Post APsUFAor4JNruKgVSC by AIaYYAle4i1uKmKpqy.gme@bofh.social
(DIR) More posts by AIaYYAle4i1uKmKpqy.gme@bofh.social
(DIR) Post #APsR33c3jhnyDhELhY by tinker@infosec.exchange
2022-11-22T22:52:43Z
1 likes, 2 repeats
CISA is as close to being a federal law enforcement agency as the Library of Congress is.Like... calls of ACAB, or "They're the Feds!!!"... do y'all know what CISA does?They study cyber/hacking attacks on the US (and elsewhere) and disseminate that info out.The most controversial thing they've done so far is to call out then President Donald Trump bullshit about the election being stolen (which was disinformation, an intentional lie). The first director was fired by tweet from Trump because of it.Y'all do what you want to do. And I firmly believe official government Mastodon instances should be created to house official government Mastodon accounts... but I'd argue at least be accurate in your defederations.Like, if you don't want ANY US govt accounts, cool. But why pick CISA in particular? What about Department of Transportation?Also... you can just block the individual account. Blocking one of the largest Mastodon instances -one of the core places that is analyzing and contributing to secure coding of Mastodon so y'all don't get hacked into- for a couple of accounts (even for purposes for "making an example of") is like burning down a house to get rid of a spider.Anyhow, y'all do you all.
(DIR) Post #APsU3HU8SXtj6eK3Ky by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-22T23:56:16.372384Z
0 likes, 0 repeats
Grade A100%USDABullshit.Pure unadulterated conspiracy theory BULLSHIT.
(DIR) Post #APsUFAor4JNruKgVSC by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-22T23:58:32.400901Z
0 likes, 0 repeats
CISA does amazing work and is a force for good. They help protect out power plants, our water treatment plants, hospitals, and more from cyber attacks by disseminating threat information and investigating cyber attacks from our enemies.
(DIR) Post #APsVaPnueOCqPww80m by HSTG@freeatlantis.com
2022-11-23T00:13:38Z
0 likes, 0 repeats
@tinker Probably because CISA deals in cyber-security. Maybe you haven't noticed but this top down level of control doesn't seem to working. Many people like the fedi how it is/was. Questioning government is critical to how our(USA) government is supposed to work. Why CISA can't set up their own instance seems odd. Why your instance? I'm getting sick of saying this, but here it goes.THIS ISN'T FUCKING TWITTER!Nobody wants this shit here. At least anyone who has been here longer than 2 weeks.
(DIR) Post #APsVcxY69tR9eekjIW by HSTG@freeatlantis.com
2022-11-23T00:14:06Z
0 likes, 0 repeats
@tinker You do you!!!!
(DIR) Post #APsu90LDi5g2TuXfvs by dave_cochran@infosec.exchange
2022-11-23T01:51:37Z
1 likes, 0 repeats
@tinker if the librarians of congress aren't cops, how can they impose FINES when i don't bring stuff back on time, TINK - if that even IS your real name!#gottem #checkmate #bestatarguing#ilikehashtags
(DIR) Post #APsvL5HpFX2fFRHJoG by atyh@pleroma.atyh.cc
2022-11-23T05:02:08.431605Z
0 likes, 0 repeats
@tinker the real question is, do you really have a personal dildo with a CIA logo on it like we all suspect you do?
(DIR) Post #APswWjWw44ALCXSrHU by djsumdog@djsumdog.com
2022-11-23T05:15:28.928517Z
1 likes, 0 repeats
The most controversial thing they’ve done so far is to call out then President Donald Trump bullshit about the election being stolenThe 2020 election was literally the most controversial election in American history since Rutherford B Hayes. It was literally 6~8 Bush v Gores. We’re seeing it again with what’s happening in Arizona. I documented my thoughts immediately after the election and was immediately gaslit by the major social networks.Look, I get you’re fine with fraud cause your guy won, but to call out the mountains of evidence that show the contrary shows your bias and brainwashing. You are totally free to allow a government organization responsibly for spreading propaganda on your server, but don’t go throwing a bitchy fit when all your smart users can see the writing on the wall and spin up their own instances.
