Podcasts about rfcs

Wusstet ihr, dass neue PHP-Versionen nicht einfach wie ein automatischer Cronjob vom Himmel fallen, sondern von einem Team aus Menschen gebaut, koordiniert und durch Community-Diskussionen gestaltet werden? In diesem Deep Dive holen wir euch genau in diesen Maschinenraum: Wir sprechen über den Release von PHP 8.5 – aber weniger über einzelne Features als darüber, wie sie überhaupt in die Sprache hineinkommen und am Ende sicher bei euch auf dem Server landen.Unser Gast ist niemand Geringeres als Volker Dusch, einer der beiden Release Manager von PHP 8.5. Volker erzählt, wie man überhaupt in diese Rolle rutscht, warum dafür keine „Bewerbung beim PHP Elefanten“ nötig ist, welche Rolle Mailinglisten heute noch spielen und wieso ein Release Manager gleichzeitig Organisator, Gatekeeper, Kommunikator und manchmal auch Feuerwehr ist. Dabei geht es um Alphas, Betas, Release Candidates, Feature Freezes – und darum, wie man zwischen Stabilität, Bugfixes und neuen Ideen balanciert, ohne das halbe Internet kaputt zu machen.Wir schauen außerdem darauf, wie Features ihren Weg in die Sprache finden: von „unspektakulären“ Pull Requests bis hin zu großen RFCs, hitzigen Diskussions-Threads und demokratischen Abstimmungen, bei denen die Core-Contributors entscheiden, was PHP in Zukunft kann – und was bewusst draußen bleibt. Die PHP Foundation spielt dabei eine spannende, aber weniger allmächtige Rolle, als viele vermuten, und sorgt vor allem dafür, dass einige Menschen bezahlt Zeit haben, an der Sprache weiterzuschrauben, ohne dass Abkürzungen beim Qualitätsanspruch gemacht werden.Natürlich reden wir auch über Community: darüber, warum die PHP-Welt deutlich jünger und diverser ist, als ihr Ruf vermuten lässt, was Konferenzen, User Groups und Remote-Tools miteinander zu tun haben und weshalb ausgerechnet eine „alten“ Sprache wie PHP so viele Leute anzieht, die Bock auf Sprachdesign, Performance und Internals haben.Und weil es sonst nicht die programmier.bar wäre, streifen wir am Ende auch noch die Klassiker-Fragen rund um Generics, Async, Hacklang und die große „Kehren Firmen wie Meta irgendwann zurück zu Vanilla-PHP?“–Spekulation.Schreibt uns! Schickt uns eure Themenwünsche und euer Feedback: podcast@programmier.barFolgt uns! Bleibt auf dem Laufenden über zukünftige Folgen und virtuelle Meetups und beteiligt euch an Community-Diskussionen. BlueskyInstagramLinkedInMeetupYouTubeMusik: Hanimo

Episode Highlights[00:00:48] What Makes Software MaintainableDon explains why unnecessary complexity is the biggest barrier to maintainability, drawing on themes from A Philosophy of Software Design.[00:03:14] The Cost of Clever AbstractionsA real story from a Node.js API shows how an unused abstraction layer around MongoDB made everything harder without delivering value.[00:04:00] Shaping Teams and Developer ToolsDon describes the structure of the Search Craft engineering team and how the product grew out of recurring pain points in client projects.[00:06:36] Reducing Complexity Through SDK and Infra DesignWhy Search Craft intentionally limits configuration to keep setup fast and predictable.[00:08:33] Lessons From ConsultingRobby and Don compare consulting and product work, including how each environment shapes developers differently.[00:15:34] Inherited Software and Abandoned DependenciesDon shares the problems that crop up when community packages fall behind—especially in ecosystems like React Native.[00:18:00] Evaluating Third-Party LibrariesSignals Don looks for before adopting a dependency: adoption, update cadence, issue activity, and whether the library is “done.”[00:19:40] Designing Code That Remains UnderstandableWhy clear project structure and idiomatic naming matter more than cleverness.[00:20:29] RFCs as a Cultural AnchorHow Don's team uses RFCs to align on significant changes and avoid decision churn.[00:23:00] Documentation That Adds ContextDocumentation should explain why, not echo code. Don walks through how his team approaches this.[00:24:11] Type Systems and MaintainabilityHow Don's journey from PHP and JavaScript to TypeScript and Rust changed his approach to structure and communication.[00:27:05] Testing With TypesStable type contracts make tests cleaner and less ambiguous.[00:27:45] Building Trust in AI SystemsDon discusses repeatability, hallucinations, and why tools like MCP matter for grounding LLM behavior.[00:29:28] AI in Developer ToolsSearch Craft's MCP server lets developers talk to the platform conversationally instead of hunting through docs.[00:33:21] Improving Legacy Systems SlowlyThe Strangler pattern as a practical way to replace old systems one endpoint at a time.[00:34:11] Deep Work and Reducing Reactive NoiseDon encourages developers to carve out time for uninterrupted thinking rather than bouncing between notifications.[00:36:09] Measuring ProgressBuild times, test speeds, and coverage provide signals teams can use to track actual improvement.[00:38:24] Changing Opinions Over a CareerWhy Don eventually embraced TypeScript after originally writing it off.[00:39:15] Industry Trends and Repeating CyclesSPAs, server rendering, and the familiar pendulum swing in web architecture.[00:41:26] Experimentation and Team AutonomyHow POCs and side projects surface organically within Don's team.[00:44:42] Growing Skills Through Intentional GoalsSetting learning targets in 1:1s to support long-term developer growth.[00:47:19] Where to Find DonLinkedIn, Blue Sky, and his site: donmckinnon.dev.Resources MentionedA Philosophy of Software Design by John OusterhoutJohn Ousterhout's Maintainable.fm Interview (Episode 131)Search CraftElasticAlgoliaWordPress Plugin DirectoryRequest for Comments (RFC)Strangler Fig PatternC2 WikiModel Context Protocol (MCP)Glam AIAubrey/Maturin Series by Patrick O'BrianMaster and Commanderdonmckinnon.devThanks to Our Sponsor!Turn hours of debugging into just minutes! AppSignal is a performance monitoring and error-tracking tool designed for Ruby, Elixir, Python, Node.js, Javascript, and other frameworks.It offers six powerful features with one simple interface, providing developers with real-time insights into the performance and health of web applications.Keep your coding cool and error-free, one line at a time! Use the code maintainable to get a 10% discount for your first year. Check them out! Subscribe to Maintainable on:Apple PodcastsSpotifyOr search "Maintainable" wherever you stream your podcasts.Keep up to date with the Maintainable Podcast by joining the newsletter.

Today the IPv6 Buzz crew provides updates on the latest in IPv6 standards, RFCs, and best practices. They break down the recent discussions around RFC 6052, explore the options for RFC 8215, and share Nick's spin on the now defunct testipv6.com site. Episode Links: RFC 6052 RFC 8215 RFC 6598 IPv6.army

Today the IPv6 Buzz crew provides updates on the latest in IPv6 standards, RFCs, and best practices. They break down the recent discussions around RFC 6052, explore the options for RFC 8215, and share Nick’s spin on the now defunct testipv6.com site. Episode Links: RFC 6052 RFC 8215 RFC 6598 IPv6.army

In this conversation, Jack Cresswell and Bob Musgrave discuss the evolving landscape of agriculture, focusing on the importance of financial strategies, the role of Rural Financial Counselling Services, and effective drought management. They explore how farmers can improve their financial performance, the significance of business planning, and the future of agriculture in the context of succession planning and market dynamics.RFCS Northern RegionFollow to keep the conversation flowingFollow Jack on Instagram https://www.instagram.com/cressy__/ and Twitter https://x.com/jcressw3 YouTube https://www.youtube.com/@farmsadvice Follow Farms Advice - https://instagram.com/farmsadvice Join the Farmers Only Group - https://www.facebook.com/groups/farmsadvice For more like this go to https://farmsadvice.com.au Hosted on Acast. See acast.com/privacy for more information.

