Deleted tweet detection is currently running at reduced
capacity due to changes to the Twitter API. Some tweets that have been
deleted by the tweet author may not be labeled as deleted in the PolitiTweet
interface.
Showing page 102 of 151.
Joanna Rutkowska @rootkovska
@paxteam Although, admittedly, we're having problems with PCI passthrough in Qubes 4 devel branch now, but this seem to be stack related... — PolitiTweet.org
Joanna Rutkowska @rootkovska
@paxteam I think they should actually run better in HVM mode, because no DMA memory fragmentation. — PolitiTweet.org
Joanna Rutkowska @rootkovska
/cc @subgraph — PolitiTweet.org
Joanna Rutkowska @rootkovska
@paxteam Ok, but Dom0 is cut-off from almost all external inputs (net, usb, etc), so not a problem, IMHO. — PolitiTweet.org
Joanna Rutkowska @rootkovska
This: https://t.co/sthMARQake — PolitiTweet.org
PaX Team @paxteam
@rootkovska in xen/hvm everything should work i think, only paravirt (dom0) is problematic for KERNEXEC/UDEREF.
Joanna Rutkowska @rootkovska
@travisgoodspeed @sergeybratus Very cool PHY injection trick, BTW! I wonder if this could be used on PCIe to bypass IOMMU? — PolitiTweet.org
Joanna Rutkowska @rootkovska
Fascinating talk about (offensive) security big picture, but not shying away from specific examples when needed. https://t.co/RMWobkUmC1 — PolitiTweet.org
Travis Goodspeed @travisgoodspeed
Watch this video of @sergeybratus singing and dancing, with long Russian stories and history of offensive research. https://t.co/yiHAxTLSB7
Joanna Rutkowska @rootkovska
@paxteam Do you have a list of things which might potentially break when one runs grsec/PaX kernel in a VT-x VM? SM{A,E}P? Smth else? — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @micahflee: I made a Debian Squeeze HVM with a grsecurity-patched kernel running in Qubes. I bet @subgraph will work, with the right Lin… — PolitiTweet.org
Joanna Rutkowska @rootkovska
@micahflee Do you use a processor with SLAT (Intel EPT)? /cc @@paxteam — PolitiTweet.org
Joanna Rutkowska @rootkovska
@paxteam I think you ignore the fact that some developers might create intentionally malicious programs, not just incidentally buggy. — PolitiTweet.org
Joanna Rutkowska @rootkovska
Computer security as seen from the perspective of a (talented) mid-age white man from western Europe. Very idealize… https://t.co/JjxlnvSC4K — PolitiTweet.org
halvarflake @halvarflake
I was asked "why do you work in security instead of something more lasting", and wrote a very long-winded reply: https://t.co/lWxrAD9AKN
Joanna Rutkowska @rootkovska
@paxteam Do you really think you can solve the "user can click anything" problem, while still offering general purpose computing? — PolitiTweet.org
Joanna Rutkowska @rootkovska
Totally unrealistic. Think: "do you want to install this program? Yes/No?" Security is more than memory corruption… https://t.co/j8nkXWyXvB — PolitiTweet.org
PaX Team @paxteam
@Snowden @subgraph @QubesOS the whole point of PaX is that you *can* click any OK button without getting owned. not there yet but close :).
Joanna Rutkowska @rootkovska
@toholdaquill My point: Qubes with its isolation & integration infrastructure is mostly agnostic to what runs in VMs. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@toholdaquill Maybe you'd like to use Debian, because you might not trust how subgraph verifies code? @bleidl @ecneladis @subgraph @QubesOS — PolitiTweet.org
Joanna Rutkowska @rootkovska
@bleidl But I have already discussed all this with you and your team several times already :/ @ecneladis @toholdaquill — PolitiTweet.org
Joanna Rutkowska @rootkovska
@bleidl Similar argument for AppVMs: grsec only protects against buggy apps, not intentionally malicious ones! @ecneladis @toholdaquill — PolitiTweet.org
Joanna Rutkowska @rootkovska
@bleidl Of course! Think e.g. attacks from malicious WiFi/NIC/USB cards/firmware. @ecneladis @toholdaquill — PolitiTweet.org
Joanna Rutkowska @rootkovska
Women in PL plan a global strike on Monday against tightening of the anti-abortion law. 13 reasons why to join: https://t.co/hNigIb9ERI — PolitiTweet.org
Joanna Rutkowska @rootkovska
An ROV constructed by my friend Bartek Grynda discovered the deepest underwater cave in the world! \o/ :)… https://t.co/kWY58zNIxM — PolitiTweet.org
Joanna Rutkowska @rootkovska
@bleidl @ecneladis @toholdaquill And as explained here [1], HVM is the new default for Qubes 4.x. [1] https://t.co/K6B9Ltk5Wa — PolitiTweet.org
Joanna Rutkowska @rootkovska
@bleidl @ecneladis @toholdaquill Why? As we already talked earlier this year, there should be no problem for using grsec in HVMs? — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @grittygrease: Axolotl and Proteus: copyrighted code and licensed cryptography. https://t.co/4GTO3wg6BF — PolitiTweet.org
Joanna Rutkowska @rootkovska
@atmin_ I doubt it, see: https://t.co/lz8X1IChjA https://t.co/zBQdvYKjHR — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @TheEconomist: Our quote of the day is from Holocaust survivor and author Elie Wiesel https://t.co/cQR5BqPeHM — PolitiTweet.org
Joanna Rutkowska @rootkovska
@hanno @joshbressers @mik235 @halvarflake Even if unzip was well maintained, I wouldn't trust such a program to parse untrusted input. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@halvarflake And why do you think unzip is so safe? — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @aionescu: Application Guard just got announced today (finally!) https://t.co/ZHyCI5AUES [RIP Bromium]. MSFT is back with embrace extend… — PolitiTweet.org
Joanna Rutkowska @rootkovska
If you want to help, take a look e.g. at this ticket (sadly no input from any of the subgraph devs): https://t.co/xXExa6qkCM — PolitiTweet.org
