Max Maass :donor:

@woe2you I have an Everything Presence Lite (?). It usually works well but today it’s a bit flaky. May have too much clutter on my desk right now.

Tempted to call the motion detector in my office „senpai“ because it frequently doesn’t notice me 😫

#HomeAssistant

🆓 Currently free on the Epic Games Store:

🎮 Cozy Grove
👉 https://store.epicgames.com/p/cozy-grove

⏳ Sale ends on March 19, 2026 at 15:00 UTC.

#EpicGames #Games #Gaming #FreeGame #FreeGames

1. Tell everybody that your API keys are secret and it’s safe to publish them on your website.
2. Protect sensitive AI assistant content with the same kind of API keys.
3. Retroactively allow active API keys to access the sensitive content.
4. What could possibly be going wrong?! 🔥

Probably the […]

Great merch at #KeycloakDevDay.

#keycloak #zerotrust

So, what is the #Sanderson equivalent to „slashdotted“? I nominate #Sandstorm.

(New crowdfunding campaign by Brandon Sanderson just launched and took down #Backerkit)

[Politics, Iran]

Is one month without a new war too much to ask for? 😫

@benedikt_lauenburg oder sich aktiv bei ihm zu melden und zu sagen „das ist die Situation. Gibst du mir jetzt wirklich ne FN weil die IT nicht funktioniert?“

Aber vorher kommt angeblich noch ein RB, vielleicht fährt der ja.

Preisfrage: wenn die Bahn selbst nicht weiß, dass der Zug ausfällt, und ich einen flexpreis mit Bindung an die Gattung RB auf der Teilstrecke habe, darf ich dann jetzt in den ICE steigen? 🤔

Antwort: keine Ahnung, aber ich steige in den nächsten Zug ein der fährt und es ist mir egal.

Als Mensch aus der Großstadt ist man schon verwöhnt mit den Zuganbindungen. Gerade auf dem Land und der RB ist einfach kommentarlos und ohne Info im Navigator nicht aufgetaucht. Und das scheint normal zu sein 🤷‍♂️. Und wir Städter fragen uns warum man auf dem Land ein Auto haben will.

Mal sehen […]

TIL that you can store WiFi Credentials on an NFC tag and people can scan this tag to connect to your WiFi. https://mdias.info/posts/a-geeks-approach-to-guest-wifi/

...on Android. iOS does not support this, it seems. 😩

Also, I felt like I had found a kindred spirit on the internet when the […]

[re: Positive mention of an AI tool]

@Xavier Yep. It is a really impressive piece of tech, and at the same time still has some horrible blind spots that get seen a lot in use at scale, like here: https://cyberplace.social/@GossiTheDog/116080909947754833

[Positive mention of an AI tool]

A few words on how I identified the vulnerability, because it illustrates an interesting use case for AI coding tools like Claude Code, and an aspect of them that I haven't seen discussed as much.

When I saw Hister for the first time, I thought it looked like a […]

For the #selfhosted / #homelab people running #Hister (https://github.com/asciimoo/hister): you should update to version v0.4.0 ASAP. I reported a vulnerability in the previous version that allows any website to download your entire database due to missing CORS enforcement. The author responded […]

Great article by @bretdevereaux on how insurgencies and nonviolent protests work - what their goals and frameworks are, how they achieve their goal, and how „mixing and matching“ between the playbooks will defeat itself - especially violent actions in support of a non-violent movement […]

“Far from being a "charity" or a one-way security guarantee, NATO is a vital force multiplier that allows the United States to project power, protect its economy, and share the immense burdens of global leadership in ways that would be impossible—or prohibitively expensive—to achieve on its own.”

NATO is Vital to U.S. National Security A joint statement by 16 U.S. Ambassadors to NATO and Supreme Allied Commanders, arguing "NATO is not an act of American generosity. It is a strategic bargain that ensures the United States remains the...

ICYMI: I feel this didn’t get enough attention because it was published in the runup to the Munich Security Conference, but this open letter by every single US Ambassador to NATO since 1998 (and until the Trump appointee) and all but one SACEURs since 1997 on NATO’s value is worth reading.

[Solution to the problem in the previous toot]

The problem with that approach (somewhat simplified) is that in a TLS handshake, only the key agreement is authenticated with the servers' certificate and private key. Afterwards, both sides work with an ephemeral symmetric key. So, the supposedly […]

For reference, here's the prompt I gave it, couching the question as a business idea to try to further mislead the model into going in the wrong direction.

"I have a business idea. In lawsuits, you sometimes need an authenticated proof that a website said a specific thing at a specific time […]

Found a real-world difference between Claude Haiku 4.5 and Sonnet 4.5 today. As an experiment, I posed a question to it that I had gotten wrong a couple years ago. The question requires knowledge of TLS protocol details and thinking through their implications. Sonnet 4.5 caught the trap […]

How should the #EU support #OpenSource companies and communities? How about the #Fediverse?

#HaveYourSay: The @EUCommission would like to hear your views about the #European Open Digital Ecosystem Strategy:

⏰ Deadline: 3 February 2026

👉 […]

A big advantage of home automation / #homeassistant is that you can remotely mess up and accidentally defrost your fridge because somehow the smart plug it is connected to is turned off while applying a software update. Bonus points for doing so while away for multiple weeks. Ask me how I know […]

Putting another restaurant on my shit list because they got Google to remove my critical 3-star Google Maps review. I appealed the decision with Google, and recommend people stay away from Süllberger Alm in #Hamburg. Food was fine, but too expensive, and restaurants that manipulate Google […]

When people say Shakespeare isn't relevant to modern life it's good to have people like Sir Ian around to prove them wrong:

Great take on the „humans drive with vision alone, so why shouldn’t cars“ argument made by Tesla.

Source: a really interesting article on the history and technology of self-driving cars in Asterisk: https://asteriskmag.com/issues/13/seeing-like-a-sedan

(For the record: Yes, that is a post by a short seller. Yes, they make money that way. I don’t care and consider this kind of investigative reporting actively good, no matter the financial incentives at play.)

This might be of interest to the #Homelab #Selfhosted crowd: #ubiquity seem to be supplying the Russian military with communications equipment, and helping with sanctions evasion. They know about it and don’t prevent it. https://hntrbrk.com/ubiquiti/

That settles the question of whether I want […]

Three kinds of “privacy auditing” - Ted is writing things What academics call

What is "privacy auditing"? Ask three privacy experts and you might get three different answers! So I wrote this ✨ new blog post ✨ to shed some light on this admittedly confusing terminology 👀

➡️ https://desfontain.es/blog/privacy-auditing-terminology.html 🌈