HackerTrans
TopNewTrendsCommentsPastAskShowJobs

byteshock

no profile record

Submissions

Scientist Claims Quantum RSA-2048 Encryption Cracking Breakthrough

tomshardware.com
11 points·by byteshock·3 years ago·6 comments

comments

byteshock
·3 years ago·discuss
For the query string, you don’t have to implement your own DSL. Elasticsearch supports it out of the box. You could POST a JSON object to “/_search” but you can also do a GET with the “q” query parameter. Documentation: https://www.elastic.co/guide/en/elasticsearch/reference/curr...

In the Golang library you can use the “Search.WithQuery” option. This means you don’t have to construct a JSON request body.

Here’s an example: https://github.com/taythebot/archer/blob/main/pkg/elasticsea...
byteshock
·3 years ago·discuss
Very interesting product! How does this compare to something like Nebula? Have you done benchmarks against other solutions? If i remember correctly, Nebula implements its own protocol and underperforms compared to Wireguard. Is this the same case?

Looking forward to trying it out!
byteshock
·4 years ago·discuss
Awesome, thank you for the reply. Will try out Portmaster again!
byteshock
·4 years ago·discuss
I remember trying out Portmaster on Windows earlier this year. I think Portmaster was running a local DNS server to see what connections were being made. This interfered with my VPN, Mullvad, which was trying to use a remote DNS server.

Does Portmaster still require a local DNS server? I’ve been an avid user of Glasswire for years and it works flawlessly with my VPN. But i would love to switch to a open source alternative.
byteshock
·4 years ago·discuss
I think it’s because SPN uses a different IP/node per connection you make. DNS leak detection tests will ask your browser to resolve unique subdomains. If the DNS server that requests the lookup is different from your connecting IP to the website, they will say you have a DNS leak.

https://security.stackexchange.com/questions/42752/how-does-...
byteshock
·4 years ago·discuss
I’m confused on why secret management considered secure. Maybe I’m missing something.

Why is letting a third party managed your secrets is secure? So if that third party gets compromised, they now have access to all your secrets. Amazon or other company employees can also view your secrets.

If your server gets compromised, the secrets that are accessible via that server are also compromised. Isn’t that the same impact as just keeping the secrets on your server? Maybe worse if your permissions are broad. You’re merely adding an extra step to get the secret from your secret management.
byteshock
·4 years ago·discuss
But if they have the decrypted secrets, do they really need the key?
byteshock
·4 years ago·discuss
I’m not sure I understand the value of reporting this to Microsoft? Wouldn’t it be better to submit an online tip to law enforcement? Is Microsoft doing law enforcement activity now?
byteshock
·4 years ago·discuss
The website says its secure and private, but your privacy policy contradicts it. Seems like you don’t collect usage data, but the ad providers do. Is it right to make such a privacy claim?

Privacy Policy: https://tab.gladly.io/privacy/

“Ad targeting, selection, and delivery: When you use our Services, third parties that provide advertising, to the Services, may collect or receive information about you including through the use of cookies. These third parties may use your information to provide you with advertising that is based on your interests and to measure and analyze ad performance, on our Services or other websites or platforms, and combine it with information collected across different websites, online services, and other devices. These third parties' use of your information will be based on their own privacy policies. You can opt out of interest-based targeted advertising for some advertising partners here.”
byteshock
·4 years ago·discuss
Here are the financial reports https://tab.gladly.io/financials/
byteshock
·4 years ago·discuss
If I need to encrypt a file for quick sharing, I’ll use gpg. Encrypt: gpg -c file.zip

Decrypt: gpg file.zip.gpg

However, for my personal files on my computer, I use a Veracrypt container with a strong password and custom pin.
byteshock
·4 years ago·discuss
If someone wants to watch Russian propaganda or RT, they should be free to do so. Just like you are free to browse western media sites.

This choice should be up to the individual and their beliefs.
byteshock
·4 years ago·discuss
Would using a library like Hyperscan improve Go's regex performance?

Reference: https://www.hyperscan.io/
byteshock
·4 years ago·discuss
Doesn’t Cloudflare use Hcaptcha now? They dropped Google because of the cost.
byteshock
·5 years ago·discuss
Can someone explain to me why they are mad? Is it because Mozilla is asking for donations on Twitter? Or it it because Mozilla is accepting crypto?

I don’t think a company accepting crypto as a form of donation is a bad thing tbh. Seems like they’re just trying to allow more people to donate.
byteshock
·6 years ago·discuss
Thank you for your reply. Your deployment seems to be a lot more streamlined and simpler than Stackpath at the moment. That just might be the deciding factor for me and other developers!

I wish you and your team the best of luck!
byteshock
·6 years ago·discuss
Adding onto my last comment, is Stackpath container pricing cheaper than yours at the moment?

I understand this might be due to Stackpath being a larger company and owning hardware instead of renting it. But the price for traffic and compute seem to be cheaper. There is also no mention of how much you charge for storage on the pricing page.

I’m looking to deploy my next app onto one of these platforms and would like to know the price differences!
byteshock
·6 years ago·discuss
Fascinating product! I was wondering if there are any other products that are similar to yours? Other than serverless platforms such as Cloudlfare Workers or AWS Lambda.

I know Stackpath has been offering this kind of thing for a while. So how would your product compare to theirs? Since Stackpath has a well established cdn network already.