First I drink the coffee, then I do the things.

Cybersecurity specialist. Perpetual blue team botherer and a glorified network janitor. SecurityFest Crew (https://securityfest.com/)

Trying to leave things better than I found them.
Slow regard of silent things.

#infosec #security #cybersecurity #dfir #coffee #climate #sustainability #solarpunk

About Me: https://0xtero.hanninen.eu/
Mastodon: https://infosec.exchange/@0xtero

  • 0 Posts
  • 24 Comments
Joined 2 years ago
cake
Cake day: June 9th, 2023

help-circle











  • What’s really wild is that you don’t have to go that far into the past (just ca. 20 years) when the Internet was all about Information wanting to be Free. It was hopeful time of people coming together around new technology. There were a lot new businesses with wild innovations.

    And then, just in a decade it was all gone. Replaced by unregulated behemoths that merged until there’s a dirty dozen left, controlling most of global money and information.

    Enshittification of the Internet.






  • In words of Dan Geer from his 2014 Black Hat keynote:

    Today the relevant legal concept is “product liability” and the
    fundamental formula is “If you make money selling something, then
    you better do it well, or you will be held responsible for the
    trouble it causes.” For better or poorer, the only two products
    not covered by product liability today are religion and software,
    and software should not escape for much longer.

    The EU legislation has good intentions. Software should not escape product liability. However, the current proposal is somewhat flawed (unless EU actually intends to finance security testing for FOSS projects!) and it needs some language to protect open-source innovation and distributed development models.

    I’m hoping the EU will allow a model where FOSS developers can receive donations/charge for support without having to risk huge penalties.