2024-03-31

RT fr0gger:

🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)!

I hope it helps to make sense of the information out there. Please treat the information “as is” while the analysis progresses! 🧐 #infosec #xz


13:14 [/mastodon]

RT fr0gger:

🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)!

I hope it helps to make sense of the information out there. Please treat the information “as is” while the analysis progresses! 🧐 #infosec #xz


13:14 [/bb-atom]

RT tyx:

I’ve found the best #meme about #xz #backdoor.


13:06 [/mastodon]

RT tyx:

I’ve found the best #meme about #xz #backdoor.


13:06 [/bb-atom]

2024-03-30

RT bontchev:

So, kids, what’s the moral of the XZ story?

If you’re going to backdoor something, make sure that your changes don’t impact its performance. Nobody cares about security - but if your backdoor makes the thing half a second slower, some nerd is going to dig it up.

19:56 [/mastodon]

RT bontchev:

So, kids, what’s the moral of the XZ story?

If you’re going to backdoor something, make sure that your changes don’t impact its performance. Nobody cares about security - but if your backdoor makes the thing half a second slower, some nerd is going to dig it up.

19:56 [/bb-atom]

RT SecureOwl:

people are saying the xz backdoor is likely the work of a nation state actor, and given that it appears to been slow rolled for a couple of years and immediately became obsolete before it was fully launched - you do have to admit it bears the hallmarks of a government IT project

11:36 [/mastodon]

RT SecureOwl:

people are saying the xz backdoor is likely the work of a nation state actor, and given that it appears to been slow rolled for a couple of years and immediately became obsolete before it was fully launched - you do have to admit it bears the hallmarks of a government IT project

11:36 [/bb-atom]

RT tpolecat:

Raise your hand if you ever made a paper snake out of tear-off tractor-feed margins.


11:02 [/bb-atom]

RT tpolecat:

Raise your hand if you ever made a paper snake out of tear-off tractor-feed margins.


11:02 [/mastodon]

RT delroth:

xz-utils was backdoored by its upstream. Tracked as CVE-2024-3094 and thoroughly documented by vuln discoverer Andres Freund on oss-security@: openwall.com/lists/oss-securit

10:46 [/mastodon]

RT delroth:

xz-utils was backdoored by its upstream. Tracked as CVE-2024-3094 and thoroughly documented by vuln discoverer Andres Freund on oss-security@: openwall.com/lists/oss-securit

10:46 [/bb-atom]

2024-03-28

Antwort auf @simon

@simon import textwrap
Batteries included, remember? :-)

10:19 [/bb-atom]

Antwort auf @simon

@simon import textwrap
Batteries included, remember? :-)

10:19 [/mastodon]

2024-03-27

2024-03-25

RT joebeone:

This deepfake cryptography cipher suite tier debate between Trump, Obama, and Biden is totally NSFW and totally genius. Laughed. so. freaking. hard. securitycryptographywhatever.c

00:01 [/bb-atom]

RT joebeone:

This deepfake cryptography cipher suite tier debate between Trump, Obama, and Biden is totally NSFW and totally genius. Laughed. so. freaking. hard. securitycryptographywhatever.c

00:01 [/mastodon]

2024-03-24

RT jfmblinux:

#Google announced that starting in June 2024, ad blockers such as uBlock Origin #uBO will be disabled in Chrome 127 and later with the rollout of Manifest V3 (#Mv3).

#ManifestV3 is deceitful and threatening to your privacy, and now is a good time to switch to #Firefox (@Mozilla@mamot.fr) (@mozilla@mozilla.social ) and/or #TorBrowser if you haven’t done so already!

| ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄|
| Install  |
| firefox  |
|__________|
(\__/) ||
(•ㅅ•) ||
/   づ

00:43 [/mastodon]

RT jfmblinux:

#Google announced that starting in June 2024, ad blockers such as uBlock Origin #uBO will be disabled in Chrome 127 and later with the rollout of Manifest V3 (#Mv3).

