Andy Sayler's Avatar

Andy Sayler

@andysayler.bsky.social

Information Security, Public Policy, and Food Stuff. InfoSec @Workday, ex-InfoSec @twitter. (he/him)

377 Followers  |  114 Following  |  27 Posts  |  Joined: 28.04.2023  |  2.0356

Latest posts by andysayler.bsky.social on Bluesky

Post image

I don't know why I made this. Is it funny? Does it have purpose? If all humor is dadaist what separates wit from noise? Does this convey the artist's intended meaning that BoulderSec is tomorrow, Sept 4, 7:00pm at the Rayback and will have wonderful friends and food? I don't even know any more.

03.09.2025 18:32 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 1    πŸ“Œ 0

πŸ‘‹ Are you looking to chat with business owners? Locals? Someone else?

I'm happy to chime in as a frequent user of the pedestrian mall. @ericmbudd.com might have thoughts as well.

03.09.2025 00:53 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Prosecutors Fail to Secure Indictment Against Man Who Threw Sandwich at Federal Agent

You can get a grand jury to indict a ham sandwich, but you can't get a grand jury to indict for throwing one: www.nytimes.com/2025/08/27/u...

27.08.2025 15:43 β€” πŸ‘ 71    πŸ” 14    πŸ’¬ 1    πŸ“Œ 3
Preview
Digital Harm Reduction: A guide to (more) ethical technology use - Boulder Weekly Technology is dual-use, and there’s no ethical consumption under capitalism. But we can take steps to reduce tech's harms.

My latest in the @boulderweekly.bsky.social: boulderweekly.com/news/analysi...

10.04.2025 12:45 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Ah March, the month when we remember the downfall of an attempted dictator. Anyway, where was I? Oh right, BoulderSec is this Thursday March 6, 7:00pm at the Rayback! Come on by to spend some quality time with Meepy. And also your friends and good food I guess.

03.03.2025 22:19 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
Alert: New Executive Order We've been tracking the U.S. Congress for twenty years. Now it's time to track the White House.

Great to see the GovTrack.com folks getting into the executive space. You can help support expanding government transparency at www.kickstarter.com/projects/gov...!

18.02.2025 02:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
USENIX Security '25 Enigma Track Call for Participation Submissions due: Wednesday, March 5, 2025 Notification to submitters: Wednesday, May 7, 2025

We've got killer talks in the hopper for Enigma 2025 track at USENIX Security this year in Seattle! Deadline is 5 March and we'd love to have YOU up there on the dais sharing your cutting edge security knowledge

15.02.2025 13:18 β€” πŸ‘ 16    πŸ” 11    πŸ’¬ 0    πŸ“Œ 0
Post image

It's time to bring back West Pearl!

What's better than going out to play on Pearl Street? Going to do it with your best friend!

There are no paws on the bricks, but paws are always welcome on West Pearl.

Sign here now and be a part of the pet-revolution: www.pearlforyou.org/sign

04.02.2025 19:21 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

Meep meep meep! Meep meep. Meep meep meep meep meep meep meep meep meep meep February 6, 7:00pm, meep Rayback Collective, meep meep.

03.02.2025 22:37 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 1    πŸ“Œ 0
Preview
USENIX Security '25 Enigma Track Call for Participation Submissions due: Wednesday, March 5, 2025 Notification to submitters: Wednesday, May 7, 2025

Submissions are OPEN for the Enigma track at USENIX Security 2025; submit your killer talk by 7 March 2025! https://sec25enigma.usenix.hotcrp.com/ (CFP: https://www.usenix.org/conference/usenixsecurity25/enigma-cfp )

28.01.2025 20:04 β€” πŸ‘ 7    πŸ” 7    πŸ’¬ 0    πŸ“Œ 0

Want to connect with the brightest minds shaping the future of network and computer security? The NDSS Symposium (Feb 24-28) in sunny San Diego is THE place to be! We're talking 5 tracks, 220+ cutting-edge OPEN ACCESS papers, and world-class workshops. https://www.ndss-symposium.org/ 1/

08.01.2025 00:23 β€” πŸ‘ 10    πŸ” 14    πŸ’¬ 1    πŸ“Œ 1
Post image

New year, new you, but like always it's the same old BoulderSec! That's right, the eternal security meetup from before time immemorial which will outlast us all is back on Jan 2, 7:00 at the Rayback, just like last month and every month before that.

27.12.2024 16:13 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
Support Make Boulder Weekly a co-op on ColoradoGives.org Help Boulder Weekly become employee- and community-owned!

In case any #Boulder folks are looking to round out their end-of-year donations, the Boulder Weekly is running a fundraising drive to explore moving to an employee-owned co-op model. Kick in a few bucks to help to support sustainable local independent journalism! www.coloradogives.org/story/99mptf

27.12.2024 04:30 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Woah December already? Fuck, we gotta make the BoulderSec tweet.

Uhhh... get ready everyone! The Boulder security Meetup will be this Thursday, Dec 5 at 7pm at the Rayback!

...and then Photoshop Meepy onto Santa or something. Or Krampus. Is that too stupid? Whatever, ship it.

04.12.2024 03:18 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
Introduction to Investigative Journalism: Digital Security Digital security may seem a little daunting at first, but increased security will help investigative journalists build trust with β€” and protect β€” current and future sources.

I wrote a very timely introduction to digital security for journalists for @gijn.org, this guidance may also apply to activists, lawyers, and anyone else doing at-risk work these days. gijn.org/resource/int...

