Miscellaneous Tech News

nadnerB

https://www.itnews.com.au/news/security-breach-strikes-parliaments-it-network-519035
Parliamentarians and their staff have been forced to reset passwords after an apparent malicious attack against the parliamentary computing network overnight.
 
In a statement, Parliament's presiding officers said it was one of a number of measures taken by the Department of Parliamentary Services to protected the network and its more than 4000 users.

mlnews

Messy office owners, rejoice: Skype now blurs the background to your video

No need to frantically tidy things up before making a call.

The background-blurring feature has already been rolled out to Microsoft's corporate communication client, Teams, and now it's in the consumer-oriented app. While bulletproof detection of the background requires a depth-sensing camera, the approach used in Skype (and Teams) uses machine learning-derived algorithms in order to work with any camera. The algorithms have been trained to detect human outlines, including the voluminous hair that some lucky people are blessed with as well as arms and hands. Presumably this means that it will properly detect even those arms and hands that appear dismembered, appearing from off the edge of the screen. Using blur is optional, and it can be enabled on a call-by-call basis.

scottalanmiller

@mlnews chances are it's just an excuse to blur everything, because Skype almost never works anyway.

black3dynamite

https://blog.linuxgrrl.com/2019/02/06/fedora-logo-redesign-update/

Danp

https://www.zdnet.com/article/carbonite-buys-webroot-for-618-million/

scottalanmiller

@Danp said in Miscellaneous Tech News:

https://www.zdnet.com/article/carbonite-buys-webroot-for-618-million/

Interesting.

wrx7m

@Danp That is interesting. I wonder if it will make them better or worse.

dbeato

https://www.zdnet.com/article/new-tls-encryption-busting-attack-also-impacts-the-newer-tls-1-3/

black3dynamite

Most recent update to Virtual Machine Manager on my Fedora computer comes with some UI changes and settings. The latest is 2.1.0

I noticed the changes while installing CentOS 7

Creating a new virtual machine
Instead of a drop-down, you will search for the operating system template.

The following changes to CentOS 7 template settings. I can only assume other templates settings has changed too.

The default chipset is now Q35
For CDROM, SATA is used instead of IDE
Virtual Network Interface device model options are e1000e and Virtio

Showing the IP address and an option enable or disable link state is new.
You will need to have qemu-guest-agent installed for the IP address to show up.

For video devices, your only have three options: QXL, Virtio, and VGA

USB controller model defaults to USB 3.

Sound Device model is now HDA (ICH9) instead of ICH6

Looks like there are more performance options for Virtual Disk.
I recall that cache mode and IO mode was only options available.

wrx7m

https://www.darkreading.com/vulnerabilities---threats/new-zombie-poodle-attack-bred-from-tls-flaw/d/d-id/1333815

So many vulnerabilities.

dafyre

@wrx7m said in Miscellaneous Tech News:

https://www.darkreading.com/vulnerabilities---threats/new-zombie-poodle-attack-bred-from-tls-flaw/d/d-id/1333815

So many vulnerabilities.

This is why if it is online, I assume anybody can read it, lol.

DustinB3403

Keyshot.com has let their SSL cert lapse apparently.

bnrstnr

@wrx7m said in Miscellaneous Tech News:

https://www.darkreading.com/vulnerabilities---threats/new-zombie-poodle-attack-bred-from-tls-flaw/d/d-id/1333815

So many vulnerabilities.

Loved this one:

dbeato

@DustinB3403 said in Miscellaneous Tech News:

Keyshot.com has let their SSL cert lapse apparently.

Let's Encrypt all things.

DustinB3403

@dbeato said in Miscellaneous Tech News:

Let's Encrypt all things.

Exactly. . . it doesn't cost anything and it meets all of the security standards that exist today. . . so why wouldn't one use it?!

mlnews

Bay Area: Join us 2/13 to discuss a new hope for tech activism

Leigh Honeywell will talk about tech workers challenging companies to be more ethical.

Over the past couple of years, we've seen a huge upsurge in activism within the technology community. From the walkouts at Google to labor organizing at Amazon, tech workers are starting to see a connection between their work and social issues. Engineer and entrepreneur Leigh Honeywell has been at the forefront of tech activism for many years, and at this month's Ars Technica Live on Wednesday, February 13, we'll be talking to her about activism in today's world and the politics of a life lived online.

DustinB3403

Speaking of LE why doesn't ML use LE for their CA?

@scottalanmiller @pchiodo

black3dynamite

@DustinB3403 said in Miscellaneous Tech News:

Speaking of LE why doesn't ML use LE for their CA?

@scottalanmiller @pchiodo

They are using Cloudflare DNS and HTTP Proxy (CDN). And using Cloudflare Universal SSL certs, not sure if they are using Full or Full (strict) or flexible.

scottalanmiller

@DustinB3403 said in Miscellaneous Tech News:

Speaking of LE why doesn't ML use LE for their CA?

@scottalanmiller @pchiodo

Using CloudFlare's cert.

dafyre

@scottalanmiller said in Miscellaneous Tech News:

@DustinB3403 said in Miscellaneous Tech News:

Speaking of LE why doesn't ML use LE for their CA?

@scottalanmiller @pchiodo

Using CloudFlare's cert.

How is traffic encrypted between CloudFlare and ML? Self-Signed (or LE) Cert on ML?