Daniel Siepmann likes this.
Daniel Siepmann reshared this.
"While more of the #web is becoming accessible to people with low-end connections, more of the web is becoming inaccessible to people with low-end devices even if they have high-end connections."
@danluu on web bloat: https://danluu.com/slow-device/
Daniel Siepmann likes this.
reshared this
#Forgejo v7.0 was just released! Get it at https://forgejo.org/download/. 🚀
Forgejo v7.0 is available with translations in Bulgarian, Esperanto, Filipino and Slovenian; SourceHut builds integration; support for the SHA-256 hash function in Git; source code search by default and more. It also is the first Long Term Support version. The adoption of semantic versioning is the reason for the version bump from v1.21 to v7.0 and is compatible with existing tools. ✨
Read more at https://forgejo.org/2024-04-release-v7-0/
@Codeberg@anoxinon.de @forgejo I don't use LFS (currently). Every project, except for a few, has an avatar. From the 310M the git folder uses 274M. I also do not have docker images hosted in my own forgejo instance.
(All GitLab mirrors are really fat :D )
Or in which information are you interested?
Daniel Siepmann reshared this.
Die #FrOSCon @FrOSCon hat gerade ihren CfP veröffentlicht: (fullquote)
Call for Papers FrOSCon 2024
The Free and Open Source Software Conference (FrOSCon), an annual summer conference for users and developers of FOSS, will be held from August 17th to August 18th at the University of Applied Sciences Bonn-Rhein-Sieg in Sankt Augustin near Bonn, Germany. It is organized by the University's Department of Computer Science in collaboration with the student body and the FrOSCon e.V.
As its key feature, volunteer speakers will deliver a comprehensive range of talks and workshops. Additionally, the event offers space and facilities to Free Software developers and projects to organize their own meetings or subconferences. The event also hosts an exhibit hall with booths from both FLOSS projects and companies.
Topics
We are looking for contributed papers on current trends and developments in all areas of Free and Open Source Software, e.g.:
- Operating systems
- Software development
- Administration
- IT security
- Legal aspects
- Desktop
- Education
- Geographic Information Systems (GISs)
- Cloud
Focus areas in 2024 are:
- In Rust we trust - Memory safe languages
- Grow your own - Open Source Plant management
- SBOM - Who supplies your software chain?
- Thinking outside the stack - eBPF and friends
- Bridging the Gap between politics and reality - Open Source Lobbying
- AI AI, captain - LLM, machine learning & Co
Submitting Contributions
To submit a paper, create an account and submit your contribution at https://cfp.froscon.org/. To participate in the Call for Papers, you will have to submit a short abstract as well as a detailed description of your proposed session.
All accepted speakers must submit slides for their talk before the event.
The call for papers is open through May 23rd, 2024. The program committee meets to review proposals in mid June. We will do our best to notify submitters whether their proposals were accepted within a week or two.
Language
Talks can be held in German or in English. The choice of language should depend solely on which language is more suitable for presenting the chosen topic. Language of submitted texts and the resulting talk should be the same.
Length of the submissions
The abstract should summarize the planned content of the talk in a precise and succinct way. We do not place a limit on its length.
Talks should take no more than 45 minutes, in order to allow some time for Q&A and speaker transition.
We can accept longer contributions in special cases, we ask for a justification for the longer extent in this case.
Format
Abstract and description have to be submitted as plain text via the https://cfp.froscon.org/. We ask for submission of the slides in PDF format; other open document formats (e.g. those that can be opened with tools like LibreOffice) should only be submitted after prior consultation.
Licenses
We will publish abstract, description, slides and a video of your presentation online and include the abstract in the conference program. We require that you place your contributions under the Creative Commons Attribution 4.0 International (https://creativecommons.org/licenses/by/4.0/) license (or a more lenient license).
Unless another license is noted, we will assume that your contribution is under this license. If you want to place your works under a less restrictive license, please note so with your submission.
Selection of contributions
Contributions are selected based on their content by a program committee. Please understand that we cannot accept all contributions and are limited by the number and quality of the submissions. We will favor submissions which fall under one of the aforementioned topics.
Other remuneration
FrOSCon is organized by volunteers and is mostly funded by partners. We ask you to understand that we will not be able to reimburse you for your expenses.
Social Event
We are planning to hold a social event on the evening of the 17th and kindly invite all speakers to attend.
Important Dates and Contact Information
- May 23rd, 2024 End of the Call for Papers. All contributions need to be submitted by this date in order to qualify.
- Mid June 2024 Notification of acceptance of all contributions .
- July 2nd, 2024 Final acceptance. We ask all invited speakers to give their final confirmation by this date.
- August 17th, 2024 First day of FrOSCon.
Further information can be found on the website under https://www.froscon.org/.