(DIR) Post #APswju9Rt1pFuHl8bI by icedquinn@blob.cat
2022-11-23T05:17:50.855254Z
0 likes, 1 repeats
@djsumdog @tinker > CISA is trustworthy:blobcatsleepless2: found the statist
(DIR) Post #APsx7N1chV6M7MHvuK by meowski@fluf.club
2022-11-23T05:22:04.114070Z
1 likes, 0 repeats
@tinker
(DIR) Post #APsxAc0rQuvFTCTf7o by hakui@tuusin.misono-ya.info
2022-11-23T05:22:42.566105Z
4 likes, 1 repeats
@tinker >Also... you can just block the individual account. Blocking one of the largest Mastodon instances -one of the core places that is analyzing and contributing to secure coding of Mastodon so y'all don't get hacked into- for a couple of accounts (even for purposes for "making an example of") is like burning down a house to get rid of a spider.mastadongers only learning why instance blocks are bad when it happens to them. classiq
(DIR) Post #APsxGGm7J8gdL7HLNI by coyote@pl.lain.sh
2022-11-23T05:23:36.744227Z
0 likes, 0 repeats
@tinker > do y'all know what CISA does?do you?
(DIR) Post #APsxNDqGbx6CGnXFBI by coyote@pl.lain.sh
2022-11-23T05:24:20.447956Z
1 likes, 0 repeats
@tinker like, their headquarters is in DHS, do you know what DHS does?
(DIR) Post #APu1MJE9hHofeoUMwi by HSTG@freeatlantis.com
2022-11-23T17:44:21Z
0 likes, 0 repeats
@gme Most of those things should be air gaped. @tinker
(DIR) Post #APu1TBITa2OV5ZmppA by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-23T17:45:30.831392Z
0 likes, 0 repeats
Doesn't mean there aren't attack vectors and vulnerabilities that can't be exploited.
(DIR) Post #APu208xZI6B9Odj00u by HSTG@freeatlantis.com
2022-11-23T17:51:33Z
0 likes, 0 repeats
@gme I've built components for some of these things. Everything is going WiFi. Even thought the wired connections that have been used for years are cheaper and more reliable. Computers are great. Not everything that can be hooked to the internet, should be hooked to the internet. Air gaps work, and are underutilized.@tinker
(DIR) Post #APu28JYxkikOb970YC by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-23T17:52:58.103023Z
0 likes, 0 repeats
Worked in Critical Infrastructure for close to 17 years. Air gap is not a panacea. It can be breached. Has been breached.
(DIR) Post #APu2EgWpHQjxYu9NYm by HSTG@freeatlantis.com
2022-11-23T17:54:11Z
0 likes, 0 repeats
@gme Still the best. If it's breached you need better physical security measures. @tinker
(DIR) Post #APu2KzUXgkEs735Zmi by HSTG@freeatlantis.com
2022-11-23T17:55:19Z
0 likes, 0 repeats
@gme What kind of work in critical infrastructure have you done?@tinker
(DIR) Post #APu2qOEvj1cjqRl6GG by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-23T18:00:55.514242Z
0 likes, 0 repeats
Was an Information Security analyst for one of the Country's largest electric & gas utilities. Primary responsibility was vulnerability management for IT systems and working closely with the OT teams. Secondary function was managing and conducting the annual penetration tests of IT, OT, network & voice transport, and SCADA systems for our fossil, hydro, gas, and nuclear assets.
