Hackers got past Windows Hello facial authentication by tricking a Webcam
Biometrics aren't secrets. It seems like "a good quality infrared image of the target's face" is hard to get right now only because the tech isn't ubiquitous yet. Wait until every website the user logs into has a copy. https://arstechnica.com/information-technology/2021/07/hackers-got-past-windows-hello-by-tricking-a-webcam/
RT @ilumium@twitter.com
🇩🇪 bar association: Our attorney software #beA has #e2ee!
Researchers: No, your servers can read stuff.
🇩🇪: OK, but our encryption is good enough. We don't need e2ee.
🇺🇸 law firm #ReidelLaw: Hold my beer: https://www.reidellawfirm.com/wp-content/uploads/2021/07/Reidel-Law-Firm-Guide-to-Matrix.pdf CC @matrixdotorg@twitter.com @element_hq@twitter.com
@freemo I'm more worried about backdoors the developer themselves put in than the NSA.
@freemo Most modern SoCs let you burn a hash of the second stage bootloader into OTP on chip memory. You can use that to prevent OS updates.
@freemo Aren't those "security chips" just CPUs that sign things and don't let you import/export the keys?
The only difference here is how big the hardware holding the keys is.
@freemo At this point I feel like one you don't build yourself is likely to be a scam.
non-wireless PCBs capable of running Linux are pretty cheap anyway.
Broadcom in talks to acquire analytics firm SAS Institute
https://www.zdnet.com/article/report-broadcom-in-talks-to-acquire-analytics-firm-sas-institute/
"Muse Group Continues Tone Deaf Handling Of Audacity"
https://hackaday.com/2021/07/13/muse-group-continues-tone-deaf-handling-of-audacity/
@icedquinn I felt the same way but I think mastodon is just quieter
Great… Instead of helping out with standardizing protocols, Chromium is just adding support for GNOME-specific APIs.
https://bugs.chromium.org/p/chromium/issues/detail?id=1098201#c12
@linmob I can't tell if it's proton or the GUI scaling but that looks like it wastes precious vertical space.
"We believe your phone should be your castle and that you should be in control of your own computer, not us and not any other vendor." #privacy #librem5 #librem5usa https://puri.sm/posts/your-phone-is-your-castle/
Today's win is an important victory for users everywhere. We will continue to fight to ensure that computer crime laws no longer chill security research, journalism, and other novel and interoperable uses of technology that ultimately benefit all of us. https://www.eff.org/deeplinks/2021/06/supreme-court-overturns-overbroad-interpretation-cfaa-protecting-security
@freemo Yeah, it's still up but it's mostly just inactive bouncers at this point. They kicked everyone for talking about leaving.
swiley.net
Email mastodon+swiley@swiley.net (this makes all of my computers beep and turn on an indicator light and is always the fastest way to reach me.) I was on octodon a while ago but abandoned my account. I've never been a member of gab or parlor.
If you’d like to learn to program I would consider the SICP [1] more or less the peak of American CS pedagogy (at least as far as beginners go) along with “The Practice of Programming” once you get through that.
I play ukulele, I’m ok at reading music and decent at improv. I learned from Walter Piston’s “Harmony” and some of Adam Neely’s videos.
My main phone is a pine phone so if I don’t pick up when you call the battery is probably dead, the modem is probably dead, or I’m currently swearing at calls/pulseaudio/alsa. I’d strongly recommend sending an email instead.
Dispite what my web page says I’ve stopped uploading my scratch projects to GitHub once I started to understand the basics of collaboration with git. I was using the flamegraph as gamification/motivation but it doesn’t work as well with feature branch/squash merge workflows so I just keep most things on my VPS until I’m happy with publishing updates.
[1] https://mitpress.mit.edu/sites/default/files/sicp/full-text/book/book.html