LightNews
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman
@paulehoffman.infosec.exchange.ap.brid.gy
9 followers 0 following 220 posts
Old Skool Internet geek, particularly DNS. Pronouns: us/y’all. [bridged from https://infosec.exchange/@paulehoffman on the fediverse by https://fed.brid.gy/ ]
infosec.exchange
Posts Media Videos Starter Packs
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 1d
@sophieschmieg Blameless postmortems don't necessarily need "a little blame", but could probably use at least a little snark.
1
Reposted by Paul Hoffman
glyph.mastodon.social.ap.brid.gy
Glyph @glyph.mastodon.social.ap.brid.gy · 2d
the biggest problem we *already have* in open source right now, which we have oversimplified into the term "supply chain security", is the lack of understanding that putting a dependency in your project's dependency set (package.json, pyproject.toml, requirements.txt, cargo.toml, etc) is not […]
Original post on mastodon.social
mastodon.social
1 15 3
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 2d
@jtk @paul_ipv6 And thus you might be interested in the WG-forming BoF that will be happening at IETF 124: https://datatracker.ietf.org/group/atp/about/
Authenticated Transfer (atp)
datatracker.ietf.org
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 3d
@b0rk In my .bashrc: alias PullPush='git pull upstream main && git push origin main'
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 3d
Dear REALTOR associations: I understand you are passionate about some political causes, particularly ballot measures. Some of you freely send both phone and email spam. Please consider how many of us will choose a non-REALTOR real estate agent for our upcoming buying and selling because you feel […]
Original post on infosec.exchange
infosec.exchange
Reposted by Paul Hoffman
mattblaze.federate.social.ap.brid.gy
Matt Blaze @mattblaze.federate.social.ap.brid.gy · 3d
Apparently theres a new wave of people joining mastodon, and with them a new wave of self-appointed cops "welcoming" them with long lists of mostly fictitious "rules" they need to follow.

This is a social media platform, with many of different ways to use it. It's fine. Mostly, just try to be […]
Original post on federate.social
federate.social
2 3 6
Reposted by Paul Hoffman
lilpecan.mastodon.social.ap.brid.gy
Piggleston Pecanpants @lilpecan.mastodon.social.ap.brid.gy · 4d
Today I saw someone toot, in dismay, people are posting their everyday life to Mastodon when they could simply buy a diary for $1.99. I can't stop thinking about this.
What if this is all they have? What if they're isolated with or without people in their life? What if the only kind word they […]
Original post on mastodon.social
mastodon.social
24 160 8
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 4d
I have discovered that some reading-books-on-devices people don't now about https://standardebooks.org/ They produce well-edited, great-looking editions of free books. Of course, this means that a lot of their books are old, but they do some recent things as well. They live on donations […]
Original post on infosec.exchange
infosec.exchange
4 2
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 6d
@sophieschmieg It doesn't even have to be direct criticism; subtlety can work easily as well.

• 2025 the year of the Linux Desktop

• systemd covers the appropriate amount of utility

• I can seamlessly move my Linux setup from one laptop to another
2 2
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 8d
@miek Saying "DNS" means port 53 will cause people to ignore Do{T|H|Q}. Capitalize the O freely, just as people do DNSSEC or DNSsec or DNSSec.
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 10d
What is a good source of evidence-backed recommendations on normal skin care products? Finding anecdotal suggestions is easy, and many of the clinical studies touted by commercial products have laughably small sample sizes.

Asking for a me. I love and honor my parents. I got the "respect real […]
Original post on infosec.exchange
infosec.exchange
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 10d
It’s too early for “Shattering Peace” spoilers. Some of us read slowly, some of us need to finish this other book first, and so on,

Having said that, I did finish it a few days ago and can heartily recommend it to any @scalzi fan, even if you haven’t read (or reread) the earlier books in the […]
Original post on infosec.exchange
infosec.exchange
Reposted by Paul Hoffman
miek.mastodon.cloud.ap.brid.gy
Miek Gieben @miek.mastodon.cloud.ap.brid.gy · 14d
https://codeberg.org/miekg/dns should conform to deleg draft-03, but no way to confirm this as I do not know of other tooling I can use to test this against.

#dns #golang
dns
Go DNS library
codeberg.org
1 2
Reposted by Paul Hoffman
miek.mastodon.cloud.ap.brid.gy
Miek Gieben @miek.mastodon.cloud.ap.brid.gy · 16d
You have

209.237.226.90 www.opensource.org

in /etc/hosts. Is opensource.org now an empty non-terminal?
(it's not, but it's weird and probably never properly documented?)

#dns
1
Reposted by Paul Hoffman
miek.mastodon.cloud.ap.brid.gy
Miek Gieben @miek.mastodon.cloud.ap.brid.gy · 18d
why is trump "realdonaldtrump" on truth social? was donaldtrump taken?
1
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 18d
@timbray I am gobsmacked if Tesla has fewer than Walmart.
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 18d
@briankrebs I have whined to you about this before, and appreciate this elucidation enough to "favorite" it. You have indirectly caused me to stop whining about this to other folks I follow as well, so many thanks..
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 20d
@jtk It sounds like this is just for systems acting like stub resolvers. You don't install BIND or unbound or something similar, correct?
1
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 20d
@jtk Please say more about "I always remove that component." Is there a safe and automateable way to do that when building, say, a Debian VM?
1
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 20d
@sophieschmieg I can’t do much math, but I do know how to unleash it.
Reposted by Paul Hoffman
missingthept.mastodon.social.ap.brid.gy
Missing The Point @missingthept.mastodon.social.ap.brid.gy · 21d
The best way to get people to stop calling you a fascist is to amp up being a fascist.
3
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 22d
@dougmerritt You could just ask @robpike ...
1
Reposted by Paul Hoffman
timbray.cosocial.ca.ap.brid.gy
Tim Bray @timbray.cosocial.ca.ap.brid.gy · 22d
Huh, spam from 1Password offering me “Early access to Comet, the new AI browser from Perplexity”. I’m perplexed all right, about why 1Password, an outfit I mostly like, is doing this. I want a serious relationship with my security-technology providers, not a spammy one that flirts with sketchy […]
Original post on cosocial.ca
cosocial.ca
6 21 3
paulehoffman.infosec.exchange.ap.brid.gy
Paul Hoffman @paulehoffman.infosec.exchange.ap.brid.gy · 22d
@timbray It doesn't •feel• like I have greater pixel density, but I'll trust you on that.
Reposted by Paul Hoffman
nicholasgrossman.bsky.social
Nicholas Grossman @nicholasgrossman.bsky.social · 24d
The free speech activist who built a list of professors he worked to get fired for their speech must be celebrated for his support of free speech, and anyone who quotes his speech accurately in context will be fired and/or face state punishment by the champions of free speech, do I have that right?
590 8.8K 29K