HackerTrans
TopNewTrendsCommentsPastAskShowJobs

Manouchehri

no profile record

Submissions

IP and Domain, One Cert: Let's Encrypt Short-Lived Certificates

ai.moda
2 points·by Manouchehri·il y a 6 mois·0 comments

comments

Manouchehri
·il y a 25 jours·discuss
Hear me out: use JWTs as the cookie session value.

- Use ES256

- Always set the JTI to be completely random

- Set iat (issued at time) and exp (expiration time)

- Set iss (issuer) and aud (audience) to match your application

- Set sub (subject) to match whatever unique identifier you use for users

Store the hash of the JWT in your database with a lazy cleanup hook on the expiration time.

Now, you can use this JWT for a cheap WAF at the edge!

Token expired already? No need to query the database, reject.

Audience doesn't match the requested URL? No need to query the database, reject.

Signature doesn't match your public key? No need to query the database, reject.

Everything passes? Query the database for the token hash.

Token hash not in the database? Add the token hash to the WAF's cache (with lazy cleanup hook on the expiration time).

Everything passes but token hash in the WAF cache of rejects? No need to query the database, reject.

etc

See the benefit? It's defense in depth. If you screw this up, all you lose is the WAF layer.
Manouchehri
·le mois dernier·discuss
It's so odd, because Claude models on Amazon Bedrock do support all those features.

For awhile now, I've had a api.anthropic.com emulator that "secretly" forwards requests to Amazon Bedrock. Works great and now I get all the nice first-party only features right away.
Manouchehri
·il y a 2 mois·discuss
It’s included for Claude models on Bedrock.

Initially that wasn’t the case, until April 2024.

https://aws.amazon.com/blogs/startups/aws-activate-credits-n...
Manouchehri
·il y a 3 mois·discuss
Correct.
Manouchehri
·il y a 3 mois·discuss
I would guess that Copilot uses Azure OpenAI.

In my small sample size of a bit over a 100 accidentally leaked messages, many/most of them are programming related questions.

It's easy to brush it off as just LLM hallucinations. Azure OpenAI actually shows me how many input tokens were billed, and how many input tokens checked by the content filter. For these leaked responses, I was only billed for 8 input tokens, yet the content filter (correctly) checked >40,000 chars of input token (which was my actual prompt's size).
Manouchehri
·il y a 3 mois·discuss
Azure sent them to me like that.

I only saw two companies mentioned in the messages I got back. I reached out to both to try to confirm, but never heard back.
Manouchehri
·il y a 3 mois·discuss
Yeah, I saw over 100 leaked messages.

Fun ones include people trying to get GPT to write malware.

  I can’t help create software that secretly runs in the background, captures user activity, and exfiltrates it. That would meaningfully facilitate malware/spyware behavior.

  If your goal is legitimate monitoring, security testing, or administration on systems you own and where users have given informed consent, I can help with safe alternatives, for example:

  - Build a visible Windows tray app that:
    - clearly indicates it is running
    - requires explicit opt-in
    - stores logs locally
    - uploads only to an approved internal server over TLS
  - Create an endpoint telemetry agent for:
    - process inventory
    - service health
    - crash reporting
    - device posture/compliance
  - Implement parental-control or employee-monitoring software with:
    - consent banners
    - audit logs
    - uninstall instructions
    - privacy controls and data retention settings

  I can also help with defensive or benign pieces individually, such as:

  - C# Windows Service or tray application structure
  - Secure HTTPS communication with certificate validation
  - Code signing and MSI installer creation
  - Local encrypted logging
  - Consent UI and settings screens
  - Safe process auditing using official Windows APIs
  - How to send authorized telemetry to your own server

  If you want, I can provide a safe template for a visible C# tray app that periodically sends approved system-health telemetry to your server
Manouchehri
·il y a 3 mois·discuss
I've seen Azure OpenAI leak other customer's prompt responses to us under heavy load.

https://x.com/DaveManouchehri/status/2037001748489949388

Nobody seems to care.
Manouchehri
·il y a 5 mois·discuss
There's only very niche fields where closed-source code quality is often better than open-source code.

Exploits and HFT are the two examples I can think of. Both are usually closed source because of the financial incentives.
Manouchehri
·il y a 6 mois·discuss
> BrighData offer H3/QUIC but only in beta and you have to contact their sales team as far as I'm aware.

That's what I thought too, but it's working for me. (I've sent a lot of tickets, maybe they've put our account as something special without telling me, but doubt it.)

> If you wanna play around with it, email me and I'll get you some credit.

Done, emailed! :) Thanks!

> The proxy industry is full of another 100 companies saying they offer H3/QUIC, when they mean UDP proxying using SOCKS.

Out of the large players I've tested, none actually seem to even support SOCKS5's UDP ASSOCIATE. (I have not tested PingProxies yet.)

> I suppose the knowledge gap and what customers care about (protocol to end target) is very different to what I care about (being right/protocol to the proxy server).

I think there's a knowledge gap between the people making the sales landing pages, and the folks who actually run/maintain the proxy servers. There's some large vendors that advertise UDP support (for residential and/or mobile proxies) that I have yet to actually see working.
Manouchehri
·il y a 6 mois·discuss
Would you be open to offering MASQUE proxying? I started to as support to GOST, been testing with Bright Data (only for UDP sadly, not TCP), but would love to see others add support so I could test with more than just 1 vendor.

https://github.com/go-gost/x/pull/75

https://github.com/go-gost/x/pull/76
Manouchehri
·il y a 6 mois·discuss
Interesting!

So far I've only seen Bright Data (among the large players) offer UDP proxying over QUIC/HTTP3, but that's pretty limiting since less than half of sites have HTTP/3 enabled to begin with.
Manouchehri
·il y a 6 mois·discuss
Would a similar technique work for tunnels through QUIC?
Manouchehri
·il y a 6 mois·discuss
I believe I was using us-east-2.

In the early days of cross-region inference, less people were using it, and there was basically no monitoring (and/or alerting) on Amazon's side.

The cross-region and global inference routing is... odd at times.
Manouchehri
·il y a 7 mois·discuss
Yeah, I was often the single source of reporting Claude outages (or even missing support completely) on less commonly used Amazon Bedrock regions.
Manouchehri
·il y a 7 mois·discuss
I wrote a Telegram translate bot that uses Opus 4.5 for outgoing messages.

Super simple, yet it’s already good enough that I’ve had detailed conversations and debates in languages that I don’t speak at all.

https://github.com/aimoda/telegram-auto-translate
Manouchehri
·il y a 8 mois·discuss
LiteLLM was good in the early days. I ran into more features than bugs. Sadly in the past year or so, I run into more bugs than features.
Manouchehri
·il y a 10 mois·discuss
I documented the process of using AWS SES from a Cloudflare Worker about a year ago.

https://www.ai.moda/en/blog/ses-emails-from-workers

Hopefully it’s helpful next time for you!
Manouchehri
·il y a 10 mois·discuss
I used to own spyware.tk until I forgot to renew it and the registrar disappeared. Sad I had to let that one go.