DigiCert recently was forced to invalidate something like 50,000 of their DNS-challenge based certs because of a bug in their system, and they gave companies like mine only 24 hours to renew them before invalidating the old ones…

My employer had an EV cert for years on our primary domain. The C-suites, etc. thought it was important. Then one of our engineers who focuses on SEO demonstrated how the EV cert slowed down page loads enough that search engines like Google might take notice. Apparently EV certs trigger an additional lookup by the browser to confirm the extended validity.

Once the powers-that-be understood that the EV cert wasn’t offering any additional usefulness, and might be impacting our SEO performance (however small) they had us get rid of it and use a good old OV cert instead.

Back in the 90’s before the days of Windows 3.0 I had to debug a memory manager written by a brilliant but somewhat odd guy. Among other thing I stumbled across:

• A temporary variable called “handy” because it was useful in a number of situations.
• Another one called son_of_handy, used in conjunction with handy.
• Blocks of memory were referred to as cookies.
• Cookies had a flag called shit_cookie_corrupt that would get set if the block of memory was suspected of being corrupt.
• Each time a cookie was found to be corrupt then the function OhShit() was called.
• If too many cookies were corrupt then the function OhShitOhShitOhShit() was called, which would terminate everything.

If you have ssh open to the world then it’s better to disable root logins entirely and also disable passwords, relying on ssh keys instead.

Port 22 is the default SSH port and it receives a TON of malicious traffic any time it’s open to the whole internet. 20 years ago I saw a newly installed server with a weak root password get infected by an IP address in China less than an hour after being connected to the open internet.

With all the bots out there these days it would probably take a lot less time if we ran the same experiment again.

Back in the ‘80’s I had a high school English teacher that had us read his Night Shift short stories. The entire class loved it.

Depends on the content. My employers sites are a good mix of images, static, and dynamic content, and we rely heavily on Akamai. Their caching of our images offloads a huge amount of work from our origins. We also use their Image Manager tool to optimize a lot of the images seamlessly, which adds further optimization. Their WAF and other security tools are also very impressive.

Well OPSEC is the stated cause. Who knows how the person was initially identified and tracked. For all we know he was quickly identified through some sort of Tor backdoor that the feds have figured out, but they used that to watch for an unrelated OPSEC mistake they could take advantage of. That way the Tor backdoor remains protected.

Exactly. Tor was originally created so that people in repressive countries could access otherwise blocked content in a way it couldn’t be easily traced back to them.

It wasn’t designed to protect the illegal activities of people in first world countries that have teams of computer forensics experts at dozens of law enforcement agencies that have demonstrated experience in tracking down users of services like Tor, bitcoin, etc.

She talks about it in this video.

I wonder if Ukraine expects that, and feeds Trump misinformation to trick Putin?

Prior to the war Ukraine was the world’s 4th largest military arms exporter. They just stopped exporting and turned all their R&D on defending themselves instead.

https://en.wikipedia.org/wiki/Defense_industry_of_Ukraine

https://en.m.wikipedia.org/wiki/Defense_industry_of_Ukraine

In 2012, Ukraine’s export-oriented arms industry had reached the status of world’s 4th largest arms exporter.[1]Since the start of the war in Donbas, Ukraine’s military industry has focused more on its internal arms market and as a result slipped to the 9th spot among top global arms exporters by 2015,[2]11th spot by 2018,[3] and the 12th spot among global arms exporters by 2019.

Sooner or later Ukraine will start manufacturing their own such weapons. They have demonstrated time and again that they the ability to be creative and do what the world never expected of them.

Holding them back at this point is just prolonging the war.

Not to worry. I’m sure the Boeing executives golden parachutes will save them.

Smarter bots know how to easily avoid being detected based on the speed of their requests by simply adding a random delay to them. A few years ago we discovered a very slow speed credential stuffing attack (testing usernames & passwords) against my employers site. It was only testing one set of credentials every couple of minutes.

Once we discovered it we didn’t block it though. We were able to spot the attack fairly easily once we knew what to look for, so we updated our system to always return a login failure no matter what credentials they sent.

deleted by creator

As somebody who has spent decades on boats I find this news particularly interesting because of the apparent suddenness and violence of the storm. I’m used to hurricanes that take days or weeks to form and move into the area, not waterspouts powerful enough to capsize a 180 foot long, 400+ gross ton super yacht with virtually no warning… It’s virtually unheard of.

There’s security camera footage that shows the yacht anchored in relatively calm water. Within about 3 minutes it turns into an incredibly violent storm. Most of the yacht is obscured by the storm but you can still see the mast light through most of it. Then suddenly the mast light is no longer there…

Certainly nowhere near 16 minutes.

I wonder how effective AC would be in many cases… I regularly see delivery vans from Amazon, UPS, USPS, etc. driving around with their doors open. In some cases it seems to be all about speeding up deliveries even by a few seconds, especially for Amazon drivers.

I suppose if they took breaks they could close up the truck and cool down, but that assumes they would have time for it…