What is Hackers' Pub?

4. Government officials are subject to record retention laws that you are not. I wrote about this last night— there's already been a lawsuit filed over the "Houthi PC small group" because of this: bsky.app/profile/chri...

RE: https://bsky.app/profile/did:plc:2aebn3xk5t63net43eeepire/post/3llalazio6k2y

I mentioned above if you message on Signal, the logs could get subpeonaed. I didn't mention that Signal has a "disappearing messages" feature, which could prevent that. But the other party could screenshot or copy the messages before the disappear. If that's a problem, don't put it in the computer!

It seems like information was being shared with this group chat simply because it is cool and interesting, and shared with members of the executive who simply would find it cool to be in the loop. Moreover, it seems the Trump WH is doing this regularly. How many other "small group" chats are there?

The chat included operational details of a specific bombing run. It's unclear why, say, Steve Witkoff was on this chat. Or the two people from the Treasury department. Did *everyone* need *all* these details? Honestly, Goldberg had *more* reason to review this data, to the extent he's a journalist!

The US government has entire systems whereby sensitive data doesn't leave certain rooms, and is seen only by cleared people who are entered in an access log. If you send a message to *eighteen cell phones*, the information could be anywhere, be shown to anyone, or seen over a recipient's shoulder.

Continuing: 3. Certain kinds of government information should only be accessed at specific secure sites. A good demonstration of this is that one member of the Hegseth chat—Steve Witkoff—was at that point physically in Moscow, visiting the Kremlin. (The White House says he didn't bring his phone).

But that's *you*. As for the DOD— The fact Mike Walsh was *able* to CC Jeffery Goldberg *is* a sign of why Signal is inappropriate for the White House's use! In Signal's address book your personal and professional contacts are commingled; there are no data access controls on who can join a group.

Signal also made changes in February making it harder to get phished like this; the UI now follows up awhile after linking, to make sure you meant it. If you want to verify the linked devices on your Signal account are legitimate, go to "Settings" on your phone and then tap "Linked devices". (3/3)

The DOD believes that Russian agents are attempting to trick DOD staff into adding the hostile agents to the DOD staff's Signal accounts, so that all their messages get forwarded to them. That would be bad, actually! It's not an attack *on Signal*. It would work with other types of messengers. (2/3)

2. Even if the messenger & phone are secure, the user can be hacked. Encryption doesn't help if the recipient of the message voluntarily shows it to another person. Or semi-voluntarily, even: "under threat", or "under subpeona from a government" or "accidentally CCed Jeffery Goldberg like a goofus"

It's possible Hegseth and Rubio are only doing work on phones cleared by White House technical staff and thus as secure as they could be. However, there were many people in the chat, and it is known that at least one member on that chat (Jeffery Goldberg) was using an insecure personal phone.

1. Even if the messenger is secure, your phone can be hacked. Phone OSes, especially from Apple, are pretty secure. But if your adversary is a nation-state, they sometimes find OS-level vulnerabilities. Pete Hegseth and Marco Rubio should assume they will be targeted by a nation-states.

I want to talk about this Associated Press article: apnews.com/article/hegs... Specifically, this sentence. I don't like this sentence! The wording implies Signal has known vulnerabilities. That's untrue. I think more people should use Signal, & don't want reporting to discourage people from it.

If you're scooping up students off the street for writing op-eds, you're secret police, and should be treated accordingly.

테슬라가 6월에 시작된다고 다시 한 번 확인한 로보택시 서비스에 대해 여러가지 궁금증이 생깁니다.

- 6월 초일까 말일까?
- Safety Driver는 있을까 없을까?
- 유상일까 무료일까?
- 운행 대수는 어느 정도일까?
- 적은 대수라도 Cybercab이 포함될까?
- AI4 차량만 운행할까 HW3 차량도 운행할까?
- 서비스 지역은 오스틴 전체일까 일부일까?
- 오스틴을 약간 벗어난 목적지로도 운행할까?
- HD Map이나 Geofence 개념의 학습을 따로 했을까 아니면 특별히 안했을까?
- 라이다 논쟁을 종식시킬 수 있게 비전의 취약점이 있을 수 밖에 없는 엣지 케이스들을 AI 학습을 통해 극복했을까 아니면 회피하도록 학습됐을까?
- 3월 초에 오스틴에서 우버를 통해 서비스를 시작한 웨이모와의 비교 결과는 어떻게 나올까?

