Posts by nerdpr0f@infosec.exchange
(DIR) Post #AP6V0C37dXrQJ3RAK8 by nerdpr0f@infosec.exchange
2022-10-30T17:26:55Z
0 likes, 0 repeats
Hypothesis: A social media site reaches critical mass with respect to adoption within a community when it becomes the primary place people post pet pictures.
(DIR) Post #AU3j0tdO5aj9kBlCVM by nerdpr0f@infosec.exchange
2023-03-28T00:26:08Z
0 likes, 1 repeats
Today's reminder; any website is an API if you work hard enough.
(DIR) Post #AU7IzcqbCFgfDNVrns by nerdpr0f@infosec.exchange
2023-03-29T16:52:36Z
7 likes, 9 repeats
I've started adding an extra credit question to all my exams that is, in a nutshell, "Describe, in detail, some topic you studied for the exam but that the exam did not cover". Most of the responses I get are of the form "I found <thing> really interesting and studied it in great detail, but you didn't ask me enough about it and I want to talk about it more." This is super rewarding.
(DIR) Post #AUHRNa5pNa1u44cSES by nerdpr0f@infosec.exchange
2023-04-03T16:22:36Z
0 likes, 0 repeats
@CliffWade It would be fascinating to see the results of this question compared across social media platforms.
(DIR) Post #AWOQKe1rWLGYtnb7UO by nerdpr0f@infosec.exchange
2023-06-05T20:58:05Z
0 likes, 0 repeats
@lowqualityfacts I assume this is the football team.
(DIR) Post #AX8EsNTCyPSMuzUCtU by nerdpr0f@infosec.exchange
2023-06-27T12:55:41Z
0 likes, 0 repeats
Does anyone happen to know if anyone has ever put together a guide for best practices in dealing with being large-scale, targeted Internet harassment? (ie: notifying your local PD ahead of time if you're likely to be the target of swatting)
(DIR) Post #AX8EsPaN6kNJTmqxKy by nerdpr0f@infosec.exchange
2023-06-27T13:20:40Z
0 likes, 0 repeats
@JamesLonghurst Thanks! (It's not for me, but it came up in discussion).
(DIR) Post #AYQu8gxHqB5HeaCji4 by nerdpr0f@infosec.exchange
2023-08-03T21:21:29Z
1 likes, 0 repeats
I'm increasingly convinced that one of the reasons tech people are still often viewed as wizards by non-technical people is because of our overall poor quality of information presentation, not because technical work is fundamentally difficult.
(DIR) Post #Ab6KTv6DH6RaAAfM4O by nerdpr0f@infosec.exchange
2023-10-24T15:44:26Z
0 likes, 2 repeats
I'm seeing a lot of folks take shots at 1Password for the Okta incident... but isn't their response to this incident exactly what we'd want to see?Kinda hard to see how "We caught this early, killed access, verified no risk to user data, and worked with Okta" reflects negatively on 1Password.
(DIR) Post #AcFjuiHF2Saq91fXJw by nerdpr0f@infosec.exchange
2023-11-28T03:17:44Z
0 likes, 0 repeats
You know, you sometimes end up writing really weird code as a college professor. This thought is brought to you by the x86 bubble sort I just finished.
(DIR) Post #AcFjujzwdjwhTxakdc by nerdpr0f@infosec.exchange
2023-11-28T03:18:56Z
0 likes, 0 repeats
@Wikisteff It's not a full on assembly class. I don't have time to get into the really screwball things.
(DIR) Post #AcFjukpLYd3w3Ndnl2 by nerdpr0f@infosec.exchange
2023-11-28T03:26:38Z
1 likes, 0 repeats
@Wikisteff Incidentally, if you ever want to see some crazy learning outcomes, look at the NSA CAE-CO low-level programming learning outcomes. Direct quote: "Students will be able to write a functional, stand-alone assembly language program, such as a simple telnet client, with no help from external libraries."
(DIR) Post #AcGpVV1VyKrGgNdJc8 by nerdpr0f@infosec.exchange
2023-11-28T16:04:39Z
1 likes, 1 repeats
Well, looks Google ending unlimited drive storage for higher education is finally coming down stream. I'd guess academic institutions are about to revert back to SMB file share hell. My bet is there's also critical data loss from employees being forced to clear stuff out to avoid surcharges. The enshittification of the cloud is going to have the most impact on integrity and availability, mark my words.
(DIR) Post #AlpvdqASd7zk5aOkgy by nerdpr0f@infosec.exchange
2024-09-09T16:36:45Z
1 likes, 0 repeats
Class: C / Syscalls / basic comp org / secure coding Students during the semester: Ugh, this class is so boring and out of date. Why do I need to know how syscalls work or the internals of how code gets compiled? Who even does buffer overflows anymore?Students after the semester: So, your class keeps coming up in job interviews.Me: Yep, sounds about right.
(DIR) Post #Ar1aEZicOtn6ZuALFw by nerdpr0f@infosec.exchange
2025-02-11T14:18:54Z
0 likes, 0 repeats
@mcnado Friend, I think you have far too high of an opinion about university administrators. A few things:1) Most universities are schools attached to hedge funds by way of the endowment. In most schools, the person with the most practical power on campus isn't the president or the board, it's the CFO/VP for Finance/<insert similar title here>.2) US universities can be held hostage with the threat of withholding financial aid money. Suppose there's a threat: "Remove diversity or you can't receive student loans/pell grants". Without that income, most universities wouldn't be able to make payroll. There might be a delay by a semester or two while operating budgets are shuffled around and there are massive layoffs, but that's the ballgame. They'd be relying on research funds and money from their foundation.. but that really doesn't go very far.This really sucks, but I strongly suspect no universities are coming to save anyone.
(DIR) Post #Axct7RlF03ygAZQie0 by nerdpr0f@infosec.exchange
2025-08-25T20:56:31Z
0 likes, 1 repeats
This is going to be such a huge pain in my ass.https://arstechnica.com/gadgets/2025/08/google-will-block-sideloading-of-unverified-android-apps-starting-next-year/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
(DIR) Post #AzhW3afLlKGrqpKe0G by nerdpr0f@infosec.exchange
2025-10-29T12:10:18Z
1 likes, 0 repeats
@da_667 Out of curiosity, is this real? One of the competition red teams I’m on figured out how to do something similar a few years back.