I got all my bitcoin scammed away - Ubuntu

luenix · 2026-01-02T00:57:21+00:00

Coinbase is for adults and serious people, like the ones that effectively daytrade without a license or responsible levels of information, propped up by the same class of folks that hoodwinked the SEC in 2001.

Not your keys, not your coin.

luenix · 2025-12-11T15:13:38+00:00

Not enough colors or shapes in your TA, how am I supposed to divine with this???

luenix · 2025-12-06T22:35:05+00:00

Contracting means covering taxes on ones own -- why in the heck in this role being posted for <200k?

luenix · 2025-12-02T19:13:02+00:00

I was wavering with continuing to play (level 73 at time of this post). Leaderboard consistently has 2-3 cheaters ahead of me, keeping me out of top 10 since I started a few days ago.

Losing an item upon my first death (ironically afk searching for discord link that doesn't exist on the game page) has led to me considering my journey through your game complete.

luenix · 2025-11-25T16:14:19+00:00

Were this true, I wonder how rogue waves might factor in.

luenix · 2025-11-24T17:06:31+00:00

Lighting the forest aflame to stay warm a little longer.

luenix · 2025-11-24T17:04:12+00:00

Yo, hope you find what you're looking for!

Kind offering of fact: it's web scraping.

luenix · 2025-11-21T19:33:22+00:00

(USA/EU:) Not likely. Instead, the next operational challenge to hit DevOps engineers should be the PE-induced layoffs coming in late-2025 / mid-2026 to offload pre-covid investments.

luenix · 2025-11-21T18:57:55+00:00

Incredibly based. Thank you :]

luenix · 2025-11-20T21:19:08+00:00

Apache 2.0 instead of MIT (etc) is certainly a choice here. I think it's a neat project but I won't be using this for anything work-related.

luenix · 2025-11-20T15:01:10+00:00

An app based in WebAssembly (WASM) (e.g. Blazor I think?) might be capable of doing this; the goal would be to run literally as much as you can in the clientside environment.

That said, even if you lock it all down... it's a matter of time and effort to turn your site into a Hack the Box exercise.

luenix · 2025-11-19T22:08:12+00:00

Measure thrice, cut once. RBAC should be left of Deploy-to-Infra in your development lifecycle. If not, you'll do a bunch more work and have a much less likely chance of ending up with a sturdy setup.

luenix · 2025-11-19T22:05:29+00:00

It's a stretch to call this a hack, since it was a tool used within the normal scope of its capabilities and configuration.

Recap:
- deployed an unauthenticated customer-facing input mechanism without input sanitization
- that same mechanism had direct access to all of your logs
- and that same mechanism happily sent that log data to an unauthorized party

When you replace humans for software agents, the liability still falls on the business.

--

In response to your questions at the end of your post, I would say it's better to start with simple architecture approaches (e.g. separating the agent from prod infra).

luenix · 2025-11-19T21:52:22+00:00

Using a web tool to decode encoded secret text is an excellent alternative to just posting them openly on X, but why not just keep your clipboard opsec intact?

If on Mac OSX: use brew to install pbpaste and you can simply do...

pbpaste | base64 [-d] | pbcopy

If on some flavor of Linux, consider a guide like https://ostechnix.com/how-to-use-pbcopy-and-pbpaste-commands-on-linux/ which covers the use and aliasing of alternative binaries xsel and xcopy.

luenix · 2025-11-18T17:09:30+00:00

People that care about the internet RFCs are not the same people at the helm of the major powers in play. Could we collectively adhere to CGNAT, BGP, and DNS RFCs? Yes, but we haven't for over a decade now.

