Kevin

Bye! kevinreddot@ioc.exchange

@Laughing_Mantis @ebmmemes BTW, how much is the phish?

@ebmmemes This is all true

@imrane @etihwdtrebor @matthew_d_green Yup

@KevinRedDot @etihwdtrebor @matthew_d_green It doesn’t. He’s the outlier.

This letter is pretty amazing. It’s from a Senate Armed Services member explaining how they’re going to build the infrastructure to monitor most Internet users, network-wide using private DNS metadata.

@FernandoGont @Enno_Insinuator Jen long was an apologist of /64 per host for predictable addressing. I think I heard her talking about it at least 5 years ago.

IPv6 SLAAC considered harmful? (ietf.org/archive/id/dra…) cc: @Enno_Insinuator

@UlfLundh @molislaegers @acjuelich @rucam365 Your Internet bandwidth, clients on LAN, LAN management plane.

Seeking opinions: If you’re “cloud only”, what are you using as an alternative to Active Directory Certificate Services?

@UlfLundh @acjuelich @rucam365 Service to service authentication in a cloud, client to service authentication for ZTNA, client to network authentication in the office.

@etihwdtrebor @matthew_d_green How does it makes sense against global flow observer?

@matthew_d_green This is why I run my own private DNS servers, use ODOH resolvers, and route my entire network (including DNS queries) through a rotating set of VPNs.

@nixcraft nginx

I always used Nginx or Apache. There was a time I used Lighttpd too. What web server do you guys roll out these days for a new project?

@DevDminGod @big_red_s @geospacedman @nixcraft Except, c is for create and z is for gzip piping

@big_red_s @geospacedman @nixcraft yea, I just tell new ppl, look at the keyboard -- it makes a shape zxcvf -- c for compress x for extract.. easy to remember

Which Linux command has the most challenging and confusing syntax to follow even after reading the man page?

@Lisias @nixcraft This is easy to check: IETF discussions and mailing lists are public. Can you point to the evidence of this claim?

@KevinRedDot @nixcraft Well.. So they didn't listened to the guys, because this is what people I known on the telecoms around here told me: they didn't listened to them.

Why is IPv6 such a failure? Is it next to impossible to go with IPv6? I tried recently, and half of the stuff doesn't work. Beyond our tech bubble, most people don't care about it. Even many service/API providers avoid it. Is IPv6 hard to understand?

@CubicleApril @okta Chrome?

I’ve been using FaceID as 2FA to sign into @okta for years now, but since upgrading to 16.2 it now asks me to scan a QR code… on a device running iOS 16 or higher. I have no idea how to do this at all, I can’t scan the QR code in this way. 🤔

@colmmacc @robertgraham I do and I like it.

@robertgraham Nobody puts periods inside parenthesis. Putting a period inside a quotation feels very inconsistent and like a violation of linguistic recursion.

They go either way. It was a TYPOGRAPHICAL standard set during the 1800s. It was the PRINTERS who formatted text this way, not WRITERS. It allowed for better KERNING, placing the period underneath rather next to the quotation marks.

@willnorris @jankatins @Tailscale Since you cannot do a reproducible build, partial source code availability might not be relevant from the trust perspective. Yes, Thompson’s seminal paper is a good illustration of the problem.

When you use Tailscale, we can't see your traffic - but we are responsible for distributing the public keys for your tailnet. What if we maliciously added new nodes to your network? With tailnet lock, you don't have to trust us.

@pudgenet @noIPv6 They do **rely** on IPv6 because they ran out of RFC1918 addresses.

@noIPv6 Facebook datacenters do not **rely** on IPv6. No reason they could not have used IPv4 internally. It scales well enough.

Does anyone rely on IPv6 for *anything*? I never have.

@pudgenet @hikhvar @TheSamBaldwin @noIPv6 Of course, you do.

@hikhvar @TheSamBaldwin @noIPv6 Yes. Also, it’s silly to simply peer VPCs with millions of IPs together.

@noIPv6 Does “the Internet” “VPC” count?

have you ever simply peered vpc’s (or equivalent constructs) with “millions of ip’s” together?

this guy’s tweets just keep on giving! 🤣🤣🤣 you know what? poll below 😃

@timcappalli We have our own we built using github.com/go-webauthn/we… We can collect all kinds of logs on the backend

Recent Chrome upgrade caused Chrome to lose platform FIDO authenticator on Windows (i.e., Windows Hello). They also changed terminology and now it's "passkeys enrollment". On top of it, they thought nothing better than using QR codes to bind the authentication flow to Android

@timcappalli If you have a hint what to look for in RP, I greatly appreciate that.

@timcappalli Why did it work before?