mutual_ayed

joined 2 weeks ago
sorted by: new top controversial old
Self-Driving Teslas Are Fatally Striking Motorcyclists More Than Any Other Brand: New Analysis in c/[email protected]
[–] [email protected] 2 points 2 days ago

Don't stop.... I'm almost there

Self-Driving Teslas Are Fatally Striking Motorcyclists More Than Any Other Brand: New Analysis in c/[email protected]
Self-Driving Teslas Are Fatally Striking Motorcyclists More Than Any Other Brand: New Analysis in c/[email protected]
[–] [email protected] 3 points 2 days ago (1 children)

I also rammed 10cc spikes at the back of the bus, the world needs organ donors and motorcycles provide a great service for that. Hope your EMT career was short lived but rewarding.

As CISA Downsizes, Where Can Enterprises Get Support? in c/[email protected]
[–] [email protected] 13 points 2 days ago

Enterprises? Hire capable SecOPs to staff your SOC and pay for audits by licensed firms.

Individuals? Patch your shit. Setup MFA that's not your cellphone.

Governments? ..... *Rodney_Dangerfield.gif

Self-Driving Teslas Are Fatally Striking Motorcyclists More Than Any Other Brand: New Analysis in c/[email protected]
[–] [email protected] 10 points 2 days ago (8 children)

As a fellow meat crayon I agree

*HOW* can we coax search-engines in to being able to do the simple "lemmy" + "search word" thing..? in c/[email protected]
[–] [email protected] 2 points 1 week ago (1 children)

perhaps with some Led Zep-type analogues

https://m.youtube.com/watch?v=7Tw5_9Zxy2U

Mediawolf - Looking for contributers in c/[email protected]
I want to make it dead-easy for others to chat with me. I want a browser-based, FLOSS, E2EE chat solution that doesn't require the other party to log in. Does that exist? in c/[email protected]
[–] [email protected] 2 points 2 weeks ago

Right?! This is why I love the Fediverse and FOSS.

Have a good night/day

Hope you find new fun ideas as well!

I want to make it dead-easy for others to chat with me. I want a browser-based, FLOSS, E2EE chat solution that doesn't require the other party to log in. Does that exist? in c/[email protected]
[–] [email protected] 2 points 2 weeks ago* (last edited 2 weeks ago) (2 children)

I think that's by design and the nature of the setup. Anyone with the URL can communicate.

If your other comms method is compromised this doesn't have much use. Which is a different problem all together. I think this would work great as something like a deadrop so two completely faceless people can communicate. I like it a lot.

I want to make it dead-easy for others to chat with me. I want a browser-based, FLOSS, E2EE chat solution that doesn't require the other party to log in. Does that exist? in c/[email protected]
[–] [email protected] 2 points 2 weeks ago (4 children)

I don't know yet. It's more a thought experiment than anything else.

https://github.com/muke1908/chat-e2ee

Looks like the URL is part of the seed and salt which is cool.

Proving who you are is done in another stream. Like MFA.

You do a one time pad, generate the URL with that. Communicate what's needed, then the URL dies.

I'm still noodling with it.

Plex is locking remote streaming behind a subscription in April in c/[email protected]
[–] [email protected] 0 points 2 weeks ago

Just because I and my family benefit now, doesn't mean it'll stay that way. Also again, I don't want to support or platform an app that charges others, who are not me, to share their own collection.

If they want to charge for the Plex TV or Plex Movies they host, and leave the app free of cost for a person's own personal collection to be shared. That's fine.

I have no confidence that'll happen though.

I want to make it dead-easy for others to chat with me. I want a browser-based, FLOSS, E2EE chat solution that doesn't require the other party to log in. Does that exist? in c/[email protected]
[–] [email protected] 1 points 2 weeks ago* (last edited 2 weeks ago) (6 children)

https://medium.com/sessionstack-blog/how-javascript-works-cryptography-how-to-deal-with-man-in-the-middle-mitm-attacks-bf8fc6be546c

I still don't see how

swap to a modified JS that exfiltrates the e2ee key or add additional keys

Wouldn't significantly change the recieved hash and break the stream thus ending comms. Also unless you're hosting and building it yourself you have to trust the recipient and the cloud host.

I agree if an attacker owns the server comms can be compromised. I thought that was the benefit of the ephemeral nature. It's for quick relay of information. Best practices would probably include another cypher within the messages themselves like a one time pad or some such.

https://www.itstactical.com/intellicom/tradecraft/uncrackable-diy-pencil-and-paper-encryption/

https://github.com/muke1908/chat-e2ee

view more: next ›