Posts by teajaygrey@snac.bsd.cafe
(DIR) Post #B0w9ZLyceAyIXb3D4y by teajaygrey@snac.bsd.cafe
2025-12-05T06:05:40Z
1 likes, 0 repeats
Awesome! Thank you!I'm currently in Barcelona for the Ombra Festival and without any laptops nor macOS systems remotely accessible via SSH, so I won't get around to updating the MacPort until I'm back in the USA next week (though if others submit a Pull Request, that'd be cool!). Just wanted to let you know I'm not ignoring you!I need to iron out and update my credit card info with Liberapay too, sorry about that. My life and finances in particular, are a bit out of sorts at the moment.
(DIR) Post #B10OmqoRaT21sz1X0q by teajaygrey@snac.bsd.cafe
2025-12-05T06:00:21Z
1 likes, 0 repeats
I'm currently back in Barcelona for the Ombra Festival (the opening night was last night) and have been AFK a LOT as a result!I won't be back in the USA until next week, and did not travel with any laptops, so it's not that I'm ignoring that there is a new version of snac, but I won't be able to do much about it for the time being.I created the following Trac issue for myself and if any other MacPorts' users or developers may be wondering what's up:https://trac.macports.org/ticket/73294#snac #MacPorts #OmbraFestival #BCN #ImNotLazyImJustConstrainedBeyondMostOthersComprehension
(DIR) Post #B1YwrYxLfsnqEm02HQ by teajaygrey@snac.bsd.cafe
2025-12-23T23:51:16Z
0 likes, 1 repeats
Finally back in front of physical keyboards.MacPorts merged my 2.85 snac update here:https://github.com/macports/macports-ports/pull/30539I think I ironed out the Liberapay issue too, so hopefully the funds reached you OK by now.Happy holidays!CC: @grunfink@comam.es
(DIR) Post #B206FfcKhoSmhYeqe0 by teajaygrey@snac.bsd.cafe
2026-01-05T23:05:12Z
0 likes, 1 repeats
Thank you!Also, thanks to lxo, violette, fruye and to anyone else who may have helped contributed to this release!I've submitted a Pull Request to update MacPorts' snac to 2.86 here:https://github.com/macports/macports-ports/pull/30669Currently one of three Continuous Integration checks passed (which is a good sign the other two will probably pass soon too).It's up to someone else with commit access to merge it.#snac #MacPorts #OpenSource #ActivityPub #Mastodon #NoDatabaseNeeded#NoJavaScript #NoCookiesEither #NotMuchBullShit #snacAnnounces #FrugalFediverse
(DIR) Post #B24sZ08Iu7YDJi3ETw by teajaygrey@snac.bsd.cafe
2026-01-07T06:00:27Z
0 likes, 1 repeats
Groovy!I submitted a Pull Request to update MacPorts' snac to 2.87 here:https://github.com/macports/macports-ports/pull/30679It's churning through GitHub Continuous Integration checks (1 of 3 passed so far which is a good sign the other two will complete successfully).It's up to someone else with commit access to merge it.p.s. the other day I read your napcop proposal and I dig the acronym. ;)#snac #MacPorts #OpenSource #ActivityPub #Mastodon #NoDatabaseNeeded#NoJavaScript #NoCookiesEither #NotMuchBullShit #snacAnnounces #FrugalFediverse
(DIR) Post #B2J0NFWvLrxrRQugfg by teajaygrey@snac.bsd.cafe
2026-01-15T09:32:45Z
0 likes, 0 repeats
I think I stopped following misskey accounts, when I stopped using mastodon.social years ago.Not because I dislike misskey, but because there is so much awesome art, I could spend lifetimes scrolling and liking and boosting the artists on it.Every now and then, someone I follow boosts misskey art to this snac instance and I fall into a rabbit hole of artistic appreciation, but I must resist.There are some absolutely amazing artists on that instance though! I really can't get enough, I just, need to abstain from that much screen time.
