Good advice

Lithuania says throw away Chinese phones due to censorship concerns

Lithuania's Defense Ministry recommended that consumers avoid buying Chinese mobile phones and advised people to throw away the ones they have now after a government report found the devices had built-in censorship capabilities.

reuters.com/business/media-tel

It finally arrived! I backed the Kickstarter last year and have been eagerly awaiting it ever since. 🧙‍♂️

Maybe I am actually just a bot? 🤔

Maybe You Missed It, but the Internet ‘Died’ Five Years Ago

A conspiracy theory spreading online says the whole internet is now fake. It’s ridiculous, but possibly not that ridiculous?

theatlantic.com/technology/arc

Just what Linux doesn't need... another DE to fragment usage even more. I love me some Linux, but making what we have already even better is the way to win.

CuteFish Desktop on Ubuntu? This New Distro Offers It - OMG! Ubuntu!

This new Ubuntu-based Linux distro comes with the CuteFish desktop environment preinstalled. It's a great way to try CuteFish out first-hand and up close!

omgubuntu.co.uk/2021/08/cutefi

~Open Source Security Tool of the Day~

GoKart - Go Security Static Analysis

GoKart is a static analysis tool for Go that finds vulnerabilities using the SSA (single static assignment) form of Go source code. It is capable of tracing the source of variables and function arguments to determine whether input sources are safe, which reduces the number of false positives compared to other Go security scanners.

github.com/praetorian-inc/goka

If you can't find your favorite Windows Subsystem for Linux distribution available in the Microsoft Store, a new program called EasyWSL can convert almost any Linux Docker image into a WSL distro.
EasyWSL turns Linux docker images into a Windows 10 WSL distro.

bleepingcomputer.com/news/micr

Looking forward to giving this release a try. I am interested in the Flatpack and Portals implementation.

elementary OS 6 Odin Available Now

It’s finally here, and it’s the biggest update to the platform yet

blog.elementary.io/elementary-

~Open Source Security Tool of the Day~

Sengrep

Lightweight static analysis for many languages.
Find bugs and enforce code standards. Semgrep is a fast, open-source, static analysis tool for finding bugs and enforcing code standards at editor, commit, and CI time.

Semgrep analyzes code locally on your computer or in your build environment: **code is never uploaded**.

github.com/returntocorp/semgre

Hello Karma, it's good to see you at work again.

Rightwing radio host and anti-vaxxer dies of Covid

Dick Farrel was a vociferous critic of Dr Anthony Fauci and urged people not to get vaccinated

theguardian.com/us-news/2021/a

I'm hiring at least 4 application security engineers. You a decent , know your way around Ghidra or IDA, programmer who groks security stuff, or OS expert? Wanna break security software? Want your findings to actually get fixed? This could be your thing, DM me!

Fully remote-first, distributed team and company, solid comp and benefits

I just bought this awesome device and am really enjoying it.

Kobo Elipsa review: A power user’s e-reader that’s unlike any other

Kobo’s new e-reader is one of the best note-taking devices on the market, period.

inputmag.com/reviews/kobo-elip

CalyxOS minimizes the tracking, surveillance, and spying done by phone manufacturers, mobile phone service providers, internet service providers, advertising companies, data miners, and malicious hackers. The operating system is designed to ensure maximum usability and flexibility, so that you have an array of choices available to ensure your privacy and security.

calyxos.org/

What could possibly go wrong? 🤷‍♂️

Apple Reportedly Working on Problematic iOS Tool to Scan for Child Abuse Photos on iPhones

This tech might help in cracking down on child pornography, but it can also be misused.

gizmodo.com/apple-reportedly-w

How to improve your Docker containers security - [cheat sheet]

Containers are no security devices. That's why we've curated a set of easily actionable recommendations to improve your Docker containers security. Check out the one-page cheat sheet.

blog.gitguardian.com/how-to-im

GoAccess is an open source real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.

It provides fast and valuable HTTP statistics for system administrators that require a visual server report on the fly.

goaccess.io/

Watched Alien again and now all I want to do is make props and models and 8-bit animations for CRTs. Like for the next several decades at least.

~Open Source Security Tool of the Day~

Crossfeed is a tool that continuously enumerates and monitors an organization's public-facing attack surface in order to discover assets and flag potential security flaws. By operating in either passive or active scanning modes, Crossfeed collects data from a variety of open source tools and data feeds to provide actionable information about organization assets.

github.com/cisagov/crossfeed

Run QEMU Android x86 and Android ARM in Docker. X11 Forwarding, WebCam and audio forwarding, and more.

github.com/sickcodes/dock-droi

Show older

Scott Mortimer's choices:

Infosec Exchange

A Mastodon instance for info/cyber security-minded people.