Posted about it yesterday already. But it looks like archive.today shows the default page of #Apache #webserver on #Ubuntu. The alternative domain name archive.is instead redirects with a 301 - Moved Permanently to a new domain krola.org, a website apparently comparing pet rabbit species?? It's also interesting, that the redirect to the new domain responds with an #HTTP header server: nginx/1.18 (Ubuntu). Apparently, the default Apache landing page also returns the same HTTP header information on the server. Perhaps the landing page is a decoy/deflection?

Anyone on #infosecexchange has any speculations on the website?

#InternetArchive #ArchiveOrg #ArchiveToday #InfoSec #AskFedi #AskMastodon #AskMastodonMondays #AskInfosec

Is it just me or is every demo/overview of the #FlipperZero extremely unimpressive (especially those for a mainstream audience).

I regretfully watched one such video earlier and one of the features highlighted was the ability to copy TV remote signals :blobcatgoogly2: ...I get it was aimed at a non-technical audience but I literally had a watch that could do that when I was a kid and to this day grandparents around the world have universal remotes with this capability...

So I want to put it out there to the #infosec community - where are the cool flipper zero #projects? And I don't mean installing #DOOM or some other quirky play thing. I want to see legit #RF #hacking, or at least using the #GPIO!
#askfedi #askinfosec #rfhacking #pentesttools #hackingtools

Does anyone know how booting Linux in FIPS mode gains any use or security from the `.vmlinuz.hmac` file? The interweb has no info at all.

It's a basic SHA of the vmlinuz file, but it has no way to verify authenticity or integrity of the hash, and is distributed with the thing it supposedly verifies. How does that have any purpose?

#cybersecurity #security #infosec #InfosecCommunity #askInfosec

OK, so #AskFediSec seemed to win that particular round but many people offered up the suggestion #AskInfosec which I also really like, so here's a run-off. For the folks that liked the idea of having a *dedicated* hashtag for this kinda thing, what is your preference below?

I'll also note that some variations of #AskInfoSex were also floated and tbh could be quite popular 😉🤣.

#infosec #cybersecurity

@shellsharks Great idea! - As some others before me I'd prefer something like #AskInfoSec / #AskSec - you know, something like this

looking back on my personal challenge for 2023: #AskAppSec | A Tester's Journey: AskAppSec - Finding Closure https://www.lisihocke.com/2023/12/askappsec-finding-closure.html #AskInfoSec #AppSec #InfoSec

what do you do to practice your security skills? | A Tester's Journey: AskAppSec - Capturing Flags https://www.lisihocke.com/2023/11/askappsec-capturing-flags.html #AskAppSec #AskInfoSec #AppSec #InfoSec

what do you do to make keeping dependencies up to date work? | A Tester's Journey: AskAppSec - Dependency Updates https://www.lisihocke.com/2023/11/askappsec-dependency-updates.html #AskAppSec #AskInfoSec #AppSec #InfoSec

@gvwilson 👆 @wehackpurple and #AskInfoSec is a great community to turn to with these questions

#BSidesMunich23 was awesome as my first security conference - what are your recommendations for the next? | A Tester's Journey: AskAppSec - BSides Munich 2023 https://www.lisihocke.com/2023/10/askappsec-bsides-munich-2023.html #AskAppSec #AskInfoSec #AppSec #InfoSec #BSides @BSidesMunich

what makes security champions programs effective? | A Tester's Journey: AskAppSec - Security Champions https://www.lisihocke.com/2023/10/askappsec-security-champions.html #AskAppSec #AskInfoSec #AppSec #InfoSec

what's your approach to move towards painless, usable security? | A Tester's Journey: AskAppSec - Painless Usable Security https://www.lisihocke.com/2023/10/askappsec-painless-usable-security.html #AskAppSec #AskInfoSec #AppSec #InfoSec #usability #ux

I've received feedback on my #AskAppSec question "should BFFs validate input?" - check out the updated blog post for community insights! 💡 https://www.lisihocke.com/2023/09/askappsec-input-validation.html #AskInfoSec #AppSec #InfoSec

should BFFs validate input? | AskAppSec - Input Validation https://www.lisihocke.com/2023/09/askappsec-input-validation.html #AskAppSec #AskInfoSec #AppSec #InfoSec

I'm eager to connect with more #security folks. Are there any online communities around #InfoSec, #AppSec, #DevSecOps you can recommend or heard others recommend? I've joined a few already, yet any pointers on good ones are much appreciated. 🙏🏻 #AskInfoSec #AskAppSec