@jplonie @zdnetaustralia … and, damn it, I now see that I accidentally left out the most scathing comment about Android. Bother.
@jplonie Hah! True. There’s actually a line in that story…
Me at @zdnetaustralia today #2: “Heartbleed soul-search: regulation propsed for critical crypto code” http://t.co/gjLsANIrF4
Me at @zdnetaustralia today #1: “Lagging Android devices vulnerable to Heartbleed” http://t.co/6GAygNKXY6
One last plug of stuff before I fade away for the night…
@NewtonMark One way or another, I suppose, yes.
RT @Lord_Sugar: 11 Apr 1984 was a proud day for me - I launched the Amstrad CPC464. At £199, it made home computing affordable to all http:…
First signs of winter pic.twitter.com/HxfSN8jRqJ
Once more, I have misjudged the timing of my return journey and am in the process of becoming saturated.
AllanCavanagh Seems Wonga are trying to get this image removed from Twitter. Be a shame if loads of people tweeted it. pic.twitter.com/Cdv0o610eT
RT @CyberPrefixerAU: CSIRO develops cyberworld’s first cyberfish-free prawn food [Cyberlicious!]
There’s a chance I may have just imagined that.
Today Tonight: “Cyclone Ita is confounding everyone. What’s the latest?” Reporter: “Well, it’s recording a new single with Dannii Minogue.”
phbarratt Thank you Jetstar for bumping me because your flight was overbooked. So delighted to spend Friday evening at Sydney Airport. Never again.
@hughstephens Thanks. So, no-one at @EnergyAustralia asked “How does this persuade people to give us their money?” Opposite effect here.
Hey @EnergyAustralia, who’s fault is that appalling TVC with the water slide, and do you plan to drown them in a canal as reason dictates?
It appears than Nine News has arranged for some sort of deranged lunatic to report from the Royal Easter Show.
I really should have been a member of the royal family, you know.
Nine News ends that part of their report with “But the Prime Minister did get something right.” Such confidence expressed there.
Oh gawd, Mr Rabbit is doing his MH370 briefing in front of an “Australia: Open for Business” backdrop. How crass.
Yes, @dakami’s commentary on Heartbleed is worth reading. http://t.co/l6YLoP2IUr HT @mikko @BrianHonan
RT @BrianHonan: “@gojomo: the final step of #heartbleed recovery is to call your mother, and advise her to change her maiden name” < & get …
@OaaSvc I believe that’s how it’s done, yes.
@SnarkyPlatypus Je n’ai aucune idée de ce que la «culture» chose est à propos​​. J’ai été très occupé.
@PeteLawler @noreasonspec Sorry, did I do that? You’re right, Pete, that’s inexcusable.
Eating party pies. The best kind of party pies. Free party pies. #atthepub
@SnarkyPlatypus Bonjour. L’univers n’a pas encore été détruit. Cette incompétence est trop lourd à porter. Et vous?
Given that it’s now 1730 AEST on a Friday night, the odds of me saying anything sensible about Heartbleed is plummeting.
RT @gcluley In the wake of Heartbleed, watch out for phishing attacks disguised as password reset emails bit.ly/1hljrx9 [Tell peeps]
RT @noreasonspec XKCD explains Heartbleed in a way we can all get https://t.co/8pbgwgMftV [Yes. Yes they do.]
@elronxenu I know nothing of that, but nevertheless propose the word “smugarama”.
Tools have been downed. A chariot has been summoned.
RT @5at5daily: “5at5 number 32 | 11 April 2014”: Rob Ford, romantic Russians, buzzwords, political cartoons, and more submarines. http://t.…
@rgmerk Thanks for that, Robert. I’ll give it a plug once I’ve had a chance to read it properly. Right now I’m brain-dead.
Regulation of open source software? Cue cyberlibertarian brainsplosion in 3… 2… 1…
@dobes Tell me about it. And there’ll presumably be another one tomorrow. I’ll be keeping an eye open, anyway.
