Sven Slootweg @ 36C3

@joepie91

RIP Aaron Swartz. Don't let his efforts be in vain.

Netherlands
Vrijeme pridruživanja: lipanj 2009.

Tweetovi

Blokirali ste korisnika/cu @joepie91

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @joepie91

  1. Prikvačeni tweet
    2. kol 2018.

    Periodic reminder that we should not trust commercial organizations to build the . That includes commercially-minded organizations with a thin veneer of a 'foundation' over it. Non-commercial infrastructure is the only way to prevent conflicts of interest.

    Poništi
  2. proslijedio/la je Tweet
    20. sij

    It was always obvious but the lesson of 14 St is that "we can't ban cars until the transit is better" is exactly backwards. We have to ban the cars first to make the transit better.

    Poništi
  3. proslijedio/la je Tweet
    2. velj

    Picture thread! We had a massive sweatshop yesterday because we messed up the design and had to rework 350 badges for . A story in a bunch of pictures. All shots by Noor, our newest member and proud owner of an actual camera!

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    27. sij

    Finally, the wait is over! We present CacheOut, a new speculative execution attack to leak data on Intel CPUs: , Andrew Kwong, Daniel Genkin and

    Poništi
  5. 27. sij

    Voor de duidelijkheid: het gaat dus om de softwareversie waar de portal op zit (dus niet ), en waar er met enige regelmaat een live kaart op de schermen staat waarop je kunt zien waar op de route de trein zich momenteel bevindt.

    Prikaži ovu nit
    Poništi
  6. 27. sij

    Het lijkt erop dat het sinds een software-update stuk is; de displays vallen nu ook regelmatig uit, en de omroepstem klinkt nogal ziekjes en slaat vaak over. Is dit bekend, en zo ja, wanneer wordt er een oplossing verwacht?

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    26. sij

    Tech Twitter: What's the biggest lie in tech? RT for a bigger sample set? 👀

    Poništi
  8. proslijedio/la je Tweet
    25. sij
    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    26. sij

    A casual glance on my dressoir will tell my which of the Dutch Hackerspaces are open. 💙 Thanks !

    Poništi
  10. 26. sij

    A house in the Tweebosbuurt in Rotterdam got illegally evicted on Thursday, and they're being harrassed by police on an ongoing basis: One of the residents in the neighbourhood is facing deportation. A protest will take place on February 2nd.

    Poništi
  11. proslijedio/la je Tweet
    27. pro 2019.

    Debugging spaghetti code is hard? Unix pipes complicated? Try spaghetti rainwater pipes We have at least 3 separate systems, of which the largest, and for us crucial, is blocked somewhere towards the end. We did discover hack for dry feet during birthday party! \0/

    Poništi
  12. proslijedio/la je Tweet
    25. sij

    Congratulations to on their 10 year anniversary! For the occasion they designed and gifted these boards which show whether any Dutch Hackerspace is open in real time

    Prikaži ovu nit
    Poništi
  13. 25. sij

    Cheap electronics Twitter: Any recommendations on cheap-but-reliable wireless microphones for presentations?

    Poništi
  14. 20. sij

    Another addendum: Design your systems so that you can change the hashing function later, when the one you've used gets broken. However, *do not* trust any user input to tell you what function to use, or you'll end up making the same mistake as JWT/JOSE:

    Prikaži ovu nit
    Poništi
  15. proslijedio/la je Tweet

    This. Also, you should design in hash evolution. I love BLAKE2 and used it for the last system I designed, but it's going to be broken (or at least superseded) some day.

    Poništi
  16. 20. sij
    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    17. sij

    Want to make service removal really fun? Create a service with a unicode name. The service will run but won't show in sc.exe, services.msc, or taskmgr.exe and will sometimes cause a critical error while trying to find it with PowerShell/WMI. Unicode wins again.🤦‍♂️

    Prikaži ovu nit
    Poništi
  18. 19. sij

    Q: So if I want fast hashing, I should use xxhash? A: No. You should *only* use xxhash (or a similar non-CS hashing function) if you are *very sure* that you do not need cryptographic security. If you're doing anything related to security at all, you need a CS hash, not xxhash.

    Prikaži ovu nit
    Poništi
  19. 19. sij

    Q: But I think MD5 is fine here, because it's only broken in a specific way! A: When *any* security property gets broken, that means the original design made a wrong assumption, and more breaks will follow. Why bother with MD5 anyway, when BLAKE2 is faster *and* more secure?

    Prikaži ovu nit
    Poništi
  20. 19. sij

    Q: What about PBKDF2? A: It's easy to unknowingly misuse, so it's best to avoid it. If absolutely *needed* for compatibility, it can be an acceptable option. But only with a secure digest function, not MD5/SHA1!

    Prikaži ovu nit
    Poništi
  21. 19. sij

    Q: When do you need a cryptographically secure hash function? A: When an attacker tampering with it in *any* way would cause a security issue. That's almost always, *including* for file deduplication on shared systems. Q: What about scrypt/bcrypt? A: Okay if needed for compat.

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·