Twitter: @ewenmcneill -- December 2019

Sat Nov 30 21:17:55 +0000 2019 (#)

Replying to @64 and @BR3NDA

no starch press is my go to publisher for both Python and younger programmers. They even have a sale on until sometime on Monday (in NZ; end of Sunday PST).

Some possible ideas linked; there are others.

Mon Dec 02 00:25:06 +0000 2019 (#)

Replying to @pjf

Random thought: there are some breathing/posture techniques to help surface/access grief. I’ve found some of those to work for me.

No idea if they’d work through antidepressants (I’ve never taken them). But if your dose is tuned for “restore to balance” maybe they would?

Mon Dec 02 20:01:45 +0000 2019 (#)

Replying to @minxdragon

Cheap filler. “It’s an inactive ingredient so what does it matter what it is?” 😡

I too am annoyed by people taking hypoallergenic things and messing them up by randomly adding common allergens.

Sorry to hear it bit you again 🙁

Thu Dec 05 05:34:49 +0000 2019 (#)

RT @jaybeale: @deviantollam's #awarenesscon talk can help keep physical penetration testers safe: "It is a service that involves a lot of e…

Fri Dec 06 08:14:45 +0000 2019 (#)

Replying to @allafarce and @r00k

As a consulting friend of mine used to say of things he didn’t want to do: “That sounds very expensive”. Ie pick a very big number you hope will dissuade them, and if they pay it anyway use the money to have a great holiday after it’s all done!

Fri Dec 06 08:49:19 +0000 2019 (#)

RT @RealSexyCyborg: Skin is just an enclosure with no screws. The best hackers hack everything; hardware, software, wetware, ideas, social…

Sun Dec 08 08:04:48 +0000 2019 (#)

.@SwiftOnSecurity gives good movie recommendations: “Source Code” was very cyberpunk, and worth the BluRay purchase! Don’t watch the trailers though (and the UK BluRay has many pre-roll trailers 🙁)

Sun Dec 08 23:54:26 +0000 2019 (#)

Looks like DellEMC S5248F VLT clustering is using stunnel4 to allow IPv6 TLS cluster connections to redis. With a shared (2016) TLS, that expires 2021-07-27.

“If the default certificate-key pair expires, the VLT domain on peer switches does not come up.”

Sun Dec 08 23:59:01 +0000 2019 (#)

Replying to @ewenmcneill

Good thing my client spotted that in DellEMC SmartFabric release notes before we went into production. Since you have to change the certificates on all devices at once.

(The release notes imply not on S5248F, but I found the stunnel cert myself, expires 2021-07-27 🙁)

Mon Dec 09 00:56:03 +0000 2019 (#)

Replying to @ewenmcneill

I think I was happier before I figured out how the S5248F VLT clustering worked. It’s not terrible, but the mix of redis, stunnel, IPv6 and IPv4, with old hard coded shared certs used, does not give me “well planned design” feelings 😢

Mon Dec 09 05:23:44 +0000 2019 (#)

Great to see my friend Philip’s photography exhibition opening this evening.

AA Centre, Lambton Quay, #wellington, daytime this week.

Tue Dec 10 01:33:54 +0000 2019 (#)

RT @bendechrai: What do @Loquacities, @brett_sheffield, @ruben_rubio_rey, @ewenmcneill, Peter Burnett, @DrJason_C, and @Erstejahre have in…

Tue Dec 10 03:35:40 +0000 2019 (#)

Sigh. DellEMC removed the S5248F Cluster Security documentation page indexed by Google/linked in the quoted tweet.

Today’s link below, with one fewer “-0” in the URL… but same 2021-07-27 expiry date [reposted to fix date typo].

Tue Dec 10 07:44:21 +0000 2019 (#)

The 8-bit games of my teens, for the Amstrad CPC6128, are now playable in a browser. I’d seen this with other 8-bit machines, but the impact is still surprising when it’s something that was a big part of my growing up 💚💙💜❤️

Wed Dec 11 03:43:36 +0000 2019 (#)

RT @textfiles: TL;DR I've worked at @internetarchive 2011-2019 and in that time Wayback Machine etc. have gone from 5 petabytes of disk spa…

Sat Dec 14 05:09:39 +0000 2019 (#)

Replying to @BR3NDA

My gold standard for trusting food is “please list all ingredients that are in this food”, not what you think might have been left out.

Without that list it’s at best an educated guess whether it’s likely to be safe.

But yeah saying “vegan” without knowing what it means 😡

Sun Dec 15 00:14:43 +0000 2019 (#)

RT @dianus7: @dusttodigital If it is of interest. Evelyn Glennie: How to truly listen

Sun Dec 15 00:47:03 +0000 2019 (#)

Delia Derbyshire, creator of the original Dr Who theme. It’s a really interesting 24 minute documentary including early electronic music history.

