"With Category Theory, Mathematics Escapes From Equality"
"Two monumental works have led many mathematicians to avoid the equal sign. Their goal: Rebuild the foundations of the discipline upon the looser relationship of “equivalence.” The process has not always gone smoothly."
quantamagazine.org/with-catego

"Putin's Skyfall missile failed a test and exploded in a deadly nuclear accident, the US says":
"The United States has determined that the explosion near Nyonoksa, Russia, was the result of a nuclear reaction that occurred during the recovery of a Russian nuclear-powered cruise missile," the official wrote. "The missile remained on the bed of the White Sea since its failed test early last year, in close proximity to a major population center."
businessinsider.fr/us/us-putin

*cough cough* "Revealed: Google made large contributions to climate change deniers"
“When it comes to regulation of technology, Google has to find friends wherever they can and I think it is wise that the company does not apply litmus tests to who they support,” the source said.
theguardian.com/environment/20

Which one had the stronger password between Dennis Ritchie, Ken Thompson, Brian W. Kernighan, ... ? A journey in the BSD3 sources
leahneukirchen.org/blog/archiv

Etude de l'ANSSI (en)
"Supply chain attacks : menaces sur les prestataires de service et les bureaux d’études":
"Les premières analyses menées pourraient laisser penser à des attaques en deux phases : elles sont temporellement éloignées et aucun lien technique n’a pour le moment été établi entre les deux. La première phase utilise principalement le code malveillant PlugX. La seconde s’appuie essentiellement sur des outils légitimes et le vol d’identifiants de connexion."
cert.ssi.gouv.fr/cti/CERTFR-20

Big move from GNu maintainers: "We believe that Richard Stallman cannot represent all of GNU. We think it is now time for GNU maintainers to collectively decide about the organization of the project. The GNU Project we want to build is one that everyone can trust to defend their freedom."
guix.gnu.org/blog/2019/joint-s

beta server misconfigured + same set of data than prod = 15,000$ BB
"I figured out a way to hack any of Facebook’s 2 billion accounts, and they paid me a $15,000 bounty for it":
"I tried to brute force the 6 digit code on www.facebook.com and was blocked after 10–12 invalid attempts.
Then I looked out for the same issue on beta.facebook.com and mbasic.beta.facebook.com. Interestingly, rate limiting was missing from forgot password endpoint."
medium.com/appsecure/responsib

Very interesting :
"Interview with a Pornhub Web Developer": davidwalsh.name/pornhub-interv
"jQuery and jQueryUI are slowly moving away, so we are going back to more efficient object oriented programming in vanilla JS." 😉

Les gens qui utilisent ou connaissent des outils de crosspost twitter->mastodon, vous pouvez me donner les liens vers les dépôts des différents outils ?
(Je connais pas et ça me ferait gagner pas mal de temps)
Merci 🙂

L'idée est de proposer quelque chose comme ça github.com/YoloSwagTeam/t2m/is pour chaque outil (donc t2m c'est fait hein ;) :
- Supprimer les liens raccourcis et autres liens de pistage
- remplacer les liens TW par #Nitter
- remplacer les liens YT par #Invidious

Ouch that hurt... "Attackers are exploiting a zeroday vulnerability in Google’s Android mobile operating system that can give them full control of at least 18 different phone models, including four different Pixel models"
"the vulnerability is being actively exploited, either by exploit developer NSO Group or one of its customers"
“This issue is rated as high severity on Android and by itself requires installation of a malicious application for potential exploitation,”
arstechnica.com/information-te

Show more
Mastodon @ SDF

"I appreciate SDF but it's a general-purpose server and the name doesn't make it obvious that it's about art." - Eugen Rochko