filippo

filippo, 1 day ago

@osxreverser we assumed it was fully RCEable from the start :) it’s properly sandboxed.

filippo, 3 days ago

It looks like there aren't a lot of companies hiring for security/cryptography roles from Recurse right now, which is a hell of an opportunity. Every batch has folks doing Cryptopals and CTFs!

You know how in security hiring what matters is finding the sharp curious folks, especially at the junior level? Exactly.

filippo, 3 days ago

Always happy to answer questions about RC if anyone has them. DMs are open.

To be clear I am not affiliated with the faculty, I am a (returning) alum. I always recommended attending RC, now I engaged them on the hiring side, too, and can strongly recommend hiring from them as well.

filippo, 3 days ago

@ljrk RC is fully hybrid now! If remote collaboration works for you (which will depend more on yourself than RC) you should absolutely consider it. The virtual RC tooling is top notch, and the faculty and community really care about including remote folks.

It is absolutely not MENSA-style "smart". I understand the vibes, but they do a lot of work to fight impostor syndrome and to not define "smart" in the mainstream """measurable""" stereotypical way.

filippo, 7 days ago

@osxreverser uppercase letters are encoded as !x to match the filesystem path, which can’t be case sensitive. It’s documented :)

filippo, 7 days ago

@osxreverser I’m from mobile, but /ref/mod and the sumdb design documents might be it.

In general, use “go mod download -json name@version” or emulate https://go-review.googlesource.com/c/exp/+/321030

Plz use cached-only, see https://proxy.golang.org

filippo, 11 days ago

Live now! Integrating the new Kyber post-quantum key exchange in Go’s crypto/tls package.

https://twitch.tv/filosottile

filippo, 26 days ago

@agowa338 @fanf Fair, sandboxing is also a real security boundary, but it needs to be a carefully constructed one, not just "make a non-root user that can still see all the filesystem and execute all the SUID binaries" which is what sudo protects.

filippo, 26 days ago

@agowa338 @fanf Disagree, there are robust boundaries and symbolic ones.

TPM/SEP with PIN and user presence checks are very robust. I could give you root on my machine and you could not extract my SSH key.

Restricted sandboxes with namespaces are reasonably robust. We run untrusted Javascript every day. Bypasses will get you large bounties.

Unprivileged but unrestricted users on most machines are basically as useful to an attacker as root.

filippo, 26 days ago

@agowa338 @fanf Most microarchitectural vulns compromised SGX-like systems, not discrete TPMs, and I am not aware of any SEP extraction… ever? Same for YubiKeys.

I also very much mean keys that live in the TPM/SEP, not in memory wrapping. Check out age-plugin-yubikey and Secretive.

filippo, 26 days ago

@agowa338 @fanf "Need physical access" is a hell of a security boundary, yes.

filippo, 26 days ago

@cks @fanf Sure but really(8) is enough for that, without reauth.

filippo, 26 days ago

@cks @fanf I mean, replace really(8) with a bash script that does a TTY confirm read and then calls really(8). It’s still not justifying the existence of sudo as a complex ACL based tool with reauth capabilities.

filippo, 29 days ago

@atoponce lol

IIRC BoringSSL had a userspace CSPRNG because the kernel one was too slow for TLS record IVs. Check if that’s still the case?

(Ted is wrong, in TLS 1.2 you need random at every record, not just when doing asymmetric crypto. TLS 1.3 fixed that.)

filippo, 1 month ago

@hanno name to IP resolution is provided by the OS, but other DNS lookups are less abstracted tasks so it’s common for them not to be provided by stdlibs, for better or worse

filippo, 1 month ago

@benjojo File formats are protocols!

filippo, 1 month ago

Hypothetically, if an application went out of their way to misuse FilesystemStore by not using its New API and stuffing attacker-controlled data in Session.ID (which is documented as not being safe), they could hit this.

That's not what happened to Palo Alto. They wrote their own Store that takes the session ID from a cookie in New without authentication.

filippo, 1 month ago

@irenes @mcc @glyph @djc right, I guess I should say passkeys are primarily meant to replace passwords, and they happen to also be replacing U2F because the APIs and UI flows are unifying, but they don't start out as a U2F replacement, so it makes sense they wouldn't feel as the right way to replace U2F in isolation.