josh://Hirō Isono
| blog | https://joev.dev |
| github | https://github.com/j0ev |
joev
- 148 Followers
- 149 Following
- 211 Posts
security engineer, got that one shell that one time. he/him.
Filippo Valsorda🚨 x/crypto/ssh: misuse of ServerConfig.PublicKeyCallback may cause authorization bypass
Common API misuse allows attacker to log in with one key, but appear to have logged in with another. Potentially affects services that look up users by key.
Partially mitigated in golang.org/x/[email protected].
JosephMenn
Miguel de Icaza ᯅ🍉Since Apple won’t include stickers anymore with their iPhones, old stickers are like bitcoin, a finite resource that we can use as a store of value and currency.
Someone set up a proper trading market place for StickerCoin.
prontojust heard my local bakery's industrial oven runs Windows with a #Crowdstrike #Falcon monitor, and they've been unable to get the oven to turn off since this morning.
o_o
o_o
evariste.gal🌈is
Tinker ☀️
Alexandre B A Villares 🐍
scriptjunkienetstat when there's no netstat or ss
S=(- ESTABLISHED SYN_SENT SYN_RECV FIN_WAIT1 FIN_WAIT2 TIME_WAIT CLOSE CLOSE_WAIT LAST_ACK LISTEN CLOSING);hex2ipport(){ printf '%d.%d.%d.%d:%d\n' $(echo $1|awk -F: '{print $1}'|sed 's/../0x& /g'|awk '{print $4" "$3" "$2" "$1}') 0x$(echo $1|awk -F: '{print $2}');};cat /proc/net/tcp|tail -n +2|while read L;do echo $(hex2ipport $(echo $L|awk '{print $2}')) $(hex2ipport $(echo $L|awk '{print $3}')) ${S[$(( 0x$(echo $L|awk '{print $4}') ))]};done
Sophie SchmiegNew blog post: Recovering public keys from signatures. It turns out public keys, are, in fact, public.
https://keymaterial.net/2024/06/15/reconstructing-public-keys-from-signatures/