(DIR) Post #B2OGkCI68ArX73k5cO by teajaygrey@snac.bsd.cafe
2026-01-17T06:57:52Z
0 likes, 0 repeats
Good habits. Maybe we're old? It pains me to think of all the wasted memory by leaving too many tabs open, yet I see folks younger than I use browsers which have, to me, an incomprehensible number of tabs open.Just because OSes evolved virtual memory, and browsers evolved multiple tabs, doesn't mean such things are wise uses of finite resources.CC: @robpike@hachyderm.io @timbray@cosocial.ca
(DIR) Post #B2Ysm4xhoQNoXLg6Km by teajaygrey@snac.bsd.cafe
2026-01-23T01:49:47Z
0 likes, 0 repeats
As a maintainer for MacPorts' OpenSSH, I had a minor freak out when it appeared as if someone wanted to overwrite the Portfile:https://github.com/macports/macports-ports/pull/30873I'm guessing, overly cavalier tab-completion was to blame? Thankfully, I did not approve that as I am sure it would have upset not just me, but others too.
(DIR) Post #B2YstmvmjcrkvoSJhg by teajaygrey@snac.bsd.cafe
2026-01-23T01:48:04Z
0 likes, 0 repeats
Thank you for the continued improvements and thanks to byte for the contributions to this release as well!I've submitted a Pull Request to update MacPorts' snac to 2.89 here:https://github.com/macports/macports-ports/pull/30876Two of three GitHub Continuous Integration checks are running with a third queued.Hopefully they'll complete without issues?If so, it's up to someone else with commit access to merge it!#snac #MacPorts #OpenSource #ActivityPub #Mastodon #NoDatabaseNeeded#NoJavaScript #NoCookiesEither #NotMuchBullShit #snacAnnounces
(DIR) Post #B2ZYn4Ha1J6OnI80si by teajaygrey@snac.bsd.cafe
2026-01-23T09:41:09Z
0 likes, 0 repeats
Some nominees whom I've been blessed to have known personally over the decades, albeit these are mostly US citizens (I'm from California this time around incarnated as a human, so those biases are largely due to geographic "privilege" for the misfortune of being born in the land of the fee and home of the slave, subjugated to a mercenary industrial complex, a medical industrial complex a for profit prison carceral slavery industrial complex as are pervasive in these realms, among others). Note, this list is extremely abbreviated, I know a lot more folks who probably deserve such nominations:Doug Engelbart (headed the Augment group at Stanford Research Institute which begat NLS [oNLine System] which later caught the attention of JCR Licklider who provided [D]ARPA funding evolving NLS into what became known as the Internet. Among myriad innovations, Doug was said something to the effect of: "we [NLS] had links too, but there was nothing 'hyper' about them.").Bill English (another in Doug's Augment group at SRI, whom Doug attributed the invention of the mouse, also more or less pioneered the field of ergonomics).Marshall Kirk McKusick (helped implement the aforementioned BSD TCP/IP stack while a student at UC Berkeley, which infamously beat out BBN's TCP/IP implementation because: BBN's, despite initially performing faster, crashed, whereas the BSD TCP/IP stack kept chugging along more reliably. Lamentably, he was not able to present such work as part of his doctoral thesis and instead focused that research on MC68000 register allocations [he claimed maybe "six people" ever bothered to read it at MeetBSD 2014 and I am pretty sure I was maybe among those six when I was younger and striving to learn more about MC68k asm optimization techniques] also one of the co-authors of 1989's "The Design and Implementation of the 4.3 BSD UNIX Operating System" later reprised as: "The Design and Implementation of the FreeBSD Operating System" also helped implement the FFS [Fast File System] and tools such as fsck. If Linux is popular today? It never would have become popular without the popularity of UNIX before it and Kirk was among the BSD folks who made UNIX something worth running outside of Bell Labs' corporate largess with their sources shared freely with the rest of the world.)Jordan Hubbard (one of the co-founders of FreeBSD and even decades after his last commit to that project, still ranked within the top 10 of all time FreeBSD committers by commit count. Also a co-founder of DarwinPorts [later renamed to MacPorts] and one of the reasons why OS X/macOS has a BSD derived user and instead of Apple's previous proprietary Mac OS [System 1 through System 9]. Last I heard, jkh was working at NVIDIA, and is probably one of the reasons why their Linux drivers have supposedly improved in recent years).Theo de Raadt (founder of OpenBSD, previously part of the core developers of NetBSD. Born in South Africa, but residing in Canada for an awfully long time. In addition to making their source tree available on the web via https://cvsweb.openbsd.org/ in the mid 1990s, more than a decade before GitHub was even conceived of as a proprietary webUI to libre/free DVCS tool git, instrumental in helping to take a UNIX /usr/src and auditing the source with a team of security experts, helping to remove a lot of the "low hanging fruit" of exploit vectors and raising the bar for everyone. Forked SSH into OpenSSH after Tatu Ylonen and ssh.com decided to make it closed sores and proprietary; Niels