Stilgherrian (@stilgherrian)

Wentworth Falls NSW AU

The below is an off-site archive of all tweets posted by @stilgherrian ever

April 10th, 2014

cjjosh Dear 122 tweeps who RTd my tweet about @davpope ‘s cartoon, if they come after me, you’re all going down too pic.twitter.com/2LLj9o8mim

via TweetDeck (retweeted on 9:40 PM, Apr 10th, 2014 via Janetter for Mac)

I am of the opinion that I found this week’s Clarke & Dawe to be most amusing. youtube.com/watch?v=FMisBp…

via Janetter for Mac

@garthk Garth, that’s a Hacker News link. Please put your hands where I can see them, and back away from the internet. Nice and slow now.

via Janetter for Mac in reply to garthk

alexeckermann Malcom stands over the NBN. A pillow held firmly against its face and whispers “shh sh. It will be over soon”

via Tweetbot for iOS (retweeted on 8:34 PM, Apr 10th, 2014 via Janetter for Mac)

@snerdish @SnarkyPlatypus Does it bear any hallmarks? And is it solid cyber, or just cyber-plated?

via Janetter for Mac in reply to snerdish

NewtonMark Gtta say this for Malcolm: he’s definite PM material. He’s every bit as skillful at stopping a suit from collapsing as Kevin, Julia or Tone.

via Tweetbot for iOS (retweeted on 8:30 PM, Apr 10th, 2014 via Janetter for Mac)

@SnarkyPlatypus Yeah whatever. At least there wasn’t a cyber in it.

via Janetter for Mac in reply to SnarkyPlatypus

@alexkidman I am happy to absorb your blame. I am your sanit… no, hang on, that’s Prince Charles.

via Janetter for Mac in reply to alexkidman

3. I wrote, with @joshgnosis’ help, “Businesses need to inform users about Heartbleed exposure” zdnet.com/businesses-nee… (More tomorrow, too.)

via Janetter for Mac

2. @Kimota says I inspired his anti-bullshit post “Is Content Marketing Lost in Translation?” jonathancrossfield.com/blog/2014/04/i…

via Janetter for Mac

1. I was in @amworldtodaypm’s report “Heartbleed bug bleeds passwords across the internet” by @will_ock abc.net.au/worldtoday/con…

via Janetter for Mac

I think that it’s now time for me to re-pimp three things that I’ve already pimped today but you might have been busy. Here we go.

via Janetter for Mac

Brilliant_Ads Unfortunate logo for the Swedish paper company “Locum” pic.twitter.com/92HP6YpHb1

via Buffer (retweeted on 8:12 PM, Apr 10th, 2014 via Janetter for Mac)

RT @drearyclocks: I just ate 20 wontons. What have you done with your life lately? [Ate soup, changed the bedsheets.]

via Janetter for Mac

A least Heartbleed is web scale.

via Janetter for Mac

RT @CyberPrefixerAU: Tropical Cyclone Ita upgraded to cybercategory five [Wow. Mauve alert, people! Mauve alert!]

via Janetter for Mac

Not quite what I’d have on my front page during a security scare if I were a bank, @Westpac [smirks] pic.twitter.com/w80ZPYE3q8

via Janetter for Mac

@OaaSvc @R_Chirgwin It matches other activities of the Abbott-Truss government: a straight-up purge.

via Janetter for Mac in reply to OaaSvc

@OaaSvc @R_Chirgwin New CEOs tend to fire management. That’s kind of expected. Wake me when something unexpected happens.

via Janetter for Mac in reply to OaaSvc

@elronxenu @jeamland @jonoabroad Incrementing pointers is basically daylight saving for data, anyway, so it shouldn’t be hard.

via Janetter for Mac in reply to elronxenu

RT @R_Chirgwin: What he always said he’d do, but slower, later, and more expensive than he said on April 9 last year. [Oh that. Shocked.]

via Janetter for Mac

Sorry, I’ve been busy today. What’s Malcolm done now?

via Janetter for Mac

alexanderwhite Reading opening statements for union royal commission, it’s clear it’s distinguished from a Liberal Party sub-branch only by its budget.

