Writing a bot to pipe RSS news feeds into Mastodon is one of the least useful things to do. And I wrote a book on RSS feeds. I like feeds. But, this place is best when it's all actual people tooting, with the occasional weird art bot. Get a feed reader if you want feeds
Amazing breakdown of #ShadowBrokers tool dump #DoublePulsar and #EternalBlue at shellcode / assembly level. Great detail on what those tools are doing and how. - Note #ZeroSum are the guys that made the metasploit scanner for MS17-010! https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html?m=1
Ok, new feature in my instance-coloring code: users from your 'local' instance get additional border on the right. Everyone else only has bottom/left.
Also fixed an issue where sometimes the "@" would not be included in the colored area. Lemme know if you still have issues anyone!
Politics Show more
Pretty remarkable how much the old political divides are losing relevance. The Tea Party and Occupy movements had more in common with each other than they did with the establishment of either party.
Politicians that continue to see the world as right-left binary seem hopelessly out of touch and will lose hard to those that can see the new political reality for what it is.
These are strange times.
so I've been catching some glimpses on the nerd-o-sphere about this new political quiz:
From the feedback I was seeing, apparently it's better than the venerable Political Compass (https://www.politicalcompass.org/), if only because it provides more granularity?
Well, aside from the fact that the political compass quiz results come in two axes and this one has *four*... I guess more is good?
Just discovered "trace.axd" - Type it after the domain on a system running IIS. Look for POSTs. Look at usernames & passwords. Web Apps are fun!
Hi everyone! I made a translator bot that translates statuses it's mentioned in.
To use it, mention @translator (email@example.com) in your status, followed by the two-letter code for the language you want to translate to (e.g. "ja" for Japanese) (full list of possible codes here: https://christopher.su/projects/translator/). It uses English if no language is given.
Give it a try and toot me your suggestions and comments!
Looks like CVE-2017-0199 is being exploited in the wild, but Microsoft patch is NOT classified as "critical". MS Office users (especially in corporate environments) will want to make sure they're patched. via @SwiftOnSecurity
How did I miss this? Talk "Build a Better Monster: Morality, Machine Learning, and Mass Surveillance" by Pinboard founder Maciej Cegłowski (ht @cynix ):
"Ideally, we can find a way to have decentralized social networks, just like we do in real life."
"Opting out of a site like Google would mean opting out of much of online life (...) [a consumer boycott] is not something we can mobilize a mass movement around."
A #NetNeutrality win in Canada 🇨🇦 as CRTC rules against zero-rating.
I feel like this is also speaking to 99.999999% of information security. https://twitter.com/michelmcbride/status/854672980672172032
Sorely needed legislation Show more
We need legislation that mandates strict support requirements for Internet connected devices, for the duration of their *actual* life. Requirements could include things like patching critical vulnerabilities within x days of disclosure.
BUT a waiver should be provided to HW manufacturers that open source their code AND contract with an open source project to provide device support on their behalf for the device lifetime.
Too many HW manufacturers freeload right now.
Dear fellow #Mastodon users. Please be patient with the people creating Mastodon and GNU Social.
Writing software takes time, and the teams working on these applications are very small.
Most of them are also wearing many hats. Some are students, others have full time non-Mastodon jobs. Some admin instances in addtion to writing code.
The Twitter kitchen probably has more people working in it than the entire #Fediverse. Please adjust your expectations accordingly! 😄