@brd.la
4/3:
Updated to improve old password input (no need to escape characters anymore) & using secure strings in memory when possible.
Updated to improve old password input (no need to escape characters anymore) & using secure strings in memory when possible.
September 9, 2025 at 4:19 AM
4/3:
Updated to improve old password input (no need to escape characters anymore) & using secure strings in memory when possible.
Updated to improve old password input (no need to escape characters anymore) & using secure strings in memory when possible.
Setup takes like 3 minutes - just install ImageMagick (w/ winget) and run the script with -Install. Cleaner than messing with registry entries or installing random software.
brd.la/2025/heic-to...
It's been working great for my iPhone photo dumps. Feel free to comment if you run into issues!
brd.la/2025/heic-to...
It's been working great for my iPhone photo dumps. Feel free to comment if you run into issues!
Convert HEIC to JPG from Windows Context Menu
I got tired of manually converting iPhone HEIC photos to JPG, so I wrote a PowerShell script that adds this functionality right to Windows Explorer’s “Send to” menu. Here’s how to set it up in just a ...
brd.la
July 9, 2025 at 10:18 PM
Setup takes like 3 minutes - just install ImageMagick (w/ winget) and run the script with -Install. Cleaner than messing with registry entries or installing random software.
brd.la/2025/heic-to...
It's been working great for my iPhone photo dumps. Feel free to comment if you run into issues!
brd.la/2025/heic-to...
It's been working great for my iPhone photo dumps. Feel free to comment if you run into issues!
Why this WSL SSH trick works: Windows commands run fine from WSL, so ssh.exe uses the Windows SSH client that talks to your Windows SSH agent. No more typing passphrases every time you git push. Simple solutions are often the best ones. More details here: brd.la/2025/wsl-ssh...
June 6, 2025 at 10:39 AM
Why this WSL SSH trick works: Windows commands run fine from WSL, so ssh.exe uses the Windows SSH client that talks to your Windows SSH agent. No more typing passphrases every time you git push. Simple solutions are often the best ones. More details here: brd.la/2025/wsl-ssh...
3/3:
Finally, DS Login requirements contradict NIST 800-63B guidance:
- 60-day forced changes: NIST says don't
- Complex character rules: NIST says don't
- "8 different characters": No basis in NIST
- "Different from last 10": NIST says just check against compromises
Finally, DS Login requirements contradict NIST 800-63B guidance:
- 60-day forced changes: NIST says don't
- Complex character rules: NIST says don't
- "8 different characters": No basis in NIST
- "Different from last 10": NIST says just check against compromises
February 12, 2025 at 11:38 AM
3/3:
Finally, DS Login requirements contradict NIST 800-63B guidance:
- 60-day forced changes: NIST says don't
- Complex character rules: NIST says don't
- "8 different characters": No basis in NIST
- "Different from last 10": NIST says just check against compromises
Finally, DS Login requirements contradict NIST 800-63B guidance:
- 60-day forced changes: NIST says don't
- Complex character rules: NIST says don't
- "8 different characters": No basis in NIST
- "Different from last 10": NIST says just check against compromises
2/3:
2. When changing password:
- User provides their current password (required for change)
- System verifies the new password hash isn't in the history
- System compares character usage of provided current password against stored bitfield
- If verified, stores new password the same way
2. When changing password:
- User provides their current password (required for change)
- System verifies the new password hash isn't in the history
- System compares character usage of provided current password against stored bitfield
- If verified, stores new password the same way
February 12, 2025 at 11:38 AM
2/3:
2. When changing password:
- User provides their current password (required for change)
- System verifies the new password hash isn't in the history
- System compares character usage of provided current password against stored bitfield
- If verified, stores new password the same way
2. When changing password:
- User provides their current password (required for change)
- System verifies the new password hash isn't in the history
- System compares character usage of provided current password against stored bitfield
- If verified, stores new password the same way
1/3 After more thought, there's a way to do the 8-character thing securely:
1. When storing a password:
- Store the normal salted hash of the full password
- Store a separate salted hash of which characters were used (e.g., as a 94-bit bitfield)
- Keep last 10 password hashes in history
1. When storing a password:
- Store the normal salted hash of the full password
- Store a separate salted hash of which characters were used (e.g., as a 94-bit bitfield)
- Keep last 10 password hashes in history
February 12, 2025 at 11:38 AM
1/3 After more thought, there's a way to do the 8-character thing securely:
1. When storing a password:
- Store the normal salted hash of the full password
- Store a separate salted hash of which characters were used (e.g., as a 94-bit bitfield)
- Keep last 10 password hashes in history
1. When storing a password:
- Store the normal salted hash of the full password
- Store a separate salted hash of which characters were used (e.g., as a 94-bit bitfield)
- Keep last 10 password hashes in history
2/2 I wrote a PowerShell script to generate valid DS Logon passwords. It's smart enough to reserve characters for future password changes and validates against all requirements.
Grab it here: gist.github.com/dadatuputi/d... 🔒
Grab it here: gist.github.com/dadatuputi/d... 🔒
Powershell Script to generate new DS Login password
Powershell Script to generate new DS Login password - New-DSLoginPassword.ps1
gist.github.com
February 5, 2025 at 5:06 PM
2/2 I wrote a PowerShell script to generate valid DS Logon passwords. It's smart enough to reserve characters for future password changes and validates against all requirements.
Grab it here: gist.github.com/dadatuputi/d... 🔒
Grab it here: gist.github.com/dadatuputi/d... 🔒
Mastadon was something I was considering as well. It works, but I think Bluesky is doing the UX better. Decentralization's biggest hurdle is UX. I'm interested to see where Bluesky goes.
January 24, 2025 at 9:40 AM
Mastadon was something I was considering as well. It works, but I think Bluesky is doing the UX better. Decentralization's biggest hurdle is UX. I'm interested to see where Bluesky goes.