X_Cli @x_cli@infosec.exchange

The contribution to @mobilizon is amazing! They need 8k€ for the last step and 25 days remain. I do trust this project and thanks to @Framasoft for moving edges for our privacy!

If you want to contribute:
https://joinmobilizon.org/en/

"How many TOTP secrets can be stored on YubiKeys and Nitrokeys?":

– Nitrokeys: up to 16
– YubiKeys: up to 32

(Values may differ due to different firmware, or hardware variants.)

In both cases, you need additional software to use TOTP since these tokens don't come with their own internal clock. A clock would require an energy source, but these tokens don't contain batteries.

#securitytoken #yubikey #nitrokey #gpg #pgp

Just to remind my IT affine bubble:

Plan for your death; what passwords should be able to be accessed after your death, which mustn't?
Share a database with the current ones and maybe a splitted password with the right people .

Make contact lists, if your phone is locked

[Appel à la communauté]
On a besoin d'aide pour faire connaître notre projet #Mobilizon. En gros, si vous trouvez que ce n'est pas génial d'utiliser Facebook ou Meetup pour vous rassembler, vous organiser et vous mobiliser, aidez-nous à faire connaître ce projet.

Vous connaissez des personnes susceptibles d'être intéressées (manifestant⋅es, militant⋅es, activistes, etc.) ??? Partagez auprès d'elles ces informations ! On vous remercie beaucoup fort ❤️

➡️ https://joinmobilizon.org/fr/

"""
So npm Inc is a private entity in control of our commons, and we are not. Does that make it evil? No. It doesn’t. It doesn’t make it good, either.

The question of its benevolence is the wrong question to ask.

npm is not a benevolent institution. It CANNOT be one.

The possibility of it being that ended the day its owner took VC funding instead of putting it into a foundation or some other form of community ownership. That decision turned npm into a financial instrument.
"""

#Snapchat Employees Abused Data Access to Spy on Users.
Multiple sources and emails also describe #SnapLion, an internal tool used by various departments to access Snapchat user data.
https://www.vice.com/en_us/article/xwnva7/snapchat-employees-abused-data-access-spy-on-users-snaplion

"WhatsApp was hacked and attackers installed spyware on people’s phones" - https://www.businessinsider.com/whatsapp-hacked-attackers-installed-spyware-2019-5 #Privacy #Security #WhatsApp

RT @Slatefr@twitter.com

Tchap n'est pas la messagerie «sécurisée» que vante le gouvernement ➡via @koriifr@twitter.com https://korii.slate.fr/tech/couacs-failles-deboires-tchap-messagerie-securisee-gouvernement-francais-telegram-riot-cybersecurite?utm_medium=Social&utm_source=Twitter#Echobox=1557205833

🐦🔗: https://twitter.com/Slatefr/status/1125642439824498690

#humor #backdoor Defense in depth

La France est arrivée à la première place de l’édition 2019 du plus grand exercice international de cyberdéfense en situation réelle, Locked Shields, organisé par le NATO Cooperative Cyber Defence Centre of Excellence de Tallinn. La République tchèque et la Suède complètent le podium.
https://www.ssi.gouv.fr/publication/la-france-remporte-lexercice-international-de-cyberdefense-locked-shields-2019/

My post on implementing search and comments in a blog built by a static site generator is up. #Hugo

https://palant.de/2019/04/04/switching-my-blog-to-a-static-site-generator/

You can add your WordPress site to the Fediverse by installing an ActivityPub plugin.

This lets anyone on Mastodon etc follow your site, comment on posts and share them on the Fediverse.

There are two WordPress ActivityPub plugins available right now:

Pterotype
https://getpterotype.com/
@jdormit

AP for WordPress
https://wordpress.org/plugins/activitypub/
@pfefferle

An example of a WordPress site using Pterotype is WeDistribute:
@blog

#Fediverse #ActivityPub #Blogs