So I learned of an amusing bug today:
Docker for Windows won't run if you have the Razer Synapse driver management tool running.
But the reason is the funny part...
OpenSSH 8.2 with FIDO/U2F support:
– It adds support for FIDO/U2F hardware authenticators (new public key types "ecdsa-sk" and "ed25519-sk").
– The key signature algorithm "ssh-rsa" was removed due to broken SHA-1.
Thank you to all the #golang core developers for making the language I enjoy the most. Thank you Apache Foundation for all the projects you maintain and develop. Thank you to all the developers working on federated projects and open standards. Thank you to all the free software devs, designers, translators, docs/technical writers, and community managers. Thank you to everyone I forgot who never give up their support for free software.
Thank you @kde for all your work on KDE & Plasma. Thank you @mozilla for Firefox. Thank you to all the kernel hackers for their restless work on the Linux kernel. Thank you to everyone involved working on the GNU tools! Thank you to all the devs working on libraries and the backend, who clearly get to little love!
"This could just be #StormCiara, or the black bin just forced the green bin to perform an execution"
CDPwn – 5 zero-day vulnerabilities in Cisco Discovery Protocol (CDP):
– Different Cisco products are vulnerable to denial of service attacks and remote code execution.
– See also https://kb.cert.org/vuls/id/261385/.
– CVE-2020-3110, CVE-2020-3111, CVE-2020-3118, CVE-2020-3119, CVE-2020-3120.
"Teenagers are using group accounts to flood Instagram with random user data that can't be tied to a single person."
"I love that the younger generation is thinking along these lines, but it bothers me when we have to come up with these strategies to avoid being tracked." — Liz O'Sullivan, technology director, Surveillance Technology Oversight Project
A good step, but "this tool doesn't come close to covering all the ways Facebook collects and monetizes data about you":
EFF has confirmed that the Ring doorbell app on Android covertly shares personally identifiable information on its users with third-party companies, including Facebook. https://www.eff.org/deeplinks/2020/01/ring-doorbell-app-packed-third-party-trackers
We did not suspect that Google is since 2013 not only **a** sponsor, but **the main** sponsor, of the Free Software Foundation Europe @fsfe :
https://fsfe.org/donate/thankgnus-2013.en.html . Thanks for the hint!
This is like if ExxonMobil was financing Greenpeace.
Highly recommended reading if you do Ops or DevOps.
Paraphrasing someone who commented elsewhere:
First I chuckled,
Then I nodded with increasing frequency,
Then I cringed,
Then I wept,
And finally I just dissolved in tears.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!