TIL that openssl s_client knows a -servername parameter to support SNI towards the server you're connecting to.
(And that, at least in certain configurations, IIS with SNI support enabled doesn't provide any certificate if you don't specifiy a server name.)
Yet another way to distribute #malware through a Microsof Office file format: https://developers.slashdot.org/story/17/12/15/1133217/microsoft-considers-adding-python-as-an-official-scripting-language-in-excel
Greetings everyone, also followed Tinker over from Twitter. I dabble
in a bit of everything, TI, IR, Red, Blue, management, and a bit of python. I manage the SOC, IR and Dev team at a small MSSP. Formally part of the Shadowserver project, VMware CTU, and a stint through the common three letter fed orgs. #introductions
After the commit in #HardenedBSD linked to below, it'll be time for a new exp-run. If successful, we'll set llvm-ar, llvm-nm, and llvm-objdump as the default ar, nm, and objdump, bringing us one step closer to Cross-DSO CFI in base.
"Can't disable HTTP because too many people around the world have limited internet access" yeah right, mandatory encryption is really limiting 🙄🤔 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=224097 https://t.co/CGP86jUbhd
Turns out the handyman we hired to do a few odd jobs around the house is a racist.
He no longer works for us.
I wonder when we'll see SGX and/or CET instructions as nopsleds on "older" systems.
#Enigmail 's blocking of copy-paste makes people unsafe.
It basically means people cannot use password managers for their GnuPG key passwords. The alternatives for most users are:
- use a shitty password (perhaps re-using it);
- use a key without a password.
The person who came up with this idiotic idea should get drawn and quartered.
This is exactly why I try not to get involved in #FreeBSD's matters anymore: https://lists.freebsd.org/pipermail/freebsd-security/2017-December/009558.html