Matt Nordhoff
@mn0.us
He/him. Presently @mnordhoff@infosec.exchange. Previously @mnordhoff.
Reposted by Matt Nordhoff
This is amazing research by Nadia Heninger and her co-authors Wenyi Morty Zhang, Annie Dai, Keegan Ryan, Dave Levin and Aaron Schulman. TL;DR a huge number of satellite links over our heads are totally unencrypted. satcom.sysnet.ucsd.edu
🛰️ SATCOM Security
Research project homepage for SATCOM Security: papers, source code, and recent satellite communications vulnerabilities.
satcom.sysnet.ucsd.edu
October 14, 2025 at 1:16 AM
This is amazing research by Nadia Heninger and her co-authors Wenyi Morty Zhang, Annie Dai, Keegan Ryan, Dave Levin and Aaron Schulman. TL;DR a huge number of satellite links over our heads are totally unencrypted. satcom.sysnet.ucsd.edu
I think Bluesky is showing me more spam bots and propaganda now, but if the algorithm sends me a meme of some guy I don't recognize and subtitles in a language I can't read, it actually does fail to manipulate me.
October 4, 2025 at 7:36 AM
I think Bluesky is showing me more spam bots and propaganda now, but if the algorithm sends me a meme of some guy I don't recognize and subtitles in a language I can't read, it actually does fail to manipulate me.
Reposted by Matt Nordhoff
At our last MGM, we approved paying for legal advice about the UK's Online Safety Act. While we can afford this bill… it is just one bill. Laws like this are multiplying. So as awkward as this is, we are asking for help. See libera.chat/news/advice for more context.
libera.chat
October 1, 2025 at 10:57 PM
At our last MGM, we approved paying for legal advice about the UK's Online Safety Act. While we can afford this bill… it is just one bill. Laws like this are multiplying. So as awkward as this is, we are asking for help. See libera.chat/news/advice for more context.
Reposted by Matt Nordhoff
Update to this saga:
To test that the name wasn’t the issue, I changed it to “anti-transgender sentiment”, and submitted it for review again.
This is the response from Bluesky Community (1/?)
To test that the name wasn’t the issue, I changed it to “anti-transgender sentiment”, and submitted it for review again.
This is the response from Bluesky Community (1/?)
Welp, it’s time to publish this:
Bluesky Moderation has affirmatively dropped the ball with respect to allowing the transgender community on this site to protect itself.
I have a blocklist, titled “Transphobic”.
You can’t see it. Bluesky Community hid it.
Bluesky Moderation has affirmatively dropped the ball with respect to allowing the transgender community on this site to protect itself.
I have a blocklist, titled “Transphobic”.
You can’t see it. Bluesky Community hid it.
September 14, 2025 at 3:50 AM
Update to this saga:
To test that the name wasn’t the issue, I changed it to “anti-transgender sentiment”, and submitted it for review again.
This is the response from Bluesky Community (1/?)
To test that the name wasn’t the issue, I changed it to “anti-transgender sentiment”, and submitted it for review again.
This is the response from Bluesky Community (1/?)
Reposted by Matt Nordhoff
Welp, it’s time to publish this:
Bluesky Moderation has affirmatively dropped the ball with respect to allowing the transgender community on this site to protect itself.
I have a blocklist, titled “Transphobic”.
You can’t see it. Bluesky Community hid it.
Bluesky Moderation has affirmatively dropped the ball with respect to allowing the transgender community on this site to protect itself.
I have a blocklist, titled “Transphobic”.
You can’t see it. Bluesky Community hid it.
September 13, 2025 at 12:08 AM
Welp, it’s time to publish this:
Bluesky Moderation has affirmatively dropped the ball with respect to allowing the transgender community on this site to protect itself.
I have a blocklist, titled “Transphobic”.
You can’t see it. Bluesky Community hid it.
Bluesky Moderation has affirmatively dropped the ball with respect to allowing the transgender community on this site to protect itself.
I have a blocklist, titled “Transphobic”.
You can’t see it. Bluesky Community hid it.
Reposted by Matt Nordhoff
There is some chatter about a CA misissuing a certificate for 1.1.1.1.
This CA (crt.sh?caid=201916, only ~300 certs) is only trusted by the Microsoft root program and the eIDAS QWAC trusted list.
MS has not been actively managing their roots for years, and the EU wanted to push theirs on browsers.
This CA (crt.sh?caid=201916, only ~300 certs) is only trusted by the Microsoft root program and the eIDAS QWAC trusted list.
MS has not been actively managing their roots for years, and the EU wanted to push theirs on browsers.
Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020
Thank you, Youfu, for bringing this to the community’s attention.
groups.google.com
September 3, 2025 at 8:03 PM
There is some chatter about a CA misissuing a certificate for 1.1.1.1.
This CA (crt.sh?caid=201916, only ~300 certs) is only trusted by the Microsoft root program and the eIDAS QWAC trusted list.
MS has not been actively managing their roots for years, and the EU wanted to push theirs on browsers.
