Switzerland has committed to a decentralized proximity tracing app based on DP-3T by EPFL and ETHZ and other institutions.
Martyn Pike wrote a TFTP server in Ada using the Anet library and blogged about it:
cosign is my new program for cooperatively signing documents with RSA (PKCS#1 v1.5 + SHA256) in a way that requires all the parties to produce partial signatures on the document without any of them having access to the private key. https://github.com/osresearch/cosign
the grass is always greener on the other side.. whenever I get paid for working on a project, it is immediately less interesting and I need to motivate myself much more to work on it... while at the same time, when I work on the same project without any stakeholders, it's so much fun... anyone has an explanation? or similar struggle/problems/observations?
if there'd only be basic income... then I wouldn't worry and could freely write some software ;)
Kernighan's Law: You are not smart enough to debug it https://github.com/dwmkerr/hacker-laws#kernighans-law
Our current foster #cat loves drinking from the faucet but she is not very good at it.
Somebody is creating virtual traffic jams on Google Maps by lugging around Android smartphones in a handcart.
„99 second hand smartphones are transported in a handcart to generate virtual traffic jam in Google Maps.Through this activity, it is possible to turn a green street red which has an impact in the physical world by navigating cars on another route to avoid being stuck in traffic. „
Bracing myself for some serious #FOSDEM FOMO over the next couple of days...
I've got 60 subscribers so far for my new newsletter The Dork Web, going out this Thursday.
The Dork Web explores the weird world of cyber, hax, privacy and Internet subcultures, with a slice of retro.
If you'd like to catch it, sign up here: https://thedorkweb.substack.com/
So apparently the embargo for the latest round of Intel CPU issues was „forced“ as the microcode patches are not released yet and Intel only discloses vulnerabilities when patches are available... :/
“Intel will release Intel® Processor microcode updates to our customers and partners as part of our regular Intel Platform Update (IPU) process.”
The operative word being “will” not “has released”...
I'm running a (hopefully) fortnightly newsletter on Substack called The Dork Web. First issue is out on the 30th of Jan, featuring the <$200 Pinebook Pro, a Z80 SBC for running CP/M, China's social credit system in the west and more. Sign up here: https://thedorkweb.substack.com
Looking at it again today and it’s such a well done device. It instantly creates a certain atmosphere.
There’s also a video where you can see the Nixie Tubes changing digits.
Also, you can get it as a kit an assemble/solder it yourself ;) Plus, all of it is open: schematics, software and even the enclosure step file.
So Microsoft starts 2020 Patch Tuesday with a bang, or rather three:
1) CVE-2020-0601 is improper validation of X.509 ECC cert chains
The NSA advisory actually has more info than Microsoft:
2) CVE-2020-0609, CVE-2020-0610 are *unauthenticated* Remote Code Execution bugs in Windows Remote Desktop Gateway.
Note: It’s a server feature.
Yesterday I remembered the Olivetti TCV250. What a beautifully designed machine from ‘66! Italians know how to it :)
@cynicalsecurity pointed me to this article (in Italian) on Tchou and Olivetti:
Now I wish I knew more about the history of computers in Europe and why the industry here got swept away...