Take Back Your Data - The BigTech Breakaway<p><span class="h-card" translate="no"><a href="https://social.heise.de/@ct_Magazin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ct_Magazin</span></a></span> </p><p>IT-Sicherheit: Reaktiv oder endlich proaktiv?</p><p>Jahrzehntelang rennen wir Sicherheitslücken hinterher, während Hacker immer neue Schwachstellen ausnutzen. Mathematisch gehärtete Architekturen & Zero-Trust-Modelle könnten die Lösung sein – aber warum setzen wir sie nicht konsequent um?</p><p>🔹 Patch-Zyklus: ewige Abwehr oder modernes Design?<br>🔹 Digitale Souveränität vs. Big-Tech-Abhängigkeit?<br>🔹 Wie können neue Security-Architekturen für IT-Systeme aussehen?</p><p>Was meint ihr? Sind wir zu sehr in veralteten Sicherheitsmodellen gefangen? 🤔</p><p><a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://infosec.exchange/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IT</span></a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/CloudComputing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudComputing</span></a> <a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://infosec.exchange/tags/Heise" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Heise</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
pawb.fun is one of the many independent Mastodon servers you can use to participate in the fediverse.
This instance aimed at any and all within the furry fandom, though anyone is welcome! We're friendly towards members of the LGBTQ+ community and aiming to offer a safe space for our users.
Administered by:
Server stats:
297active users
pawb.fun: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.6+glitch
#ZeroTrust
1 post · 1 participant · 0 posts today
Take Back Your Data - The BigTech Breakaway<p>📢 BigTech built walls. We break them.<br>🔥 Decentralized. Secure. Untouchable.<br>💡 BigTech refused to build a world with 100% privacy & security – because it would end their business model.<br>💥 If we don’t act now, their control will be irreversible.</p><p>🚀 This is already bigger than they expected – and growing every day.<br>💡 If you believe in real digital sovereignty, prove it. Boost this. Spread the word. Join the movement.</p><p>📩 Want to contribute? Secure contact:<br>🔹 Telegram: @Tbyd2025<br>🔹 Follow us on LinkedIn: linkedin.com/company/take-back-your-data</p><p><a href="https://infosec.exchange/tags/BreakBigTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BreakBigTech</span></a> <a href="https://infosec.exchange/tags/100PercentPrivacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>100PercentPrivacy</span></a> <a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://infosec.exchange/tags/DataSovereignty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataSovereignty</span></a></p>
XWiki SAS<p>After 10 years of <span class="h-card" translate="no"><a href="https://fosstodon.org/@cryptpad" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cryptpad</span></a></span> development, we're humbled by users who've found true digital privacy with our solution. </p><p>No need to brag - their testimonials speak volumes about what we've built.</p><p>Check out our new CryptPad Cloud service: <a href="https://xwiki.com/en/Blog/get-started-with-cryptpad-cloud/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">xwiki.com/en/Blog/get-started-</span><span class="invisible">with-cryptpad-cloud/</span></a></p><p><a href="https://fosstodon.org/tags/privacymatters" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacymatters</span></a> <a href="https://fosstodon.org/tags/Secure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Secure</span></a> <a href="https://fosstodon.org/tags/Collaboration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Collaboration</span></a> <a href="https://fosstodon.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://fosstodon.org/tags/ZeroKnowledge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroKnowledge</span></a> <a href="https://fosstodon.org/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a> <a href="https://fosstodon.org/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> <a href="https://fosstodon.org/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>technology</span></a></p>
rival<p>I have to say it again.<br><a href="https://mastodon.social/tags/PairDrop" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PairDrop</span></a> is amazing.<br><a href="https://pairdrop.net/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">pairdrop.net/</span><span class="invisible"></span></a><br>And looking their FAQs, seems pretty reliable... <a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/FreeSoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FreeSoftware</span></a> <a href="https://mastodon.social/tags/Secure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Secure</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/P2P" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>P2P</span></a> <a href="https://mastodon.social/tags/WebRTC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebRTC</span></a> <a href="https://mastodon.social/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://mastodon.social/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> <a href="https://mastodon.