#defcon28 has entered Safe Mode.
The #DEFCONiscanceled meme has crossed over into real life, courtesy of #COVID19. In early March we had hopes that things would be stable by August. That is no longer realistic.
Riot Web/Desktop 1.6 + RiotX Android 0.19 + Riot iOS 0.11 IS HERE!!! E2E Encryption by default, Cross-signing & QR-codes for Device Verification, All New E2EE UI/UX + SO MUCH MORE making this our biggest release EVER! E2E will never be the same again 🎉🚀🍾https://blog.riot.im/e2e-encryption-by-default-cross-signing-is-here/
My state is being itself again. I wish it wouldn’t, for once, be the class clown. This is awful. https://twitter.com/travisakers/status/1251260796476305409
ATTENTION TESTERS! We're in the final phase of E2EE-by-default in Riot 1.6 & just cut our 2nd release candidate! Please help test cross-signing @ https://riot.im/staging + RiotX https://buildkite.com/organizations/matrix-dot-org/pipelines/riotx-android/builds/2395/jobs/46abcbac-5745-4e81-b859-5d9b1faead17/artifacts/c4d7c0d5-8367-442f-9f21-1ea21a438151 and test E2EE search in Desktop Nightly https://packages.riot.im/nightly/install/. Thanks!⏲💣🎉
Most of my friends are all over the world, and we hang out the same way we always have.
20 years ago we built an online place for all the misfit toys.
The curious are always welcome at any skill level.
What could possibly go wrong? https://twitter.com/afp/status/1246003254825279488
CDC: to avoid the spread of the coronavirus, self-isolate and stay indoors, avoiding other people
Programmer: I’ve been preparing for this my whole life
*slaps roof of legacy environment*
"You can fit so many attackers in this bad boy."
Jfc, can you please STOP SHAMING WORKERS WHO SHARE THEIR SALARIES? Salary transparency is GOOD for us and BAD for those who control the means of production.
This is why we don't trust closed source crypto. Everything seems fine until one day you realize it's been a multi-decade "security theater" show... https://twitter.com/washingtonpost/status/1227310071782178816
Most major holders of data or other digital assets wildly under-invest in security.
Very few companies employ teams of engineers with published security research, CVEs, etc. Most are not hiring for them and lack even one.
You can use this as an indicator for survivors bias.
Unpopular opinion: It is negligent to allow users to sign up with vulnerable 2FA methods like, OTP, TOTP, or SMS.
Service providers that don't force use of U2F/WebAuthn, even software emulated, should be partially liable for phishing attacks.
And QR code verification with RiotX!! 🎉 @RiotChat@twitter.com #fosdem
Exciting to see #E2EE for Matrix is enabled by default! (developer version only so far)
They seem to have really thought a lot about how this will avoid issues seen in other protocols.
Multi-device cross-signing, searching, better ux, bots, scaling, etc.
Frantic final preparations for #FOSDEM demos are under way... if you want to see the grand reveal for cross-signing, QR verification and enabling E2EE by default, head to K-building auditorium at 4pm on Sunday!
@IanColdwater@twitter.com @TinkerFairy_Net@twitter.com @firstname.lastname@example.org @MayaKaczorowski@twitter.com @TabbySable@twitter.com @email@example.com I think this is the kubecon workshop you're referencing, yeah?
I'm trying to organize a CTF using this in the SF Bay area.
if anyone's interested, ping me :)
This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!