Twitter | Search | |
Bryan Steele β™₯πŸ•
AKA brynet@. I like tinkering with , occasionally other Unix-like systems. In other words, not a MCP. I don't work in Infosec. DMs open. He/Him.πŸ•πŸ‡¨πŸ‡¦
10,370
Tweets
1,105
Following
1,533
Followers
Tweets
Bryan Steele β™₯πŸ• 3h
Replying to @pr1ntf
I read this as you jammed a real life human, and was concerned for them.
Reply Retweet Like
Bryan Steele β™₯πŸ• 7h
Reply Retweet Like
Bryan Steele β™₯πŸ• 7h
Replying to @pati_gallardo
Not in C, but C++ might be different. Don't cast malloc(3), include <stdlib.h> instead.
Reply Retweet Like
Bryan Steele β™₯πŸ• 8h
FAQ - Virtual Private Networks (VPN) Still a work in progress.
Reply Retweet Like
Bryan Steele β™₯πŸ• 8h
Ow. I just bumped my knee on a Blade 1000. I hate when that happens.
Reply Retweet Like
Bryan Steele β™₯πŸ• 8h
Replying to @mulander
Reply Retweet Like
Bryan Steele β™₯πŸ• 8h
Cool! I think already includes bindings for pledge(2) in the OpenBSD lang/node port, but not yet unveil.
Reply Retweet Like
Bryan Steele β™₯πŸ• 9h
Replying to @Kensan42 @jessfraz
Reply Retweet Like
Bryan Steele β™₯πŸ• 9h
Replying to @jessfraz @Kensan42
"This is probably the world's first Canadian cross device driver: it was created for OpenBSD by writing and porting a NetBSD driver which was developed in a rump kernel in Linux userspace."
Reply Retweet Like
Bryan Steele β™₯πŸ• 9h
Replying to @jessfraz @Kensan42
I still find this tidbit about the iwm(4) driver for Intel AC wireless hardware quite amusing. ☺️ ""According to Antti Kantee, "it was created for OpenBSD by writing and porting a NetBSD driver which was developed in a rump kernel in Linux userspace""
Reply Retweet Like
Bryan Steele β™₯πŸ• 10h
Replying to @indiecom
"force_turbo=1" in config.txt makes it boot at 1.4GHz, but will break serial console.. RPI3 Model B+ has some other support gaps, Ethernet / mue(4) needs a diff (currently on bugs@) to even attach. No HDMI. IIRC other arm64 boards tend to be in better shape, like the Pine64 etc.
Reply Retweet Like
Bryan Steele β™₯πŸ• 10h
Replying to @indiecom
We still don't support dynamic frequency scaling on the Raspberry Pi Broadcom SoC's yet, which means it boots at a reduced frequency of 600MHz and stays there. It assumes Linux, and ondemand governor.
Reply Retweet Like
Bryan Steele β™₯πŸ• 10h
Some people who post on Twitter do not want help. Do not respond well to help. Cannot be helped.
Reply Retweet Like
Bryan Steele β™₯πŸ• 12h
🀨 * * Now in base!
Reply Retweet Like
Bryan Steele β™₯πŸ• retweeted
Bryan Steele β™₯πŸ• Nov 2
New rule: Brands/companies may NOT follow me on Twitter without first sending pizza, thinkpads, or some cozy flannels. I'm cold. RT and feel free to add your own terms.
Reply Retweet Like
Bryan Steele β™₯πŸ• 14h
Replying to @canadianbryan
trapsleds make it difficult for attackers to sloppily target remaining useful gadgets. Random order re-linking (libc/ld.so/libcrypto) at boot means attackers need unique ROP for each machine, each boot. And KARL for the kernel.
Reply Retweet Like
Bryan Steele β™₯πŸ• 15h
Replying to @canadianbryan
's different mitigation complement each other, X86FixupGadgets reduces to amount of "unintentional" RETs in the instruction stream, RETGUARD protects function returns themselves. (1/2)
Reply Retweet Like
Bryan Steele β™₯πŸ• 15h
Todd Mortimer committed his work on clang to improve the X86FixupGadgets pass to replace even more "ROP friendly" instructions with safer ones. Very awesome! ☺️
Reply Retweet Like
Bryan Steele β™₯πŸ• 16h
Replying to @gigatexal @openbsd
But I'm trying to figure out how you're managing to even do that. A pf "log" rule only establishing state is logged, not the complete connection. Are you using "log all" or "no state" rules? In addition, it will only keep at max 3 compressed log files (pflog.[0-3].gz).
Reply Retweet Like
Bryan Steele β™₯πŸ• 16h
Replying to @gigatexal @openbsd
Log rotation is setup for /var/log/pflog via newsyslog(8), by default it will mv/gzip the log file if it is larger than 250 kilobytes, with an hourly cronjob. If you're filling up the filesystem that quickly, you might want to rethink your log rules, or tweak /etc/newsyslog.conf.
Reply Retweet Like