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.social/tags/MacOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MacOS</span></a> <a href="https://mastodon.social/tags/GNU" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GNU</span></a> <a href="https://mastodon.social/tags/LibreSoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LibreSoftware</span></a> <a href="https://mastodon.social/tags/Sharing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sharing</span></a> <a href="https://mastodon.social/tags/GPL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GPL</span></a> <a href="https://mastodon.social/tags/nodejs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nodejs</span></a> <a href="https://mastodon.social/tags/PWA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PWA</span></a> <br><a href="https://github.com/schlagmichdoch/pairdrop/blob/master/docs/faq.md" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/schlagmichdoch/pair</span><span class="invisible">drop/blob/master/docs/faq.md</span></a><br>Contributing Guidelines:<br><a href="https://github.com/schlagmichdoch/PairDrop/blob/master/CONTRIBUTING.md" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/schlagmichdoch/Pair</span><span class="invisible">Drop/blob/master/CONTRIBUTING.md</span></a><br><a href="https://mastodon.social/tags/Donate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Donate</span></a><br><a href="https://buymeacoffee.com/pairdrop" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">buymeacoffee.com/pairdrop</span><span class="invisible"></span></a><br><a href="https://mastodon.social/tags/tools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tools</span></a> <a href="https://mastodon.social/tags/webtools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>webtools</span></a> <a href="https://mastodon.social/tags/favs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>favs</span></a> <a href="https://mastodon.social/tags/recommendations" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>recommendations</span></a></p>
Tailscale<p>We worked with 2GuysTek on this video, and he loved Tailscale so much… he switched! 🔥</p><p>See why he made the move and how Tailscale changed the way he connects.</p><p>📺 Watch here: youtu.be/yGWVYGUU6Pg</p><p><a href="https://hachyderm.io/tags/Tailscale" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tailscale</span></a> <a href="https://hachyderm.io/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a> <a href="https://hachyderm.io/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://hachyderm.io/tags/Networking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Networking</span></a></p>
Paul Sanders 😎<p>Fancy some typical <a href="https://infosec.exchange/tags/linkedin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linkedin</span></a> posts about <a href="https://infosec.exchange/tags/Yobah" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Yobah</span></a>? </p><p>It’ll be written to fit into the algorithm, but you might find some cool info or news. Most of my upcoming <a href="https://infosec.exchange/tags/blog" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>blog</span></a> posts on <a href="https://infosec.exchange/tags/iam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iam</span></a>, <a href="https://infosec.exchange/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a> and <a href="https://infosec.exchange/tags/entraID" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>entraID</span></a> will be posted here first.</p><p>Would love it if you could drop us a follow :)</p><p><a href="https://www.linkedin.com/company/the-yobah-network/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">linkedin.com/company/the-yobah</span><span class="invisible">-network/</span></a></p>
Paul Sanders 😎<p>Think it’s time to update my <a href="https://infosec.exchange/tags/introduction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>introduction</span></a> post. </p><p>Hi! </p><p>I’m a <a href="https://infosec.exchange/tags/strategy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>strategy</span></a> <a href="https://infosec.exchange/tags/architect" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>architect</span></a> by trade, focusing mostly on <a href="https://infosec.exchange/tags/iam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iam</span></a> and <a href="https://infosec.exchange/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a> - albeit a long history in <a href="https://infosec.exchange/tags/infrastructure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infrastructure</span></a> architecture. Cut my teeth as it were during the virtualisation revolution (I feel older than that 😂) </p><p>Prior to that, I did desktop builds using Norton ghost and then <a href="https://infosec.exchange/tags/sccm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sccm</span></a>.</p><p>I live in <a href="https://infosec.exchange/tags/manchester" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>manchester</span></a>, <a href="https://infosec.exchange/tags/uk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>uk</span></a> and started <a href="https://infosec.exchange/tags/Yobah" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Yobah</span></a> - a boutique <a href="https://infosec.exchange/tags/consultancy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>consultancy</span></a> working on strategy transformation.</p><p>Feel free to reach out and say hi!</p>
