Contents: One (1) Darren @darrenpmeyer@infosec.exchange
- Keybase
- calcifer
Applied AppSec Research @ Veracode ; I don't speak for them here. Part-time coffee and Arduino nerd. keybase.io/calcifer
Joined May 2018
Pinned toot
It is proven! I am calcifer on Keybase: https://keybase.io/calcifer/sigchain#a702c903fbb1f7b53572bd44e1fd89837bbb184853056b08fd9b9ee747a327150f
Contents: One (1) Darren
boosted
racism, allyship, white privilege
I found this very useful:
https://www.vox.com/2020/6/2/21278123/being-an-ally-racism-george-floyd-protests-white-people
"How to be a good white ally, according to activists
Three experts on what it does and doesn’t mean to be an ally, now and always."
Contents: One (1) Darren
boosted
police violence
Police shoot pepper bullets at live reporters in Louisville.
https://tuckbot.tv/#/watch/gt69qe
Contents: One (1) Darren
boosted
Coffee Run - Blender Open Movie https://video.blender.org/videos/watch/ff8fe61b-026f-4f07-b66b-2a790d6f6ab1
Contents: One (1) Darren
boosted
MN politics, racism reference
It's an absolute travesty we had to get here. Cops, by all indications, straight up murdering another black man. And then proceeding to gas and pepper spray peaceful protesters. And then acting surprised when those protesters, realizing they'll be punished regardless, felt compelled to riot to make their point.
But the reaction from leaders is at least a silver lining here. They're saying the right things, finally. Here's hoping it turns into meaningful change
Everything is remote at the moment, but both spots can be remote forever
Hey, Veracode is hiring some security engineers; a Senior Security Engineer and a Principal Cloud Security Engineer (AWS mainly). If you're on the hunt, check it out. If you have questions about the org, feel free to ask; I have no worries about honest answers
Sr. Sec Eng: https://www.veracode.com/job-post?gh_jid=4738852002
Principal Cloud Sec Eng: https://www.veracode.com/job-post?gh_jid=4738818002
Contents: One (1) Darren
boosted
Imagine having an ego so fragile that having to wear a mask in public breaks you.
Is there a CWE for "missed the point of the control entirely"?
LOL of the day: "you have to send us this XML file whose contents match the following MD5 Sum"
Hm, I guess I'll have to figure out where I can safely pad the file to force the collision, right?
No! I can put the given MD5 digest in an <MD5> XML element and it's accepted as valid regardless of the actual file contents!
Today's accomplishement: unattended Okta login using stored creds and TOTP secret. So many things I can automate now!
Contents: One (1) Darren
boosted
Boost if you also use the face mask as a privacy protection tool against security cameras 🕶️ 😷 (as well as for the obvious health responsibility reasons)
This may be the best food review ever (for a plant based chicken nugget substitute)
I may be in the minority here, but I'm actually happy that so many conferences will be virtual this year. I wish it didn't have to come at the cost of people who like in-person stuff missing out, but I hope the experiment leads to more deliberately-virtual cons
Contents: One (1) Darren
boosted
I would like to introduce everyone who may not already be aware to A Field Guide To Roadside Wildflowers At Full Speed (pdf link)
Contents: One (1) Darren
boosted
No Redeeming Social Value
https://en.wikipedia.org/wiki/No_Redeeming_Social_Value
I have my technical gripes about JavaScript, but my main complaint in practice is social: when you put JavaScript on your page, you're passing a cost (in the form of compute power, which is wear and energy use) to me
If you do this, it should benefit *me* more than you. I'd bet 98% of JS that pushes to my browser benefits the operator much more than me.
- Keybase
- calcifer
Applied AppSec Research @ Veracode ; I don't speak for them here. Part-time coffee and Arduino nerd. keybase.io/calcifer
Joined May 2018
