@adulau yes this focus on certification is a real issue of our industry in many aspects... I was also surprised when I saw a NIS2 lead implementer certification and then I realized it was a real PECB certification scheme, all of this while I) the only available Implementing Regulation focus on the digital infrastructure sector/digital service providers and ii) the directive has been transposed in approx only half of the EU countries...

@bertrand to avoid any confusion I would suggest to rename API keys as API flowers or API candies otherwise I'm afraid you will have to repeat this again and again 😅

So, it turns out blockchains aren't just solutions looking for a problem after all: they're perfectly suited to address the banking industry's "Byzantine Managers Problem"!

https://amycastor.com/2023/12/09/societe-generales-useless-euro-stablecoin-when-bank-blockchain-units-go-feral/

By @amycastor and @davidgerard

CVS ditches useless cold meds—but not bogus homeopathic products

Bogus homeopathic products based on pseudoscience will remain on shelves.

https://arstechnica.com/health/2023/10/cvs-ditches-useless-cold-meds-but-not-bogus-homeopathic-products/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

My talk about usage of #ACME in private networks has finally been delivered on stage at @hack_lu 🚀

Due to Cooper hard work, video of the is already online: https://youtu.be/odUvmS5lDm4?feature=shared

Slides are available here: https://pretalx.com/hack-lu-2023/talk/Q9JHXM/

Thanks to #hacklu team for having me 🙏 and audience for their kind attention and feedback ❤️

Very interesting talk from @cbrocas at @hack_lu today, I believe MS own them money for trying to make ADCS sexy again by putting ACME proxy in front of it, love the idea!

@hack_lu talks recordings are also available on PeerTube 🤩 https://peertube.opencloud.lu/c/hack_lu2023/videos?s=1

We are developing vulnerability-lookup which is a rewrite of cve-search to support and improve various requirements which came during the past years:

• Improve the NVD NIST feeders to support the new API v2
• Allow multiple source of vulnerability feeds to be ingested even if there is no associated CVE id
• Support of GSD feeds (mainly where the Linux kernelvulnerabilities are described) and GitHub security vulnerabilities (more to come very soon)
• Easily find the overlaps or differences between vulnerabilities allocated
• A very fast API (we got rid of MongoDB and replaced it with kvrocks) to get the original vulnerability description from the different feeds

This is still pretty alpha but an initial release is coming in the next weeks.

If you want to contribute, test or have any ideas of additional feeds to add, let us know.

#opensource #threatintel #cvd #vulnerability #cve

🔗 https://github.com/cve-search/vulnerability-lookup

@ldelavaissiere haha ca fait bien longtemps que c'est fait (TOTP 😉)

@ericfreyss
Birdsite seems completely broken to me now. Can't see any tweet more recent than 44min ago.

Tit ! Tit ! TiiT !

I like this kind of Humor.

@ericfreyss
Je me suis posé la même question. Pour l'instant, il y a unanimité parmi les réponses :-)

@bertrand on a fait ça pour 6 filles début Septembre (8 ans également). Préparation de potions magiques, quidditch, création de baguettes magiques, etc. Je peux remercier mon épouse qui a bien géré le truc, c'était en effet sympa ;-) Enjoy!

@occirol Hello, you can check out Monarc https://www.monarc.lu/

I think it's a bit heavy/complex but it may satisfy your requirements.