HackerTrans
TopNewTrendsCommentsPastAskShowJobs

intc

no profile record

Submissions

China-Nexus Threat Group 'Velvet Ant' Exploits Cisco Zero-Day

sygnia.co
2 points·by intc·há 2 anos·0 comments

Any YouTube experts out there? – Kari (rhymes with Atari)

twitter.com
2 points·by intc·há 2 anos·0 comments

Scientists create chimeric monkey with two sets of DNA

cnn.com
2 points·by intc·há 3 anos·0 comments

TROOPERS23: Keynote – Mikko Hyppönen

youtube.com
2 points·by intc·há 3 anos·1 comments

Australian Woman Hit with $1.2M Judgment in US After Data Breach

youtube.com
3 points·by intc·há 3 anos·1 comments

A Journey into Hacking Google Search Appliance

devco.re
2 points·by intc·há 3 anos·1 comments

China escalates tech battle with review of US chipmaker Micron

ft.com
2 points·by intc·há 3 anos·1 comments

Bendix MG-1 Central Air Data Computer: first look inside [video]

youtube.com
1 points·by intc·há 3 anos·0 comments

Disposable Aliases

c1.fi
1 points·by intc·há 3 anos·0 comments

C1.fi – Vaulted email service for your custom domains

c1.fi
2 points·by intc·há 4 anos·0 comments

Apex Calculus (October 5, 2022)

opentext.uleth.ca
1 points·by intc·há 4 anos·0 comments

C1.fi – on server encrypting email service (IMAPS/Activesync)

c1.fi
3 points·by intc·há 4 anos·1 comments

Hacked documents reveal Ecuador’s failed effort to take in Edward Snowden

dailydot.com
4 points·by intc·há 4 anos·0 comments

A Talk with YouTube Co-Founder Steve Chen – “Innovative Minds with Audrey Tang”

youtube.com
1 points·by intc·há 4 anos·0 comments

C1.fi – simple encrypted-at-rest email service hosted in Finland

c1.fi
3 points·by intc·há 4 anos·2 comments

How Not to Execve()

euroquis.nl
2 points·by intc·há 4 anos·0 comments

I hacked a hardware crypto wallet and recovered $2M [video]

youtube.com
45 points·by intc·há 4 anos·6 comments

Netfilter project announces a settlement with Patrick McHardy

lore.kernel.org
7 points·by intc·há 4 anos·1 comments

comments

intc
·há 3 anos·discuss
Simple C based approach on Sieve of Eratosthenes (by yours truly):

* https://github.com/intc/c-notes/blob/master/threads/4-thrd_e...
intc
·há 3 anos·discuss
One can use standard IMAPS/SMTPS/PGP compliant native email app with C1.FI.

I'm still contemplating about the E2E webmail app - No matter which way one looks it - It's a shaky concept...

BTW. Does anyone know what is the current state of WASM Constant Time proposal?
intc
·há 3 anos·discuss
> Ms Luke said hackers took control of her PayPal account, in a credential stuffing attack that affected 35,000 PayPal customers in December.

https://www.abc.net.au/news/2023-07-25/byron-bay-data-breach...
intc
·há 3 anos·discuss
Have you checked the MS powershell approach[1]?

1. https://learn.microsoft.com/en-us/microsoft-365/enterprise/u...
intc
·há 3 anos·discuss
We use server side spam filtering at c1 (see: https://c1.fi/about/). So far things are working pretty well but certainly false positives may occur. On the positive side client can contact yours truly and we can usually do something to sort these out.
intc
·há 3 anos·discuss
Thanks fore commenting! The public informative parts of c1.fi are readable without JS. See https://c1.fi/about?lang=en for example.

Registering, account management etc. will require JS - Simply to provide better UX.

There are no 3rd party libraries or references (except on pages handling payments via Stripe) in use and the JS is not minified. No 3rd party trackers either.
intc
·há 3 anos·discuss
Our self hosted email service, https://c1.fi, works fine with "plus addressing".