Please send questions about the Call for Papers via email to: program@froscon.org
Contact the organizers via email: contact@froscon.org
Postal address:
FrOSCon e.V.
c/o Hochschule Bonn-Rhein-Sieg
53757 Sankt Augustin
Germany
##################################
We invite you to participate in the 19th Free and Open Source Software Conference (FrOSCon). FrOSCon will take place on August 17th and 18th, 2024 at the University of Applied Sciences Bonn-Rhein-Sieg, in Sankt Augustin, Germany.
We provide a large exhibition area, where free and open source projects have the opportunity to present themselves to get in touch with users and developers. Additionally, we offer rooms for projects to host developer meetings or to self-organize a talk program for visitors.
You are welcome to contribute with your project to this year's FrOSCon and thus support the communication and exchange within the Free/Libre and Open Source Software community.
Visit https://callforprojects.froscon.org/ to register and submit your proposal. Please include a short summary of what you are planning and any requirements you might have.
If you have any questions, you can reach us via projects@froscon.org.
Please register before May 23rd, 2024 to give us enough time to organize your project's participation. We'll get back to you shortly after.
Note that also our Call for Papers has started and we're looking forward to your talk submissions. You can register via https://cfp.froscon.org/.
For further information concerning the Call for Papers take a look at https://www.froscon.org/en/cfp/.
We hope to see you at FrOSCon!
Daniel Siepmann likes this.
reshared this
Daniel Siepmann likes this.
reshared this
I am thinking about the future of EXT:powermail and howto deal with the massive configuration array aka TypoScript constants and setup.
I am tired of all the "undefined array key warnings" in php8. If the extension is well configured, it works quite well now. The code is not very clean, with all these workarounds. And in case an integrator removes a whole configuration branch, it will lead to many exceptions. (1/2)
Daniel Siepmann reshared this.
Maybe a kind of https://github.com/in2code-de/femanager/blob/bdb3aab5d762173ee3431b206c2b7076add41d23/Classes/Utility/ConfigurationUtility.php#L132 combined with "cached" TypoScript 🤔
@MarcusSchwemer
femanager/Classes/Utility/ConfigurationUtility.php at bdb3aab5d762173ee3431b206c2b7076add41d23 · in2code-de/femanager
Modern TYPO3 Frontend User RegistrationTYPO3 Frontend User Registration and Management based on Extbase and Fluid and on TYPO3 8 and the possibility to extend it to your needs. Extension basicly wo...GitHub
Daniel Siepmann likes this.
reshared this
Okay, this is very very embarrassing.
I lost my disk #encryption password. The hand written password does no longer work. I don't know why...
I have a backup, but that disk is also crypted.
All my passwords are in a keepass database file.
This is on the cryted disk and backup.
I also have a backup on my #Fritz.box nas. But the password is ... In the manager.
I have a Fritz VPN to my Fritz box stored on my android phone.
Any recommendation on how to get back acces to the password manager database file?
Help is very welcome.
I fear I need to contact some company and pay Monet to get back my access :(
UPDATE: I could solve the issue by decrypting my very bad handwriting. And I'll now put back my keepass file onto a server a a level of backup and will print out the most important passwords instead of keeping handwritten backups.
like this
reshared this
No, I only have that on my fritz.box. I could solve it in the meantime: https://friendica.daniel-siepmann.de/display/3db7c7b4-5266-1c3a-d07e-d18700749557
And I'll put my keepass back to my nextcloud :)
If the encryption is good, an encrypted disk might be very difficult to access even by professionals. (Don't know about the Fritzbox, that might be a way).
Take a break, try some time later to type your password. Check your keyboard settings (caps lock, correct language settings). Try to use another keyboard (your current keyboard might have a key not working).
Good luck!
MuscleMemory is broken. I'm not able to unlock the ssd of my laptop anymore.
Need to wait until Monday when I've access to the physical backup of the password...
like this
I mean I entered it a thousand times before …
Yeah also had that, luckily only for one day.
I hope I'll never have that for my digital keepass, as I don't have a physical backup of that right now... But I added my pins to that ;)
A nice blog post explaining the different components like #windowManager, #displayManager, e.g. related to #x11 and #wayland.
Nice for people like me who never dog into that: https://www.drakerossman.com/blog/wayland-on-nixos-confusion-conquest-triumph
How to Enable Wayland on NixOS, or: Confusion, Conquest, Triumph
Flakes are a recent addition to NixOS. This article explains how to convert stock NixOS installation into a flaked-out one, and explains why you should do it.Drake Rossman
like this
Krishna Draws✏️ reshared this.
There is no artificial intelligence, just other people's data.
Adapted from: "There is no cloud, just other people's computers"
#AI #ArtificialIntelligence #MachineLearning
Daniel Siepmann likes this.
reshared this
📣 Announcing the availability of:
- PHP 8.3.6
- PHP 8.2.18
- PHP 8.1.28
‼️ These SECURITY releases fix:
- proc_open workaround Windows with escaping arguments for bat/cmd files
- __Host-/__Secure cookie bypass
- Infinite loop in mb_encode_mimeheader
- password_hash handling of null-charecter terminated $password
Please upgrade ASAP.
