It is proven! I am calcifer on Keybase: https://keybase.io/calcifer/sigchain#a702c903fbb1f7b53572bd44e1fd89837bbb184853056b08fd9b9ee747a327150f
racism, allyship, white privilege
I found this very useful:
"How to be a good white ally, according to activists
Three experts on what it does and doesn’t mean to be an ally, now and always."
Police shoot pepper bullets at live reporters in Louisville.
Coffee Run - Blender Open Movie https://video.blender.org/videos/watch/ff8fe61b-026f-4f07-b66b-2a790d6f6ab1
MN politics, racism reference
It's an absolute travesty we had to get here. Cops, by all indications, straight up murdering another black man. And then proceeding to gas and pepper spray peaceful protesters. And then acting surprised when those protesters, realizing they'll be punished regardless, felt compelled to riot to make their point.
But the reaction from leaders is at least a silver lining here. They're saying the right things, finally. Here's hoping it turns into meaningful change
Everything is remote at the moment, but both spots can be remote forever
Hey, Veracode is hiring some security engineers; a Senior Security Engineer and a Principal Cloud Security Engineer (AWS mainly). If you're on the hunt, check it out. If you have questions about the org, feel free to ask; I have no worries about honest answers
Sr. Sec Eng: https://www.veracode.com/job-post?gh_jid=4738852002
Principal Cloud Sec Eng: https://www.veracode.com/job-post?gh_jid=4738818002
Is there a CWE for "missed the point of the control entirely"?
LOL of the day: "you have to send us this XML file whose contents match the following MD5 Sum"
Hm, I guess I'll have to figure out where I can safely pad the file to force the collision, right?
No! I can put the given MD5 digest in an <MD5> XML element and it's accepted as valid regardless of the actual file contents!
I would like to introduce everyone who may not already be aware to A Field Guide To Roadside Wildflowers At Full Speed (pdf link)
No Redeeming Social Value
If you do this, it should benefit *me* more than you. I'd bet 98% of JS that pushes to my browser benefits the operator much more than me.
Applied AppSec Research @ Veracode ; I don't speak for them here. Part-time coffee and Arduino nerd. keybase.io/calcifer
A Mastodon instance for info/cyber security-minded people.