Send us a textRecorded live at the Next‑Gen Ag Forum 2025, held at the Quayside Terminal in Townsville. In this practical and motivating session, Alison Larard from Rural Financial Counselling Service (RFCS) shares her top tips and tricks for the next generation of primary producers looking to build a successful and sustainable future.Recording Credit A huge thank-you to Robbie Bolton at Dryland Co. for capturing this session! Check them out on Instagram: @drylandcoSupport the show

Her early inspiration while growing up in Goa with limited exposure to career options. Her Father's intellectual influence despite personal hardships and shift in focus to technology.Personal tragedy sparked a resolve to become financially independent and learn deeply.Inspirational quote that shaped her mindset: “Even if your dreams haven't come true, be grateful that so haven't your nightmares.”Her first role at a startup with Hands-on work with networking protocols (LDAP, VPN, DNS). Learning using only RFCs and O'Reilly books—no StackOverflow! Importance of building deep expertise for long-term success.Experiences with Troubleshooting and System Thinking; Transitioned from reactive fixes to logical, structured problem-solving. Her depth of understanding helped in debugging and system optimization.Career move to Yahoo where she led Service Engineering for mobile and ads across global data centers got early exposure to big data and machine learning through ad recommendation systems and built "performance and scale muscle" through working at massive scale.Challenges of Scale and Performance Then vs. Now: Problems remain the same, but data volumes and complexity have exploded. How modern tools (like AI/ML) can help identify relevance and anomalies in large data sets.Design with Scale in Mind - Importance of flipping the design approach: think scale-first, not POC-first. Encourage starting with a big-picture view, even when building a small prototype. Highlights multiple scaling dimensions—data, compute, network, security.Getting Into ML and Data Science with early spark from MOOCs, TensorFlow experiments, and statistics; Transition into data science role at Infoblox, a cybersecurity firm with focus areas on DNS security, anomaly detection, threat intelligence.Building real-world ML model applications like supervised models for threat detection and storage forecasting; developing graph models to analyze DNS traffic patterns for anomalies and key challenges of managing and processing massive volumes of security data.Data stack and what it takes to build data lakes that support ML with emphasis on understanding the end-to-end AI pipelineShifts from “under the hood” ML to front-and-center GenAI & Barriers: Data readiness, ROI, explainability, regulatory compliance.Explainability in AI and importance of interpreting model decisions, especially in regulated industries.How Explainability Works -Trade-offs between interpretable models (e.g., decision trees) and complex ones (e.g., deep learning); Techniques for local and global model understanding.Aruna's Book on Interpretability and Explainability in AI Using Python (by Aruna C).The world of GenAI & Transformers - Explainability in LLMs and GenAI: From attention weights to neuron activation.Challenges of scale: billions of parameters make models harder to interpret. Exciting research areas: Concept tracing, gradient analysis, neuron behavior.GenAI Agents in Action - Transition from task-specific GenAI to multi-step agents. Agents as orchestrators of business workflows using tools + reasoning.Real-world impact of agents and AI for everyday lifeAruna Chakkirala is a seasoned leader with expertise in AI, Data and Cloud. She is an AI Solutions Architect at Microsoft where she was instrumental in the early adoption of Generative AI. In prior roles as a Data Scientist she has built models in cybersecurity and holds a patent in community detection for DNS querying. Through her two-decade career, she has developed expertise in scale, security, and strategy at various organizations such as Infoblox, Yahoo, Nokia, EFI, and Verisign. Aruna has led highly successful teams and thrives on working with cutting-edge technologies. She is a frequent technical and keynote speaker, panelist, author and an active blogger. She contributes to community open groups and serves as a guest faculty member at premier academic institutes. Her book titled "Interpretability and Explainability in AI using Python" covers the taxonomy and techniques for model explanations in AI including the latest research in LLMs. She believes that the success of real-world AI applications increasingly depends on well- defined architectures across all encompassing domains. Her current interests include Generative AI, applications of LLMs and SLMs, Causality, Mechanistic Interpretability, and Explainability tools.Her recently published book linkInterpretability and Explainability in AI Using Python: Decrypt AI Decision-Making Using Interpretability and Explainability with Python to Build Reliable Machine Learning Systems  https://amzn.in/d/00dSOwAOutside of work, she is an avid reader and enjoys creative writing. A passionate advocate for diversity and inclusion, she is actively involved in GHCI, LeanIn communities.

On today’s show, we’re going to dig deeper into tunnels and explore some of the quirks and features of tunnels. This week we’ll discuss maximum transmission units (MTUs), maximum segment size, IP fragmentation and more.  Today’s bonus material is more RFCs – RFC 4821 and RFC 8899. Episode Links: What Is a Tunnel? – N... Read more »

On today’s show, we’re going to dig deeper into tunnels and explore some of the quirks and features of tunnels. This week we’ll discuss maximum transmission units (MTUs), maximum segment size, IP fragmentation and more.  Today’s bonus material is more RFCs – RFC 4821 and RFC 8899. Episode Links: What Is a Tunnel? – N... Read more »

Mercedes Bernard, Staff Software Engineer at Kit, joins Robby to talk about what it really means to write code that lasts—and who it should be written for.In this episode of Maintainable, Mercedes shares a thoughtful and practical perspective on working with legacy codebases, managing technical debt, and creating a team culture that values maintainability without fear or shame. Her guiding principle? Well-maintained software is friendly software—code that is understandable and approachable, especially for early-career developers.Together, they discuss how to audit and stabilize older systems, avoid full rewrites, and create consistent developer experiences in large applications. Mercedes reflects on her decade in consulting and how that shaped her approach to navigating incomplete documentation, missing historical context, and multiple competing patterns in a codebase. She breaks down different types of technical debt, explains why not all of it is inherently bad, and offers strategies for advocating for maintenance work across engineering and product teams.The conversation also touches on architecture patterns like job fan-out, measuring performance regressions, reducing infrastructure load, and building momentum for improvements even when leadership isn't actively prioritizing them.If you've ever felt overwhelmed by a messy project or struggled to justify maintenance work, this episode will leave you with a fresh mindset—and a few practical tactics—for making code more sustainable and inclusive.Episode Highlights[00:01:08] Defining Well-Maintained SoftwareMercedes explains her top metric: software that feels friendly, especially to early-career developers navigating the codebase for the first time.[00:03:00] What Friendly Code Actually Looks LikeShe shares why consistency, discoverability, and light documentation (like class comments or UML snippets) can make a huge difference.[00:05:00] Assessing Code Like a House TourMercedes introduces her metaphor of giving a house tour to evaluate code: does everything feel like it's in the right place—or is the stove in the cabinet?[00:06:53] Consulting Mindset: Being a Guest in the CodebaseWith a decade of consulting experience, Mercedes shares how she navigates legacy systems when historical context is long gone.[00:10:40] Stabilizing a Startup's Tangled ArchitectureShe walks through an in-depth case study where she helped a client with multiple abandoned services get back to stability—without a rewrite.[00:17:00] The Power of a One-Line FixMercedes shares how a missing check caused a job to fan out 30 million no-op background jobs a day—and how one line of code reduced that by 75%.[00:23:40] Why State Checks Belong EverywhereShe explains how defense-in-depth patterns help avoid job queue flooding and protect system resources early in the fan-out process.[00:24:59] Reframing Technical DebtNot all debt is bad. Mercedes outlines three types—intentional, evolutionary, and time-based—and how to approach each one differently.[00:28:00] Why Teams Fall Behind Without Realizing ItMercedes and Robby talk about communication gaps between engineers and product stakeholders—and why it's not always clear when tech debt starts piling up.[00:34:00] Quantifying Developer FrictionMercedes recommends expressing technical debt in terms of lost time, slow features, and increased cost rather than vague frustrations.[00:42:00] Getting Momentum Without PermissionHer advice to individual contributors: start small. Break down your frustrations into bite-sized RFCs or tickets and show the impact.[00:45:40] Letting the Team Drive StandardsMercedes encourages team-led conventions over top-down declarations, and explains why having any decision is better than indecision.[00:47:54] Recommended ReadingShe shares a surprising favorite: The Secret Life of Groceries, a systems-thinking deep dive into the grocery industry by Benjamin Lorr.Resources & Links

Drop 1: BRL1⁠https://br.cointelegraph.com/news/stablecoin-from-mercado-bitcoin-bitso-foxbit-and-cainvest-debuts-on-the-market⁠⁠https://brl1.io/⁠Drop 2: Circle CCTPv2 ⁠https://www.circle.com/blog/cctp-v2-the-future-of-cross-chain⁠Drop 3: Telegram Wallet ⁠https://techcrunch.com/2025/03/13/telegram-introduces-trading-and-yield-features-for-its-self-custodial-crypto-wallet/⁠More: Circle's response to Brazilian Central Bank's RFCs 109 and 111 to regulate VASPs activity⁠https://www.circle.com/blog/circles-response-to-brazilian-central-banks-rfcs-109-and-111-aimed-at-regulating-country-wide-virtual-assets-service-providers-vasps-activity⁠Cantor Fitzgerald partners with digital asset custodians Anchorage Digital and Copper to support Bitcoin financing business⁠https://www.cantor.com/cantor-fitzgerald-partners-with-digital-asset-custodians-anchorage-digital-and-copper-co-to-support-bitcoin-financing-business/⁠Correios querem usar blockchain e inteligência artificial para agilizar suas entregas⁠https://www.moneytimes.com.br/correios-quer-usar-blockchain-e-inteligencia-artificial-para-agilizar-suas-entregas-rens/⁠New Bretton Woods report: Unlocking Stablecoins: Exploring Opportunities and Risks⁠https://www.brettonwoods.org/sites/default/files/documents/UnlockingStablecoinsExploringOpportunitiesandRisks.pdf⁠MoonPay announces strategic acquisition of Iron, an API-first stablecoin infrastructure platform⁠https://www.linkedin.com/pulse/breaking-news-moonpay-acquires-iron-moonpay-mcbze/⁠Merkle Science releases new UK regulatory guide⁠https://info.merklescience.com/uk-regulatory-guide-2025⁠. Redes sociais / comms.. ⁠Instagram.com/blockdropspodcast⁠.. ⁠Twitter.com/blockdropspod⁠.. Blockdrops.lens .. ⁠https://warpcast.com/mauriciomagaldi⁠.. ⁠youtube.com/@BlockDropsPodcast⁠.. Meu conteúdo em inglês ⁠twitter.com/0xmauricio⁠.. Newsletter do linkedin ⁠https://www.linkedin.com/build-relation/newsletter-follow?entityUrn=7056680685142454272⁠.. ⁠blockdropspodcast@gmail.com

Drop 1: BRL1https://br.cointelegraph.com/news/stablecoin-from-mercado-bitcoin-bitso-foxbit-and-cainvest-debuts-on-the-markethttps://brl1.io/Drop 2: Circle CCTPv2 https://www.circle.com/blog/cctp-v2-the-future-of-cross-chainDrop 3: Telegram Wallet https://techcrunch.com/2025/03/13/telegram-introduces-trading-and-yield-features-for-its-self-custodial-crypto-wallet/More: Circle's response to Brazilian Central Bank's RFCs 109 and 111 to regulate VASPs activityhttps://www.circle.com/blog/circles-response-to-brazilian-central-banks-rfcs-109-and-111-aimed-at-regulating-country-wide-virtual-assets-service-providers-vasps-activityCantor Fitzgerald partners with digital asset custodians Anchorage Digital and Copper to support Bitcoin financing businesshttps://www.cantor.com/cantor-fitzgerald-partners-with-digital-asset-custodians-anchorage-digital-and-copper-co-to-support-bitcoin-financing-business/Correios querem usar blockchain e inteligência artificial para agilizar suas entregashttps://www.moneytimes.com.br/correios-quer-usar-blockchain-e-inteligencia-artificial-para-agilizar-suas-entregas-rens/New Bretton Woods report: Unlocking Stablecoins: Exploring Opportunities and Riskshttps://www.brettonwoods.org/sites/default/files/documents/UnlockingStablecoinsExploringOpportunitiesandRisks.pdfMoonPay announces strategic acquisition of Iron, an API-first stablecoin infrastructure platformhttps://www.linkedin.com/pulse/breaking-news-moonpay-acquires-iron-moonpay-mcbze/Merkle Science releases new UK regulatory guidehttps://info.merklescience.com/uk-regulatory-guide-2025. Redes sociais / comms.. Instagram.com/blockdropspodcast.. Twitter.com/blockdropspod.. Blockdrops.lens .. https://warpcast.com/mauriciomagaldi.. youtube.com/@BlockDropsPodcast.. Meu conteúdo em inglês twitter.com/0xmauricio.. Newsletter do linkedin https://www.linkedin.com/build-relation/newsletter-follow?entityUrn=7056680685142454272.. blockdropspodcast@gmail.com

In this episode of the IPv6 Buzz, we dive into two RFCs for discovering IPv6 prefixes: 7050 and 8781. Why these two? First, 8781 is being proposed as preferential to 7050. Second, co-host Nick Buraglio is an author on 8781 and has insights to share. We start with some background on RFC 7050, including the... Read more »

In this episode of the IPv6 Buzz, we dive into two RFCs for discovering IPv6 prefixes: 7050 and 8781. Why these two? First, 8781 is being proposed as preferential to 7050. Second, co-host Nick Buraglio is an author on 8781 and has insights to share. We start with some background on RFC 7050, including the... Read more »

Send us a textEnglish Edition: In this last episode of 2024 I want to remember David Mills and his work on the Network Time Protocol (NTP). The tool that keeps our machines in sync. David Mills worked closely with Harlan Stenn from the Network Time Foundation on NTP and I was very fortunate to grab some of Harlan's time to talk to him about NTP and David Mills' contribution. Some links (by far not an exhaustive list):https://www.eecis.udel.edu/~mills/ David Mills homepage at the Uni. of Delaware (which still exists). There are a lot of links to his work on NTPhttps://eecs.engin.umich.edu/stories/remembering-alum-david-mills-who-brought-the-internet-into-perfect-timehttps://www.ntp.org/ The Network Time Protocol homepage with tons of details and specifications on how it all workshttps://www.nwtime.org The Network Time Foundationhttps://www.eecis.udel.edu/~mills/database/brief/arch/arch.pdf a presentation on how NTP workshttps://www.nwtime.org/bio/harlan-stenn/ Harlan Stenn's Biohttps://datatracker.ietf.org/doc/html/rfc778 I think this is the first RFC of the early version of NTP https://www.ntp.org/reflib/rfc/ This contains a list of all RFCs related to NTPThe sounds you're hearing are from Phill Niblock, musician, composer, artist and his recording you can get on the internet archive https://archive.org/details/phill-niblock-music-by-phill-niblock Support the showThank you for listening! Merci de votre écoute! Vielen Dank für´s Zuhören! Contact Details/ Coordonnées / Kontakt: Email mailto:peter@code4thought.org UK RSE Slack (ukrse.slack.com): @code4thought or @piddie US RSE Slack (usrse.slack.com): @Peter Schmidt Mastodon: https://fosstodon.org/@code4thought or @code4thought@fosstodon.org Bluesky: https://bsky.app/profile/code4thought.bsky.social LinkedIn: https://www.linkedin.com/in/pweschmidt/ (personal Profile)LinkedIn: https://www.linkedin.com/company/codeforthought/ (Code for Thought Profile) This podcast is licensed under the Creative Commons Licence: https://creativecommons.org/licenses/by-sa/4.0/

The White House recently announced plans to boost Internet routing security in the US through better RPKI coverage. So how does RPKI help secure BGP? How easy is it to boost coverage on a national level? And what's the future potential of the infrastructure? Our guest Tim Bruijnzeels shares his views.Tim is Principal Software Engineer for RPKI at the RIPE NCC and has worked in standards development and software implementation around RPKI for well over a decade. He talked to us about where RPKI is at today, how governments can and have aided its adoption, and how work being done on ASPA and BGPsec promise a more secure future for the Internet.Show notes:02:40 - The Dublin IETF meeting back in 2008.03:17 - Tim has contributed to a number of RFCs over the years.03:40 - NLnet Labs develops free, liberally licensed, open-source software for DNS and BGP routing.03:50 - Krill is a free, open source RPKI Certificate Authority developed by NLnet Labs that lets you run delegated RPKI under one or multiple RIRs.07:24 - You can read more on how the Internet routes around damage on RIPE Labs.10:47 - Get more information on how to manage ROAs through the RPKI Dashboard.11:36 - Check out the RIPE NCC's Routing Information Service (RIS).12:17 - Alex Band's article on the launch of the RIPE NCC Resource Certification Service back in 2011.13:51 - There are a number of RPKI validators to choose from, including Routinator from NLnet Labs.17:32 - Here's a nice explainer article on ASPA.22:07 - Plans to support ASPA and BGPsec router certificates in RIPE NCC Quarterly Planning.24:42 - Press Release: White House Office of the National Cyber Director Releases Roadmap to Enhance Internet Routing Security.26:47 - More on Dutch government measures for ensuring RPKI coverage. Hosted on Acast. See acast.com/privacy for more information.

IPv6 Buzz welcomes back Nick Buraglio, a frequent guest, to discuss RFC 9637. We get into the details of RFC 9637, which describes the new documentation prefix space for IPv6. We also explore the process of how RFCs go from idea to standard in the IETF. (Cue the “I’m Just a Bill” song from Schoolhouse... Read more »

IPv6 Buzz welcomes back Nick Buraglio, a frequent guest, to discuss RFC 9637. We get into the details of RFC 9637, which describes the new documentation prefix space for IPv6. We also explore the process of how RFCs go from idea to standard in the IETF. (Cue the “I’m Just a Bill” song from Schoolhouse... Read more »

Design Documents und Request for Comments (RFCs): Die Engineering Art der PlanungsphaseWir alle haben schon mal von einer Planungsphase gehört, um ein neues Projekt zu starten, und denken dabei an aufgeblasene Prozesse und lange Wasserfall-Diagramme. Und das Engineering-Team fragt sich oft: Wann kommen wir endlich mal zu den Details?Da kommen die Begriffe Design Documents und Request for Comments (RFCs) ins Spiel.Das doofe nur … Jemand muss diese Dokumente auch schreiben.Und da sind wir bei gleich zwei von Andy's Lieblingsthemen: Schreiben und Design Docs.Wir klären, wozu Design Documents eigentlich gut sind, worauf es ankommt, wo der Unterschied zu RFCs ist, ob das ganze nicht ein riesiger Wasserkopf ist, um einfach Dinge auf die Straße zu bringen und welche Kultur das ganze benötigt.Viel Spaß.Bonus: Wer schreibt, der bleibt.Das schnelle Feedback zur Episode:

Send me a Text Message hereFULL SHOW NOTES https://podcast.nz365guy.com/555 Unlock the potential of a powerful tech alliance as we sit down with James Wood, the SAP virtuoso and CEO of Bowdark Consulting, who takes us through his personal voyage from the world of SAP to the innovative horizon of Microsoft Power Platform. Prepare to be enlightened by James's seasoned perspective on the strategic embrace of cloud-based systems, the significance of OData as a lingua franca for data exchange, and the transformative concept of a "clean core" in enhancing business agility. This episode isn't merely a discussion; it's a map to guide decision-makers and IT professionals through the intricacies of marrying the robustness of SAP with the flexibility of Power Platform.Navigating the complexities of integration is no mean feat, but with James's guidance, we confront the often intimidating landscape of SAP licensing audits and dispel common myths. This candid conversation peels back the layers of integration challenges, highlighting the criticality of SAP and Microsoft administrators working in concert to achieve seamless synergy. We'll also scrutinize the effects of multiplexing rules within an API-centric world and consider the evolving nature of SAP connectors. Insightful for SAP architects and IT experts alike, this chapter is your compass to balancing protocols and capitalizing on the fruits of integration.Our final exploration with James offers a deep dive into the pragmatic solutions for integrating SAP with Power Platform—where RFCs, BAPIs, and security protocols all come into play. The comparison between Microsoft's On-Premises Data Gateway and SAP's Cloud Connector serves as a beacon for IT veterans to navigate this new terrain. We also spotlight the bespoke connection framework tailored to fuse the best of Power Platform with SAP. For business leaders and IT teams facing the S4 HANA migration or seeking to mitigate IT backlogs through low-code platforms, this segment is a wellspring of invaluable insights and strategies.AgileXRM AgileXRm - The integrated BPM for Microsoft Power PlatformSupport the Show.If you want to get in touch with me, you can message me here on Linkedin.Thanks for listening

iykykTranscript: https://securitycryptographywhatever.com/2024/05/25/ekr/Links:- https://hovav.net/ucsd/dist/draft-shacham-tls-fasttrack-00.txt- https://crypto.stanford.edu/~dabo/pubs/papers/fasttrack.pdf- https://datatracker.ietf.org/doc/html/rfc8446- SoK: SCT Auditing in Certificate Transparency: https://arxiv.org/pdf/2203.01661- A hard look at Certificate Transparency, Part I: Transparency Systems: https://educatedguesswork.org/posts/transparency-part-1/- A hard look at Certificate Transparency: CT in Reality: https://educatedguesswork.org/posts/transparency-part-2/- E2EE on the web: is the web really that bad? https://emilymstark.com/2024/02/09/e2ee-on-the-web-is-the-web-really-that-bad.html- Launching Default End-to-End Encryption on Messenger: https://about.fb.com/news/2023/12/default-end-to-end-encryption-on-messenger/- ekr's newsletter: https://educatedguesswork.org- Over 25 years of ekr RFCs: https://www.rfc-editor.org/search/rfc_search_detail.php?sortkey=Date&sorting=DESC&page=All&author=rescorla&pubstatus[]=Any&pub_date_type=anySubscribe to his newsletter at https://educatedguesswork.org/"Security Cryptography Whatever" is hosted by Deirdre Connolly (@durumcrustulum), Thomas Ptacek (@tqbf), and David Adrian (@davidcadrian)

Join Phil Zito in Episode 454 of the Smart Buildings Academy Podcast as we delve into the intricacies of Building Automation System (BAS) Project Management. Unlike traditional construction project management, BAS project management brings its own set of challenges and skills. This episode not only highlights the differences but also categorizes BAS project management into four distinct buckets: new construction under a subcontractor, new construction owner-direct, and retrofit owner-direct, each with its unique demands. Episode Highlights: Phil outlines the essential qualities of a BAS project manager and emphasizes the importance of treating each project as its own profit and loss center to ensure financial success. Discover the pivotal stages of the BAS project management process, including the sales to operations handoff, project kickoff meetings, subcontractor agreements, labor assignments, and the critical role of submittal creation and submission. Gain insights into the importance of a well-orchestrated project kickoff process for setting the stage for project success, including ensuring clear communication between sales and operations to avoid costly misunderstandings. Learn about the vital process of scope management, including the use of scope matrices, RFIs, and RFCs to ensure all project aspects are clearly defined and agreed upon. Phil discusses the nuances of labor, material, and subcontractor management within the BAS industry, offering strategies for effectively managing these key resources to maintain project timelines and budgets. Financial management is explored in depth, with Phil advocating for proactive billing and cash management practices to keep projects financially viable. The episode concludes with a discussion on the importance of meticulous project closeout procedures, including point-to-point checkouts, functional testing, and thorough training for the building operators to ensure a smooth handover and long-term project success. Whether you're a seasoned BAS project manager or looking to break into the field, this episode offers valuable insights and practical advice for managing BAS projects efficiently and profitably.

The Internet is hardly foolproof in its design, and whether by accident or on purpose, the people who use and operate it sometimes don't do things they should or do do things they shouldn't. Qasim Lone talks about strange goings on he's investigated and how RIPE Atlas can help researchers in the field.01:00 - RIPE Atlas01:53 - SLAC02:59 - Read Qasim on Why SAV is Still a Problem04:37 - Other research from Qasim and colleagues on SAV06:02 - RFCs 2827 and 3704 describe SAV implementation06:35 - IPv4 lease time article07:48 - The DNS Root Manipulation article09:10 - Manu Bretelle's email to DNS-operations mailing list18:17 - Qasim on 240/423:15 - RFC 3330 describes specialised IPv4 address blocks assigned by IANA29:00 - Listen to our episode on bias in Internet measurements36:30 - SEE 12 takes place in Athens this April37:45 - ...and CAPIF 3 is coming up this September! Hosted on Acast. See acast.com/privacy for more information.

In this episode of PING, Leslie Daigle from the Global Cyber Alliance (GCA) discusses their honeynet project, measuring bad traffic internet-wide. This was originally focussed on IoT devices with the AIDE project but is clearly more generally informative. Leslie also discusses the quad-nine DNS service, GCA's domain trust work and the MANRS project. Launched in 2014 with support from ISOC, MANRS now has a continuing relationship with GCA and may represent a model for the routing community regarding the ‘bad traffic' problem which the AIDE project explores. Leslie has a long history of work in the public interest, as Chief Internet Technology Officer of the Internet Society, and with the IETF. She is currently the chair of the MOPS working group, has co-authored 22 RFCs and was chair of the IAB for five years.

What's with the current discourse around React and RFCs? Adam's worried about his consumerism, and the possible significance of rituals in everyday life. Dax has started reading actual books again, and wonders about the productivity boost of maintaining a clean working environment.Want to carry on the conversation? Join us in Discord.00:43 Two Twitch Things04:34 The Lamborghini SUV is a scam06:38 Does Adam have a problem with consumerism?14:12 Do you have any spiritual or meditation in life?20:23 Reacting about React31:22 Musk's macadamia nut beef32:55 Brian Johnson study34:32 Will Adam ever eat a steak again?41:18 Manifesting a productivity boost42:42 Dax is reading actual books again

In this episode, Dave and Jamison answer these questions: The Sleepy Engineer says, Hey SSE, how do you deal with drowsiness? I notice that sometimes when I am very tired at my desk and end up eyes closed head drooped down as I work which I imagine is a bad look for anyone passing by. During this time, I would either get coffee or stand up and walk somewhere which is a temporary fix but ultimately I am still very tired. I know in very few really big company HQs there might be a sleeping quarters if you plan to stay the night but my company is certainly ain't one of them. Any advice on how to get through the day? Thanks for the great show. After seeing a hyper growth in 2021-2022, our company has become a bureaucratic hell hole. RFCs, PRDs, ADRs, reports. My manager (director of engineering) would request these documents but never read them. When someone doesn't like the solution proposed, they have the option to say no and the project is blocked. But nobody (including the manager of the team) have the autonomy to say yes and move forward. How do you deal with this? Or is it time to give up and listened to the patented advice to quit my job? Show Notes https://www.youtube.com/watch?v=f84n5oFoZBc - hammock-driven-development

HTTP RFCs have evolved: A Cloudflare view of HTTP usage trends, Career Advice and Professional Development, Active Exploitation of Confluence CVE-2022-26134 Visit https://securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/vault-asw-7

HTTP RFCs have evolved: A Cloudflare view of HTTP usage trends, Career Advice and Professional Development, Active Exploitation of Confluence CVE-2022-26134 Show Notes: https://securityweekly.com/vault-asw-7

HTTP RFCs have evolved: A Cloudflare view of HTTP usage trends, Career Advice and Professional Development, Active Exploitation of Confluence CVE-2022-26134 Visit https://securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/vault-asw-7

HTTP RFCs have evolved: A Cloudflare view of HTTP usage trends, Career Advice and Professional Development, Active Exploitation of Confluence CVE-2022-26134 Show Notes: https://securityweekly.com/vault-asw-7

We have a lot of questions about standards. How do standards emerge? How do standards encourage adoption? How do they stay relevant as development patterns change and security threats evolve? We have standards for web appsec (HTML, HTTP), all sorts of protocols, and all sorts of authentication (OAuth, OpenID). Learning how these standards come about can also inform how your own org documents designs and decisions. Segment resources https://datatracker.ietf.org/doc/html/rfc3552 https://identiverse.com/video/the-butterfly-effect-of-standards-development/ https://sphericalcowconsulting.com https://datatracker.ietf.org/doc/html/rfc6919 In the news, benchmarking prompt injection scanners, using generative AI to jailbreak generative AI, Meta's benchmark for LLM risks, tapping a protocol to hack Magic the Gathering, and more!   Visit https://securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/asw-266

We have a lot of questions about standards. How do standards emerge? How do standards encourage adoption? How do they stay relevant as development patterns change and security threats evolve? We have standards for web appsec (HTML, HTTP), all sorts of protocols, and all sorts of authentication (OAuth, OpenID). Learning how these standards come about can also inform how your own org documents designs and decisions. Segment resources https://datatracker.ietf.org/doc/html/rfc3552 https://identiverse.com/video/the-butterfly-effect-of-standards-development/ https://sphericalcowconsulting.com https://datatracker.ietf.org/doc/html/rfc6919 Show Notes: https://securityweekly.com/asw-266

We have a lot of questions about standards. How do standards emerge? How do standards encourage adoption? How do they stay relevant as development patterns change and security threats evolve? We have standards for web appsec (HTML, HTTP), all sorts of protocols, and all sorts of authentication (OAuth, OpenID). Learning how these standards come about can also inform how your own org documents designs and decisions. Segment resources https://datatracker.ietf.org/doc/html/rfc3552 https://identiverse.com/video/the-butterfly-effect-of-standards-development/ https://sphericalcowconsulting.com https://datatracker.ietf.org/doc/html/rfc6919 In the news, benchmarking prompt injection scanners, using generative AI to jailbreak generative AI, Meta's benchmark for LLM risks, tapping a protocol to hack Magic the Gathering, and more!   Visit https://securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/asw-266

We have a lot of questions about standards. How do standards emerge? How do standards encourage adoption? How do they stay relevant as development patterns change and security threats evolve? We have standards for web appsec (HTML, HTTP), all sorts of protocols, and all sorts of authentication (OAuth, OpenID). Learning how these standards come about can also inform how your own org documents designs and decisions. Segment resources https://datatracker.ietf.org/doc/html/rfc3552 https://identiverse.com/video/the-butterfly-effect-of-standards-development/ https://sphericalcowconsulting.com https://datatracker.ietf.org/doc/html/rfc6919 Show Notes: https://securityweekly.com/asw-266

In this episode of Syntax, Wes and Scott talk through new and proposed JavaScript APIs including ones related to regex, sourcemaps, structured clone, temporal, JSON modules, and more! Show Notes 00:10 Welcome 01:26 Syntax Brought to you by Sentry 02:55 RegExp Escaping Proposal tc39/proposal-regex-escaping: Proposal for investigating RegExp escaping for the ECMAScript standard 05:25 Intl.DurationFormat tc39/proposal-intl-duration-format 07:55 Standardized Sourcemaps tc39/source-map-rfc: RFCs for the source map debug format. 10:43 Structured Clone structuredClone() global function - Web APIs | MDN 12:54 Temporal Hasty Treat - Temporal Date Objects in JavaScript Tracking issue for syncing with IETF standardization work (req'd before implementers can ship unflagged) · Issue #1450 · tc39/proposal-temporal 20:59 FindLast and findLastIndex tc39/proposal-array-find-from-last: Proposal for Array.prototype.findLast and Array.prototype.findLastIndex. 22:27 JSON modules tc39/proposal-json-modules: Proposal to import JSON files as modules 24:46 Regex Modifiers RegExp Modifiers - June 2022.pptx - Microsoft PowerPoint Online 26:50 Array Grouping tc39/proposal-array-grouping: A proposal to make grouping of array items easier 30:48 Array Methods tc39/proposal-change-array-by-copy: Provides additional methods on Array.prototype and TypedArray.prototype to enable changes on the array by returning a new copy of it with the change. 6 or so New Approved and Proposed JavaScript APIs 32:12 Promise.withResolvers 35:08 Function.prototype.memo tc39/proposal-function-memo: A TC39 proposal for function memoization in the JavaScript language. 37:48 Node has a Proposed ESM Detection flag 39:54 Node has navigator.userAgent 41:29 Built in .env support 42:52 Permissions model & test runner continues to be worked on 44:06 HTML Web charts Proposal: Web Charts · Issue #9295 · whatwg/html 45:39 autopause Add autopause attribute to media elements to allow automatic pausing of media · Issue #9793 · whatwg/html 46:30 Meta Tag for AI generated content Proposal: Meta Tag for AI Generated Content · Issue #9479 · whatwg/html Schema.org - Schema.org Syntax × Sentry Swag Store – Syntax × Sentry Shop Syntax - A Tasty Treats Podcast for Web Developers. 50:13 Poster frame HTML Video Element: Proposal for adding [srcset] + [posterset] + [sizes] on video element as well [posterset] on source elements · Issue #9812 · whatwg/html 50:57 Popover invoker Popover does not know what triggered it · Issue #9111 · whatwg/html 51:25 Autocomplete on ‘contenteditable' Elements Autocomplete on ‘contenteditable' Elements · Issue #9065 · whatwg/html 52:17 Sick Picks Sick Picks Scott: Escaping Twin Flames cult documentary Wes: Lao Gan Ma spicy Chili Oil Shameless Plugs Scott: Sentry Wes: Wes Bos Courses Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads

Back in 2018, CDT's own, Mallory Knodel, teamed up with Niels ten Oever from the critical infrastructure lab at the University of Amsterdam to present a draft document at the internet standards governing body called the Internet Engineering Task Force, or IETF. This draft outlined a proposal that urged the community to officially reject the use of discriminatory and exclusive language in Internet Drafts and RFCs. As we persistently uncover and confront systemic racial inequality across society, it becomes equally vital to guarantee that the fundamental design comprising one of our most critical and democratic technologies– the internet– is devoid of any historically racist or prejudiced terms.

Internetprotokolle werden über sogenannte RFCs geschaffen. Wenn die am 1. April herauskommen sind sie nicht ganz ernstgemeint, manchmal aber trotzdem visionär.

Nonprofit RFPs vs RFCs   [00:00:00] . Following on with our favorite guest of the moment right now, Heather Yandow, of course, founder of nonprofit.ist, nonprofit ist, and consultant at third Space. We are talking about whether or not, because this has been coming up a lot, will G p t destroy RFPs? And I know you are the, like captain of the team, of folks that think RFCs request for conversations are superior and many ways to RFPs request for proposals. [00:00:54] So we're gonna throw a lot of acronyms out here. Where and how do you think our conversation since the last time we had it with regard to R F P? Versus R F C is in the landscape now of G P T. So I think it's just gotten more complicated, more muddy, and I lean even more towards requests for conversations now. [00:01:17] You know, one of the things that I have already started seeing is chat, G P t AI generated cover letters. So I just hired for a position. Hmm. And one of the cover letters was clearly generated by ai. It used exactly the same language, and it didn't mention that the person who was applying had a personal connection to me. [00:01:39] So to those, those were red flags. Didn't even have to use any tool, just read it and thought, this is not right. So we're already starting to see it. I suspect that if I was a nonprofit putting out a, a request for proposals, I would've already gotten some that were AI generated. So it's becoming, RFPs in my opinion, are becoming increasingly useless, increasingly challenging when the goal is to actually find the right consultant to help you with your challenge. [00:02:10] For sure. I think, you know, we're using G P T synonymously with any generative AI tool that will create an output based on an input. I think there are ways of designing this, but I think there are tiers, right? Mm-hmm. I think, frankly, legally speaking, if you have government funded projects you have to solicit for, and with RFPs, request for proposals is just part of the game. [00:02:35] You need three competitive bids. And that's just how the government cookie crumbles. Yep. There's a lot of white space below that though, however, where, you know, I see small projects, we'll call them projects under 60 K or even under 30 K, where if you put out an R F P, like is disturbingly easy to generate a proposal? [00:02:56] Like I have a proposal generator for for whole whale. I don't use it because it's just not how we go about it. But let's say I was a do anything now shop. Literally, I could just go through, copy a proposal, put it in, see if I get it, and then go forward. And I think there's real risk of having massive you know, signal to noise issues in that process. [00:03:20] Does, how does that land for you? Yeah, I absolutely think so. I mean, you know, putting together proposals. Is super time consuming especially for small shops. You know, there are two and a half of us, so to muster the resources it takes to put together a really good proposal is a heavy lift, and I can absolutely see why using chat G P T or something else, like it would be really attractive, right? [00:03:48] It's certainly going to reduce the amount of time I'm gonna have to spend writing. It can be a, a good jumping off point. I think that what we're likely to see is that those. Organizations who can take advantage of it. So particularly those organizations, those nonprofit consulting firms who have people who write proposals are gonna probably take advantage of it. [00:04:11] And George, they might be, you know, doing it with all of the respect and within the bounds of good AI usage, which I know you think and talk a lot. But I do think it's gonna create more proposals and not necessarily more useful proposals for nonprofits to review. [00:04:28] Yeah, I think all roads lead to conversations, though. They do. I think at some point, you know, you'll vet, you'll go through, there's just a lot more processing that ends up happening on the nonprofit side, albeit ironically, you could also use AI for synthesizing that. And we end up back full circle to just have the conversation front. [00:04:47] Have, have the, you're gonna have to have it anyway. So being like our, you know, like our request for information or intent could lead to a conversation round and. That would maybe filter out a lot of this because the number of proposals you are going to get is simply gonna increase over this threshold because it's so easy. [00:05:06] Literally. Yeah. If you are saying like, oh, he's talking about some advanced technical thing. Here's what I want you to do. If you're a consultant right now or if you're a nonprofit, I just want you to understand how simple this is. You just go on ideally to check GT four or Anthropic. If you have an account there, what you're gonna do is prime the conversation with who you are, what you do, and the role of that ai. [00:05:27] The next thing you're gonna do is here is a sample of the structure of my proposals. Here's a couple case studies now. That you're clear, please write a and respond to the following context of this new proposal. And you're gonna toss that in and you're gonna end up with something that's disturbingly good as a first draft. [00:05:47] And frankly, if you're lazy, just send it as mm-hmm. Whatever your first, your, your final draft. Uh, I do, as you mentioned, talk a lot about keeping human in the loop as soon as you send it out to the world, if it's. If it is all within your control, please, please make it a first not final draft policy of using AI and keep humans in the loop for now when exposing LLMs publicly to individuals especially if you are in I'd say crisis or trauma adjacent conversation. [00:06:19] For, for folks, what is L L M? Large language model. I feel like this is just alphabet soup. Uhhuh, you're a generative AI thingy. It like there's nuance, there's fine. It's what we're talking about. So going back to that, what you're gonna do is create that. Now, if you're on the nonprofit side, here's how you go about it. [00:06:37] You say you are a selection criteria. AI that evaluates proposals for our organization. Here is the proposal we created. Now, evaluate this and break out based on price, competency likelihood to deliver on time elements, and shove it into the spreadsheet for me. And ta-da. You're just gonna go back to having. [00:07:00] A conversation. A conversation. Absolutely. Absolutely. 'cause it's, it's not buying the best digital camera, right? It's not a spreadsheet able thing. Finding a consultant, most of the time you actually wanna know if you're gonna be able to work with this person. You wanna have an understanding of who they are, of what their personality is, of what their style is, and. [00:07:19] Certainly we talk about that in proposals but it comes back to having a conversation and really seeing where that conversation goes. And that's something AI at least currently can't actually do for you. No. And the truth is, you're gonna be working with a person, not an ai. That's right. Uh, one of the things I do and have always loved about non-profit is, is that you can just go shopping for folks and just say, Hey, I wanna have a quick conversation. [00:07:44] One click sends them a message so that you're like, all right, look. I have this fundraising campaign. I could put it on our feet. Lemme just talk to a few folks and see That's right. What they think about the project. What am I missing in here and how do I go about that? Yeah. Yeah, absolutely. And that's, that's, we designed it that way on purpose, right? [00:08:02] It's people's pictures there, not their logos. We know that you're connecting with a person and we wanna make that as frictionless as possible. Call 'em, email 'em, send 'em a message through the site, any way you wanna get in touch with them. And then yeah, have that conversation. What does this look like? [00:08:20] What do you think? What are the questions you have for me? What would the timeline be for this? Yeah. And I, I do think there's some risk as well, which is why I want more foundations to do this. I'm to, to pay attention and to communicate to grantees about the, the risks here, because when you go out there with. [00:08:40] An R F P, you can get a lot of inbound and potentially unethical inbound where folks can just sort of fake it till they make it, but they're using language borrowed mm-hmm. Stolen from other groups or agencies, and they can mimic that style and confidence. And suddenly, you know, you're, you're selecting a an inferior option or someone who has no clue what they're doing, but the jargon lines up just fine. [00:09:04] So you're like, oh yeah. And. Oh, they're half the price isn't that nice? Like Uhhuh. Uhhuh as many times as you need to. You get what you pay for. Yeah. You'll learn that it's an immutable truth. It is. And you know, obviously having conversations is gonna help break through that. And then always checking references. [00:09:22] Who else have you done similar work with? Can I talk to them? Let's have a conversation with those folks about what the experience was like working with these people. Yeah. I don't know if there's any other points in here. I have already just broken the entire system by literally explaining how to build a R F P generator and then R F P proposal evaluator, so that you just have this little disturbing, dystopian mm-hmm. [00:09:47] Cyclical behavior. But you know, to come back on, you know, where this sort of started requests for proposals, RFPs are so anachronistic like they date back because in the industry of the 1880s, they needed to put this stuff in papers. So they needed to put it in a paper to be like, here you go. All come, come find my, you know, my road construction project or train my railroad construction project, Uhhuh. [00:10:13] And it wasn't until the 1960s, thereabouts, where the government really adopted this as a standard practice for large purchasing projects. Yes. Government size stuff. Yes. Not. Tens of thousands of dollars, right? Yes. You're like, oh, it's so much money. It's not, it was created when the government's about to spend, you know, you know, X millions, hundreds of millions of dollars. [00:10:37] That's what it was designed for. The government, as you remind, like I I said, is like, is requirement when you give to a nonprofit and use government dollars, like, oh, no, no, you gotta do that. R F P process. Mm-hmm. But understand that's where that comes from. That's where that comes from. And there's, there's a belief that that's the right way to do it. [00:10:57] That's the professional way to do it. That's the equitable way to do it. And I would argue for all of those, that's, that is not necessarily true. It is not always the best way. It is always not always the most professional way, and it's certainly not the most equitable way to find someone to work with. [00:11:15] Yeah. I don't know. Maybe to play the other, other side here potentially. One of the things that, when you use the word equitable, in my mind it, it means you have to have the capacity and resources and capability to go about the very lengthy process of creating a proposal. Yeah. And that process. And there's many folks in the nonprofits network that like definitely bristle. [00:11:38] They don't even like go after. Yeah. They're like, no, no, no. I won't even bother. Which means you've already precluded a lot of qualified candidates from applying. That said, I just explained how you could create a proposal builder so that you could get to the conversation. May, maybe the, maybe there's a bright side there. [00:12:01] Maybe there's a bright side there. I, you know, I'm one of those folks who I, I, I don't do cold proposals. And that doesn't mean necessarily that I have worked with a nonprofit before, but I need to at least be able to have a conversation. Very rarely. Does a two or four page R f P have all the information I need to know even what to pitch as a first option for how I might be able to support this organization. [00:12:26] I often have lots of questions. I wanna know a little bit more about the history. I wanna know about why now. I want, you know, I wanna understand why the budget is where it is and what the board's buy-in is things that people don't often write down in their request for proposals. So even that first conversation again, Warming it up a little bit, having a sense of who's really there, what the real challenges are is, is super helpful. [00:12:52] I will say for Whole Whale that we do respond to RFPs, but only if there was a conversation first. Yep. There you go. Like everything starts with a conversation just to make sure we're aligned. Yeah. Are we in the ballpark? Is our type of service, meet your type of need and. We do churn out a lot of proposals. [00:13:10] However, they're much more like project plans, like mm-hmm. We literally take that we and move that into a contract parts of it and say, this is what we're gonna execute on. 'cause that's what we talked about. And you know exactly what you get. So you're already doing pragmatic work now? Yes. We, uh, we do lose a number of proposals. [00:13:29] But that's, you know, that's part of the game. Yeah. And I think of them less as proposals, maybe more as like project plans to make it. More tangible. Mm-hmm. Mm-hmm. Yeah, that makes sense. That makes sense. We often put together proposals that are those project plans, and then the very, if we get the work, the very first piece of that is let's actually dig into this project plan and figure out if it makes sense. [00:13:51] We were basing this on an R f P in a 20 minute conversation. Right. Like, we don't, we, we need some more information. Well, I'm excited to put this out there. I think the more we talk about it, it's just like, it's like this quiet secret and you're like, oh. Mm-hmm. Like nobody knows that a hundred million plus people are using G P T tools to like write all manner of thing. [00:14:11] Like we know Yes. We just aren't talking about it. Yes, yes. You know, it's like if the, if the teacher in the classroom accidentally left the entire answer key on the chalkboard while you took the test and everyone was like, Is anyone gonna tell the teacher that it's there? Like, can we just start having this conversation? [00:14:29] We know it's happening, we know it's going on. And by the way, if you're doing it lazily, if you're doing it in a poor way if you're ever curious, you can go to tools like G P T Zero. Put in that text and you're gonna get a what's called perplexity and burness score, which is, uh, was this probably created by, uh, an AI or not a generative ai or not. [00:14:52] Uh, and so if you are bad at prompting, if you're doing this in a lazy way, uh, it's very much detectable. Mm-hmm. But you don't realize that. But people that know, know, mm-hmm. And I, I, you know, The plus side is there's lots of ways that these tools can help us as nonprofit consultants. You're actually doing a webinar on that very soon. [00:15:12] There's lots of ways that these tools can help nonprofit leaders. So there is a positive side. Just, yeah, be careful with the RFPs. Agree to agree. All right, Heather, all, thanks again. Thank you. And folks can find you at nonprofit, do IST nonprofits. That's correct. And thanks for the community you're building. [00:15:30] Thanks, George.

Today we are taking a look at what is new in PHP 8.3 PHP 8.3 will be released on November 23rd 2023 and has some interesting new features and breaking changes that every PHP develop should be aware of. Checkout the features, breaking changes and links to the RFCs at https://stitcher.io/blog/new-in-php-83 Learn web development https://howtocodewell.net

Daniel has been doing software engineering and architecture for about 30 years. He has formal education in linguistics, business, and cybersecurity. He  contributed to SSI standards such as W3C's DID core and VC specs, DIDComm 1 and 2, DIF's peer DID spec, and numerous RFCs from Hyperledger Aries. He also helped launch Sovrin and Trust Over IP. Daniel currently works as the CTO and CISO of Provenant, which is focused on authentic digital communication for organizations. About Podcast Episode Read more about the episode by heading to ⁠⁠⁠https://northernblock.io/thinking-beyond-client-server-architectures-with-daniel-hardman/ Some of the topics discussed between Daniel and Mathieu in this podcast conversation include: The Centralization vs. Decentralization Continuum and the role of client-server architectures - weighing different forms of centralization and their impact on other architectural goals. Protocol design and its relationship to consolidation - How do we determine trade-offs between centralization and decentralization in various components within a system? Balancing architectural goals - is it more of an art or a science when making these decisions - do trade-offs happen at protocol or application layers? Protocol design for digital identity, digital trust, and user categorization - Achieving self-sovereignty, control, and authenticity - Confidentiality and privacy. How do protocol choices affect power dynamics and trust relationships and interactions between different parties? How can we drive the right standards or protocols for more flexible interactions? Incentives for organizations to support standards that facilitate interactions between individuals - Balancing short-term sacrifices for long-term gains - The role of an ecosystem in driving change. Can all human-driven protocols be codified, and is 'workflow' flexibility more important than achieving authenticity, confidentiality, and privacy? The challenge of replicating human interactions in digital protocols - The importance of flexible workflows - Balancing security and privacy with the ability to express nuance and adaptability. Where to find Daniel? LinkedIn: ⁠https://www.linkedin.com/in/danielhardman/ Twitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/dhh1128 Follow Mathieu Glaude Twitter: ⁠⁠⁠https://twitter.com/mathieu_glaude  ⁠⁠⁠ LinkedIn:⁠⁠⁠ ⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/mathieuglaude/⁠⁠⁠ Website:⁠⁠⁠ ⁠⁠⁠⁠⁠⁠https://northernblock.io/

Kathi Vidal returns to the Clause 8 podcast to talk about her first year as the Director of the US Patent and Trademark Office (USPTO).  In an expansive conversation, Director Vidal talks about what she hopes to accomplish, explains and defends the current process for exploring and making changes to the patent system, and responds to criticisms regarding the state of the system.  Even close observers of her time as Director are bound to be surprised by many comments she offers on this episode. On this episode, Director Vidal and Eli discuss: Offer to become Director & preparation for role Big-picture vision & importance of listening to all stakeholders How stakeholder input drove administration's decision regarding standard essential patent (SEP) policy statements Healthy state of America's patent system & need for improvements on the margins Negative impact of information that discourages use of patent system Reliance of American companies on other jurisdictions to enforce their patent rights Efforts to increase diversity of patent applicants, including efforts to expand pro bono programs Weighing stability of patent system v. implementing change USPTO's willingness to pivot, pause, and extend Are requests for comments (RFCs) destabilizing patent system? Correct way to view USPTO's RFCs – why you shouldn't read too much into individual questions Proposal to record examiner interviews Coordination with USPTO labor unions Indispensable role America's patent system played in creation of the COVID-19 vaccines How lack of patent eligibility for diagnostic tests impeded innovation for COVID-19 tests Efforts of drug companies to make sure that those who needed COVID 19 vaccines got them Message to independent inventors (who hear Molly Metz's story) Upcoming plan to solve for problems faced by independent inventors “Patent troll” narrative – are there too many “bad patents”? Reputation of the PTAB & desire of PTAB judges to get it right Has the PTAB worked out as intended? Purpose of new guidance & rulemaking regarding Fintiv discretionary denials Approach to Director review & importance of independence of PTAB judges Plan to solicit input regarding role of 3rd parties in PTAB proceedings Need for more clarity regarding Section 101 Providing examiners with ability to do pattern recognition for Section 101 analysis Selection of Commissioner for Patents Vaishali Udupa Surprising alignment with America's allies on innovation & IP issues Advice on overcoming career setbacks   

In this episode, we chat with Russ White! Russ has made significant contributions to Networking, such as writing some of the very RFCs we use today! Russ hold’s a Ph D., is one of a handful of Cisco Certified Architects, and is the host of the Hedge Podcast, among other things. Please enjoy our conversationContinue reading "Ep 113 – Russ White"

Ed Horley (of IPv6 Buzz podcast fame) listened to the last show about point to point addressing and hit me up to say "Hey! You're doing it wrong!", and since there is never a bad opportunity to learn from the masters and improve, John and I said "great, let's do another show! And this time we'll bring along Jay and Chris! Listen in as we wander through a lot of interesting facts about TCAM, RFCs, and deployment models.

Allen Wyma talks with Nell Shamrell-Harrington, Member Board of Directors at Rust Foundation and Principal Software Engineer at Microsoft about Microsoft's use of Rust, her time being involved with Rust, and also the Rust RFC process.. Contributing to Rustacean Station Rustacean Station is a community project; get in touch with us if you'd like to suggest an idea for an episode or offer your services as a host or audio editor! Twitter: @rustaceanfm Discord: Rustacean Station Github: @rustacean-station Email: hello@rustacean-station.org Timestamps [@1:30] - Nell's Background and Introduction [@5:31] - Rust communities all over the world [@7:10] - Handling opinions, feedback and RFCs when making changes and updating a language [@11:23] - What is a RFC and how does it work? [@17:43] - Nell's experience switching from Ruby to Rust [@19:56] - Nell's career background [@24:18] - How the Rust Foundation operates [@24:20] - Rust Foundation's sponsorship model [@33:08] - What Microsoft is currently working on with Rust [@42:22] - How much Rust is going into Windows [@44:25] - Is there a public long-term plan for Microsoft's involvement with Rust? [@48:02] - Parting thoughts Credits Intro Theme: Aerocity Audio Editing: Plangora Hosting Infrastructure: Jon Gjengset Show Notes: Plangora Hosts: Allen Wyma

Adrian Kennard and Kevin Hones, Founders of FireBrick routers and firewalls, discuss how to design, build, test and support a hardware router and network operating system from scratch, while sharing the lessons learned. You'll also learn that in certain..

About Charles ShirerCharles has been in the industry for 20 years. He has worked as a developer, system admin, PC Tech, security engineer, penetration tester, and security researcher. Charles Shirer Contact Informationhttps://twitter.com/bsdbandit Other StuffSecBSD https://twitter.com/SecbsdDeadPixelSec https://deadpixelsec.com/Super Nintendo and Super Famicom https://en.wikipedia.org/wiki/Super_Nintendo_Entertainment_SystemChessNetwork https://www.twitch.tv/chessnetwork  Gibson TeamAcid Phreak https://en.wikipedia.org/wiki/Elias_Ladopoulos Gleaming The Gibson: A Hacker Podcast Contact InformationWeb: https://www.gleamingthegibson.com/Twitter: https://twitter.com/gleaminggibson

It's impossible to go it alone; especially when your organization is lean and your to-do lists are fat! Enter “the consultant.” How do mission-driven organizations find the right one though? Today's guest is the co-founder of Nonprofit.ist an online community that connects consultants with the mission-driven organizations they can help.    Episode Guest(s): Heather Yandow is a collaborative co-conspirator and creative thinker with over 20 years of experience in the nonprofit world.   Inspired by issues that touch her heart and organizations invested in relationships, Heather gets joy out of helping groups move forward from chaos to clarity. Phrases like “adaptive leadership” and “change management” are sure to get her mind churning.   Before Heather joined Third Space in 2010, she was the Director of Development and Communications with the NC Conservation Network, a statewide network of over 100 organizations focused on protecting North Carolina's environment and public health.   With a personal motto of “just do it,” Heather identifies problems and dreams up actionable solutions. This talent has led to many projects: Heather is the founder of Nonprofit.ist, an online resource that helps pair nonprofits with the right consultants; a co-founder of Beehive Collective, a Raleigh-based giving circle; and the creator of the Individual Donor Benchmark Report. Key Takeaways: Reasons for hiring a consultant: (1) you're dealing with a question that's outside your expertise; (2) you have a persistent challenge that won't go away; and (3) even though you may have the skillset on your staff, you want an outside person to come in and help.   A clear understanding of your challenge and a clear understanding and agreement inside the organization of what kind of person you want to work with helps you find the right person.   Types of engagements: (1) an expert to come in and tell you how it should be done; (2) a facilitator who's going to help the organization have good conversations that are going to lead you down a pathway to answer; (3) a very technical person that you can just hand everything off to and not worry about it.   RFPs do NOT give more people access to the work. Only larger-staff consultants typically have time to fill out RFPs. Instead, consider RFCs (request for conversations).    However, the good part of RFPs is that they include (1) a written understanding of what your challenges are, and what your parameters are; (2) a clear description of the problem and a clear description of what success looks like; (3) some thoughts about timing or at least a timeline, and (4) a budget associated with it.   When consultants are pushed on you by a Board member: Inform them that your policy is to at least two or three different organizations about this potential work. Have clarity around your process and framework for making the decision. For example, “We need someone who is a good fit, with X qualifications and Y kind of experience.”    For consultants: Figure out where you really want to be working. How are you going to say no or not right now? Or it's not your work, how will you introduce them to someone else? Useful Links: Nonrofit.ist Six Excuses for Ignoring Your Messaging Strategy

HTTP RFCs have evolved: A Cloudflare view of HTTP usage trends, Career Advice and Professional Development, Active Exploitation of Confluence CVE-2022-26134   Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw200

Highlights from This Week in Rust - Issue 443. This week features a new section within the newsletter as well as the hosts Sean, Allen and Tim chatting about compilers, front-end development, extending databases with Rust and more. Contributing to Rustacean Station Rustacean Station is a community project; get in touch with us if you'd like to suggest an idea for an episode or offer your services as a host or audio editor! Twitter: @rustaceanfm Discord: Rustacean Station Github: @rustacean-station Email: hello@rustacean-station.org Timestamps & referenced resources [@00:00] Welcome [@00:10] - Introduction [@00:50] - Agenda [@01:20] - Quote of the week [@02:50] - Crate of the week [@03:30] Highlights [@03:45] - Things are Getting Rusty in Kernel Land Rust for Linux GitHub org Version 6 of the Rust patchset Supporting Linux kernel development in Rust LWN article discussing the Linux Plumbers 2020 session that kicked off the effort Prossimo funding the effort, sponsored by Google [@09:45] - The Rust Borrow Checker - A Deep Dive MIR (Mid-level representation) introduction From MIR to binaries discusses how binaries are generated MIR borrow check section of the rustc dev guide rustc_borrowck crate within the compiler [@14:40] - PixelBox Public Alpha PixelBox source code egui GUI framework for Rust PyTorch, a popular Python wrapper for the Torch machine learning framework ONNX machine learning format [@18:00] - Rust Ergonomics: Default and From std::default::Default trait documentation std::convert::From trait documentation std::convert::Into trait documentation Code Like a Pro in Rust book by Brendan Matthews, published by Manning [@23:30] - Our Experience Porting the YJIT Ruby Compiler to Rust YJIT: Building a New JIT Compiler for CRuby [talk] MoreVMs'21: “YJIT: Building a New JIT Compiler Inside CRuby” – Maxime Chevalier-Boisvert [@30:30] - Asteracea JSX introduction, from the ReactJS project [audio] Carl Lerche on macros (skip to 28:25) How does WebAssembly fit into the web platform?, an article discussing the interacting with the DOM from wasm. [@37:46] - Ferrite: A Judgmental Embedding of Session Types in Rust Haskell Session Types with (Almost) No Class [pdf] Session Types for Rust Session type Affine type, definition from Wikipedia. [Note from Tim: the definition provided by me in the podcast is incorrect. The term “affine type” is derived from affine logic, not affine transformation.] [@40:40] - New newsletter section: Call for testing RFC: Deduplicate cargo workspace information Scoped threads in the standard library crossbeam crate rustc dev guide [@45:45] - [video] Neon - Building a Postgres storage system in Rust pgx crate for extending PostgreSQL in Rust neon database source code [@50:55] - Extending SQLite with Rust Stored procedure English Wikipedia article Other items [@59:30] Final Comment Period for RFCs, PRs [@59:42] What is “yeet”? Credits Intro Theme: Aerocity Audio Editing: Brógan Molloy Hosting Infrastructure: Jon Gjengset Show Notes: Tim McNamara Hosts: Tim McNamara, Sean Chen, and Allen Wyma.

Malspam with Lokibot vs. Outlook and RFCs https://isc.sans.edu/forums/diary/Malspam+with+Lokibot+vs+Outlook+and+RFCs/27282/ SAP Attacks https://us-cert.cisa.gov/ncas/current-activity/2021/04/06/malicious-cyber-activity-targeting-critical-sap-applications QNAP Upates Older EOL Devices https://www.qnap.com/de-de/release-notes/qts/4.3.6.1620/20210322 GIGASET Android Phones Infected by Compromised Update Server https://www.heise.de/news/Gigaset-Malware-Befall-von-Android-Geraeten-des-Herstellers-gibt-Raetsel-auf-6006464.html