Notices by Hattie Cat (hattiecat@shitposter.club), page 20

Hattie Cat (hattiecat@shitposter.club)'s status on Monday, 30-Apr-2018 16:20:38 EDT Hattie Cat
- Bob Mottram 🔧 ☕ ✅
@bob Tor is *funded* by the US government to help support subversion in some countries. The more I think about it the more naive it seems that they /wouldn't/ try to compromise it.

In conversation Monday, 30-Apr-2018 16:20:38 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Monday, 30-Apr-2018 16:18:12 EDT Hattie Cat
in reply to
- Hattie Cat
But. My important files are all intact because I stored them on my Linux fileserver, which is software RAID1 and regularly backed up. Huzzah!

In conversation Monday, 30-Apr-2018 16:18:12 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Monday, 30-Apr-2018 16:15:41 EDT Hattie Cat

Mac Mini's hard disk fried - served well for 5 years but now I need to "book" an "appointment" at a "geek bar" to get a replacement. Last time I go for a "no user-serviceable parts inside" computer. Now my Linux dev machine is my main workstation. Madly scrambling to configure desktop apps I never used but seems workable. (But why does kcontact not support CardDav?!)

In conversation Monday, 30-Apr-2018 16:15:41 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Monday, 30-Apr-2018 16:12:01 EDT Hattie Cat
- Bob Mottram 🔧 ☕ ✅
@bob Keeping an eye on Briar and I wish it well, but so hard for such apps to gain traction. (Except perhaps when there's a crackdown somewhere.) Beginning to suspect Tor may be compromised too, so supporting alternative alt-nets and mesh is good.

In conversation Monday, 30-Apr-2018 16:12:01 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Tuesday, 24-Apr-2018 07:03:56 EDT Hattie Cat

Superb. A dirt-cheap software-defined radio with transmit capability. (Salivates wildly.) https://hackaday.com/2018/04/23/spoofing-cell-networks-with-a-usb-to-vga-adapter/
In conversation Tuesday, 24-Apr-2018 07:03:56 EDT from shitposter.club permalink
Attachments
1. Invalid filename.
  
  Spoofing Cell Networks with a USB to VGA Adapter
  
  By Tom Nardi from Hackaday
  
  RTL-SDR brought cheap and ubiquitous Software Defined Radio (SDR) to the masses, opening up whole swaths of the RF spectrum which were simply unavailable to the average hacker previously. Because the RTL-SDR supported devices were designed as TV tuners, they had no capability to transmit. For the price they are still an absolutely fantastic deal, and deserve to be in any modern hacker’s toolkit, but sometimes you want to reach out and touch someone.
  GSM network broadcast from a VGA adapter
  Now you can. At OsmoDevCon [Steve Markgraf] released osmo-fl2k, a tool which allows transmit-only SDR through cheap USB 3.0 to VGA adapters based on the Fresco Logic FL2000 chip. Available through the usual overseas suppliers for as little has $5 USD, these devices can be used unmodified to transmit low-power FM, DAB, DVB-T, GSM, UMTS and GPS signals.
  
  In a demonstration on the project page, one of these USB VGA adapters is used to broadcast a GSM cellular network which is picked up by the adjacent cell phones. Another example shows how it can be used to broadcast FM radio. A GitHub repository has been set up which includes more examples. The signals transmitted from the FL2000 chip are obviously quite weak, but the next step will logically be the hardware modifications necessary to boost transmission to more useful levels.
  
  To say this is a big deal is something of an understatement. For a few bucks, you’ll be able to get a device to spoof cellular networks and GPS signals. This was possible before, of course, but took SDR hardware that was generally outside the budget of the casual experimenter. If you bought a HackRF or an Ettus Research rig, you were probably responsible enough not to get into trouble with it, but that’s not necessarily the case anymore. As exciting as this technology is, we would be wise to approach it with caution. In an increasingly automated world, GPS spoofing can have some pretty bad results.
thunfisch (thunfisch@chaos.social)'s status on Tuesday, 24-Apr-2018 01:24:50 EDT thunfisch

Hm, apparently #letsencrypt now provides mor than 50% of the web certificates.
On one hand: FUCKING AWESOME.
On the other: Shit. They're getting very powerful and we are centralizing our trust. I think we could reallu use 2-3 new orgs like Letsencrypt, with similar technology and mission statement, but entirely independent.
Are there any out there yet?

