On tonight's #AttackOnTuesday, we're diving into ADCS attacks, using the recently-reintroduced vulnerability as a jumping off point! This'll be new for me as well, so let's learn together! Live at 5PM Pacific at https://twitch.tv/mttaggart

#infosec #cybersecurity

**Stephan Neuhaus** · May 10, 2022, 13:53

Stephan Neuhaus boosted

**jollyrogue** @jollyrogue@bsd.network · May 10, 2022, 13:53

May 10, 2022, 13:53

jollyrogue @jollyrogue@bsd.network

@sten @alcinnz Passwords could be killed, but it would require a creation of a National Online ID, like South Korea. Smart cards have been a thing for years.

Tech has a long tail. Maybe around the turn of the next century, if the climate disaster doesn’t take out civilization.

I’ll probably play with it as soon as FreeIPA and other FOSS projects pick it up.

**Stephan Neuhaus** · May 09, 2022, 22:09

Stephan Neuhaus boosted

**Lance R. Vick** @lrvick@mastodon.social · May 09, 2022, 22:09

May 09, 2022, 22:09

Lance R. Vick @lrvick@mastodon.social

I just noticed "foreach" on npm is controlled by a single maintainer.

I also noticed they let their personal email domain expire, so I bought it before someone else did.

I now control "foreach" on NPM, and the 36826 projects that depend on it.

Show thread

**Stephan Neuhaus** @sten@ioc.exchange · May 09, 2022, 10:03

**Stephan Neuhaus** @sten@ioc.exchange · May 09, 2022, 10:03

May 09, 2022, 10:03

Stephan Neuhaus @sten@ioc.exchange

I've heard about the "death of passwords" many times in my security career so far, but passwords have always outlived the other solutions.

But with Microsoft, Google, and Apple pushing FIDO, this time round might indeed be different!

My personal view is that it's a very solid technical solution (wouldn't expect anything else from these participants), but it risks leaving out important parts of the population (e.g., elderly, disabled, poor).

What do you think?

**Stephan Neuhaus** · May 09, 2022, 07:59

Stephan Neuhaus boosted

**RandomDude** @Jascha@norden.social · May 09, 2022, 07:59

May 09, 2022, 07:59

RandomDude @Jascha@norden.social

Ich bräuchte einmal Rat von Leuten, die sich mit dem Thema #fahrrad gut auskennen.

Ich muss an meinem alten Rad, so Typus #Trekking bis #City, etwas wegen der #Bremsen machen und habe entschieden diese komplett auszutauschen.
Habe momentan mechanische V-Brakes. Möchte auch bei Mechanischen bleiben, weil ich da noch selbst dran schrauben kann.
Frage ist dann aber #Felge oder #Scheibe? Und dann gibt es ja weiterhin zig Typen 😅

Gerne boostern :)

#fahrradbubble #Schrauber #radfahren

**Stephan Neuhaus** · May 05, 2022, 12:10

Stephan Neuhaus boosted

**Kingu Platypus** @kingu_platypus_gidora@octodon.social · May 05, 2022, 12:10

May 05, 2022, 12:10

Kingu Platypus @kingu_platypus_gidora@octodon.social

27bb76e5a99fe9bd.jpg

**Stephan Neuhaus** · May 08, 2022, 15:29

Stephan Neuhaus boosted

**Moanos** @moanos@chaos.social · May 08, 2022, 15:29

May 08, 2022, 15:29

Moanos @moanos@chaos.social

Optimist: The glass is ½ full.
Pessimist: The glass is ½ empty.
Excel: The glass is January 2nd.

**Stephan Neuhaus** · Apr 30, 2022, 17:22

Stephan Neuhaus boosted

**Matthew Green** @matthew_d_green@ioc.exchange · Apr 30, 2022, 17:22

Apr 30, 2022, 17:22

Matthew Green @matthew_d_green@ioc.exchange

For the moment going with some dachshund content.

**Stephan Neuhaus** · Apr 25, 2022, 21:34

Stephan Neuhaus boosted

**Thunderbird** @thunderbird@mastodon.online · Apr 25, 2022, 21:34

Apr 25, 2022, 21:34

Thunderbird @thunderbird@mastodon.online

A wild Thunderbird has appeared!

