@tknarr@mstdn.social

Todd Knarr

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Mar 09, 2026

@socketwench@masto.hackers.town WTF are you doing specifying fonts on a Web site?

Yes, yes, I know, marketing insists on having the site appear _just so_. Fact remains, Web sites are NOT print publications. The world would be much improved if Marketing understood that and unclenched their branding sphincters a bit.

View on mstdn.social

0

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Mar 09, 2026

Remember: going to permanent #DST in the US requires a state to get Congressional approval. Going to permanent standard time doesn't. And there's no real difference, not in this day and age where streetlights are a thing.

View on mstdn.social

0

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Mar 08, 2026

Blech. OI Shopping List was one of the best shopping-list apps I've seen. Simple, effective, no ads or accounts or cloud required. Stable, no releases since 2020 and I haven't had any problems with it that would require fixing. And it's no longer in existence. The source code is there on Github, but the app doesn't exist in the Play Store. Time to research.

https://www.openintents.org/shoppinglist/

View on mstdn.social

0

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Feb 26, 2026

@navi@social.vlhl.dev If you want some levity, Derek Lowe has some stories in his collection "Things I Won't Work With". I find his delivery far more amusing than I should.

https://www.science.org/topic/blog-category/things-i-wont-work-with

View on mstdn.social

0

Thread context 4 posts in path

Root @mattblaze@federate.social Open

@mattblaze@federate.social

So while openly publishing offensive security techniques might indeed help criminals, that harm is outweighed by significant benefits. Every properly trained computer science student should understand

Ancestor 2 @mattblaze@federate.social Open

@mattblaze@federate.social

The bottom line here is that while being the subject of attack by a deranged internet mob is never fun, sometimes it's the cost of doing business for doing interesting work. And for those who yell at

Parent @mattblaze@federate.social Open

@mattblaze@federate.social

I've gotten a few replies asking me if I regret publishing this or would do anything differently. No. I'm proud of this work. I think it has value. I would do nothing different. I am, evidently, remor

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Dec 29, 2025

@mattblaze@federate.social I realized the problems with master keying back in the mid-80s in college, so I figure it had to be common knowledge then or thieves would be too stupid to breathe. That includes the practical vulnerabilities of just swiping a copy of the master or making a bump key. I wonder how many things are relatively secure only because even the bad guys dismiss the attack as "Nobody would be brain-dead enough to leave _that_ in there...".

View full thread on mstdn.social

0

Thread context 2 posts in path

Parent @cstross@wandering.shop Open

@cstross@wandering.shop

My controversial take: Linux desktops peaked with KDE 3.5.x. (Gnome is a ghastly abomination and KDE's been going downhill ever since.) macOS desktops peaked with Snow Leopard (10.6). Everything since

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Dec 24, 2025

@cstross@wandering.shop Give us OS/2 and the Workplace Shell.

View full thread on mstdn.social

0

Thread context 2 posts in path

Parent @cstross@wandering.shop Open

@cstross@wandering.shop

Is it just me, or does the old Evil Overlord List look an awful lot like Elon Musk, Mark Zuckerburg, Peter Thiel et al are systematically looting it for all the worst of their ideas? https://web.mit.e

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Dec 02, 2025

@cstross@wandering.shop Nope. If they were, they'd be doing a better job of things

View full thread on mstdn.social

0

Thread context 2 posts in path

Parent @cstross@wandering.shop Open

@cstross@wandering.shop

#WritersCoffeeClub Nov 29. What do you need to simplify in your work? Looks blankly at camera: why would I *WANT* to simplify my work?!? ("Accessibility" is not "simplicity". There are things I can do

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Nov 29, 2025

@cstross@wandering.shop And the obvious difference in the definition of "work" makes their stupidity clear.

View full thread on mstdn.social

0

Thread context 4 posts in path

Root @mattblaze@federate.social Open

@mattblaze@federate.social

US Capitol Building, Washington, DC, 2021. All the pixels, each spending most of its time fundraising, at https://www.flickr.com/photos/mattblaze/51221569646 #photography

Ancestor 2 @mattblaze@federate.social Open

@mattblaze@federate.social

Captured with the Phase One IQ4-150 digital back, Rodenstock 90mm/5.6 HR-Digaron lens (@ f/6.3) and about 10mm of vertical shift to maintain geometry. Almost five years ago, a group of insurrectionist

Parent @mattblaze@federate.social Open

@mattblaze@federate.social

I post this mostly as a periodic reminder to myself that it wasn't that long ago that the rule of law and the constitution prevailed. I hope it will again in my lifetime.

