|
@
taviso
California
|
|
Vulnerability researcher at Google. This is a personal stream, opinions expressed are mine.
|
|
|
5,577
Tweets
|
521
Following
|
108,610
Followers
|
| Tweets |
|
Tavis Ormandy
@taviso
|
Jan 30 |
|
😬
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 30 |
|
Hah, I think it would be hard, it was clear what Avast were doing for years, but nobody really cared until the mainstream media picked up on it, and that seems hard to influence...
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 30 |
|
wow, avast are actually winding down jumpshot. twitter.com/mikko/status/1…
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 30 |
|
Sorry, just another computer nerd! 🤓
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 29 |
|
I can live with "bad actor", I hate "miscreant", sounds like mischievous little scamps more than criminals!
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 29 |
|
Hah, we had a bbc, just not fancy enough for any adapters 😛
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 29 |
|
You mean like Bamboozle, or was there really some software transmitted somehow?
|
||
|
|
||
| Tavis Ormandy retweeted | ||
|
Saul Procterm
@pozdnychev
|
Jan 28 |
|
Qualys Security Advisory: LPE and RCE (CVE-2020-7247) in OpenSMTPD, OpenBSD's mail server. Erroneous logic in smtp_mailaddr() which validates user and domain. More details and PoC at: openwall.com/lists/oss-secu…
PS: "Did you ever play tic-tac-toe?"
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 28 |
|
I dunno, but I never really liked it. I proposed an alternative, "constant pooling" - indirectly load constants from a non-executable table. I had stats that showed performance impact was negligible, more loads but better icache perf. Blinding was trivial to implement though.
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 26 |
|
I don't want to have this discussion.
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 26 |
|
Dunno, never have to listen to people whining about "responsible" if you just sell exploits privately. That must be nice.
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 26 |
|
We do have evidence they're bought and sold by exploit brokers though, and I'm guessing they're not printing them out to use as wallpaper.
|
||
|
|
||
| Tavis Ormandy retweeted | ||
|
joernchen
@joernchen
|
Jan 26 |
|
AV stands for:
Additional Vulnerabilities twitter.com/matalaz/status…
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 22 |
|
Congrats everyone, really nice work.
|
||
|
|
||
| Tavis Ormandy retweeted | ||
|
Artur Janc
@arturjanc
|
Jan 22 |
|
Earlier today we published the details of a set of vulnerabilities in Safari's Intelligent Tracking Prevention privacy mechanism: arxiv.org/abs/2001.07421. They are... interesting. [1/9]
@kkotowicz @empijei @we1x
|
||
|
|
||
| Tavis Ormandy retweeted | ||
|
Justin Schuh 🤬
@justinschuh
|
Jan 22 |
|
No, I can assure you that they still haven't fixed these issues, which is what made that blog post last year so weird. Apple didn't disclose the vulnerabilities or appropriately credit the researchers, but put out a post implying they fixed "something".
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 22 |
|
This. It's hard to imagine how Apple are going to resolve this, it took a long time to accept that the auditor problems were fundamental, and it's hard to see how itp is any different here. Prediction: after a few failed attempts to rework it, they'll come to the same conclusion. twitter.com/justinschuh/st…
|
||
|
|
||
| Tavis Ormandy retweeted | ||
|
lcamtuf
@lcamtuf
|
Jan 22 |
|
This is a pretty good reminder that any invasive heuristics in the browser - be it XSS filters or privacy protections - often cause more problems than they address: arxiv.org/ftp/arxiv/pape…
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 20 |
|
That's the one, definitely worth watching if you're a back to the future nerd. 🤓
|
||
|
|
||
|
Tavis Ormandy
@taviso
|
Jan 20 |
|
If you're a Back to the Future fan and haven't seen "Go to the Head of the Class", it's a real treat. It's like the band getting back together, Zemeckis, Gale, Spielberg, Lloyd, etc.
|
||
|
|
||