"How (and Why) to Use AppRole Correctly in HashiCorp Vault"
⚠️ IMPORTANT: Users of Element Desktop/Web/Android, FluffyChat & Nheko should upgrade immediately to address a critical encryption vulnerability.
We are not aware of this being exploited in the wild yet, but as the bug is now disclosed please upgrade now. https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing
"SSH Lateral Movement Cheat Sheet"
"Email Authenticity 101: DKIM, DMARC, and SPF"
"Razer bug lets you become a Windows 10 admin by plugging in a mouse"
"Inside Figma: securing internal web apps"
"Protect domains that do not send email "
"The EU decided to let providers search all private chats, messages, and emails automatically for suspicious content – generally and indiscriminately."
"Snapcraft Packages Come With Extra Baggage"
"The OAuth flow implemented in Mattermost server v5.32 > v5.36 is affected by a reflected XSS. An unauthenticated attacker might gain access to the victim’s session."
"OpenSSH ssh-agent Shielded Private Key Extraction (x86_64 Linux)"
Incredibly exciting to get official confirmation that Germany's health service (@email@example.com) has standardised on Matrix for secure decentralised communications, targeting all 150,000 healthcare organisations in Germany(!!!) 🤯 Read all about it at https://matrix.org/blog/2021/07/21/germanys-national-healthcare-system-adopts-matrix 💉🇩🇪🚀
Full-stack developer, advocate of a free, secure and safe Internet. Nature lover and sports enthusiast.
[Header photo by Colin Watts, source Unsplash]
This is a personal and private instance.