python, the official language of "well i could just use python"

Colossal blunder on my part this afternoon.
Pulled the drives from an areca raid array and
forgot what order they have to go back in
so now the array isn't recognized and RESCUE doesn't see it.
Has anyone documented the magic parameter sectors that describe this anywhere?

[RSS] Dell ControlVault, Lasso, GL.iNet vulnerabilities

https://blog.talosintelligence.com/dell-controlvault-lasso-gl-inet-vulnerabilities/

[RSS] Prepared Statements? Prepared to Be Vulnerable.

https://blog.mantrainfosec.com/blog/18/prepared-statements-prepared-to-be-vulnerable

#nodejs

When giving #infosec advice it's easy to forget that the average person probably only knows about Uniform Resource Locators and the Domain Name System.

And Public Key Infrastructure of course.

Github actions yeah but what about Github consequences

Kid: "Yeah, that computer must have been old, it even had a CD-drive!"

#fml

AdTech should hire the dev who implemented the tab mute button in #Firefox. This damn thing attracts my cursor like a rare-earth magnet!

https://kagi.com/search?q=firefox+disable+tab+mute&r=no_region&sh=sz8XiYwKHp4PD09ExTXGuw

Scovilles per pigeon

Really big scoop (I don't think @briankrebs knows how big yet) here - he's tracked down somebody who says they are Rey from Lapsus$.

I don't wanna say why yet as I don't have all the pieces of the jigsaw, but I imagine this is going to turn into a long thread over time.

https://krebsonsecurity.com/2025/11/meet-rey-the-admin-of-scattered-lapsus-hunters/

I just dug through a 9MB JSON to find a direct message I sent here, only to find the corresponding object link to be non-existent. Fortunately I had an accurate timestamp, that helped me dig up the message on the UI after about 5 minutes of constant scrolling.

All this because some genius thought that preventing me from searching my own stuff will prevent online harassment.

#Akkoma #Mastodon #search

The Correct Incantation

#webcomic #krita #miniFantasyTheater

VSCode doesn't know the powers I possess!

Using a Pixel with GrapheneOS that features Inactivity Reboot, MTE, and more? — You must be a drug dealer. 🚨

Using an iPhone 17, which now also ships with EMTE, Inactivity Reboot, SPTM, TXM, Conclaves, ...? — Oh, just the average Apple fangirl/boy who gets a new device every year due to camera improvements. ✅

GrapheneOS released some innovative mitigations prior to Apple. Yet, it needs Big Tech to apply such ideas and make phones more secure at scale.

https://www.golem.de/news/grapheneos-verlaesst-ovh-frankreich-ist-kein-sicheres-land-fuer-privacy-projekte-2511-202570.html

Abstract verbalizations about personal liberty, freedom of the press, and so on, will not be convincing in most parts of the world.

Has anyone ever heard of a phono jack connection detection that works in windows with headphones and a sound system, but only works in linux in the headphones?

This issue breaks my understanding of how phono detection works. How the operating system would have any way to distinguish between the two. And it sounds like some physical weirdness.

Anyone else seen anything like this? Please boost.

#Fedora #Linux #Foss #Audio #Sound

All human-authored art, regardless of quality, is vastly superior to soulless AI remixes.

Using AI art just sends a message that filling a space with *anything* is all that matters. How can you expect people to care about anything else you have to offer once they know that?

[RSS] BGGP6: REVIVING RDOFF PART 1

https://n0.lol/bggp6-rdoff/

Hello from Düsseldorf. I am at German OWASP day and you can follow along too. There’s a live stream on https://media.ccc.de/.
Full program at https://god.owasp.de/2025/

Talks are about all sorts of appsec things, from langsec over pdf to passkeys and so on. All talks will be recorded :)