HackerTrans
TopNewTrendsCommentsPastAskShowJobs

securitypunk

no profile record

comments

securitypunk
·4 年前·discuss
The IPv4 address space is depleted, so remaining on IPv4 means deploying NAT everywhere, with all the downsides that come with https://en.wikipedia.org/wiki/Network_address_translation#Is...
securitypunk
·4 年前·discuss
Sony a7iii + Elgato camlink have been working flawlessly for me for several years now, on all platforms (windows, linux and even chromeos)
securitypunk
·5 年前·discuss
Rust won't protect smart contracts from logic bugs.
securitypunk
·5 年前·discuss
This is standard practice. Most SaaS IT departments negotiate big rebates in exchange for long term commitments, and those who don't are leaving money on the table. I've seen datacenter deals over 10 years that looked far worse.
securitypunk
·5 年前·discuss
Anyone who has managed a product security program will tell you that's it's impossible for small groups to keep up with the complexity and attack surface of products like android.

From a consumer perspective, going with A and trusting the company is by far the safest option.
securitypunk
·5 年前·discuss
APK is an antiquated format that originates from Java Jar over two decades ago. It's basically a zip file with some internal structure for signing a manifest of hashes. Google already had to bastardize the APK format to move the signature to ZIP metadata, but there were still tons of problems around key rotation and distribution of large APKs.

This is a natural evolution of the format. It's good for the ecosystem. Whatever guarantees were supposedly provided by having developer (poorly) store their own signing keys are better handled by Google's own infrastructure.