Bob Lord
@boblord.bsky.social
Cautiously pessimistic, esp. about cyber things.
The owls are not what they seem.
🗻🗻🦉🌲🪵 🍒🥧☕️🍩 🕵🏼♀️ 👍🏻
Also: 🔐🔑🔒
The owls are not what they seem.
🗻🗻🦉🌲🪵 🍒🥧☕️🍩 🕵🏼♀️ 👍🏻
Also: 🔐🔑🔒
That one is malware. It should look like the one I’m using. Or is it the other way around? 🤔
September 19, 2025 at 10:01 PM
That one is malware. It should look like the one I’m using. Or is it the other way around? 🤔
Once hacklore, now forgotten: why did we stop telling people to shut down their computers for safety?
medium.com/@boblord/the...
medium.com/@boblord/the...
June 19, 2025 at 8:55 PM
Once hacklore, now forgotten: why did we stop telling people to shut down their computers for safety?
medium.com/@boblord/the...
medium.com/@boblord/the...
"Create an image that summarizes what you know about me."
June 14, 2025 at 5:01 PM
"Create an image that summarizes what you know about me."
Starting today my Zotero web app has started showing PDFs in a tiny frame rather than expanding to fill the window. This only happens on my Chromebook, not MacOS Chrome. It must have regressed in the past couple of days.
Any ideas?
Any ideas?
March 8, 2025 at 1:18 AM
Starting today my Zotero web app has started showing PDFs in a tiny frame rather than expanding to fill the window. This only happens on my Chromebook, not MacOS Chrome. It must have regressed in the past couple of days.
Any ideas?
Any ideas?
Happy Twin Peaks Day to all who celebrate!
🗻🗻🦉🌲🪵 🍒🥧☕️🍩 🕵🏼♀️ 👍🏻
🗻🗻🦉🌲🪵 🍒🥧☕️🍩 🕵🏼♀️ 👍🏻
February 24, 2025 at 3:06 PM
Happy Twin Peaks Day to all who celebrate!
🗻🗻🦉🌲🪵 🍒🥧☕️🍩 🕵🏼♀️ 👍🏻
🗻🗻🦉🌲🪵 🍒🥧☕️🍩 🕵🏼♀️ 👍🏻
The default is "no security" with Chrome extensions, at least in my recent personal experience. There's no way the average person has the tools or background to assess this type of risk.
February 22, 2025 at 11:02 PM
The default is "no security" with Chrome extensions, at least in my recent personal experience. There's no way the average person has the tools or background to assess this type of risk.
We're in the consumer HTTPS endgame. We need to finish the job so I can be certain all my mobile traffic is protected.
Please join me in asking the OS and browser makers to keep pushing and to finish the job in 2025, perhaps by Halloween! 👻 🔐
https://buff.ly/41qPpUM
Please join me in asking the OS and browser makers to keep pushing and to finish the job in 2025, perhaps by Halloween! 👻 🔐
https://buff.ly/41qPpUM
February 21, 2025 at 6:01 PM
We're in the consumer HTTPS endgame. We need to finish the job so I can be certain all my mobile traffic is protected.
Please join me in asking the OS and browser makers to keep pushing and to finish the job in 2025, perhaps by Halloween! 👻 🔐
https://buff.ly/41qPpUM
Please join me in asking the OS and browser makers to keep pushing and to finish the job in 2025, perhaps by Halloween! 👻 🔐
https://buff.ly/41qPpUM
OK, but then I still need a screen reader. Which one is best? This one is also quite excessive.
February 17, 2025 at 1:59 AM
OK, but then I still need a screen reader. Which one is best? This one is also quite excessive.
I want to have Google Docs read my docs aloud to me but there's no good native feature. The extensions I looked at require **excessive** permissions.
Any recommendations?
Any recommendations?
February 17, 2025 at 1:52 AM
I want to have Google Docs read my docs aloud to me but there's no good native feature. The extensions I looked at require **excessive** permissions.
Any recommendations?
Any recommendations?
I'm sensing something... the picture is getting clearer...
AHA!
Was it a 𝙢𝙚𝙢𝙤𝙧𝙮 𝙨𝙖𝙛𝙚𝙩𝙮 defect?
🎩 🪄 ⚡
AHA!
Was it a 𝙢𝙚𝙢𝙤𝙧𝙮 𝙨𝙖𝙛𝙚𝙩𝙮 defect?
🎩 🪄 ⚡
January 30, 2025 at 6:00 PM
I'm sensing something... the picture is getting clearer...
AHA!
Was it a 𝙢𝙚𝙢𝙤𝙧𝙮 𝙨𝙖𝙛𝙚𝙩𝙮 defect?
🎩 🪄 ⚡
AHA!
Was it a 𝙢𝙚𝙢𝙤𝙧𝙮 𝙨𝙖𝙛𝙚𝙩𝙮 defect?
🎩 🪄 ⚡
I’m queuing up the Twin Peaks pilot and thinking about this SF gathering of the stars in 2018.
January 17, 2025 at 3:30 AM
I’m queuing up the Twin Peaks pilot and thinking about this SF gathering of the stars in 2018.
