Pontiff Fractal Tiam

@[email protected]
38 Followers
311 Following
967 Posts

·· 𝘗𝘢𝘯𝘤𝘢𝘬𝘦 𝘍𝘭𝘪𝘱𝘱𝘪𝘯𝘨 𝘛𝘪𝘮𝘦 ··

I work in cyberspace, security department.

*If it cannot be measured, it does not exist*

No discussions in bad faith!

ReligionDNS
TopicsDNS(SEC) & Web PKI
WorkProduct Security
Pontiff Fractal TiamMar 1
Woke up to everyone suddenly turning into #iran experts on the fediverse overnight.
Pontiff Fractal TiamFeb 28

Can anyone @delta help me with setting up a relay server? I'm following the docs.

  • root ssh access is (reluctantly) allowed
  • pyinfra still asks for password of a random ssh key on my local machine
  • it fails because authentication fails

I don't get it, because password authentication is enabled.

#deltachat #fedihelp

Setting up a chatmail relay - chatmail relay documentation

Pontiff Fractal TiamFeb 25
Ricky MondelloFeb 24
I’m really glad that operating systems and browsers come with free, first-class password/credential management software. Although I myself have been a very happy user of paid credential management software in the past, this is software that most people shouldn’t have to pay for.
Pontiff Fractal TiamFeb 24

@netcup cancels sales on short notice:

The market is being bought out by large AI factories, and from today's perspective, this will continue for at least two years. The question right now isn't how you much we pay - it's whether you get supplied at all.

https://forum.netcup.de/information/netcup-community/netcup-updates/21752-rampocalypse-an-honest-update-on-the-hardware-situation/

#fuckai #server

RAMpocalypse: An honest update on the hardware situation - netcup Community

(english version below) Liebe Community, viele von euch haben schon von der RAMpocalypse gehört und gelesen - es ist der Sammelbegriff dafür, was gerade am Speichermarkt (sowohl RAM, als auch SSD und NVME) vor sich geht. Ich würde lügen, wenn uns…

netcup Community
Pontiff Fractal TiamFeb 20
Show threadSoatok DreamseekerFeb 20

An F in cryptography is aes-js / pyaes, as this Trail of Bits blog by Opal Wright explains:

Mistakes in cryptography are not a sin, even if they can have a serious impact. They’re simply a fact of life. As somebody once said, “cryptography is nightmare magic math that cares what color pen you use.” We’re all going to get stuff wrong if we stick around long enough to do something interesting, and there’s no reason to deride somebody for making a mistake.

What matters—what separates carelessness from craftsmanship—is the response to a mistake. A careless developer will write off a mistake as no big deal or insist that it isn’t really a problem—yadda, yadda, yadda. A craftsman will respond by fixing what’s broken, examining their tools and processes, and doing what they can to prevent it from happening again.

Does this sound familiar?

Carelessness versus craftsmanship in cryptography

Two popular AES libraries (aes-js and pyaes) provide dangerous default IVs that lead to key/IV reuse vulnerabilities affecting thousands of projects. One maintainer dismissed the issue, while strongSwan’s maintainer exemplified proper security response by comprehensively fixing the vulnerability in their VPN management tool.

The Trail of Bits Blog
Pontiff Fractal TiamFeb 19
BOFH ExcusesFeb 19
#BOFH excuse #113:

Root nameservers are out of sync
Pontiff Fractal TiamFeb 18
MarijnFeb 18
"Digital sovereignty," if taken to mean we should switch from unaccountable American companies to unaccountable European companies, is largely missing the point of the problem. In a globalized economy the two are going to be functionally indistinguishable. What we need is non-profit digital infrastructure that's not beholden to the perversions of financialization.
Pontiff Fractal TiamFeb 17
Doktor Overcomma Feb 17
A new paper addresses The Urinal Problem: "A man walks into a men’s room and observes n empty urinals. Which urinal should he pick so as to maximize his chances of maintaining privacy, i.e., minimize the chance that someone will occupy a urinal beside him? In this paper, we attempt to answer this question under a variety of models for standard men’s room behavior." Applicability to women's commode stalls is also discussed.
https://people.scs.carleton.ca/~kranakis/Papers/urinal.pdf
#privacy #GameTheory
Pontiff Fractal TiamFeb 15
Jan SchaumannFeb 15

Introducing ads into AI chat bots is a clear recipe for disaster. Zoe Hitzig’s NYT essay is interesting, but I think her comment in response to a reader is more important and succinctly devastating to the claims of how AI will change everything:

https://www.nytimes.com/2026/02/11/opinion/openai-ads-chatgpt.html

Pontiff Fractal TiamFeb 15
David Chisnall (*Now with 50% more sarcasm!*)Feb 15
AI, n:
Machine learning being applied to problems for which machine learning is not an appropriate solution.