Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
mcc (mcc@mastodon.social)'s status on Friday, 30-Aug-2024 08:55:01 JST mcc

i wish i had some kind of tool that I could paste a unicode character into and it tells me which OSes and which versions of which OSes it will display on correctly. there's stuff like emojipedia but (1) that doesn't include non-emoji graphical characters like 🡅, and (2) it's harder to use becuase it focuses on "what does it look like" but I don't care what it looks like as long as it hasn't literally been decomposed into multiple characters

In conversation Friday, 30-Aug-2024 08:55:01 JST from mastodon.social permalink
- Embed this notice
  Ryan Castellucci (they/them) :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 30-Aug-2024 08:55:00 JST Ryan Castellucci (they/them) :nonbinary_flag:
  in reply to
  
  @mcc I did some experiments with this at my previous job, except it was trying to detect os by supported emoji
  
  In conversation Friday, 30-Aug-2024 08:55:00 JST permalink
- Embed this notice
  Ryan Castellucci (they/them) :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 30-Aug-2024 09:23:44 JST Ryan Castellucci (they/them) :nonbinary_flag:
  in reply to
  
  @mcc https://fc15.ifca.ai/preproceedings/paper_83.pdf
  In conversation Friday, 30-Aug-2024 09:23:44 JST permalink
  Attachments
  1. Untitled attachment
- Embed this notice
  Ryan Castellucci (they/them) :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 30-Aug-2024 09:27:22 JST Ryan Castellucci (they/them) :nonbinary_flag:
  in reply to
  
  @mcc There are flaws with this paper - small sample size, recruited from mechanical turk - but getting consent for that data is hard.
  
  In conversation Friday, 30-Aug-2024 09:27:22 JST permalink
- Embed this notice
  Ryan Castellucci (they/them) :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 30-Aug-2024 09:30:00 JST Ryan Castellucci (they/them) :nonbinary_flag:
  in reply to
  
  @mcc Anyway. One could passively build up a data set without a huge amount of work.
  
  In conversation Friday, 30-Aug-2024 09:30:00 JST permalink
- Embed this notice
  Ryan Castellucci (they/them) :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 31-Aug-2024 00:02:28 JST Ryan Castellucci (they/them) :nonbinary_flag:
  in reply to
  - Dan Cassidy 🦌
  @whimsy @mcc Most of the claimed user fingerprinting stuff is only useful to distinguish devices in a household that share an IP address, and even that is questionable.
  The marginal entropy of most of that stuff is minimal.
  Now, for anti-fraud, when bad actors are spoofing stuff, then it is fantastic.
  
  In conversation Saturday, 31-Aug-2024 00:02:28 JST permalink
- Embed this notice
  Dan Cassidy 🦌 (whimsy@chitter.xyz)'s status on Saturday, 31-Aug-2024 00:02:29 JST Dan Cassidy 🦌
  in reply to
  - Ryan Castellucci (they/them) :nonbinary_flag:
  @ryanc @mcc oh god advertisers are using this to fingerprint users aren't they
  
  In conversation Saturday, 31-Aug-2024 00:02:29 JST permalink
- Embed this notice
  Ryan Castellucci (they/them) :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 31-Aug-2024 00:05:00 JST Ryan Castellucci (they/them) :nonbinary_flag:
  in reply to
  - Dan Cassidy 🦌
  @whimsy @mcc Like, if have a timestamped pcap of your connection to a server, I can narrow down your user agent string to like three values with 90% accuracy.
  
  In conversation Saturday, 31-Aug-2024 00:05:00 JST permalink

Public

Conversation

Notices

Feeds