Justin Azoff

@[email protected]
54 Followers
77 Following
148 Posts
Breaking things by looking at them.
Websitehttps://justin.azoff.dev
Githubhttps://github.com/JustinAzoff
Justin AzoffMay 2

RE: https://infosec.exchange/@JustinAzoff/111710060558590981

I finally built this! https://github.com/JustinAzoff/rqloud It's very early, but it works! I have a (very small) fork of the #tailscale golink service running on a 3 node distributed cluster.

Justin AzoffJun 16, 2025

This is a really interesting example of why implicit "zero values" for structs in go can be a problem: https://github.com/ubuntu/authd/security/advisories/GHSA-g8qw-mgjx-rwjr

"The temporary user record we returned in the pre-auth NSS request did
not have a GID set, so it defaulted to GID 0 (the ID of the root group)."

I suppose one could argue that it's more of an issue in posix that a uid or gid value of 0 was not defined as nobody/nogroup but root.

New authd users logging in via SSH are members of the root group

### Impact When an authd user logs in via SSH for the first time (meaning they do not yet exist in the authd user database) and successfully authenticates via the configured broker, the user is co...

GitHub
Justin AzoffMar 20, 2025

Still not too concerned about the AI robots taking my job.

❯ ollama run gemma3:12b

>>> /clear
Cleared session context
>>> How many letter R's are there in the word strawberry?
There are three "R"s in the word "strawberry".

>>> How many letter R's are there in the word strawberries?
There are four "R"s in the word "strawberries".

Justin AzoffFeb 24, 2025
MostlyHarmlessFeb 24, 2025
All billionaires must submit a list of five things they did for society in the last week or their wealth shall be confiscated.
Justin AzoffFeb 7, 2025
Jeff AtwoodFeb 7, 2025
"Build something small. Own it completely. Scale it thoughtfully. That’s how you win without cheating." https://www.joanwestenberg.com/you-cant-win-in-tech-unless-you-cheat/
You Can't "Win" in Tech Unless You Cheat

PayPal started by paying people to sign up. Their viral growth came from essentially bribing users with $10 to join and $10 for each referral. That’s not innovation — it’s buying market share with venture capital. Uber didn’t disrupt transportation — they ignored taxi regulations their competitors had to

westenberg.
Justin AzoffDec 27, 2024

Despite the best efforts of day 22, I managed to get all of #adventofcode 2024 to run in under 100ms (fm13 Ryzen 7840U). This runs and verifies all 49 results including reading and parsing the input files from disk:

❯ ,fast cargo run --release
Finished `release` profile [optimized] target(s) in 0.02s
Running `/dev/shm/aoc2024/release/aoc2024`
Day 1: 0.095ms
Day 2: 0.131ms
Day 3: 0.293ms
Day 4: 0.904ms
Day 5: 0.155ms
Day 6: 4.012ms
Day 7: 4.957ms
Day 8: 0.053ms
Day 9: 4.231ms
Day 10: 0.206ms
Day 11: 2.284ms
Day 12: 1.321ms
Day 13: 0.316ms
Day 14: 7.654ms
Day 15: 0.846ms
Day 16: 7.485ms
Day 17: 0.127ms
Day 18: 1.655ms
Day 19: 0.760ms
Day 20: 3.259ms
Day 21: 0.222ms
Day 22: 34.744ms
Day 23: 14.156ms
Day 24: 6.585ms
Day 25: 0.415ms
----------------
Total: 96.877ms

'cargo flamegraph' was critical as the slowest bits were often not what I thought they were.

Justin AzoffDec 24, 2024

Possibly the dumbest thing I've ever written

let val = match value {
"0" => true,
"1" => false,
_ => todo!(),
};

Justin AzoffDec 21, 2024

Today's #adventofcode :

How it started:

Day 20: 708429.582ms

How it's going:

Day 20: 4.922ms

Justin AzoffNov 29, 2024
I wrote a thing: (Ab)using the NixOS Test framework for clean room PCAP generation: https://justin.azoff.dev/blog/abusing-the-nixos-test-framework-for-clean-room-pcap-generation/
(Ab)using the NixOS Test framework for clean room PCAP generation

Generating clean room PCAP files can be a difficult orchestration problem. The nixosTest framework makes this easy.

Justin AzoffSep 19, 2024
The Zeek Network Security MonitorSep 19, 2024
If you missed the live version of Justin's webinar yesterday, the stream is online here: https://youtube.com/live/5EatgBUowaw Do you separate out your fiber cables when connecting to your monitoring NIC?
Before you continue to YouTube