FULL METAL ALCHEMIST!!! ………….. full. metal. alchemist.
Software fox! Grad student. Late 20's. YAGF (Yet Another Gay Furry) 🌈 he/him
Opinions are my own and do not necessarily reflect those of my persona.
Secco
- 16 Followers
- 29 Following
- 114 Posts
My friend is traveling to Japan. I’m so worried they might get isekai’ed and they won’t come home. What should I do?
Researchers from London and ETH broke telegram! https://eprint.iacr.org/2023/469 Really wish we as a community could get off this dumpster of a messaging app. Remember their NFT?
Four Attacks and a Proof for Telegram
We study the use of symmetric cryptography in the MTProto 2.0 protocol, Telegram's equivalent of the TLS protocol. We give positive and negative results. On the one hand, we formally and in detail specify a slight variant of Telegram's "record protocol" and prove that it achieves security in a suitable bidirectional secure channel model, albeit under unstudied assumptions; this model itself advances the state-of-the-art for secure channels. On the other hand, we first motivate our slight deviation from MTProto as deployed by giving two attacks on the original protocol specification: one of practical, one of theoretical interest. Then, we give two attacks on the implementation, which are outside of our formal model: one targeting the client, one targeting the server. The client-side attack enables plaintext recovery by exploiting timing side channels, of varying strength, in three official Telegram clients. On its own this attack is thwarted by the secrecy of header fields that are established by Telegram's key exchange protocol. We thus chain this attack with an attack against the implementation of the key exchange protocol on Telegram's servers. This final attack breaks the authentication properties of Telegram's key exchange, allowing a MitM attack. More mundanely, it also reduces the cost of the client-side plaintext recovery attack. In totality, our results provide the first comprehensive study of MTProto's use of symmetric cryptography, as well as highlight weaknesses in its key exchange.
hook it up to a cron job and decimate your productivity!
Have you ever wanted to set your desktop background to a random e621 image? https://github.com/proseccofox/e6bg
If babies are pet sperm than what are adults? Free range sperm?
It's basically just an anemic version of @qdot 's Intiface Game Vibration Router but for linux. Game controllers on linux use evdev which turns out to be pretty easy to snoop for vibration events. Working with buttplug.io has been super easy. I cant believe it only took a couple lines of python to get this working
Are you a linux gamer? Have you ever wanted your buttplug.io compatible sex toy to vibrate at the same time as your xbox controller?
Well now it's possible with the Buttplug Controller Shim! https://github.com/proseccofox/bcs
@qdot I just started using your buttplug.io intiface on linux and now my buttplug connects to my computer more reliably than my AirPods ❤️
I have a new philosophy after grading a grueling homework assignment for a class of 70: I will not spend more time grading an assignment than a student spent working on it