(DIR) Post #APu4Tke2SRYEa3psps by HSTG@freeatlantis.com
2022-11-23T18:19:18Z
0 likes, 0 repeats
@gme Fantastic! Let's talk about the Colonial Pipeline. Can you explain to me why over 60 years ago. The US was able to run a 30 inch 5,500 mile pipeline thru swamps, hills, fields, and forests. "Constructing the Colonial Pipeline required 600,000 tons of steel; and trenching 16.7 million cubic yards of earth to bury the pipeline" https://en.wikipedia.org/wiki/Colonial_PipelineBut we can't seem to run a simple ethernet cable and keep the operation of this critical piece of infrastructure offline?@tinker
(DIR) Post #APu4lawNHDNrhCv8y0 by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-23T18:22:24.125595Z
0 likes, 0 repeats
I didn't work for Colonial Pipeline. But I do know several of their IT leadership. And you haven't provided enough context or background information for me or anybody else to make an informed statement.
(DIR) Post #APu5FcQsIIYT0iVHNY by HSTG@freeatlantis.com
2022-11-23T18:27:58Z
0 likes, 0 repeats
@gme I gave you plenty. If someone can run that much steel thru the earth, a light ethernet cable. Shouldn't be a problem. The right of way was cleared decades ago. There system could have been, should have been closed only to operation of the pipeline(air gap). In others words someone on the other side of the planet wouldn't have been able to access it, or install malware. Not using WiFi would have further hardened the system.@tinker
(DIR) Post #APu6msd9Bvc6l3fTSy by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-11-23T18:45:07.354633Z
0 likes, 0 repeats
No you haven't.Besides, before I retired my career was focused on vulnerability & patch management, PKI, and security governance.I don't know what goes-in to laying down a pipeline. We didn't acquire our gas business until 2016.I can tell you this. We didn't use ethernet at any of our gas storage facilities or to monitor our pipelines (again, not Colonial). We used cellular modems that connected back to our systems over a VPN.Ethernet has a maximum length of 100m anyway.In any event Colonial had some issues. Yes. And as a direct result of the issues at Colonial, the TSA, operating under the direction of DHS, announced a series of new cybersecurity directives targeting gas pipeline operators which both Colonial Pipeline and my old Company had to comply with.And I've read the directives. They're a good start.I spent 98% of my career on the electric side of my Company, not the gas. Although I worked closely with the gas folks every day.Historically gas operators never had the same level of oversight that the electric sector has had for the past few decades. When we acquired the natural gas pipeline, storage, and distribution Company we did back in 2016 within the first 3 months my primary task was to conduct an on-site penetration test of their entire operation and we found a LOT of issues and areas which weren't up to our standards (on the electric side) so I spent a lot of time (and we spent a lot of money) working with their teams to bring their processes and technology and practices up to our standards.And this was years before the Colonial Pipeline incident.But even when the CP event happened, none of us were surprised.And when the TSA released the cybersecurity directives for pipeline operators I know at least my old Company welcomed them with open arms. In fact, I know we were shortly before I retired we were trying to get the TSA to make them even more stronger.That's all I have to say about this.I will say this though, after that incident there was a shakeup within the IT department at CP. About two dozen people from my Company left and went to go work for CP in their IT department so they had an influx of critical infrastructure industry veterans who were already used to stringent controls, practices, and standards.
(DIR) Post #APu7WdEQm8XSJwvIJc by HSTG@freeatlantis.com
2022-11-23T18:53:27Z
0 likes, 0 repeats
@gme Ethernet is just one example. Colonial is another. You seem to have a hard time grasping what I'm telling you. What ever you use to move data, there is no reason to have EVERYTHING accessible to the web. I don't care what protocols, or systems you use, or even how much programming experience you have. NOT EVERYTHING NEEDS TO BE HOOKED TO THE WEB. (Air gap)Somethings need their own hardened network.@tinker
(DIR) Post #APu8veAkW0CyQph25g by Pwnallthethings@mastodon.social
2022-11-22T22:57:46Z
0 likes, 0 repeats
@tinker lost in the noise of all of this is the instance defederating infoex has one user.
(DIR) Post #APu8vfOxwdAsFDLttA by tinker@infosec.exchange
2022-11-22T23:05:48Z
0 likes, 0 repeats
@Pwnallthethings - It's been more than one, but to your point I'm not sure how grand the impact is or will be.