RT @NewtonMark: Schneier: “An upgrade path that involves the trash, a visit to Best Buy, and a credit card.arseh.at/4jxiz54E
@dobes Uhoh, “propsed”? Headline FTL.
Me at @zdnetaustralia yesterday: “Businesses need to inform users about Heartbleed exposure” http://t.co/keE0VF8p6V
Me at @zdnetaustralia earlier: “Lagging Android devices vulnerable to Heartbleed” http://t.co/6GAygNKXY6
Me at @zdnetaustralia: “Heartbleed soul-search: regulation propsed for critical crypto code”, featuring @jameslyne http://t.co/gjLsANIrF4
Thanks to @GreenJ, I have found a special kind of heaven. eatliver.com/russian-dating/ pic.twitter.com/jjzK5EQjZQ
RT @mpesce: SOYLENT CORPORATION ANNOUNCES THEIR NEW PRODUCT pic.twitter.com/9lSEs4M46R [Also, at left, ‘Pat a Pig!’]
br3t #OpenSSL source code review. i.imgur.com/yExHzr7.gif
RT @mpesce: steers! pic.twitter.com/hJra1k0UTW [In which Mr Pesce meets the Senator-Elect from WA and his family.]
Second story filed for @zdnetaustralia. Whew. Friday, eh?
OK, back to the words-for-money thing. I shall return in due course.
ben_hr #breaking RT @TrendsSydney: ‘unconfirmed’ is now trending in #Sydney trendsmap.com/au/sydney
chrisberg tony emerges from the ocean triumphantly holding a black box as the world’s media looks on
troyhunt In case you’re wondering about the sort of data you can pull via #heartbleed, here’s what I’m dumping right now: pic.twitter.com/e6hJ02ud9K
riskybusiness This week’s show is up! We chat about that low-impact bug in OpenSSL that no one else is talking about. risky.biz/RB317
RT @dobes: Some tab is playing “Eye of the Tiger” and I don’t know where it is coming from. This is amazing!! [Good acid is back?]
RT @lee_whitfield: This is probably the most important slide of @MalwareJake’s presentation yesterday. pic.twitter.com/PN96wGVIqZ [Agreed.]
Wow, mentioning “Chinese investment” brought a few turd-like racists out of the woodwork. Good to flush them out, and down.
@yinettesys @dobes @zdnetaustralia What, again?
Me at @zdnetaustralia, on the Heartboning: “Lagging Android devices vulnerable to Heartbleed” http://t.co/6GAygNKXY6
According to @dobes @zdnetaustralia, “Heartboned is a word”. I endorse this.
Mr Rabbit was that we should have a “currency hub” in Sydney to encourage Chinese investment. What even is such a thing?
Ah, if Mr Rabbit was even HALF the leader that Rob Ford is… Sigh.
I love that @thewire has an entire department of stories called “Rob Ford’s Neverending Saga” http://t.co/MVAJVRLbvA
“Rob Ford Stuck with 10,000 Eggs He Bought for an Easter Parade He Can’t Go To” http://t.co/RKc5JauYrd
“Australia’s grand vision for a national broadband network has shrunk”, reports @NewStatesman http://t.co/ptZ92CbRkw HT @marshontap
troyhunt I’ve successfully exploited vulnerable #heartbleed sites (that I’m responsible for!) using this .NET code: packetstormsecurity.com/files/126100
Metlstorm This whole #heartbleed thing is a Microsoft conspiracy to distract us from the infinite war against WinXP.
Note to self: Explore the possibility of @GoPro building specialist hardware, such as a GoBrony camera.
“Call of Duty ‘fragged using OpenSSL’s Heartbleed exploit’”, reports @jleyden http://t.co/wtGJSmLsQ7
This cow is most definitely from the Utility Grade Beef Council.
@retrogrrl Yeah. “Moo” and stuff.
