Stephen LB @[email protected]

@alexl

I did find it though 👇 This is some serious bullshit

Your regularly scheduled reminder: Monocultures are always toxic.

Software, biology, communities, whatever. Monocultures are toxic.

ads are malware by default

how long till the average joe realizes this
https://blog.malwarebytes.com/threat-analysis/2019/06/greenflash-sundown-exploit-kit-expands-via-large-malvertising-campaign/

Stop delivering content based off of IP location. Looking at you, Microsoft and Google.

My browser language is set to English for a reason. I want my content in English.

In case you missed it: Linux and FreeBSD are vulnerable to several TCP-based attacks.

https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md

Affected are:

– CVE-2019-11477: Linux kernels 2.6.29 and above
– CVE-2019-11478: Linux kernels before 4.15
– CVE-2019-5599: FreeBSD 12 with RACK
– CVE-2019-11479: all Linux kernels so far

Check if your systems already provide security updates and update ASAP.

#linux #freebsd #sack #vulnerability #security

#HongKong

Mozilla releases another unscheduled update for high-rated security vulnerability in Firefox :

https://www.mozilla.org/en-US/security/advisories/mfsa2019-19/

– attackers can escape the sandbox of Firefox/Firefox ESR using Prompt:Open
– update to FF 67.0.4 and/or FF ESR 60.7.2
– attackers could execute arbitrary code on the user's computer if combined with other vulnerabilities

#firefox #firefoxesr #mozilla #vulnerability #update #security #infosec #cybersecurity

Tor Browser 8.5.3 released, fixes another high-rated security vulnerability (CVE-2019-11708):

https://blog.torproject.org/new-release-tor-browser-853

– still based on FF 60.7.0esr

#tor #torbrowser #webbrowser #anonymity #privacy

Email has many flaws, but it's the last, strongest part of the non-centralised Internet we have left. We should promote and support it for that reason.

https://unwalled.garden

Love this. Very much in the spirit of what we’re working on.

Software of the day:

https://github.com/micahflee/porcupine

Porcupine by @micahflee is awesome and simple!
It is the perfect "default web browser."
I use it for everything handling links, including PasswordSafe.

#porcupine #tor #browser #torbrowser #passwordsafe

The Chinese government appears to have launched a major new internet crackdown, blocking the country’s citizens from accessing The Intercept’s website other Western news organizations. https://theintercept.com/2019/06/07/china-bans-the-intercept-and-other-news-sites-in-censorship-black-friday/

password generators are shit because they have to rely on the random number generators in your computers and software that the NSA obviously controls

the most secure password generator is putting a cat on your keyboard because nobody knows what the hell those devils think, not even the NSA

The year is 5019. Humans, as we know them, are long gone. The Earth is inhabited chiefly by advanced, sapient machines.

For legacy reasons, everyone's name starts with "Mozilla/5.0 (compatible;".

VLC media player 3.0.7 released, containing mainly fixes for security vulnerabilities discovered due to the EU-FOSSA program.

https://www.videolan.org/

– over 40 security vulnerabilities were fixed
– detailed report: http://www.jbkempf.com/blog/post/2019/VLC-3.0.7-and-security

#vlc #videolan #mediaplayer #update #infosec #security #cybersecurity

Looks like Sign In with Apple is going to be mandatory for many apps. That's one way to get adoption.

From https://developer.apple.com/news/?id=06032019j

Just FYI I have not done any more work for Purism since Todd told me the decision to not moderate Librem Social was final. I've already seen some alt right personalities on there and that's not fine with me.

2011: "What if we ported our UI to javascript? Then we get CSS theming for free!"

2019: "Our incredibly fragile tools only work with one micromanaged theme nobody likes. Please take systems integration advice from webshit design nerds because branding"

https://stopthemingmy.app/

- via @[email protected]