After a few months of working on it on the side tlslookieloo 0.1.0 is finally out the door. I'm releasing it as an alpha version; because, I worked on it alone for the most part. Keane Wolter (@d43m0n3y3, LinkedIn) helped out by reviewing the documentation and smoke tested it on a different platform. Why build … Continue reading tlslookieloo 0.1.0 Released
I stumbled into this issue since one of my kid's teacher uses Remind. The issue is any pictures posted on Remind is publicly accessible from Cloudflare CDN. I have notified Remind's Security Team of the issue. Here is an example of a picture that my son's teacher posted to Remind that can be accessed by … Continue reading Remind Platform CDN misconfiguration
One of my favorite Christmas songs is the little drummer boy. Although there was no drummer boy recorded in the Bible I feel the story of the Little Drummer Boy summarizes what God expects of us all: to come to Him--warts and all--and be willing to be used by Him. The first two lines of … Continue reading Be the Little Drummer Boy
CVE-2018-144665 refers to "An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges." Here's the link to Matthew Hickey's tweet that shows the exploit. I'm not … Continue reading A Broader Issue Exposed by CVE-2018-14665
I found out that someone created an account on twitter using my email address. So, I decided to take over the account. For the longest time, I never saw the point of having a twitter account. I had one during twitter's early days. I'm talking back when you twitted by sending a text message, and … Continue reading Someone Used My Email for a Twitter Account
As I was boiling some macaroni the picture of the glowing heat coil after I've turned the knob to the off position, and slid the pot over got me thinking: have we as an industrialized society become overly cautious? Are we too concerned about the "one time that <insert fearful event here> might happen"? From … Continue reading Overly Cautious Much?
After a long hiatus, Home+Power is back. Here's a short FAQ of where things will go from here. So, what happened exactly? The short answer is I got tired of paying for a VPS and wanted to move the site somewhere else. However, finding that somewhere took longer than I expected. I moved to other blogging … Continue reading The Journey Continues