Security, Privacy, Photog, Music. Previously: very early Twitter employee. Now CTO Alembic, OTF Advisor, 1man entertainment machine. I helped build this thing.
I don’t post here anymore because this site is now overrun and mismanaged, but I thought I’d mention that collection agencies for Twitter are now calling my house, for Twitter’s debts, 10 years after I quit. Just, wow.
In today's Internet-of-shit news, my coffee cup at work wants me to create an account just so I can control its temperature. Sigh. Anyone want a free mug?
Here's a crazy idea. Stop using VPNs, stop granting endpoints access to your network. Put everything behind encrypted proxies or single-use, zero-trust tunnels.
VPN servers are entry points into protected networks, making them attractive targets. APT actors have and will exploit VPNs - the latest guidance from NSA and
@CISAgov
can help shrink your attack surface. Invest in your own protection!
I just fixed my first y2k38 problem on a production system. If you're using unix time_t and you're trying to be smart and have something expire "20 years from now", your code is broken on systems that store time_t as a 32 bit signed integer (Post Jan 19th, 2018. it all breaks.)
It was nice while it lasted, Twitter.
From a pile of people in South Park, SF with a dream to a megalomaniacal purchase for a fake "freedom of speech" effort.
What a ride. What a shame.
Large social media companies should implement an internal “two person rule” for accounts which can impact more than say, 10k followers. Two authorized users should be required to make changes. On the user side, mandatory 2FA when you hit that size.
all right - mad points to whomever the person was that decided to play shake the disease by Depeche Mode as I was leaving the vaccination center at Moscone
@WhiteHouse
@realDonaldTrump
You only did that so that you could attempt to get the cuban vote. There’s nothing wrong with socialism, most americans want roads and unemployment insurance. Your administration is a fraud .
@deliprao
@_brohrer_
I think I installed that server, and I think it was an early openldap test machine moved to 795 Folsom. But I forget. That was 15 years ago.
There was also a pile of servers running test scripts in the design department, high-jank.
Or hey, maybe we did that a few times!
No one had to be sorry if DMs were encrypted and no one had to be sorry if there was a two-man rule on accounts > 10k followers. Detection should have been in place if a set of employees started issuing > N account resets over a small time window. Sigh.
AT&T hijacks DNS on business-grade connections, routing any misspelt domain names to their/yahoo branded search. The hijack routes to a non SSL and leaks your requested domain. Netsol pulled this in the 90s, it was lame then and lame now.
#NetNeutrality
@crownsterling_
You factored a 256 bit key and a 512 bit key in the time it takes any software on a decently sized laptop to factor those keys. You've not actually done anything. Come back when you've factored a 2048 bit key.