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Nov 24, 2025

@mattblaze@federate.social It will, unless you plan on dying sometime in the next 18 months. The only question I think will be whether the orange harangutan gets impeached or the GOP invalids him out to avoid impeachment. I've given up on him stroking out, they must have him on some Golden Throne-type life-support for him to have lasted this long.

View full thread on mstdn.social

0

Thread context 4 posts in path

Root @mattblaze@federate.social Open

@mattblaze@federate.social

The other big practical problem with e2e verifiable voting schemes is that their mathematical complexity, coupled with the existence of a voting receipt, can make it very hard to assure nonspecialists

Ancestor 2 @tknarr@mstdn.social Open

@tknarr@mstdn.social

@mattblaze@federate.social The receipt would make me suspicious, since one of the attacks is having a third party with access to the voter and their receipt be able to confirm the voter voted the way

Parent @mattblaze@federate.social Open

@mattblaze@federate.social

@tknarr@mstdn.social That's what e2e verifiable does. But understanding why (and precisely what you're trusting) is non-trivial.

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Nov 23, 2025

@mattblaze@federate.social True. If it were simple, it wouldn't work. Doing the highly non-trivial, though, is kind of my day job. I have to trust that the math does what the mathematicians say it does, but usually given that I can fit the pieces together and confirm there aren't any holes that don't involve invalidating the math. Also, while I'm willing to do the work to confirm them, I am NOT going to try to create one myself. That way lies abject failure. Also madness, but mostly failure.

View full thread on mstdn.social

0

Thread context 4 posts in path

Root @mattblaze@federate.social Open

@mattblaze@federate.social

One of the reasons I'm skeptical of the practicality of e2e verifiable voting schemes is that every system proposed so far is fragile. A single mishap can result in an unverifiable election (and, in w

Ancestor 2 @mattblaze@federate.social Open

@mattblaze@federate.social

Fortunately, voting in scholarly societies (like IACR) is relatively low stakes, as elections go.

Parent @mattblaze@federate.social Open

@mattblaze@federate.social

The other big practical problem with e2e verifiable voting schemes is that their mathematical complexity, coupled with the existence of a voting receipt, can make it very hard to assure nonspecialists

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Nov 23, 2025

@mattblaze@federate.social The receipt would make me suspicious, since one of the attacks is having a third party with access to the voter and their receipt be able to confirm the voter voted the way they were supposed to vote. I'll have to research how to do a receipt that'd let the voter verify their vote was tallied correctly without having to trust the voting equipment while preventing anyone but the voter from using the receipt to do the same.

View full thread on mstdn.social

0

Thread context 4 posts in path

Root @mattblaze@federate.social Open

@mattblaze@federate.social

They're conning statistically unsophisticated, disappointed voters with impressive-looking, but meaningless, "analysis" that tell people what they want to believe. If you push back, they challenge you

Ancestor 2 @mattblaze@federate.social Open

@mattblaze@federate.social

There ARE real vulnerabilities in some of our election infrastructure, and this is absolutely a problem that we should fix (and on which significant progress has been made). But the mere existence of

Parent @mattblaze@federate.social Open

@mattblaze@federate.social

The only differences between these claims about 2024 and the claims that the election was stolen from Trump in 2020 are: - The losing candidate isn't amplifying the BS this time. - No one stormed the

Current reply

Todd Knarr

@tknarr@mstdn.social

mstdn.social

Todd Knarr

@tknarr@mstdn.social

mstdn.social

@tknarr@mstdn.social · Nov 13, 2025

@mattblaze@federate.social It was only "stolen" in the sense the conservatives got their own out heavily, combined with the usual visible tactics to use the rules to disqualify more Democrat ballots than Republican (eg. challenging mail ballots only in districts that leaned blue, leaving those that leaned red alone). Nothing illegal or even unfair there, Democrats just need to adopt the same tactics and get their own out in droves

View full thread on mstdn.social

0

Todd Knarr

Posts