bcl @bcl@infosec.exchange
bcl
boosted
Whoa, it looks like Linux Journal is back (again again):
bcl
boosted
Our Director of Community Operations is leaving us to be the Interim General Manager at the Open Source Initiative. We'll miss her, but wish her luck in the new role! https://sfconservancy.org/news/2020/aug/20/debleaving/
bcl
boosted
Michael W Lucas
Writers! Artists! Creative sorts!
I write books to pay the mortgage. You can do the same with your art.
Here's the book on how I do it.
Using tmux and urxvt? Tired of double click including the tmux bar in the selection? Add this to your .Xresources:
URxvt*cutchars: │
bcl
boosted
Secure squirrels insist on truly random seeds
bcl
boosted
162,000 residents and visitors of South Korea have used its quarantine app, which is required by law—and had a security vulnerability allowing the theft of people's names and real-time locations. https://www.nytimes.com/2020/07/21/technology/korea-coronavirus-app-security.html
bcl
boosted
The total donations from #OpenBSD community has reached Platinum for the OpenBSD Foundations 2020 Fundraising Campaign! 
John Carmack also made a Silver contribution! 
So far only $44,000 has been raised of the $300,000 goal.
https://github.com/bob-beck/foundation-web/commit/6ba5c9856998eac1cf6ffafeac50453ba0715610
bcl
boosted
During this pandemic it is more important than ever to be able to speak out and share information online, but Egypt's government is retaliating against journalists who report on COVID, and arresting others for seeking information about prison conditions https://www.eff.org/deeplinks/2020/06/egypts-crackdown-free-expression-will-cost-lives
“Enhance your calm”
bcl
boosted
Starting with Chrome 80, its sync functionality will encrypt your data properly - as long as you set a passphrase. This still isn't the default however.
Firefox Sync design has been better from the start. No progress here unfortunately. #crypto #appsec
https://palant.info/2018/03/13/can-chrome-sync-or-firefox-sync-be-trusted-with-sensitive-data/
bcl
boosted
Oh my, this is rather bad. Now I'm busy figuring out whether I use GnuTLS anywere...
bcl
boosted
Telegram has some nice client software and services, but I wouldn't use it if I were you.
"The default messages and media use client-server encryption during transit. This data is also encrypted at rest, but can be accessed by Telegram developers, who hold the encryption keys."
bcl
boosted
🎉 Time to update: Tor Browser 9.5 is out now.
This Tor Browser release is focused on helping you understand and use onion services.
bcl
boosted
When ISPs or governments block access to Tor, our users rely on bridges to connect. With BridgeDB, we tackle the problem of how to get bridges to censored users while making it difficult for censors to get all bridges.
BridgeDB version 0.10.1 is out now: https://blog.torproject.org/new-release-bridgedb-010-1
bcl
boosted
Trump's Executive Order will force hosts of our online speech to toe the government line. This is an assault on free expression: https://www.nydailynews.com/opinion/ny-oped-the-president-vs-internet-freedom-20200528-sh4m5legjjf4xivdztfvdl2xwq-story.html
bcl
boosted
Every time I see people complaining about GitHub being down and they not being able to get work done or deploy I feel like giving a talk (and putting it on YT) - without any irony or sarcasm - „this is how diff - email - patch“ works.
Most people are using a DECENTRALISED version control system but never had to use or understand the first word. We are missing out on a powerful feature because we centralised on a platform :(
When chmodding /dev/ nodes using readlink always remember to use -n!