Sun Dec 15 23:21:31 +0000 2019 (#)

RT @kawaiiconNZ: Fobski - A security tale

Mon Dec 16 02:17:48 +0000 2019 (#)

Replying to @minxdragon

Oil / orange juice is a known salad dressing recipe, so I’m not surprised orange juice alone improves things over no dressing!

I continue to be amazed how difficult “olive oil and cider/balsamic vinegar” is for caterers to provide, as a standard dressing 😢

Mon Dec 16 02:48:37 +0000 2019 (#)

Replying to @minxdragon

Ah, that extra allergy would confuse things a little more. Is it all vinegar, or just balsamic? (I have three other vinegar varieties in my kitchen!)

Oil and lemon juice is also a common salad dressing (at least in my house) and seems an easy fallback for catering to provide 🤔

Mon Dec 16 04:02:17 +0000 2019 (#)

Replying to @minxdragon

Ah, sulphites. They’re another thing randomly included in “everything” as a cheap preservative. My mother is sensitive to them too.

Definitely sounds like olive oil and a slice or two of lemon is the safest default option for you 🙂

Mon Dec 16 04:38:41 +0000 2019 (#)

Replying to @minxdragon

Yeah, that’d be a really annoying thing to have a bad reaction to. It’s stealth everywhere, about as much as stealth dairy / stealth corn / stealth gluten 🙁

Mon Dec 16 05:23:06 +0000 2019 (#)

Replying to @minxdragon

All the stealth ingredients 😕

I’m allergic to dairy, gluten (and others) so I’m a compulsive reader of ingredients. I avoid sulphides where I can, but AFAIK I’m not allergic which makes catered/premise things a tiny bit easier.

Tue Dec 17 07:05:38 +0000 2019 (#)

RT @Carnage4Life: No one I know who works on software for a living trusts it to do anything important. That people assume software can be…

Thu Dec 19 00:18:04 +0000 2019 (#)

Replying to @WhareHauora

Beware that ActionStation will start sending you unrelated emails as a result. They seem to treat “signed something” as opted in to their spam 🙁

(Honest organisations give you a choice to “stay informed” at sign up; ActionStation just has tiny print that they’ll email you 🙁)

Thu Dec 19 00:26:51 +0000 2019 (#)

Replying to @WhareHauora

There’s an opt out link so it’s probably technically legal.

But tiny print that you agreed to “general communications” and “marketing and fundraising communications” with no positive opt in is prettt non-consensual.

Thu Dec 19 20:48:26 +0000 2019 (#)

RT @blenster: My friend @deviantollam drops a lot of knowledge about how critical attitude and "soft skills" are in the industry/life in ge…

Fri Dec 20 01:07:14 +0000 2019 (#)

RT @RayRedacted: This is a really great talk. If you are new (or old) to Infosec Twitter, you should totally watch this. Great job, @hac…

Fri Dec 20 01:48:29 +0000 2019 (#)

RT @IanColdwater: "A Compendium of Container Escapes," the Black Hat USA talk by @drraid and @0x7674, was freakin’ AWESOME and really didn’…

Fri Dec 20 02:01:00 +0000 2019 (#)

Replying to @RealSexyCyborg

This video isn’t showing on Tipeee for me when I log in (and I didn’t get the usual Tipeee email notification about it either).

Do you need to do something else to publish it to subscribers Tipeee? Or is it just delayed by the holiday post? 😃

Fri Dec 20 02:53:59 +0000 2019 (#)

Replying to @RealSexyCyborg

That worked — I got an email notification and can see the video. Watching now! Thanks 💚

Sun Dec 22 22:42:40 +0000 2019 (#)

RT @mspowahs: gender of the day: hackintosh

Sun Dec 22 22:52:23 +0000 2019 (#)

RT @PennyRed: A big part of the modern transphobia comes down to panic that if it’s legally and socially easier to be trans, then many more…

Mon Dec 23 00:44:15 +0000 2019 (#)

Replying to @merxplat

I’m doing a talk at the LCA2020 Security and Privacy Miniconf about “Authentication Afterlife”. May I use a screenshot of this tweet in my talk? I think it really captures an aspect what I want to talk about. Please and thanks 💚

Mon Dec 23 00:50:01 +0000 2019 (#)

Replying to @merxplat


Yes, I’m expecting the talk to be recorded. Most LCA Miniconfs are recorded, equipment willing 😃

Mon Dec 23 20:24:35 +0000 2019 (#)

RT @pjf: Just a reminder that depression isn't the same as feeling sad.