benzogaga33 :verified:<p>NAS Synology – Accès réseau Zero Trust (ZTNA) avec Twingate : oubliez votre VPN <a href="https://www.it-connect.fr/nas-synology-acces-reseau-zero-trust-ztna-avec-twingate/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">it-connect.fr/nas-synology-acc</span><span class="invisible">es-reseau-zero-trust-ztna-avec-twingate/</span></a> <a href="https://mamot.fr/tags/AdministrationR%C3%A9seau" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AdministrationRéseau</span></a> <a href="https://mamot.fr/tags/Cybers%C3%A9curit%C3%A9" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersécurité</span></a> <a href="https://mamot.fr/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://mamot.fr/tags/Synology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Synology</span></a> <a href="https://mamot.fr/tags/NAS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NAS</span></a> <a href="https://mamot.fr/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a></p>
benzogaga33 :verified:<p>Le Zero Trust Network Access (ZTNA) pour les débutants <a href="https://www.it-connect.fr/zero-trust-network-access-ztna-pour-les-debutants/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">it-connect.fr/zero-trust-netwo</span><span class="invisible">rk-access-ztna-pour-les-debutants/</span></a> <a href="https://mamot.fr/tags/AdministrationR%C3%A9seau" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AdministrationRéseau</span></a> <a href="https://mamot.fr/tags/Pourlesd%C3%A9butants" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Pourlesdébutants</span></a> <a href="https://mamot.fr/tags/Cybers%C3%A9curit%C3%A9" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersécurité</span></a> <a href="https://mamot.fr/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://mamot.fr/tags/R%C3%A9seau" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Réseau</span></a> <a href="https://mamot.fr/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a></p>
HiSolutions<p>𝗭𝗲𝗿𝗼 𝗧𝗿𝘂𝘀𝘁 𝗮𝗹𝘀 𝗻𝗲𝘂𝗲𝗿 𝗠𝗮ß𝘀𝘁𝗮𝗯 𝗳ü𝗿 𝗱𝗲𝗻 𝗜𝗧-𝗚𝗿𝘂𝗻𝗱𝘀𝗰𝗵𝘂𝘁𝘇? <br>Perspektivisch wird sich der IT-Grundschutz schrittweise auf die Zero-Trust-Architektur (ZTA) als Prinzip der Informationssicherheit ausrichten. Unsere Experten Andreas G. Barke und Volker Tanger benennen in ihrem Artikel in der aktuellen kes - Zeitschrift für Informations-Sicherheit, warum man Zero Trust benötigt, was das ZTA-Kernprinzip ist und wie sich der IT-Grundschutz künftig in dieser Richtung weiterentwickeln könnte. Hier die Essentials ihres Fachbeitrags: </p><p>🔒 Warum Perimeterschutz nicht mehr ausreicht: </p><p>Angriffe wie SolarWinds, Log4Shell und der Hafnium-Exploit zeigen: Das traditionelle Perimeter-Sicherheitsmodell stößt an seine Grenzen. Netzwerke, Geräte und sogar vertrauenswürdige Systeme gelten heute als potenziell kompromittiert. Der Fokus muss sich weg vom Netzwerk und hin zu den Daten und deren Schutz verlagern. </p><p>💡 Zero Trust: Vertrauen ist keine Option </p><p>Eine Zero Trust Architektur (ZTA) ersetzt implizites Vertrauen durch rigorose, kontinuierliche Authentifizierung und Verifizierung – getreu dem Prinzip „Never trust, always verify.“ Jede Verbindung zwischen Nutzenden und Ressourcen erfolgt im 1:1-Verhältnis – ohne Zwischeninstanzen wie externe Trust-Broker oder Identity-Provider. </p><p>🛡️ IT-Grundschutz als Basis: </p><p>Der IT-Grundschutz bietet bereits wichtige Bausteine, die eine ZTA unterstützen können, etwa das Prinzip der minimalen Rechtevergabe, Identitäts- und Zugriffsmanagement oder Maßnahmen zur Überwachung und Protokollierung. Um ZTA vollständig zu integrieren, sind jedoch weitere tiefgehende technische und organisatorische Anpassungen erforderlich. </p><p>📌 Von Zero Trust zu Minimal Trust: </p><p>Da in der Praxis eine völlige Abkehr von Drittanbietern oft unrealistisch ist, sollte der zutreffendere Begriff „Minimal Trust“ genutzt werden: Vertrauen wird auf das absolut Notwendige reduziert, Abhängigkeiten entlang der Lieferkette werden minimiert. </p><p>📖 Zum kes-Artikel (Abo-Vollversion): ▶️ <a href="https://www.kes-informationssicherheit.de/print/titelthema-festplatten-dietriche-zur-extraktion-verschluesselter-daten/zero-trust-ein-neuer-massstab-fuer-den-it-grundschutz/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">kes-informationssicherheit.de/</span><span class="invisible">print/titelthema-festplatten-dietriche-zur-extraktion-verschluesselter-daten/zero-trust-ein-neuer-massstab-fuer-den-it-grundschutz/</span></a> </p><p><a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://infosec.exchange/tags/MinimalTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MinimalTrust</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/ITGrundschutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITGrundschutz</span></a> <a href="https://infosec.exchange/tags/BSI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSI</span></a> <a href="https://infosec.exchange/tags/Informationssicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Informationssicherheit</span></a></p>