Hello #fediverse

**Stephan Neuhaus** · May 05, 2022, 02:20

Stephan Neuhaus boosted

**James** @integratnio@fosstodon.org · May 05, 2022, 02:20

May 05, 2022, 02:20

James @integratnio@fosstodon.org

TFW you audit a firewall for the first time.

63dfb37850681ee2.png

**Stephan Neuhaus** · May 05, 2022, 16:44

Stephan Neuhaus boosted

**Taggart** @mttaggart@fosstodon.org · May 05, 2022, 16:44

May 05, 2022, 16:44

Taggart @mttaggart@fosstodon.org

@TechNews I am unconvinced that more biometrics is a net good. And reliance on smartphones seems like an accessibility issue, no?

**Stephan Neuhaus** · May 05, 2022, 18:21

Stephan Neuhaus boosted

**Omicron aka B.1.1.529** @realB11529@mastodon.social · May 05, 2022, 18:21

May 05, 2022, 18:21

Omicron aka B.1.1.529 @realB11529@mastodon.social

Wie jetzt… keiner geht zu Helene Fischer? Wie seid ihr denn alle drauf?

Show thread

**Stephan Neuhaus** · May 05, 2022, 21:39

Stephan Neuhaus boosted

**xpy1** @xpy1@ioc.exchange · May 05, 2022, 21:39

May 05, 2022, 21:39

xpy1 @xpy1@ioc.exchange

"Reading" put aside, I didn't even KNOW most of these existed!

10 books for GNU/Linux beginners

https://www.geeksforgeeks.org/10-best-linux-unix-books-for-beginners/

**Stephan Neuhaus** · May 02, 2022, 01:48

Stephan Neuhaus boosted

**Elizabeth Cray** @liz@hackers.town · May 02, 2022, 01:48

May 02, 2022, 01:48

Elizabeth Cray @liz@hackers.town

OMFG I'm using ffmpeg to extract the frames of Hackers and frame 93353 was flagged as a trojan >.<

1f0eef5dd7c04ddf.png

**Stephan Neuhaus** @sten@ioc.exchange · May 02, 2022, 07:10

**Stephan Neuhaus** @sten@ioc.exchange · May 02, 2022, 07:10

May 02, 2022, 07:10

Stephan Neuhaus @sten@ioc.exchange

I have firmware for an ARM7EJ-S. The only technical documentation on this specific processor from ARM that I can find is this series of web pages: https://developer.arm.com/documentation/ddi0214/b

This is very inconvenient for me and I would much prefer a PDF, but I can't seem to find one. Is this the ONLY technical info out there?

**Stephan Neuhaus** @sten@ioc.exchange · Apr 29, 2022, 07:43

**Stephan Neuhaus** @sten@ioc.exchange · Apr 29, 2022, 07:43

Apr 29, 2022, 07:43

Stephan Neuhaus @sten@ioc.exchange

I'm seeing reports that some people feel compelled to hate programming languages in a non-ironic way.

I'm the first person to make jokes about languages. All software sucks, and, by extension, so do all languages.

But can't you guys (and they are all guys, as far as I can tell) save your hate for something that's actually hateworthy? Otherwise you're just like some teenager who hates a band just because they make noises that he happens not to like.

**Stephan Neuhaus** · Apr 28, 2022, 02:26

Stephan Neuhaus boosted

**Taggart** @mttaggart@fosstodon.org · Apr 28, 2022, 02:26

Apr 28, 2022, 02:26

Taggart @mttaggart@fosstodon.org

RT @EdOverflow
After 5 years of work, security.txt is officially an RFC. I am pleased to announce RFC 9116: https://www.rfc-editor.org/rfc/rfc9116.

I would like to use this opportunity to thank those who made this possible. Thank you. ❤️

b1e415834514858a.jpeg

Show older

Security guy. Sometime guitarist. Pun aficionado

Joined Apr 2022

Stephan Neuhaus @sten@ioc.exchange

Trending now

Resources

Developers

What is Mastodon?

ioc.exchange

More…