Hacker News: tiberious726

New comment by tiberious726 in "Verizon sent man a refurbished phone with MDM, then deleted his data remotely"

tiberious726 — Fri, 12 Jun 2026 23:24:55 +0000

And should be expected at any time without backups

New comment by tiberious726 in "The RCE that AMD wouldn't fix"

tiberious726 — Fri, 12 Jun 2026 23:11:54 +0000

Who would exploits be sold to then?

New comment by tiberious726 in "Over 900 Arch Linux Packages Infected with infostealers and rootkits"

tiberious726 — Fri, 12 Jun 2026 22:38:17 +0000

"Over 900 packages infected in a repository anyone can upload to, it just has to be compatible with Arch"

New comment by tiberious726 in "Use your Nvidia GPU's VRAM as swap space on Linux"

tiberious726 — Wed, 03 Jun 2026 18:18:47 +0000

This is correct, look at IBM's CAPI for an example of the needed hardware

New comment by tiberious726 in "It's hard to justify buying a Framework 12"

tiberious726 — Sat, 30 May 2026 17:17:12 +0000

Install the plasma add-ons package if you're on KDE, I'm sure there's still something around for gnome too.

Burning windows away on close is my favorite

New comment by tiberious726 in "Flipper One Tech Specs"

tiberious726 — Wed, 20 May 2026 21:32:01 +0000

I fly with a flipper zero often. What are you talking about?

New comment by tiberious726 in "Flipper One Tech Specs"

tiberious726 — Wed, 20 May 2026 21:30:44 +0000

A hackrf is less expensive than a flipper and more capable in every way, except the dolphin gifs.

The flipper's primary use is that looks like a children's toy, which makes it far more effective for demos of how bad an orgs security is to not-especially-technical stakeholders than something like a hackrf or chameleon

New comment by tiberious726 in "Leaving GitHub for Forgejo"

tiberious726 — Wed, 13 May 2026 18:53:27 +0000

How does Forgejo stack up to Gitea nowadays?

New comment by tiberious726 in "Iran claims US exploited networking equipment backdoors during strikes"

tiberious726 — Thu, 23 Apr 2026 04:45:46 +0000

#AmericaColonizesEurope

New comment by tiberious726 in "Why is IPv6 so complicated?"

tiberious726 — Tue, 21 Apr 2026 14:01:40 +0000

It basically did, just in hex...

New comment by tiberious726 in "Edit store price tags using Flipper Zero"

tiberious726 — Tue, 21 Apr 2026 13:53:04 +0000

There is much better hardware available to security researchers (chameleons, hackrf, and actually research-grade (much more expensive) equipment).

The flipper is basically an Arduino pre built with a bunch of static antennas. It's fine and in a decent form factor, but I really haven't found it useful.

Do you have any links to actual research (not children playing "researcher") done with flipper hardware?

New comment by tiberious726 in "The Bromine Chokepoint"

tiberious726 — Tue, 21 Apr 2026 02:59:20 +0000

It doesn't infer anything, you just hit a blacklisted token

New comment by tiberious726 in "The RAM shortage could last years"

tiberious726 — Tue, 21 Apr 2026 02:14:55 +0000

The fury X was a beast for a consumer card, sadly limited by having a mere 4gb of (hbm) VRAM, and a non-refillable AIO. But back when games could fit in 4gb, it was incredible.

I'd absolutely buy another hbm consumer GPU if it had at least 8gb (and if I got the vibe/hope AMD will actually support for a couple years...)

New comment by tiberious726 in "Put your SSH keys in your TPM chip"

tiberious726 — Thu, 16 Apr 2026 20:09:23 +0000

> TPM isn't for "security" in the abstract, it's fundamentally for authentication

What on earth do you think I make my users present keys for???

You know all those guides saying "you should never copy an ssh private key over the network. Make a new one for each device" that every idiot dev ignored? Now I can enforce that.

New comment by tiberious726 in "Put your SSH keys in your TPM chip"

tiberious726 — Thu, 16 Apr 2026 20:07:39 +0000

This article's method is bad, basically the same as systemd-creds (not itself bad, just extremely compatible), take a look at tpm-ssh-agent or gnupg for how to do that part the right way (the party they don't do right is bind/sign to pcrs, which is just low hanging fruit in today's day and age...)

New comment by tiberious726 in "Put your SSH keys in your TPM chip"

tiberious726 — Thu, 16 Apr 2026 20:04:47 +0000

If you run into the link to this, is love to read it. Proper, modern, pcrphase binding with a signing key should remove these firmware update issues irt the raw pcr value changing

New comment by tiberious726 in "Put your SSH keys in your TPM chip"

tiberious726 — Thu, 16 Apr 2026 19:52:51 +0000

The authors of both this article and ssh-tpm-agent (disjoint set) really need to learn about pcrphases and the signing keys therefor: https://github.com/Foxboron/ssh-tpm-agent/issues/15

New comment by tiberious726 in "FSF trying to contact Google about spammer sending 10k+ mails from Gmail account"

tiberious726 — Thu, 16 Apr 2026 18:37:48 +0000

I set up my orgs SPF/DKIM/DMARC (we self host, they have feelings about corporate data sovereignity...) it look about 30 min having never touched them before, and maybe another 15 to write an ansible playbook to rotate the keys.

We do have a _tremendous_ amount of spam fail these checks, as well as a few legitimate organizations.... Some of our peer companies have sent out notices that they will bounce anything that fail these checks in the coming years, and we're probably going to to do the same before too long.

It's trivially easy, and absolutely valuable

New comment by tiberious726 in "Show HN: BAREmail ʕ·ᴥ·ʔ – minimalist Gmail client for bad WiFi"

tiberious726 — Wed, 08 Apr 2026 16:47:27 +0000

Random web apps are not. Imap pop and smtp don't sanely support mfa, so the insurance industry is slowly killing them off

New comment by tiberious726 in "curl > /dev/sda: How I made a Linux distro that runs wget | dd"

tiberious726 — Wed, 25 Mar 2026 22:21:29 +0000

It whines about licensing, but I switch between booting my windows installation bare metal and as a VM all the time