Kevin Beaumont<p>When I was at Microsoft, we used Defender AV to deploy an early version of Exchange On-premises Mitigation Tool to hundreds of thousands of Windows Server boxes worldwide, targeted at specific boxes. </p><p>It installed a whole bunch of stuff. </p><p>Nobody noticed. It’s not even publicly documented where the installer was dropped etc via the Defender update. There’s not on single blog or tweet describing how it was done on endpoints in reference to Defender. </p><p><a href="https://cyberplace.social/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a> <a href="https://infosec.exchange/@RGB_Lights/113294365194340684" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@RGB_Lights/1</span><span class="invisible">13294365194340684</span></a></p>
benzogaga33 :verified:<p>Une résilience des données « Zero Trust » doit placer la sauvegarde au centre <a href="https://goodtech.info/une-resilience-des-donnees-zero-trust-doit-placer-la-sauvegarde-au-centre/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">goodtech.info/une-resilience-d</span><span class="invisible">es-donnees-zero-trust-doit-placer-la-sauvegarde-au-centre/</span></a> <a href="https://mamot.fr/tags/Tribunes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tribunes</span></a>&Opinions <a href="https://mamot.fr/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a></p>
Kellic Tiger :verified_paw:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@arstechnica" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>arstechnica</span></a></span> Dear CEO who has a track record now of doing this at multiple companies. Go to hell. You are the problem. Along with, as said before <a href="https://tiggi.es/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> allowing software access that has no damn business acting as a device driver. Sure you can throw your hands up in the air and scream SECURITY! Well this is what you get now when perceived security it more important that stability. <br>I legit hope this comes back to bite Microsoft in the ass as this is no different then the rootkit crapfast that happened back in what? 2010?<br><a href="https://tiggi.es/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> should be applied to all software outside physical device drivers that are signed by Microsoft. And if you want to allow 3rd party that's...fine.....but there should be serious hoops to jump through to enable that, up to and including clicking through a disclaimer about allowing shit to run in kernel mode.<br>Because this is going to happen again. It might be another 12 years, but it will happen again until something changes.</p>
Jan ☕🎼🎹☁️🏋️♂️<p>A blog post on how to configure a <a href="https://fedi.kcore.org/tags/cloudflare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cloudflare</span></a> <a href="https://fedi.kcore.org/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a> tunnel for <a href="https://fedi.kcore.org/tags/HomeAssistant" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeAssistant</span></a>, and how to use <a href="https://fedi.kcore.org/tags/mtls" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mtls</span></a> <a href="https://fedi.kcore.org/tags/certificates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certificates</span></a> to connect to it from trusted browsers and the <a href="https://fedi.kcore.org/tags/HomeAssistantCompanionApp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeAssistantCompanionApp</span></a> on <a href="https://fedi.kcore.org/tags/Android" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Android</span></a>.</p><p><a href="https://kcore.org/2024/06/28/using-cloudflare-zerotrust-and-mtls-with-home-assistant-via-the-internet/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">kcore.org/2024/06/28/using-clo</span><span class="invisible">udflare-zerotrust-and-mtls-with-home-assistant-via-the-internet/</span></a></p><p>(I have no idea how this works on Apple devices, sorry. If someone wants to sponsor me a device so I can document... 😅 )</p>
diesUndDasMitTassen 🇺🇦<p><span class="h-card" translate="no"><a href="https://mastodon.social/@WinFuture" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>WinFuture</span></a></span> Würde mich nicht wundern, wenn man dann demnächst was liest wie "Aus Versehen hatte ein Update die Funktion Recall aktiviert und die Daten von Millionen User*innen auf Microsoft Server geladen. Das hätte eigentlich nicht passieren dürfen, so der Konzern." 😉🤔 </p><p><a href="https://mastodon.social/tags/windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>windows</span></a> <a href="https://mastodon.social/tags/recall" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>recall</span></a> <a href="https://mastodon.social/tags/datensparsamkeit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>datensparsamkeit</span></a> <a href="https://mastodon.social/tags/datenschutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>datenschutz</span></a> <a href="https://mastodon.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mastodon.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://mastodon.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://mastodon.social/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a></p>
