@filippo.abyssdomain.expert
RC F'13, F2'17 Cryptogopher / Go cryptography maintainer Professional open source maintainer https://filippo.io / https://github.com/FiloSottile https://mkcert.dev / https://age-encryption.org https://sunlight.dev / https://filippo.io/newsletter
I'm really glad that 404 Media correctly called out the "Proton did not provide any information to the FBI" line as disingenuous. It's not a good sign when a provider is more interested in playing semantic games than realistically explaining their threat model.
Who thinks "clean room" is needed to reimplement and put it into a new license does NOT understand copyright. Clean room is a trick to make litigation simpler, it is not mandated by law: rewrites are allowed. The new code just must not copy protected expressions. Linus was Unix-aware.
HTML Sanitizer API browser support list with unsupported Safari being poked with a stick by the White Ninja meme
c'mon Safari
did something very silly, may have some at gophercon this year if you ever sent us a vulnerability report or contributed to Go crypto (or are just nice to me)
thanks to @ljamesart.bsky.social who did the great art!
TIL about the git fast-import textual format!
Lets me write tests for the new c2sp.org redirector against a synthetic git repository I can easily edit, and even gives me stable shorthands to refer to commits.
If you are a regular user, the same way as you would do with passwords saved in iCloud Keychain: by resetting them and/or registering a new passkey.
Don't try to tell me that average users export passwords from iCloud to a CSV, transfer them to Android, and import them.
Which phones? Because that is not the UX of iOS or Android.
I find it competently incompatible with my mental model and observations that average users are discussing authentication mechanisms on social media or thinking about how to backup them.
Maybe we have different definitions of regular user.
Thatβs only true of nerds, is my point. Average users will tap βyesβ on βlog in with FaceIDβ and never think about it again.
It's considerably harder to phish email recovery.
But the point is that we don't need to communicate to users why ECDSA P-256 signatures from a resident credential are better!
We just need to enable them and make the login flow smooth, which it really really is.
I will never understand the need for backup solutions when you can add multiple passkeys to an account, and do email-based recovery (which is true of 99.9% of accounts).
But it's also not true there aren't/weren't any: you can use your favorite open source local password manager!
Passkeys will make something true that my father already asserted for 20 years: "I never had a password for this website, it just worked". π
The more nerds (I identify as a nerd!) complain about passkeys, the more Iβm confident in their success.
Just read a comment objecting to a passkey being automatically created for them. βDark pattern!!1!1 Should be optional!!β
No regular user wants to think about auth.
I might be lacking in imagination, but I seriously doubt it will ever resolve in a default, mainstream browser.
(I do love a good domain name hack though!)
I guess what I am saying is that you can't use pat.ak for almost anything you'd use patak.cat for: website, bsky handle, etc.
gTLDs are a lot more reliable than ccTLDs, because ICANN can make actual rules for how they are operated, I regret tying my only identity to the .io ccTLD.
But also... I went to look at who operates .ak and it doesn't actually exist. Handshake uses .ak but that's not part of the DNS.
ssh is an obscure but widely-deployed command. It stands for Secure Snake Home and was made in the 90s to securely play snake online
I made a massively multiplayer backend for it with support for thousands of concurrent snake players
ssh snakes.run to join!
@aumasson.jp this might be a stupid q but, why does BLAKE tweak the ChaCha perm. into a block cipher to use it in M-D (where the message block is the cipher βkeyβ), instead of using the perm. in a sponge?
I saw a like from @jub0bs.com so I guess I will just wait a couple days for the bluemonday or x/net/html security report now.
You should be able to set up a fuzzing loop for HTML sanitizing libraries where you do setHTML on s and sanitize(s) and then compare the DOM, to find places where your sanitizer disagrees with the actual browser parser.
I wonder if it would have tolerable false positives.
The Sanitizer API landed in Firefox 148, along with element.setHTML().
This lets you fully configure how HTML strings are cleaned as they're parsed.
hacks.mozilla.org/2026/02/good...
ngl, this is how I thought tangled worked until I looked into it, and I like it.
Could it be made to work with github.com/hickford/git... for ephemeral push credentials?
I mean, I have opinions on one way... :)
words.filippo.io/geomys/
Iβm not a fan of grants. They require mountains of overhead work, and encourage always adding features without funding their ongoing maintenance.
Yeah just use zip!
Ooooh maybe we can add atproto integration to archivebox.io?
the full PLC story relies on:
- independent governance
- public, formal auditability to stake its reputation
- in case of emergency, credible exit
even in the case described below, there is a story for auditability (see thread). plc read replicas shipped, governance and transparency logs ahead!
David no
Dependabot security alerts have terrible signal-to-noise ratio, especially for Go vulns. That hurts security!
Just turn it off and set up a pair of scheduled GitHub Actions, one running govulncheck and the other running CI with the latest version of your deps.
Less work, less risk, better results!
