Vincent Lynch

@vtlynch

Covering SSL/TLS industry news for

Boston
thesslstore.com/blog
ಏಪ್ರಿಲ್ 2007 ಸಮಯದಲ್ಲಿ ಸೇರಿದ್ದಾರೆ
503 ಫೋಟೋಗಳು ಅಥವಾ ವೀಡಿಯೋಗಳು ಫೋಟೋಗಳು ಮತ್ತು ವೀಡಿಯೋಗಳು

ಟ್ವೀಟ್‌ಗಳು

@vtlynch ತಡೆಹಿಡಿಯಲಾಗಿದೆ

ನೀವು ಖಚಿತವಾಗಿಯೂ ಈ ಟ್ವೀಟ್‌ಗಳನ್ನು ನೋಡಲು ಬಯಸುವಿರಾ? ಟ್ವೀಟ್‌ಗಳನ್ನು ನೋಡುವುದು @vtlynch ಅವರನ್ನು ತಡೆತೆರವುಗೊಳಿಸುವುದಿಲ್ಲ.

  1. Retweeted
    6 ಗಂಟೆಗಳ ಹಿಂದೆ

    Hello, my name is Tim. I'm a lead at Google with over 30 years coding experience and I need to look up how to get length of a python string.

    Hi ,my name is Lukas. I've been writing Objective-C code for nearly 8 years and I still have to google the objc block syntax
    48 replies 872 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 1,569ಇಷ್ಟಗಳು
  2. ಫೆಬ್ರ 24

    The "agile startup" / "serial entrepreneur" / "SV-funded" nonsense is so popular now that its become a template for spam accounts

    2 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 5ಇಷ್ಟಗಳು
  3. ಫೆಬ್ರ 24

    There is a pattern here and I think it is troubling

    7 replies 35 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 97ಇಷ್ಟಗಳು
  4. Retweeted
    ಫೆಬ್ರ 24

    🐡       🐡                         🐠       🐠         🌾🌱   🌾🌿

    29 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 38ಇಷ್ಟಗಳು
  5. Retweeted
    ಫೆಬ್ರ 24

    Who cares. I can do this. Try me

    1 reply 3 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 8ಇಷ್ಟಗಳು
  6. ಫೆಬ್ರ 24

    Are some of the details Tavis gave about CF's response strange? Absolutely. But let's not measure against perfection. Overall CF did amazing

    1 ಇಷ್ಟ
  7. ಫೆಬ್ರ 24

    If data was indeed sitting in Google cache results, how does publishing help anyone when bug is fixed and actively working towards clean up?

    1 reply 1 ಇಷ್ಟ
  8. ಫೆಬ್ರ 24

    Here is what I don't get about Cloudflare disclosure: If bug was fixed by Feb 18, why was the 7-day disclosure so important?

    2 replies
  9. ಫೆಬ್ರ 24

    ratholing: 1. hide money/goods, typically as part of fraud or deception 2.surreptitious or premature removal of chips during a poker game

  10. ಫೆಬ್ರ 24

    Sorry, I am an idiot and I find these endlessly entertaining

    [Mark and Helene talking simultaneously]
    3ಇಷ್ಟಗಳು
  11. Retweeted
    ಫೆಬ್ರ 24

    Somehow I also think if you run half of the Internet maybe your bug bounty should be more than a t-shirt.

    3 replies 26 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 61ಇಷ್ಟಗಳು
  12. Retweeted
    ಫೆಬ್ರ 23

    A court would not care that the SHA-1 digests were the same. The two documents, on their face are different.

    The lawyer in me just can't handle the "real-world" landlord/tenant contract SHA-1 collision example. A digital evidence ex. may be better?
    4 replies 3 ಮರುಟ್ವೀಟಿಸುವಿಕೆಗಳು 3ಇಷ್ಟಗಳು
  13. ಫೆಬ್ರ 24

    The darkest timeline

    ಈ ಟ್ವೀಟ್ ಲಭ್ಯವಿಲ್ಲ.
  14. Retweeted
    ಫೆಬ್ರ 23

    ., who works for Google's Project Zero and discovered the bug, was not impressed by Cloudflare's Bug Bounty program

    1 ಮರುಟ್ವೀಟಿಸುವಿಕೆ 3ಇಷ್ಟಗಳು
  15. Retweeted
    ಫೆಬ್ರ 23

    . points out that due to Cloudflare's size (more than 1 billion page loads a day), 1 per 3,000,000 is still A LOT of leaked data

    that's actually a lot, if this article of how much volume CF handles is correct.
    1 ಮರುಟ್ವೀಟಿಸುವಿಕೆ
  16. Retweeted
    ಫೆಬ್ರ 23

    The bug affected only 1 request per 3.3 million. Introduced on Feb 13th. To Cloudflare's credit, they were able to fix this very quickly.

    2 replies 1 ಮರುಟ್ವೀಟಿಸುವಿಕೆ
  17. Retweeted
    ಫೆಬ್ರ 23

    Leaked data included POST data and cookies. Search engines were crawling and caching. Cloudflare's incident report:

    1 reply 1 ಮರುಟ್ವೀಟಿಸುವಿಕೆ 1 ಇಷ್ಟ
  18. Retweeted
    ಫೆಬ್ರ 23

    Google researcher has found MAJOR bug in Cloudflare's software that led to leaking data. Not just metadata...message contents, etc.

    Cloudflare have been leaking customer HTTPS sessions for months. Uber, 1Password, FitBit, OKCupid, etc.
    1 reply 1 ಮರುಟ್ವೀಟಿಸುವಿಕೆ 1 ಇಷ್ಟ
  19. ಫೆಬ್ರ 23

    Researchers have found a SHA-1 collision, a major achievement. But its far from "breaking" the algo for most uses

  20. Vincent Lynch ಹಿಂಬಾಲಿಸಿದ್ದಾರೆ , ಮತ್ತು
    • @MachinePix

      Amazing feats of engineering. Tweeted by when he should be doing work at .

    • @thorsheim

      Founder of . Infosec speaker, advisor & researcher. CISA, CISM, CISSP, ISSAP. You can quote my tweets & DM me.

@vtlynch ಅವರು ಇನ್ನೂ ಟ್ವೀಟ್ ಮಾಡಿಲ್ಲ.

ಲೋಡಿಂಗ್ ಸಮಯ ಸ್ವಲ್ಪ ತೆಗೆದುಕೊಳ್ಳುತ್ತಿರುವಂತೆನಿಸುತ್ತದೆ.

Twitter ಸಾಮರ್ಥ್ಯ ಮೀರಿರಬಹುದು ಅಥವಾ ಕ್ಷಣಿಕವಾದ ತೊಂದರೆಯನ್ನು ಅನುಭವಿಸುತ್ತಿರಬಹುದು. ಮತ್ತೆ ಪ್ರಯತ್ನಿಸಿ ಅಥವಾ ಹೆಚ್ಚಿನ ಮಾಹಿತಿಗೆ Twitter ಸ್ಥಿತಿಗೆ ಭೇಟಿ ನೀಡಿ.

    ಇದನ್ನೂ ಸಹ ನೀವು ಇಷ್ಟಪಡಬಹುದು

    ·