Shakedown Social

Jan Wildeboer 😷:krulorange:Le sigh. There must be a simpler way, but I cannot find it. Trying to get the SHA256 fingerprint of a x509 certificate as one long string without colons or something works with: `openssl x509 -in roots.pem -noout -fingerprint -sha256 | sed 's/://g' | sed 's/^.*=//' | awk '{print tolower($0)}'`UPDATE: This is what I now have in my .bashrc :)function certfp(){ openssl x509 -in "$1" -outform DER | sha256sum | cut -d' ' -f1 ; }<a href="https://social.wildeboer.net/tags/nerdtalk" class="mention hashtag" rel="nofollow noopener" target="_blank">#nerdtalk</a>

Jan Wildeboer 😷:krulorange:<a href="https://social.wildeboer.net/tags/NerdTalk" class="mention hashtag" rel="nofollow noopener" target="_blank">#NerdTalk</a> Wow. A multi-step, sophisticated way of spoofing emails that pass SPF, DKIM, DMARC. Hardcore."And most importantly, the key trick is that you can put anything you want in the App Name field in Google"Le sigh. That's where they put the email text. In the App Name field. Google can fix this by sanitising input better. <a href="https://easydmarc.com/blog/google-spoofed-via-dkim-replay-attack-a-technical-breakdown/" rel="nofollow noopener" translate="no" target="_blank">https://easydmarc.com/blog/google-spoofed-via-dkim-replay-attack-a-technical-breakdown/</a><a href="https://social.wildeboer.net/tags/Spam" class="mention hashtag" rel="nofollow noopener" target="_blank">#Spam</a> <a href="https://social.wildeboer.net/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#Phishing</a> <a href="https://social.wildeboer.net/tags/MailAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#MailAdmin</a>

Jan Wildeboer 😷:krulorange:People that want the newest and shiniest dev tools, even if merely beta, that will often end up being unmaintained after a few years, demand that the switch from X to Wayland (which was first released 2008) should not be rushed because it’s not ready for prime-time, in their opinion.<a href="https://social.wildeboer.net/tags/SarcasmButOnlyHalf" class="mention hashtag" rel="nofollow noopener" target="_blank">#SarcasmButOnlyHalf</a> <a href="https://social.wildeboer.net/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://social.wildeboer.net/tags/NerdTalk" class="mention hashtag" rel="nofollow noopener" target="_blank">#NerdTalk</a>

Jan Wildeboer 😷:krulorange:My current conspiracy theory: Now that <a href="https://social.wildeboer.net/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener" target="_blank">#letsencrypt</a> has more or less destroyed the market for domain certificates and people are more interested in using client/user certificate, Google throws the market a lifeline by removing clientAuth from acceptable certificates in the browser context with some vague "it's about security" arm waving. <a href="https://social.wildeboer.net/tags/NerdTalk" class="mention hashtag" rel="nofollow noopener" target="_blank">#NerdTalk</a>1/4

Shawn King<a href="https://mastodon.social/@gedeonm" class="u-url mention" rel="nofollow noopener" target="_blank">@gedeonm</a> Hey! We read your <a href="https://mastodon.social/tags/Nerdtalk" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nerdtalk</a>. Let us have the <a href="https://mastodon.social/tags/Sportsball" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sportsball</a> talk! :)

Recent searches

Search options

Administered by:

Server stats:

#nerdtalk