AWildBeard boosted

If you have a OnePlus 6T, re-register your fingerprints after the lastest (9.0.2) update, it's much faster!

AWildBeard boosted

If statistics taught me anything, it's that I'm fairly average at pretty much everything. And so is most everyone else.

AWildBeard boosted

Managed switches that use a separately hosted management interface are the devil

USB c cables are great at cutting tape on boxes

@dallas_hackers found out I'm going to be in Austin for a infosec internship. Will Dallas Hackers still be happening the first Wednesday of the summer months? Been wanting to go for the better part of a year since @tinker told me about it at a conference

I have a new phone, so it may be that, but I swear Mastodon and Mastalab are working better than ever now!

AWildBeard boosted

Downgrade attack on TLS 1.3 and vulnerabilities in major TLS libraries:

nccgroup.trust/us/about-us/new

– the attack leverages a side-channel leak via cache access timings (in OpenSSL, Amazon s2n, MbedTLS, Apple CoreTLS, Mozilla NSS, WolfSSL, and GnuTLS)
– it affects all TLS versions, including TLS 1.3
– one requirement for the attack are RSA key exchanges

#tls #rsa #key #exchange #tls13 #downgrade #encryption #https #crypto #infosec #cybersecurity #security

AWildBeard boosted

The hardest part of using PGP, key management, doesn't scale well in large organizations. We solved this problem at First Look Media (where there are over 200 PGP users) with GPG Sync. We maintain a keylist, and everyone subscribes to it, so everyone has the latest public key for everyone else.

I'm excited to announce that we've submitted a draft RFC that will turn GPG Sync into an internet standard!

Check this out: tech.firstlook.media/keylist-r

AWildBeard boosted

Hi
Former #Diaspora user. Hopefuly this thing wont be shut down and lost like the last Diaspora pod I had an account in.
I' m a #Linux user and #OpenSource software fun. I run #Debian on my computers and servers, #GNOME is my DE of choice.
I play #FlightGear #FlightSimulator #Minetest #OpenWorld #VoxelGame and visit #OSGrid #OpenSim OpenSource #SecondLife

My hobbies are #Photography #Cycling and #Gardening

How are you today!?

AWildBeard boosted

I've recently seen plenty of Linux gamers get excited about DXVK and it is an interesting technology. However, you should remember that buying Windows games to play with it doesn't really help Linux gaming. "No Tux No Bux" is still the most reliable way to support the platform and make sure it develops on all levels.

AWildBeard boosted

Pro tip: it's okay to cut toxic assholes out of your project.

No one in the world is so uniquely skilled that someone else can't do the same work, and "but they're working for free" isn't a meaningful argument when there are people desperate to get into open-source coding who'd gladly do the same.

AWildBeard boosted

@rainmaker - @dallas_hackers was pumping wasn’t it! 110 folks showed up. 2 zero days dropped. And a shit ton of great talks.

It was good to see you there!

AWildBeard boosted

Tinkering around with some #malware at a client's today. Something they've been battling with for a while. I was thinking of doing a talk at @dallas_hackers but I think somebody covered almost exactly the same thing last night. PowerShell running PowerShell decoding base64 encoded DLLs and injecting into memory. #infosec

AWildBeard boosted

I reject Facebook as a default information dissemination platform.

AWildBeard boosted

Fun fact: Windows versions went directly from Windows 8 to Windows 10 because when software detects what version of Windows you're running, an awful lot of it uses "Windows 9*" to identify Windows 95/98.

AWildBeard boosted

me, coding in C#: i wont be a real dev until i code in C++

me, coding in C++: i wont be a real dev until i code in C

me, coding in C: i wont be a real dev until i code in assembly

me, coding in assembly: i wont be a real dev until i destroy god & supplant him as creator of all

```git commit --ammend``` is a beautiful thing.

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.