#introductions Hello Fediverse. My name is Emanuel - i am an 80's computer kid. Worked in IT since the middle of the 1990's, mostly in eCommerce and video games. I have a burning passion for: my family and kids, programming, digital content creation, demoscene (my handle is "tubo") , IT security and privacy protection, system tinkering and hacking, video game system hardware and many things more. Author of the Retrochecker video game collector app ( @retrochecker ) and the HAM GBA devkit.
Microsoft open-sources fuzzing tool it uses in-house to keep Windows so very secure - Erm ... guys ... have you looked at recent patch counts? (We have: you issued 372 this quarter, 54... - https://go.theregister.com/feed/www.theregister.com/2020/09/16/microsoft_open_sources_fuzzing_tool/
The Technical Interview Is an Ego Trip - https://blog.kowsheek.com/the-technical-interview-is-an-ego-trip/
“I never imagined that I would live to see our courts condemn the NSA’s activities as unlawful and in the same ruling credit me for exposing them,” Snowden said in a message posted to Twitter. - https://www.reuters.com/article/us-usa-nsa-spying-idUSKBN25T3CK
A friend of mine who teaches elementary school, taught her class, “don’t yuck my yum”
It was like a class mantra, all the kids knew and understood the phrase. So, if a kid brought a bean burrito for lunch, and another kid said “gross! I hate beans” burrito-kid could just say “don’t yuck my yum”
It became the perfect phrase when one student liked something another student hated it. Quickly, it moved from the tangible (food, smells, textures) to the intangible (music, religion, quality)
By the end of the year “don’t tuck my yum” was woven into the culture of the class. They actually used the phrase LESS by then, because yuckers would check themselves before tearing anyone down.
And that class of second graders moved to third, secure in the knowledge that it’s ok to love the things you love, even if other people don’t.
China now blocking TLS 1.3 say Great-Firewall-watchers - And needs a very blunt instrument to do the job, because the protocol works as planned China is no... - https://go.theregister.com/feed/www.theregister.com/2020/08/11/china_blocking_tls_1_3/
Dear #Mastodon Admins. Whats an efficient strategy to allow new user to register on my instance, but prevent the tons of bots / porn / spammer account requests? Right now, "Approval" is tough for me, as i do not have a lot of time to check, and thus dont' have the confidence that most requested accounts are actually legit people.
Important security update for Keepass is available. Especially if you use Keepass with browser integration, you should get the update immediately. https://forum.kee.pm/t/a-critical-security-update-for-keepassrpc-is-available/3040 and https://hackaday.com/2020/08/07/this-week-in-security-garmin-ransomware-keepass-and-twitter-warnings/ for more details.
Yay! Now with new battery +64GB SD card.
Today, we added a "News" section on infosec-handbook.eu:
We will use this section to discuss recent developments in information security.
Besides, we want to include additional links, information, and comments.
Right now it looks like there are only two options to, say, buy things from an online store:
1. Use an interactive website of that store
2. Use a native app of that store
And option 2 is more intrusive than option 1. But there's a largely overlooked third option:
3. Have a common protocol for all online stores, and use a native online shopping client of your choice.
Public service announcement for my fellow privacy enthusiasts: My searx instance at https://searx.schleuss.online is now upgraded to latest version and now also includes Morty Proxy + page sanitizer, featuring:
- HTML sanitization
- Rewrites HTML/CSS external references to locals
- No Cookies forwarded
- No Referrers
- No Caching/Etag
- Supports GET/POST forms and IFrames
(it ll go private if overloaded/vandalized)
BREAKING: The EU's Court of Justice has just invalidated the "Privacy Shield" data sharing system between the EU and the US, because of overreaching US surveillance. All details available here: http://www.noyb.eu/cjeu
#PRISM #FISA702 #Privacy #PrivacyShield #SCCs #GDPR #CJEU
Oh Cisco, you have been naughty again. CVE 9.8 score, pre auth RCE https://www.bleepingcomputer.com/news/security/cisco-fixes-critical-pre-auth-flaws-allowing-router-takeover/
Passionate computer geek. First 8Bitter in 1986. Grew up hacking game consoles and writing emulators, worked in eCommerce, publishing and video game industries.
This instance has a focus on retro video games and game collector discussion. Please, no #NSFW and other 18+ discussion on this instance. See rules for more details