@flowerfield.dev.bsky.social
i like music and making computer things as unreadable as possible she/her
zero-cost abstractions... but at what cost
24.07.2025 01:13 β π 102 π 10 π¬ 9 π 0can revolut just let me access my financials on my beautiful rooted device :sob:
17.06.2025 15:03 β π 0 π 0 π¬ 0 π 0are there any non-JVM kafka server stacks?
09.05.2025 16:51 β π 0 π 0 π¬ 0 π 0oh lmao i didn't realise, the repository itself is populated though which is funny
08.05.2025 11:34 β π 0 π 0 π¬ 0 π 0docs.rs/quic/latest/...
who's going to tell them nothing is public
a fun part of reverse engineering is encountering Mystery Acronyms with no known canonical definition, so you get to make up your own
05.05.2025 13:39 β π 196 π 14 π¬ 13 π 0
a photo of a utopian world with fancy modern houses and flying cars
the world if we could use hyphens when importing crates and modules in rust
05.05.2025 11:46 β π 0 π 0 π¬ 0 π 0so what's this whole field programmable gatorade thing
02.05.2025 06:04 β π 2 π 0 π¬ 0 π 0anyone know if there is any way to have a type like `struct SizedSlice<T: Sized, const N: usize>([T; N])` without exposing `N` to the user of the type and still maintain the `Sized` trait bound on the `SizedSlice` type itself?
it feels like it should be possible to do it without `N` bubbling up
i have a feeling the ustr.gov XSS is going to go unnoticed by them, but i reaaaally don't want to give this administration the satisfaction of being able to silently fix their shite website
08.04.2025 20:05 β π 0 π 0 π¬ 0 π 0
05.04.2025 11:39 β π 0 π 0 π¬ 0 π 0
#infosec #cybersec i think
05.04.2025 11:38 β π 0 π 0 π¬ 0 π 0
contact page denies access so rip disclosure
05.04.2025 11:35 β π 0 π 0 π¬ 0 π 0ustr.gov/search?q=%26...
not sure what i expected tbh
fair, i guess for cases where an attacker can only observe the network noise really makes the timing leaks much less helpful
04.04.2025 18:40 β π 0 π 0 π¬ 0 π 0would y'all consider AES with precomputed T-tables in practice a vulnerability (because of cache-timing attacks) or is the attack so theoretical that it doesn't really matter?
04.04.2025 10:34 β π 1 π 0 π¬ 1 π 0
a snippet of rust code which contains `let None = bar else { unreachable!() };`
it's kinda funny how rust's let-else statements can lead to interestingly misleading code:
24.03.2025 22:04 β π 1 π 0 π¬ 0 π 0mario galaxy ost breakcore. is anyone working on this.
18.03.2025 15:41 β π 135 π 4 π¬ 9 π 1
rednote messages from 7 large rednote creator with the top 3 saying "security", "through", "obscurity" and the rest just "."
turns out rednote allows you to fabricate any conversations between anyone
yet they still don't respond to emails about this
the plot thickens...
08.03.2025 16:12 β π 0 π 0 π¬ 0 π 0thank you so much!
i feel like i came across unencrypted Chat messages as i looked into the app, but it is likely that those ended up being a different packet type and that the app just always encrypts "Chat" messages everytime. it might have been an attempt of having security perhaps
i don't know too much abt it personally. there was a case of qq browser being scrutinized for using non-cryptographic PRNG before. and looking into wechat there does seem to be another proprietary protocol but at a quick glance backed by actual cryptography
25.02.2025 12:57 β π 2 π 0 π¬ 0 π 0thank you so much for helping me get this out there π
this means the world to me
yep, the encryption pretty much acts more as obfuscation than encryption and you can even end up authenticating with this API without needing to know the encryption is a thing that happens.
the authentication is always in plaintext and you can then just find the "send message" proto and send one
@retr0.id as u are a seasoned professional, how do i get people talking about a potential 0-day (i think) + privacy concern, as someone with no reach? (petal.blog/articles/exp...)
25.02.2025 12:36 β π 2 π 0 π¬ 1 π 0pregnancy tests are just a side channel attack leaking information
26.12.2024 22:43 β π 0 π 0 π¬ 0 π 0A web without ads means faster browsing, better privacy, and healthier minds.
Time to break free.
An infographic. There are six panels. 1. "Slow internet. Alt text is shown in place of unloaded images." a drawing shows a phone with poor signal, and alt text is visible where the image should have loaded. 2. "Findabillity. Alt text helps to search content." A drawing shows someone searching 'dog with banana' and a post is shown underneath without the words 'dog' or 'banana'. It is implied to be part of the alt text. 3. "Screen readers. Alt is read out to people using text-to-speech software". There is a drawing of the output a screen-reader would show when viewing an image with alt text on bluesky. 4. "Translation. Alt text can be translated". A drawing shows a post being translated. The alt text is also translated into german. 5. "Readability. Text in images can be made legible" There is a drawing of some truly awful handwriting inside a speech bubble. The alt text clarifies what the text is supposed to say. 6. "Disambiguation. Description helps clarify intent." There is a drawing of a post with a picture of a creature. This is styled after the famous optical illusion of a rabbit and a duck. The alt text clarifies that the animal is a rabbit. It definitely looks more like a duck.
Generally we think of alt-text as the domain of those with accessibility needs.
However alt-text is useful for many reasons, which benefit your viewers, as well as you, the creator!
me too now yippee !!
13.10.2024 21:05 β π 1 π 0 π¬ 0 π 0
