aviditas's comments

There are dozens of us! My glasses and contact RXs always got a comment. Mine are on the extreme side in difference too, plus astigmatism in one eye and not the other. When contacts were finally available for me, I had to relearn how to live in a 3d space.

I'm definitely going to follow the development of this as attention to edge cases and details like this are a good indicator of quality. It definitely has beta version battery life which I'd hope they'd address in a v2 as well.

As someone with excellent social skills in a technical field, I constantly get pushed towards management. In terms of upward salary momentum, I understand why a lot of women go that route. Investment of time to return is high if you are successful there. If you are constantly being told that you'd be a good fit for management, it makes sense that most people would gravitate towards it as a career.

I like to say that I am happy to be a leader in a technical role but have zero desire to be 'in management'. Interfacing with other teams and departments is critical for the long-term success of my work, but the bulk of my time is spent on heads down technical stuff. I wish there were more opportunities for everyone to try out having direct reports without it being a path of no return (or path of difficult to turn back). My experience with being a supervisor 10+ years ago was very valuable in that I found that while I was moderately good at it, the constant required social interaction for 90% of the day was massively draining and left me a blob after work.

I like Arkime (used to be called Moloch). My only pet peeve is that the documentation for the search bar is not separated from the tool. Their site docs tell you to go to the tool instead of just having the information mirrored. But for large scale pcap analysis that still lets me look at individual packet data.. it's my first choice.

9/10 resumes I have been seeing are the default auto generated ones from LinkedIn. Sometimes those look alright but the rest are 5+ page monstrosities.

Maybe a mild food allergy? I know someone who has that reaction to rosemary and another friend who has it from tomatoes. A simple skin test showed both to be an allergy vs palate issue. Could just be sensitive to spices but it is a fun thing to figure out.

I wrote a data integration between two internal, siloed tools at a major ISP. This let me build security alerting on social engineering attempts and successful compromises. These se campaigns were using information from other corporate and gov data breaches to access accounts that had not been setup with pins/passphrases, and going for quantity over quality for targets. Anyone was fair game to them and if they couldn't steal money then they'd resell the access and PII to even more unsavory types for identity theft. At the time, if a caller had the account holder's PII, they'd be able make limited changes to the account. Unfortunately, those 'limited' changes were things like forwarding phone or email service. They did pool the data eventually and the alerts continue to be used today to identify compromise and lock email/phone to prevent them from being used for bank fraud. The reduction of financial fraud on normal people was significant. My work kicked off a ton of other initiatives to prevent other avenues of compromise as well. I went from working customer compromise investigations in the scale of thousands a year to a few hundred after implementation. Having clear data of malicious access that couldn't be ignored prompted those initiatives to be seriously funded and maintained. Moving from reactive to proactive on these was very satisfying.

The last batch of SocGholish I encountered had virtualization checks on each stage and required user interaction to run/open the payload. Used iframes or modified google analytics on the compromised site and used webpress plugins vulns to get access. The sandboxing checks were crazy good. I ended up getting an old laptop to do the analysis as it detected every other security sandbox tool. The only positive is that the payload (6 months back) itself is easily detected by most edr. Defender caught it on download.

+1 to the enjoyable dissection. Rooting out the underlying infra was also very fun.

I can't agree more. I've used every main 'competitor' now and nothing can compare to splunk for hunting across massive logging pools. It genuinely feels like magic with advanced SPL and solid regex.

My frustrations with Splunk have been around their certification and training changes over the years. Used to be able to get a solid tool certificate and decent training materials all for free. It only hurts Splunk though as less people have experience with the tool it lessens their advantage. Makes me disappointed as I really do like the tools itself but literally everything else is terrible. I'd much rather deal with Elastic or go open source with Security Onion.

As one of the younger but not young crowd, I have a form of auditory dyslexia which is why I've used CC and subtitles most of my life. Good sound mixing and actor enunciation helps to a small degree, but my brain garbles the first part of conversation starts and when dialog happens without visual cues.

My hearing is good, but the delays in processing dialog to content make watching movies or tv very frustrating when I can't see the actor's face to lip read or don't have CC to catch what I miss.

