| 0810 b' from ' | |
| 0678 b' ssh2' | |
| 00d8 b'%.48s:%.48s():%d (pid=%ld)\x00' | |
| 0708 b'%s' | |
| 0108 b'/usr/sbin/sshd\x00' | |
| 0870 b'Accepted password for ' | |
| 01a0 b'Accepted publickey for ' | |
| 0c40 b'BN_bin2bn\x00' | |
| 06d0 b'BN_bn2bin\x00' | |
| 0958 b'BN_dup\x00' |
This is a living document. Everything in this document is made in good faith of being accurate, but like I just said; we don't yet know everything about what's going on.
On March 29th, 2024, a backdoor was discovered in xz-utils, a suite of software that
| #!/bin/python | |
| # This script generates a random mac address, from the mac range of the VEB Kombinat Robotron. | |
| import random | |
| format_string = "00:80:41:{:2X}:{:2X}:{:2X}" | |
| print(format_string.format(*[random.randint(0, 255) for i in range(3)])) |
| #!/bin/sh | |
| # | |
| # This script should prevent the following suspend errors | |
| # which freezes the Dell Inspiron laptop. | |
| # | |
| # Put it in /usr/lib/systemd/system-sleep/xhci.sh | |
| # | |
| # The PCI 00:14.0 device is the usb xhci controller. | |
| # | |
| # kernel: [67445.560610] pci_pm_suspend(): hcd_pci_suspend+0x0/0x30 returns -16 |
| /// base64 can be generated by taking chunks of 3 bytes from the input and | |
| /// mapping them onto 4 output chunks as shown below: | |
| /// | |
| /// ```raw | |
| /// | M | a | n | ascii | |
| /// | 77 | 97 | 110 | decimal | |
| /// | 0x4d | 0x61 | 0x6e | hex | |
| /// | | | | | |
| /// | a | b | c | chunk name | |
| /// | | | | |
Some time ago, I've been invited by Mozilla to attend a workshop on the topic of Manifest V3 and the future of the Recommended Extensions Program. Mozilla was paying for the whole trip: Cost of travel, accommodations, food, and even tickets for Mozfest 2019, which was held the two days after. So it was an obvious choice to accept this invitation.
I took the opportunity to collect some thoughts on these topics from different communities:
On October 25th 2019 the workshop took place at Mozillas London office on the day before MozFest and I just
This work is released under a Creative Commons Attribution-NoDerivatives 4.0 International License.
"OpenPGP" refers to the OpenPGP protocol, in much the same way that HTML refers to the protocol that specifies how to write a web page. "GnuPG", "SequoiaPGP", "OpenPGP.js", and others are implementations of the OpenPGP protocol in the same way that Mozilla Firefox, Google Chromium, and Microsoft Edge refer to software packages that process HTML data.
If you're reading this, you probably suggested to somebody that a particular technical problem could be solved with a blockchain.
Blockchains aren't a desirable thing; they're defined by having trustless consensus, which necessarily has to involve some form of costly signaling to work; that's what prevents attacks like sybil attacks.
In other words: blockchains must be expensive to operate, to work effectively. This makes it a last-resort solution, when you truly have no other options available for solving your problem; in almost every case you want a cheaper and less complex solution than a blockchain.
In particular, if your usecase is commercial, then you do not need or want trustless consensus. This especially includes usecases like supply chain tracking, ticketing, and so on. The whole *p
