Show more
Dennis boosted
Dennis boosted

The greatest trick the devil ever pulled is how JavaScript got 100x more complex from 2009 to 2019 and yet web apps look exactly the same, except that they’re often slower now.

Dennis boosted

Follow-up on tool that extracts GPG secret keys of Nitrokey Start tokens:

github.com/Nitrokey/nitrokey-s

github.com/Nitrokey/nitrokey-s

– obviously, the Nitrokey Start wasn't protected
– owners should update their firmware to release RTM.7 or above

Original toot: mastodon.at/@infosechandbook/1

#gpg #nitrokey #infosec #cybersecurity #security

Well researched New York Times article on how the food we eat impacts climate change and what are the better options.

nytimes.com/interactive/2019/0

Dennis boosted

It does prove the usefulness of #federation that through all the #Matrix outage, my account was not affected at all. Most of the people I chat to are on other servers than the one affected.

Federate <3

Dennis boosted
Dennis boosted
Dennis boosted

Matrix.org publishes timeline after security breach:

matrix.org/blog/2019/04/11/sec

– the attacker exploited vulnerabilities in Jenkins
– the attacker had full database access, including access to unencrypted content like private messages, passwords hashes, access tokens
– Matrix.org recommends changing your password (including NickServ password)

#matrix #breach #infosec #cybersecurity #security

Dennis boosted
Dennis boosted
Dennis boosted

Oh my goodness I've just learned a thing about The Matrix that causes it to make a lot more sense: In the original script the humans were used as neural network compute clusters by the Machines and as a crucial component of The Matrix itself.

Which is why humans who were aware of the simulation could control aspects of The Matrix - their minds were part of its foundation.

Unfortunately the test audiences had trouble understanding this concept so the studio changed the human role to "batteries".

Dennis boosted

Looks like 0-RTT in TLS1.3 comes with a quite high price: Vulnerability to replay attacks.

If you are one of the early adopter, check that your application is not affected as this is a fundamental problem on protocol level.

"What Application Developers Need To Know About TLS Early Data (0RTT)" by Paul Kehrer:

blog.trailofbits.com/2019/03/2

#TLS #TLS13 #infosec #security #HTTPS #0RTT

Dennis boosted
Dennis boosted

hey so!!! are you asking a specific question online and not getting any help?

make a second account and answer your own question incorrectly

people will be piling on to correct you with specific explanations within an hour

it works literally every time ive been doing it for years

Dennis boosted
Dennis boosted
Dennis boosted
Dennis boosted

Every flat-panel display should come with a built in leveler.

Dennis boosted
Show more
social.bankmann.name

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!