@ljrk@todon.eu
@ljrk@todon.eu avatar

ljrk

@ljrk@todon.eu

gecos/CN: Leonard/Janis R. König
SAN: ElleJay (lj), Janis, Leo

content:

  • Commentary on world and German politics
  • Teaching and related politics
  • Rants about bad typography (& occasional praise)
  • Linux/LaTeX/GNOME/whatever-editor-I-currently-try-using
  • IT Security & Reversing
  • Climate change and anti-car policies
  • The Gender™

Opinions my own.

pfp: me, red lipstick, red foxy cat ears, brown hair tucked into a blue-grey shawl, silver feather earrings.
banner: photo of various hacker & related stickers

JMT: https://justmytoots.com/@ljrk@todon.eu

This profile is from a federated server and may be incomplete. Browse more on the original instance.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

The security industry: move to passkeys, they are phishing resistant!

The thing they haven’t mentioned: phish the recovery process for the phone instead, then you have god mode across everything. Passkeys are synced across devices by design, and there’s legacy (eg SMS) recovery.

ljrk, (edited )
@ljrk@todon.eu avatar

@GossiTheDog Huh, which vendor does that^WSMS Recovery (I have a suspicion but mine doesn't)?

ljrk,
@ljrk@todon.eu avatar

@faebudo @GossiTheDog The encrypted private key, AFAIK. So basically random data (good encryption = indistinguishable from random data).

ljrk,
@ljrk@todon.eu avatar

@GossiTheDog
Ah, uh, I meant to write SMS recovery

ljrk,
@ljrk@todon.eu avatar

@GossiTheDog Really?! Jeez. I personally use BitWarden, but I would at least expect Apple to not allow it for their "Advanced Protection" with E2E for everything in iCloud? And I think Google has a similar toggle? Although I wouldn't bet on it, too many obscure options for both.

MS is hopeless though.

ljrk,
@ljrk@todon.eu avatar

@GossiTheDog Ah, yep, that's what it was called.

And I agree, there should be something b/w using a phone number and a YubiKey...

ljrk,
@ljrk@todon.eu avatar

@faebudo @GossiTheDog Typically you do something more or less resembling the following.

k_sk <- KDF(pass)
pk,sk <- GenKeyPair()
esk <- Enc(k_sk, sk)

The esk is uploaded, not the k_sk or sk.

ljrk, to random
@ljrk@todon.eu avatar

Come work in InfoSec where mass email is hard-coded to "Mr." 🫠

(and yes, this is for real)

ljrk, to random
@ljrk@todon.eu avatar

– besser als !

ljrk,
@ljrk@todon.eu avatar

@brahms Den wahren Scheißepfosten hat aber @greg gestern gebracht: https://infosec.exchange/@greg/112400513403308695

ljrk, to random
@ljrk@todon.eu avatar

Uhhhh, new single :3

ljrk, to random
@ljrk@todon.eu avatar

Je mehr eins diverse Prozessdokumente durchliest, desto offensichtlicher wird, dass Firmen einfach mit die ineffizienteste Struktur für fast alles sind.

3 ellenlange Dokumente zu Entwicklung und Testen ohne wirklich Inhalt mit Benennung von einem Dutzend(!) Rollen für jeden Pups. Diese Prozessdokumente sind das Kubernetes der mittelständischen Softwareentwicklung: An sich nicht komplett falsch, aber zu "über"-skaliert und nicht angemessen für das was dort getan wird.

ljrk, to random
@ljrk@todon.eu avatar

"Kodier-Leitlinie"

me, to random
@me@pleroma.boingo00.wtf avatar
ljrk,
@ljrk@todon.eu avatar

@me 10/10 would bang

kottke, to random
@kottke@mastodon.social avatar

I don’t think I’ve ever seen a skate video like this before: a group of riders skating the smooth, flowing rocks on the Maltese island of Gozo (site of Calypso’s cave in the Odyssey). https://kottke.org/24/05/skating-the-contours-of-nature

ljrk,
@ljrk@todon.eu avatar

@kottke Amazing stuff! There's also some amazing off road inlining (this is officially an ad but defacto just awesome skating):

https://youtu.be/M4cOKbBCpd8

mwl, to writing
@mwl@io.mwl.io avatar

Dang it, who leaked?! #writing

ljrk, (edited )
@ljrk@todon.eu avatar

@mwl Well, I see the kink in OpenBSD Mastery, but now I'm trying to find the (hidden) political agenda in Savaged by Systemd...

