|
Gabe Edwards
@
gabedwrds
Seattle, WA
|
|
Infosec consultant, writes witty bash one-liners, OSCP/OSCE. 🏳️🌈🇨🇦
|
|
|
269
Tweets
|
201
Following
|
126
Followers
|
| Tweets |
|
Gabe Edwards
@gabedwrds
|
Dec 18 |
|
@jseattle is this the last of the free-floating car shares on the hill? twitter.com/sharenow__na/s…
|
||
|
|
||
| Gabe Edwards retweeted | ||
|
Filippo Valsorda
@FiloSottile
|
Dec 17 |
|
Kathryn, @eiais, did not bypass code review.
She didn't disrupt anyone's work.
She didn't target an individual.
She didn't violate any policy I'm aware of.
She linked to an NLRB notice from an extension that exists to show links to policies.
This only makes sense as retaliation. twitter.com/eiais/status/1…
|
||
|
|
||
| Gabe Edwards retweeted | ||
|
Matthew Garrett
@mjg59
|
Dec 17 |
|
Kathryn was on my team. There was zero reason why she should have asked anyone else on the team for authorisation to make changes to this extension. That's not how we do things. twitter.com/alibreland/sta…
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Nov 6 |
|
Seriously, for weeks I couldn’t walk the one block to QFC without being harassed by her people at the beginning middle and end of that block. If I were allowed to vote I would have voted against her on the basis of leave me the fuck alone.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Nov 2 |
|
Ooh, spotted the BOAC 747 across from my gate at LAX. It is a pretty thing. pic.twitter.com/khYkMVB5QN
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Sep 30 |
|
wat
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Sep 28 |
|
I was there at 8:30 tonight looking for a cheap motherboard to help diagnose a hardware problem. Found a sign saying they’re out of stock of motherboards. All motherboards.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Sep 27 |
|
Damn, that is awful news. I’m sorry for your loss. It is a really nice idea to do this though.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Sep 19 |
|
Checking for consensus in the infosec community: Would you want your front door lock to be controlled by an app and cloud service? This would be online, not just local bluetooth. RTs for reach appreciated.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Sep 17 |
|
"The human race will be utterly wiped from existence, and it's all your fault."
Not sure whether this is satire or just plagiarized from the exploit scenarios in an old iSec report.
|
||
|
|
||
| Gabe Edwards retweeted | ||
|
Melanie Ensign
@iMeluny
|
Aug 13 |
|
Hello. As one of the organizers of DEF CON, I can say that the challenges to securing our elections are no longer technical — we know how to fix it. The problems are now purely political — people in power benefit from these vulnerabilities & don’t want things to get fixed.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Aug 12 |
|
They're pushing this in our building too and asking us to sign a lease addendum that includes no liability in case of breach. Also "you agree not to unplug" and "reimburse Owner any costs incurred to plug in and reconnect". No.
|
||
|
|
||
| Gabe Edwards retweeted | ||
|
MalwareTech
@MalwareTechBlog
|
Aug 12 |
|
After 1 hour of looking at my new smart lock, I am now able to remotely unlock every front door in the apartment complex.
|
||
|
|
||
| Gabe Edwards retweeted | ||
|
Eva
@evacide
|
Aug 5 |
|
Most iOS spouseware and stalkerware works by downloading iCloud backups. twitter.com/ElcomSoft/stat…
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Jul 24 |
|
That was 4 days ago and it hasn't broken again yet. AMD released new microcode and then pulled it due to other bugs, so no real fix yet. Applications can still call RdRand from userspace so who knows what else will break.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Jul 24 |
|
4b. Try to rebuild grub.cfg from the Fedora 29 USB. Nope, that uses RdRand too. It's a complex config and typing in commands at the grub prompt fails. Hours later, piece together a working cfg from the raw /boot/efi partition. Booted with nordrand, grub2-mkconfig works again.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Jul 24 |
|
4. Run grub2-mkconfig > grub.cfg add that nordrand arg. Bad move. That probes LVM devices which also uses RdRand. System gets unresponsive (all the blocked kworkers?) and I reboot, but now grub.cfg is empty so grub doesn't know how to load anything. No backup copy.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Jul 24 |
|
3. Time passes. I set up Wireguard. It receives a handshake packet and calls get_random_u32 which blocks a kernel worker forever. I forgot to include nordrand in kernel args while configuring VFIO. Need to add that to the default config.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Jul 24 |
|
2. Can't mount /home. It's LUKS2 while root is v1. cryptsetup just hangs forever on LUKS2 volumes. Some debugging later, it's getting stuck on a call to libjson-c so we rebuild that without RdRand and all's well.
|
||
|
|
||
|
Gabe Edwards
@gabedwrds
|
Jul 24 |
|
1. Total failure to boot. We forgot about the known systemd issue. Boot a Fedora 29 live USB, chroot the system and install the patched systemd from copr.fedorainfracloud.org/coprs/jerbear6…. OK, should be fine now?
|
||
|
|
||