Any advice for those that are extremely curious but have no formal training but are wanting to learn more?

A pseudonym is going to be Security Through Obscurity though right?

@@bobmcbob4399yes if you’re doxxed then you can be traced on all socials via OPINT.

😂

So sad that from all the talks there are usually no more than one or no questions!

i’ve used it too

@@jtw-r used once or use it daily? Pretty sure XZ is the default compression for the kernel and I use it to bundle precompiled binaries.

ZSTD (and lz4 over ssh) for me. It’s so fast, and has really good compression ratios.

For the browser-device linking, can't they do the same as with the short codes that websites email you to verify that you have access to that email? Let me try my best at coming up with a protocol (and risk becoming part of the "everyone can come up with an encryption that they themselves can't break" fallacy). The fact that I could come up with a protocol that I _THINK_ works, means that it's _probably_ possible to do something like this, even if there's a thing or two that I've overlooked. Here's my protocol: 1. Browser and device exchange private keys and sync their clocks. 2a. The browser displays a 3-digit code and the user enters it on a keypad on the device. 2b. Alternatively, the browser can generate 3 countdowns of 10-20 seconds and have the user push a single the button 3 times, and the device then concatenates those 3 "digits" (with fractional second accuracy) to make the code. (Note that all further messages are sent encrypted with the exchanged keys, unless explicitly noted otherwise.) 4. The device (4.1) encrypts the code with a private "session" key and (4.2) sends it to the browser. (Encrypting it first with the key from 1 and _then_ with the temporary key from 4, so that a MITM who has inserted themselves at 1 can't decrypt and re-encrypt it with their own keys.) 5.1 The browser acknowledges receipt of the encrypted code. 5.2 The device waits for 5 seconds. 6. The device sends its public "extra" key to the browser. 7. The browser decrypts the code from 4.2 with the public key from 6 and verifies that it's the exact same code sent in 2 (or alternatively, that it's not too far off). 8. The "extra" key pair of the device becomes part of the encryption of all following traffic from the browser to the device. 9. The browser (9.1) can send the device a longer second code (thusly encrypted with the device's public key), and the device (9.2) decrypts it and (9.3) returns it decrypted. A MITM ("eve") has two choices at 4 (as long as message 6 hasn't been sent out by the browser yet): If eve sends her own code encrypted with her own "extra" key, that code won't match at 7. If eve forwards the device's encrypted code at 4.2, she won't have the device's private "extra" key and can't decrypt any of the traffic at step 8/9 and thus fails at 9.3. Could the device send _both_ 4.2 and 6 _before_ the browser expects 4.2? Well, step 2b only works if the clocks are synchronized and step 2a can be declared as failed if the user didn't enter the code (as evident by the fact that the browser received 4.2) within 5 seconds (or whatever the delay of step 5.2 is). Both variants of step 2 can do double duty as verification of the synchronization and thus the proper order of 4b and 6 can be ensured. However, note that this only verifies to the browser that the device is who it claims, the device still has no guarantee that the browser is who it claims. But that can probably even be solved by the browser telling the user to push the button on the device a final time once it has verified it's identity (or alternatively to do a reset on the device if anything is wrong).

@@PystroSounds a bit complicated, especially for the user. I'm thinking more about something like: (1) Browser detects that it is connecting to a device that (a) has an address from one of the 3 private ranges and (b) is in the same broadcast domain. (There's a config setting to disable the second one for people who know what they are doing.) (2) Browser disables all knows CAs other than user-added ones for that connection. (3) If the device is known, browser does a cert check and applies cert-pinning rules. (4) Browser connects to the device and asks it to do a handshake. If that fails, or the device has a valid cert (as of no 2), it continues as it would now (4.1) Browser asks user for pairing permission (5) Browser silently generates a self-signed client cert. Device silently generates a self-signed server cert . (6) Browser and device store each others certs. For enhanced (or proper) security, as step 5.1, both devices generate a second key pair, but they send the private key to each other. When reconnecting to each other, they exchange simple token-response messages using those keys to prove they know each other. This ensures manufacturers cannot dumbly put the same static cert onto all devices they make. Additionally, browser blocks all requests to paired local devices that originate in any way from another device or the internet. This closes most attack vectors I can see: (a) attackers getting access to local devices through cross-site requests in the browser, (b) browser sending data to a copy of a local device in another network, (c) MITM after initial connect in the real local network (initial connect is still vulnerable, but tbh, if your local network already has a MITM you're done for anyway), (d) user being trained to ignore insecure connection and cert fails, (e) manufacturers putting globally signed static keys onto devices to avoid users not being able to connect and returning devices as defective because of insecure connection and cert warnings.