On the other side of things, I have a very high level of internal voice so when I am reading text I can 'hear' the dialog in my head. I can listen to the first 20 minutes of a movie or episode or two of a tv show, then watch it muted with subtitles and will hear the actor's voices. It's nice because I can watch shows with my own background music or without disturbing anyone with the audio.

About a half cup of hot almond milk + a gram of the chocamine. Fits into a small teacup perfectly and swapping the almond milk for water is alright but I like the hot chocolate style drink. I add a little dash cinnamon but it's got a nice flavor ok its own.

I enjoy caffeine, and swapped in chocamine to my late afternoon and evening energy boost. Tastes delicious and feels like a treat to have a small hot chocolate drink. It's not on the same magnitude as caffeine but is still an excellent way to get a second wind without the negative effects that come with caffeine. The active ingredient is the theobromine and I liken it to a cocoa version of matcha, a little goes a long way.

One of the appeals of this type of service is to create a Google account without providing your cell phone number. A bit of the chicken/egg issue if there isn't a way to make an account without using Google or Facebook. I would sign up in a heartbeat if there was an email/password option instead. Another comment brings up another good point of the type of service the inbound numbers are identified as. Most services that require a phone number to verify the account registration also use services like nuestar to filter out Voip/DiDs and other phone numbers that are not tied to a physical SIM card.

In my opinion, most audits for security are the same as having an accountability buddy. The company goes I'm doing x, y, and z then the auditor collects and organizes the proof for or against those assertions. Like a good project manager, a good auditor doesn't have to be a domain expert. Security professionals tend to have strong opinions on what the right way to do a thing is, so an auditor with years of security experience can be a toss up whether it will be a help or hindrance. There are security consultants that provide significant value in reviewing and providing recommendations, but they can be difficult to find among the chaff. And even if the company hires an amazing consultant or security service, the company still has to adopt and implement. Information security at organizations is highly dependent on the executives and how they view security measures.

If you like both of those artists, I'd suggest checking out Kimbra. She has heavy jazz influences and incorporates so much meaning into her music and videos. She does similar vocal layering to Imogen Heap and her live mixing of her own vocals is simply amazing.

It is one panel and has an internal kvm so you can use two devices at the same time.

Yes! The stand is really great; I have mine on an adjustable height desk and it takes up so little space. Which is perfect as I have so little space to work with. I got it recently and for me it's spot on as my main monitor. The built-in two device kvm saves me so much time. I can't speak to the resolution woes as I was using two very, very old monitors at home so I've just been basking in the glow of using something made recently. I've been enjoying the vertical space for tasks like going through logs/giant spreadsheets and then switching to the dual monitor mode for the usual multi-tasking. I've used dual 32in curved fancy monitors at the office before and found that I would just use a fourth of the real estate available. My brain prefers the vertical space over the horizontal.

No worries at all. Speaking of Discord, there are a ton of writing and D&D communities that would be great resources for feedback. You have an advantage in that area as you aren't charging for your current product and so hopping in to solicit feedback won't get you the same kind of backlash as long as it's okay in the groups' rules. Feel free to message me; I wish you the best of luck!

I really like this idea! I feel like you could have the character mapping and input be geared towards writers for a story documentation tool as a UI and framework for the generated content would be in what a writer would need. Then offer as much or as little generator access as the user wants.

For that generated content, I do a lot of character creation in a completely different context than writing/D&D, and I would pay for a service or software that let me input or override the story type character data with ones of my own making.

The goal of self-sustaining stories that can be tweaked or woven into is awesome.

I have a pair of bone conducting audio 'headphones', aftershokz, and while I avoid using them for music listening, they handle voice audio really well and you still have full access to the sounds around you. I use them for calls and podcasts when I need to have situational awareness like biking or going for a run. I stress they are not for audiophiles for music though, the sound loses a lot of depth and richness. Caveat, the pair I have are 4+ years old and they likely have made improvements since then.

Unrelated to the site itself, which I am excited to try out, searching duckduckgo for 'brevity 500' only shows the promotion posts here on hackernews, twitter, etc. and not the site itself. If I go to google, the site is the second result. I didn't check any of the other search engines, but it might be worth a little time to make sure people can search and find your website with ease.