53°F

Aaron Parecki

  • Articles
  • Notes
  • Photos
  • Aaron Parecki
    I've given many talks about how mobile apps can't be deployed with a secret, and using Twitter's 2013 "hacks" as an example. I'm just going to leave this completely unrelated string of random characters here for no particular reason

    GgDYlkSvaPxGxC4X8liwpUoqKwwr3lCADbz8A7ADU
    Portland, Oregon, USA • 43°F
    #twitter #oauth #security
    Thu, Feb 2, 2023 8:12pm -08:00
    100 likes 52 reposts 10 replies
    • Paul
    • Quirks & Co.
    • Ryan Berdeen
    • Twinkie Pie [OXIDIZED]
    • Ripley
    • Jens
    • carpetbomberz
    • Systemli :systemli:
    • mike :unverified:
    • Kohan Ikin
    • Dmitri Shuralyov
    • Chris Daniel
    • ember
    • Jonathan (JC) Curry
    • John Bowen
    • Mx. Aria Stewart
    • felix (grayscale) 🐺
    • Madiana A. Argon :verified:
    • Brian Clark
    • Bertrand 🏉
    • spar|fin|dig :: Jan Tietje
    • Joachim
    • number137
    • James Griffin
    • viernullvier
    • Sascha
    • Jamie Tanna
    • Eugen Pirogoff
    • peraTM 🚜
    • aberl
    • BenBE
    • spooky Ske-lil-ton 🦇
    • Friedemann
    • Katrin Bretscher 💛💙
    • infinite love Ⴟ
    • Paul Bowsher
    • bun :bunRetro:
    • Glenn Versweyveld
    • Philip Gillißen
    • xro
    • Molly
    • Redmer :verified:
    • Elia 🏳️‍⚧️
    • phaus
    • ⛧Satanist⛧
    • Joël 🍵
    • Charlie O'Hara
    • mtze
    • Florian
    • Kushal Dave
    • ths4bc
    • Tristan
    • Jonathan LaCour
    • Darren
    • Andreas S. :verified_breze:
    • GEM is truly truly outrageous
    • Aaron Ogle :linux: :manjaro:
    • Kathryn Long
    • Artur Weigandt
    • Johannes Ernst
    • syrc
    • balu
    • alex
    • Dan
    • Kristian
    • Nieselregen
    • Alistair
    • jack the nonabrasive
    • Ryan Francis
    • Korewa Onajijiko
    • Ryan Johnson
    • Myles B.
    • Petra Verbruggen
    • Mike Merrill
    • Karl McGuinness
    • Shawn Recinto 💻🎮💡
    • tim cappasskey
    • Find me at gRegorLove.com
    • Eric Wallace 🏴‍☠️
    • Kasper Zutterman
    • Gary Crye
    • Philipp Schürmann
    • de 🥃
    • stl-place
    • George Fletcher
    • Tim B
    • Justin Richer 🐀
    • DazzaGreenwood
    • Brent Halsey
    • Echotapper
    • Andrew Pouliot
    • @mrballistic@pdx.social
    • Bolesław Dawidowicz
    • Heather Downing
    • ⑆Luke Stein⑈
    • Gary F.
    • David Waite 🍥
    • Jon McLaren
    • Sakuradancer
    • Twinkie Pie [OXIDIZED]
    • Ripley
    • Salocin
    • Elijah Waxwing
    • Wade Dorrell
    • jfk
    • Anna
    • orinbot is down my life is empty
    • Ben Zanin
    • Dat Impact Pipeline
    • ember
    • Phillip Upton
    • Chris
    • Bertrand 🏉
    • ronaldopace
    • Karl Voit :emacs: :orgmode:
    • Ninad Pundalik
    • Sascha
    • sodoku
    • nano
    • overflo ☑️ ⭐⭐⭐
    • fruye‮
    • BenBE
    • spooky Ske-lil-ton 🦇
    • infinite love Ⴟ
    • Softwarewolf
    • still aetios anyway
    • Luttyz // Gabe :mutant_awoo:
    • Volpeon :drgn_verified:
    • Raphael Lullis
    • Patrick Seemann
    • xro
    • fluffel
    • Molly
    • Roger Schildmeijer
    • Hackhörnchen
    • Nigel
    • toto
    • Chris Evelyn
    • Charlie O'Hara
    • Jonathan LaCour
    • Darren
    • Artur Weigandt
    • Philipp Schürmann
    • balu
    • Dan
    • Cryptoparty Köln-Bonn
    • andreasdotorg
    • jwhevans
    • DazzaGreenwood twitter.com/dazzagreenwood
      Is that a cat in the preceding tweet?
      Fri, Feb 3, 2023 5:27pm +00:00 (via brid.gy)
    • DazzaGreenwood twitter.com/dazzagreenwood
      Hey now. gist.github.com/shobotch/51600…
      Fri, Feb 3, 2023 5:27pm +00:00 (via brid.gy)
    • Aaron Parecki twitter.com/aaronpk
      😈
      Fri, Feb 3, 2023 4:10pm +00:00 (via brid.gy)
    • Justin Richer 🐀 twitter.com/justin__richer
      I hovered over your tweet and got this dialog. It was very spooky.
      Fri, Feb 3, 2023 4:08pm +00:00 (via brid.gy)
    • Dan Moore twitter.com/mooreds
      Fri, Feb 3, 2023 3:44pm +00:00 (via brid.gy)
    • Karl Voit :emacs: :orgmode: graz.social/users/publicvoit

      @aaronpk https://gist.github.com/shobotch/5160017#file-key-md

      Fri, Feb 3, 2023 4:20am -08:00
    • Ric Fink twitter.com/ricfink
      OK Aaron, I successfully decrypted it. It says: "OAuth is the Breakfast of Champions!" Buy me lunch and I'll tell you how I did it!
      Fri, Feb 3, 2023 6:25am +00:00 (via brid.gy)
    • Daniel O'Holleran twitter.com/doholleran
      How did you guess my seed phrase?
      Fri, Feb 3, 2023 5:17am +00:00 (via brid.gy)
    • John Gordon appdot.net/users/jgordon

      @aaronpk

      "Weirdly" that string has google hits.

      Thu, Feb 2, 2023 8:47pm -08:00
    • social.veraciousnetwork.com/users/cdp1337

      @aaronpk From a dev standpoint it's just good practice, right? Distributing your consumer secret keys to so many devices so your team never misplaces it, right?....

      It's like when I share my ssh private key in my public github repo for backup purposes along with a list of all servers it can access. (/sarcasm)

      Thu, Feb 2, 2023 8:22pm -08:00
Posted in /notes using quill.p3k.io

Hi, I'm Aaron Parecki, Senior Security Architect at Okta, and co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and participate in the OAuth Working Group at the IETF. I also help people learn about video production and livestreaming and dabble in product design.

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Security Architect at Okta
  • IndieWebCamp Founder
  • OAuth WG Member

  • 🎥 YouTube Tutorials and Reviews
  • 🏠 We're building a triplex!
  • ⭐️ Life Stack
  • ⚙️ Home Automation
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Trips
  • Videos
  • Contact
© 1999-2023 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv