I hear great things about OrbStack; unfortunately the licensing tied to their free offering doesn't play nicely with corporate environments (and we're cheap!).

I switched to Colima instead and couldn't be happier.

That is shamefully poor security.

It's hard to even call it security - it was just wide open...

I will say though, this kind of thing does wonders for my imposter syndrome.

Yeah this made zero sense to me - I have never seen someone consider POST secure because it can't "be seen".

Security through obscurity and all that...

Is there anyway to secure a POST request at the backend, without client side encryption?

The server processing the POST is still receiving the information posted regardless if the client is HTTPS or not.

Say, you're attempting login, the password is still received by the server and which you do with whatever when processing.

What's not stopping someone from injecting a trace on that receiving function?

In other-words, How would you secure the server processing the POST request information?

You can't. It is just a matter of reducing the risk surface. With a GET someone may add parameters, with a POST they would send the data in the post (which is often the main point of a POST).

Since all typical web servers/processors only loh the call and not the body there is a lesser probability of a leak.

I am writing this as someone who manages cybersecurity and is offering faced with not enough information in investigations because of that. This is also the reason that I used "typical" and "usually" above - it is pretty weird what people send and how they process what they receive.

"Preventing the Collapse of Civilization" by Jonathan Blow comes to mind - https://www.youtube.com/watch?v=ZSRHeXYDLko

A fantastic talk.

Legal aliens absolutely have the same First Amendment rights as citizens.

Right, I guess I'm wrong about this then.

After years of trialling a variety of notebook setups, I eventually fell back to vscode & git. I've even given up on Markdown (nothing wrong with it, I just realised I never actually view my own notes in parsed Markdown so I stopped bothering).

All I need is a file structure that I understand, and an editor for typing and searching :)

Git is great for (i) persistence, (ii) availability and (iii) the merge flow encourages me to review/clean changes before merging them to main.

On that point, I don't think most adults understand the ramifications either!

As someone who's never even seen the term written before, that's exactly how I pronounced it..

yeah like the 'big falcon rocket' -> big fucking rocket

effing go for me too

This is truly music to my ears!

Very similar experience. My instinct would be to fight the sickness and push through, but in reality you need to stop immediately and try again in a few hours. Your tolerance tends to build exponentially!