RT @jeamland: Anyone know any female developers in the kernel and/or filesystems areas? [So, a girlnel developer?]
bitcoin_txt How do I un-buy bitcoin?
First story filed for @zdnetaustralia. Time for cow, then the second story. What a day!
“No-one ever attacks me, I have a German accent.” Oh well played, @johullrich #heartbleed
joshgnosis Christopher Pyne says he won’t be writing any diaries: “Nobody wants to know about my life”. Albo: “I do, Christopher”.
CyberPrefixerAU Abbott arrives in Shanghai for cybertalks with Chinese cyberpresident
RT @pkedrosky: Bruce Schneier on fixing SSL hardware: “The upgrade path is going to involve trash can, a credit card, and a trip to Best Bu…
@johullrich Thanks, Johannes. I think I’ve got what I need for the @zdnetaustralia @ZDNet story, but will certainly ping you if needed.
Fri plan: Write for @zdnetaustralia x 2; cow; write @5at5daily bonus 10at4; anything off The List that I can be arsed doing after that; cry.
I just noticed that because of that first image yesterday, all my Heartbleed-related screenshots are saved as dogebleed-XXXXX.png. KIll me.
RT @bengrubb: Any proof of concept code yet for a client-side attack using #heartbleed? [I retweeted someone’s mention of same last night.]
RT @davpope: Finishing off the #NBN <my cartoon in today’s @canberratimes goo.gl/oc0BNQ> pic.twitter.com/2dPoIbpi8E [Uh ummerr!]
I predict a lot of Android versus iOS feels today. #heartbleed
RT @oliyoung “rolls it own” and “security” always two fun things to see in the same sentence [It’s only malloc() and free(), nothing vital.]
danmcquillan “surprise!” MT @ruthblakeley: British gave ‘full co-operation’ for CIA black jail on Diego Garcia, report claims fw.to/YuT2TrW
runofplay WHO’S THE ZOO EXHIBIT NOW RT @KCStar The KC Zoo has confirmed chimps are loose and have put visitors in locked buildings as a precaution.
@SnarkyPlatypus The presenters’ strongly expressed feelpinion was that telcos behaving very badly by not updating. I’ll be reporting this.
OK, the SANS ISC briefing has just ended. I’ll be listening to the first bit, that I missed, and writing a story for @zdnetaustralia.
Presenters mentioned earlier Theo de Raadt’s observation: OpenSSL rolls its own malloc() and free(). Duh. http://t.co/SUgaxFm03d #heartbleed
And here’s what the buggy victim sends back… #heartbleed pic.twitter.com/MAXMRjad7X
Presenters are repeating the “How Heartbleed wrks” think, so here’s what the attacker sends… #heartbleed pic.twitter.com/go3J9XcEne
Run a Nexus? Here’s a diagram you might like to look at. #heartbleed pic.twitter.com/gu37TwSgR6
Android correction: Vulnerable version is 4.1.1, here’s a picture of the market shares of each version. #heartbleed pic.twitter.com/pC9POl8hjz
So here’s the bug. What even IS this code? #heartbleed pic.twitter.com/MIx8u1KE3A
RT @hackerfantastic the @LastPass site checker is not adequately checking the flaw according to @marcwrogers and others. #heartbleed [Noted]
Presenter says the bad code that causes Heartbleed is really easy to find and really dumb. #heartbleed
Cybercrime community has caught on to Heartbleed getting mainstream media interest, so they’re sending “Fix it here” emails. #heartbleed
Android, only 4.1.x versions are potentially vulnerable to client-side attack, but that’s one-third of handsets out there. #heartbleed
Presenters are currently recommending a look at lastpass.com/heartbleed for good info and checking site status. #heartbleed
Radio spot done, listening now to the lastest SANS ISC briefing on Heartbleed. Stand by for some tweets on that. #heartbleed
Well, nearly. Shut up, @LindaMottram, you’re on later.
