Notices by Josh Bressers (joshbressers@infosec.exchange), page 4

@allanfriedman I don't understand what you mean by "3rd party software support"

@kurtseifried probably decades :)

You can buy a jug of McRib sauce, just in time for Christmas!!!

https://corporate.mcdonalds.com/corpmcd/our-stories/article/mcdonalds-gets-saucy-this-holidayseason-to-celebrate-thereturn-ofthe-mcrib-sandwich.html

@foo this caused me to spend more time than I want to admit fiddling with my monitor today

@JoshCGrossman I know a place you can tell such stories :)

https://hackerhistory.com/

Shoot me a DM if you ever want to be a guest (no rush, the invite doesn't expire)

@luis_in_brief this is the phishing training of the open source world

@tek @catsalad

So I don't want to dis on that work, but I took it with the intention of making some changes and ended up basically rewriting the whole thing with modification in mind

https://github.com/joshbressers/meshbbs

@sethmlarson Did they fit that on one side of one card?

Because if yes, that's 🍌

@accidentalciso @Viss @mttaggart

I have a theory about this, but we shall see how it plays out

Twitter started out fun, but I don't think it's for the reasons everyone thinks it is. Nobody knew how to appease the outrage robot overlords, so everyone just did whatever, and that was fun

But some people figure it out, and that's what made it less fun

I have no doubt the robot overlords will be appeased much more quickly this time, maybe too quickly

@lcamtuf What about Firefox!

Let's just see how they are funded and

...

right

@Viss @da_667

Yeah, but they didn't have the internet!!!

...

oh ... wait

This is fine

...

is it?

IS IT?!?!

THOUGHT FOR THE DAY: Search algorithms on the ad-funded web are all about *selling you something you don't need or want*. Marketing in the purest sense. When the W3C opted for ad-supported web rather than microbilling to fund build-out of the internet to the general public back in 1996 they made a terrible mistake: in the 30 year time scale it may turn out to have cost us democracy.

@wdormann I'm too lazy and stupid to dig too deeply into this

But my graph uses the CVE release date, then looks at if it has CPE data

If older CVEs are updated, or data that isn't CPE gets added, I don't show it

@wdormann I use the nvd data. It looks like they added some things today, yeah

@b00ga Thanks! It was a fun webinar

@kurtseifried I've never bothered to figure this out

Maybe some sort of alliance with a focus on cloud security could do it :)

Looks like #NVD has stopped enriching #CVE again. So that's neat

@liw @hdm why not both :)

@david @kurtseifried in glad we could help!