6월이 너무너무 기대됩니다. ^__^

RFC 9725: WebRTC-HTTP Ingestion Protocol (WHIP), S. Garcia Murillo, et al., https://www.rfc-editor.org/info/rfc9725 #RFC This document describes a simple HTTP-based protocol that will allow WebRTC-based ingestion of content into streaming services and/or Content Delivery Networks (CDNs). This document updates RFCs 8840 and 8842. This document is a product of the WebRTC Ingest Signaling over 1/2

일요일 택배 배송 – 바쁜 현대인을 위한 5분 판타지 – 브릿G
https://britg.kr/novel-group/novel-post/?np_id=536743&novel_post_id=208801

오늘의 이야기는 일요일 택배에 대한 이야기입니다. 비록 일요일은 아니지만요.

...하지만 어쩌면 일요일일지도 모르겠네요. 시간은 상대적이라고 하니까요.

このおっさんまた何か足してる

🎤 How do Mastodon moderators use server-level blocklists?
Hi! We’re Princeton🐯 researchers conducting a study on blocklist management and moderation in Mastodon. If you're a Mastodon moderator or administrator, we’d love to hear from you!
📌: A 45-60min Zoom interview to share your insights.
💰: Receive $15 (via Zelle only) for your time!
🌎: Moderators worldwide, 18+ and speak English.
👇: Interested? Sign up here:
https://qualtricsxmj6gxzpzdr.qualtrics.com/jfe/form/SV_eyuhxkLUtepBk9g

#MastoAdmin #Fediblock #fediadmin

「altタグ」と書くのは素人。/ Kaizen Platform、UX改善の技術基盤「KAIZEN ENGINE」をアップデート、タグを設置するだけでLPの高速化とアクセシビリティ向上が可能に https://kaizenplatform.co.jp/news/2025-0326-kaizenengine

My #Pixel 5a died recently. I reached in the drawer for my old Pixel 3a, and after setting it all up it died too. I had forgotten that I had fixed the screen but then it died soon after (bad fix?). So I reach deeper into the drawer and now I'm on my Nexus 5x. Blast from the past. Works but 🐢

My wife's 5a died last year, she got a 6a through the protection program, but it's a lemon. No battery life, SMS don't arrive unless she sends one. 💩

So Pixels are dead to us.

What to get now?

どうして…

ぬぇ

#마비모바 인셀한테 욕먹는다는거보고 좀 해보고 싶어짐

모바일겜 컴으로하게 둘다 내줬음좋겠다 노트북에 터치스크린 있는데 왜 모바겜 못하게 컴으론 안내주니

杉田水脈とかマージョリー・テイラー・グリーンって差別と差別ボスの後ろ盾のみで世渡りしてるクズ。

有料記事がプレゼントされました！3月27日 21:58まで全文お読みいただけます
中高生ら19人への性加害を認定　著名な海洋生物学者が教え子に：朝日新聞 https://digital.asahi.com/articles/AST3T4TR2T3TUTIL00HM.html?ptoken=01JQ98FZJ6RPFVTJ3PG2GPBYR8

この件は知らなかった。

25/3/27 날씨 이것저것 경북 곳곳으로 번진 산불은 어느새 남풍을 타고 북쪽으로 올라가며 강원 지역까지 확산되고 있습니다. 그 뿐만이 아닙니다. 전북 무주군에도 불이 발생했습니다. 전국적으로 사망자는 벌써 21명에 달할 정도로 급증했습니다. 한덕수 권한대행은 소방 동원령을 내렸다고 하지만, 현장에서는 있어서는 안될 이야기만 들려오고 있습니다. 화재 진압 현장에서는 대피 혼선이 발생하고, 통신이 단절되며, 재난문자 등이 발령되지 않고 있다고 합니다. 소방헬기는 노후로 인해 가동율도 낮고, 고령의 파일럿도 사고로 순직했습니다.

