This video is about the recent LightLLM security breach.

How many compatibility issues is MacOS realistically expected to spur? Windows DX felt unusable to me without a Linux VM (and later WSL), but on MacOS most tooling just kinda seems to work the same.

It’s not the tooling for me, macOS is just bad as a server OS for many reasons. Weird collisions with desktop security features, aggressive power saving that you have to fight against, root not being allowed to do root stuff, no sane package management, no OOB management, ultra slow OS updates, and generally but most importantly: the UNIX underbelly of macOS has clearly not been a priority for a long time and is rotting with weird inconsistent and undocumented behaviour all over the place.

> Weird collisions with desktop security features

Linux is not immune to BIOS/UEFI firmware attacks either. Secure Boot, TPM, and LUKS can work well together, but you still depend on proprietary firmware that you do not fully control. LogoFAIL is a good example of that risk, especially in an evil maid scenario involving temporary physical access. I think Apple has tighter control over this layer.

Yeah... attacks like LogoFAIL hit during the DXE and BDS phases when the firmware is acting as its own 'mini OS' before the handoff

Easier to comprehend here - https://vectree.io/c/uefi-firmware-architecture-principles

You completely misunderstood the quoted remark you responded to. The desktop security features in MacOS that interfere with unblessed binaries and libraries loading is a huge pain in the ass, especially for headless server use.

Provisioning, remote management, containers, virtualization, networking, graphics (and compute), storage, all very different on Mac. The real question is what you would expect to be the same.

For server usage? macOS is the least-supported OS in terms of filesystems, hardware and software. It uses multiple gigabytes of memory to load unnecessary user runtime dependencies, wastes hard drive space on statically-linked binaries, and regularly breaks package management on system upgrades.

At a certain point, even WSL becomes a more viable deployment platform.

That's like avoiding the West because of fancy cutlery rules. Japanese people are not as thin-skinned as lists like these lead you to believe.

> Aura says a targeted voice phishing attack against one of its employees led to unauthorized access to about 900,000 records [...]

Employers are often surprised when I ask for less access, but I firmly believe no random employee should have personal data access like this. Ideally you'd want to require the customer to be in the loop to access their data as employee.

Nitpick, but it bothers me that your logo icon is not vertically aligned with your logo text. (Neither is it visually aligned.)

You probably already know, but iNaturalist allows you to filter by CC0 licensed observations.

Yes. Thanks for the feedback. One of the main goals of Specimen Gallery is to expand the index and internet library of natural specimen PNGs.

I love how stylised it is while remaining more responsive than the vast majority of websites today.

I think these recent outages are caused by me recommending CloudFlare to an important client a few months ago.

Maybe it's a matter of code switching? I've read that some Japanese teams prefer English for practical reasons, since a shared second language prevents anyone from getting bogged down in formalities. That is not to say Japanese is unable to be formulated with just as much precision.

Somewhat related: the most prominent lottery in the Netherlands is government-run, but you wouldn't know it based on its ruthless advertising. At least it's going into the national budget and charity, I suppose.