Provos, then a doctoral student at the University of Michigan in Ann Arbor, by virtue of being a German citizen, would drive over the boarder to Canada, to contribute code to OpenSSH, just to make sure that no US cryptographic export legislation was being violated. Similarly, when Darren Reed decided to stick to his guns with regards to failing to clarify IPF's license, OpenBSD developers created pf [later ported to FreeBSD, OS X, macOS, Linux and even Windows]. Various licensing audits have been performed of code in OpenBSD and it has spawned other projects such as: LibreSSL, OpenBGPD, rpki-client, OpenSMTPD, OpenNTPD, GoT [Game of Trees, an ISC licensed git compatible DVCS which is evolving gotwebd, a webUI complementary to the co-creation of gothub.org which aims to be akin to GitHub, without the proprietary Micro$oft owned underpinnings, also led by Stefan Sperling, also a European AFAIK]. As of OpenBSD 5.5, all known y2k38 bugs were fixed, something that I think Linux still has failed to address [I can only imagine RHEL/IBM and Oracle/Solaris, etc. sorts may be salivating at the lucrative service contracts to fix similar things for their commercial customers])萩野(伊藤)いとぢゅん aka Jun-ichiro "itojun" Hagino (hopefully unsurprisingly: Japanese. Unlike a lot of the PhDs whom I have known over the decades, one of the few [perhaps only] individuals I ever encountered who had commit access to NetBSD, FreeBSD and OpenBSD simultaneously. Deeply involved with the KAME project and instrumental for IPv6 adoption into the major three BSDs and from there, to much of the rest of the world. Incredibly kind and cooperative, his untimely passing is a deep tragedy.)Daniel J. Bernstein (I'm not even sure where to begin, but daemontools set the stage in UNIX for what would eventually become common practice with things such as launchd, OpenRC, probably even systemd in Linux stole a lot of ideas that djb pioneered. Similarly, qmail took the security nightmare that was SMTP in the sendmail [pejorative: sendwhale] era and showed off not just resilient secure code, but process and privilege separation to the extreme, Postfix and later OpenSMTPD would derive inspiration from djb's trail blazing. djbdns would do a similar thing to provide a saner secure alternative to BIND, years before NSD and Unbound attempted to follow in similar footsteps with NLSNet backing. Similarly, djb's DNSCurve attempts to provide encryption to name resolution and such, without many of the amplification attack pitfalls of DNSSEC. While unfortunately a lot of djb's code is not widely deployed, it has influenced other secure development practices and his website is still up, even when collaborative projects in parallel research such as tcpcrypt.org, have fallen to the wayside).Gordon "Fyodor" Lyon (creator of nmap, which came to notoriety in PHRACK and has even appeared in Hollywood movie cameos such as The Matrix franchise, but remains, to this date: libre/free open source software and continues to be actively maintained and updated. Extremely useful for network administrators and penetration testers alike.)Александр Песляк aka Solar Designer (Russian security researcher perhaps best known for the libre/free open source tool John the Ripper. While East Coast Murican "hackers" were trying to profit off of l0phtcrack, jtr was truly free. I guess l0phtcrack opened their source code in 2021? I kind of stopped paying attention decades earlier, because better tools were freely available without shareware handicaps and the source was there to audit. Admittedly, I did also meet the author of crackerjack which was a friend's preferred passphrase hash cracker in the early 1990s, but that was at DefCon in the mid 2000s and probably a conversation and side story best ignored for now.)And some, whom I haven't been blessed to know personally despite having benefited from their contributions:L. Peter Deutsch (featured in Stewart Brand's article in Rolling Stone on Spacewar from 1972, which was probably one of the first mainstream media mentions of the term "hacker" before it became demeaned, as in: "More than a hacker, in the opinion of a colleague, 'although he has someof that style. He's a virtuoso.'" His contributions are too numerous to list here exhaustively, but Ghostscript, a free software PostScript and PDF interpreter is highlighted by Wikipedia, and that's certainly worth mentioning).Bob Fabry (helped bring UNIX to UC Berkeley, also helped create CSRG [Computer Systems Research Group] out of which BSD [Berkeley Software Distribution] co-evolved, instrumental in helping TCP/IP become the underlying protocol choice for the Internet (previously, it was NCP [Network Control Program] from SRI/Engelbart's team).Bill Yeager (a staff researcher at Stanford University, invented the first multi-protocol router in 1980–1981 to connect disparate network systems. Basically, Cisco ripped off his work and started charging money for their boxes which were essentially running code for which Yeager was largely responsible. There was a lawsuit between Stanford and Cisco and it was settled and Stanford got some kickbacks, but Yeager basically didn't, at all. Once upon a time the