ljrk,
@ljrk@todon.eu avatar

@mwl At my... IDK, 20th(?) birthday we made a circle reading SbS together from front to back, it was an experience for sure :'-)

ljrk,
@ljrk@todon.eu avatar

@mwl This must've been 6 years back, so forgive me for forgetting about any politics... I may have been distracted

ljrk, to random
@ljrk@todon.eu avatar

Vermisse immer noch, das Spreewaldhof "Apfel-Mix-Dessert Aprikose" aus dem EDEKA/REWE/$Supermarkt-Bestand. Das haben die vor do 3–4 Jahren rausgenommen und jetzt gibt's das nur noch Online :~

ljrk,
@ljrk@todon.eu avatar

@zornem Mir wurde immer gesagt, der Kapitalismus würde all meine Konsumbedürfnisse stillen :(

christopherkunz, to random German
@christopherkunz@chaos.social avatar

Ich weiß nicht, wer das wissen muss, aber der Stadiondeckel des BVB ist eine Mifare DESFire NFC Karte.

ljrk,
@ljrk@todon.eu avatar

@christopherkunz Hm, mindestens 3DES, also 122 bits kryptographische Stärke. Da Bezahlkarte und das "1 Applikation" könnte aber ein Hinweis auf DESFire EV1, also AES sein. Das wäre dann nochmal schwerer zu knacken, also durchaus legit sicher.

whitequark, to random
@whitequark@mastodon.social avatar

please tell me the most obscure joke you know

(feel free to explain or not explain it, depending on what you find more amusing to think of me reading it)

ljrk,
@ljrk@todon.eu avatar

@whitequark Q: What's an anagram of Banach-Tarsky?

A: Banach-Tarsky Banach-Tarsky.

fasterthanlime, to random
@fasterthanlime@hachyderm.io avatar

Ah. I see.

ljrk,
@ljrk@todon.eu avatar

@fasterthanlime Right in the range of the average autistic person here.

Unfortunately I still need to deal with my environment not really fitting :~

tazgetroete, to random German
@tazgetroete@mastodon.social avatar

SPD-Generalsekretär Kevin Kühnert zeigt sich im Interview mit der taz „geschockt“ über Angriffe auf Wahlkampfteams. 🔗 www.taz.de/!6008421/

ljrk,
@ljrk@todon.eu avatar

@Gleisplan @Nike_Leonhard @tazgetroete Vor wenigen Jahren hat die AfD deutlich leiser von "Rückführung" oder Remigration gefaselt sondern "nur" von Grenzen dicht. Jetzt hat die SPD mit das "Rückführungsverbesserungsgesetz" verabschiedet.

Natürlich übertrifft die SPD heute nicht die AfD heute. Aber die von AfD von vor ein paar Jahren. Jetzt treibt die AfD weiter nach rechts und die SPD versucht weiter "nachzuziehen".

puppygirlhornypost, to random
@puppygirlhornypost@transfem.social avatar

This is a thread, it was originally on twitter posted on tumblr and i found it in my export. I think that this is a very important thing for people to hear, especially in regards to alt text on fedi. Please be mindful of the people around you, and try to make things accessible. I think that the people around me can relate to this, I have had a lot of times my short term memory would just blank out and I would have to ask over and over again for someone to repeat themselves.

ljrk,
@ljrk@todon.eu avatar

@puppygirlhornypost OMG YES. I always felt left out that way, but I never could articulate why. Thank you for writing and sharing this

hazelnoot, to random

heh ​:aqua_smug:​
Windows 10 reaches 70% market share as Windows 11 keeps declining

ljrk,
@ljrk@todon.eu avatar

@hazelnoot @jenniferplusplus The only Windows machine I touch is Win11 but it's setup with a local account, I ran ShutUpWin10 and I'm in the EU and can disable a lot.

I haven't yet stumbled upon any AI features after those steps (which I also run on Win10 to make it useable).

In my view, Win11 is a solid upgrade, because all the crap can be disabled by the same measures you have to take on Win10 anyway as well.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • kavyap
  • everett
  • thenastyranch
  • magazineikmin
  • ngwrru68w68
  • DreamBathrooms
  • modclub
  • Youngstown
  • slotface
  • PowerRangers
  • osvaldo12
  • InstantRegret
  • rosin
  • Leos
  • hgfsjryuu7
  • Durango
  • vwfavf
  • khanakhh
  • tester
  • GTA5RPClips
  • ethstaker
  • mdbf
  • cubers
  • tacticalgear
  • normalnudes
  • cisconetworking
  • provamag3
  • All magazines
    •