I just published “Generating Passphrases Like correct horse battery staple” at
https://www.ii.com/passphrase-generators/ - please post suggestions for passphrase generators as a reply to this toot and I'll include them in my article!
#InfiniteInk #Privacy #Security #Tech #Passwords #Passphrases #CorrectHorseBatteryStaple
#Words #Writing #Byℵ #ByNM
security
"Noem isn’t doing homeland #security. I’m not sure she knows its meaning. Like habeas corpus, which she thinks is an Ecuadorian offshoot of MS-13. Instead of safety and security, Noem’s turned the agency into the rabid attack dog she wanted Cricket to be"
READ MORE https://www.blueamp.co/p/were-all-cricket-and-the-united-states #news #usa #politics #dhs #ice #losangeles #la #tv #nato #media #press #russia #ukraine #eu us #unitedstates #america #trump #donaldtrump #cliffschecter #blueamp #cliffsnote #cliffsedge #davidshuster
If you still use one of these devices, you might want to start looking into alternatives.
"In an email sent to customers today, Amazon said that Echo users will no longer be able to set their devices to process Alexa requests locally [...] Starting on March 28, recordings of everything command spoken to the Alexa living in Echo speakers and smart displays will automatically be sent to Amazon and processed in the cloud."
via https://mamot.fr/@pluralistic/114166991733057284
#news #TechNews #technology #amazon #alexa #AmazonEcho #privacy #security
tj-actions/changed-files 被骇,被骇版本会将 secret 写入运行日志;现已修复。
- 骇客伪装成 Renovate bot 更新了 minify 的 Actions 代码,亦修改了所有 tag 使其指向恶意 commit。
- 维护者称原因是自己的一个 PAT (Personal Access Token) 泄露 [1]。
- gh:tj-actions/changed-files#2463
- stepsecurity.io/~
1. gh:tj-actions/changed-files#2464
#Security #GitHubActions
Telegram 原文
Great, informative writeup of Cryptographic Gotchas: https://gotchas.salusa.dev/
Lots of fantastic references and links in there, too.
Last week we published a set of three in-depth #map reports covering territorial control across #Somalia's claimed territories from 2023 to present. The June 2024 report is free for all readers, and shows the height of "#IslamicState" (#ISIS/#ISIL) control in the country:
https://www.polgeonow.com/2025/06/somalia-territorial-control-map-2024-isis-shabaab.html
#HornOfAfrica #cartography #maps #geography #Somaliland #Puntland #SSC_Khaatumo #mapping @geography @cartography @geopolitics #AlShabaab #AlQaeda #security #OSINT
Killing Grants That Have Saved Lives: Trump’s Cuts Signal End to Government Work on Terrorism Prevention
—
Tens of millions of dollars slated for violence prevention have been cut or are frozen as DOGE steamrolls the national security sector. “This is the government getting out of the terrorism business,” said one grant recipient.
https://www.propublica.org/article/trump-doge-budget-cuts-terrorism-prevention?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post
#News #Terrorism #Security #Government #Trump #DOGE #USPolitics
it's been quite a while, so lemme write a new #intro
i'm raven, a silly #transgirl on the internet who likes to write, and create free-to-use #photography (mostly landscapes). u can find me on mastodon, and see what an overview of what i’m up to on my now page. i have so many interests and try my best to experience new things in this short life. some sort of neurospicy, tend to be overly genuine, a bit corny, over-opinionated at times
🩺 #nurse, 📸 #photographer, 👩💻 #linux nerd, 🏳️⚧️ #trans girl, 💞 #relationship anarchist, 🌱 #vegan for the animals, 🌹 #leftist, ✊ #union steward, 🧗♀️ #queer outdoor girlie, 🌠 star stuff, 🚴♀️ bikes are cool, 😽 certified girl/boy/nb-kisser, 😝 #silly adventurer
i work in the OR as a nurse and i love my job
likes: #forests, #mountains, #oregon coast, #coffee, #adventures, #movies, #computers, #transit, #bikes, #Portland OR, scrub-role in surgery, science-stuff, n95s, #sewing, #privacy and #security in tech, #philosophy, #ceramics, #sailing, #music, pineapple on pizza, #leftism, workers-rights, #silliness, #headpats, and #praise
“chaotic af, kinda scatter brained, but smart if that makes sense”
“very direct and able to be vulnerable very easily (a good thing!) and the most ethically-minded and community-focused person ive met!”
