-
pabsYubikey security updates: yubico.com/support/security-advisories/ysa-2024-03
-
pabsit also applies to e-Passports, SIM cards and more: news.ycombinator.com/item?id=41438346
-
nicolas17"updates"?
-
nulldatasteering - probably not what you're thinking of but WordPress has a 100-year plan. wordpress.com/100-year
-
pabswell, I guess no updates (like is usual for proprietary firmware), but security issues
-
nicolas17the hardware doesn't allow for firmware updates by design
-
pabsyay!
-
» pabs looks at his keyboard and wonders when it last got an update
-
nicolas17also, people on hackernews had some pretty convincing arguments that: if you manage to steal a yubikey, instead of doing this complicated side-channel attack, it's far easier to replace it with a non-functional yubikey
-
nicolas17the owner will go "huh my yubikey stopped working" while you use the stolen one to login to all their accounts
-
nicolas17instead of stealing it, side-channel-ing the keys out of it, and putting it back
-
pabsright
-
nicolas17oh, for something completely different
-
nicolas17
-
nicolas17Apple Watch comms reverse-engineered
-
pabsnice
-
nicolas17they have some questionable crypto, as usual
-
nicolas17which doesn't matter because it's inside an IPSEC tunnel with proper crypto
-
hook54321might be able to do something similar to what's done with nail polish in this to protect against that mullvad.net/en/help/how-tamper-protect-laptop
-
hook54321if a yubikey ever stops working someone could compare the pictures of the nail polish to confirm it's the same yubikey
-
steeringnulldata: oooh, I might actually trust wordpress to fulfill that
-
steeringI'm glad my gpg keys are all still RSA :'D
-
pabshuh, X let me read x.com/detahq without logging in (JS-enabled, Firefox)
-
eggdropnitter: nitter.lucabased.xyz/detahq
-
DigitalDragonswere the tweets all really old? that's the behavior i've observed with profiles when logged out
-
nicolas17old and in seemingly random order?
-
JAAOrdered by number of likes?
-
DigitalDragonsit seemed like some kind of rougher "popularity" metric to me but I might be misremembering
-
OrIdow6That's what I recall being the case a few months ago, maybe they've changed it since