HackerTrans
TopNewTrendsCommentsPastAskShowJobs

tgragnato

no profile record

Submissions

CCP 100: Xi warns China will not be 'oppressed' in anniversary speech

bbc.com
1 points·by tgragnato·5 ปีที่แล้ว·0 comments

Orphaned by Windows 11? I’m mad as hell and I’m not gonna take it anymore

zdnet.com
3 points·by tgragnato·5 ปีที่แล้ว·0 comments

High-Level Chinese Defection Rumored

spytalk.co
5 points·by tgragnato·5 ปีที่แล้ว·0 comments

What the NSA provides to its foreign partners, and vice versa

electrospaces.net
3 points·by tgragnato·5 ปีที่แล้ว·0 comments

Russia’s Latest Hack Shows How Useful ‘Criminal Groups’ Are to the Kremlin

defenseone.com
1 points·by tgragnato·5 ปีที่แล้ว·0 comments

comments

tgragnato
·5 ปีที่แล้ว·discuss
Classifying IP sets is a fantastic idea, I’ve seen mail bounce for the ASN. That parameter is unchanged between IPv4 and IPv6. Certainly, you can do it only when the provider is a classic spam heaven.
tgragnato
·5 ปีที่แล้ว·discuss
It is the most practical solution to make sure there are no leaks to G.

The most annoying thing is that reCAPTCHA stop working: more website administrator should consider migrating to hCaptcha.
tgragnato
·5 ปีที่แล้ว·discuss
Funny thing is that they used zcombinator[.]co for one of their C2
tgragnato
·5 ปีที่แล้ว·discuss
The real difference is in latency: I tend to use the same operator on the fixed and mobile line, with Wireguard. SSH, SMB and Matrix respond almost as if you were in LAN.

If I add the cost for bandwidth and storage of a data center, then the economic choice is obvious.
tgragnato
·5 ปีที่แล้ว·discuss
iAd is still alive in Apple products, but it’s not an ad network anymore.

https://developer.apple.com/support/iad/

Did I miss some other product?
tgragnato
·5 ปีที่แล้ว·discuss
> How do both parties determine the keys used during a conversation?

They don’t: public key cryptography is not initially used.

The sender generates a random AES-256 key, applies it in CTR mode and uploads the encrypted blob to GCS.

Every receiving device gets a message with the key, the URI, and the SHA-1 of the blob. These messages are encrypted as usual and sent via APNS (<n>-courier.push.apple.com:5223)

> you’d think they would wrap it so at minimum they could tweak the underlying infrastructure without requiring every client to update

Apple does this: two other endpoints are *.blobstore.apple.com and the Chinese Guizhou-Cloud Big Data.

In my logs blobstore is used less than 1% of the time.
tgragnato
·5 ปีที่แล้ว·discuss
No? https://cloud.google.com/storage/docs/access-control

It just means Google may provide access to metadata outside of Apple’s control. Those metadata could be useful to do classification of anomalies on the basis of pattern of life analysis, or similar.
tgragnato
·5 ปีที่แล้ว·discuss
On one occasion the traffic to google cloud is systematically not proxied: every time one sends an attachment in iMessage, the file (or the media) is encrypted on device and sent to gcs-{eu,us,asia}-00002(?).content-storage-upload.googleapis.com, received from gcs-{eu,us,asia}-00002(?).content-storage-download.googleapis.com

This should be pretty visible to Google, the rest of the traffic is handled better.
tgragnato
·5 ปีที่แล้ว·discuss
I think that in this context the meaning of the term trust is different.

Any code executing in privileged mode can bypass security, and is therefore inherently part of a system's trusted computing base (TCB). (Linux is a monolithic kernel running in ring 0)

Most companies are not Linux contributors, they are trusting the kernel developers to write bug free, secure code.

Minimizing the TCB and opting for an auditable open source TCB are really useful concepts in security.

But the cause of these breaches is much more trivial than what you are worrying about: these companies are basically installing whichever piece of software can decrease their costs without thinking about what they’re doing.
tgragnato
·5 ปีที่แล้ว·discuss
Dating at work is especially a bad idea.

Things could be perfect, but (with high probability) a relationship will abruptly end and managing every social aspect can be difficult.
tgragnato
·5 ปีที่แล้ว·discuss
Or the botnet was DDoSing, and someone decided they had enough. (it would not be the first time)
tgragnato
·5 ปีที่แล้ว·discuss
> Speculative, and likely contains errors, misconceptions, and omissions; thoughtful, informed comments are welcome. Intended for a general scientifically curious audience, not requiring much detailed specialist background.

I enjoyed the reading, it is well written. Like you, I think there is a bit too much speculation to consider it an article suitable for a "scientifically curious audience". From my point of view the parallels and the "connections" between phylogeny, elements, matter and physics make it very little pseudo-scientific and too metaphysical.
tgragnato
·5 ปีที่แล้ว·discuss
The situation is a little better compared to Windows, but it's not perfect.

I always disable telemetry, but iphonesubmissions.apple.com:443, radarsubmissions.apple.com:443 and securemetrics.apple.com:443 are still contacted.

People messing with ocsp.apple.com:80 (https://github.com/StevenBlack/hosts/issues/1460) also need to be aware of ocsp2.apple.com:443.

The iAdSDK setting is somewhat respected, but all the Siri subdomains are pinged even if Siri is turned off.
tgragnato
·5 ปีที่แล้ว·discuss
> safety of its HTTPS filtering feature

Please don't terminate your TLS, they have extensions for every major browser. With the extension + AdGuard DNS your coverage should be pretty good.

> relaying to an IP block in Russia

In Russia? Care to elaborate more?
tgragnato
·5 ปีที่แล้ว·discuss
The linked publication https://www.scottaaronson.com/papers/giqtm3.pdf speculates that the universe and our brain are "quantum Turing machines".

Given the assumptions, we need to count in the fundamental limits on computation. https://en.wikipedia.org/wiki/Limits_of_computation

It's safe to deduce our brain can't simulate the universe, but only a "less powerful" description/representation of it. Otherwise the assumptions are inconsistent, and a paradox arises.

Obviously, since we don't know how the brain nor the universe work... It's all speculation
tgragnato
·5 ปีที่แล้ว·discuss
Many care that macOS is Unix-like, I doubt anyone cares about the certification.
tgragnato
·5 ปีที่แล้ว·discuss
I think Apple would need to ship a different OS in China.

Cloud services offered there must store data in the country and be operated by Chinese companies. (Apple is complying with this)

But Chinese companies HAVE TO assist the authorities in obtaining systematic access to private sector data. (This is not possible with E2E for backups and photos)
tgragnato
·5 ปีที่แล้ว·discuss
I'd like to access their data and know which percentage of people can be targeted this way.

Maybe it had a higher success rate back then, today you can find sex with with an app, no money involved.

My suspicion is that they needed to trick people into those compromising situations.
tgragnato
·5 ปีที่แล้ว·discuss
I’m pretty sure EDRs play a role in the professional protection of 100k+ IP.

At home, OS and software updates combined with network monitoring should be sufficient for the more common threat models.

One needs to draw a line somewhere.

EDRs are complex and often fail to protect business systems when professionally managed. I do not believe it's worth wasting time on that at home.
tgragnato
·5 ปีที่แล้ว·discuss
A good starting point is to set up a network tap and analyze the logs, manually.

Obviously, it's one of those things that is rarely done by the people who use fancy security products.

.. because it’s hard

E.g.: Botnet traffic is often “strange” and easy to recognize