vpz

@vpz@infosec.exchange
93 Followers
242 Following
1.1K Posts
Principal Penetration Tester
OSCE3, OSEP, OSWE, OSED, OSCP penetration testing certifications
Learning guitar, likes cute animal pictures and bespoke custom keyboards
Maybe I shouldn't answer the door.

On the awfulness that this way comes.

Later.

After the votes are counted.

-= We hoped we never had to do this but here we are and we now have to do this. =-

American trans humans are under threat and like in 1930s Germany, they now have to GTFO of their home country.

We have decided we need to collect some information on the possible ways out.

So we made a wiki.

We are collecting information on possible exit routes into various countries. We focus on work, study and self employment visas as they are available at the moment.

https://transworldexpress.org/

Trans World Express

Apropos nothing at all: Hey! I moved from San Francisco to Amsterdam two years ago, and I've never been happier. A friend wrote this guide for Americans:

https://v.st/daft

Relocating to the Netherlands with DAFT - HedgeDoc

What to expect when relocating to the Netherlands with the DAFT visa

@RainofTerra It's easy to forget that the average person probably only has 2 laptops and 1 or 2 tablets.
https://xkcd.com/2501/
Average Familiarity

xkcd

I wrote a short rant about what irks me when people anthropomorphize LLMs:

https://addxorrol.blogspot.com/2025/07/a-non-anthropomorphized-view-of-llms.html

A non-anthropomorphized view of LLMs

In many discussions where questions of "alignment" or "AI safety" crop up, I am baffled by seriously intelligent people imbuing almost magic...

Is there a term for the class of "credential storage confusion" #security issues, where the user accidentally saves a password or passkey in a vault they don't actively use (browser, #SSO IdP, #passwordManager, OS)?

One thing that made me think of this is having to go through a separate step (like "use a different device") on Android to avoid enrolling the phone as passkey.

I can see how users spread active credentials across multiple services which seems like a massive #infosec issue to me...

Here's to the crazy ones. The digital revolutionaries. The #fediverse builders. The ones who see social media differently.

They're not fond of #BigTech. And they have no respect for the #SurveillanceEconomy.

You can quote them, disagree with them, glorify or vilify them. About the only thing you can't do is ignore them.

Because they change things.

While some see them as the crazy ones, we see genius.

Because the people crazy enough to think they can change social media, are the ones who do.

I'm not a manager by profession myself, but several times in my career I had to step in to do more or less of the work that our management failed to do, and it was always the hardest and most thankless work in my entire experience. But at the same time, it's the work that is the most worth doing, because it acts as a multiplier for the entire team. And when done wrong, it can be a multiplier with a negative sign.