https://www.xda-developers.com/mediatek-su-rootkit-exploit/ Huge, very easy to exploit MediaTek vulnerability leaves Android devices completely unprotected, and it is being used in the wild right now.
"Bye-Bye Mastodon, our account on Fosstodon.org was deleted yesterday" https://olimex.wordpress.com/2020/03/05/bye-bye-mastodon-our-account-on-fosstodon-org-was-deleted-yesterday/
https://www.nasa.gov/content/hubbles-mirror-flaw
Did you know that, before being able to swap out the optical apparatus of the Hubble telescope, a temporary fix was applied using the Fourier Transform by means of modelling the image transformation on Earth, and just reversing it?
Computer Science is fascinating indeed.
Crossposted from Twitter
“All men dream, but not equally. Those who dream by night in the dusty recesses of their minds, wake in the day to find that it was vanity: but the dreamers of the day are dangerous men, for they may act on their dreams with open eyes, to make them possible.” - T. E. Lawrence
My cellphone carrier doesn't offer a free API for programmatically sending SMS messages. Or at least not for free, they do have an option for businesses but it's extremely expensive.
I have an old Android phone I could keep in a drawer with a SIM card to act as an SMS gateway. My question is: Is there a service that allows me to expose an HTTP REST endpoint for (securely) sending (maybe receiving too) SMS messages? Better if it's FOSS. Thanks!
I have a 16 GB MacBook Pro.
Purple is compressed, blue is wired (locked by kernel drivers, etc), red is active (userland and so on).
16 GB of RAM is absolutely enough for a laptop nowadays and for the next few years. Perhaps 5 years down the line I will have a little more trouble as web browsers become increasingly bloated, but it is fine for now.
By the way, I typically run two Chromium instances side-by-side and another Electron-based app, and still struggle to hit near 75% of RAM usage.
Crossposted from Twitter
There I was thinking that using different SSH keys for each server was sufficient protection. Who thought that sending all of them to any server you try to connect to was a good idea?
Crossposted from Twitter
"Thousands of candles can be lighted from a single candle, and the life of the candle will not be shortened. Happiness never decreases by being shared." - Buddha
OpenSSH finally adds support for U2F keys! This is awesome! https://www.zdnet.com/article/openssh-adds-support-for-fidou2f-security-keys
Waterfox, a fork of Firefox, has been sold to System1, an ad/online marketing company. You probably want to watch out what happens to Waterfox from there on, if you ever used it. #linux #firefox #waterfox https://www.waterfox.net/blog/waterfox-has-joined-system1
I find the sweet spot to be at deferring feature updates for 60 days, and security updates for 8 (just enough to make sure a week passes before any issues are found, just in case).
For example, I just received update 1909, which was released starting in November 2019: https://www.howtogeek.com/437112/whats-new-in-windows-10s-19h2-update-arriving-fall-2019/ , more than enough time to fix its rough edges.
Since it is well-known that Microsoft Windows 10 updates tend to be buggy on the day of release, it is possible to defer upgrades for a given period of time. This means you won't get the latest and greatest features, but if you're a content producer, a professional who relies on their computer, or just a heavy gamer, you may appreciate the improved stability.
Note that this requires Windows 10 Pro. If you run Home, I recommend you upgrade to Pro.
https://support.microsoft.com/en-us/help/4026834/windows-10-defer-feature-updates
#ComputerScience & #Engineering student, #cybersecurity enthusiast, #privacy advocate.
I blog about CTFs and system administration. Sometimes a bit of reverse engineering as well.
Posts are my own and do not represent the views of my employer.