Event JSON
{
"id": "7c11261c19ab52cd703afdce6402dbaad06b246b366209775257432ef216805a",
"pubkey": "e13fe8e9df7bebaf8baf5dfdd964330b0f3b95985245fa86101de0a5daf75827",
"created_at": 1703416951,
"kind": 1,
"tags": [
[
"p",
"a06ded906ec87a6df3f214351ebab015251abeb06ecfed0054781b1414fa2dd3",
"wss://relay.mostr.pub"
],
[
"p",
"37c792cd36c0d32874597fb047554fe7359ef27a849ff71552313641c5eaf08e",
"wss://relay.mostr.pub"
],
[
"t",
"37c3"
],
[
"t",
"itsec"
],
[
"t",
"terrapin"
],
[
"t",
"smtpsmuggling"
],
[
"t",
"ssh"
],
[
"t",
"smtp"
],
[
"t",
"vince"
],
[
"t",
"secconsulting"
],
[
"proxy",
"https://digitalcourage.social/users/chpietsch/statuses/111635133306440811",
"activitypub"
]
],
"content": "Reading about the recent SMTP and SSH vulnerabilities, I get the impression that open source projects, proprietary vendors and government agencies such as nostr:npub15pk7myrwepaxmuljzs63aw4sz5j3404sdm876qz50qd3g9869hfsted683 don't know how to talk to each other. They should at least have something like a red phone.\n\nPlease comment here if you have a constructive idea on how to improve the situation! #SECconsulting seems to assume that everyone uses #VINCE, a CMU service I had never heard of.\n\n#SMTP:\nhttps://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/\nhttps://www.postfix.org/smtp-smuggling.html\n\n#SSH:\nhttps://terrapin-attack.com/patches.html\n\n#SMTPsmuggling #Terrapin #ITsec #37c3\n\nhttps://digitalcourage.social/system/media_attachments/files/111/635/090/869/059/282/original/5258391cef17f25a.png\n\nhttps://digitalcourage.social/system/media_attachments/files/111/635/096/766/220/504/original/f88b625483e0f437.png\n\nhttps://digitalcourage.social/system/media_attachments/files/111/635/101/861/243/222/original/0b947d383abe080a.png",
"sig": "aa1389fda7dacc9eda170c40c78b99811bbcc3809bb140f762282f60d5d079d3bb83930865360bc3f6a3052a222ccfdae8a8f8cc23089ab82e4ae9300a927fc1"
}
