Tag: security
Mythos and Legends
Promoting use of fine-grained PATs
The Internet needs an antibotty immune system, stat
Anthropic's Mythos makes autonomous vulnerability chaining across devices a sudden reality, so I've been thinking about how digital 'antibotty' inoculation networks may be needed far sooner than I expected.
Finding XSS via indirect prompt injection
A short writeup of finding a stored XSS vulnerability in an AI powered writing app
MIE Soft Mode
Difficulty enabling Apple's MIE
Progress in standard.site validation
Including Rust in an Xcode project with Pointer Authentication (arm64e)
Experiments with Memory Integrity Enforcement
Protect your keys with the Secure Enclave
2024 Guide to Signing and Notarising a Single CLI Binary for Mac
Sandboxed Python Environment
My PGP Key Has Changed
This is just a quick post to alert that I have changed my PGP key. It doesn't receive much use, but in the eventuality that someone may want to send me something potentially encrypted, I think it's reasonably good to keep the record that I updated the key at some point. The contact page has been updated accordingly.
YubiKey Setup for GPG, SSH and 2FA
YubiKeys are hardware authentication devices that can be used with many applications, such as GPG, SSH and for 2 factor authentication. I have owned quite a few over the past years and recently I decided to upgrade them to the NFC version so I can use them with my mobile devices.
Slot Insecurities
What the heck is a Kensington security slot, and why does your computer probably have one? And how well does it really work, anyway?
Home Security Insecurities
Wait, so why could changes to the cellular system cause headaches for your home security setup? And honestly, is it really that big of a deal?
How to Effectively Backup Your Emails
For quite some time, I have been setting up systems to backup my data of my computer, as well as fetching data from services, such as Trakt, Last.fm or GoodReads. There's always one kind of service that has been on the back of my mind for a while to backup, but I've never got the time, nor the will to do so: email!
Donglevision
Pondering the many ways that dongles have taken over our lives, for better and for worse. One port will never rule them all, apparently.
OwnYourTrakt
It's now time to own my own watch log. I use Trakt to keep up with the series and movies I'm watching and now I'm going to PESOS to my website!
Owning My Reading Log
It's now time to own my own reading log. I started by creating a reading logs page and supporting all the IndieWeb-related specs for this.
Smaller Airports, Lower Stakes
Regional and municipal airports, which often target enthusiasts or niche needs, are pretty low-key compared to say, LAX. But they have plenty of mystery.
Security In Stereo
Car stereos have historically been both valuable and easy to spot in an idle vehicle, making them a key target for thieves. Why has that changed?
Back That Thang Up
Much like on our laptops and cloud servers, there are some valuable physical objects we'd like to back up. (Think fine art.) Is 3D printing the answer?
Como Utilizar a API de Passwords do PHP 5.5+
A API de passwords introduzida na versão 5.5 do PHP é excelente. Trouxe quatro novas maravilhosas funções. Resumimos a forma como cada uma funciona.