Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @l0kod
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @l0kod
-
Mickaël Salaün proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Mickaël Salaün proslijedio/la je Tweet
Some things make more sense when one realizes that there are at least 5 distinct security communities: Security product people (people that view security as something that can be added by buying/selling products), Security Infrastructure people (people that view security as ...
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
There are many ways to
#debug the#Linux kernel, and#tracing may be a useful technique. Tracing is all about recording and logging the software's flow of execution, and this article is about#ftrace, the tracing framework for the Linux kernel. https://embeddedbits.org/tracing-the-linux-kernel-with-ftrace/ …@srostedtHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Analysis of the Linux random number generator /dev/urandom https://blog.amossys.fr/linux-csprng-architecture.html …
#RNGpic.twitter.com/Hsn9JuNonb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
It's entirely possible to use TPM-based remote attestation in a way that's user-focused and privacy preserving, but we still need to build some infrastructure: https://mjg59.dreamwidth.org/54203.html
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Nice talk about CFI in the Linux kernel by
@kees_cook Slides: https://outflux.net/slides/2020/lca/cfi.pdf … Video:https://www.youtube.com/watch?v=0Bj6W7qrOOI …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Mickaël Salaün proslijedio/la je Tweet
6 archi à éviter
: mixer les usages (admin/user), trop mutualiser l'admin sans sécu, 2 ou 3 niveaux de filtrage sans différenciation, utiliser le cloud sans faire du vrai cloud, ne pas surveiller les accès des tiers, les systèmes impossibles à patcherhttps://www.ncsc.gov.uk/whitepaper/security-architecture-anti-patterns …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
My
#lca2020 demo was remote attestation over Bluetooth, which means you can gain the security benefits of remote attestation without needing to pass data or identity to a third party. Code is at https://github.com/google/go-attestation/tree/bluetooth?files=1 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Just to be very clear on this point: This is not about blocking a subset of 3P cookies via lists and/or heuristics. This announcement is that we are going to remove 3P cookies and related tracking mechanisms entirely.https://twitter.com/justinschuh/status/1217115664277803011 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
[ KASLD ] Kernel Address Space Layout Derandomization - A collection of various techniques to bypass KASLR and retrieve the Linux kernel base virtual address on x86 / x86_64 architectures as an unprivileged user.https://github.com/bcoles/kasld
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
In the last few months I've been working on RedBPF - a Rust toolkit to work with BPF - that let's you write both kernel and user space code in Rust

Here's what it looks like:https://blog.redsift.com/labs/writing-bpf-code-in-rust/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
New Blog Post: "On Linux's Random Number Generation" by Thomas Pornin (
@BearSSLnews): https://research.nccgroup.com/2019/12/19/on-linuxs-random-number-generation/ …pic.twitter.com/aKpZR7C36f
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Technology Preview for secure value recovery https://signal.org/blog/secure-value-recovery/ … Plaintext databases have never been our style. We've been working on new techniques to enhance and expand capabilities for private cloud storage.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Know open source projects which could use monetary help to improve security? Nominate them!https://security.googleblog.com/2019/12/announcing-updates-to-our-patch-rewards.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Qualys researchers discovered a Local Privilege Escalation in OpenBSD's dynamic loader (http://ld.so ). We thank Theo de Raadt and the OpenBSD developers for their incredibly quick response: they published a patch in <3 hours. https://www.qualys.com/2019/12/11/cve-2019-19726/local-privilege-escalation-openbsd-dynamic-loader.txt …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
New guidance on Linux-stable Merges for Android: https://source.android.com/devices/architecture/kernel/linux-stable-merges … -- looks positive, reducing the patch gap for upstream kernel security bugs is really important. The window of exposure for publicly known issues is too long at the moment.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
TIL By default,
#Kubernetes disables the@Docker default Seccomp profile that@jessfraz worked so hard on. Several K8s cloud providers don’t override that setting, making their containers completely insecure by default, requiring pod level config.https://kubernetes.io/docs/concepts/policy/pod-security-policy/#seccomp …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
My team has been working a lot with TPM hardware lately and found some pretty critical issues with the spec. Here's our 90-day disclosure of a vulnerability report we sent to
@TrustedComputin. "Verifying TPM Boot Events and Untrusted Metadata"https://github.com/google/go-attestation/blob/master/docs/event-log-disclosure.md …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mickaël Salaün proslijedio/la je Tweet
Android is committed to keeping you, your devices, and your data safe!
Today, we’re happy to announce that 80% of Android apps are encrypting traffic by default. We expect these numbers to continue improving.
Learn more ↓https://goo.gle/2rW7CuX Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.