This CA (crt.sh?caid=201916, only ~300 certs) is only trusted by the Microsoft root program and the eIDAS QWAC trusted list.
MS has not been actively managing their roots for years, and the EU wanted to push theirs on browsers.
Reposted by Matt Nordhoff
Throw the Man Away With Me: Rejecting heteronormativity in Run Away With Me, Girl
While it says a lot about how forced heteronormativity cruelly forces queer people to diminish who they are, the story also envisions so much more for its heroines.
www.animefeminist.com/rejecting-he...
#pride
While it says a lot about how forced heteronormativity cruelly forces queer people to diminish who they are, the story also envisions so much more for its heroines.
www.animefeminist.com/rejecting-he...
#pride
June 28, 2025 at 1:13 AM
Throw the Man Away With Me: Rejecting heteronormativity in Run Away With Me, Girl
While it says a lot about how forced heteronormativity cruelly forces queer people to diminish who they are, the story also envisions so much more for its heroines.
www.animefeminist.com/rejecting-he...
#pride
While it says a lot about how forced heteronormativity cruelly forces queer people to diminish who they are, the story also envisions so much more for its heroines.
www.animefeminist.com/rejecting-he...
#pride
root-key-sentinel-not-ta-46211.mn-dns.monster
root-key-sentinel-not-ta-46211.mn-dns.monster
June 23, 2025 at 11:31 AM
Reposted by Matt Nordhoff
RAW MILK TIME
I was surprised to find most of the "raw milk cures ___" talking points from the last 20+ years come from one (1) raw milk dairy farmer in California.
Let's get to know him!
I was surprised to find most of the "raw milk cures ___" talking points from the last 20+ years come from one (1) raw milk dairy farmer in California.
Let's get to know him!
May 19, 2025 at 6:13 PM
RAW MILK TIME
I was surprised to find most of the "raw milk cures ___" talking points from the last 20+ years come from one (1) raw milk dairy farmer in California.
Let's get to know him!
I was surprised to find most of the "raw milk cures ___" talking points from the last 20+ years come from one (1) raw milk dairy farmer in California.
Let's get to know him!
Reposted by Matt Nordhoff
Confirmed: Microsoft stops new data centres worldwide
pivot-to-ai.com/2025/04/07/c... - text
www.youtube.com/watch?v=Jdby... - video
pivot-to-ai.com/2025/04/07/c... - text
www.youtube.com/watch?v=Jdby... - video
Confirmed: Microsoft stops new data centres worldwide
What do you call it when an economic bubble stops growing? In February, stock analysts TD Cowen spotted that Microsoft had cancelled leases for new data centres — 200 megawatts in the US, and one g…
pivot-to-ai.com
April 7, 2025 at 7:52 PM
Confirmed: Microsoft stops new data centres worldwide
pivot-to-ai.com/2025/04/07/c... - text
www.youtube.com/watch?v=Jdby... - video
pivot-to-ai.com/2025/04/07/c... - text
www.youtube.com/watch?v=Jdby... - video
Reposted by Matt Nordhoff
I just heard that a cryptography professor at Indiana University had his house raided and was fired. Don’t know much more. www.heraldtimesonline.com/story/news/l...
FBI, Homeland Security agents search house on Xavier Court in Bloomington
FBI, Homeland Security provide no details about Friday's raid at Bloomington home involving at least a dozen agents
www.heraldtimesonline.com
March 29, 2025 at 2:13 PM
I just heard that a cryptography professor at Indiana University had his house raided and was fired. Don’t know much more. www.heraldtimesonline.com/story/news/l...
Reposted by Matt Nordhoff
AI data centers: Microsoft steps on the gas
pivot-to-ai.com/2025/03/24/a... - text
www.youtube.com/watch?v=-wZ-... - video
pivot-to-ai.com/2025/03/24/a... - text
www.youtube.com/watch?v=-wZ-... - video
March 24, 2025 at 9:13 PM
AI data centers: Microsoft steps on the gas
pivot-to-ai.com/2025/03/24/a... - text
www.youtube.com/watch?v=-wZ-... - video
pivot-to-ai.com/2025/03/24/a... - text
www.youtube.com/watch?v=-wZ-... - video
Reposted by Matt Nordhoff
I acquired a Chrome extension for $5 and began redirecting the browsing traffic of existing users to whatever I wanted.
While doing so, I caught an ownership transfer of an extension with 400,000 installs that folks should be aware of.
www.secureannex.com/blog/buying-...
While doing so, I caught an ownership transfer of an extension with 400,000 installs that folks should be aware of.
www.secureannex.com/blog/buying-...
Buying browser extensions for fun and profit
An investigation into buying access to browsers through extensions
www.secureannex.com
March 18, 2025 at 1:58 PM
I acquired a Chrome extension for $5 and began redirecting the browsing traffic of existing users to whatever I wanted.
While doing so, I caught an ownership transfer of an extension with 400,000 installs that folks should be aware of.
www.secureannex.com/blog/buying-...
While doing so, I caught an ownership transfer of an extension with 400,000 installs that folks should be aware of.
www.secureannex.com/blog/buying-...
