Forwarded from Rust 视界
New RFC : Add a
https://github.com/rust-lang/rfcs/pull/2893
😃
trustme keyword to define unsafe code blocks https://github.com/rust-lang/rfcs/pull/2893
😃
Forwarded from Hacker News
Zoom has a signed binary that runs any unsigned script (Score: 102+ in 3 hours)
Link: https://readhacker.news/s/4jxse
Comments: https://readhacker.news/c/4jxse
Link: https://readhacker.news/s/4jxse
Comments: https://readhacker.news/c/4jxse
Twitter
Dan Amodio
Worth noting that zoomAutenticationTool is a signed bin.. and you can use it as an auth trampoline for whatever script you want... https://t.co/s3aGq0oQco
Forwarded from Hacker News
1.1.1.1 for Families (🔥 Score: 103+ in 1 hour)
Link: https://readhacker.news/s/4jxSP
Comments: https://readhacker.news/c/4jxSP
Link: https://readhacker.news/s/4jxSP
Comments: https://readhacker.news/c/4jxSP
Forwarded from Hacker News
Ex-NSA hacker drops new zero-day doom for Zoom (🔥 Score: 116+ in 1 hour)
Link: https://readhacker.news/s/4jyc3
Comments: https://readhacker.news/c/4jyc3
Link: https://readhacker.news/s/4jyc3
Comments: https://readhacker.news/c/4jyc3
Forwarded from Hacker News
Zoom truncates passwords to 32 chars (🔥 Score: 103+ in 1 hour)
Link: https://readhacker.news/c/4jynL
I tried to reset my password to a random alphanumeric string, 64 characters in length.
Initially, my password only had lower case letters and numbers. Zoom refused to allow me to use this string because it didn’t have any upper case letters. I figured they were only trying to help so I changed the last alphabet to upper case. Same error. I then thought that maybe they were expecting more than one upper case letter so I changed a few more letters in the second half of my password to upper case. Still the same error.
Annoyed, I changed the first few alphabets to uppercase and this time zoom accepted the new password.
I don’t recall what made me notice this but it turns out that zoom only takes in the first 32 chars of the password which it presumably stores in some hashed form in their backend.
While 32 chars is plenty long for a password, I just wish they’d mentioned this limitation on their website.
Link: https://readhacker.news/c/4jynL
I tried to reset my password to a random alphanumeric string, 64 characters in length.
Initially, my password only had lower case letters and numbers. Zoom refused to allow me to use this string because it didn’t have any upper case letters. I figured they were only trying to help so I changed the last alphabet to upper case. Same error. I then thought that maybe they were expecting more than one upper case letter so I changed a few more letters in the second half of my password to upper case. Still the same error.
Annoyed, I changed the first few alphabets to uppercase and this time zoom accepted the new password.
I don’t recall what made me notice this but it turns out that zoom only takes in the first 32 chars of the password which it presumably stores in some hashed form in their backend.
While 32 chars is plenty long for a password, I just wish they’d mentioned this limitation on their website.
Forwarded from Hacker News
SpaceX bans Zoom over privacy concerns (🔥 Score: 116+ in 54 minutes)
Link: https://readhacker.news/s/4jzTF
Comments: https://readhacker.news/c/4jzTF
Link: https://readhacker.news/s/4jzTF
Comments: https://readhacker.news/c/4jzTF
Reuters
Elon Musk's SpaceX bans Zoom over privacy concerns -memo
(Reuters) - Elon Musk’s rocket company SpaceX has banned its employees from using video conferencing app Zoom, citing “significant privacy and security concerns,” according to a memo seen by Reuters, days after U.S. law enforcement warned users about the…
Forwarded from Hacker News
Maybe we shouldn’t use Zoom after all (Score: 107+ in 6 hours)
Link: https://readhacker.news/s/4jyX8
Comments: https://readhacker.news/c/4jyX8
Link: https://readhacker.news/s/4jyX8
Comments: https://readhacker.news/c/4jyX8
Forwarded from Hacker News
Swift on Mac OS 9 (Score: 103+ in 2 hours)
Link: https://readhacker.news/s/4jzXm
Comments: https://readhacker.news/c/4jzXm
Link: https://readhacker.news/s/4jzXm
Comments: https://readhacker.news/c/4jzXm
-dealloc
Swift on Mac OS 9
The OS I learned to program on meets the language I helped create.
Forwarded from Hacker News
What the Heck Is Pyproject.toml? (Score: 100+ in 1 day)
Link: https://readhacker.news/s/4jxsc
Comments: https://readhacker.news/c/4jxsc
Link: https://readhacker.news/s/4jxsc
Comments: https://readhacker.news/c/4jxsc
Tall, Snarky Canadian
What the heck is pyproject.toml?
Recently on Twitter there was a maintainer of a Python project who had a couple of bugs filed against their project due to builds failing (this particular project doesn't provide wheels, only sdists). Eventually it came out that the project was using a pyproject.toml…
Forwarded from Hacker News
Does your video call have End-to-End Encryption? Probably not (Score: 100+ in 3 hours)
Link: https://readhacker.news/s/4jABT
Comments: https://readhacker.news/c/4jABT
Link: https://readhacker.news/s/4jABT
Comments: https://readhacker.news/c/4jABT
webrtcHacks
Does your video call have End-to-End Encryption? Probably not.. - webrtcHacks
Despite some false claims, your video conferencing service does not support end-to-end encryption (e2ee). A new standard could change this for WebRTC