“an iceberg. you’ve got a fun, flirty, smolder of a vibe when people meet you initially. then after getting to talk with you people see that you’ve got way more going on under the surface of the water”
i upload my photography as creative commons attribution license, i don't own a car, i have a #cat named Loki who i post about under the #catsofmastodon tag, i'm #divorced after a 14 year marriage (not the outcome i wanted, but here i am), and now happily in relationships as a relationship anarchist.
i live in #pdx and want to make it a better place by organizing and creating #unions and #community
i do #rock-climbing, #bjj, #running, #swimming, #sailing, currently recovering from injuries
i love #webdesign and created a #hugo theme which i use for my website (on github)
yes, imma #puppygirl and silly af
Edited 20d ago
Getting started with XMPP/Jabber and PGP for federated, encrypted messaging
This is a short thread where I explain how I started using the XMPP protocol and PGP encryption for secure messaging. I am not a security expert, but I am a mathematician and I am confortable with the Linux command line. This guide is for people who want to use PGP for secure messaging easily. You will need to be okay with typing commands into the Linux command line in order to do this, but I will tell you exactly what to enter.
Part 1: XMPP
Mastodon is like email, but for social media. You sign up for an account with a server, and then you can talk with any other accounts that are signed up on other servers, as long as your servers are getting along. (No one wants emails from the sketchy spam server, and we want to be able to choose between Yahoo, Gmail, etc.) XMPP (a.k.a. Jabber) is the same thing for text messaging.
Just like signing up for an email/Mastodon account, you need to sign up for an account. You can find a list of servers at https://list.jabber.at/ and will probably at least need to provide an email addess when making an account.
Once you have made an account, you need a client. On Linux, I've been having a good time using Dino (https://dino.im/). You can then enter your account name and password to log into your XMPP account and start chatting! There are both public rooms and you can also message directly with your friends.
#security #PGP #XMPP #FOSS #Jabber #Dino #MonoclesChat
(1/4)
A list of Digital Service Providers located outside the jurisdiction of the United States of America:
https://codeberg.org/Linux-Is-Best/Outside_Us_Jurisdiction
This is an ongoing group project — so if you have any suggestions, corrections, or new information to share, feel free to reach out!
#USJurisdiction #USA #America #UnitedStates #Privacy #Security
Our Summer Clearance Sale is happening now! Save 50% on select @adminmagazine and Linux Magazine back issues and products. Use the links at the top of the page to get to the shop system for your region/currency.
https://shop.linuxnewmedia.com/shop/category/summer-clearance-79
#Linux #sale #LibreOffice #RaspberryPi #OpenSource #security #hacks #FOSS
New from Francesca D'Annunzio: Under Governor Greg Abbott's multi-billion dollar border security bonanza, Operation Lone Star, the Rio Grande no longer holds back law enforcement efforts. Today's digital border reaches across Texas and beyond. https://www.texasobserver.org/texas-dps-surveillance-arsenal-artificial-intelligence-lege/
This story is presented in partnership with the Pulitzer Center.
#surveillance #tech #SocialMedia #GregAbbott #police #border #privacy #security #USpol #politics #news
Edited 138d ago
🚨 Security Update: Hollo 0.6.5 Released
We've released #Hollo 0.6.5 with a critical #security fix for CVE-2025-53941, addressing an HTML injection vulnerability in federated posts.
Please #update immediately to protect your instance from potential phishing and XSS attacks.
How to update:
Railway: Go to deployments → click three dots → Redeploy
Docker: docker pull ghcr.io/fedify-dev/hollo:latest and restart
Manual: git pull origin stable && pnpm install and restart server
So Much Content At SUBSTACK! Head Over, Become A SUBSCRIBER!!
" #Trade & #security Aren't a GoFundMe! The #usa Wasn't Played—We Wrote the Rules!" https://www.blueamp.co/p/trade-and-security-arent-a-gofundme #news #press #politics #us #america #media #ai #elonmusk #musk #donaldtrump #tv #trump #tariffs #stockmarket #tech
Oh, your service logged me out for my security? Great, I'll just open up the vault that contains my private keys so that I can open up the password manager with the master password of my other vault, which has the credentials I'll use to log back into my account. And then to finish the login process you'll send me a one-time password in clear text through SMS or email because those are the only options you offer for a "second factor". I feel much more secure now thank you.
(For clarity this is a sardonic post).
#InfoSec #cybersecurity #security #web #dev #tech
(For clarity this is a sardonic post).
#InfoSec #cybersecurity #security #web #dev #tech
Mood: Unhackable anti-surveillance tech/stickers from @eff. https://shop.eff.org/ #privacy #security #ElectronicFrontierFoundation #EFF #NowMoreThanEver
Not really an #introduction but here we go:
#Freelancing #Privacy and #Security #Coach & #Trainer (#Linux)
Ex #SoftwareDeveloper, #Consultant, #TeamLead, #HeadOfProductDevelopment #HeadOfIT
I care for #privacy #HumanRights #DEI #TransRightsAreHumanRights #Linux #FLOSS #DigitalSelfDefense
See bio for links & websites.
Have you checked out our Summer Clearance Sale yet? Select back issues and products are 50% off through July 31st! Get 2024 and older issues of Linux Magazine, @adminmagazine, Special Issues, and select products. Follow the link for the shop for your region/currency.
https://shop.linuxnewmedia.com/shop/category/summer-clearance-79
#Linux #OpenSource #security #FOSS #LibreOffice #hacks #RaspberryPi
Edited 29d ago
Are you interested in a different kind of security conference?
