https://nietaki.com/tags/security/Recent content in Security on almost doneHugo -- gohugo.ioenhello@nietaki.com (nietaki)hello@nietaki.com (nietaki)Sun, 01 Sep 2019 15:21:00 +0000https://nietaki.com/2019/09/01/trust-issues-code-beam-sto-talk/Sun, 01 Sep 2019 15:21:00 +0000hello@nietaki.com (nietaki)https://nietaki.com/2019/09/01/trust-issues-code-beam-sto-talk/<p>Earlier this year I gave a talk at <a href="https://codesync.global/conferences/code-beam-sto-2019/" target="_blank" rel="noreferrer">Code BEAM STO</a> about a proposed solution to the ever more real risk of hidden malicious code in our library dependencies. You can watch the whole thing here:</p> <iframe width="640" height="360" src="//www.youtube.com/embed/ejAY6yWXZSc" frameborder="0" allowfullscreen> </iframe> <p>UPDATE: I have since dropped active development of the Hoplon project, but I hope something like it will become reality when the tech community is ready for it :)</p>https://nietaki.com/2018/12/02/i-am-stealing-api-keys-from-your-site/Sun, 02 Dec 2018 18:00:00 +0000hello@nietaki.com (nietaki)https://nietaki.com/2018/12/02/i-am-stealing-api-keys-from-your-site/<p>Earlier this year I presented my latest project - Hoplon - at the London Elixir meetup. I&rsquo;m thinking of putting some more work into it over Christmas, so I figured I might gather the materials about it in one place:</p> <p><a href="https://github.com/nietaki/hoplon" target="_blank" rel="noreferrer">Hoplon</a> is an Elixir developer tool that helps you validate your dependencies contain no hidden malicious code. Motivated by horror stories from the JavaScript community such as <a href="https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5" target="_blank" rel="noreferrer">this hypothetical one</a> and <a href="https://github.com/dominictarr/event-stream/issues/116" target="_blank" rel="noreferrer">this very real one</a>.</p>https://nietaki.com/2011/10/04/laptop-monitoring-the-aftermath/Tue, 04 Oct 2011 12:00:00 +0000hello@nietaki.com (nietaki)https://nietaki.com/2011/10/04/laptop-monitoring-the-aftermath/<p>Some time ago <a href="https://nietaki.com/2011/04/24/defensive-photobooth/" >I described</a> a script you could use to see who’s using your laptop when you’re not around. I sadly (?) didn’t catch any robbers using it, but the whole setup already took nearly 4000 photos, some of which might be a little interesting:</p> <div class="width-patch"></div> <div id="gallery-584c1928aae5056de960eb6a6c3116d5" class="gallery"> <img src="https://nietaki.com/img/photobooth/photos/ss2011_04_14-10_13_37.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_04_14-12_38_21.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_05_17-15_17_40.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_02-11_57_07.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_02-11_58_41.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_02-12_31_30.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_04-12_49_09.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_04-12_52_16.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_04-21_29_49.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_11-10_16_46.jpg" class="grid-w33" /> <img src="https://nietaki.com/img/photobooth/photos/ss2011_08_11-10_55_37.jpg" class="grid-w33" /> </div> <p>I’ve got a series or two of one person sitting in front of the computer for quite some time and I could use it to create a timelapse similar to those I made using my <a href="http://www.youtube.com/watch?v=AlOeIpLpXkE" target="_blank" rel="noreferrer">crude blackberry app</a>, but on the other hand maybe I shouldn’t be picking on my friends…</p>https://nietaki.com/2011/04/24/defensive-photobooth/Sun, 24 Apr 2011 12:00:00 +0000hello@nietaki.com (nietaki)https://nietaki.com/2011/04/24/defensive-photobooth/<p>Some time ago, inspired by…</p> <iframe width="640" height="360" src="//www.youtube.com/embed/Jwpg-AwJ0Jc" frameborder="0" allowfullscreen> </iframe> <p>…also known as the “Do not fuck with a hacker’s machine” clip, and the fact I started using Debian exclusively on my netbook, I decided to make preparations in advance for a dire situation in which my laptop is stolen/captured by insurgents, and retrieve it easier or even play a prank on them. These were my postulates:</p>