bubu

pagedout.institute ← we've just released Paged Out! zine Issue #7
pagedout.institute/download/Pag... ← direct link
lulu.com/search?page=... ← prints for zine collectors
pagedout.institute/download/Pag... ← issue wallpaper
Enjoy!

Please please please share to spread the news - thank you!

04.10.2025 10:40 — 👍 17    🔁 16    💬 1    📌 3

Matrix.org Matrix, the open protocol for secure decentralised communications

So: the matrix.org database secondary lost its FS due to a RAID failure earlier today (11:17 UTC). Then, we lost the primary at 17:26. We're trying to restore the primary DB FS (which could be fastish), while also doing a point-in-time backup restore from last night (which takes >10h).

02.09.2025 19:02 — 👍 102    🔁 29    💬 11    📌 13

Excited to share that I’ll be speaking at #DefCampRO in November. See you there! 🇷🇴

02.09.2025 19:24 — 👍 0    🔁 0    💬 0    📌 0

Blink: Intent to Ship: Escape "<" and ">" in attributes on serialization Blink: Intent to Ship: Escape "<" and ">" in attributes on serialization

Blink: Intent to Ship: Escape "<" and ">" in attributes on serialization

09.05.2025 09:33 — 👍 2    🔁 2    💬 0    📌 0

That's me!

03.05.2025 12:52 — 👍 0    🔁 0    💬 0    📌 0

Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML

Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML

07.04.2025 17:41 — 👍 6    🔁 1    💬 0    📌 0

Thanks! I noticed this two months ago, and I thought they completely removed the option to see the source.

27.02.2025 14:40 — 👍 0    🔁 0    💬 1    📌 0

Yeah hahahahaha but from the full spec document, not including the header,
Firefox and Safari, IIRC, implement more or less the rest of stuff ;)

18.02.2025 12:31 — 👍 0    🔁 0    💬 0    📌 0

I completely agree, but are the standards that regulate the rest of specs that define a permission 😅

17.02.2025 13:59 — 👍 1    🔁 0    💬 1    📌 0

I'll take a look, thanks :)
Btw, when do you plan to deploy PP header? xD

15.02.2025 10:04 — 👍 0    🔁 0    💬 1    📌 0

Hope Bluesky adds bookmarks soon. I can't wait to have hundred of bookmarks I’ll never read, while lying to myself that I will.

10.02.2025 10:42 — 👍 0    🔁 0    💬 0    📌 0

You Shall Not Get Access 🧙🏻‍♂️: Browser Permissions | WebSec! Web Security Educational Blog

I posted a blog about how browser permissions work. albertofdr.github.io/web-security...

29.01.2025 12:16 — 👍 6    🔁 2    💬 1    📌 0

facebook error

netflix error

okta error

whatsapp error

Handling Cookies is a Minefield:

Inconsistencies in the HTTP cookie specification and its implementations have caused a situation where countless websites (including Facebook, Netflix, Okta, WhatsApp, Apple, etc.) are one small mistake away from locking their users out.

grayduck.mn/2024/11/21/h...

21.11.2024 17:11 — 👍 168    🔁 53    💬 12    📌 8

WebSec! Web Security Educational Course

From time to time I write about web/browser stuff here (albertofdr.github.io/web-security...) and post about CTF writeups (albertofdr.github.io/post/hkcert-...). That said, @ericlaw.bsky.social should definitely be on the list!

02.12.2024 10:24 — 👍 2    🔁 0    💬 0    📌 0

If you missed it, my #DEFCON talk "Exploiting the Unexploitable: Insights from the Kibana Bug Bounty" is now live on YouTube!

youtu.be/H-bhmSwnRdY

27.11.2024 09:08 — 👍 13    🔁 6    💬 1    📌 1

This one is also funny!

25.11.2024 06:07 — 👍 1    🔁 0    💬 0    📌 0

The 2024 Web Almanac The Web Almanac is an annual state of the web report combining the expertise of the web community with the data and trends of the HTTP Archive.

🚨 Introducing the 2024 Web Almanac, our annual "state of the web" report!

🔖 almanac.httparchive.org/en/2024/

21 chapters (11 publishing today, the rest to follow)
65 contributors for today's chapters (more to follow)
17M websites analyzed
83 TB of data processed
628 queries written

11.11.2024 16:30 — 👍 70    🔁 39    💬 5    📌 14