via Buffer (retweeted on 7:22 PM, Apr 10th, 2014 via Janetter for Mac)

maximilianhils Exploiting heartbleed on clients is for real. My patched mitmproxy pwns Google Drive, OwnCloud and other background services.

via Twitter Web Client (retweeted on 7:14 PM, Apr 10th, 2014 via Janetter for Mac)

@jeamland @jonoabroad @elronxenu Iron spikes are safe unless you impale yourself on them.

via Janetter for Mac in reply to jeamland

@SnarkyPlatypus Il a été une longue et difficile journée. Mon cœur saigne, tout comme l’internet.

via Janetter for Mac in reply to SnarkyPlatypus

Ah, The Joys of ICAC #31! Joe Tripodi: Can I finish my answer?” Counsel: “Sorry, life’s too short.” HT @bkjabour twitter.com/bkjabour/statu…

via Janetter for Mac

@michaelneale Yep yep. I know how to do DSL performance tuning. Haven’t done it in a while, but they’re useful tips to start with.

via Janetter for Mac in reply to michaelneale

iamdevloper Fact: if there was a HTML element called <carousel />, the usage of jQuery by designers would drop by over 85%.

via Tweetbot for Mac (retweeted on 6:58 PM, Apr 10th, 2014 via Janetter for Mac)

@michaelneale That’s a point. There’s 42db attenuation on the downlink, which is… an unhappy situation. I’ll worry about that later.

via Janetter for Mac in reply to michaelneale

@SnarkyPlatypus Bonjour. Aujourd’hui a été extra très super-méga spéciale! L’univers n’a pas assez d’astérisques! Et vous?

via Janetter for Mac in reply to SnarkyPlatypus

@elronxenu @bengrubb I will be listening back to that soon, now that I have sorted out certain internet issues. And comment upon same.

via Janetter for Mac in reply to elronxenu

@rgmerk @jeamland I indeed, I’m not looking for unitary causes from binary distinctions.

via Janetter for Mac in reply to rgmerk

bengrubb “How are we supposed to remember who we logged into in past 2 years, how are mums and dads going to understand This its scare mongering”

via Twitter Web Client (retweeted on 6:22 PM, Apr 10th, 2014 via Janetter for Mac)

Stacks of (Turtle) Wax.

via Janetter for Mac

RT @McDermie: @stilgherrian @jeamland @elronxenu @snerdish Logo. [Damn. Yes. LOGO has turtles. In Forth, everything is a stack. Damn.]

via Janetter for Mac

Crypto cyberturtles! Now there’s an idea! @jeamland @elronxenu @snerdish

via Janetter for Mac

Gawd, you’d have to be such a tragic geek in so many ways to understand my last tweet, eh @jeamland @elronxenu @snerdish?

via Janetter for Mac

What was the language with turtles, @jeamland @elronxenu @snerdish? Oh yes, Forth. OpenSSL in Forth, so crypto is turtles all the way down.

via Janetter for Mac

RT @jeamland: @elronxenu It’s not just space though. It’s more than possible to write safe C. @stilgherrian [What, like “cafe”?]

via Janetter for Mac

RT @jeamland: Hey @stilgherrian, can you do a 9pm Edict so I can do a guest edict? [Yes, yes I can. Very, very soon.]

via Janetter for Mac

Me and @joshgnosis (thanks!) at @zdnetaustralia: “Businesses need to inform users about Heartbleed exposure” zdnet.com/businesses-nee…

via Janetter for Mac

RT @marcuskelson: I sat next to andrew at a press club lunch years ago - it was mesmerising I wanted to touch it. [“The Peacock Effect”.]

via Janetter for Mac

@gattaca I did fuel potential @myrcurial rage with those things the other day. I do how he exploded at them. ;)

via Janetter for Mac in reply to gattaca

RT @Kimota: @stilgherrian Your quite valid grumpiness in a tweet last week inspired my latest post. jonathancrossfield.com/blog/2014/04/i… [Uhoh. Thanks.]

via Janetter for Mac

RT @gattaca: “@securityintern: . @myrcurial is very ranty on tonight’s podcast.” < ruh roh [So, everything much as normal, eh?]

