Glenn Wilkinson  

@glennzw

Hacker, Rhodes Scholar, Conference Speaker, Krav Maga Practitioner, Carbon-Based Bipedal Life Form.

glennzw at protonmail dot com
github.com/glennzw
Vrijeme pridruživanja: veljača 2009.
651 fotografija ili videozapis Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @glennzw

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @glennzw

  1. Prikvačeni tweet
    27. sij

    Hey Twitter, I built a thing, and I think it's pretty cool. FishCrypt is a server side database field encryption utility. PoC demo: (sign up and send me a message!) Code:

    19 proslijeđenih tweetova 28 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  2. proslijedio/la je Tweet
    3. velj

    A reminder (in case you're slow like me) that Twitter is now supporting full app-based 2FA for accounts in all regions and you no longer have to provide a phone number for SMS-based 2FA. Go get at em!

    1 reply 4 proslijeđena tweeta 14 korisnika označava da im se sviđa
    Poništi
  3. 2. velj

    Also, I have learned that you can have unidirectional cables. I bought an "HDMI DisplayPort" cable hoping to use the above mentioned Apple dongle, but the cable only works one way! (DisplayPort output to HDMI input, not the other way). This lesson took about 18 hours to learn 😅

    3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  4. 2. velj

    I've found some adapters that split the USB-C / TB into two, but the description says you can only feed one screen on a Mac.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. 2. velj

    * I currently have one monitor via USB-C/TB to DisplayPort * I have the Apple USB-C Digital AV Multiport Adapter, but that's only HDMI (and I've learned you can't do HDMI -> DP, well easily/cheaply) I can't find the equivalent adapter with a DisplayPort out

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. 2. velj

    Nerds of Twitter; how can I plug my MacBook Pro into two DisplayPort monitors? Other requirement is to have power (via USB C / TB) and a spare USB port (keyboard/mouse).

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  7. 1. velj

    Me: I’ll just let my tea brew for a minute while I debug that line of code 40mins later: (will I die if I drink this black tar?)

    1 reply 6 korisnika označava da im se sviđa
    Poništi
  8. 31. sij

    I think tech bros solutionism often drags us backwards by pushing us forward in the wrong direction.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  9. 31. sij

    The case for dumb cities; “For many of our challenges, we don’t need new technologies or new ideas; we need the will, foresight and courage to use the best of the old ideas,” "redirect some of our energy toward building 'excellent dumb cities.'"

    1 reply 1 proslijeđeni tweet
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  10. 28. sij

    Database Encryption Poll; Devs: Do you encrypt user fields when building apps? or Hackers: Have you bust into a system and seen field level encryption in use? RT for good karma.

    2 proslijeđena tweeta
    Poništi
  11. 27. sij

    Oh and to see a little under the hood here's what's stored in the database. If the db was compromised you'd see hashed password and encrypted private key. Of course if I had a weak password (maybe I do in this instance!) you could crack it and then get my private key.

    1 reply 1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  12. 27. sij

    I know you're all waiting with bated breath 😅 Here's my solution to the above problem:

    Hey Twitter, I built a thing, and I think it's pretty cool. FishCrypt is a server side database field encryption utility. PoC demo: (sign up and send me a message!) Code:
    Prikaži ovu nit
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. 27. sij

    I'd be super interested to hear how other people address encryption of user data. I did a bit of Googling, but got frustrated so built my own thing. I'd be very happy for someone to point out that it's been done already, or that my solution sucks. It's all about learning :) /end

    1 reply 1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. 27. sij

    What's cool is it's all server side so no browser/JS requirements. Just four functions: CreateKeys EncryptData DecryptPrivateKey DecryptData UpdatePassword The server can see your data, but not at rest, only in memory, so slight trade off.

    1 reply 1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  15. 27. sij

    When the user logs in their private key can be decrypted server side with their password and stored client side (e.g browser storage, cookie, hidden field). User can then decrypt their data with their decrypted private key (done server side in memory with the supplied priv key).

    1 reply 1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  16. 27. sij

    Inbound data for the user can be encrypted with their public key.

    1 reply 1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  17. 27. sij

    FishCrypt basically wraps the tricky key generation/protection stuff. You can create a pair of keys in your webapp when a user signs up, with the private key being symmetrically encrypted with the user's password. Public and encrypted private key can be stored in the database.

    1 proslijeđeni tweet 3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. 27. sij

    The problem I've been looking at is how to best secure user data in a db, whilst maintaining usability. Full DB encryption is good, but no use if the server/db is compromised. Encrypting database fields per user with asymmetric encryption is cool, but tricky.

    1 reply 1 proslijeđeni tweet 2 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. 27. sij

    That Instagram one 😂

    LinkedIn, Facebook, Instagram, Tinder
    1 proslijeđeni tweet 2 korisnika označavaju da im se sviđa
    Poništi
  20. 26. sij

    But this is so awesome. I can now hit arbitrary subdomains and get certs for them, e.g: I'm in love with 😍

    3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi

@glennzw još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·