen during trump’s first term. But it did progress.
It didn’t happen during Bidens term. But it did progress.
That is humanity. Humanity progresses. Humanity is love, equality and freedom for all.

And a bit more ideologically…

Progress in the next 4 years is gonna be slow.
But everyone has worked on this before. It’s a hiatus. It will come back, and will be easier and more streamlined than before. Loads of people are backing up data, so it can be (relatively) easily restored. None of this has to be worked out again, nothing shared on the internet can truly die, ideas can’t be killed.
It’s gonna be 4 years of shit.
Hopefully Americans learn, and don’t vote in more conservatives.
…
…
Hopefully Americans get a chance to vote in another party.

Edit: typo, equality not equity

Sorry for the wall of text.

You would hope that a public front end is entirely isolated from critical systems.

Hackers got in.
Either they saw there was nothing of value, and figured they would embarrass the owners.
They got in, saw shitloads of value, but decided the ethical thing was to embarrass as opposed to exfil/exploit/sell the access.
Or the hackers were explicitly aiming to embarrass the owners, and didn’t explore scope beyond that.
It’s likely “gay furry hackers” or similar, and it’s “grey hat” hacking.

The ethical route, ie “white hat”, is to contact the owners about the exploit with a fixed period disclosure. Ie, “fix this in 30-90 days, or we will publish our method”.
“Gray hat” are more like this. Where they find an exploit, it could go deeper, but they do some lulz instead. Basically make it obvious something has been hacked, but not actually exploit it further.
“Black hat” would find the exploit (even if it was limited access) then sell it while trying to leave no trace, so it can be exploited again. Or straight up exploit it themselves.

There is a possibility of foreign agents doing false-flag gray hat shit. Exfil sensitive data, cover their tracks, then “botch” some “hahaha you’ve been pwnd” stuff. Both getting sensitive data, and derailing the US government (because Musk has been authorised by Trump. It’s a huge undermining).

With the timeline, this seems like gray hat, or black hat further exploited by gray hat. Or false flag.

The obvious aim is to embarrass the owners.
This casts serious political shade on the DOGE servers that have been hooked into government networks without oversight. Any further data exfil is a bonus to certain foreign countries.

Best case scenario is that this is domestic gray hat, the muSSk team learn from it, and figure out how actual internet security works, and harden their systems accordingly.
I mean, the actual best case is that this DOGE coup gets stopped. But the president has authorised DOGE, so this is what America wants. So, not a coup.

Ideally, this hack has 0 actual scope of security vulnerability.
Other than the “yeh, but if they can get into your public web server (something expected to be hardened as fuck, and might as well be static file hosting. Seriously, why is there a database for this shit), how can we trust your servers on government networks”.
But chances are the exploits to get into this server will be similar to the exploits to get into the government connected DOGE systems. Unless the sysadmin & network admins (god bless them) have managed to maintain some control that muSSk doesn’t understand, and are able to mitigate the tsunami of access such a compromised server might unleash.

I feel like “look at twitter” is probably enough of a defence to decline president musk.
It would probably need to be wordier for court proceedings.

My experience of checksums are in things like serial where they can potentially recover a corrupt bit.
I presume in the case of encryption, a checksum is more of a hash of the raw data? Like a one-way deterministic compute. Easy to get a hash of data, extremely difficult to get data from a hash.
In which case, it’s fine. Passwords are hashed (granted, multiple times), but a cryptographically secure hash is not to be underestimated.

A page could load thousands of images and thousands of tiny CSS files.
None of that is JS, all of that is loads of extra requests.

Never mind WASM. It’s a portable compiled binary that runs on the browser. Code that in c#, rust, python, whatever.
So no, JS is not the only way to poorly implement API requests.

Besides, http/2 has connection reuse. If the IP and the TLS cert authority is the same, additional API/file etc requests will happen over the established TLS connection, reducing the overhead of establishing a secure connection.

Your dislike is of badly made websites and the prevalence of the browser being a common execution framework, and is wrongly directed at JS.

I don’t think the argument is worth having.

Only thing I will say is that the audio world has no common meaning for a slave.
Programming does.

It will come back as an electron react app that uses web sockets to synchronise embedded sqlite databases

I have a meaco dd8l.
I haven’t tried any others, but I’ve had it for a few years.
Best purchase I’ve ever made.
Anyone living in a flat should get one.
Although, my parents bought one for their house and swear by it. So, I guess anyone living indoors should get one.

I’m currently reconsidering using a couple mikrotik for some layer 3 hardware offloading.
Not really homelab, but close.

I have a project that gets integrated with another network for an event. I’m thinking of using 2x crs504 (cause I’m using mlag for servers, think vrrp or whatever for “public” (it’s all internal) ip) and seeing if I can get l3hw working as a router.
While I could sit on a subnet of the “host” network, having a gateway that traffic goes through allows me to test and prove everything for my system in my homelab, with just the final integration being a do-in-a-time-crunch problem.
I’m already using the crs504s for networking (I bought them ages ago, thinking 25gbps was going to be as easy as 10gbps. It’s all running at 10gbps), and this saves having to use something as a router, cuts down on rack space, all sorts of benefits. I think.
Anyone have any experience with mikrotik l3hw offloading?

My actual homeland is just a NAS and some networking. It’s a small flat, it’s just me. Not complicated, no need to give me more headaches!

Yeh, I did. Just looking out.
It’s odd to see an admin user name not doing admin actions.
Most mods/admins have a normal account and a different mod/admin account for when they have to put on their official hat.

Also, are you actually the admin of shitjustworks?
Or are you squatting a misleading username?

If the live engineer is crappy and causes feedback or echo (like on the brink of feedback) that goes straight to records. There is no way to fix it in post (well, no decent way, and takes ages to dial in something mostly acceptable ).
If it’s a “feel of being live” that’s required in post, most lavs are omni so will pick up a bunch of atmo noise. It will likely feel live by virtue of being live. I imagine they have some mics on the camera as well for atmo.

Maybe the records aren’t set up for a feed from the sound desk. Maybe the sound desk isn’t able to provide a clean feed.
The lav mic is probably wireless, with the receiver direct into a camera. They don’t have any gain-before-feedback physics to contend with, so they can gain it however they want.
And if they are doing any spots not in front of the mic on stage (or a mic through the sound desk), they will need a mic anyway. If they always use the same mic, then the sound will be consistent.

Better to have an independent feed.

But who cares, the guy is a piece of shit. Any videos he’s gonna put out are not for the benefit of humanity