rgarciairvine

@rgarciairvine@infosec.exchange

Hiker, Hacker, Husband;
Diver, Developer, Dad;
Magician, Mathematician, Me.

BSc Physics and PhD Cyber Security Engineering
4 years contracted to Google to work in Apps Script and Workspace; GCP, IAM, OAuth2.0.
Full stack Web Developer and Web Server Administrator (AWS, Azure, Google Cloud)
Other info:

  • Places: 🇬🇧 🇪🇸 🇪🇺
  • Travel the world with the aim of trying all foods that exist.
  • Got married underwater
  • Once stung by a Portuguese man o' war.
  • I am in fact Ra, god of the sun
  • Favourite emoji: 😻

he/her/they

Email me at: rafa@rggi.eu (check out my public key links on my github)

Also post the odd photo of my travels, either from my archive or in-the-moment.

Current camera: Xiaomi 12 5G
Primary: 50 MP 1/1.56″ sensor, 1.0μm pixels, 26mm equivalent focal length, f/1.9-aperture lens, OIS, PDAF
Ultra-wide: 13MP 1/3.06″ sensor, 1.12μm pixels, 12mm equivalent focal length, f/2.4-aperture lens
Mmacro: 5MP sensor, 50mm equivalent

English / castellano / русский / français

This profile is from a federated server and may be incomplete. Browse more on the original instance.

rgarciairvine, to random

Is it even possible to follow a bluesky account on here?

rgarciairvine, to random

Learned a valuable lesson this week. Client had a honeypot server on a subdomain. The domain in question has multiple subdomains for development, staging and production environments, as well as some other less-important-to-the-lesson things.

The honeypot was accessed and an file was dumped on there, redirecting users to a pretty advanced phishing site for a Spanish bank.

Within 40 minutes, Google Search Console picked it up, sent an email to the webmaster and blacklisted the entire domain. The web application plus all development environments were flagged as dangerous when accessed from Chrome, and had to contact Google to remove the red screen of death after taking down the affected files.

Don't honeypot a web application on the same domain as your main application, even if the two don't communicate! There are other risks than just data loss and extraction that can cause you to lose big.

rgarciairvine, to random

@jerry Not sure if you're aware at all, but ironically, emails from notifications@infosec.exchange informing me of the new security key added to my account are hitting spam within gmail.

rgarciairvine,

@jerry Apart from email warm up I don't think there's much that can be done to be honest, just figured would be worth letting you know if nothing else. I'm switching to Proton anyway so it shouldn't cause me personally issues in future.

rgarciairvine, to infosec

Hey fediverse, I've got a question. Is GrapheneOS (https://grapheneos.org/) any good? How does it feel compared to commercial Android? I'm looking for something more secure that I'm currently running

rgarciairvine, to random

Logging into my work account and seeing this in the list of clock statuses is the epitome of 21st century work control mentality

theresnotime, to random

I wouldn't exactly call that speedy HMPO, but you do you.

rgarciairvine,

@theresnotime lmfao fuck HMPO. Everything about them is terrible. Applying for a passport from abroad is hellish, also how does a
passport cost so much money, what a backwards government

rgarciairvine,

@theresnotime they say it's blue but what they really mean is it looks like what happens when you try printing a blue page using a black and white printer

rgarciairvine,

@theresnotime my Spanish passport cost me 30€ and they printed and gave it to me literally 5 minutes after my appointment to apply for one, drying which I gave them my passport photo for the first time. Madness

theresnotime, to random

Nothing more passive aggressive than the 👍 emoji.

rgarciairvine,

@theresnotime I felt the same, then I moved to Spain and EVERYONE does it. Like, it's the same level as saying 'great!' in the right context. Took me months to get over the idea that it means the sender isn't actually bothered by what I'm saying. My limited research makes me think the passive aggressive implication/inference is an anglosphere thing

theresnotime, to random

omg there's a .wang TLD

rgarciairvine,

@theresnotime I personally am a fan of the Cook Islands' second level category for businesses: .co.ck

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • kavyap
  • DreamBathrooms
  • cubers
  • magazineikmin
  • InstantRegret
  • GTA5RPClips
  • thenastyranch
  • Youngstown
  • rosin
  • slotface
  • osvaldo12
  • ngwrru68w68
  • ethstaker
  • provamag3
  • everett
  • Durango
  • Leos
  • cisconetworking
  • mdbf
  • khanakhh
  • normalnudes
  • tester
  • modclub
  • anitta
  • tacticalgear
  • megavids
  • lostlight
  • All magazines
    •