via Janetter for Mac

RT @elronxenu: @stilgherrian Didn’t you just yesterday lay into C for permitting shoddy code? @jeamland [Consistency, hobgoblins, etc.]

via Janetter for Mac

OaaSvc But more seriously, I wonder if @TeslaMotors uses OpenSSL in their on-board systems.

via TweetDeck (retweeted on 5:45 PM, Apr 10th, 2014 via Janetter for Mac)

It’s not the language, surely, @jeamland, but poor work practices that enables shoddy code?

via Janetter for Mac

jeamland Everyone expressing amazement that low-level crypto libraries are still written in C, please tell me what you’d write them in instead.

via Tweetbot for Mac (retweeted on 5:43 PM, Apr 10th, 2014 via Janetter for Mac)

triplejHack The number of teenagers not drinking has risen, from 33% in 2001 to over 50% in 2010. According to National Drug and Alcohol Research Centre

via TweetDeck (retweeted on 5:40 PM, Apr 10th, 2014 via Janetter for Mac)

@samanthamaiden Maybe it could be a new men’s fragrance, though.

via Janetter for Mac in reply to samanthamaiden

@samanthamaiden I grew up on a farm. “A whiff of Peacock” brings back quite specific, unpleasant, memories. Great phrase though.

via Janetter for Mac in reply to samanthamaiden

@AnnPotterHume Ta. Though it’s not an iPhone and I don’t Facebook. Though I am across that problem.

via Janetter for Mac in reply to AnnPotterHume

1. The phone is being my Wi-Fi this week, because my usual is maxed out. 2. The phone has been dropped far, far too many times.

via Janetter for Mac

To those with questions, suggestions and comments about the phone power situation, thanks, but I actually know what the problems are…

via Janetter for Mac

@AUSFestivus @5at5daily I’m thinking of a 10at4, with plenty of weekend reading.

via Janetter for Mac in reply to AUSFestivus

@R_Chirgwin Also, the linen has been delivered. It’s still warm. I may crawl into a laundry bag and cry.

via Janetter for Mac in reply to R_Chirgwin

In further electron-related news, @R_Chirgwin, I just had to start the generator at @bunjaree. It’s !

via Janetter for Mac

RT @scott_thewspot: you are wasting precious electrons with these tweets [Just as you said that, the “spare” phone died. So, yes.]

via Janetter for Mac

“Quotation quiz: Bob Carr or American Psycho’s Patrick Bateman – who said what?” ask@GuardianAusus. Oh well playedtheguardian.com/world/quiz/201…u4

via Janetter for Mac

There won’t be a @5at5daily today, sorry. I’m dealing with that dying phone / switch to spare phone drama. I’ll do a bonus one tomorrow.

via Janetter for Mac

Updating 46 apps on the “spare” phone. Slightly less joy.

via Janetter for Mac

Right. I have enough charge now on a “spare” phone to get it online and even use it as a hotspot to get the laptop online again. Slight joy.

via Janetter for Mac

@ImEddyVahas Sorry, would you like to kinda just fuck off and maybe come back tomorrow with your question worded less aggressively?

via Janetter for Mac in reply to ImEddyVahas

Phone died, battery 0%. Recharge for 5 mins, says it’s at 9%. Turn it on, within 5 mins it’s down to 3% and plummeting, even tho plugged in.

via Janetter for Mac

Disgruntled. I think my phone’s power management skills have pretty much died. Trying to persuade to behave itself now.

via Janetter for Mac

Apologies to ABC @1057darwin, my phone died badly. I’ve just now managed to get it back online.

via Janetter for Mac

@amworldtodaypm @will_ock No dramas, glitches happen. Thanks for the rapid fix.

via Janetter for Mac in reply to amworldtodaypm

@amworldtodaypm @will_ock Oh, um, and if you have the time, the spelling of my own name… [shuffles feet]

via Janetter for Mac

@amworldtodaypm @will_ock Hey “ATTPS” should be “HTTPS” in this story. abc.net.au/worldtoday/con…

via Janetter for Mac

“Heartbleed bug bleeds passwords across the internet”, reports @amworldtodaypm’s @will_ock. [WARNING: Contains me.] abc.net.au/worldtoday/con…

via Janetter for Mac

Ah, The Joys of ICAC #31! Joe Tripodi: Can I finish my answer?” Counsel: “Sorry, life’s too short.” HT @bkjabour twitter.com/bkjabour/statu…

via Janetter for Mac

Writing. Busily. You are all being ignored. (I mean, let’s face it, you’re all pretty useless anyway.)