#ManifestV3 is deceitful and threatening to your privacy, and now is a good time to switch to #Firefox (@Mozilla@mamot.fr) (@mozilla@mozilla.social ) and/or #TorBrowser if you haven’t done so already!

| ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄|
| Install  |
| firefox  |
|__________|
(\__/) ||
(•ㅅ•) ||
/   づ

00:43 [/bb-atom]

2024-03-22

RT bagder:

The value of OSS today?

“from $1.22 billion to $6.22 billion if we were to decide as a society to recreate all widely used OSS on the supply side”

“from $2.59 trillion to $13.18 trillion, if each firm who used an OSS package had to recreate it from scratch”

“5% of programmers are responsible for more than 90% of the value created on the supply- and demand- side”

The report: papers.ssrn.com/sol3/papers.cf

00:28 [/mastodon]

RT bagder:

The value of OSS today?

“from $1.22 billion to $6.22 billion if we were to decide as a society to recreate all widely used OSS on the supply side”

“from $2.59 trillion to $13.18 trillion, if each firm who used an OSS package had to recreate it from scratch”

“5% of programmers are responsible for more than 90% of the value created on the supply- and demand- side”

The report: papers.ssrn.com/sol3/papers.cf

00:28 [/bb-atom]

2024-03-21

Antwort auf @karlauerbach

@karlauerbach Rewrite using async/await?

00:39 [/mastodon]

Antwort auf @karlauerbach

@karlauerbach Rewrite using async/await?

00:39 [/bb-atom]

2024-03-20

Antwort auf @chm

@chm OK, danke!

17:29 [/bb-atom]

Antwort auf @chm

@chm OK, danke!

17:29 [/mastodon]

@chm Gibt es eine Möglichkeit, zu steuern, welche Posts in meinem RSS-Feed erscheinen? Ich sehe nur Original-Toots, nicht aber Replies und Boosts.

16:15 [/mastodon]

@chm Gibt es eine Möglichkeit, zu steuern, welche Posts in meinem RSS-Feed erscheinen? Ich sehe nur Original-Toots, nicht aber Replies und Boosts.

16:15 [/bb-atom]

Antwort auf @johnmacintosh

@johnmacintosh That’s exactly what I wrote my first BASIC programs on!

13:21 [/mastodon]

Antwort auf @johnmacintosh

@johnmacintosh That’s exactly what I wrote my first BASIC programs on!

13:21 [/bb-atom]

2024-03-18

2024-03-16

Für Kurzentschlossene: Morgen ist Velobörse in Lyss:


00:46 [/bb-atom]

Für Kurzentschlossene: Morgen ist Velobörse in Lyss:


00:46 [/mastodon]

2024-03-15

Antwort auf @thomasweibel

@thomasweibel Ist in Europa nicht am 22/7? 😆

23:35 [/bb-atom]

Antwort auf @thomasweibel

@thomasweibel Ist in Europa nicht am 22/7? 😆

23:35 [/mastodon]

2024-03-14

RT _benui:

✨ new tech bingo ✨


23:48 [/bb-atom]

RT _benui:

✨ new tech bingo ✨

original

23:48 [/mastodon]

RT onthisday:

Today in 1994, 30 years ago: version 1.0.0 of the Linux kernel is published.

#OnThisDay

23:46 [/mastodon]

RT onthisday:

Today in 1994, 30 years ago: version 1.0.0 of the Linux kernel is published.

