This has been exploited in practice by Bitcoin thieves. They replaced the cold-wallet address in a hacked server so that BTC got redirected to them, and they vanity-generated their addr to match the first and last chars of the original and this successfully fooled the victims.
Citizens of infosec.exchange: i will very likely be migrating to a new server this weekend. Several things to note:
1. The new server does not have an IPv6 address. Apparently there is a shortage of IPv6 addresses and hosting providers are rationing them.
2. I will be applying the glitch.social mods, which will provide longer toot length, among other enhancements.
3. The new server uses NVMe SSD’s, which I’ve been told are so fast that you may get toots even before you’ve asked for them.
@jerry @smays there is a cool podcast about the machine that generates the sitcom laughs: https://99percentinvisible.org/episode/the-laff-box/
I read a bit about #PrimeNumbers yesterday, as I've always had a fondness for primes. I use them a lot in config settings for servers, as when you get weird timeouts, it's usually very obvious from a multiple of a given prime which timeout is being hit.
Forgot your #instagram password? You just had to use their GDPR export tool to get it in plain text https://www.theverge.com/2018/11/17/18100235/instagram-security-bug-exposed-user-passwords-data-download-tool
Anyone running their mastodon instance using a cloud hosting object storage service (s3, etc)? I am in awe at how fast the storage needs of infosec.exchange are growing. #mastoadmins
Well written @wired piece about the real risks of using free wifi nowadays
TL;DR: If you're you're no high-value target you're probably safe as most (commonly used) websites are served over HTTPS.
Japan cyber security minister admits he has never used a computer. More secure than any of us!
Old MacDonald had a CPU instruction set, https://www.ibm.com/support/knowledgecenter/en/ssw_aix_71/com.ibm.aix.alangref/idalangref_eieio_instrs.htm