I'm upset that I went to the minimal effort of looking at CVE-2016-10229.

If you can get a reliable exploit out of it, I'll give myself a vasectomy

Fenrir boosted
Fenrir boosted

Also here on the better social network:
twitter.com/flyryan/status/850 <= the previous slides mention an important thing: You also need to create 40 new sessions in the victim's session store in order to purge the session to be replayed first. This Replay is possible due to reuse of the "lastresort" prekey and the missing integrity check on the prekey msgs.

Fenrir boosted

Birdies say tweet
Mastodons are tootin'
Saddle up, kids
We must defeat Putin

Fenrir boosted

There is something which scares me on mastodon. I see more and more people installing instances while they don't have a clue about what they're doing.

Then their instance is going to be listed on the website and people will be randomly redirected toward them when someone wants to use mastodon.

But then what happen?

Hosting someone's services is not fun or anything. It's a liability and I hope you have that in mind.

Also, pick carefully your instance.

as usual, it's midnight and I have to be up at 5. guess I should sleep, but meh

I wonder what ever happened to David House

Fenrir boosted
Fenrir boosted

One more time, welcome to all my peeps.

I came here for the culture which is not twitters culture. No companies, no jerks, no personal brands, no ironic accounts.

Be nice, be real, or please leave. And remember this is an open source product running on the 1 dev's personal server.

Don't complain and please give the dude some $$$

Fenrir boosted


Follow everyone
Awful haikus abounding
Infosec melange

I'm just going to follow everyone so my feed becomes a melange of infosec and bad haikus

Fenrir boosted

I really needed another platform to find infosec papers I will bookmark for later and never open


Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!