Computer History Museum in Mountain View, at least had a plaque commemorating his contributions, but last time I visited it was gone. No doubt the gorilla of Cisco didn't like the negative [if truthful] portrayal of their non commercial academic predecessor and pulled enough strings to get that removed from public display.)Douglas Terry, Mark Painter, David Riggle and Songnian Zhou, Paul Vixie (I have however, worked with Paul's nephew! I'm lumping these folks together though the first four were instrumental in the co-creation of BIND [the reference DNS server implementation] Vixie helped promulgate it, particularly thanks to the creation of ISC [Internet Software Consortium] which also begat DHCP [Dynamic Host Control Protocol]. Without DNS, the Internet would be a much more cumbersome thing to utilize though I still side with Surak, that the commercialization and charging money for DNS registrations via ICANN and registrars, was a money grabbing move and a complete mistake. Perhaps someday, we'll have a "Let's Encrypt" for DNS? AlterNIC doesn't seem to be pulling their weight unfortunately and I hail from a time when DNS was entirely free as it should be. Domain squatter opportunists are the worst sort of profiteers.)Cynbe Ru Taren aka Jeff Prothero (years before the FSF and GNU were a thing, Cynbe had already released Citadel into the public domain as BBS software. There are more forks of Citadel than I can easily enumerate, despite having been a [co]SysOp of various BBSes running everything from Macadel and MacCit to Cit86, Cit68k, GremCit and Cit/UX [which last I checked, continues to evolve as groupware]. Though he also toiled in the commercial sector [and was apparently one of the members of Cisco's elite gigabit networking group back when a gigabit per second speeds were still bleeding edge] he continued to contribute to the libre/free open source realms with things such as Mythryl, a programming language that is probably still beyond most mortals' comprehension).I could go on and on, really; but those are some nominees I'd throw out there for starters as well as some of the reasons why I think they're worth including.
(DIR) Post #B2ZaovlqpyiqsnIrtQ by teajaygrey@snac.bsd.cafe
2026-01-23T10:01:51Z
0 likes, 0 repeats
Bureaucracy is awful, everywhere.I have a turntable that maybe will get delivered tomorrow?It was sitting in customs in Hawaii since January 8th, shipped from Japan on the 7th.I submitted a 5106 form to the CBP.gov website on December 31st, 2025. They didn't even reply to me until January 14th.All told, I think I submitted five different 5106 forms (with very little difference between any of them IMHO; certainly the thing a sane human should be able to care less about, but alas I was not interacting with sane humans, but insane bureaucrats I guess) before the turntable was "released" from customs?Here's hoping it actually functions when I accept delivery and unbox the thing! ^_^Terry Gilliam's Brazil with Robert De Niro as Archibald "Harry" Tuttle circumventing bureaucratic red tape is inspirational and I think beck@ had an image of that character on his website once upon a time for all the right reasons. ;)
(DIR) Post #B2ZbeKhRuZrQy2kqzw by teajaygrey@snac.bsd.cafe
2026-01-23T10:13:20Z
0 likes, 0 repeats
"why did they choose the ATProto?"The cynic in me: because it's centralized.Governments may talk a big talk about things, but at the end of the day, they're legacy systems and they want control.Alas, too many seem to have not acknowledged that the Internet is already an intergalactic system of collaboration and already operates at scale of billions of users with billions of packets per hour.Legacy meatware governance is obsolete, but the transition period is going to be long and drawn out and in the interim, a lot of "reinventing the flat tire" will presumably play out, ad nauseam. ;(We already had end-to-end encrypted realtime libre/free open source "federated" (I would use the phrase: "distributed") systems such as SILC (Secure Internet Live Conferencing) before ActivityPub (or twitter or Facebook, etc.) was ever conceived of in the first place. But, why was it never popularized? It circumvents centralized control and the "powers that be" don't like not being able to ratchet down on others. Class warfare is their paradigm, so they prefer to perpetuate such things, rather than normalize new paradigms which make themselves obsolete. ;-/IRC? XMPP? FTP? HTTP? Other plaintext by default protocols, very popular! Spies just love spying!Note: SILC isn't alone, there's PSYC2, GNUnet and other libre/free end-to-end encrypted comms systems; but as much as some may claim they want such things, what seems to gain traction and momentum every time? Over and over again? Insecure, centralized, systems. If you follow the popularity and the "money" it's usually the same old dirt bags behind the scenes pulling the strings.CC: @_elena@mastodon.social
(DIR) Post #B2ZbpPJ57hZYRPdatc by teajaygrey@snac.bsd.cafe
2026-01-23T10:15:16Z
0 likes, 0 repeats
Only $100 million?Why not $100 trillion?It's just bits in others' computers these days anyway. Oh, maybe there's an addressing constraint? I can grok that.
