Lou

@[email protected]
88 Followers
105 Following
57 Posts
he/they
You won't find moments in a box. NJ➡️TX. Looking for evil @ Splunk
LouAug 19, 2024

Checking Slack on the weekends be like...

#infosec #cti

LouJun 22, 2024
Jerry 🦙💝🦙Jun 22, 2024
Thinking about making a book featuring my photography with inspirational Infosec messages
LouMay 25, 2024
Star Trek Minus ContextMay 25, 2024
It's the weekend, baby
#StarTrek
LouApr 25, 2024
Apr 25, 2024
cryptographers coming up with increasingly convoluted hijinks for the Alice/Bob/Charlie/Eve/Mallory polycule to get up to
LouApr 17, 2024
Filippo ValsordaApr 17, 2024

A PSA since there's some confusion on this...

There is no vulnerability in Gorilla Sessions.

The vulnerability is in Palo Alto's internal SessDiskStore, which looks similar to FilesystemStore. Early analysis came to the mistaken conclusion that the vulnerable path was in FilesystemStore, but it's not. FilesystemStore authenticates the Session.ID with securecookie, SessDiskStore does not.

LouAug 12, 2023
Got a couple spare bluesky codes if anyone is interested.
LouJul 14, 2023
I hate getting really awesome news at work on a Thursday that I'm not allowed to talk about until Monday evening.
LouApr 16, 2023
So, I got this working Friday night but wanted to wait until I had something up and running with at least some content on it. My personal blog (the verified link in my bio) is now finally up and running. https://loustella.io for anyone interested.
Lou Stella

Lou Stella

LouApr 15, 2023
Been giving BlueSky a try the last few days. Thinking there's a chance that's the one that "wins" for the public.
LouDec 5, 2022
Having relatively intimate knowledge of the very specific systems impacted currently, staffing levels, and the internal politics... maybe some day I'll write about my time at #Rackspace