Reposted by Matt Nordhoff
filling out my pre-screening form for my annual physical and wondering when they’ll add “oh, you know, the expected amount these days” as an option for when they ask if i’m feeling down, depressed or hopeless
March 17, 2025 at 4:40 PM
filling out my pre-screening form for my annual physical and wondering when they’ll add “oh, you know, the expected amount these days” as an option for when they ask if i’m feeling down, depressed or hopeless
Admins can fuck off until they improve moderation, but this is a feature I had wanted, so I guess that's nice, in theory.
March 11, 2025 at 7:21 PM
Admins can fuck off until they improve moderation, but this is a feature I had wanted, so I guess that's nice, in theory.
Reposted by Matt Nordhoff
This is not a good combination of trending topics 😬
February 14, 2025 at 10:57 PM
This is not a good combination of trending topics 😬
"CDC Layoffs" and "Texas Outbreak" are trending next to each other 👍
February 14, 2025 at 9:40 PM
"CDC Layoffs" and "Texas Outbreak" are trending next to each other 👍
Reposted by Matt Nordhoff
they got rid of DEI and the right wing tech elites immediately started hiring based on experience
oh no wait lol
oh no wait lol
February 4, 2025 at 10:34 PM
they got rid of DEI and the right wing tech elites immediately started hiring based on experience
oh no wait lol
oh no wait lol
Reposted by Matt Nordhoff
Just to point out to people that @bsky.app has apparently decided that hating transphobes is "intolerant" and deserving of a label and being hidden.
Which is a nonsensical and bewildering decision.
Which is a nonsensical and bewildering decision.
January 22, 2025 at 8:08 PM
Just to point out to people that @bsky.app has apparently decided that hating transphobes is "intolerant" and deserving of a label and being hidden.
Which is a nonsensical and bewildering decision.
Which is a nonsensical and bewildering decision.
Reposted by Matt Nordhoff
Reposted by Matt Nordhoff
I kid you not, @itch.io has been taken down by Funko of "Funko Pop" because they use some trash "AI Powered" Brand Protection Software called Brand Shield that created some bogus Phishing report to our registrar, iwantmyname, who ignored our response and just disabled the domain
December 9, 2024 at 7:13 AM
I kid you not, @itch.io has been taken down by Funko of "Funko Pop" because they use some trash "AI Powered" Brand Protection Software called Brand Shield that created some bogus Phishing report to our registrar, iwantmyname, who ignored our response and just disabled the domain
Reposted by Matt Nordhoff
the SPLC has outed the Babylon Bee's very small number of writers www.splcenter.org/hatewatch/20...
Inside the Beehive
An SPLC Data Lab investigation of anti-LGBTQ+ and anti-immigrant content on The Babylon Bee and its sister site, Not the Bee, has uncovered multiple controversial businesses formerly run by owner Seth...
www.splcenter.org
November 20, 2024 at 1:12 AM
the SPLC has outed the Babylon Bee's very small number of writers www.splcenter.org/hatewatch/20...
Reposted by Matt Nordhoff
these internet issues today man 🙃
didn't expect the problems on our highest traffic day ever to have nothing to do with our code but rather:
- cut fiber cable by one of our ISP
- networking issues from our bare metal provider
- cloudflare DNS issues
didn't expect the problems on our highest traffic day ever to have nothing to do with our code but rather:
- cut fiber cable by one of our ISP
- networking issues from our bare metal provider
- cloudflare DNS issues
November 14, 2024 at 11:18 PM
these internet issues today man 🙃
didn't expect the problems on our highest traffic day ever to have nothing to do with our code but rather:
- cut fiber cable by one of our ISP
- networking issues from our bare metal provider
- cloudflare DNS issues
didn't expect the problems on our highest traffic day ever to have nothing to do with our code but rather:
- cut fiber cable by one of our ISP
- networking issues from our bare metal provider
- cloudflare DNS issues
Reposted by Matt Nordhoff
FIPS 140 is truly incredible.
SP 800-56A sort of reluctantly admits that if you just generated an ephemeral ECDH key pair, you can assume that the public key matches the private key. No shit.
Then the IG swoops in and says: no! You need to check!
How, you ask?
SP 800-56A sort of reluctantly admits that if you just generated an ephemeral ECDH key pair, you can assume that the public key matches the private key. No shit.
Then the IG swoops in and says: no! You need to check!
How, you ask?
November 13, 2024 at 11:50 PM
FIPS 140 is truly incredible.
SP 800-56A sort of reluctantly admits that if you just generated an ephemeral ECDH key pair, you can assume that the public key matches the private key. No shit.
Then the IG swoops in and says: no! You need to check!
How, you ask?
SP 800-56A sort of reluctantly admits that if you just generated an ephemeral ECDH key pair, you can assume that the public key matches the private key. No shit.
Then the IG swoops in and says: no! You need to check!
How, you ask?
Reposted by Matt Nordhoff
Inregret to inform you that I willed this into existence years ago.
November 13, 2024 at 12:44 AM
Inregret to inform you that I willed this into existence years ago.