(DIR) Post #B2Zdovu4dzPd9lqGki by teajaygrey@snac.bsd.cafe
2026-01-23T10:37:39Z
0 likes, 0 repeats
One of the best compliments I received in my entire career was someone coming up to my desk and asking about an email I had sent to the company about switching firewalls (from a SPOF Nokia IPSO [basically FreeBSD running Checkpoint-1] to an HA/fault tolerant pair of Netscreens [using NSRP NetScreen Reundancy Protocol; before Juniper Networks bought them. Admittedly, I wanted to replace things with a pair of OpenBSD/pf/CARP systems, but my managers at that company didn't believe in open source software and wanted to pay companies so they could yell at people over the phone for support contracts if I got hit by a bus or something I guess?]) telling me: "I didn't notice anything."Gosh, what a great feeling that was hearing that!I really, didn't want my users to notice anything! If they did, then I had failed at my job somehow.I mean, I would still send out email notices about maintenance windows and such, in case something broke, and we needed to rollback or whatever. But was I ever grateful to get that "compliment". Admittedly, it was phrased more like a question than a "hey, good job! Everything seems the same to me!" but even if they didn't understand what high praise they were giving me, it felt great.I'm not too sure if you're familiar with the concept of 黒衣「kurogo」from 歌舞伎「kabuki」and 文楽「bunraku」(I watched 国宝「kokuhō」[translation: "National Treasure"] in IMAX last night, so kabuki is kind of fresh in my memory) but the "running crew" often clad in all black or other nondescript attire, so as not to detract from the main stage performers, come to mind as aspirational with regards to such things. They're instrumental to making the performance happen, but not at the center of attention!Admittedly, sometimes maybe that can be taken to extremes? Today at work for example, I was asked by some patron: "is this a recording, or a live?" during William Ludke's Thursday organ meditation.It was most certainly, live, but the way the organ is positioned, the organist, is occluded from the view of those sitting in the auditorium. As a deejay? I love that, and really want something similar for my performances, as the focus should be on the music not me. Not all organs are designed that way, and I think it takes a particular kind of organist who is OK with not being in the spotlight? It probably comes as no surprise that I enjoy volunteering my time on Thursday just to facilitate those performances, even if I don't earn a cent in the process. To those who seem oblivious to whether the performance was a recording or live, I kind of get the feeling those sorts probably need to attend more live musical performances?Don't get me wrong, stage shows can be impressive too, but fundamentally, music should be heard and not seen and I appreciate situations where that is emphasized.I suspect probably some treat network outages similar to being at a dance club when the beat stops? It would probably behoove network engineers some deejay experience and back to back transitions to practice and find similarities and affinities and audience or user outrage and backlash to be more mindful? But my biases and lived experience are showing as a multi-disciplinarian. ;)Even when pouring tea: it's critical to keep the water flowing. A party faux pas is a situation where there's no boiling water when needed. It takes a good crew to keep everything flowing well.CC: @brouhaha@mastodon.social