via Janetter for Mac

Thu plan, updated: Write for @zdnetaustralia; 1615 radio spot; @5at5daily; blog posts; no SEKRIT thing, my plans Heartbleed away; sulk.

via Janetter for Mac

explanoit The difference between you and me is that my weirdness is marketable, yours is just tragic.

via Twitter for iPhone (retweeted on 12:47 PM, Apr 10th, 2014 via Janetter for Mac)

@riskybusiness That said, @MalwareJake wasn’t pulling any punches in the SANS ISC briefing a couple hours ago.

via Janetter for Mac in reply to riskybusiness

@riskybusiness Well I’m not arguing for Schneier’s description either.

via Janetter for Mac in reply to riskybusiness

@riskybusiness Hey, it’s what the man said. [Shrugs.] I am merely a paste-bunny. He’s not usually prone to hyperbole.

via Janetter for Mac in reply to riskybusiness

“Probability is close to one that every target has had its private keys extracted by multiple intelligence agencies” schneier.com/blog/archives/…

via Janetter for Mac

Bruce Schneier on Heartbleed: “‘Catastrophic’ is the right word. On the scale of 1 to 10, this is an 11.” schneier.com/blog/archives/…

via Janetter for Mac

Tim_Beshara With or without beetroot? RT@Kate_McClymont Kelly said Tripodi arrived at his Wellington house, unannounced, with a hamburger & a coffee

via Twitter Web Client (retweeted on 12:26 PM, Apr 10th, 2014 via Janetter for Mac)

bjmay “We have no evidence of a Heartbleed breach” = “We don’t really understand how the vulnerability actually worked”

via Twitter for Android (retweeted on 12:18 PM, Apr 10th, 2014 via Janetter for Mac)

NSW @BOCSAR is on the Twitter. Do follow them, Politicians, for actual facts about crime, not the rubbish you generally feed yourselves.

via Janetter for Mac

Also out, “An update of long-term trends in property and violent crime in New South Wales: 1990-2013” bocsar.nsw.gov.au/agdbasev7wr/_a… (PDF)

via Janetter for Mac

Official “NSW Recorded Crime Statistics 2013” from BOCSAR has just been published. Facts, sweetie, facts! bocsar.nsw.gov.au/bocsar/mr_rcs2…

via Janetter for Mac

Hey @ChrisGatford, planning anything in New Zealand? Want a T-55? Of course you do. trademe.co.nz/motors/used-ca… HT @nzben via @juhasaarinen

via Janetter for Mac

pourmecoffee Heartbleed security flaw is very serious. This is your moment, AOL Desktop. The comeback starts now!

via TweetDeck (retweeted on 12:08 PM, Apr 10th, 2014 via Janetter for Mac)

Jeevesmeister @bitcoin_txt “Fuck dogecoin man… nothing but uneducated retards killing the value of the currency. Have fun burning down your space ship…..”

via Twitter Web Client (retweeted on 11:59 AM, Apr 10th, 2014 via Janetter for Mac)

geneweingarten The worst thing in the world is Klout. Then, LinkedIn. Then it’s a tossup between worldwide infant mortality and seborrhea.

via Twitter Web Client (retweeted on 11:59 AM, Apr 10th, 2014 via Janetter for Mac)

Horse_iOS Despite media reports to the contrary, the Heartbleed SSL bug only affects users that have, for some reason or another, used the internet

via Tweetbot for Mac (retweeted on 11:58 AM, Apr 10th, 2014 via Janetter for Mac)

@conwaytb @abcradionational I generally try to say “Talk to your IT advisors” for advice specific to your needs. But people want recipes.

via Janetter for Mac in reply to conwaytb

@conwaytb It’s not a “What should end users do?” kind of program.

