Listen

Listened to Open Source Security: Detecting XZ in Debian with Otto Kekäläinen
Post details
In this episode, Josh and Otto dive into the world of Debian packaging, exploring the challenges of supply chain security and the importance of transparency in open source projects. They discuss Otto's blog post about the XZ backdoor and how it's a nearly impossible attack to detect. Otto does a great job breaking down an incredibly complex problem into understandable pieces. The show notes and blog post for this episode can be found at

by Jamie Tanna's profile image Jamie Tanna .

 Photo

Why, yes I am having to spend my Sunday morning looking into reducing the impact of bot scraping on my website after a significantly large AWS bill, why do you ask?

A screenshot of the 'Cost and usage graph' in the AWS billing dashboard, showing May-September's bills of ~$25, and then October's being ~$150. The majority of it, not labelled, is CloudFront traffic usage, which appears to be ~1.3TB of usage over the last month, over what's available in the free tier

by Jamie Tanna's profile image Jamie Tanna .

 Like

Liked Normalize Identifying Corporate Devices in Your Software
Post details
If you dual-license your software in such a way that it requires a paid license for commercial use, here are two code blobs for you. macOS pub fn mdm_enrollment() -> eyre::Result<(bool, Option<String>)> { let mut command = Command::new("/usr/bin/profiles"); command.args(["status", "-type", "enrollment"]); let stdout = command.output()?.stdout; let output = std::str::from_utf8(&stdout)?; if output.contains("MDM enrollment: No") { return Ok((false, None)); } let mut server = None; for line in output.lines() { if line.starts_with("MDM server") { server = Some(line.trim_start_matches("MDM server: ").to_string()) } } Ok((true, server)) } Windows pub fn mdm_enrollment() -> eyre::Result<(bool, Option<String>)> { let mut command = Command::new("dsregcmd"); command.args(["/status"]); let stdout = command.output()?.stdout; let output = std::str::from_utf8(&stdout)?; if !output.contains("MdmUrl") { return Ok((false, None)); } let mut server = None; for line in output.lines() { if line.contains("MdmUrl") { let line = line.trim().to_string(); server = Some(line.trim_start_matches("MdmUrl : ").to_string()) } } Ok((true, server)) } Looking at mobile device management (MDM) enrollment is not a silver bullet for identifying corporate devices running your software, but it is a good start.

by Jamie Tanna's profile image Jamie Tanna . #entrepreneurship.

 Repost

Reposted Hazel Weakly (@hazelweakly.me)
Post details
This is why I have a website. It’s also why everything I’ve ever written has appeared on my website with *very* few exceptions Having a single domain name that’s YOU is invaluable. My website gets lots of compliments on its branding and appearance. My slides borrow that appearance, too It matters! [contains quote post or other embedded content]

by Jamie Tanna's profile image Jamie Tanna . #personal-website.

 Like

Liked Hazel Weakly (@hazelweakly.me)
Post details
This is why I have a website. It’s also why everything I’ve ever written has appeared on my website with *very* few exceptions Having a single domain name that’s YOU is invaluable. My website gets lots of compliments on its branding and appearance. My slides borrow that appearance, too It matters! [contains quote post or other embedded content]

by Jamie Tanna's profile image Jamie Tanna .

 Listen

Listened to Break | Throw A Stone, Crack A Window
Post details
Welcome back to Break, a Fallthrough aftershow! In this episode, Kris, Matt, Angelica, and Cory O'Daniel talk extend their discussion from Fallthrough episode #42.Enjoying the aftershow? Let us know on social media! If you prefer to watch instead of just listen, head over to YouTube where you...

by Jamie Tanna's profile image Jamie Tanna .