Deleted tweet detection is currently running at reduced
capacity due to changes to the Twitter API. Some tweets that have been
deleted by the tweet author may not be labeled as deleted in the PolitiTweet
interface.
Showing page 135 of 151.
Joanna Rutkowska @rootkovska
RT @QubesOS: Announcing Qubes Certified Laptops Program (w/ Purism Librem 13 being the first laptop we certify): https://t.co/X6e3SiTNwr — PolitiTweet.org
Joanna Rutkowska @rootkovska
A major step for offering pre-configured, customized for select audiences, "beautiful" defaults :) https://t.co/Ujhp8NP18e — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @QubesOS: Yesterday we've released rc1 for Qubes 3.1. It introduced management & pre-configuration infrastructure, UEFI and custom VM ke… — PolitiTweet.org
Joanna Rutkowska @rootkovska
Spotted parts of dead animals hanging in a restaurant at FRA airport. Strangely nobody seemed to be concerned... https://t.co/WeTNlBP5nD — PolitiTweet.org
Joanna Rutkowska @rootkovska
@matthew_d_green True. Unless we find ourselves w/o true general purpose computers. Sadly this might not be so distant: see iOS, Intel ME. — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @XenoKovah: @XenoKovah Of course...even hardware TPMs have firmware (e.g. allowing upgrade from 1.2 to 2.0), but you didn't hear it from… — PolitiTweet.org
Joanna Rutkowska @rootkovska
Looks like the Old Continent is now following the lead of the US in implementing the #SecurityTheater. Pathetic. https://t.co/kOSDzn59Ai — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @isislovecruft: My dear friend Lunar, a @debian/@torproject/@FSF developer, was harassed at French border: https://t.co/ss2c4vJpZ7 #repr… — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @subgraph: Join the Secure Desktops assembly at @CCC Congress 2015. @bleidl will be there to talk about and demonstrate SGOS: https://t.… — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @kennwhite: I continue to be impressed with the polish & UX of each new release of @QubesOS. Great work by @rootkovska and team. https:/… — PolitiTweet.org
Joanna Rutkowska @rootkovska
@AndreaBarisani Sure, but I think @i0n1c wanted a diode-like medium (hence DVD-R) @ioerror — PolitiTweet.org
Joanna Rutkowska @rootkovska
@monsterlemon True. Today :) @ioerror — PolitiTweet.org
Joanna Rutkowska @rootkovska
@talex5 Perhaps this could even be Dom0, although we would very carefully sanitize the strings... — PolitiTweet.org
Joanna Rutkowska @rootkovska
@VinylTiger Perhaps true. Assuming you can reliably nuke the device afterwards (remember it has flash memory inside) @ioerror — PolitiTweet.org
Joanna Rutkowska @rootkovska
@ioerror Point being: there are no simple (code complexity-wise) means of transferring data into an airgapped machine. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@talex5 Whichever the user selects, I guess? I have 10+ gpg-hosting VMs. I think they all could use one zenity displaying VM. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@ioerror How do you ensure it's clean state the first time you connect? (Vendor rootkit in the uC flash? Or backdoored during transist?) — PolitiTweet.org
Joanna Rutkowska @rootkovska
Reminder to those who think DVD-Rs are such a no-brainer for air-gap implementation: https://t.co/6eKZulbxZz — PolitiTweet.org
Joanna Rutkowska @rootkovska
@luvsqx Using CD-R requires you to plug a complex untrusted USB device (the CD-R drive), not v. wise! @i0n1c @AndreaBarisani — PolitiTweet.org
Joanna Rutkowska @rootkovska
@talex5 One idea: a simple qrexec service for zenity-like functionality? No need to implement GUI in Mirage then, enough for GPG service. — PolitiTweet.org
Joanna Rutkowska @rootkovska
One of the #MirageOS devs' working on @QubesOS integration (Mirage unikernels as Qubes VMs). Exciting! https://t.co/Ea2jSw5UP5 — PolitiTweet.org
Joanna Rutkowska @rootkovska
Plugging untrusted devices into your (monolithic) personal computer considered harmful ;) https://t.co/vBhBmGZV6Z — PolitiTweet.org
Joanna Rutkowska @rootkovska
@AndreaBarisani Better mitigation is to combine Qubes's USB sandboxing, qvm-block, and LUKS :) @i0n1c — PolitiTweet.org
Joanna Rutkowska @rootkovska
@AndreaBarisani You'd need to ensure the target kernel doesn't try to parse this device in any "intelligent" way, might be tricky... @i0n1c — PolitiTweet.org
Joanna Rutkowska @rootkovska
@i0n1c But beware you can still be owned by a malformed part table or fs meta, exploiting a kernel bug in dst machine. @AndreaBarisani — PolitiTweet.org
Joanna Rutkowska @rootkovska
@i0n1c (cont) While one could argue the uSD internal uC flash(?) might be reflashed, that would require a 2 stage attack. @AndreaBarisani — PolitiTweet.org
Joanna Rutkowska @rootkovska
@i0n1c USB Armory has no flash, only a uSD card, which you can verify/re-image on a trusted system. /cc @AndreaBarisani — PolitiTweet.org
Joanna Rutkowska @rootkovska
@stmanfr Have you seen this: https://t.co/4eicUHn6OI How does your work compare? /cc @Netzblockierer @ioerror — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @logancij16: Proud to announce the first confirmed speakers for the #logancij16! @ioerror, @rootkovska, @SMaurizi and many more: https:… — PolitiTweet.org
Joanna Rutkowska @rootkovska
@avsm @justincormack @talex5 How difficult would it be to have a GPG backend running in such a MirageOS unikernel? — PolitiTweet.org
