Kensan boosted

Switzerland has committed to a decentralized proximity tracing app based on DP-3T by EPFL and ETHZ and other institutions.

Statement:
news.epfl.ch/news/epfl-and-eth

Source code:
github.com/DP-3T

Kensan boosted

cosign is my new program for cooperatively signing documents with RSA (PKCS#1 v1.5 + SHA256) in a way that requires all the parties to produce partial signatures on the document without any of them having access to the private key. github.com/osresearch/cosign

Kensan boosted

the grass is always greener on the other side.. whenever I get paid for working on a project, it is immediately less interesting and I need to motivate myself much more to work on it... while at the same time, when I work on the same project without any stakeholders, it's so much fun... anyone has an explanation? or similar struggle/problems/observations?

if there'd only be basic income... then I wouldn't worry and could freely write some software ;)

Kensan boosted

"The design principle that attention is scarce and must be preserved is very different from a principle of 'the more information the better.'" - Herbert Simon

Kensan boosted

Our current foster #cat loves drinking from the faucet but she is not very good at it.

Somebody is creating virtual traffic jams on Google Maps by lugging around Android smartphones in a handcart.

„99 second hand smartphones are transported in a handcart to generate virtual traffic jam in Google Maps.Through this activity, it is possible to turn a green street red which has an impact in the physical world by navigating cars on another route to avoid being stuck in traffic. „

simonweckert.com/googlemapshac

Bracing myself for some serious FOMO over the next couple of days...

Kensan boosted

I've got 60 subscribers so far for my new newsletter The Dork Web, going out this Thursday.

The Dork Web explores the weird world of cyber, hax, privacy and Internet subcultures, with a slice of retro.

If you'd like to catch it, sign up here: thedorkweb.substack.com/

So apparently the embargo for the latest round of Intel CPU issues was „forced“ as the microcode patches are not released yet and Intel only discloses vulnerabilities when patches are available... :/

“Intel will release Intel® Processor microcode updates to our customers and partners as part of our regular Intel Platform Update (IPU) process.”

The operative word being “will” not “has released”...

Intel Advisory
intel.com/content/www/us/en/se

Kensan boosted

I'm running a (hopefully) fortnightly newsletter on Substack called The Dork Web. First issue is out on the 30th of Jan, featuring the <$200 Pinebook Pro, a Z80 SBC for running CP/M, China's social credit system in the west and more. Sign up here: thedorkweb.substack.com

Looking at it again today and it’s such a well done device. It instantly creates a certain atmosphere.

Show thread

Also, you can get it as a kit an assemble/solder it yourself ;) Plus, all of it is open: schematics, software and even the enclosure step file.

Show thread

Got my NixieTap today and oh boy is the combination of Nixie Tubes and wooden, walnut case beautiful!

Watching the Nixie Tubes switch digits is akin to staring into a log fire, it’s so pleasing.

So Microsoft starts 2020 Patch Tuesday with a bang, or rather three:

1) CVE-2020-0601 is improper validation of X.509 ECC cert chains

The NSA advisory actually has more info than Microsoft:
media.defense.gov/2020/Jan/14/

2) CVE-2020-0609, CVE-2020-0610 are *unauthenticated* Remote Code Execution bugs in Windows Remote Desktop Gateway.

Note: It’s a server feature.

kb.cert.org/vuls/id/491944/

Yesterday I remembered the Olivetti TCV250. What a beautifully designed machine from ‘66! Italians know how to it :)

@cynicalsecurity pointed me to this article (in Italian) on Tchou and Olivetti:

corriere.it/cronache/20_gennai

Now I wish I knew more about the history of computers in Europe and why the industry here got swept away...

Birdsite references:

twitter.com/kensan42/status/12

twitter.com/cynicalsecurity/st

Show more
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!