(DIR) Post #APu8vfnmSN1XUAxiZE by Pwnallthethings@mastodon.social
2022-11-22T23:09:35Z
0 likes, 0 repeats
@tinker if the big servers start mutually defederating then we have a problem. If little neighborhoods want to have pockets of quiet away from the big general servers, whether for good reasons or dumb reasons or any reason at all, it's fine. That's how this place works. Not everyone is invited to or welcome at every place, and they don't need to explain why. But I expect the big instances will always be very light touch versus other big instances
(DIR) Post #APu8vgOeFIVxKWDA24 by emptywheel@mastodon.social
2022-11-23T09:26:09Z
0 likes, 0 repeats
@Pwnallthethings @tinker Catching up: Is there somewhere where the underlying event with CISA is explained (having recently had to explain to The Intercept that they totally have no fucking idea what CISA is about)?
(DIR) Post #APu8vguCLzkeuMyMD2 by GossiTheDog@cyberplace.social
2022-11-23T09:28:25Z
0 likes, 0 repeats
@emptywheel @Pwnallthethings @tinker if you search #fediblock or #fediadmin you’ll get an idea
(DIR) Post #APu8vhQoOjq6XWEP2m by emptywheel@mastodon.social
2022-11-23T09:39:55Z
0 likes, 0 repeats
@GossiTheDog @Pwnallthethings @tinker Looking...
(DIR) Post #APu8vhrkmZOFt4pv2O by maxamaxim@mastodon.social
2022-11-23T09:54:12Z
0 likes, 0 repeats
@emptywheel @GossiTheDog @Pwnallthethings @tinker this is one of the posts that might be helpful in understanding what's going on marcy:https://dads.cool/@alex/109390359373498637
(DIR) Post #APu8viILBiepDXH9Tk by emptywheel@mastodon.social
2022-11-23T10:02:08Z
0 likes, 0 repeats
@maxamaxim Thanks! That pretty much explains it. Again, I wonder how much this has to do with The Intercept's ignorant treatment of all DHS departments as the same (while missing some of the actual policing entities). @mmasnick @GossiTheDog @Pwnallthethings @tinker
(DIR) Post #APu8vih9hSVUSUsy9o by mmasnick@mastodon.social
2022-11-23T18:48:58Z
0 likes, 0 repeats
@emptywheel @maxamaxim @GossiTheDog @Pwnallthethings @tinker catching up. and, yikes, that's dumb.
(DIR) Post #APu8vjVUgIlyycRAcS by mattblaze@federate.social
2022-11-23T18:56:53Z
0 likes, 0 repeats
@mmasnick @emptywheel @maxamaxim @GossiTheDog @Pwnallthethings @tinker Are there any big servers doing this? If there are, then I'll feel much more strongly than if it's just a few single-user instances. Otherwise it's pretty much just another one of the infinitely many ways people are sometimes Wrong on the Internet.
(DIR) Post #APu8vk0KpdRWWGrngu by tryggth@mathstodon.xyz
2022-11-23T19:03:19Z
0 likes, 0 repeats
@mattblaze @mmasnick @emptywheel @maxamaxim @GossiTheDog @Pwnallthethings @tinker And if I recall correctly, the original toot mentioning the account also implied the CISA contact suggested CISA might get their own instance. But being the government it might take awhile.Anyway... Matt is right, people are sometimes Wrong.
(DIR) Post #APu8vkeOQhUAWVbn84 by mattblaze@federate.social
2022-11-23T19:08:35Z
1 likes, 0 repeats
@tryggth @mmasnick @emptywheel @maxamaxim @GossiTheDog @Pwnallthethings @tinker I think there are certainly compelling reasons for government agencies to get their own instances (or have a central .gov instance). And if I were a small private instance operator I'd not want the responsibility for hosting official urgent announcements.But the pushback on this account does seem rather, um, misguided.