Feroz Salam
@feroz.argh.in
k8s deployment in the streets, sudo apt upgrade in the sheets
Every year @mpf.hackerific.net builds a badge for our Secret Santa gift exchange, and he’s written about this year’s design at hackerific.net/2024/12/17/c.... It’s one of the best bits of the Christmas run-up!
December 19, 2024 at 7:07 AM
Every year @mpf.hackerific.net builds a badge for our Secret Santa gift exchange, and he’s written about this year’s design at hackerific.net/2024/12/17/c.... It’s one of the best bits of the Christmas run-up!
Reposted by Feroz Salam
We've gotten to the point that people get angry at projects that fix potential vulnerabilities, because the security scanner they use reports it as a false positive when not even using the affected package.
Yell at your vendor! Or, govulncheck is RIGHT THERE.
Yell at your vendor! Or, govulncheck is RIGHT THERE.
December 12, 2024 at 9:25 PM
We've gotten to the point that people get angry at projects that fix potential vulnerabilities, because the security scanner they use reports it as a false positive when not even using the affected package.
Yell at your vendor! Or, govulncheck is RIGHT THERE.
Yell at your vendor! Or, govulncheck is RIGHT THERE.
Reposted by Feroz Salam
This is a fascinating case study of real operational use of cryptography by non-technical people, of OPSEC, of anonymity tech, and of web security.
cw: drugs
cw: drugs
Captchas, Monero, scams and absolutely no JavaScript. In my latest article, I examine all the moving parts that go into running the markets you've never used.
https://boehs.org/node/dark-web-security
https://boehs.org/node/dark-web-security
December 2, 2024 at 11:03 AM
This is a fascinating case study of real operational use of cryptography by non-technical people, of OPSEC, of anonymity tech, and of web security.
cw: drugs
cw: drugs
Reposted by Feroz Salam
As if you needed any more reasons not to go back on Twitter, projects like @kubernetes.bsky.social, @cilium.bsky.social, @containerd.dev, @prometheusio.bsky.social and no doubt many more from @cncf.bsky.social are here on Bluesky
November 6, 2024 at 1:34 PM
As if you needed any more reasons not to go back on Twitter, projects like @kubernetes.bsky.social, @cilium.bsky.social, @containerd.dev, @prometheusio.bsky.social and no doubt many more from @cncf.bsky.social are here on Bluesky
Reposted by Feroz Salam
Reposted by Feroz Salam
Reading the timeline of the pressure campaign to convince the xz maintainer to hand over control is… awful. Merciless guilt-tripping.
One lesson I’m taking from this is to be even more ruthless with blocks. Whining about maintenance? Blocked. Zero chances.
research.swtch.com/xz-timeline
One lesson I’m taking from this is to be even more ruthless with blocks. Whining about maintenance? Blocked. Zero chances.
research.swtch.com/xz-timeline
research!rsc: Timeline of the xz open source attack
research.swtch.com
April 2, 2024 at 6:51 AM
Reading the timeline of the pressure campaign to convince the xz maintainer to hand over control is… awful. Merciless guilt-tripping.
One lesson I’m taking from this is to be even more ruthless with blocks. Whining about maintenance? Blocked. Zero chances.
research.swtch.com/xz-timeline
One lesson I’m taking from this is to be even more ruthless with blocks. Whining about maintenance? Blocked. Zero chances.
research.swtch.com/xz-timeline
Reposted by Feroz Salam
Going live at 4:30pm UK / 8:30am PT - see you there! #ebpfsummit isogo.to/ebpf-summit #opensource
eBPF Summit 2023
eBPF Summit is the virtual event for the eBPF community. Watch the talks here, and join in the conversation live on Slack at https://ebpf.io/slack - you'll f...
isogo.to
September 13, 2023 at 12:45 PM
Going live at 4:30pm UK / 8:30am PT - see you there! #ebpfsummit isogo.to/ebpf-summit #opensource
Reposted by Feroz Salam
This is the single most incredible thing you'll read today and I'm not going to give you any clues I just want you to click. https://12ft.io/proxy?q=https%3A%2F%2Fwww.telegraph.co.uk%2Fmoney%2Fkatie-investigates%2Fpartner-scammed-me-dark-secret-investment-action-fraud%2F
August 4, 2023 at 1:22 PM
This is the single most incredible thing you'll read today and I'm not going to give you any clues I just want you to click. https://12ft.io/proxy?q=https%3A%2F%2Fwww.telegraph.co.uk%2Fmoney%2Fkatie-investigates%2Fpartner-scammed-me-dark-secret-investment-action-fraud%2F
Setting up a custom domain handle here using the .well-known file method? It doesn't like Unix EOL characters (it tries to parse the EOL character as part of the `did`). You'll get an error saying 'The server gave an invalid response and may be out of date' – remove the EOL and you're good to go.
July 7, 2023 at 3:52 PM
Setting up a custom domain handle here using the .well-known file method? It doesn't like Unix EOL characters (it tries to parse the EOL character as part of the `did`). You'll get an error saying 'The server gave an invalid response and may be out of date' – remove the EOL and you're good to go.