Show more

"What can I use to encrypt my Linux filesystem?":

– LUKS/LVM supports full-disk encryption (and optionally 2FA)
– ext4 supports folder-based encryption
– eCryptFS/encfs are outdated/unmaintained
– GoCryptFS uses modern crypto but leaks metadata
– CryFS uses modern crypto and hides metadata but is slower than GoCryptFS

Thanks to Mr. Schumacher from Magdeburger Institut für Sicherheitsforschung

#linux #encryption #crypto #fde #cryfs #encfs #gocryptfs #ecryptfs #infosec #security #cybersecurity

"Don’t trust the locals: investigating the prevalence of persistent client-side cross-site scripting in the wild"

Always sanitize the content fetched for local-storage before injecting it on any page.

The next-generation WiFi security protocol is already broken. Devices making use of it haven’t even been released yet.

Mozilla plans to enable the FIDO U2F API for all Firefox users since U2F is more widespread than WebAuthn at the moment:

– WebAuthn is an official W3C Recommendation for one month and offers more secure authentication
– FIDO U2F (Universal 2nd Factor) offers secure second factor authentication and is roughly the predecessor of WebAuthn
– Firefox 60 brings support for WebAuthn

#webauthn #u2f #firefox #authentication #infosec #cybersecurity #security

"Malicious remote code execution backdoor discovered in the popular bootstrap-sass Ruby gem"

Project's dependencies are an important attack vector.

"Discovering a zero day and getting code execution on Mozilla's AWS Network"

The issue was on the webpagetest project but it was a nice read nevertheless.

Show more
Social feed

This is a personal and private instance.