Lots of GNU/Linux & security websites are talking about CVE 2023-50547 which lets remote code execution on practically all of GNU/Linux distros, and whoever is using `shim`.
In this video, first we will review the importance of the shim, then understand about the attack will step into the source code for a better understanding of how it happens and how RedHat mitigated it on the source level...
There is a fun command in vim called ":smile". Here I'm reading the source code to understand it and adding a new command to vim just for fun.
We will learn more about professional C programming, compiling software and ...
Testing gossip 0.10.0
How to Use BCrypt to Store Passwords Securely: A Guide to Hashing Best Practices
Plain text passwords are a big no-no. Hashed passwords are better, but not safe enough. Salted passwords are even better, but where do you store the salt? And what if faster computers can crack your hashing algorithm?
In this video, I will show you the ultimate solution to all these problems: bcrypt. It is an industry-proven method to store hashed passwords+salt+algo in one place.
Reading the tests of the vim project. It cool how they have many tests written in vim files.
My Snort account is malfunctioning. Hello good old lovely cute self-sovereign #Gossip :D
Back to the fedi; after two weeks of cycling in #Philippines.
Poof... at last managed to close a ticket which was open for 6 months.
It's a story about a functionality with lots of sub-tickets.
And great day to close this. I'm starting a 2 weeks holiday from tomorrow; cycling in Philippines.
And... I got it :)
View quoted note →Waiting for the Philippines visa; 3 weeks already. and have my plane tickets for the next Thursday. Tried to call and say what... today is a national holiday in Philippines.
p.s. travelling for a 14 days cycling trip.
Interesting read (and design) about the difference between men & women pockets on jeans:
Someone clever once said
Women were not allowed
Pockets
The Pudding
Women's Pockets are Inferior.
If you wear women's clothes, you already know this. But now we've got the data to show it.
Had to log my work-hours from Jul till now day by day in a web based tool. Did what any sane person will do; Sniffed the request & made a quick tool using curl, python & zsh shell.
Termux is a free and open source Terminal Emulator for Android. After installing it, you will get a terminal box where you can install required tools and use them just like you do on a Unix machine.
This tools lets you educate yourself about GNU/Linux and programming (C, Python, Rust, ...) in a *real* environment even if you do not have access to a PC. And even if you have a PC, this tool will give you access to a Linux terminal (and all the man pages, curl commands and ssh sessions) wherever you have your phone / tablet.
Fully free and open Linux Professional Certificate ( LPIC1, v.500, exam 101 & 102) course; including a booklet and 83 videos describing each section. This is what I was working on last year and now its finished. I hope you find this useful and will be super glad to hear your feedbacks.
lpic1book
101.1 Determine and configure hardware settings
Candidates should be able to determine and configure fundamental system hardware.
Because #Nostr Lacked Kramer #meme
I'm working on a bug for two days. Not finding the root cause. We schedule a reboot on a hardware device but it is not beign performed. Using TR198 protocol after a long chain of different processings on data. I'm 80% sure that code breaks somewhere but can not find it. adding more logging info on debug level.
Our product still uses Zope #bytheway . We have a new version of the product without Zope but the older one still uses it. Amazing tech behind it.
Was frustrated by a problem in our "program" for 3 days. No troubleshooting workek. Asked for a colleagues help and ... the problem was in nginx configs! #silly_me
Have finished my free LPIC1 booklet / videos. I believe content-wise its good but I'm not brave enough to share it with the world (say here or reddit). Have to do it today! I promise :D