Changelog: https://www.php.net/ChangeLog-8.php
Source: https://www.php.net/downloads
Windows: https://windows.php.net/download/
Daniel Siepmann reshared this.
That's exactly why I am a big fan of open source right from beginning. It allows others to discover your ideas, thoughts and beginnings. They can share their thoughts and ideas or findings.
Sometimes someone knows something so you don't need to build the stuff on your own. And others might join your efforts to build something cool.
I never did something private first until it is "ready". But I gave up in that topic...
like this
reshared this
selfh.st/apps, a Directory of Self-Hosted Software
Self-Hosted Applications and Alternatives
A directory of self-hosted software and applications for easy browsingEthan Sholly (selfh.st)
Daniel Siepmann likes this.
Daniel Siepmann reshared this.
Toller Vortrag von Rouven Czerwinski zu #Wayland. Ich habe mich da bisher immer drum gedrückt. Aber im Vortrag wird sehr schön erklärt, was es ist, wieso es entwickelt wird. Warum welche Probleme existieren, etc.
Würde ich allen empfehlen die bisher auch noch auf #X11 sind und sich der Thematik bisher verschlossen haben oder noch Vorurteile oder Halbwissen haben.
https://media.ccc.de/v/clt24-284-xorg-ist-tot-nutzen-sie-wayland
Xorg ist tot, nutzen Sie Wayland
Die Entwicklung des Xorg-Servers ist kaum noch aktiv. Über kurz oder lang führt dies dazu, dass die Software nur noch schwer mir aktuelle...media.ccc.de
like this
Ist anscheinend ein totales Nischenthema. Hatte damals auf dem Mac dieses wunderbare Retina-Display und konnte das Scaling nach Belieben einstellen. Habe dann zu Linux mit 4K-Monitor gewechselt und hatte echt Probleme mit den Augen. Einzige Option unter Xorg damals: Alles mal zwei. Das war dann wieder viel zu groß und unsinnig. Fractional Scaling ging dann irgendwie nur unter Wayland ein wenig.
Hab das Thema aber nicht weiter verfolgt nachdem ich zu 1440p gewechselt bin.
Ich bin da leider auch nicht im Thema.
Hab immer nur einen monitor mit ner normalen Auflösung.
Nur bei meinem alten MacBook das kein full HD kann brauche ich sowas. Wenn ich was präsentiere Spiegel ich den Bildschirm und mache mit xrandr nen scale Faktor an damit ich keinen schwarzen Rahmen habe.
Muss mal schauen wann ich auf wayland Wechsel und was da noch alles ansteht.
Please read the release notes carefully before upgrading: https://github.com/phpDocumentor/ReflectionDocBlock/releases/tag/5.4.0
Release 5.4.0 · phpDocumentor/ReflectionDocBlock
More type support Since the beginning of this package we have been working on our own parser. Mostly regular expressions spitting each part of a docblock and processing them separately in each tag....GitHub
Daniel Siepmann likes this.
reshared this
Daniel Siepmann likes this.
reshared this
Pro tip: Resist the urge to bundle unrelated changes into a single pull request. This applies to both open source and at work.
It may be tempting to fix the bug you noticed while working on something else, but don’t. Follow up with a separate PR for that.
Daniel Siepmann likes this.
reshared this
I had trouble with Content-Security-Policy reporting on a password protected staging environment in combination with Firefox. I found a nice solution and blogged about it:
https://www.koehnlein.eu/en/blog/2024/csp-reporting-basic-auth/
Bypass basic authentication for Content-Security-Policy reporting requests
This modification in your server configuration disables the basic authentication for Content-Security-Policy reports to also allow Firefox browser to submit them in a basic auth protected environment.www.koehnlein.eu
reshared this
Thanks for sharing :) I guess Firefox added a layer of security. It no longer passes basic auth in URLs.
It would ask you whether it was expected in order to be confirmed by a user. But that doesn't we to work for those inner requests.
Just as an possible explanation why your, and mine, favourite browser doesn't "support" that.
like this
If you ever leave a community - any community - because of (systemic) problems with it, *please* post the reasons publicly if you are able to.
You don't need to engage with people questioning your reasons or asking you things, or any other replies - merely state your motivation for leaving, what led up to it.
It may sound like a small thing, but it is *immensely* helpful to the people staying behind fighting to fix the community's issues, who will have a concrete thing to point towards to show that other people are not tolerating it either.