via Janetter for Mac in reply to conwaytb

I just recorded a few comments about Heartbleed with @will_ock for ABC @amworldtodaypm, to air on this lunchtime’s program.

via Janetter for Mac

@pascalg15 Thanks. FYI, a recording of the updated version I delivered on Monday will be posted on the weekend.

via Janetter for Mac in reply to pascalg15

@dananimal Nope, didn’t catch the test server’s URL, sorry.

via Janetter for Mac in reply to dananimal

I’ve got WAY too many tweets to respond to personally, but thanks for all the refinements and suggestions.

via Janetter for Mac

The full presentation video will be posted by SANS ISC by 1500 ET Thursday, so early Friday morning Australian time.

via Janetter for Mac

[OK, folks, there’s no value in trying to live-tweet a fast-moving demo. That’s the key facts from this briefing anyway.]

via Janetter for Mac

[Hah! People are now hitting the demo server with exploits. “Hi Jake!” appearing in the server memory. Class.]

via Janetter for Mac

[The presenter is now doing a live demo, which I shan’t tweet. But pen testers are already hitting the demo server.]

via Janetter for Mac

Here’s a Snort IDS detection rule to detect abnormally long SSL heartbeats and treat them as bad. pic.twitter.com/HeW4gbEhFD

via Janetter for Mac

Don’t trust your developers. Some have been known to, um, change library names. pic.twitter.com/RfFGtiXKgK

via Janetter for Mac

Linux? Patched already? Run this command line to find processes still linked to the old binaries. pic.twitter.com/p2CrDrzlca

via Janetter for Mac

How to find out whether the software you write is vulnerable. Harder in Windows. pic.twitter.com/DHyO9zd5Ni

via Janetter for Mac

[Remember, this presentation is for infosec practitioners. Some work on highly sensitive networks. The JOB is paranoia.]

via Janetter for Mac

“Unless you see a big sign up there saying ‘We were never vulnerable to Heartbleed’,” assume a site may be dodgy.

via Janetter for Mac

[I won’t be able to provide support for people or answer questions while I’m tweeting this. I’ll then have to start writing.]

via Janetter for Mac

Everyone should go into the advanced settings of their web browser and turn on the checks to ensure certificates are valid.

via Janetter for Mac

That is, don’t enter your sites or your clients into filippo.io, just in case their intentions are impure.

via Janetter for Mac

You can check if a site is potentially vulnerable at filippo.io, but get the code off Github and run it yourself.

via Janetter for Mac

Presenter is giving a shout-out to LastPass for issuing an excellent security advisory.

via Janetter for Mac

There’s MORE bad news, though, some of which is relevant for Windows developers. pic.twitter.com/OJX1Ybzd8g

via Janetter for Mac

“If you run an all-Windows shop, today is the day Windows saved you from a security problem instead of causing it.”

via Janetter for Mac

Note that Windows is not vulnerable to client-side attacks, Microsoft IIS not vulnerable to server-attacks.

via Janetter for Mac

Presenter suggests avoiding public Wi-Fi networks that offer a “secure” connection for now.

via Janetter for Mac

Heartbleed also affects CLIENT side, and there’s lots we don’t know about that yet. pic.twitter.com/K87gU2cCt4

via Janetter for Mac

“No web server, so I’m safe right? Wrong.” pic.twitter.com/cYKYa19kAY

via Janetter for Mac

Another reminder that attackers record encrypted data and keep it in the hope they can decrypt later. This will now happen.

via Janetter for Mac

“We have to assume we’re not the only people who found the bug”, because two different people did just find it.

via Janetter for Mac

Presenter has gotten 5 sales calls from vendors today, oblivious to the fact he’s busy. “Shame on every freaking one of you.”

via Janetter for Mac

What should vendors do? COMMUNICATE! Presenter is scathing of vendors who aren’t issuing advisories. pic.twitter.com/WMdsw8qee0

via Janetter for Mac

Presenter suggests there’s little point logging, ‘“approximately the entire internet” is already scanning you, no need to watch.

via Janetter for Mac

Attacks are NOT logged, which is of course a problem, though there are now patches for NGINX that allow attack logging.

via Janetter for Mac

[Presenter showing memory dumps, saying he didn’t gather these “Cos I’m too pretty for jail’.”]

