jbaggs

@jbaggs@infosec.exchange
232 Followers
172 Following
159 Posts

I've been in and out of information security professionally, but somehow always have related projects. Mainly working with zeek and network level detection at the moment. SDR, cycling, and climbing enthusiast.

I boost a lot. Topics range far and wide from security and "the cybers" and may include politics, food, humor, science, law, nature, art, and other sundry unsavories. I occasionally post my own projects and thoughts.

Pronounshe / him
Githubhttps://github.com/jbaggs
AgeSomewhere between Bianchi green and Soekris green
jbaggs4h ago
Show threadErin Kissane4h ago

Okay maybe part four after all: If you're looking for US gov/pol knowledge on the fediverse, are there findability and/or kindness choices you would find useful?

We'll hashtag for discovery + easy muting, and our tone will always be coolheaded and level, pointing to more info on the site. I'm inclined not to CW because it's not going to be BREAKING NEWS or scary headlines—that is not our lane. (Our pages look like this rn https://unbreaking.org/issues/transgender-healthcare/ )

(We're about to put up a blog with RSS.)

Transgender Healthcare — Unbreaking

How the administration is breaking the government, and what that means for all of us.

jbaggs4h ago
PointOfNo6h ago
death by five thousand kisses
#dogsofmastodon #dogs #Humor #puppies
jbaggs5h ago
azteclady5h ago
Feeling safe.
jbaggs5h ago
Apiary5h ago
Meow Wolf Convergence Station was super good, and very popular. It was neat to see people all enjoying it differently.
jbaggs5h ago
CatSalad🐈🥗 (D.Burch) 5h ago
Is it safe to use toilets in your dreams?
jbaggs6h ago
ComfyConAU19h ago

You know what a great brunch has? Pancakes and potatoes.

Announcing our rescheduled 2025 event, and in partnership with @pancakescon, we’re going to do a behemoth 18 hour conference taking in Australia, New Zealand, the US , EVEN THE WHOLE WORLD. Kick your time off with the spider warriors, comfy in your pyjamas, then join our friends over the Pacific for a drink and an in-depth learn to close out an amazing weekend.

21st September in a Timezone near you.

Details for ComfyCon coming as soon as our committee has a working non COVID brain.

jbaggs7h ago
Emily Velasco7h ago
First coat of truck bed liner on the bike. Next coat in 1.5 hours
jbaggs9h ago
Catalin Cimpanu9h ago

On the CrowdStrike AI layoffs:

"These were not underperformers. Many of them were relatively new hires. [...] So, AI has literally killed many jobs at CrowdStrike this week. I'm fortunate to be among the survivors, but I don't know for how long."

https://www.bloodinthemachine.com/p/how-ai-is-killing-jobs-in-the-tech-f39

AI Killed My Job: Tech workers

Tech workers at TikTok, Google, and across the industry share stories about how AI is changing, ruining, or replacing their jobs.

Blood in the Machine
jbaggs9h ago
Christopher Kyba 🇨🇦🇪🇺22h ago
It's a bit surreal to be in this #LPS25 panel discussion about the future of small sats and constellations, and no one talks at all about the fact that LEO is already on the way to runaway debris at the present number of space objects. http://www.researchgate.net/publication/391093502_CRITICAL_NUMBER_OF_SPACECRAFT_IN_LOW_EARTH_ORBIT_A_NEW_ASSESSMENT_OF_THE_STABILITY_OF_THE_ORBITAL_DEBRIS_ENVIRONMENT
jbaggs9h ago
Catalin Cimpanu12h ago

Free Certificate Authority Let's Encrypt has ended its email notification service that warns users of expiring certificates.

The company blamed this on rising costs.

https://letsencrypt.org/2025/06/26/expiration-notification-service-has-ended/

Expiration Notification Service Has Ended

Since its inception, Let’s Encrypt has been sending expiration notification emails to subscribers that have provided an email address to us via the ACME API. This service ended on June 4, 2025. The decision to end the service is the result of the following factors: Over the past 10 years more and more of our subscribers have been able to put reliable automation into place for certificate renewal. Providing expiration notification emails means that we have to retain millions of email addresses connected to issuance records.

×
Adam Shostack  12h ago

What an awful alert design. Is this a silver alert? Why not put the information in the alert, rather than sending people to a bitly link rather than a seattle.gov or wa.gov one?

Alerts should explain their purpose and what the recipient should do as concisely and quickly as possible.

#usability #design #safety

Show threadMike Sheward12h ago
@adamshostack ah i see we are in proximity lol https://infosec.exchange/@SecureOwl/114751306359979145
Mike Sheward (@SecureOwl@infosec.exchange)

Attached: 1 image Today a silver alert with a bit.ly link pointing to X. This of course means both bit.ly and X are critical national infrastructure and are therefore audited as such.

Infosec Exchange
Show threadAdam Shostack  12h ago
@SecureOwl Pay no attention to the fellow working on your internet connection! 😂
Show threadNick (Alatar the Blue)12h ago

@adamshostack

Government should never hide info behind 3rd party links - it should all be authoritative .gov sites (even if it’s a URL shortening service that redirects). Too easy to make scams if bit.ly is equal in weight to .gov.

Show threadbrokengoose11h ago

@adamshostack

In the interest of Washington public safety, please follow this random link to a domain with a registrar in Libya.

Show threadkillick10h ago

@adamshostack

The link probably takes you to a PDF that you have to open, and when you finally do, you see the alert in glorious plain text.

Show threadJustRosy 🇺🇦7h ago
@adamshostack It's most likely due to a virus. Legit alerts don't look like this at all.