Mastodawn

Security conference talks fall into two categories
* we designed a distributed entropy siphon to perform a black-box hypervisor side channel escape and chain-load a persistent rootkit into the CPU cache
* we looked behind the sofa and found an entire industry of products/services that have made no attempt at security at all and are therefore vulnerable to the most basic issues that we've been finding in everything for the past 30 years, and no-one else had bothered to look.

Dominic Luidold Jul 14, 2025

If anyone's interested, here's a 20% discount coupon for a #JetBrains #Phpstorm individual license.

Enjoy! :)

4T5TY-G8D9D-2HML8-ACPDL-ECYQS

Dominic Luidold Jan 30, 2025

DroidPort Jan 30, 2025

One more time for the people in the back... The ones with their fingers in their ears...

#proton isn't your enemy.

https://medium.com/@ovenplayer/does-proton-really-support-trump-a-deeper-analysis-and-surprising-findings-aed4fee4305e

Does Proton really support Trump? A deeper analysis (and surprising findings)

Recently, allegations surfaced on Reddit that Proton (or at least Proton’s CEO) supports Trump. Hillary Keverenge from Tech-Issues Today…

Medium

Dominic Luidold Jan 28, 2025

@daniebeler I read somewhere that you use #YunoHost to host your own Pixelfed instance. I'm also considering hosting my own Mastodon (+ possibly Pixelfed) instance myself.

Can you recommend YunoHost? Is there anything special to look out for?

Dominic Luidold Jan 27, 2025

Signal Jan 27, 2025

Coming soon: When you add a linked device (Desktop or iPad), bring your whole chat history + last 45 days of media. The transfer process is end-to-end encrypted & completely optional.

Don't want to leave the past behind? We leave you to your own devices.

https://signal.org/blog/a-synchronized-start-for-linked-devices/

A Synchronized Start for Linked Devices

With Signal on Desktop and iPad, you can link your primary Android or iOS account with another device, letting you check and respond to messages in both places or conduct video meetings and calls from the comfort of a bigger screen. Signal’s upcoming beta releases will also introduce the option t...

Signal Messenger

Dominic Luidold Dec 18, 2024

Ondřej Mirtes Dec 18, 2024

Property hooks is the first PHP feature where static analysis is a must. It's so easy to shoot yourself in the foot.

Here's a property with a set hook that does not actually assign value to the property which is suspicious.

PHPStan will report it as an error:

Dominic Luidold Dec 3, 2024

Just two days to go until #SymfonyCon in #Vienna, and even less until #SuluTouch!
Excited for my first two in-person conferences — can't wait. 🙌

Looking forward to meeting amazing folks from the #PHP, #Symfony, #Sulu, and #Sylius communities! 🚀

Dominic Luidold Nov 25, 2024

My first contribution to #Symfony just got merged!

And just in time before the bugfix EOL of Symfony 5.4 so that even older LTS projects can benefit from it. 🥳

https://github.com/symfony/symfony/pull/58983

[Translation] [Bridge][Lokalise] Fix empty keys array in PUT, DELETE requests causing Lokalise API error by DominicLuidold · Pull Request #58983 · symfony/symfony

Q A Branch? 5.4 Bug fix? yes New feature? no Deprecations? no Issues / License MIT This PR fixes two cases where an empty keys array is passed to a PUT/DELETE request, resulting in...

GitHub

Dominic Luidold Nov 24, 2024

I'm thinking about running my own 1-person #Mastodon instance. Does anyone have any tips, especially for documentation or a good tutorial for running it with the provided #Docker image (and most likely using #Traefik as a reverse proxy)?

I'm a bit on the fence as the official docs don't mention Docker at all.

Dominic Luidold Nov 24, 2024

Paul Reinheimer Nov 19, 2024

The more I learn about cryptography, the more I think Alice and Bob should probably just talk in person.

Website	https://dominicluidold.at
LinkedIn	https://linkedin.com/in/DominicLuidold
GitHub	https://github.com/DominicLuidold
GitLab	https://gitlab.com/DominicLuidold