Here we go…
I’ll also talk on @702Sydney about this story. Maybe news headlines before I’m on. http://t.co/I3ItMSxX84
I am about to go on ABC @702sydney NOW to chat Heartbleed and stuff. abc.net.au/sydney/
OK, this is not a repeat of yesterday’s SANS ISC briefing, but what new things have been discovered in the part 24 hours. #heartbleed
There’s another SANS ISC briefing on Heartbleed starting in 30 minutes. https://t.co/66vGSdLdPT
Fri plan, draft: Cow; write for @zdnetaustralia; prepare @5at5daily bonus 10at4; whatever else from The List I can fit in before The End.
matthew_d_green Heartbleed is apparently the new standard by which static analysis tools will be measured. Soon that will be *all* they can find.
It has only just begun, @FiloSottile @matthew_d_green. The Heartbleed story crossed into mainstream TV news in Australia about 12 hours ago.
RT @FiloSottile: You know what? I’ll stop predicting when the #Heartbleed check peaks. 20,000 checks a minute. http://t.co/41XAIWDLOc
sylmobile It’s like having a good bath, all this SSL patching, password changing, certificate renewing flurry!
RT @showcaseJase: This #GIF messes with my mind in a couple of different ways https://t.co/0Wa5wX3suV #FridayGIF
Today is going to be both majorly headdeskworthy and utterly, utterly hilarious. Mark my words. #heartbleed
There are electrons in the box, @R_Chirgwin. I repeat, there are electrons in the box. Also, someone is burning dinosaurs, so I’m confused.
Quote in previous tweet by Somalia Wireless’s Liban Egal, who is obviously not a disinterested observer. Still, watch that sound bite echo!
“Every time a fibre optic cable is connected to a country they see their GDP going up because their communication costs go down.” #NBN
“Somalia in high speed internet ‘culture shock’”, with fibre rolling out in Mogadishu. http://t.co/m5OGipTr4X #NBN HT @juhasaarinen
JasonHirschhorn Hate headlines where it says “No, X isn’t
trying to do Y.” As if I asked the question in the first place. cc: @paulcarr
@guymosel More often that not, I wake at 0500, especially when it’s a busy day. I cannot address the “evil” question for legal reasons.
@SnarkyPlatypus J’ai déjà obtenu une pelle.
Phase 2 being, of course, the development of conspiracy theories about Heartbleed. Except, obviously, all of them will be true. All of them.
More Phase 2: “#ifndef OPENSSL_NO_BUF_FREELISTS /* On some platforms, malloc() performance is bad enough that…” http://t.co/SUgaxFm03d
“This is a man whose high-paying job required that he beats GNU/Linux at security,” writes @schestowitz http://t.co/IAN04Evfyr
Phase 2 begins: “Former Chief Security Officer for Microsoft the Chairman of the Board of Firm Behind Heartbleed®” http://t.co/4PJEBNxbkE
RT @leslienassar: @stilgherrian @juhasaarinen Stail Herring! [Yes, “Stail Herring” seems more appropriate, in so many ways.]
@csr_group @ZDNet Hey well, @MalwareJake was “sending a very clear message”, I thought. Good briefing yesterday, Jake, thank you.
@SnarkyPlatypus Bonjour. Il est le même que précédemment, mais avec de l’acide sulfurique insuffisante. C’est une tragédie. Et vous?
RT @juhasaarinen: Interestingly enough, @stilgherrian is an anagram of Gasring Hitler. [No it’s not. But it should be.]
Interestingly, @R_Chirgwin, there are no electronics in the box, and there’s no dinosaur juice either.
RT @davidjrusek: I beg to differâ€pic.twitter.com/4O0BtNRq3G3G [“It is hard to imagine?” Fallacious argument of personal ignorance. H@DrMobsbs]
Friday, eh? This’ll be interesting. And, for you, miserable, despite your constant state of denial.