Alexandre Keledjian @dervishe@mastodon.sdf.org
Entropy factor / Lurker at the threshold / ? = +
Interest: bsd /linux /infosec /retrocomputing /spycraft /coldwarhist
https://keybase.io/dervishe/pgp_keys.asc
Joined Aug 2017
Hey mastodon, i've got an #smtp question:
My smtp serveur got a certificate for TLS on port 587. Another guy try to send me email but receive the response:
Diagnostic-Code: SMTP; 403 4.7.0 TLS handshake failed.
Then i checked their certificate:
openssl s_client -starttls smtp -connect their_smtp_server:587
and it appear to have no certificate...
Frankly i'm not very pleased to accept insecure connection on my server.
Any idea ? Or do i didn't understood the trouble ?
"Princeton Web Census Data Release
We are releasing the entire Princeton Web Census data containing privacy measurements of 1 million sites conducted each month from December 2015 to June 2018. "
https://webtransparency.cs.princeton.edu/webcensus/data-release/
You like pens ? Check this benchmark from 100 best pens: http://nymag.com/strategist/article/best-pens-gel-ballpoint-rollerball-felt-fountain.html
Some points on @npm failure again: https://twitter.com/garybernhardt/status/1067111872225136640
by Gary Bernhardt
What could go wrong ???
"A Chinese research group claims to have used CRISPR to genetically edit human embryos leading to the birth of healthy twin girls"
https://www.cnet.com/news/scientists-in-china-claim-to-have-created-first-gene-edited-human-babies/
"Most importantly, the research has yet to be independently verified and has not yet been published in a journal, which makes He's video seem more like an exercise in marketing the breakthrough than having it scrutinized. [...] the announcement should be taken with a helping of skepticism."
Yet another npm adventure: "Hacker backdoors popular JavaScript library to steal Bitcoin funds"
https://www.zdnet.com/article/hacker-backdoors-popular-javascript-library-to-steal-bitcoin-funds/
Look at this awesome CNRS thread about Insight Mars mission: https://twitter.com/CNRS/status/1067027217945960448
Alexandre Keledjian
boosted
Psilocybin Could Soon Be a Legal Treatment for Depression.
Johns Hopkins Professor, Roland Griffiths, Explains How Psilocybin Can Relieve Suffering http://www.openculture.com/?p=1058283 https://t.co/vPXZWoOLJR
Well, NOR on my left, NAND on my right...
https://www.instagram.com/p/BqfnwUMhl9b/
Want to try a Memory Core ? Someone made a shield for arduino: 32 bits :
https://www.tindie.com/products/kilpelaj/core-memory-shield-for-arduino/ 😜
Alexandre Keledjian
boosted
Mozilla a mis en route un site web pour construire une voix de synthèse en alternative à celles des GAFAM.
Il y a une base de donnée libre (licence CC-0) en cours de construction : https://voice.mozilla.org/
Les contributions peuvent être rapides !
Très intéressant:
"Négocier les horaires du ramassage scolaire : l’impact du calcul sur la société ne s’imposera pas par ses qualités !": http://www.internetactu.net/2018/11/21/negocier-les-horaires-du-ramassage-scolaire-limpact-du-calcul-sur-la-societe-ne-simposera-pas-par-ses-qualites/
An Ingenious Data Hack Is More Dangerous Than Anyone Feared:
Previously, Rowhammer was understood to impact typical random access memory used in many off-the-shelf computers. Rowhammer has also been shown to threaten the memory in Android phones. But on Wednesday, researchers in the VUSec research group [...] published details of a next-generation Rowhammer ambush that can target what's known as "error-correcting code" memory.
https://www.wired.com/story/rowhammer-ecc-memory-data-hack/
Oops: "Security researchers have found a vulnerability in the backbone of the electronic ID (eID) cards system used by the German state. The vulnerability, when exploited, allows an attacker to trick an online website and spoof the identity of another German citizen when using the eID authentication option."
https://www.zdnet.com/article/german-eid-card-system-vulnerable-to-online-identity-spoofing/
@marnic Ça rappel un épisode de la bd "SOS Bonheur": https://fr.wikipedia.org/wiki/S.O.S._Bonheur
"Repurpose Your Laptop’s Unused Optical Drive Bay for Your Raspberry Pi": https://blog.hackster.io/repurpose-your-laptops-unused-optical-drive-bay-for-your-raspberry-pi-2477734c4dbd
The ProtonMail team response is here:
https://www.reddit.com/r/ProtonMail/comments/9yqxkh/an_analysis_of_the_protonmail_cryptographic/
(not red yet)
Oups, it seems that some @ProtonMail claims about end-to-end encryption and Zero-Knowledge Password Proof authentication are not actually fully functional...
Result from an independent analysis: https://eprint.iacr.org/2018/1121.pdf
Entropy factor / Lurker at the threshold / ? = +
Interest: bsd /linux /infosec /retrocomputing /spycraft /coldwarhist
https://keybase.io/dervishe/pgp_keys.asc
Joined Aug 2017
