I have a love/hate relationship with Firefox's new TRR (trusted resolver) feature that does it's own DNS. (Link here: https://blog.nightly.mozilla.org/2018/06/01/improving-dns-privacy-in-firefox/)
At home, on my WiFi, I've got awesome control and I really DON'T want Firefox to subvert it. Everywhere else, I love the TRR feature.
Sadly, the folks at Nextcloud don’t understand that owning your data and owning your infrastructure are not the same thing. I love the software and have done for a long time. But they consistently contend (needlessly) that you don’t own your data unless you own the hardware storing it. That’s patently absurd and silly. https://mastodon.xyz/@nextcloud/101329538688124205
I recommend iRedMail to people who want to self-host their email. It handles lots and lots of stuff. DKIM, mailing lists, database-backed addresses and domains, etc. But don’t kid yourself. It’s hard. So many things to manage:
• spam filtering
• email scanning/virus scanning
• a database server
• inbox protocols (e.g. imap and exchange)
• web mail (with a web server)
• TLS (maintaining the certificate and integrating it with all the various services)
• OS-level maintenance/backup, etc.
Rick Factor Authentication
Something that will never give you up
Something that will never let you down
Something that will never run around & desert you
Something that will never make you cry
Something that will never say goodbye
Something that will never tell a lie and hurt you
IDEA ABOUT SOCIAL MEDIA REFUGEES:
We might help these refugees feel more welcome by leveraging the psychology. Comment, boost their stuff for a few weeks, so that the dopamine levels don't drop as low. After a while, ease off and condition them to the calmer way of Mastodon/Pleroma.
This way, their brain might tell them "This is more fun than XYZ" and start recommending!
Oh, man. The 2000s called and they want their integer overflow bugs back.
"unprivileged users with UID > INT_MAX can successfully execute any systemctl command"
When—in 2018—I find a CV written in #LaTeX, I think "here's a geek." Only a PhD considers doing a commercial CV in LaTeX.
This documentary, entitled “How the #Internet Works”, is surprisingly accurate. https://video.twimg.com/ext_tw_video/1068883106126618624/pu/pl/S2Kg9NxpEj57b_lj.m3u8
When I read a report like this on the deceptive design practices, the constant nagging for location access, etc. I sorta shrug. It's obvious to me. But then I have to ask WHY do we allow this? We, who know better, don't advocate on behalf of those who don't know better. How do we fight this business model? How do we fight and prevent this being the norm? https://www.forbrukerradet.no/side/google-manipulates-users-into-constant-tracking
@feld If you're interested in virtualisation and side-channel attacks and all, you're probably interested in Firecracker too. Just announced yesterday: https://aws.amazon.com/blogs/aws/firecracker-lightweight-virtualization-for-serverless-computing/
For those of you interested in #cloud #security, you no longer need to go to the FUD and magic 1U box shows on the US West Coast. #AWS has announced its own security conference "Re:Inforce". First one will be in the end of June 2019 in Boston. https://aws.amazon.com/blogs/security/announcing-the-first-aws-security-conference-aws-reinforce-2019/
If you find an #infosec absolutist who thinks dogmatic things, point them to this twitter exchange between a math prof talking about abstract cylinders in calculus, and a cat food company who has to manufacture cans of cat food and sell them