Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. Micah Lee 🔑 (micahflee@mastodon.social)'s status on Tuesday, 15-May-2018 23:12:27 EDT Micah Lee 🔑 Micah Lee 🔑

    PGP users,

    I implemented a simple #efail exploit for Apple Mail, which is vulnerable to direct exfiltration with its default settings. The mitigation, disabling remote content, works but is brittle. So never click "Load Remote Content". (Thunderbird/Enigmail is vulnerable in a similar way, but I haven't tried that one yet.)

    https://www.youtube.com/watch?v=_67Pz9zpPb0&feature=youtu.be

    In conversation Tuesday, 15-May-2018 23:12:27 EDT from mastodon.social permalink

    Attachments

    1. EFAIL direct exfiltration exploit for macOs Mail
      By Micah Lee from YouTube
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.