Show more

Some recently disclosed vulnerabilities rails developers should be aware of:

- Denial of Service Vulnerability in Action View - seclists.org/oss-sec/2019/q1/1

- File Content Disclosure in Action View - seclists.org/oss-sec/2019/q1/1

- Possible Remote Code Execution Exploit in Rails Development Mode - seclists.org/oss-sec/2019/q1/1

Upgrade your apps.

"Why is no one signing their emails?"

arp242.net/weblog/signing-emai

Good point. We should push for this to be more common.

170 years of German publishers demanding special copyrights for the press because of new technology.

The snippet taxes of Article 11 will be used to enrich publishers at the expense of actual journalism.

#Artikel11 #SaveYourInternet

techdirt.com/articles/20190307

"3 million vehicles can be unlocked remotely via trivially discovered web API vulnerability"

pentestpartners.com/security-b

"unhackable" is a very strong word.

"W3C approves #WebAuthn as the web standard for password-free logins"

webauthn.guide/

Password Managers: Under the Hood of Secrets Management

securityevaluators.com/casestu

It would be nice read a similar analysis for password managers that also run on Linux such as: keepassX, keepassXC, pass, etc.

-manager

"Incidents — Trends from the Trenches"

m.subbu.org/incidents-trends-f

An overview about the causes of production incidents

History is made: petition opposing the EU's #Article13 internet censorship plan draws more signatures than any petition in human history
boingboing.net/2019/03/05/no-f

Europe attempting to require manufacturer DRM to ban custom firmware on WiFi hardware (also almost anything else that transmits RF) blog.mehl.mx/2019/protect-free

"will only vote for politicians who vote against Article 13", without any doubt.

pledge2019.eu

Other countries should follow:

"France enters the Matrix"
lwn.net/Articles/779331/

Not just for "chat", but use FOSS for many other use cases.

Show more
Social feed

This is a personal and private instance.