One of my fav quotes from this @gregkh interview:
"Open source ends up having better depth of knowledge than closed source has."
(Because for careers in companies you get shifted around while many people in OSS stay in the same field/code for decades.)
Linux Kernel Hardening: Ten Years Deep
Talk by @kees about the relevance of various Linux kernel vulnerability classes and the mitigations that address them.
Video: https://www.youtube.com/watch?v=c_NxzSRG50g
Slides: https://static.sched.com/hosted_files/lssna2025/9f/KSPP%20Ten%20Years%20Deep.pdf
@gregkh linters literally do their job better than a speculation machine
Dear lazyweb. One of my nitrokey 3 devices seems to have “stopped working” when attempting to access the key in it. Running the command line tools seems to say all is good (i.e. nitrocpy nk3 test
says all is fine) but yet ssh seems to hate it with an error of:
ssh_sk_sign: fido_dev_get_assert: FIDO_ERR_NO_CREDENTIALS
and it never even attempts to let me “push the button”.
It’s running the latest firmware. Any hints on what to attempt/test to debug this or should I just give up on the thing?
My backup key is working just fine, so it’s not the USB kernel code on my system that is the issue for once :)
@joshbressers indeed. I just find that pURL advocates sometimes forget this gap and there are even online forms now where the pURL is a mandatory field, which have prevented for example me to enter curl in some places because curl nor libcurl have no pURL. So I keep having to remind people...