You seem to be attacking a strawman. "The central goal of the attacker we consider is to gather location and movement data about a large number of devices, either globally or pertaining to a specific region of interest."
Networks change all the time. You don’t want to rerun cable everyday. You can configure a router to not use a path, even though that path physically exists.
According to the comments in the most recent post on this blog the author has passed away: https://castel.dev/post/research-workflow/ I stumbled on this blog recently when researching the same topic (nvim +latex). I…
| 10. Unrestricted Code Execution | If unverified programs are allowed to execute on hosts, a threat actor can run arbitrary, malicious payloads within a network. The list was good but this last one reads more like…
NATs provide one form of network segmentation. Network segmentation is a commonly accepted network security practice. The author maybe thinking of a specific application of NAT, but a blanket “NAT provides no additional…
"migrating to programming languages that eliminate widespread vulnerabilities." "Some examples of modern memory safe languages include C#, Rust, Ruby, Java, Go, and Swift." "Too often, backwards- compatible legacy…
An attack that does not work on a technology is not evidence of a control’s effectiveness.
There is no evidence secure boot has prevented any malware.
The reputational damage to the department is staggering.
Well, if you build it yourself at least you’ll think it’s secure!
Debian has no bugs - heard it here first!
Every critique in this list could be levelled at networking equipment that costs thousands or tens of thousands of dollars.
Sounds like they are selling a server NIC optimized for high-throughput VM/Container traffic.
Hikaru Nakamura is an American GM that has a pretty entertaining YouTube channel if you are interested in chess.
"Copper content (177±16 ppb) in water stored in copper pots was well within the permissible limits of the World Health Organization. Copper holds promise as a point-of-use solution for microbial purification of…
people should start thinking about consumer protection for internet services and internet connected devices. Minimum security standards for products brought to market should be just one aspect of this.
You seem to be attacking a strawman. "The central goal of the attacker we consider is to gather location and movement data about a large number of devices, either globally or pertaining to a specific region of interest."
Networks change all the time. You don’t want to rerun cable everyday. You can configure a router to not use a path, even though that path physically exists.
According to the comments in the most recent post on this blog the author has passed away: https://castel.dev/post/research-workflow/ I stumbled on this blog recently when researching the same topic (nvim +latex). I…
| 10. Unrestricted Code Execution | If unverified programs are allowed to execute on hosts, a threat actor can run arbitrary, malicious payloads within a network. The list was good but this last one reads more like…
NATs provide one form of network segmentation. Network segmentation is a commonly accepted network security practice. The author maybe thinking of a specific application of NAT, but a blanket “NAT provides no additional…
"migrating to programming languages that eliminate widespread vulnerabilities." "Some examples of modern memory safe languages include C#, Rust, Ruby, Java, Go, and Swift." "Too often, backwards- compatible legacy…
An attack that does not work on a technology is not evidence of a control’s effectiveness.
There is no evidence secure boot has prevented any malware.
The reputational damage to the department is staggering.
Well, if you build it yourself at least you’ll think it’s secure!
Debian has no bugs - heard it here first!
Every critique in this list could be levelled at networking equipment that costs thousands or tens of thousands of dollars.
Sounds like they are selling a server NIC optimized for high-throughput VM/Container traffic.
Hikaru Nakamura is an American GM that has a pretty entertaining YouTube channel if you are interested in chess.
"Copper content (177±16 ppb) in water stored in copper pots was well within the permissible limits of the World Health Organization. Copper holds promise as a point-of-use solution for microbial purification of…
people should start thinking about consumer protection for internet services and internet connected devices. Minimum security standards for products brought to market should be just one aspect of this.