npub1syue...3cq9 6 months ago

Do I know anyone who knows anyone at cloudflare? Can you tell them to fix their documentation about email smtp/submission ports? It's outdated (see RFC 8314) and still recommends the less secure 587+starttls, and it's the most prominent google result... https://www.cloudflare.com/learning/email-security/smtp-port-25-587/

npub1syue...3cq9 7 months ago

In case anyone here has connections with the Python team: can you please tell them to update their docs on XML security? The way it is is quite misleading, and it's been annoying me for a while. I raised this a while ago in their issue tracker, but it got no reaction whatsoever.

GitHub

Reconsider XML Security warnings / obsolete vulnerabilities · Issue #127502 · python/cpython

Documentation The documentation for the xml.etree.ElementTree API contains the following stark warning: Warning: The xml.etree.ElementTree module i...

🧵

npub1syue...3cq9 8 months ago

This is a gruelling summary of all the things wrong with OpenSSL

HAProxy Technologies

The State of SSL Stacks

The SSL landscape has shifted dramatically. In this paper, we examine OpenSSL 3.x, BoringSSL, LibreSSL, WolfSSL, and AWS-LC with HAProxy.

I've mostly watched this whole thing from the sidelines, but was also affected noting that private key parsing suddenly became 70 times slower. I think they've now improved it to "only" be 10-20 times slower, and there does not seem any effort to work on it any more.

npub1syue...3cq9 8 months ago

Is there a way to configure the Linux kernel or a tool that puts a laptop into a "no-fan" mode? Like, if it gets too hot, reduce the CPU frequency. It's definitely possible to run my laptop without the CPU fan, by reducing the cpufreq scaling_max_freq enough for all cores. But what I'd want is "you're allowed to go to whatever freq you still can do safely without running the fan, but auto-reduce if it gets too hot, never use the fan".

npub1syue...3cq9 9 months ago

#toxic stuff: Recently, my shaver broke, and for situations like this, I had an older electric shaver in a box. Which... also didn't work any more, so that didn't help. But curiously, I noted that the older shaver still had a Nickel Cadmium battery. Which is... one of the many toxic things we used to have around us, and we no longer have. and I think this is an underappreciated fact and a success of reasonable regulation. 🧵