via Janetter for Mac

[I won’t tweet the code description, but I note that earlier the presenter was scathing of the code quality.]

via Janetter for Mac

So this is how it works (and don’t ask why there are two ‘length’ fields). pic.twitter.com/9db99DnLyr

via Janetter for Mac

A memory exposure bug like this can turn an exploit taking random pot-shots at another vulnerability into an accurate shoot. Oh.

via Janetter for Mac

There may also be pointers to other data structures, and that info may be used to defeat other data protection mechanisms.

via Janetter for Mac

What will be in that memory somewhere are private encryption keys, usernames and passwords, session IDs, your private data.

via Janetter for Mac

But the attacker can keep requesting 64k chunks again and again, and that’s a lot of memory to get hold of.

via Janetter for Mac

The bug allows the attacker to extract 64k chunks of memory from the target, but they have no control over which chunk they get.

via Janetter for Mac

Heartbleed vulnerability can be triggered by an attack on a vulnerable SSL server early in the connection, before logging in.

via Janetter for Mac

What’s important is that the bad guys can extract the keys now and use them to decrypt any data they’ve recorded in the past.

via Janetter for Mac

Here’s the tl;dr version of the message in one slide. pic.twitter.com/Dd6kwiuMLt

via Janetter for Mac

This is round 2 of “Heartbleed: What you need to know”. We have been promised a vulnerable server online to attack if we want.

via Janetter for Mac

@nerd___rage Scroll back. I’ve tweeted it heaps already.

via Janetter for Mac in reply to nerd___rage

@Pratt_Steve Exactly. It’s assumed everyone has the cultural literacy of a sport’s specific culture, which means it’s opaque to new people.

via Janetter for Mac in reply to Pratt_Steve

I’ll be tweeting key facts from this SANS ISC briefing with the obvious hashtag. They’re sorting their video feeds now.

via Janetter for Mac

So @MalwareJake’s presentation will begin in a few minutes. The tone is being set now. pic.twitter.com/9Bx2RKilsi

via Janetter for Mac

I have just filled my shoes with apple juice.

via Janetter for Mac

lilianedwards@xor: This last year has shown you’re safe as long as you don’t use SSL, Apple devices, GnuTLS, NIST standards, e-mail, or cell phones.” Ha

via Mobile Web (M5) (retweeted on 10:00 AM, Apr 10th, 2014 via Janetter for Mac)

@loupascale Yep. and up here the birds’ rain-alarm happens earlier than it does down in the city. 20-30 mins ahead of rain, not 10 mins.

via Janetter for Mac in reply to loupascale

It’s definitely going to rain here. A few minutes ago the rosellas did a rain-coming alarm and fled, as did finches. Now I can smell it.

via Janetter for Mac

Thinking aloud, @BreakfastNews, sports reporters assume everyone knows team nicknames, but we assume people don’t know their own tech tools?

via Janetter for Mac

@scott_thewspot Yes indeed. There will be plenty who forget that bit, I’m sure.

via Janetter for Mac in reply to scott_thewspot

@markaufflick @joshgnosis @chrisjrn @PeteLawler Yes, @BreakfastNews, when DID encryption become “scrambling”? Infantalisation FTL. Sulks.

via Janetter for Mac in reply to markaufflick

BuzzFeedAndrew Before Game of Thrones, no one named babies “Khaleesi”. In 2012, it beat the name “Betsy”. vox.com/e/5354291

via Twitter for Websites (retweeted on 9:47 AM, Apr 10th, 2014 via Janetter for Mac)

CosmicRami Um … this is getting awkward. RT @MotherJones: OkCupid’s CEO donated to an anti-gay campaign once, too bit.ly/1mYtOKj

via TweetDeck (retweeted on 9:45 AM, Apr 10th, 2014 via Janetter for Mac)

phil_torres For the record, yes I did just take a selfie video while milking a transgenic goat. instagram.com/p/mllLUmKy4x/

via Twitter for iPhone (retweeted on 9:27 AM, Apr 10th, 2014 via Janetter for Mac)

These guys are level-headed. SANS ISC doesn’t go to INFOCON Yellow and call for “global and immediate action” without good reason.