Thinking of David Lynch and my pilgrimages to Twin Peaks. 😭
January 16, 2025 at 6:34 PM
Thinking of David Lynch and my pilgrimages to Twin Peaks. 😭
Chris Beattie did a nice write up on hacklore and introduced me to a "scientific" paper about the dangers of public wi-fi. 👻 🤔 🤣
https://buff.ly/40nwVUB
https://buff.ly/40nwVUB
January 9, 2025 at 11:56 PM
Chris Beattie did a nice write up on hacklore and introduced me to a "scientific" paper about the dangers of public wi-fi. 👻 🤔 🤣
https://buff.ly/40nwVUB
https://buff.ly/40nwVUB
I’m surprised this type of false advertising is legal.
January 9, 2025 at 6:23 PM
I’m surprised this type of false advertising is legal.
From the Private Relay doc, "Private Relay protects all
web browsing in Safari and unencrypted activity in apps" but in the Apple Platform Security document, they write "when browsing the web with Safari".
My own results suggest that it's more than just Safari, but I need more testing.
web browsing in Safari and unencrypted activity in apps" but in the Apple Platform Security document, they write "when browsing the web with Safari".
My own results suggest that it's more than just Safari, but I need more testing.
December 26, 2024 at 12:35 AM
From the Private Relay doc, "Private Relay protects all
web browsing in Safari and unencrypted activity in apps" but in the Apple Platform Security document, they write "when browsing the web with Safari".
My own results suggest that it's more than just Safari, but I need more testing.
web browsing in Safari and unencrypted activity in apps" but in the Apple Platform Security document, they write "when browsing the web with Safari".
My own results suggest that it's more than just Safari, but I need more testing.
Google Docs' "Copy as Markdown" is super helpful. It lets me share the structure of my documents, or just parts of them, with AI systems without needing to upload the whole file. 🚀
December 25, 2024 at 11:56 PM
Google Docs' "Copy as Markdown" is super helpful. It lets me share the structure of my documents, or just parts of them, with AI systems without needing to upload the whole file. 🚀
Thanks for that detail Dave. I agree it's interesting to contemplate ways to separate my identity from my traffic.
The iCloud Relay system seems to do this, but if you have thoughts on its limits, I'm all ears.
www.apple.com/privacy/docs...
The iCloud Relay system seems to do this, but if you have thoughts on its limits, I'm all ears.
www.apple.com/privacy/docs...
December 25, 2024 at 9:30 PM
Thanks for that detail Dave. I agree it's interesting to contemplate ways to separate my identity from my traffic.
The iCloud Relay system seems to do this, but if you have thoughts on its limits, I'm all ears.
www.apple.com/privacy/docs...
The iCloud Relay system seems to do this, but if you have thoughts on its limits, I'm all ears.
www.apple.com/privacy/docs...
Directory traversal vulnerabilities have plagued software customers for over two decades. It's time for software companies to step up and eliminate this persistent class of coding error entirely.
More info here:
https://buff.ly/3QpbblJ
More info here:
https://buff.ly/3QpbblJ
December 19, 2024 at 6:00 PM
Directory traversal vulnerabilities have plagued software customers for over two decades. It's time for software companies to step up and eliminate this persistent class of coding error entirely.
More info here:
https://buff.ly/3QpbblJ
More info here:
https://buff.ly/3QpbblJ
The entire "Report spam or unsubscribe" flow needs a rethink. Sending an unsubscribe message to spammers by accident is going to lead to more spam.
December 18, 2024 at 6:00 PM
The entire "Report spam or unsubscribe" flow needs a rethink. Sending an unsubscribe message to spammers by accident is going to lead to more spam.
🧵 Today, CISA released guidance to help highly targeted individuals protect their communications. While the guide references recent news about PRC intrusions, it highlights broader historical trends we can’t afford to ignore. 🧵https://buff.ly/3VJS60q
December 18, 2024 at 4:12 PM
🧵 Today, CISA released guidance to help highly targeted individuals protect their communications. While the guide references recent news about PRC intrusions, it highlights broader historical trends we can’t afford to ignore. 🧵https://buff.ly/3VJS60q
Love 𝗦𝗲𝗰𝘂𝗿𝗲 𝗯𝘆 𝗗𝗲𝘀𝗶𝗴𝗻 but craving something more snackable? 🍎
Take a bite of the Secure by Design Alerts series — perfectly portioned servings of actionable security insights, ready when you are. Dig in here:
🔗 https://buff.ly/3DkNvvg
Take a bite of the Secure by Design Alerts series — perfectly portioned servings of actionable security insights, ready when you are. Dig in here:
🔗 https://buff.ly/3DkNvvg
December 17, 2024 at 6:00 PM
Love 𝗦𝗲𝗰𝘂𝗿𝗲 𝗯𝘆 𝗗𝗲𝘀𝗶𝗴𝗻 but craving something more snackable? 🍎
Take a bite of the Secure by Design Alerts series — perfectly portioned servings of actionable security insights, ready when you are. Dig in here:
🔗 https://buff.ly/3DkNvvg
Take a bite of the Secure by Design Alerts series — perfectly portioned servings of actionable security insights, ready when you are. Dig in here:
🔗 https://buff.ly/3DkNvvg
About to look up the CWE...
December 17, 2024 at 3:50 AM
About to look up the CWE...