fennix

@fennix@infosec.exchange

He/Him

I'm a hacker, presenter, and sometimes writer, video editor and other odd jobs.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

fennix, to Canada

The whole thing is in a terrible sign for the country's preparedness to deal with vulnerabilities in widespread distributed infrastructure.

Rather than point the finger at lazy manufacturers and develop a working solution to get fixes deployed, they're trying to ban radios.

fennix, to opensource

Hello enthusiasts!

I'm going to shift my personal repositories away from GitHub now that I'm no longer required to keep them there.

What are the decent alternatives that are not GitLab?

I'm eyeing up Codeberg but wondering what else is in this space.

lcamtuf, to random

deleted_by_author

    •
    fennix,

    @lcamtuf inflammatory tech blogging as a career path sounds pretty awesome tho.

    Em0nM4stodon, to opensource

    What is your absolute favorite
    open source app? ✨

    I know it's hard friends,
    but you can only name ONE.

    Go! 👇👀

    fennix,

    @Em0nM4stodon Audacity.

    It runs on all the things, has been consistently awesome for coming up on 24 years, and just does its job well.

    jxself, to random
    @jxself@mastodon.social avatar

    If you could invent one technology to make the world a better place, what would it be?

    fennix,

    @jxself @Em0nM4stodon @i0null sometimes the timeline answers itself.

    ottaross, (edited ) to random
    @ottaross@mastodon.social avatar

    Glad to see a bit more info on #SLIM. The robo-ball #LEV2 robot shared an image settling the orientation question.

    One wonders if they couldn't pulse a little retro rocket and tip it back onto its feet. It's resting on its nose currently, like an SUV tipped forward onto its front grille.

    #jaxa

    fennix,

    @ottaross @edgarmtoro @johnefrancis

    How I think:

    "Let's send a rescue mission to save the kerbal stuck orbiting somewhere between two planets!"

    How it goes:

    "OK so we need two new rescue missions..."

    Real talk, when I was growing up I had huge hopes that the shuttle program was just the first step towards having ships that would let us just boot around the solar system (with lengthy trip times, of course). Kid me is disappointed we can't just send off Frank to turn it upright this afternoon.

    realhackhistory, to random
    @realhackhistory@chaos.social avatar

    When it comes to hacking everyone has ideas about how AI might enable or prevent attacks in the coming years but the details as to how are a lot vaguer than the numerous predictions themselves.

    fennix,

    @realhackhistory

    I enjoy that these are the same problems people pointed out with Blockchain.

    We seem to be accelerating our ability to fail to learn lessons as fast as other technologies.

    dangoodin, to random

    I'm curious to know what security professionals think of the new intelligence assessment from the UK about AI increasing the number and impact of cyber attacks in the next 2 years.

    Do you buy this assessment, or is it wrong? Why or why not?

    https://www.ncsc.gov.uk/report/impact-of-ai-on-cyber-threat

    Key points:

    -- AI will almost certainly increase the volume and heighten the impact of cyber attacks over the next two years. However, the impact on the cyber threat will be uneven (see table 1).

    -- The threat to 2025 comes from evolution and enhancement of existing tactics, techniques and procedures (TTPs).

    -- All types of cyber threat actor – state and non-state, skilled and less skilled – are already using AI, to varying degrees.

    -- AI provides capability uplift in reconnaissance and social engineering, almost certainly making both more effective, efficient, and harder to detect.

    -- More sophisticated uses of AI in cyber operations are highly likely to be restricted to threat actors with access to quality training data, significant expertise (in both AI and cyber), and resources. More advanced uses are unlikely to be realised before 2025.

    -- AI will almost certainly make cyber attacks against the UK more impactful because threat actors will be able to analyse exfiltrated data faster and more effectively, and use it to train AI models.

    -- AI lowers the barrier for novice cyber criminals, hackers-for-hire and hacktivists to carry out effective access and information gathering operations. This enhanced access will likely contribute to the global ransomware threat over the next two years.

    -- Moving towards 2025 and beyond, commoditisation of AI-enabled capability in criminal and commercial markets will almost certainly make improved capability available to cyber crime and state actors.

    fennix,

    @spacerog @dangoodin do we know that it's zero sum?

    Not every tool is equally useful to attackers and defenders.

    stephanie, to random
    @stephanie@ottawa.place avatar

    Ahh, automatic .

    >> Do you have any additional feedback/comments?

    >>Avez-vous d'autres commentaires ou commentaires?

    🙄

    fennix,

    @stephanie I once watched a foreign language film with my partner that had English subtitles, and they were laughing their asses off at how straight up wrong the subtitles were.

    Not just bad, but completely different meaning at the most meaningless point in the story.

    It really seemed like someone took the script and shoved it through Google Translate.

    jerry, to random

    Headed into the weekend like

    video/mp4

    fennix,

    @jerry 2024 off to a hot start I see

    ottaross, (edited ) to random
    @ottaross@mastodon.social avatar

    It looks like there are almost no thermostats available now for the typical low-voltage forced air gas furnaces.

    There are several for hot-water systems, and a few for electric baseboard heating.

    A couple that were available are have gone. The Zen product (designed & made in St.John's NL Cda) is gone, after they were bought out by Mysa.

    Maybe the only option is KONOz, which is expensive and has sketchy specs.

    fennix,

    @ottaross we really need an open thermostat design.

    Community driven if needs be but it really is bad how many of the WiFi devices stop working when blocked from cloud access.

    fennix, to random

    Listened to a good chunk of the CSRB hearing today starring @Tarah - Ep.1 off to a strong start with sudden axe grinding 2/3 of the way through.

