Forgot your password?
typodupeerror

Comment Re:GIGO (Score 5, Interesting) 97

One of the most aggravating things right now is "AI" in the hiring process - companies use it to screen applicants but then all use a common tool like Workday, which is facing a lawsuit in California that seems to be automatically rejecting applicants at all employers once it rejects the candidate at a single employer. Applicants have no idea they've been blindly rejected and the hiring managers, some of whom are absolutely desperate to hire, are never even seeing the applicants' resumes.

(Hapless, because they took the offer to come back instead of finding an employer that properly valued their expertise and experience.)

Keep floundering in a job market that over-rejects people or take a job that gets them income and possibly time to pad their resume with AI related keywords that are legit? Should you really be blaming them for taking the offer?

Comment Re:Stupidity or malice? (Score 2) 42

Hanlon's razor generally still applies to technology that the masses don't really understand. That being said, totally agree - though it seems like Mamdani's people don't really understand the social benefits of SBCs or devices like the flipper and how they might be used other than in FUD stories that propagate.

Comment Re:Poor James (Score 5, Insightful) 106

On the upswing, odds are pretty good that James will have a job in short order, helping to deal with the fallout of 'vibe coders' who don't know how to do real-world testing.

I'm already seeing bizarre corporate fallout from this - when a high value, highly paid individual "vibe codes" something that gets traction and then the executive team declares "now put it in production" and the legitimate questions are asked like "what are the requirements? how does it work? what are the dependencies? What are the SLAs supposed to be?" There are no answers, really. So then the slop has to be analyzed, almost reverse-engineered, and the execs get pissed because nobody knows the basic answers.

Even worse when asked "who will support it?" the answer is "well you will!" except that again, nobody knows how it works, and nobody wants to spend the time (read money) to figure it out. There's nearly never any documentation, and what documentation does exist is also slop and may or may not actually reflect the thing that was vibe coded.

So... yeah, the "AI" crash is going to, at some point, get very expensive on those who capitalized on the vibe coding trend, and very lucrative for people willing to clean up others shit. Vibe janitors, if you will.

Comment Re:Ok, so dumb question (Score 2) 159

Better. Almost all certificate renewals from a modern CA can be automated, old certificates get cycled out, new ones get cycled in. Apple's not actually the bad guy in this fight, in my opinion.

Also from my point of view, there's lower impact to the overall chain if an intermediate or root certificate is invalidated or worse, compromised, because while the number of issued certificates are higher, the process is more frequent.

I'd guess (but don't know) much of the pushback is from the older CAs that have not kept up with the times and are already losing ground to Let's Encrypt and the certificate managers run by cloud providers like AWS' Certificate Manager and Azure's App Service Certificates. It was the older CA's that originally pushed for a differential in the display of "extended verification" certificates, but nobody has really noticed that the "EV" portion has basically dropped out of the public view - which is fine, EV always seemed like a money grab to me by the CAs anyway.

Security

Sophisticated Apache Backdoor In the Wild 108

An anonymous reader writes "ESET researchers, together with web security firm Sucuri, have been analyzing a new threat affecting Apache webservers. The threat is a highly advanced and stealthy backdoor being used to drive traffic to malicious websites carrying Blackhole exploit packs. Researchers have named the backdoor Linux/Cdorked.A, and it is the most sophisticated Apache backdoor seen so far. The Linux/Cdorked.A backdoor does not leave traces on the hard-disk other than a modified 'httpd' file, the daemon (or service) used by Apache. All information related to the backdoor is stored in shared memory on the server, making detection difficult and hampering analysis."

Slashdot Top Deals

All warranty and guarantee clauses become null and void upon payment of invoice.

Working...