via Janetter for Mac

There’s so much demand for the SANS ISC Heartbleed briefing they’ve had to set up a virtual “overflow room”.

via Janetter for Mac

mappingbabel You can rent a server for $5 a month aka one pint of beer in Central London. = The future is here, it’s just intensely boring.

via Twitter Web Client (retweeted on 9:19 AM, Apr 10th, 2014 via Janetter for Mac)

The SANS Internet Storm Centre (ISC) briefing on OpenSSL Heartbleed starts in one hour. sans.org/webcasts/opens…

via Janetter for Mac

I need to cook some shredded cow now, so I will come back and respond to your very important tweets after I’ve done that, OK?

via Janetter for Mac

RT @yewenyi: According to Microsoft the Easter Monday holiday is on Sunday 13 April. [Why are you so fussy?]

via Janetter for Mac

_youhadonejob Think I’ll give that a miss. pic.twitter.com/Pl5lSaTa0m

via Twitter for iPhone (retweeted on 8:59 AM, Apr 10th, 2014 via Janetter for Mac)

RT @joshgnosis: I’ll be on @BreakfastNews shortly to talk about [Josh got the short straw.]

via Janetter for Mac

@mpesce @yinettesys @bengrubb I’m seeing a substantial spike in port-22 activity from China today, but it does come in waves anyway.

via Janetter for Mac in reply to mpesce

May I request, @davpope, that the three posters depicted in your amusing drawing today be made available as actual posters?

via Janetter for Mac

I say, Mr @davpope is even more better than many usual times today. Bravo. bit.ly/PSKwgs pic.twitter.com/6MXIneHsib

via Janetter for Mac

mikko Hey sysadmins…while fixing Heartbleed, also review your cert settings and consider implementing PFS and even 2FA. f-secure.com/weblog/archive…

via Twitter for Websites (retweeted on 8:26 AM, Apr 10th, 2014 via Janetter for Mac)

EFF Please be careful about phishing emails masquerading as Heartbleed password change notices. If unsure, type the URL for the site by hand.

via Thingie (retweeted on 8:21 AM, Apr 10th, 2014 via Janetter for Mac)

Drones with tasers, eh? Just a reminder, my birthday is coming up soon and if you’re not sure what to get me… bbc.com/news/technolog…

via Janetter for Mac

Every time I launch GoToMeeting a part of my soul dies. And not just a little part, either, like I’d just taken up crack or wife-beating.

via Janetter for Mac

WillMcAvoyACN If you want to know just how many copy editors are out of work in America currently, just make a typo anywhere on the internet.

via Twitter Web Client (retweeted on 8:13 AM, Apr 10th, 2014 via Janetter for Mac)

Thu plan, draft: 1015 SANS Heartbleed briefing; write for @zdnetaustralia; blog posts x 3; will I ever get to finishing the SEKRIT write-up?

via Janetter for Mac

“What WordPress site owners need to do about the HeartBleed vulnerability”, from Wordfence. wordfence.com/blog/2014/04/w…

via Janetter for Mac

SANS sent a FLASH NewsBites, “issued only when a security event demands global and immediate action”. Briefing soon. sans.org/webcasts/opens…

via Janetter for Mac

So, you know, OpenSSL CLIENTS can be vulnerable to Heartbleed. Here’s a list so far. It’s scary. security.stackexchange.com/questions/5524…

via Janetter for Mac

SANS Institute’s Internet Storm Centre (ISC) on Yellow Alert. Lots of vendor notifications coming thru. isc.sans.edu/forums/diary/H…

via Janetter for Mac

“Heartbleed OpenSSL bug: FAQ for Mac, iPhone and iPad users”, by the inimitable @gcluley intego.com/mac-security-b…

via Janetter for Mac

@LaTrioli @BreakfastNews Maybe @dobes is even awake enough to do some television?

via Janetter for Mac in reply to LaTrioli

JazRignall 30 yrs ago, most game ads were walls of text and rubbish pictures. Some, however, bucked the trend. Like this one. pic.twitter.com/hbVdPmeTBJ

via Twitter Web Client (retweeted on 7:34 AM, Apr 10th, 2014 via Janetter for Mac)

eastdakota Reporter just asked: “So is sorta like the plot of that Sandra Bullock movie The Net?” Actually, kinda yeah.

