I appreciate what J has built and think there is a fantastic community of people here. It disappoints me that 30 million people would rather sign up for something with widely-publicized issues rather than something with a proven track record.

On the other hand, maybe those millions of sheep would ruin this place if they came here. Maybe CoSo is cool because it is small.

Anyway, thank you for listening to my sad and pointless TED talk.

EOF

We've had a few major infosec personalities come our way, but they quickly left. Clearly we aren't what they are looking for, even though they probably know they are safer here than nearly everyone else.

I think most people who come here enjoy their experience, but whatever grassroots marketing we've been doing hasn't really moved the needle much in 6 years. If we were going to have our big moment, it would have happened by now.

I think I have now resigned to the fact that most people, even infosec professionals, are willing to look the other way on invasive data harvesting so long as they are able to maintain the level of engagement they are accustomed to.

That nice graphic @kel put together should be spread far and wide, but the sad truth is that most people don't seem to care about invasive data policies. They just want to be popular. I don't know how that ever changes.

I see we have a new popsicle emoji. How refreshing!

Mastodon fixes critical “TootRoot” vulnerability allowing node hijacking

Most critical of the bugs allowed attackers to root federated instances.

https://arstechnica.com/security/2023/07/mastodon-fixes-critical-tootroot-vulnerability-allowing-node-hijacking/

#cososec

Watching a bunch of notable infosec accounts jumping on board the #Threads bandwagon makes me want to scream.

If you would expect anyone to carefully read privacy policies and app permissions, you'd think it would be these people.

They did the same thing with #Bluesky and I lost respect for those people when that happened. This one is even worse.

#cososec

Today is the day when my favorite Reddit app (Boost) stopped fully functioning.

GFY, Reddit. There's some great communities there, but I don't think I'll be accessing on my phone anymore as the official app is too invasive for my comfort.

The science behind why pod coffee tastes so bad

https://www.businessinsider.com/why-instant-coffee-machines-taste-gross-2016-3

#caffeineclub

My brew ratio is around 12:1 here. 150 g coffee to just under 1800 ml water (which totally fills that jar).

In the fridge for 24 hours.

If anyone's curious, this is my cold brew setup. I don't use it quite as intended, though. I dump the coffee right in the bottom of the carafe and then put the fine mesh basket on top. This way, the coffee can slosh around freely, you can shake it after several hours, etc. I find this gives much better flavor than just putting the coffee in the basket. You need to pour the finished brew into a new container, but the basket functions as a strainer.

https://a.co/d/2BqMhUh

I had the most outstanding cold brew ever this morning with this lovely Yirgacheffe I had been enjoying in my French press earlier in the week. The fruit flavors were even more vibrant with the cold brew.

Don't listen to anyone who tells you to only use dark roasts for cold brew. Thus is fantastic and I can't wait to enjoy it over the next few days.

https://happymugcoffee.com/collections/roasted-coffee/products/ethiopia-yirgacheffe-dumerso-natural

#caffeineclub

@th3j35t3r
Would you consider deleting the :botsentinel: emoji, given what we now know about that guy?

#ThrowbackThursday
#cososec