In conversation Tuesday, 24-Apr-2018 01:24:50 EDT from chaos.social permalink Repeated by hattiecat
Hattie Cat (hattiecat@shitposter.club)'s status on Tuesday, 24-Apr-2018 06:33:44 EDT Hattie Cat

When an international standards working group I'm on suddenly dictates I will have a Microsoft account to access their "workspace" and use sharepoint. (Which can apparently be made to work with LibreOffice but we shall see...)
https://shitposter.club/attachment/1793252

In conversation Tuesday, 24-Apr-2018 06:33:44 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Thursday, 19-Apr-2018 07:55:48 EDT Hattie Cat

Cheez Louise! llvm takes a looong time to compile.

In conversation Thursday, 19-Apr-2018 07:55:48 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Thursday, 19-Apr-2018 07:47:12 EDT Hattie Cat
in reply to
- Mister M. T. Sack
@thatbrickster Yup, I block 'em with a proxy server blacklist, DNS lookup filter or browser plugins, depending on the platform.

In conversation Thursday, 19-Apr-2018 07:47:12 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Thursday, 19-Apr-2018 07:44:13 EDT Hattie Cat
in reply to
- Mister M. T. Sack
@thatbrickster And if you do log in to Facebook, third-party Javascript trackers can steal your data https://techcrunch.com/2018/04/18/login-with-facebook-data-hijacked-by-javascript-trackers/
In conversation Thursday, 19-Apr-2018 07:44:13 EDT from shitposter.club permalink
Attachments
1. Invalid filename.
  
  Login With Facebook data hijacked by JavaScript trackers
  
  By Josh Constine from TechCrunch
  
  Facebook confirms to TechCrunch that it’s investigating a security research report that shows Facebook user data can be grabbed by third-party JavaScript trackers embedded on websites using Login With Facebook. The exploit lets these trackers gather a user’s data including name, email a…
Hattie Cat (hattiecat@shitposter.club)'s status on Thursday, 19-Apr-2018 07:39:29 EDT Hattie Cat

Wired: how Facebook is steering users away from privacy protections.
https://www.wired.com/story/facebook-is-steering-users-away-from-privacy-protections/
Same page contains Facebook "Like" button and "Sign up with Facebook" popup.
Fuck you Wired. https://shitposter.club/attachment/1775892 https://shitposter.club/attachment/1775890

In conversation Thursday, 19-Apr-2018 07:39:29 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Tuesday, 17-Apr-2018 07:48:46 EDT Hattie Cat

Gmail's new "confidential mode" won't be completely private. https://shitposter.club/attachment/1768406
"Just because emails are deleted by Google from inboxes and outboxes doesn't mean they don't hypothetically exist somewhere." This is basically "cloud" in a nutshell. The only way you can be sure a cloud file is "deleted" is to strongly encrypt it before upload and throw away the key..)

https://shitposter.club/url/1768412

In conversation Tuesday, 17-Apr-2018 07:48:46 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Tuesday, 17-Apr-2018 07:36:42 EDT Hattie Cat
in reply to
@thatbrickster @angristan @dtluna "Consultant" - someone who tells you something you already know, and charges you a small fortune for it.

In conversation Tuesday, 17-Apr-2018 07:36:42 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Tuesday, 17-Apr-2018 07:17:39 EDT Hattie Cat

I now try to block FB domains, Google trackers, Oracle trackers, Adobe trackers, Twitter trackers etc. at my DNS server/proxy server/browser. DNS66 seems to work for Android, though the block lists not as comprehensive as I'd like. https://f-droid.org/en/packages/org.jak_linux.dns66/

In conversation Tuesday, 17-Apr-2018 07:17:39 EDT from shitposter.club permalink
Hattie Cat (hattiecat@shitposter.club)'s status on Tuesday, 17-Apr-2018 07:11:59 EDT Hattie Cat
in reply to
- Hattie Cat
Trump actually did something right here by banning Kaspersky AV (a cloud-based AV solution, with a Russian company) from US Federal networks. He should have gone further and banned any cloud-based AV. It's not really Russkies that are the issue here. https://www.tomshardware.com/news/kaspersky-banned-us-federal-networks,36111.html
In conversation Tuesday, 17-Apr-2018 07:11:59 EDT from shitposter.club permalink
Attachments
1. Invalid filename.
  
  Kaspersky Antivirus Banned From Use On US Federal Networks
  
  from Tom's Hardware
  
  Any Kaspersky Labs software or software affiliated with Kaspersky Labs and its successors will be banned from U.S. federal agencies' networks starting with 2018.

After
Before

Public

Notices by Hattie Cat (hattiecat@shitposter.club), page 20