47 Matching Annotations
  1. Last 7 days
  2. Jul 2020
    1. Defamation law walks a fine line between the right to freedom of speech and the right of a person to avoid defamation. On one hand, a reasonable person should have free speech to talk about their experiences in a truthful manner without fear of a lawsuit if they say something mean, but true, about someone else. On the other hand, people have a right to not have false statements made that will damage their reputation.
  3. Jun 2020
  4. May 2020
    1. These two are in my opinion the most problematic — the basically go against each other. Typically, I try to work in increments over a feature and commit when I reach whatever techinical milestone I want to "checkpoint" at. It can also be out of the need to expose some idea or architecture and push it.
    2. Having good commit messages is really important, but that doesn't mean having less commits in my opinion.
    1. Developers should be careful to balance the risk of allowing specific scripts to execute against the deployment advantages that allowing inline event handlers might provide.
    1. it is a question of balance — if one mouse-click was all it took to consent, is it appropriate to require a phone call during business hours to withdraw that consent? Probably not.
    1. I appreciate the vigilance, but it would be even better to actually publish a technical reasoning for why do you folks believe Firefox is above the device owner, and the root user, and why there should be no possibility through any means and configuration protections to enable users to run their own code in the release version of Firefox.
    2. I will need to find a workaround for one of my private extensions that controls devices in my home network, and its source code cannot be uploaded to Mozilla because of my and my family's privacy.
    3. We must consider introducing sensible default options in Firefox, while also educating users and allowing them to override certain features, instead of placing marginal security benefits above user liberties and free choice.
  5. Apr 2020
    1. But there is still somewhat of a tension between serving those requirements and making sure the business can make a profit, and also ensuring that the expense of complying is adequately funded but not too expensive.
    1. This has a usability impact. From a purely "secure all the things" standpoint, you should absolutely take the above approach but there will inevitably be organisations that are reluctant to potentially lose the registration as a result of pushing back
    1. One of the drawbacks of waiting until someone signs in again to check their password is that a user may simply stay signed in for a long time without signing out. I suppose that could be an argument in favor of limiting the maximum duration of a session or remember-me token, but as far as user experience, I always find it annoying when I was signed in and a website arbitrarily signs me out without telling me why.
    2. Ultimately it comes down to how much time and money you can dedicate to keeping your users' accounts secure versus how important it is to do so. Google and Facebook accounts sit at the centre of many users' internet lives and would be devastating to use. Same for most email accounts.
    1. Our approach strikes a balance between privacy, computation overhead, and network latency. While single-party private information retrieval (PIR) and 1-out-of-N oblivious transfer solve some of our requirements, the communication overhead involved for a database of over 4 billion records is presently intractable. Alternatively, k-party PIR and hardware enclaves present efficient alternatives, but they require user trust in schemes that are not widely deployed yet in practice. For k-party PIR, there is a risk of collusion; for enclaves, there is a risk of hardware vulnerabilities and side-channels.
    1. The model described in this blog post is the best balance of a whole bunch of different factors; the sustainability of the service, the desire to limit abuse, leveraging the areas my skills lie in, the limited availability of my time and so on and so forth.
    2. I got way too many emails from people about API requests being blocked to respond to. Often this was due to simply not meeting the API requirements, for example providing a descriptive UA string. Other times it was because they were on the same network as abusive users. There were also those who simply smashed through the rate limit too quickly and got themselves banned for a day. Other times, there were genuine API users in that West African country who found themselves unable to use the service. I was constantly balancing the desire to make the API easily accessible whilst simultaneously trying to ensure it wasn't taken advantage of.
    1. that can be partially automated but still require human oversight and occasional intervention
    2. but then have a tool that will show you each of the change sites one at a time and ask you either to accept the change, reject the change, or manually intervene using your editor of choice.
  6. Feb 2020
    1. To never block or remove features from k6 in order to make them exclusive to Load Impact’s SaaS productStrive not to delay introduction of new features in the k6 OSS tool, if the feature was planned to appear both there and in Load Impact’s SaaS productTo never introduce into the k6 OSS tool any artificial limits designed to promote conversion to Load Impact’s SaaS productTo work with the community, participating in and prioritize building the functionality the k6 community wants, making it the prefered tool for load testing
    2. With k6, our goal has always been to create the best load testing tool for the modern working developer and that we do this in collaboration with the k6 community. Our revenue will not come from k6 directly, but from premium value creating offers based on k6. These offers will be made available at https://loadimpact.com. Load Impact premium offers will have focus on providing further simplicity, productivity and ease to use functionality.
    3. We believe the key to Load Impact’s long-term success as a Company is to foster an active community of users around k6 as an open source project. To achieve this long-term goal, it is vital that we do not withhold new features from k6 based on whether or not they compete with our SaaS offering.
    4. Load Impact is a for profit organization, and recognizes that there is a need to balance this requirement with the needs of the k6 open source project. In the longer run, we strongly believe that those two needs will rarely be in conflict.
  7. Jan 2020
  8. Dec 2019
  9. Jun 2019
    1. So I learned very quickly that non-dual states of awareness coincide with balanced bilateral symmetry and the ego almost always functions through some form of energetic asymmetry.

      Does the writer imply that ego emerges on energetic asymmetry? I would argue that it is possible to be perfectly balanced when "ego is in".

  10. Jan 2019
  11. Oct 2018
  12. Jul 2018
  13. Jul 2017
    1. TCK, then, is an understanding of the manner in which technology and content influence and constrain one another. Teachers need to master more than the subject matter they teach; they must also have a deep understanding of the manner in which the subject matter (or the kinds of representations that can be constructed) can be changed by the application of particular technologies. Teachers need to understand which specific technologies are best suited for addressing subject-matter learning in their domains and how the content dictates or perhaps even changes the technology—or vice versa.

      There has to be a balance ....finding it may take a little work.

  14. Aug 2016
  15. Feb 2014
    1. In the eighteenth century, Edmund Burke argued that property stabilized society and prevented political and social turmoil that, he believed, would result from a purely meritocratic order. n8 Property served as a counterweight protecting the class of persons who possessed it against competition from nonpropertied people of natural ability and talent. To Burke, the French National Assembly -- dominated by upstart lawyers from the provinces -- exemplified the risk of disorder and inexperience of an unpropertied leadership. n9 In contrast, the British parliament, a proper mix of talented commoners and propertied Lords, ruled successfully.
  16. Oct 2013
    1. We are not to make long narrations, just as we are not to make long introductions or long arguments. Here, again, rightness does not consist either in rapidity or in conciseness, but in the happy mean; that is, in saying just so much as will make the facts plain, [1417a] or will lead the hearer to believe that the thing has happened, or that the man has caused injury or wrong to some one, or that the facts are really as important as you wish them to be thought: or the opposite facts to establish the opposite arguments.

      Narratives need to be long enough to say what you need to but not too long.

    1. Again, style will be made agreeable by the elements mentioned, namely by a good blending of ordinary and unusual words, by the rhythm, and by-the persuasiveness that springs from appropriateness.
    1. To put it generally, all the valuable qualities that youth and age divide between them are united in the prime of life, while all their excesses or defects are replaced by moderation and fitness. The body is in its prime from thirty to five-and-thirty; the mind about forty-nine.