So a couple of years ago I bought some KK-SP3 (from ikonke). They are ‘wireless smart plugs’, and despite their pretty-sketch appearance, work. Its a tiny little white box that plus into your electrical outlet, and contains a relay and…
Don's Blog Technology run (almost) amuck
Month: January 2018
8-bit memories and covert exfiltration
When I was a kid my pride and joy was a TRS-80 Model III. It was used when it came to me, and I didn’t have floppy drives (although the cassette interface was fast). It spent a lot of its…
Data breaches: its the risk you don’t expect that gets you
Another day another data breach. (Have you checked yourself on https://haveibeenpwned.com/? I’m thinking of making “have i not been pwned” and the answer is NO). OK, we are getting inured to this by now. Yawn, change the password on that site,…
The power of (your) invisible hands: could we create a security and efficiency incentive that works?
I’m a big fan of “the invisible hand”, an economics concept coined by Adam Smith. The concept is that your individual selfish action can cause (good) social benefits elsewhere. An example would be putting a $0.05 tax on a plastic…
The WyzeCam / Xiaomi Fang
The Xiaomi XiaoFang. Its a cheap IP camera (~$20-$30) that delivers decent quality. Is it a candidate to be ‘improved’ with a bit of hacking? You betcha!. Spurred on by some external impetus, I acquired a WyzeCam. And of course,…
login | 
(RSS)|Create Account|Update email pref
In the lower right you might see a red bell / push notification indicator, click it to enable push notifications (or link below this box).
See the previous archives
(RSS)|Create Account|Update email pref In the lower right you might see a red bell / push notification indicator, click it to enable push notifications (or link below this box).
See the previous archives
- Jayme Snyder on Opening the hiring taps: first legit job ad is up!Congrats Don on this great milestone!
- Mustafa on Speedtest & BBR, consistencyHi Don, Need your help to improve our Speedtest server. Kindly get in touch.
- db on The LED bulb project: an autopsy on some failuresfree to good home. two $25 LED corn cob lights. Lightly used. Some bugs. May have missing led(s). Know a
- Jayme Snyder on The LED bulb project: an autopsy on some failuresI've fixed a number of dead LED back-lit TV's found on Kijiji and through friends. I guess it's so much
- db on Gitlab via the API: prepare a repo with automatic deploy keys and protected branches/tagsi don't really understand what you are asking? the `protect` means that it can't be read.
Jayme Snyder on Opening the hiring taps: first legit job ad is up!Congrats Don on this great milestone! 
Mustafa on Speedtest & BBR, consistencyHi Don, Need your help to improve our Speedtest server. Kindly get in touch. 
db on The LED bulb project: an autopsy on some failuresfree to good home. two $25 LED corn cob lights. Lightly used. Some bugs. May have missing led(s). Know a
- Keep your certificates young and fresh
- We are all-in on the TLS: the HSTS preload
- Git ransomware: beware the misdirection
- Covert Exfiltration, Cloud Native
- Moving into a new (cloud) neighbourhood? Check its reputation!
- Docker Hub Hack: Secure Your Supply Chain
- That’s the kind of password an idiot uses on luggage: cloud security
- The naked cloud: elasticsearch is stretch but doesn’t cover security
- Security of the upstream code, and, the importance of the egress firewall
- Static Application Security Testing (SAST) and Nodejs (with Gitlab CI)
Top