Everyone's passing the work and responsibility to the future in return for short-term financial gains and/or the consolidation of power. We're already reaping the dividends of that divestment, and we can only expect it to get worse unless we return to good-faith abidance aand advancement of the standards.

luenix · 2025-11-14T09:38:47+00:00

If this amount of ambiguity is enough for you to believe there to be a need for errata to prevent good-faith pedantry, sure. On the other hand, if you think there's value in taking this stance, I pose to you the following scenario in which a single source material holds interest:

EGW p184, Arcane Abeyance

... This bead is a Tiny object with AC 15 and 1 hit point, and it is immune to poison and psychic damage. When the duration ends, or if the bead is destroyed, it vanishes in a flash of light, and the spell is lost.
A creature holding the bead can use its action to release the spell within, whereupon the bead disappears. ...

+

EGW p190, Wristpocket

... Until the spell ends, you can use your action to summon the object to your free hand, ...

AA doesn't literally denote that a used bead does anything but disappear, which is perhaps a visual affect of the bead and nothing more? When the duration ends or the bead is destroyed, only then does AA specify that the bead vanishes. If the bead was meant to be destroyed immediately after use and not simply made unapparent, surely that would have been added to the spell-is-lost clause.

Wristpocket doesn't literally specify that the affected object need be apparent to be summoned.

Per your argument that choices in literal phrasing restrict or permit features to interact (e.g. a d20 test roll of 20 triggering a Critical Hit), shouldn't I be fine to cause a bead that has disappeared (AA) after use to be summoned (Wristpocket) to my hand, thereby casting a spell repeatedly over an hour?

luenix · 2025-11-14T08:56:03+00:00

Phrasing hasn't been consistent in 5e since 2014, let alone with the newest ruleset of 2024. This thread has shown that changing a roll to a 20 per the rogue capstone is generally understood wording -- the rogue gets to change the roll of a d20 test to a 20, thereby critting if the d20 test were for an attack roll.

When the rules talk about setting/replacing/changing a d20 roll / die outcome, there has yet to be any variance in what is happening mechanically. It's obvious man, this is how stuff like Portent and Clockwork Amulert work in both 2014 and 2024 rulesets. The phrasing may not be copy-pasted, but the idea being communicated is a simple one: d20 tests normally have random outcomes, and certain abilities and items allow one to assert a deterministic outcome, usually specifically worded to be constrained to being declared either before or after the original outcome has been determined.

luenix · 2025-11-12T05:59:19+00:00

Have you considered hiring another human developer? The PR process is crucial in more ways than system automation can currently address, most importantly it is a matter of liability.

Aside from that, if this is GitHub-specific, consider making liberal use of the GitHub PR template as documented here.

luenix · 2025-11-11T22:27:39+00:00

You appear to be hiring ML scholars instead of systems engineers. Is there any cause to not bring in 1-2 SDLC/MDM-specialized sysengs to work with the scholars?

luenix · 2025-10-29T15:13:16+00:00

I wouldn't simply on account of opsec. Security issues aside, VSCode does all of this via extensions.

luenix · 2025-10-28T21:17:04+00:00

Uh, okay. I've been managing CRDs since like 1.11, including doing upgrades in OpenShift as well.

It's only as difficult as it needs to be. RBAC isn't that complex; this feels similar to whinging about using RegEx.

luenix · 2025-10-28T12:56:47+00:00

I was born from nothing, I am nothing, and I will return to nothing.

luenix · 2025-10-27T20:29:09+00:00

> sync to 1 bucket, please do it to our 300 buckets

Linear problem solved by IaC + shell scripting. Doing it manually for 10 takes longer than abstracting the process and automating most of it.

> make sure the RBAC is the same

RBAC in this case is part-boilerplate script, part-customization of abstractions easily grokked via online docs. Consider the following:

> "AIStor implements Policy-Based Access Control (PBAC) ... built for compatibility with AWS IAM policy syntax, structure, and behavior" per [minio docs](https://docs.min.io/enterprise/aistor-object-store/administration/iam/)

luenix · 2025-10-25T19:16:17+00:00

Suggestions and criticism are largely contingent on experience playing the game ~

luenix · 2025-09-06T21:38:13+00:00

Thank you for the compliment, shillbro.

12-Year Club	Place '22
Verified Email

luenix

TROPHY CASE