recentpopularlog in
« earlier  
I hate manager READMEs – Camille Fournier
An interesting perspective, with a lot of merit. I've found the manager README concept compelling, but never tried it. Now I'll think a lot more critically before I give it a shot (and may decide not to after all).
management 
23 days ago
Reviews of U2F devices
Roundup of the various U2F devices on the market right now. Critically also includes information on which can store TOTP secrets (a key use-case for me).
authentication  security  u2f  2fa 
29 days ago
SectorLabs/django-postgres-extra
Adds (among other features) upsert (ON CONFLICT ...) support for Django/Postgres.
django  postgres 
29 days ago
Personal data removal & credit freeze guide workbook [PDF]
An exhaustive workbook/checklist guiding freezing credit and scrubbing personal data from the web. This is most comprehensive guide to this sort of thing I've found.
howto  internet  privacy  security  pii  checklist  workbook 
4 weeks ago
Tiller
Like Mint &c, but syncs financial data to Google Sheets instead of a web app. I'm a huge fan of Sheets: it's a far more powerful product than you'd think, with strong scripting support and a pretty easy API. Using it for my own financial analysis seems perfect, looking forward to giving this a try.
data  spreadsheets  sheets  finance  money  google 
4 weeks ago
A Curriculum for Python Packaging
Al Sweigart's curated selection of talks, documentation, and notes covering the Python packaging ecosystem. I'm seen most of these myself and I agree with the picks 100%: it's a great set of knowledge to help really nail down a rather-confusing part of the Python ecosystem.
python  packaging 
4 weeks ago
How to tell if you're a good manager — Quartz at Work
Measuring a manager's success is really hard. This is one of the best sets of success signals I've seen.
measurement  metrics  management 
5 weeks ago
Ultralight two person shelter spreadsheet
Great roundup and data on ultralight two person shelters. I really want the MLD Duomid and inner in DCF, but at nearly $1,000 for the pair I think I really should consider other options.
gear  ultralight  backpacking  tents 
5 weeks ago
CSS Grid Garden
A game for learning CSS grid layout. I loved it, and I learned a few new tricks too. Also see Flexbox Froggy, a game teaching Flexbox layout by the same author.
css  game  learning  css-grid 
6 weeks ago
Best on the Crest: Food and lodging on the PCT
A new (2018), very opinionated guide to towns along the PCT
pct  resupply  towns  guide 
june 2018
WX2InReach - Home
This would be a huge reason to switch from a Spot to an InReach!
pct  hiking  backcountry  inreach  weather 
june 2018
Job Hound
A tool for tracking your job hunt. Basically the inverse of an ATS. Neat!
jobs  jobsearch  tools 
april 2018
Onsite Interview Loop Template | Lara Hogan
This would be a good improvement to the hiring process/workflow I worked out at 18F.
interview  hiring 
april 2018
Alps 2 Ocean | The Ultra Adventure Race
7-day stage race in NZ, with both supported and unsupported options.
ultrarunning  race  stagerace 
march 2018
Lassen National Park | Pacific Crest Trail | Travels
Alternate route through Lassen that hits more of the park's highlights.
lassen  park  hiking  backpacking  pct 
february 2018
delta 1 - A bike ride in Bay Point, CA
Potential rote from Sac to Antioch - missing link on my Tahoe/Santa Cruz route! Bike route, but probably there's not much better walking; there aren't really trails through the delta.
acrosscalifornia  trail  bike  map  gpx  route 
february 2018
AAC Publications - Search The American Alpine Journal and Accidents
Searchable database of 50 years of climbing/mountaineering accident reports
accident  retrospectives  climbing  reports 
february 2018
1DollarScan
Turn books into PDFs - could be very useful for some of my more referency things, or as part of the cookbook digitization thing I've wanted to do for a while. Not actually $1/book: $1/100 pages, plus additional for OCR and such. Still a pretty good deal.
books  pdf  scanning  ebook  service 
january 2018
Folomov A1 Single Cell Charger Review – ZeroAir Reviews
Probably the lightest charger for 18650 batteries. Safe, but slow.
18650  charger  gear  batteries  pct 
january 2018
lighterpack.com/r/buxr7i
9lb baseweight, similar to what I want to bring (I think)
gear  pct  lighterpack 
january 2018
Maps - Thunderforest
Outdoor-oriented tilesets based on OSM data.
design  maps  tilelayers  outdoors  hiking 
december 2017
The Best Interview Questions We've Ever Published | First Round Review
There's some stuff I disagree with here, but in general lots of good questions.
hiring  interview 
october 2017
SNAP - Strava Needs A Polish
Worked great to correct a GPS fart from my mendo 50k.
running  gps  strava 
april 2017
ThreatHunting Home
Good resources (playbooks, links, tools) for threat hunting.
security  threathunting 
april 2017
1225 - LastPass: global properties can be modified across isolated worlds, allowing remote code execution - project-zero - Monorail
Another Tavis/P0 password manager finding. Could affect other types of plugins, so if you write one, worth reading. Also worth reading through to see a good example of a researcher and vendor working closely to understand a complex issue and deploy a systemic fix.
vulnerability  lastpass  security 
april 2017
dxa4481/truffleHog: Searches through git repositories for high entropy strings, digging deep into commit history
A different approach to finding secrets in git repos: rather than pattern matching, look for strings with high entropy. Interesting!
git  security  github 
april 2017
Into the symmetry: CSRF in Facebook/Dropbox - "Mallory added a file using Dropbox"
A variation of the a classic OAuth vulnerabilty. These shorts of things are depressingly common, and this is why people sometimes talk about OAuth itself as being insecure.
oauth  csrf  security  facebook  dropbox 
april 2017
Alexsey’s TTPs
What a real attacker does. No 0days, all chained exploits. Very worth studying, in detail.
security  breach  yahoo 
march 2017
Intent to Deprecate and Remove: Trust in existing Symantec-issued Certificates - Google Groups
Google has effectively lost trust in Symantec, proposes to distrust all their certs over the coming months.
chrome  ssl  symantec  security  certificates  tls 
march 2017
« earlier      
per page:    204080120160

Copy this bookmark:





to read