benzogaga33 :verified:<p>Avec Zero Trust DNS, Microsoft veut sécuriser les accès réseau sous Windows 11 <a href="https://www.it-connect.fr/avec-zero-trust-dns-microsoft-veut-securiser-les-acces-reseau-sous-windows-11/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">it-connect.fr/avec-zero-trust-</span><span class="invisible">dns-microsoft-veut-securiser-les-acces-reseau-sous-windows-11/</span></a> <a href="https://mamot.fr/tags/Logiciel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Logiciel</span></a>-OS <a href="https://mamot.fr/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> <a href="https://mamot.fr/tags/Windows11" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows11</span></a> <a href="https://mamot.fr/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a> <a href="https://mamot.fr/tags/DNS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DNS</span></a></p>
Risotto Bias<p>okay, so the XZ backdoor.</p><p>none of the automated tools we're proposing to catch illegitimate artifacts would ever solve a malicious maintainer. how would you even "zero trust framework" that?</p><p>upstreams of upstreams of upstreams</p><p>even if you did unikernels and distroless or single binaries, like you're not going "I have to audit every package update ever made upstream of <a href="https://tech.lgbt/tags/chainguard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>chainguard</span></a>" (because they certainly aren't code reviewing every patch with a team that size)</p><p>or every package included in a rust/cargo build.</p><p>or every patch to golang stdlib</p><p>how on earth would finding that kind of a "they became the maintainer and added the backdoor themselves" actually ever be feasible, as in not bankrupting you?</p><p>vs "we built it with stdlib only, and we monitor stdlib's patches, we have only one upstream" which feels like... no company ever</p><p><a href="https://tech.lgbt/tags/xz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>xz</span></a> <a href="https://tech.lgbt/tags/xzbackdoor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>xzbackdoor</span></a> <a href="https://tech.lgbt/tags/sbom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sbom</span></a> <a href="https://tech.lgbt/tags/zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>zerotrust</span></a></p>
ChiefGyk3D<p>I am starting to organize my home lab work, originally I wanted to use Atlassian Jira and Confluence with my SSO I built but they wanted $42 combined for Access, Jira, and Confluence to make it work where as Notion was $15 for the business plan to setup my SSO with. Everything protected by Jumpcloud and Yubikey and soon adding Twingate for ZeroTrust as well. I am working with <span class="h-card" translate="no"><a href="https://mastodon.matrix.org/@etkecc" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>etkecc</span></a></span> to see about possibly setting up <span class="h-card" translate="no"><a href="https://mastodon.matrix.org/@matrix" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>matrix</span></a></span> with my SSO too. <a href="https://social.chiefgyk3d.com/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.chiefgyk3d.com/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a> <a href="https://social.chiefgyk3d.com/tags/Zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Zerotrust</span></a></p>
ChiefGyk3D<p>I also have reached out to <span class="h-card" translate="no"><a href="https://mastodon.social/@mastohost" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mastohost</span></a></span> for input to see if I can do SAML SSO for my Mastodon server. I hope that becomes a mainline feature from <span class="h-card" translate="no"><a href="https://mastodon.social/@MastodonEngineering" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>MastodonEngineering</span></a></span> especially as governments and companies come to the <a href="https://social.chiefgyk3d.com/tags/Fediverse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fediverse</span></a> <a href="https://social.chiefgyk3d.com/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://social.chiefgyk3d.com/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.chiefgyk3d.com/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroTrust</span></a></p>
ChiefGyk3D<p>Step 0 of my homelab rebuild is done. Identity Provider cleaned up so now my domain is doing SAML SSO with 365 and has a few bookmarks in the SSO user portal for my own needs. Planning to add Notion, Matrix, Doppler, Twingate, AWS, and Slack to the SAML SSO portal soon. I at least setup 365 and Avanan for now and bookmarked Tiktok and Twitch. <a href="https://social.chiefgyk3d.com/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://social.chiefgyk3d.com/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.chiefgyk3d.com/tags/Zerotrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Zerotrust</span></a> <a href="https://social.chiefgyk3d.com/tags/Homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Homelab</span></a> <a href="https://social.chiefgyk3d.com/tags/SSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSO</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload