5C5C5C
I mean scientists tried being polite and give gentle nudges with the climate crisis for decades and look where it got us. Civilization is driving towards a cliff and we've thrown away the steering wheel.
When I was younger I used to think that being nice to people and engaging them on their own terms is the best way to win people over to your cause, but at the end of the day people don't actually bother to change unless they realize that they need to for their own survival. So I'm done putting all my eggs into the respectability politics basket, and I'm not going beat around the bush on what a fucking cataclysmic crisis we're being faced with.
I certainly won't win anyone's affection, but if I can get at least one person to pause and ask themselves "..Am I in danger..?" then I'll take that as a win. If others think they can win people over with kindness, they're welcome to try.
Weird take on morality.
I'm eager to acknowledge the systemic challenges of being veg_n since those were barriers for me in the past myself. I'm privileged to not have those issues anymore, but I still recognize the premium that I pay to be veg_n (my partner and I refer to it as "the vegetarian tax").
I harbor no animosity towards people who can acknowledge the sustainability crisis of the meat industry but aren't in a position to personally separate from it. The expectation that I have for decent and informed people, in order from the bare minimum to the absolute most is:
- Don't pointlessly disparage veg_ns or spread misinformed agrobusiness propaganda. This in fact takes negative effort.
- Occasionally examine whether you have any opportunities to reduce your meat consumption.
- Talk to people you personally know about the sustainability crisis and see if you can find others in your circle who are interested in reducing their meat consumption. Work together to figure out effective strategies for doing so in your situation.
I find that meat eaters' reactionary indignation to the facts of the harm caused by eating meat is way more aggressive than veg_ns trying to point out to people that we're literally killing ourselves as a species.
It's somehow even stupider when people who are veg_n like yourself act like it's offensive to promote the importance of veg_nism to a world that will otherwise die.
I really don't care how many people like me when it comes at the cost of the continued existence of humanity. I have no remorse about shoving an uncomfortable message into the faces of people who need to hear it.
You oppose veganism from a moral standpoint...? You think it's immoral to subsist without needlessly torturing animals, or is there some other agrobusiness propaganda wedged in your brain that you haven't taken the time to debunk yet?
Life insurance premiums are about to skyrocket for Boeing whistleblowers.
Sounds like there are going to be a lot of machines running a fresh install of Linux next year. Microsoft really does ♥️ Linux.
Honestly it's the right call. We're really not worth it.
Except it's actually an "Every language and library that provides this feature" problem because literally no one was aware that this sanitization problem even existed, and Rust is among the first to actually fix it.
The entire problem with cmd.exe was not known and so obviously not documented when the Rust standard library developers were implementing the API, and the same goes for the standard library developers of every other language. Rust was among the first to fix this problem in their API, with many other languages opting to just document the issues instead of actually protecting users from it.
To take all this information and distill it down to trumpeting "Rust has a CVSS level 10 security vulnerability!!" without context is stupidity at best and maliciously disingenuous at worst.
Nitpicking whether the statement can be construed as true within a certain framing just demonstrates malicious intent when the reality is that users of Go, Python, and Java, whose standard libraries have taken a position of Won't Fix, are in a FAR more dangerous position than Rust users who are actually in the safest position of anyone in any language ecosystem besides perhaps Haskell.
Because this is the status of the bug across the standard libraries of various languages, per this article and others:
- Erlang (documentation update)
- Go (documentation update)
- Haskell (patch available)
- Java (won’t fix)
- Node.js (patch will be available)
- PHP (patch will be available)
- Python (documentation update)
- Ruby (documentation update)
Notably C and C++ are missing from this list because their standard libraries don't even offer this capability. Half of these standard libraries are responding to the issue by just warning you about it in the function documentation. Rust is one of the few that actually prevents the attack from happening.
The original BatBadBut bug report used JavaScript to illustrate the vulnerability.