In addition I recently laid out plans for "disposable aliases" with a machine generated random string as local part for users in our shared domains (like c1to.me). So one could use an alias when signing-up with a service. Once the service is not relevant - Just delete the alias. All comments and suggestions are welcome. =)
intc
·há 4 anos·discuss
https://archive.ph/yblJk
intc
·há 4 anos·discuss
Can you email me? Perhaps I can help. Contact information available here: https://c1.fi/about?lang=en (scroll down the page)
intc
·há 4 anos·discuss
> I ported the HelenOS kernel to RV64 in 2016, but I've never properly finished the user space support. I hope this board will be a good motivation for me to finally push the entire OS to the same level as x86-64

https://twitter.com/mdecky/status/1397892220225736711
intc
·há 4 anos·discuss
Same but 2004: https://www.openbsd.org/images/rack.jpg
intc
·há 4 anos·discuss
We still are fighting the oligopoly with our vaulted c1.fi email service. Please feel free to check us at https://c1.fi/v/hn20220905/?lang=en.

Here's EU's JRC-MECSA report on our service: https://mecsa.jrc.ec.europa.eu/en/finderRequest/b5daceffc76e....

Support for client's own domain is currently under works. Our webmail supports PGP and one can use IMAPS/SMTPS or ActiveSync based native email clients too.

All servers self hosted (we run C1/Gentoo!) in our own computing facility in Finland. =)
intc
·há 4 anos·discuss
C1.fi is a simple Finland based email service which supports using standard IMAP and ActiveSync clients. We encrypt all messages with account holder specific keys before storing them on servers mass storage. -- [email protected]
intc
·há 4 anos·discuss
c1.fi (an email service yours truly is providing) supports SMTPS, IMAPS and ActiveSync. https://c1.fi/v/hn519/about?lang=en
intc
·há 4 anos·discuss
Thank you for tour feedback! Valid point.

For the time being one can access pricing information after creating the free trial account.

I'll add some way of presenting the most common pricing options along with the other service information.
intc
·há 4 anos·discuss
"By itself, WebAssembly cannot currently directly access the DOM; it can only call JavaScript, passing in integer and floating point primitive data types. Thus, to access any Web API, WebAssembly needs to call out to JavaScript, which then makes the Web API call. Emscripten therefore creates the HTML and JavaScript glue code needed to achieve this."

Quoted from: https://developer.mozilla.org/en-US/docs/WebAssembly/Concept...
intc
·há 4 anos·discuss
Via https://github.com/mbasso/asm-dom? (for example). For every complex self generated challenge there is an even more complex solution?
intc
·há 5 anos·discuss
Of course it is. In most cases you do not have any sort of guarantees regarding the browser (which it self usually is more complex piece of software than all your operating system and it's accessories calculated together - difficult to audit - known to collect metrics etc etc). In addition one can sandbox their local terminal pretty effectively - With Tomoyo or some other MAC technology. It's not so bad idea to actually isolate your browser too (with Mandatory Access Control) - It usually has no business for a global view on your filesystem or local network resources.
intc
·há 5 anos·discuss
I personally don't appreciate the idea of using Rust as an overall "only solution" replacement. Requires LLVM (a huge overkill on a system otherwise based on GCC), no proper support for dynamic linking, own build system, absolutely huge "ecosystem", No standardization (-> no competing implementations), SLOW to compile... Yada-yada.

Rust it self also has it's fare share of free after use etc bugs. Please check: https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=Rust

I'm personally thankful that we have SQLite which is written in C - It's efficient, tiny and severe bugs are relatively rare.

As the original article quotes: “What I cannot create, I do not understand.”
intc
·há 5 anos·discuss
I think PGP is fine for encrypting some files. But you should take into consideration that when you encrypt a file it's very likely that some (or all) of the plain text is left behind on the block device. Using full disk encryption (LUKS for example) will give additional protection (so one can't read plain text fragments from the device when it's not "open").