[Info-vax] Some of what I'm reading...
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Thu Jan 31 11:39:26 EST 2019
Since there've been discussions of which platforms AdaCore is and is
not supporting, "AdaCore Joins the RISC-V Foundation to Provide C and
Ada Compilation Support"
https://www.design-reuse.com/news/45487/adacore-the-risc-v-foundation-c-ada-compilation.html
Given recent virtualization discussions, some recent Hyper-V
security-related links—including Microsoft docs on attacking Hyper-V
components:
https://blogs.technet.microsoft.com/srd/2019/01/28/fuzzing-para-virtualized-devices-in-hyper-v/
https://blogs.technet.microsoft.com/srd/2018/12/10/first-steps-in-hyper-v-research/
https://i.blackhat.com/us-18/Thu-August-9/us-18-Rabet-Hardening-Hyper-V-Through-Offensive-Security-Research.pdf
https://github.com/Microsoft/MSRC-Security-Research/raw/master/presentations/2018_08_BlackHatUSA/A%20Dive%20in%20to%20Hyper-V%20Architecture%20and%20Vulnerabilities.pdf
Prototypes toward low-configuration-effort encrypted IPv6 networking...
https://github.com/cjdelisle/cjdns
https://github.com/yggdrasil-network/yggdrasil-go
"Down the Rabbit Hole - Part I: A Journey into the UEFI Land" —
reverse-engineering Lenovo Thinkpad UEFI-based device support
https://erfur.github.io/down_the_rabbit_hole_pt1/
"Someone who says blockchain can be used to solve problem x, doesn't
understand the problem" — Nicholas Weaver, senior research at USB
International Computer Science Institute
http://www1.icsi.berkeley.edu/~nweaver/enigma_crypto_weaver.pdf
For those of you working on macOS...
http://orangejuiceliberationfront.com/sandboxed-macos-login-item-with-xpc/
https://github.com/travisjeffery/ClangFormat-Xcode
Learning about what your organization has exposed to the 'net...
https://github.com/kpcyrd/sn0int
https://www.hardenize.com and https://www.ssllabs.com/ssltest/ for testing
Linux, given the recent discussion:
https://help.ubuntu.com/community/BurningIsoHowto
https://elementary.io
How a lack of HTTPS can nail you:
https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-3462.html
"Scaling Down Inequality - Rating Scales, Gender Bias, and the
Architecture of Evaluation" — how performance evaluations and common
evaluation scales can get (some of) us in trouble.
https://osf.io/preprints/socarxiv/j2tw9/
Software Dependencies and the Maintenance of Microsoft Windows—managing
compatibility and complexity, and trying to herd developers.
https://static1.squarespace.com/static/56a8e2fca12f446482d67a7a/t/5701df86746fb963479246b9/1459740551306/GOTOHELL.DLL%281%29.pdf
Algorithms, for those of us slinging code and that haven't looked at a
text in a decade or two...
http://jeffe.cs.illinois.edu/teaching/algorithms/book/Algorithms-JeffE.pdf
For folks looking at security and that are pondering what's changed
since OpenVMS was designed and created some forty years ago, operating
systems including Genode, Haiku and seL4 will be interesting. "The
Genode OS Framework is a tool kit for building highly secure
special-purpose operating systems. It scales from embedded systems with
as little as 4 MB of memory to highly dynamic general-purpose
workloads."
https://genode.org
https://www.haiku-os.org
https://sel4.systems
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list