Telegram has been under fire from the start, lol. 'we have math PhDs" 🤷
Natanael
Cryptography nerd
Fediverse accounts;
Natanael@slrpnk.net (main)
Natanael@infosec.pub
Natanael@lemmy.zip
Bluesky: natanael.bsky.social
- 0 Posts
- 166 Comments
Joined 2 years ago
Cake day: August 16th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
There’s also a big difference between published specifications and threat models for the encryption which professionals can investigate in the code delivered to users, versus no published security information at all with pure reverse engineering as the only option
Apple at least has public specifications. Experts can dig into it and compare against the specs, which is far easier than digging into that kind of code blindly. The spec describes what it does when and why, so you don’t have to figure that out through reverse engineering, instead you can focus on looking for discrepancies
Proper open source with deterministic builds would be even better, but we aren’t getting that out of Apple. Specs is the next best thing.
BTW, plugging our cryptography community: !crypto@infosec.pub
Looks like the same dev from reddit
https://www.reddit.com/r/crypto/comments/1iumxl3/how_far_can_i_push_closesource_code_towards_being/
Depends on where the exact cause is. Sometimes it’s fixable in another layer (like a compatibility patch in wayland) if all the data is still there, but it really should be fixed in the driver
It’s usually a driver issue as in limited support for your specific graphics card, where some features are implemented differently from other models and not covered in full by the open source drivers
This is an issue with translating the graphics buffer to the screen, it’s a driver issue. There’s differences in the graphics APIs used by older and newer games, sometimes not every version is tested for a given driver / graphics card combination, so stuff like older OpenGL games might not work the same as a newer one running on Vulkan (or which Proton can translate to Vulkan)
What else do you have installed? KDE Connect?
191·7 months agoYou could also Steve Jobs yourself with a treatable but deadly disease
Your workaround is precisely why I said “more practical”. Any updates to your tooling might break it because it’s not an expected usecase
You don’t want FIDO2 security tokens for that, use an OpenPGP applet (works with some Yubikeys and with many programmable smartcards). Much more practical for authenticating a server.
BTW we have a lot of cryptography experts in www.reddit.com/r/crypto (yes I know, I’m trying to get the community moved, I’ve been moderating it for a decade and it’s a slow process)
The number of channels should not be the issue. However, the conversions involved might be bad at translating expected relative volume.
Another thing is that in the movie theater they might tweak volume independently per channel to boost stuff like speech while at home you’ll watch with default volumes
It is encrypted, but the security of the encryption varies between implementations (some have been found to generate keys insecurely or screw up session management, etc). For most modern devices it’s decent, as long as you’re not actively targeted by some kind of intel agency
Also microwave projection is used sometimes for power transfer at a distance (mostly stuff like between mountaintops or islands, also only in clear weather)
It’s probably signaling / driver device management related. The HDMI switch will often appear to change display properties to the connected devices, which may confuse them
No, male culture has changed far more due to propaganda, etc.
Culture of excessive individuality and independence plus macho culture
Lack of intergenerational teaching and connections to help kids mature when growing up
The cat you hid away in your bag gets startled and scratches you. Why haven’t you learned not to do that yet? You got scratched last month doing the same thing.
You put the cat back in the bag and take it with you.
Leave right away or tend to the wounds?
They start screaming very loudly. You stagger away from the door and it’s gonna take a minute to hear normally again.
You brought a bag earlier. Look in it?
… That you know of
Your guilt stops you from going through with it, especially because of the neighbor’s dog which you dogsit occasionally. Who else buys it those fancy treats? (actually 5 more people in the building, but you don’t know that)
You hear a conversation outside the door, do you listen in?
Wireguard is most reliable in terms of security. For censorship resistance, it’s all about tunneling it in a way that looks indistinguishable from normal traffic
Domain or IP doesn’t make much of a difference. If somebody can block one they can block the other. The trick is not getting flagged. Domain does make it easier to administer though with stuff like dyndns, but then you also need to make sure eSNI is available (especially if it’s on hosting) and that you’re using encrypted DNS lookups