(DIR) Post #B2Zfpwmz2KFW6L8YJE by teajaygrey@snac.bsd.cafe
2026-01-23T11:00:18Z
0 likes, 0 repeats
How did I not notice @soatok@furry.engineer's "Against XMPP+OMEMO" blog post (URL: https://soatok.blog/2024/08/04/against-xmppomemo/) until now?Years ago, I got banned from the BitlBee IRC channel, by some d00d who implemented OMEMO support into BitlBee after I was badmouthing it (OMEMO that is, not BitlBee).That kinda hurt.More because I was familiar with Wilmer (the original BitlBee creator/dev) to the point of hanging out in person before he handed off maintenance of the project to the d00der who banned me.Not to mention, I had been testing OTR [https://otr.cypherpunks.ca/] with BitlBee long before it was merged into the main tree. So it was certainly a familiar problem space (heck, it even took a bit of effort for me to pester Ian in person [via a proxy/friend] to get someone to actually get around to implementing the OTR fragmentation support written up in a paper, but not in code; and moreover: to make sure the fragmentation boundary could be set at a threshold lower than the minimum IRC message length). Once upon a time, I even was exploring using bitlbee-otr to try to OTR messages over twitter (though that seemed like a fools' errand, for other reasons then and these days would be an egads, what an awful idea why did I ever waste any time on that experiment).Too often I feel like a crazy person in the realm of things too few ever bother to pay attention to in the first place (if you can believe it, once upon a time, some decades ago, I was attempting to convince warez FTP topsite admins to use encryption, but they were more interested in speed of xfers than security, go figure; ironically some ftp daemons, even the warez lauded glftpd, offered SSL/TLS support for those who knew what they were doing despite lack of documentation), so it's nice to see at least someone with similar sentiments on occasion.
(DIR) Post #B2aI1sMb74GS6nuUnQ by teajaygrey@snac.bsd.cafe
2026-01-23T18:07:58Z
0 likes, 0 repeats
They did you a favor.Similar feels when IG flagged my account for spam.I barely ever used the thing aside from the occasional "😍" comment on some cute cosplayers' posts. That's spam? o.OI was implementing anti-spam systems, before IG or FB/Meta/etc. ever existed.Worse: once upon a time when my job title was IT Admin for iSEC Partners? FB/etc. were a client. They didn't even implement TLS until we helped them. What a mistake! Some former iSEC Partners/NCC Group folks went to work for them for a while, probably most notably: Alex Stamos, who was their CSO and even he quit after the Cambridge Analytica scandal. I don't know who is left there with whom I may have ever worked, but I don't miss it.I'm still confused/annoyed when it.sh from that realm loads.These days I have entries such as:127.0.0.1 threads.net::1 threads.netin my /etc/hosts file, but they're sneaky bastards and add extraneous domains such as threads.com so then I need to also more it.sh such as:127.0.0.1 threads.com::1 threads.comMark Zuckerberg, by default, would spam everyone in new users' contacts when they created FB accounts. That guy can choke on his own it.sh and I pity anyone getting paid in his blood money now.I guess, Reddit isn't as bad? They're still awful.I know it probably seems annoying, it is annoying. Similar feels to "kids get off my lawn" in my book.