Depression can come with feelings of exhaustion, things you normal…

Mon Dec 23 21:27:27 +0000 2019 (#)

Replying to @deviantollam

May I use a screenshot of your tweet in a talk I’m giving about “Authentication Afterlife”? The “satire is dead” context really adds to the article screenshot. Please and thank you :-)

Thu Dec 26 06:06:14 +0000 2019 (#)

Particularly good Wintergartan Wednesday Marble Machine X episode this week, featuring an instrument Martin invented, prototyped by Florian Hu of #NewZealand

Fri Dec 27 03:26:54 +0000 2019 (#)

Insightful talk from Blackhat 2010 about security and surveillance, which is interesting to rewatch with a decade of hindsight.

Especially “choices which aren’t really choices” about whether to use certain technology. (IMHO, if you can’t say no, it’s not consent.)

Fri Dec 27 06:56:36 +0000 2019 (#)

RT @TProphet: Idiocracy is basically a @mikejudge documentary of the future, and it's now available for everyone to watch at the Internet A…

Fri Dec 27 20:40:22 +0000 2019 (#)

#36C3 sessions are streaming online (first recordings are already out!). See the Farplan for what is coming; if you just missed something catch it on the “relive” service.

Fri Dec 27 22:21:31 +0000 2019 (#)

RT @hubmartin: Here's the @bunniestudios talk from this year's #36C3

Fri Dec 27 22:22:06 +0000 2019 (#)

RT @bunniestudios: Can we build trustable hardware? I think it’s possible if we: 1) simplify the hardware 2) verify the entire system, not…

Sat Dec 28 02:10:13 +0000 2019 (#)

Replying to @oe1cxw

Maybe call the second one your “adult” name (like “adult” teeth), and the third one your “wisdom” name?

Or just call the third one your “real name” 😃

PS: “Hacker formerly known as…” comes to mind for pre-renaming period…

PPS: Congratulations!

Sat Dec 28 08:47:58 +0000 2019 (#)

Replying to @voltagex

Recordings have played okay for me, including ones that apparently have three audio tracks (not sure if they have two video tracks). I’ve only tried videos where first audio/video is the one I want to watch though.

Sat Dec 28 20:07:22 +0000 2019 (#)

RT @henrykploetz: Interesting question by Ross Anderson at #36c3 #ada. If you need to design something do be able to provide firmware updat…

Sun Dec 29 09:01:03 +0000 2019 (#)

RT @IanColdwater: Conference organizers: please put the dates and location of your con prominently EVERYWHERE. Put them on the top of your…

Sun Dec 29 09:04:48 +0000 2019 (#)

RT @FaithNaff: Saying toxic masculinity isn't real because masculinity isn't toxic is like saying food poisoning doesn't exist because food…

Mon Dec 30 10:53:11 +0000 2019 (#)

Replying to @__fincham

Yes, the NZ government funded weather forecast site does seem to have a particularly terrible UI these days (as in they changed it from poor UI to a new UI where it’s a huge struggle to find any useful information on the page at all) 🙁

Mon Dec 30 19:31:52 +0000 2019 (#)

RT @bechillcomedian: It was another stressful juggling period. No details, but suffice to say, it was less "I had my work cut out for me,"…

Mon Dec 30 21:40:49 +0000 2019 (#)

I saw “Cats” yesterday. It’s a magical movie. Thanks to @pjf and @minxdragon for being so excited about it. I too would like to see it again!

If you like musicals, or dance, or want to see the future of cinema, go see it, and let yourself dive into the experience 🦋

Mon Dec 30 21:46:40 +0000 2019 (#)

I think “Cats” will end up being a landmark in the way cinema is made, like “The Matrix” was two decades ago, that we’ll look back on in 10-20 years and marvel at how influential it was.

We’re really close to “if you can imagine it, we can make it” (budget permitting!).

Mon Dec 30 23:44:36 +0000 2019 (#)

RT @adrienneleigh: The REAL lesson you should be learning from Y2K is that even genuine goddamn catastrophes can be averted and/or mitigate…

Mon Dec 30 23:55:45 +0000 2019 (#)

RT @SpacecoastPix: Its late, but my vote for aviation photo of the year is this one from the successful deadstick emergency landing of a #C…

Tue Dec 31 00:26:58 +0000 2019 (#)

RT @tpetazzoni: Even more awesome to see that @buildrootorg is actively being used for this kind of bleeding edge @risc_v development! http…

Tue Dec 31 02:12:12 +0000 2019 (#)

RT @TriumphantBass: Fellow men, being secure enough in your masculinity to unabashedly embrace femininity is so powerful.

Not as a joke or…

Tue Dec 31 07:03:02 +0000 2019 (#)

RT @minxdragon: I HOPE climate change is talked about like Y2K. I hope it is fixed through hard work and all becomes a big joke because of…