Bruno Vernay

"There is no security on this earth, there is only opportunity."

2017-11-13

October summary - 2017-10

10 October

Science

Looks like the p-value has been under fire for years. https://www.nature.com/news/one-size-fits-all-threshold-for-p-values-under-fire-1.22625

Dev

Paradigm shift always. I like those posts, going against the mainstream, questioning the obvious:
http://www.SmashCompany.com/technology/why-would-anyone-choose-docker-over-fat-binaries
Developer empowerment? or business alignment? I guess the point is: development is not something that you can externalize: http://redmonk.com/sogrady/2017/10/20/new-kingmakers-then-now/
Foreword to Building Evolutionary Architectures https://MartinFowler.com/articles/evo-arch-forward.html
Architecture again: https://www.alexhudson.com/2017/10/14/software-architecture-failing/
And again (kind of) Coder hero https://medium.freecodecamp.org/we-fired-our-top-talent-best-decision-we-ever-made-4c0a99728fde
HTML5 game framework (funny) https://phaser.io/

Security

Government
- "government crypto certifications are largely worthless" https://blog.cryptographyengineering.com/2017/10/23/attack-of-the-week-duhk/
- An IoT security rating is not that simple http://www.innovationaus.com/2017/10/Security-ratings-for-IoT-devices
Carrier Grade NAT (CGN). The tracking of IP addresses for law enforcement is still relevant despite Tor, VPN,Spoofing ... https://www.europol.europa.eu/newsroom/news/are-you-sharing-same-ip-address-criminal-law-enforcement-call-for-end-of-carrier-grade-nat-cgn-to-increase-accountability-online
IEEE lack of openness at the root of KRAK (WPA2 vulnerability) https://blog.cryptographyengineering.com/2017/10/16/falling-through-the-kracks/
Dynamic Users with systemd http://0pointer.net/blog/dynamic-users-with-systemd.html
Banks hijacking communication networks in 1790 https://www.1843magazine.com/technology/rewind/the-crooked-timber-of-humanity
Multiple RCE in DNSmasq: https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html
DKIM, SPF, DMARC complexity: http://noxxi.de/research/breaking-dkim-on-purpose-and-by-chance.html
Remediant has a really good solution to password vault: they open access for a limited time only: https://risky.biz/snakeoilers2pt2/https://www.remediant.com/

at 20:04

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

Labels: Diary

No comments:

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

2023 summary

Life is bigger than what you can imagine. Still using Roam http://www.roamresearch.com/ to take notes Still using Mastodon mainly, but ...

Requirements Engineering

I know I should read all those methods more in details. I found this in the Poll Best Requirement Survey by Xebia. So what is a requirement...
2 books about Scala

http://programmingscala.com/ by Dean Wampler & Alex Payne September, 2009. http://www.pragprog.com/titles/vsscala/programming-scala b...
Identity and Authentification

Where it is going ?? Various organisation are working on the problem and its solutions. They produce specification draft, Use case studies, ...

Pages

Integrating TLS in constrained devices (IoT)

Labels

agile
book
Browser
career
development
Diary
DIY
Documentation
FreeNX
Grenoble
Java
Linux
mobile
news
podcast
project
RDF
remote X
RIA
Security
semantic web
social
Sport
ToFollow
URI
W3C
X

About Me

Bruno

View my complete profile

Blog Archive

Report Abuse

What really matters to me

Search This Blog

Simple theme. Powered by Blogger.