Posted by jpluimers on 2015/01/05
Interesting:
Kristian Köhntopp: Und wieder fällt ein MITM Angriff auf SSL durch Google Certificate Pinning auf…
Gogo Inflight Internet is intentionally issuing fake SSL certificates – Neowin
SSL certificates exist to increase security and prevent snooping on your browsing sessions. Gogo believes you shouldn’t have that and appears to be intentionally performing MITM attacks on its users.
[…]
Kristian Köhntopp +Steffen Storbeck Du kannst Preloading machen, http://blog.stalkr.net/2011/08/hsts-preloading-public-key-pinning-and.html erklärt ein wenig wie das geht.
[…]
Dominik Mähl In diesem Kontext vielleicht interessant: Chrome ignoriert Certificate Pinning, wenn das Serverzertifikat von einer CA unterzeichnet ist, die im lokalen Trust-Store des PCs installiert wurde. So versteht man dann auch, wieso trotz Certificate Pinning Unternehmens-MITM-Appliances noch funktionieren können.
–jeroen
via: Und wieder fällt ein MITM Angriff auf SSL durch Google Certificate Pinning auf….
Posted in Chrome, Google, Power User | Leave a Comment »
Posted by jpluimers on 2014/12/26
Over the last month or so, my Google Nexus 4 smartphone turned itself off when it should have had plenty of battery capacity left.
Just in case this happens to me more frequently…
Posted in Google, Nexus 4, Power User | Leave a Comment »
Posted by jpluimers on 2014/12/15
Out of the box, a MacBook can do tethering using:
I’ll point to two things about this below:
- WiFi is not always the best wireless tethering method
- USB is not restricted to iPhone only Read the rest of this entry »
Posted in *nix, Apple, Google, Mac, Mac OS X / OS X / MacOS, Mac OS X 10.7 Lion, MacBook, MacBook Retina, MacBook-Air, MacBook-Pro, Nexus 4, OS X 10.8 Mountain Lion, Power User | Leave a Comment »
Posted by jpluimers on 2014/12/08
I just added a FIDO U2F Security Key | Yubico as a FIDO second factor to my Google Account: Add a Security Key to your Google Account – Accounts Help.
The cool thing: if you don’t have your FIDO U2F key with you, you can fall back to Google two step verification mechanisms like Authenticator, SMS/Phone or pre-generated backup security codes.
–jeroen
Posted in Chrome, Google, Google Apps, GoogleAuthenticator, Power User, Security, U2F FIDO Security Keys | 4 Comments »
Posted by jpluimers on 2014/11/28
Cool, I just found out that Wikipedia has a Screenshot topic, listing how to take screenshots (and often shots of the current window) on many platforms, where (*) means I verified them:
- Apple Mac OS X
(*) Use “⌘ Cmd+⇧ Shift+3” for the screen or “⌘ Cmd+⇧ Shift+4” for a part of the screen (as of Mac OS X Tiger, you can press the “Spacebar” to capture a Window in stead of part of the screen). You can press “Ctrl” with these shortcuts to the shot goes to the clipboard, otherwise it gets saved as a PNG file.
- Microsoft Windows
(*) Use “Prt Sc” for the screen or “Alt+Prt Sc” for the Window
(note that on my laptop and multi-media keyboards, you need to type the “Fn” key in order to press the “Prt Sc”)
- Microsoft Windows Phone
Press the “Sleep/Wake” button and the Startbutton at the same time.
- Apple iOS
(*) Press the “Home” and “Lock” button at the same time.
- Google Android
Hold the “Volume down” button, then press the “Sleep/Wake” button.
(*) Or press the “Sleep/Wake” and the “Home” button at the same time.
- HP WebOS
Press the “Orange/Gray Key+Sym+P” at the same time.
Or press “Home Key+Power” at the same time.
- X Window System
Varies with the installed tooling
- Maemo 5
Press “Ctrl+⇧ Shift+P” at the same time.
- Google Chrome OS
Press “Ctrl+F5” to capture the screen or press “Ctrl+⇧ Shift+F5” to capture a portion of the screen.
–jeroen
via: Screenshot – Wikipedia, the free encyclopedia.
Posted in Android Devices, Apple, Chrome, Google, HTC, HTC Sensation, Keyboards and Keyboard Shortcuts, Mac, Mac OS X / OS X / MacOS, Mac OS X 10.4 Tiger, Mac OS X 10.5 Leopard, Mac OS X 10.6 Snow Leopard, Mac OS X 10.7 Lion, MacBook, MacBook Retina, MacBook-Air, MacBook-Pro, Nexus 4, OS X 10.8 Mountain Lion, Power User, Uncategorized, Windows, Windows 7, Windows 8, Windows Server 2000, Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Vista, Windows XP | Leave a Comment »
Posted by jpluimers on 2014/11/14
Interesting, especially after experimenting with it for a few weeks. Most of it is great, still missing a few features (like multiple labels per message, and great keyboard shortcut support: now it’s very basic).
So read this that I got via Kristian Köhntopp:
and:
Read the rest of this entry »
Posted in GMail, Google, Power User | 5 Comments »
Posted by jpluimers on 2014/11/10
Wishing an online collaboration tool that supports Markdown, especially since tools like GitHub have native support, and because of the textual nature of the file format, it plays well with version control systems. Until that, I’ll try to use editors on Mac, Windows and my blog, syncing with DropBox.
Some links that might get useful:
What is Markdown?
Online editors:
Windows + Mac:
Windows only:
Mac only:
Mobile:
Chrome plugins:
Comparison of tools and features:
Preview:
Conversion:
Comparison and resource overviews:
Markdown is very common in the scripting world.
A few examples:
On the syntax:
The Markdown syntax can be quite odd. Syntax examples are in http://daringfireball.net/projects/markdown/syntax.text, which is the source code for Daring Fireball: Markdown Syntax Documentation. For instance [WayBack] when nesting ordered and unordered lists, your code needs to be indented like this:
1. Ordered item 1
- Unordered item a
- Unordered item b
1. Ordered item 2
- Unordered item c
- Unordered item d
On CommonMark and John Gruber:
Even though John Gruber – the original Markdown inventor – wasn’t involved with Markdown for like 10 years, in September 2014 he was involved in the [WayBack] “Standard” Markdown Controversy which led to the [WayBack] CommonMark project trying to set a standard for Markdown.
–jeroen
Posted in Google, GoogleDocs, MarkDown, Power User | Leave a Comment »
Posted by jpluimers on 2014/11/07
Great! And it is open source at https://github.com/google/nogotofail:
The Android Security Team has built a tool, called nogotofail, that provides an easy way to confirm that the devices or applications you are using are safe against known TLS/SSL vulnerabilities and misconfigurations. Nogotofail works for Android, iOS, Linux, Windows, Chrome OS, OSX, in fact any device you use to connect to the Internet.
There’s an easy-to-use client to configure the settings and get notifications on Android and Linux, as well as the attack engine itself which can be deployed as a router, VPN server, or proxy.
–jeroen
via Google Online Security Blog: Introducing nogotofail—a network traffic security testing tool.
Posted in *nix, Android Devices, Chrome, Google, iOS, Mac OS X / OS X / MacOS, OpenSSL, Power User, Security, Windows | Leave a Comment »
The Wiert Corner - irregular stream of stuff 