27.11.2024 11:39 β€” πŸ‘ 159    πŸ” 78    πŸ’¬ 8    πŸ“Œ 9
Phishing-Resistant Multi-Factor Authentication (MFA) Success Story: USDA’s Fast IDentity Online (FIDO) Implementation | CISA This report details how USDA successfully implemented phishing-resistant authentication in situations where in the past only authentication methods vulnerable to phishing were feasible.

πŸ”πŸ”πŸ” Got FIDO? πŸ”πŸ”πŸ”
The USDA does! Check out their FIDO success story:
www.cisa.gov/resources-to...

Our blog:
www.cisa.gov/news-events/...

20.11.2024 16:25 β€” πŸ‘ 6    πŸ” 5    πŸ’¬ 2    πŸ“Œ 0
facebook error

facebook error

netflix error

netflix error

okta error

okta error

whatsapp error

whatsapp error

Handling Cookies is a Minefield:

Inconsistencies in the HTTP cookie specification and its implementations have caused a situation where countless websites (including Facebook, Netflix, Okta, WhatsApp, Apple, etc.) are one small mistake away from locking their users out.

grayduck.mn/2024/11/21/h...

21.11.2024 17:11 β€” πŸ‘ 168    πŸ” 53    πŸ’¬ 12    πŸ“Œ 8

In case folks want to read more about what a 28-hour power outage is like with a battery backup system: aisforairship.com/posts/2024_s...

13.05.2024 06:08 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
A portable turntable and Bluetooth speaker in front of a copy of Ingred Michaelson's Lights Out album.

A portable turntable and Bluetooth speaker in front of a copy of Ingred Michaelson's Lights Out album.

Making good use of the battery-powered turntable for our preventative power outage. #boulder

07.04.2024 00:41 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 1
Outdoor temperature graph for 1/12 through 1/16 showing temps from from mid-30s to three days of sub-0 and then rebounding to mid-30s.

Outdoor temperature graph for 1/12 through 1/16 showing temps from from mid-30s to three days of sub-0 and then rebounding to mid-30s.

Indoor temperature graph showing temps dropping from ~70F to three days hovering between 60 and 65 F before rebounding to 70 F.

Indoor temperature graph showing temps dropping from ~70F to three days hovering between 60 and 65 F before rebounding to 70 F.

And a final update now that temperatures have recovered. Heat pump held the house at 60-65 for three days of mostly continuous sub-0 F temps. Recovered to easily holding the house at 70 as soon as the outdoor temps went back above 20 or so. Given how rare these temps are, I consider this a success!

17.01.2024 05:49 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This install is 3 years old at this point. I've heard there are some newer air handler heads that have higher output now, so that might be an option for you. But the mini splits would definitely do the job as well.

14.01.2024 18:24 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

For me, ducts are the walls and floors, not attic. Air handler is in the basement. We added the mini splits to the upstairs bedrooms mainly for the summer AC use case where the central air handler similarly struggles to cool those rooms, but there's one week each winter where we use them to heat.

14.01.2024 18:04 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Yeah, this is an air source just pump. Ground source wouldn't have any issues in this weather, but costs an order of magnitude more here.

14.01.2024 17:59 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Yeah, having reasonably good insulation and air sealing definitely helps here. So I'd focus on improving those before adding a heat pump. This is 1999 construction with 6" exterior walls and fairly decent insulation (but certainly not as air tight as today's construction).

14.01.2024 17:51 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

The air handler and original ductwork is the limiting factor in this case. That ductwork was sized for a furnace that puts out much hotter air than a heat pump so needs less flow. I think they have higher flow air handlers available now that would help. But for a few sub-0 days each year, it's fine.

14.01.2024 17:49 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Sure thing. This is Mitsubishi Hyper Heat MXZ-4C36 outdoor unit (36K BTU) driving three indoor head units -- two SLZ-KF09 mini splits in the upstairs bedrooms (9K BTU) and one SVZ-KP18 air handler on the original whole house ductwork (18K BTU). House is 1999 build and 1600 Sq Ft with three floors.

14.01.2024 17:46 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Most people install resistive backups on their central air handler to deal with this situation. But I like to live dangerously so I didn't do that. πŸ˜‚

14.01.2024 17:30 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This is about as cold as it gets here. And it happens a few days each winter. It handles normal winter temps in the 20s no problem. And the limit really is the flow rate of the legacy ductwork; the outdoor unit itself does just fine (albeit with a lot of electrical usage in these conditions).

14.01.2024 17:28 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

The mini splits we have in the bedrooms have no problem heating their rooms up to 70 F despite this weather, so the limiting factor seems to be the central air handler and ductwork when it gets this cold, not the outdoor unit (which drives both the air handler and two mini splits).

14.01.2024 17:16 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Outdoor temperature graph for 1/12 to 1/14 showing temps do from 34 F to -10 F on 1/13 and then hover in the negative single digits since.

Outdoor temperature graph for 1/12 to 1/14 showing temps do from 34 F to -10 F on 1/13 and then hover in the negative single digits since.

Indoor air temperature showing the house heading to 70 F on 1/12, but then hovering between 60 F and 65 F on 1/13.

Indoor air temperature showing the house heading to 70 F on 1/12, but then hovering between 60 F and 65 F on 1/13.

Update: heat pump is doing okay -- the central air handler is holding the house at 60-65, which is about what I'd expect given the ductwork was designed for a furnace, not a heat pump. This is pure heat pump heating too; no resistive or other backup installed. Normal weather vs current in graphs.

14.01.2024 17:14 β€” πŸ‘ 23    πŸ” 2    πŸ’¬ 4    πŸ“Œ 0

@andysayler is following 19 prominent accounts