    I hope they see the value in having something like the CSRB in existence, and I hope they don't shove it behind a curtain so that the information and reports it develops are open to everyone.

    fennix,

    @jerry @Tarah

    Edited with more specific link:
    https://www.hsgac.senate.gov/hearings/the-cyber-safety-review-board-expectations-outcomes-and-enduring-questions-2/

    jerry, to random

    I found this video of Tuesday morning

    video/mp4

    fennix,

    @jerry It's going well I see. The dumpster is now larger and detached from the truck from last week.

    jerry, to random

    Sorry about the 50 seconds of apparent downtime last month. I’m working on it.

    fennix,

    @jerry and here I thought this was a five nines service!

    eric_capuano, to random

    Hey, so, uh... WTF ?

    https://www.reddit.com/r/therewasanattempt/comments/1958yf9/to_lay_off_an_employee/

    fennix,

    @eric_capuano this is truly amazing. "You didn't meet your metrics"

    2 minutes later:
    "We can't give you those numbers today"

    fennix, to homelab

    Unfortunate discovery: many BeQuiet AM4 heat sinks are sub-10mm too tall for a 3U rackmount case.

    They've been my #1 choice the last few years in different builds, so it's what I had on hand.

    mainframed767, to Discord

    I can't wait for that day when Discord gets bought by some megacorp and quickly enshitifies leading to a whole bunch of articles about things like "maybe putting our entire community on a this platform was a bad idea" and "how to archive your discord before these changes go in to effect."

    fennix,

    @mainframed767

    Microsoft today announces its acquisition of Discord. Head of XBox Gaming Phil Spencer said of the acquisition, "Discord has long served the gaming community and we couldn't ignore its outsized share of the market for social community in the gaming space. We think Discord adds a great source of value for both XBox gaming and the broader AI initiatives within Microsoft. We look forward to integrating Discord directly into the XBox experience."

    /fiction

    ottaross, to random
    @ottaross@mastodon.social avatar

    The first time I was going to build a Corsi–Rosenthal Box I accidently built a Creutzfeldt–Jakob Box, and we didn't know what the hell we were even doing for weeks.

    The second time it turned out I had the plans for a Dunning-Kruger Box but I persevered anyway, and it turned out brilliantly. Everyone said I was an idiot but they just didn't understand how amazing I am.

    fennix,

    @ottaross real q, what's with everyone calling a box fan filter, which hobbyists in loads of fields have been using for ages in shops around the world, a Corsi-Rosenthal box?

    ottaross, to linux
    @ottaross@mastodon.social avatar

    I've got a resistant install I've been banging my head against for a few days. It seems to be the black sheep of the old MacBook family, this early-2008 model. Doesn't work like any others.

    I can manage a live boot/install from an old xUbuntu 8.10 CD, which will upgrade to 9.04 but then nevermore. I've scoured the net for a bootable USB method but nothing works. A long way from 22.

    A few more ideas to try – a good puzzle to keep me in the basement while COVID rages up two floors.

    fennix,

    @ottaross
    For a long time CRA would let you file "electronically" as a business completely for free as long as you submitted it via CD to them.

    I can't imagine that's still the case but I suspect there's probably similar things that exist in the world in an opaque fashion that none of us have to see.

    Plus there's at least half a dozen old guys with straw hats and giant ham antennae at their houses who still use it to back up their data. :P

    kevinrothrock, to random

    It bums me out that there aren't more Russia-focused accounts on Mastodon. Searching around, I can see several prominent scholars and journalists who created accounts in early 2023 but soon stopped posting. That disappointment aside, there's a small but great community here of people interested in reading about the subject. Glad to be here.

    fennix,

    @kevinrothrock people are addicted to seeing big numbers next to their posts, and you don't get the view count on mastodon. Other places fellate egos better, and ego fellatio is very attractive to many people but especially those who go into industries with a large public-facing component.

    (Yes this includes the crowd who speak at conferences as a hobby)

    briankrebs, to random

    OMG this guy. Pwnd by press release.

    https://police.gov.rw/media/press-releases/press-in-details/news/rnp-has-not-hired-jonathan-scott/

    fennix,

    @jerry @egeltje @briankrebs @bhawthorne @runasand it's the con part of conman, basically. It isn't genuine belief.

    jerry, to random

    In response to Microsoft's announcement of a "copilot" key to launch their AI engine*, I am working on a line of keyboards that includes a DF key, which when pressed, will insert a context appropriate image of a dumpster fire into whatever you are working on. If you are working on code, it will do nothing, since it's probably already a dumpster fire.

    *if it really were truly AI, wouldn't it already know that you needed its help?

    fennix,

    @jerry Microsoft was playing the long game; they've wanted a clippy button since the 90s

    jerry, to random

    In positive news, I set a few personal bests already in 2024… I made it 8 hours before being DQd for husband of the year and an amazing 12 hours before falling out of the running for father of the year.

    fennix,

    There's always next year. Just gotta come up with some inventive way to knock both out at the same time, @jerry

    fennix, to random

    I think when people start putting LLMs into every product they can think of, they don't realize exactly what they're inviting in:
    https://promptarmor.substack.com/p/data-exfiltration-from-writercom

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • thenastyranch
  • rosin
  • GTA5RPClips
  • osvaldo12
  • love
  • Youngstown
  • slotface
  • khanakhh
  • everett
  • kavyap
  • mdbf
  • DreamBathrooms
  • ngwrru68w68
  • megavids
  • magazineikmin
  • InstantRegret
  • normalnudes
  • tacticalgear
  • cubers
  • ethstaker
  • modclub
  • cisconetworking
  • Durango
  • provamag3
  • tester
  • Leos
  • JUstTest
  • All magazines
    •