Stuff

Blogs (Work in progress)

Thoughts

Today I Learned: Brave browser plays youtube videos on lock screen - 2024-11-24

on iPhone, Brave can block ads and play youtube videos when your phone is locked.

On Moving to the cloud - 2024-11-13

More and more, I think its a mistake. We have to decide what our core competencies are, and keep that skill and knowledge in-house. Maybe we don’t want to be in the business of patching servers, or replacing hard drives. Maybe we don’t want to worry about properly securing Active Directory. Thats fine, those things aren’t directly related to our mission, but think about what you are replacing it with when moving to the cloud.

If Identity is central to your security strategy, it doesnt matter if you keep your IDP on-prem, or in the cloud, its still your responsibility to secure. The cloud IDP just gives you less control in exchange for hopefully a competent team of engineers to keep the tools running properly.

If you care at all about privacy, you will try to limit what third parties you are sharing data with. Subscription services and cloud apps are predatory and designed to maximize profit. The most profitable companies in the world are cloud providers and they got that way because its a good business strategy to keep data and engineering talent in-house. Thats a good strategy, and its exactly why you shouldnt outsource your data and operations either.

On Mass Layoffs - 2024-10-30

There has been a lot of big tech layoffs recently. I’m not going to try to list them here. But it is interesting that these large tech companies are able to get rid of so many of their employees and seem to stay afloat. Some possible explanations: - they overhired, and are correcting now - maybe they never needed that many people - they are choosing to decrease their quality of service. - i think this is it. quality doesnt seem to impact sales, especially in the near term - people like to buy cheap stuff - theres a lot of dead weight. 20% of employees do 80% of the work - maybe 10x engineers are real?

Almost everyone I talk to seems to be understaffed at their job. Resturants, office workers, field technicians. We seem stretched thin.

On Tools - 2024-10-03

Don’t listen to the salesperson. They will make the tool sound great, it’s their job. I have seen so many times, people will buy some expensive product hoping it will solve some problem, then it sits and collects dust. It’s like buying a treadmill because you want to lose some weight, but then you never use it and it becomes a $1000 storage shelf. Its easier to buy the treadmill than actually put in the work. Maybe you never really intended on doing the work, you just wanted to buy yourself a little bit of hope. In the corporate world, the same thing happens, and people buy some new software because it gives them hope. The hope that all of the problems from the previous software will be gone. But, if the problems are a result of years of negligence or lack of maintenance, you might just run into those same problems with whatever new software you buy.

Don’t try to get clever and offload the maintenance to the software vendor either. Your problems are YOUR problems, No matter how much you pay somebody else to solve them.

Cyber Hygiene

Many cyber-attacks can be attributed to poor cyber hygiene, including failure to patch known vulnerabilities, poor configuration management, and inefficient management of administrative privileges.

I read this from a CIS webinar spam email. It reflects my thoughts on the topic. It usually gets distilled down the fact that we are bad at prioritizing our efforts. We spend time on the wrong things. Typically, the best thing to do is the basics, but the basics are hard.

Today I Learned: “University” - 2024-09-07

Why do we call colleges “Universities”? That word sounds just like “Universe”, but I didn’t understand the connection. Well it turns out that “University” is short for the latin “universitas magistrorum et scholarium”, meaning something like “a group of teachers and scholars”. Interesting.

Contact

cwcraft@protonmail.com

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=HI1d
-----END PGP PUBLIC KEY BLOCK-----