Deleted tweet detection is currently running at reduced
capacity due to changes to the Twitter API. Some tweets that have been
deleted by the tweet author may not be labeled as deleted in the PolitiTweet
interface.
Showing page 77 of 151.
Joanna Rutkowska @rootkovska
@BrendanEich @laparisa Been wondering why the "sync password" is not a default mode? (1/) @comzeradd — PolitiTweet.org
Joanna Rutkowska @rootkovska
The Service Provider (SP) code (in SGX attestation) is typically written by the same vendor that writes the enclave. Lots of possibilities:) — PolitiTweet.org
Joanna Rutkowska @rootkovska
A plausible way to implement that, BTW, is to have SP remotely exploit an "accidental" bug in SGX enclave code (whi… https://t.co/4LP3L1soRG — PolitiTweet.org
Joanna Rutkowska @rootkovska
@iamcorso IIUC they want to rowhammer *from* an (evil) enclave. @lavados @JethroGB @veorq
Joanna Rutkowska @rootkovska
@iamcorso The new quality here being: very hard to tell/proof the enclave is malware. 'cause black box. @lavados @JethroGB @veorq — PolitiTweet.org
Joanna Rutkowska @rootkovska
@iamcorso IIUC they want to rowhammer *from* an (evil) enclave. @lavados @JethroGB @veorq — PolitiTweet.org
Joanna Rutkowska @rootkovska
@halvarflake Which non-complex solution, do you think then, implements this desirable economic property? @dotMudge — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @lavados: @JethroGB @veorq @rootkovska @iamcorso and P+P is pretty similar to rowhammer. Soon we'll see rowhammering enclaves taking ove… — PolitiTweet.org
Joanna Rutkowska @rootkovska
IMHO the sooner Intel realizes this and stops silly attempts to lock down SGX (which will be bypassed away), the be… https://t.co/YuLK57CZHD — PolitiTweet.org
Joanna Rutkowska @rootkovska
Obviously, despite Intel's various pathetic attempts to keep "badness" out of SGX (e.g. LE-imposed whitelisting, IA… https://t.co/pWdD8q0uzW
Joanna Rutkowska @rootkovska
Obviously, despite Intel's various pathetic attempts to keep "badness" out of SGX (e.g. LE-imposed whitelisting, IA… https://t.co/pWdD8q0uzW — PolitiTweet.org
Daniel Gruss @lavados
@JethroGB @veorq @rootkovska @iamcorso "you can't do malicious things in sgx" - This paper is the first proof that you can, in practice.
Joanna Rutkowska @rootkovska
@dotMudge In an ideal world I agree, but in practice we are always under-resourced and need to make compromises. — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @JethroGB: @veorq @rootkovska @iamcorso Cool paper. Although again not really suprising given what we know of the architecture. 1/2 — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @veorq: "Malware Guard Extension: Using SGX to Conceal Cache Attacks" https://t.co/kDP9kBONNa /cc @rootkovska @iamcorso @JethroGB — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @veorq: afaiu this shows that, as expected, vulnerable software is still vulnerable software when SGX'd — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @veorq: "Software Grand Exposure: SGX Cache Attacks Are Practical" https://t.co/lZguxIzfzL /cc @rootkovska @iamcorso — PolitiTweet.org
Joanna Rutkowska @rootkovska
But, of course, above all: Uber seems to be a very sick place, not worth to sustain it with our money. Let's spend elsewhere, shall we? — PolitiTweet.org
Joanna Rutkowska @rootkovska
@matthew_d_green Poor HR... — PolitiTweet.org
Joanna Rutkowska @rootkovska
Another good point: how women were screwed, no matter whether (perceived as) sexually attractive or the contrary. Problems either way! — PolitiTweet.org
Joanna Rutkowska @rootkovska
@matthew_d_green You mean, they just follow the orders? — PolitiTweet.org
Joanna Rutkowska @rootkovska
Sadly, I've seen this all too often: successful women openly hostile to any other women trying to follow their path. Strikingly silly :( — PolitiTweet.org
Joanna Rutkowska @rootkovska
The story provides a few insights not explicitly discussed earlier. E.g. that most of the (discriminating) HR staff… https://t.co/8IKnPbtQxi — PolitiTweet.org
Joanna Rutkowska @rootkovska
Recommended read: “I am an Uber survivor.” by Amy Vertino: https://t.co/cwhKgwpUq5
Joanna Rutkowska @rootkovska
Recommended read: “I am an Uber survivor.” by Amy Vertino: https://t.co/cwhKgwpUq5 — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @bcrypt: any cool female-identified hackers looking for coliving space in SF? @colour and i are starting a warehouse living project, DM… — PolitiTweet.org
Joanna Rutkowska @rootkovska
But the Force is with us! ;) https://t.co/YMf8nXdz64 — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @micahflee: Are you a student that wants to get paid by @gsoc to hack on @QubesOS? Check out https://t.co/l4lX7pFkbV — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @dinodaizovi: Compiler-based mitigations take ~10 years from appearance in browser to being used by enough of the in-memory attack surfa… — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @dinodaizovi: It's easier to get layers of isolation right than exploitation mitigation, which requires more in-depth knowledge and hand… — PolitiTweet.org
Joanna Rutkowska @rootkovska
@nasko Ah, indeed. Although I think this doesn't work with the iOS Chrome App, or does it? @laparisa @brave — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @nasko: @rootkovska @laparisa @brave If you set a custom passphrase on Sync, it is encrypted entirely on the client. https://t.co/xxodCO… — PolitiTweet.org
Joanna Rutkowska @rootkovska
@evainfeld Congrats! Have you also kept the PL citizenship? — PolitiTweet.org
Joanna Rutkowska @rootkovska
@laparisa Any plans to introduce end-to-end encrypted sync? I hear @brave is already working on this for their browser... — PolitiTweet.org
