More

curben · on Oct 24, 2024

Cloudflare has been offering SSH CA-based authentication for more than 2 years [1], I wrote a guide back in feb '23 [2]. The announcement is more about offering new features, such as more granular user control.

[1]:https://web.archive.org/web/20210418143636/https://developer...

[2]: https://mdleom.com/blog/2023/02/13/ssh-certificate-cloudflar...

curben · on Oct 4, 2024

Image CDN primarily offers image resizing, especially useful for responsive images. It has a sizable market, both Cloudflare and AWS offer image processing service, see also major players like Cloudinary and Cloudimage.

Image and general CDNs are not exclusive: pictures resized on-the-fly and hosted on image CDN, while html/js/css hosted on general CDN.

curben · on Sept 29, 2024

If "orthodox" means "vpn traffic cannot be established through third-party cloud infrastructure", then tailscale and any other cloud-hosted ZTNA solutions wouldn't be accepted in that kind of enterprise.

curben · on Sept 29, 2024

SSH protocol does not protect against weak configuration, e.g. password authentication without brute force mitigation. Zero-trust can be misconfigured too, so it depends how well either of them is configured.

curben · on Sept 16, 2024

The manual mentions it includes EasyEUICC hash in an ARA-M slot, so it should work. ARA-M does not apply to OpenEUICC; as a system app, it can work with any esim.

https://www.sysmocom.de/manuals/sysmoeuicc-manual.pdf (p. 26)

curben · on Sept 16, 2024

JMP SIM Manager is a rebadged version of EasyEUICC available on f-droid. JMP resells eSIM card and usb reader from https://www.estk.me/product/

langsoul-com · on Sept 16, 2024

https://frank-ruan.com/2024/08/27/removable-euicc/

See that for more info and a comparison of the esim adapters.

Interesting point is >Their solution is not the commonly-used Eastcompeace solution. Instead, they used disassembled Apple chips. As you can see in the EasyLPAC screenshot. They used these recycled chips and re-engineered them.

lxgr · on Sept 16, 2024

> Instead, they used disassembled Apple chips.

I'd take that with a grain of salt: Desoldering eUICCs from iPhones and somehow fitting them into the Nano SIM form factor sounds prohibitively expensive!

Any chance it's actually old Apple SIMs (i.e. the physical things Apple used to ship in the SIM tray of iPads before they had widespread eSIM support)?

singpolyma3 · on Sept 16, 2024

EasyEUICC was the codename for the app before release, yes

curben · on Feb 26, 2024

for anyone new keepassxc, do check out the auto-type feature. you can trigger it (through keyboard shortcut) to type TOTP digits.

curben · on March 11, 2023

On Android, to unlock Keepass database secured with Yubikey, an alternative to Keepass2Android+ykdroid is KeePassDX[1] + Key Driver [2]. Both USB and NFC are supported.

[1]: https://f-droid.org/en/packages/com.kunzisoft.keepass.libre/

[2]: https://gitlab.com/kunzisoft/android-hardware-key-driver

curben · on Nov 30, 2022

I'm using xmlstarlet in Alpine as a bare minimum way to scrap a webpage in CI pipeline.

curben · on June 12, 2022

I'm using these FF addons CanvasBlocker and Spoof Timezone to spoof UA and timezone. I checked vytal.io and it shows those addons can't fully spoof web worker method. I usually use https://browserleaks.com/javascript to test spoofing addons.