Aaron Parecki

69°F

Jim Manico https://twitter.com/manicode

The absolutely varied advice I get from “experts” on how to configure bcrypt, scrypt and Argon2 is eternally frustrating. I’m getting ready to start recommending plaintext password storage if “crypto experts” cannot agree on standard configurations! :)

Portland, Oregon • 75°F

Fri, Jul 24, 2020 1:31am +00:00 (liked on Thu, Jul 23, 2020 6:52pm -07:00)
Barbara Schachner https://twitter.com/barschachner

Listening in to OAuth experts for the last 3 days at #osw2020 has been great and pretty humbling!

My main conclusion: use proven products and libraries from experts in the field, or you‘ll most likely get it wrong!

Thx also for the organization! Really awesome virtual event!

Portland, Oregon • 75°F

Thu, Jul 23, 2020 9:09pm +00:00 (liked on Thu, Jul 23, 2020 6:52pm -07:00) #osw2020
A quick description of how I’m using Hapity to live stream content to my website and syndicate it out to Twitter.
https://boffosocko.com/2020/07/23/livestreaming-directly-to-my-website/

Portland, Oregon • 75°F

Thu, Jul 23, 2020 4:23pm +00:00 (liked on Thu, Jul 23, 2020 5:30pm -07:00)
Vittorio https://twitter.com/vibronet

Excellent workshop sessions led by @hpsin_ and @aaronpk in full #osw2020 tradition - including the jetlag, despite attending from home!

Portland, Oregon • 66°F

Thu, Jul 23, 2020 6:22pm +00:00 (liked on Thu, Jul 23, 2020 11:29am -07:00) #osw2020
OAuth Security Workshop https://twitter.com/secworkshop

Who's got the nicest hair? @vibronet or the Alpaca? You decide! #osw2020

Portland, Oregon • 63°F

Thu, Jul 23, 2020 3:54pm +00:00 (liked on Thu, Jul 23, 2020 9:03am -07:00) #osw2020
Ben https://twitter.com/sangster

RSS feeds require you to opt in to view them.

A better comparison would be if any website could send you push notifications just because you visited.

Portland, Oregon • 62°F

Thu, Jul 23, 2020 3:04pm +00:00 (liked on Thu, Jul 23, 2020 8:55am -07:00)
Mikey Cee https://twitter.com/_Mikey_Cee

The best video I ever captured. #NewYork #WeatherChannel #NYC

Portland, Oregon • 60°F

Wed, Jul 22, 2020 11:03pm +00:00 (liked on Thu, Jul 23, 2020 7:04am -07:00) #NewYork #WeatherChannel #NYC
BenderTube📱🔌💡 https://twitter.com/BenderTubeOG

A few days later than expected, but the new setup is 98% done ✅. Just waiting for a couple cable management things for the last couple of wires

Portland, Oregon • 72°F

Thu, Jul 23, 2020 12:17am +00:00 (liked on Wed, Jul 22, 2020 8:51pm -07:00)
Lillian Karabaic 🥄🏳️‍🌈 BLM https://twitter.com/anomalily

I thought I was supposed to get abs in quarantine, and all I got was a deep distrust of late-stage capitalism.

Portland, Oregon • 75°F

Wed, Jul 22, 2020 6:39pm +00:00 (liked on Wed, Jul 22, 2020 2:20pm -07:00)
Dr. Fett https://twitter.com/dfett42

In this study by @____pieter____ 56% of OAuth providers are susceptible to the PKCE Sidestep attack that I described in https://danielfett.de/2020/05/16/pkce-vs-nonce-equivalent-or-not/ #osw2020

Portland, Oregon • 71°F

Wed, Jul 22, 2020 6:53pm +00:00 (liked on Wed, Jul 22, 2020 11:59am -07:00) #osw2020
Mitch https://mastodon.xyz/@mitchkiah

@aaronpk woah, love the paint there!

Portland, Oregon • 65°F

Wed, Jul 22, 2020 3:49pm +00:00 (liked on Wed, Jul 22, 2020 8:49am -07:00)
Jim Manico https://twitter.com/manicode

Theory: Twitter internal tools were comprised via CSRF due to insider information.

Portland, Oregon • 64°F

Wed, Jul 22, 2020 2:51pm +00:00 (liked on Wed, Jul 22, 2020 8:18am -07:00)
Taka@Authlete, BaaS for OAuth 2.0 & OpenID Connect https://twitter.com/darutk

"OAUTH 2.1" by Aaron Parecki (@aaronpk) in OAuth Security Workshop 2020 (#osw2020).

https://barcamptools.eu/oauth-security-workshop-2020/events/0d0423b6-5924-4e6f-8b3b-63edbbe0ae59/oauth_2_1

OAuth 2.1 aims to simplify the maze of the specifications.

Portland, Oregon • 64°F

Wed, Jul 22, 2020 2:40pm +00:00 (liked on Wed, Jul 22, 2020 8:17am -07:00) #osw2020
Taka@Authlete, BaaS for OAuth 2.0 & OpenID Connect https://twitter.com/darutk

Another client type "credentialed", in addition to "public" and "confidential". The concept is being explained by Aaron (@aaronpk) in #osw2020.

The OAuth 2.1 Authorization Framework
https://tools.ietf.org/html/draft-parecki-oauth-v2-1

Portland, Oregon • 64°F

Wed, Jul 22, 2020 2:48pm +00:00 (liked on Wed, Jul 22, 2020 8:17am -07:00) #osw2020
Vladimir Dzhuvinov 🇪🇺 🇧🇬 https://twitter.com/dzhuvi

OAuth 2.1 becomes the simpler & more secure #OAuth. A bunch of existing RFCs and drafts roll into one, so easier to follow too. Presented by @aaronpk at the #osw2020

Portland, Oregon • 64°F

Wed, Jul 22, 2020 2:57pm +00:00 (liked on Wed, Jul 22, 2020 8:16am -07:00) #OAuth #osw2020
Becki (& Chris) https://twitter.com/beckiandchris

The auto play drives me nuts, it’s like having music on a website

Portland, Oregon • 64°F

Wed, Jul 22, 2020 2:14pm +00:00 (liked on Wed, Jul 22, 2020 7:16am -07:00)
Taka@Authlete, BaaS for OAuth 2.0 & OpenID Connect https://twitter.com/darutk

"PROTECKING SINGLE-PAGE APPS USING OAUTH" by Aaron Parecki (@aaronpk) in #osw2020. Single-Page Application architectures are introduced.

Portland, Oregon • 64°F

Wed, Jul 22, 2020 1:00pm +00:00 (liked on Wed, Jul 22, 2020 6:10am -07:00) #osw2020
Dr. Fett https://twitter.com/dfett42

#osw2020

Portland, Oregon • 64°F

Wed, Jul 22, 2020 12:44pm +00:00 (liked on Wed, Jul 22, 2020 5:59am -07:00) #osw2020
Vladimir Dzhuvinov 🇪🇺 🇧🇬 https://twitter.com/dzhuvi

Today @aaronpk will be presenting #OAuth 2.1. The core OAuth grants are getting consolidated, security gets hardened with PKCE #osw2020 https://barcamptools.eu/oauth-security-workshop-2020/events/0d0423b6-5924-4e6f-8b3b-63edbbe0ae59/oauth_2_1

Portland, Oregon • 64°F

Wed, Jul 22, 2020 8:56am +00:00 (liked on Wed, Jul 22, 2020 4:52am -07:00) #OAuth #osw2020
Emoji Mashup Bot+ https://twitter.com/EmojiMashupPlus

base from 😨 (fear)
eyes from 😡 (angry)
mouth from 🥳 (party-horn)

Portland, Oregon • 78°F

Wed, Jul 22, 2020 3:15am +00:00 (liked on Tue, Jul 21, 2020 8:46pm -07:00)

older