via Echofon (retweeted on 7:33 AM, Apr 10th, 2014 via Janetter for Mac)

@LaTrioli @BreakfastNews I’m up at Wentworth Falls, 100km from Sydney, so can’t television today, sorry. @lukehopewell? @joshgnosis?

via Janetter for Mac in reply to LaTrioli

@LaTrioli … so any service that’s had to patch that hole should be recommending password change, yes.

via Janetter for Mac in reply to LaTrioli

@LaTrioli It’s a real threat, the danger with this one being that it’s impossible to know whether an attacker has gotten in or not…

via Janetter for Mac in reply to LaTrioli

Thu plan, draft: Write for @zdnetaustralia; blog posts x 3; complete, finally, the SEKRIT project write-up that I haven’t gotten too; hide.

via Janetter for Mac

@scottcarson1957 @mscott Children need a good scare every now and then. It [blink] builds character. Never [blink] did me any [blink] harm.

via Janetter for Mac in reply to scottcarson1957

I’ll probably have more to say about our responses to Heartbleed in my @zdnetaustralia column today, but we’ll see.

via Janetter for Mac

Me at @crikey_news yesterday: “Heartbleed reveals a big hole in Australia’s cybersecurity strategy” crikey.com.au/2014/04/09/hea…

via Janetter for Mac

Right, now onto more serious matters…

via Janetter for Mac

SnarkyPlatypus An important reminder from Southwark Council. pic.twitter.com/tbOS4EFB4s

via Twitter for Android (retweeted on 7:18 AM, Apr 10th, 2014 via Janetter for Mac)

owillis these are all the black people in the us senate pic.twitter.com/QI0uEzEjwe and its an unusually high number, historically.

via Twitter Web Client (retweeted on 7:15 AM, Apr 10th, 2014 via Janetter for Mac)

Look, @mscott, you know, in your heart of hearts, that this is what Australia needs every morning. Right, people? pic.twitter.com/1iNkbDDuKE

via Janetter for Mac

Looking back at my tweets so far today, that’s a workshopped-out TV show right there, isn’t it. “The 7am Edict”, perhaps?

via Janetter for Mac

“[US] Senator Threatens To Block Nominee For Top Climate Post Because She Accepts Climate Science” thinkprogress.org/climate/2014/0… HT @misskylie77

via Janetter for Mac

Re-listening to The Doors’ “The End” reminds me what a rambling, pretentious and utterly self-indulgent wank it is. youtube.com/watch?v=JSUIQg…

via Janetter for Mac

@gusworldau Bien sûr. Il ya des traditions à respecter.

via Janetter for Mac in reply to gusworldau

Let it roll around on your tongue. “George Brandis race hate law.” Brandis. Race hate. He’ll never be able to break that nexus now. Sweet.

via Janetter for Mac

Best thing about? The phrase “George Brandis race hate law”. Magnificent propaganda value, that, like Nixon’s “I am not a crook.”

via Janetter for Mac

“Liberals break ranks against George Brandis race hate law” smh.com.au/federal-politi…

via Janetter for Mac

RT @phbarratt: Have to laugh when Americans bang on about international law. theage.com.au/national/-36ds… [Smirks.]

via Janetter for Mac

Apportez-moi plus d’acide sulfurique, vous les bâtards, et d’un entonnoir!

via Janetter for Mac

While the song is originally by The Doors youtube.com/watch?v=JSUIQg… the cover by Nico is obviously more cheerful* youtube.com/watch?v=htemHK…

via Janetter for Mac

RT @llament: We just have to keep out of Thor’s way [Thor has GPS and drones now, so you are so fucked.]

via Janetter for Mac

@SnarkyPlatypus Bonjour. Comme à chaque expérience la première étape consiste à dissoudre tout dans l’acide sulfurique, puis ouvrez l’éther.

via Janetter for Mac in reply to SnarkyPlatypus

It’s Thursday and there’s a fair chance that I won’t kill you. But someone or something else might. With a bit of luck.

via Janetter for Mac