Then take a look at the Open Security Conference (@OSCo). #osco25 takes place from October 2 to 5 in Rückersbach (Germany near Frankfurt) and registration is still open at https://opensecurityconference.org/.
(this is an English version of the original German thread https://infosec.exchange/@realn2s/114936419689473030)
Why?
The Open Security Conference aims to be diverse and inclusive. This also includes different levels of knowledge and experience.
It is therefore not only for security experts or for people who have (already) worked in the security sector for a long time,
but also for people who are interested in security or want to get into the field.
The #OpenSpace format not only enables expert presentations,
but also non-expert topics or questions as session topics. Sessions are not resticted to presentations, they can be interactive, collaborative, workshops or basically anything else.
Since topics do not have to be submitted months in advance,
but the agenda is created jointly by the participants, hot topics can also be covered.
The conference is non-commercial, i.e. the total costs are shared between the participants (including the organizers).
The costs include accommodation and meals in the conference hotel.
And yes, there are also sponsors who cover part of the costs.
But not everything is different.
There are great keynotes e.g. by @bkastl ("History repeating itself") and Mireia Cano ("Building an AppSec Program from Scratch").
#CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity
The war on crypto never ends. The war on privacy, civil rights, security and freedom of speech never ends.
This time we are dangerously close to lose. The "Child Sexual Abuse" (CSA) EU regulation proposal, more aptly nicknamed "ChatControl", will be voted AGAIN this October, and many countries who opposed it last year are now undecided. The proposal at its roots aims at allowing authorities to break end-to-end encryption for the usual reason: "because of the children". As a father of two, I am disgusted by this recurring, cheap rhetoric.
What you can do: https://www.patrick-breyer.de/en/posts/chat-control/#WhatYouCanDo
#eu #CSA #CSAM #ChatControl #privacy #security #surveillance #authoritarianism #crypto #cryptography #civilrights
Meine IT Sicherheits-Privatsphäre Übersicht für alle :-)
( 05.08.2025
Die weiterentwicklung von #GalyxOS stagniert
wohl erstmal...)
als PDF:
https://cryptpad.digitalcourage.de/file/#/2/file/Kvo0eIWc8SfCJYXTxujy+YlD
sachliches-Feedback wie immer, erwünscht :-)
#Privatsphäre #Datenschutz #sicherheit
#security
#AppStore
#Kryptografie
#Passwort #PasswortManager #Informationssicherheit #Informationsfreiheit #IFG #Politik #Gaming #gog #Lutris #Android
#Mail #Cloud #Browser #WebBrowser #Verschlüsselung #DNS #VeraCrypt #Fdroid #Messenger #Threema #Signal #Linux #Foss #OpenSource #UnplugTrump #Fediverse #Menschenrechte #Community #LinuxHelden
#GamingonLinux #VPN #GegenRechtsHilfe #FediLZ #Mastodon #Shopping #PreppingforFuture #Prepping #Katastrophenvorsorge #Schutzmaßnahmen #supportyourhinterland #Mobilfunk #NewPipe #uBlock #Medienkompetenz #Facebook #Instagram #Meta #YouTube #Chatkontrolle #überwachung #Matrix #Suchmaschine #Tastatur #2FA #Nichtszuverbergen
Edited 10d ago
🔒 Security Update for BotKit Users
We've released #security patch versions BotKit 0.1.2 and 0.2.2 to address CVE-2025-54888, a security #vulnerability discovered in #Fedify. These updates incorporate the latest patched version of Fedify to ensure your bots remain secure.
We strongly recommend all #BotKit users update to the latest patch version immediately. Thank you for keeping the #fediverse safe! 🛡️
We've released #security updates for #Hollo (0.4.12, 0.5.7, and 0.6.6) to address a #vulnerability in the underlying #Fedify framework. These updates incorporate the latest Fedify security patches that fix CVE-2025-54888.
We strongly recommend all Hollo instance administrators update to the latest version for their respective release branch as soon as possible.
Update Instructions:
Railway users: Go to your project dashboard, select your Hollo service, click the three dots menu in deployments, and choose “Redeploy”
Docker users: Pull the latest image with docker pull ghcr.io/fedify-dev/hollo:latest and restart your containers
Manual installations: Run git pull to get the latest code, then pnpm install and restart your service
***infosec specialists are needed in the resistance ***
The world needs tech security specialists to run workshops at public libraries for all ages & abilities to remove spyware, AI, reduce surveillance, understand the issues, & for more advanced, move to Linux, degooglefy, etc.
Libraries will pay good wages for these workshops.
If you have these skills, please consider offering them.
#libraries #library #tech #infosec #privacy #security #activism #antifa #resistance