RT @kari_paul@twitter.activitypub.actor
today in sharing economy struggles: our app powered car rental lost cell service on the side of a mountain in rural California and now I live here I guess

Excited to give this #DarknetDiaries episode a listen. Gary De Mercurio and Justin Wynn tell their side of the story.

Darknet Diaries - Ep 59: The Courthouse

RT @Foone@twitter.com

So I learned of an amusing bug today:

Docker for Windows won't run if you have the Razer Synapse driver management tool running.

But the reason is the funny part...

πŸ¦πŸ”—: twitter.com/Foone/status/12296

Lies in IT:
β€’ Simple Mail Transfer Protocol
β€’ Trivial File Transfer Protocol
β€’ Portable Document Format

OpenSSH 8.2 with FIDO/U2F support:


– It adds support for FIDO/U2F hardware authenticators (new public key types "ecdsa-sk" and "ed25519-sk").
– The key signature algorithm "ssh-rsa" was removed due to broken SHA-1.

#openssh #fido #u2f #2fa #infosec #security #cybersecurity

Thank you to all the #golang core developers for making the language I enjoy the most. Thank you Apache Foundation for all the projects you maintain and develop. Thank you to all the developers working on federated projects and open standards. Thank you to all the free software devs, designers, translators, docs/technical writers, and community managers. Thank you to everyone I forgot who never give up their support for free software.


Thank you @kde for all your work on KDE & Plasma. Thank you @mozilla for Firefox. Thank you to all the kernel hackers for their restless work on the Linux kernel. Thank you to everyone involved working on the GNU tools! Thank you to all the devs working on libraries and the backend, who clearly get to little love!


Easy to use, end-to-end encrypted, peer-to-peer, zero knowledge free/open everyday tools are a prerequisite for human rights and democracy in the digital network age.

We don’t have them.

They should be the norm.

We have a lot of work to do.



CDPwn – 5 zero-day vulnerabilities in Cisco Discovery Protocol (CDP):


– Different Cisco products are vulnerable to denial of service attacks and remote code execution.
– See also kb.cert.org/vuls/id/261385/.
– CVE-2020-3110, CVE-2020-3111, CVE-2020-3118, CVE-2020-3119, CVE-2020-3120.

#cisco #cdp #zeroday #0day #vulnerability #infosec #security #cybersecurity

"Teenagers are using group accounts to flood Instagram with random user data that can't be tied to a single person."

"I love that the younger generation is thinking along these lines, but it bothers me when we have to come up with these strategies to avoid being tracked." β€” Liz O'Sullivan, technology director, Surveillance Technology Oversight Project


re: facebook 

EFF has confirmed that the Ring doorbell app on Android covertly shares personally identifiable information on its users with third-party companies, including Facebook. eff.org/deeplinks/2020/01/ring

@aral @xerz

We did not suspect that Google is since 2013 not only **a** sponsor, but **the main** sponsor, of the Free Software Foundation Europe @fsfe :
fsfe.org/donate/thankgnus-2013 . Thanks for the hint!

This is like if ExxonMobil was financing Greenpeace.

Just like for the SFC @conservancy above, we removed the #FSFE from the white paper.


Highly recommended reading if you do Ops or DevOps.
Paraphrasing someone who commented elsewhere:
First I chuckled,
Then I nodded with increasing frequency,
Then I cringed,
Then I wept,
And finally I just dissolved in tears.

Ouch! I'm in this [picture] and I don't like it!
#DevOps and a bit of #infosec.

Show more
Mastodon for Tech Folks

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!