#OnThisDay

23:46 [/bb-atom]

RT juglugs:

You don’t become cooler with age, but you do care progressively less about being cool, which is the only true way of being cool. This is called the Geezer’s Paradox

19:47 [/bb-atom]

RT juglugs:

You don’t become cooler with age, but you do care progressively less about being cool, which is the only true way of being cool. This is called the Geezer’s Paradox

19:47 [/mastodon]

RT adfichter:

Die parlamentarische Anfrage des Grünen-Nationalrats Gerhard Andrey an den Bundesrat zur #Kabelaufklärung. 💥 💥 Da sind wir mal gespannt.

parlament.ch/de/ratsbetrieb/su

original

13:59 [/mastodon]

RT adfichter:

Die parlamentarische Anfrage des Grünen-Nationalrats Gerhard Andrey an den Bundesrat zur #Kabelaufklärung. 💥 💥 Da sind wir mal gespannt.

parlament.ch/de/ratsbetrieb/su


13:59 [/bb-atom]

2024-03-13

Antwort auf @bagder

@bagder Thanks!

18:27 [/bb-atom]

Antwort auf @bagder

@bagder Thanks!

18:27 [/mastodon]

Antwort auf @bagder

@bagder This page seems to be missing some markup in the first paragraph of the „Variables“ section.

11:33 [/bb-atom]

Antwort auf @bagder

@bagder This page seems to be missing some markup in the first paragraph of the „Variables“ section.

11:33 [/mastodon]

2024-03-11

RT i0null:

“Once men turned their thinking over to machines in the hope that this would set them free. But that only permitted other men with machines to enslave them.”

- Frank Herbert, Dune (1965)


10:31 [/bb-atom]

RT i0null:

“Once men turned their thinking over to machines in the hope that this would set them free. But that only permitted other men with machines to enslave them.”

- Frank Herbert, Dune (1965)

original

10:31 [/mastodon]

2024-03-06

@pgs@troet.cafe 10000?

22:34 [/mastodon]

@pgs@troet.cafe 10000?

22:34 [/bb-atom]

RT johnmacintosh:

Out of sync…🤭


22:33 [/bb-atom]

RT johnmacintosh:

Out of sync…🤭


22:33 [/mastodon]

2024-03-04

RT valentin:

Today is my 10 year anniversary at Mozilla. 🎉

valentin.gosu.se/blog/2024/03/

23:41 [/mastodon]

RT valentin:

Today is my 10 year anniversary at Mozilla. 🎉

valentin.gosu.se/blog/2024/03/

23:41 [/bb-atom]

RT timbray:

Every time I go to the music store I end up taking a variation on this picture because they’re just so pretty.

#photography

original

11:32 [/mastodon]

RT timbray:

Every time I go to the music store I end up taking a variation on this picture because they’re just so pretty.

#photography


11:32 [/bb-atom]

2024-03-03

RT chrisphin:

I had no idea you could play an accordion like this. 😲 The rendition is so COMPLETE! youtu.be/ES3sbXY4gPk

10:43 [/mastodon]

RT chrisphin:

I had no idea you could play an accordion like this. 😲 The rendition is so COMPLETE! youtu.be/ES3sbXY4gPk

10:43 [/bb-atom]

RT estherschindler:

Communications of the ACM (CACM) is now a fully Open Access publication. This means that more than six decades of CACM’s renowned research articles, seminal papers, technical reports, commentaries, real-world practice, and news articles are now open to everyone, regardless of whether they are members of ACM or subscribe to the ACM Digital Library. cacm.acm.org/news/cacm-is-now-

10:32 [/mastodon]

RT estherschindler:

Communications of the ACM (CACM) is now a fully Open Access publication. This means that more than six decades of CACM’s renowned research articles, seminal papers, technical reports, commentaries, real-world practice, and news articles are now open to everyone, regardless of whether they are members of ACM or subscribe to the ACM Digital Library. cacm.acm.org/news/cacm-is-now-

10:32 [/bb-atom]

2024-03-01

Antwort auf @didib

@didib Gilt offenbar nicht für BMW-Fahrer :-)

16:04 [/bb-atom]

Antwort auf @didib

@didib Gilt offenbar nicht für BMW-Fahrer :-)

16:04 [/mastodon]