Posts by udunadan@ioc.exchange
(DIR) Post #AIyceTOL5j4vhORmFM by udunadan@ioc.exchange
2022-04-30T13:52:21Z
0 likes, 0 repeats
"You discover that you are wrong," security research efforts said. "Like, all the time, but then, suddenly, what seemed impossible to understand gets completely obvious."
(DIR) Post #AIyciW0xHWVszYR996 by udunadan@ioc.exchange
2022-04-30T13:52:55Z
0 likes, 0 repeats
So, no edit button here too or am I becoming UI-stupid?
(DIR) Post #AIyclQNWgzWMNgNiJk by udunadan@ioc.exchange
2022-04-30T13:57:34Z
0 likes, 0 repeats
@seb thanks!
(DIR) Post #AIyt45Gh0D7lg46Xh2 by udunadan@ioc.exchange
2022-04-30T16:57:46Z
0 likes, 0 repeats
The amount of papers I've been critical of at first and forgot to check on them later due to delays in source code publishing to verify the claims made is staggering.
(DIR) Post #AIyuyHOXCfZBSS8HIW by udunadan@ioc.exchange
2022-04-30T17:21:35Z
0 likes, 0 repeats
@seb cs.CR (cybersecurity)
(DIR) Post #AIyx37ACryR35Crcye by udunadan@ioc.exchange
2022-04-30T17:29:01Z
0 likes, 0 repeats
@seb but actually, a lot of intersections were present, ML most of all: it's always interesting to evaluate the claims of its applications to security problems and often the source/data materials are to be disclosed later and sometimes they do not publish stuff at all.
(DIR) Post #AIyxKDkLeDB8QFvSTY by udunadan@ioc.exchange
2022-04-30T17:47:58Z
0 likes, 0 repeats
@seb I think that the computational spaces where the output function is binary (simply speaking, we need to answer "yes" or "no", like with malicious behavioral analysis) ML fits nicely and even if it works bad now, it will become better in future. But attempts to plug it into every possible usecase are not very promising.Still, we shouldn't pre-assume stuff and we better evaluate it scientifically. For that, we need research transparency & standards to be held.
(DIR) Post #AJ0j9DRTQeydFbsLHE by udunadan@ioc.exchange
2022-05-01T09:43:17Z
0 likes, 0 repeats
So what's ClamAV status in 2022? Is it still mostly used in mailservers domain? Is it on par with commercial AV (disregarding the question if AV is needed in general)?Never have I heard anything like "bypassing ClamAV" from Linux pentester folks, but maybe my experience is shallow.
(DIR) Post #APJnpQ4JTEwA1ZgaDA by udunadan@ioc.exchange
2022-11-06T06:22:40Z
0 likes, 0 repeats
@seb @matthew_d_green @galaxis ioc.exchange is blocked by Quad9 DNS resolver but not with Cloudflare.
(DIR) Post #APVBjargSqxMgYtMdE by udunadan@ioc.exchange
2022-11-11T18:12:44Z
0 likes, 0 repeats
@seb now let's see Paul Allen's Mastodon instance
(DIR) Post #APeVp1WOWurQJURLKi by udunadan@ioc.exchange
2022-11-15T18:00:30Z
0 likes, 0 repeats
@seb am I correct that ioc.exchange is still running vulnerable version of Mastodon?
(DIR) Post #APeVp1z6o9pTkXsH5c by udunadan@ioc.exchange
2022-11-15T18:02:54Z
0 likes, 0 repeats
@seb seems like core Mastodon not affected but am curious anyway
(DIR) Post #APeXllWZkZ3Vjs6Bvs by udunadan@ioc.exchange
2022-11-16T06:32:08Z
0 likes, 0 repeats
@seb thank you!
(DIR) Post #AQhrlRGxdbm2D88pns by udunadan@ioc.exchange
2022-12-16T14:11:47Z
1 likes, 0 repeats
TOR is the best anonymity network available to anyone without special operational measures, but it's design is broken beyond repair.Re: https://twitter.com/jack/status/1603536131311763456