@stefanoStefano Marinelli @giacomoGiacomo Tesio licensing may indeed be an unexpectedly interesting topic for some technical folks too.

I work on highly regulated devices and more often than not I end up thinking “heck, this would be just a no-op if our thing was based on FreeBSD” instead of spending days entangled with formal and legal documentation.

Well, in another life perhaps!😅

📌 If you don't know me, Hi! I'm Eden. I'm a tech enthusiast from Poland who enjoys topics like Linux, Privacy & Security and do a little bit of coding. I also play video games. I primarily play Geometry Dash. My hardest is Cataclysm and I'm also a creator with 0 creator points :D (damn you robtop). I also enjoy games like Team Fortress 2, Old Minecraft, Balatro, Portal (series) & more.

I need more mutuals on here so feel free to follow if you're into these topics.

I made this meme to contribute to the public dialogue.

Estuve #Testing la app #TRIfA en #Android, pero mi expectativa/experiencia no fue positiva, ya que no me permitió importar mi cuenta.
Me sigo quedando con #aTox como alternativa. 🔒

https://f-droid.org/packages/ltd.evilcorp.atox

Por si se animan a probar o ya usan #tox, mi ID: 5E714443388043DB47CF2F9A1661EBACD9B449A59940DF7A5B6072DD47BE8467237E54AABF6A

Para darle mas movimiento a este mensajero instantáneo.

We are experiencing a power outage. Engineers are working on it now.

i made a updi cable for the tiny1616 that's on the back of this port cover pcb and then spent way too much time just doing sparkles

Debian 的 Live Image 可以重現構建了 (reproducible build)

在 Hacker News 上看到「Debian bookworm live images now reproducible (lwn.net)」，在 Debian 上的 Live Image 可以重現了構建了：「Debian bookworm live images now fully reproducible」。 Reproducible builds 可以證明 build 出來的東西沒有被「私下」加料，因為其他人也可以拿一樣的 source 編出同樣的 binary。 因為這是 OS 層的東西，算是 chain of trust 非常前端的一環，對於很在意安全性的人來說，這點讓 Debian 變成了可被稽核驗證的項目，而非單純相信原廠…

https://blog.gslin.org/archives/2025/03/27/12322/debian-%e7%9a%84-live-image-%e5%8f%af%e4%bb%a5%e9%87%8d%e7%8f%be%e6%a7%8b%e5%bb%ba%e4%ba%86-reproducible-build/

#builds #chain #debian #image #linux #live #reproducible #trust

納豆食べすぎて大豆アレルギーになっただんごなら知ってるよ←

やったねキラキラ金曜日 #とは

Deciding to leave Xitter is like deciding to remove the logo from an old Tesla, it's about removing Xitty brands from your name and belongings because they harm your reputation

we've never seen mystery levels like this

(100%) ■■■■■■■■■■

we don't really know how to say this, or how to say it in a way that doesn't feel like a personal attack on the very people we try to help...

VSCodeの一部拡張機能にファイルを暗号化して身代金を要求する悪意のある機能が仕込まれていたことが明らかに
https://gigazine.net/news/20250326-vscode-ransomware/

#gigazine

#TeamSpaces is currently beating #TeamTabs, but only barely.

via @nixCraftnixCraft 🐧

https://mastodon.social/@nixCraft/114218144555074935

メニューのイラストを描いた。
黒板初めてだったけどなんかパステル画みたいになって、これはこれでありかな。

スレッズのfediverse界隈のアップデートって盛り上がりの時期逃した感あるな。

で、日本の大学はやれないのか？それとも既にやってるのか？/ 仏大学などが米研究者を受け入れへ トランプ政権の予算削減で | NHK | トランプ大統領 https://www3.nhk.or.jp/news/html/20250327/k10014761191000.html

杉田水脈とかマージョリー・テイラー・グリーンって差別と差別ボスの後ろ盾のみで世渡りしてるクズ。