21·
27 days agoTelegram has been under fire from the start, lol. 'we have math PhDs" 🤷
Natanael
Cryptography nerd
Fediverse accounts;
[email protected] (main)
[email protected]
[email protected]
Bluesky: natanael.bsky.social
- 0 Posts
- 36 Comments
Joined 2 years ago
Cake day: August 16th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
There’s also a big difference between published specifications and threat models for the encryption which professionals can investigate in the code delivered to users, versus no published security information at all with pure reverse engineering as the only option
Apple at least has public specifications. Experts can dig into it and compare against the specs, which is far easier than digging into that kind of code blindly. The spec describes what it does when and why, so you don’t have to figure that out through reverse engineering, instead you can focus on looking for discrepancies
Proper open source with deterministic builds would be even better, but we aren’t getting that out of Apple. Specs is the next best thing.
BTW, plugging our cryptography community: [email protected]
Looks like the same dev from reddit
https://www.reddit.com/r/crypto/comments/1iumxl3/how_far_can_i_push_closesource_code_towards_being/
No audits and doesn’t want to share the code
https://www.reddit.com/r/crypto/comments/1iumxl3/how_far_can_i_push_closesource_code_towards_being/
5·2 months agoReddit keeps opting communities to features that make no sense for them. Recap, talks, community awards, etc, which only fit a tiny number of communities.
15·2 months agoYup, don’t be sole owner if you can’t afford a lawyer to make sure you get a good deal
And you can have a union even in a co-op (would mostly help if the majority / appointed leaders make decisions that break some rules, think enforcing safety rules and such)
191·2 months agoYou could also Steve Jobs yourself with a treatable but deadly disease
Your workaround is precisely why I said “more practical”. Any updates to your tooling might break it because it’s not an expected usecase
You don’t want FIDO2 security tokens for that, use an OpenPGP applet (works with some Yubikeys and with many programmable smartcards). Much more practical for authenticating a server.
BTW we have a lot of cryptography experts in www.reddit.com/r/crypto (yes I know, I’m trying to get the community moved, I’ve been moderating it for a decade and it’s a slow process)
164·2 months agoIt’s like how companies don’t like satirical use of their trademarks even if positive. Brand control. Or for China, propaganda control. They don’t want you to get comfortable using jokes about it.
The number of channels should not be the issue. However, the conversions involved might be bad at translating expected relative volume.
Another thing is that in the movie theater they might tweak volume independently per channel to boost stuff like speech while at home you’ll watch with default volumes
It is encrypted, but the security of the encryption varies between implementations (some have been found to generate keys insecurely or screw up session management, etc). For most modern devices it’s decent, as long as you’re not actively targeted by some kind of intel agency
Upside down
Also microwave projection is used sometimes for power transfer at a distance (mostly stuff like between mountaintops or islands, also only in clear weather)
51·3 months agoDepends on the specific system, but yes it often does
It’s probably signaling / driver device management related. The HDMI switch will often appear to change display properties to the connected devices, which may confuse them
Because nobody’s used to seeing Joules, you could swap in kJ for kW-seconds but then you probably need to switch base (MJh) to keep it practical, and now people need to do extra math to tell what will be on their power bill
But go ahead and call your power company to get them to list Joules
The funny thing is it’s easier to replace salespeople with AI than developers. They should be losing salespeople first!
Wireguard is most reliable in terms of security. For censorship resistance, it’s all about tunneling it in a way that looks indistinguishable from normal traffic
Domain or IP doesn’t make much of a difference. If somebody can block one they can block the other. The trick is not getting flagged. Domain does make it easier to administer though with stuff like dyndns, but then you also need to make sure eSNI is available (especially if it’s on hosting) and that you’re using encrypted DNS lookups