Daniel Siepmann likes this.
reshared this
CSS quick tip: if you're adding quotation characters use `open-quote` and `close-quote` as content because they consider the document language. 💪
https://www.stefanjudis.com/today-i-learned/how-to-use-language-dependent-quotes-in-css/
How to display language-specific quotes in CSS
Use CSS and the open-quote and close-quote values to display language-specific quotes.Stefan Judis (Stefan Judis Web Development)
Daniel Siepmann likes this.
reshared this
like this
reshared this
Das TYPO3 Usergroup Treffen im April findet wieder einmal in der TYPO3 GmbH in Düsseldorf statt. @danielsiepmann zeigt uns Best practices bei Upgrades.
Anmeldung bitte hier:
https://pretix.eu/t3ugrr/ug2024-04/
reshared this
How did you improve your #foss today?
Daniel Siepmann likes this.
reshared this
AI generation when writing software is a false economy. You are replacing writing code with code review. Code review is harder and requires you to already have an understanding of the domain which often means that you would’ve even able to write it yourself to begin with. If you code gen something because you don’t know how to write it yourself, you by definition cannot review it without going though an effort equivalent to writing it yourself in the first place.
Unless of course you don’t care about code review and so doom yourself into treating software like magical incantations that break randomly for no perceivable reason; but no good mage would do that, surely.
Daniel Siepmann likes this.
reshared this
The secret to succeeding in technology is to build exciting things with boring technology.
Boring tech is well-understood and the edge cases well-known.
Your product should be what’s exciting, not your stack or your devops.
Daniel Siepmann likes this.
reshared this
[FEATURE] Introduce site sets with setting definitions
https://github.com/TYPO3/typo3/commit/b326de1db9e46adef55c166091a175e550807faf
reshared this
📣 Montag 19 Uhr dreht sich beim User Group Treffen alles um #TYPO3 v13: @luisasofie stellt uns die Roadmap vor und Oli Bartsch zeigt uns die neuen APIs für Developer und Integratoren.
Luisa und Oli werden live aus Fuerteventura vom TYPO3 #Surfcamp 🏄♀️ 🌴 zugeschaltet!
https://www.meetup.com/de-DE/munich-typo3-user-group/events/300230501/
Daniel Siepmann likes this.
reshared this
Best addition to any #Node package.json, #PHP composer.json or other dependency managers file would be a mandatory „why“ field for each single dependency which requires a minimum number of sensible words.
Could make devs think twice before adding and help (me) when upgrading projects after some time.
Daniel Siepmann likes this.
reshared this
How the xz backdoor highlights a major flaw in Nix | Shade's Blog
How the xz backdoor highlights a major flaw in Nix | Shade's Blog
Background On Friday, March 29th, 2024, a historical and sophisticated security vulnerability (CVE-2024-3094) was discovered in the XZ Utils package and liblzma api in version 5.6.0 and 5.6.1.shadeyg56.vercel.app
like this
Those packages themselves depend on xz. Pretty much all of them.
What you're suggesting would only make the xz
executable not be backdoored anymore but any other application using liblzma would still be as vulnerable as before. That's actually the only currently known attack vector; inject malicious code into SSHD via liblzma.
Today I could start #programming for a new project. I applied the learnings from @Matthias Noback workshop regarding #software architecture.
And well … It works good so far. And so many more things now make sense and work, e.g. TDD. I thought TDD doesn't make sense, except for some cases. But now with a different point of view to how to create and structure software … it now works. I could develop the current project fully #TDD.
I can highly recommend his workshops :)
like this
reshared this
[FEATURE] Optimized integration of Page Rendering via Fluid
https://github.com/TYPO3/typo3/commit/bd46974b6ae513107ee10094dbe7e3da38184ca4
reshared this
Here's a fun AI story: a security researcher noticed that large companies' AI-authored source-code repeatedly referenced a nonexistent library (an AI "hallucination"), so he created a (defanged) malicious library with that name and uploaded it, and thousands of developers automatically downloaded and incorporated it as they compiled the code:
https://www.theregister.com/2024/03/28/ai_bots_hallucinate_software_packages/
1/
AI hallucinates software packages and devs download them – even if potentially poisoned with malware
Simply look out for libraries imagined by ML and make them real, with actual malicious code. No wait, don't do thatThomas Claburn (The Register)
reshared this
Company policy mandated "first letter of first name + last name" as username.
For years, Nick O’Reply wondered why nobody ever replied to his emails.
Daniel Siepmann likes this.
Daniel Siepmann reshared this.
Daniel Siepmann
in reply to TYPO3camp RheinRuhr • •Sehr irritierend, sonst wart ihr doch immer am 1. Wochenende im November.
Aber ich freu mich schon :)
TYPO3camp RheinRuhr likes this.
TYPO3camp RheinRuhr
in reply to Daniel Siepmann • • •Daniel Siepmann likes this.
TYPO3camp RheinRuhr
in reply to Daniel Siepmann • • •Daniel Siepmann likes this.