(DIR) Post #B2aOETngLhD9PuyK1o by teajaygrey@snac.bsd.cafe
2026-01-23T19:17:26Z
0 likes, 0 repeats
While working as IT Admin for iSEC Partners (coincidentally, while dymaxion was also a coworker, though tbh I don't see eye to eye on the "all technical problems of sufficient scope or impact are actually political problems first" some insanely impactful off by one errors I don't think were political at all, just: errors in need of rectifying, them becoming politicized is overstating it. Admittedly, I agree with the sentiment, just not the reality), I had something similar to #2 occur with one of my users. It should be noted: this user had an MS in Computer Security.Standard operating procedure was to use FDE (e.g. BitLocker on Windows, OS X at the time didn't have FileVault 2 [as an aside: I was in the hotel room when h1kari created a 10x speed up to @rpw@chaos.social & ioerror's VileFault attack against the original FileVault via FPGA during 23c3 e.g. https://media.ccc.de/v/23C3-1642-en-unlocking_filevault#t=2222 [timestamp isn't quite precise, sort of around the 37 minute mark is when h1kari's stuff starts or here's a similar presentation on such research from Shmoocon 2007: https://youtu.be/3XSp8-jA29s?t=1017 which is a bit closer to the relevant research] and whatever FDE we did use was a total pain any time Apple shipped an OS update, and our Linux and BSD users were left in greener pastures with less annoying solutions, but I digress) and escrow keys to a USB stick which was handed off to IT and kept locked up in case it may be needed for recovery, rather than escrowing keys online. It still boggles my mind that BitLocker (and these days, Apple's FileVault 2) have key escrow "to the 'cloud'" or Active Directory as options, given how to me at least, that only increases an attack surface.Said user approached me asking for their recovery key, as they encountered some situation where BitLocker was throwing errors and laptop was unbootable [this happens insanely often, or at least did]. "No problem, here you go" (hands escrowed USB key to user, thinking my job is done.)Them (after going away for a while and coming back to my desk): "Umm: it's not working."Me: "Oh no! (scrambles to see if I have another key for said individual) Well, I don't have any other keys for you. I'm not sure what else to say?"I then got to hear a story of how said user was at a client site, and had encountered some issue, and ended up decrypting their drive, then re-encrypting it, but I guess they had overwritten the USB drive when they re-escrowed their key locally and never got around to re-escrowing their new BitLocker key to IT.In retrospect, this was probably an opportunity for me to purchase software from ElcomSoft and expense it on the corporate credit card and cross fingers and hope maybe we could crack it. Or otherwise image the drive and see if we couldn't come up with some other novel technique and present our findings at some future conference.But the user kind of needed things faster than any of that, and alas, should have known better than to expect IT to be able to pull a rabbit out of my hat when they failed to follow the standard operating procedure and never got around to re-escrowing their new keys to IT. ;("Crypto shredding" as you phrase it is becoming more prevalent, particularly in an era where more and more vendors are soldering NAND flash to motherboards (dear Apple, you greedy jerks: stop doing this! Thankfully dosdude1 and others have workarounds, but it is so wasteful. I can understand needing to specify RAM at time of purchase due to "unified memory" performance improvements, but the SSDs are on a completely different bus and making them hardwired is a cost cutting move, nothing else. Thankfully some newer Apple hardware [e.g. Mac Studios and Mac Minis] stopped being as stupid I guess.) In theory, it is certainly better than using Gutmann methods for securely wiping drives (and Gutmann's method hasn't been accurate in a very long time anyway) but I, and others, have my doubts and at least at iSEC Partners, physically shredding old drives was also standard operating procedure.There are, OFC, other perilous things you've written about Session (twice!) and its removal of PFS (Perfect Forward Secrecy) was damning enough, but they also have some sort of "recovery key" implying that users' (presumably, encrypted I guess) message history is stored forever in the "cloud". What could possibly go wrong? 🙄
(DIR) Post #B2aoYC8sJDELFcwjQG by teajaygrey@snac.bsd.cafe
2026-01-24T00:12:31Z
0 likes, 0 repeats
lmao. I am from California. I might be into that. ;) I have absolutely no interest in Greenland though, so what do I know?
(DIR) Post #B2cmQ6VHZtSBr2MSjQ by teajaygrey@snac.bsd.cafe
2026-01-24T22:58:02Z
0 likes, 0 repeats
Message de-duplication is a really hard problem, that Citadel BBSes solved with "anti-vortexing" networking decades ago, and basically no one else ever figured out, at all. ;(CC: @mattblaze@federate.social
(DIR) Post #B2htCoMJ7FhQbM7L4i by teajaygrey@snac.bsd.cafe
2026-01-27T09:53:08Z
1 likes, 0 repeats
Relatable, admittedly, just imagine how the Chumash and Ohlone felt with the Conquistadors centuries ago?IMHO, this land is cursed until all the colonialists leave.No doubt, it just keeps getting worse: e.g. 49ers/Gold rush, 1906 quake, etc.From the time I have been incarnated as a human in this locale, the perceptible downfall after the 1989 Loma Prieta quake? It has never recovered, only continued to get worse and worse.I miss the coyotes.When the orchards were replaced with mercenary industrial complex profiteering fixated "tech" companies? That was the beginning of the end. 1987's Innerspace is perhaps the last glimpse (on film) of this locale before its continued decline.But, there's hope! At least, according to Vedic scriptures. We've got to wait until 428,899 CE for things to get better though; until then? It's prophesied to get worse and worse.CC: @midendian@mastodon.social