Tux Machines
Posted by Roy Schestowitz on Jan 23, 2023
=> Haiku, Inc. Financial Report for 2022 is now available | Latest Corporate Stuff in Red Hat Sites
=> ↺ University ‘will never pay ransoms’ despite darknet data leak
Professor Albert said the November 2022 attack “created a complex situation with regard to the damage caused”, including the encryption of 1,200 virtual servers and takeover of a central system for controlling access.
The scale of the attack means the university has had to reconstruct its IT infrastructure. Raimund Vogl, president of the European University Information Systems Organisation and chief information officer at the University of Münster, said replacement hardware and security consultants could cost around €100,000 (£88,000), but that this would typically be dwarfed by the labour costs of having tens of IT and administrative staff working around the clock on recovery for months.
=> ↺ Regarding recent reported security vulnerabilities from Cisco Talos
Back in October 2022, the Qt Project Security team was contacted by someone at Cisco Talos to report an issue with integer and buffer overflow issues in QML which they considered a vulnerability in Qt 6.3. This has recently been made public by Cisco Talos here. This has also resulted in two CVEs , CVE-2022-40983 and CVE-2022-43591.
=> ↺ [remark] Memorable password schemes and patterns? -- Volution Notes
Questions (without definitive answers) about memorable password schemes and patterns.
=> ↺ [remark] Password strength for offline storage? -- Volution Notes
Questions (without definitive answers) about password strength (i.e. entropy bits) for offline storage.
=> ↺ Jan-Piet Mens :: Notes to self: KeePassXC
More and more frequently, when I ask friends and family (people with a mainly non-computing background) how they manage their passwords their eyes cloud over, and I then feel the need to tell them that they ought to apply good password hygiene. (I tend to mensplain a bit.) As such I’ve been looking much more deeply into KeePassXC as a multi-platform, Open Source, and very decent password manager.
I ran away from 1Password many years ago when, IIRC, forced cloud upon their users and also converted to a subscription model and settled for EnPass at the time. Aside from a number of UI quirks in EnPass I’ve been happy enough with it, and I got it at the time when they had a purchase model; I believe that has meanwhile also changed to a subscription model. I want to be able to recommend a program which has a fixed price (Open Source is fine) and a UI which will hopefully remain somewhat consistent. I think KeePassXC matches the requirement.
=> ↺ Rubenerd: The “I lost my phone” scam
I’m seeing an uptick in spam messages claiming the sender lost their phone, and that they’re messaging from a friend’s device. They impart a sense of urgency by claiming they’re stranded, need money, and that their friend’s phone is also running short of battery. Or long, depending on the form factor. Thank you.
=> ↺ Bringing TLS to the Magic Cap DataRover
Today we're adding TLS 1.3 to the one and only web browser on a 36MHz MIPS handheld running Magic Cap, the most unique mobile operating system from the most influential startup you never heard of. But before we do, a thank-you to Scott and Barbara Knaster: [...]
=> gemini.tuxmachines.org This content has been proxied by September (ba2dc).Proxy Information
text/gemini;lang=en-GB