fmarier

#!/usr/bin/env node

const
express = require('express'),
app = express.createServer(),
clientSessions = require("client-sessions");

app.use(clientSessions({
    secret: 'secret'
  }));

fmarier

#!/usr/bin/env node

const
express = require('express'),
app = express.createServer(),
clientSessions = require("client-sessions");

app.use(clientSessions({
    secret: 'secret',
    cookie: {

fmarier

[[email protected] www]$ cat .htaccess 
RewriteEngine on
RewriteCond %{QUERY_STRING} resource=acct:(.+)
RewriteRule ^/.well-known/webfinger /profile/%1? [L]

[[email protected] www]$ cat profile/[email protected]
{
  "subject": "acct:[email protected]",
  "links": [
    {

fmarier

Keybase proof

I hereby claim:

• I am fmarier on github.
• I am fmarier (https://keybase.io/fmarier) on keybase.
• I have a public key whose fingerprint is 8C47 0B2A 0B31 568E 110D 4325 1628 1F2E 007C 98D1

To claim this, I am signing this object:

fmarier

nsDocShell as an example client of the nsIHttpChannel API

by Stephen Workman

1. nsDocShell::LoadURI(string)
   • create nsIURI from string
2. nsDocShell::LoadURI(nsIURI)
   • creates 2 nsIInputStream for read response from; passes them with URI to ...
3. nsDocShell::InternalLoad

fmarier

--- /tmp/muli1.css	2019-11-15 15:23:17.118365776 -0800
+++ /tmp/muli2.css	2019-11-15 15:23:43.893940366 -0800
@@ -2,6 +2,30 @@
 @font-face {
     font-family: 'Muli';
     font-style: italic;
+    font-weight: 200;
+    src: url(./muli/Muli_200_italic_19882c2c7f40473fb6ffcf2c9ae29c9d_vietnamese_v11.woff2) format('woff2');
+    unicode-range: U+0102-0103, U+1EA0-1EF9, U+20AB;
+}

fmarier

--- poppins1.css	2019-11-15 17:41:43.198503250 -0800
+++ poppins2.css	2019-11-15 17:41:58.294222079 -0800
@@ -1,4 +1,51 @@
-
+/* devanagari */
+@font-face {
+    font-family: 'Poppins';
+    font-style: italic;
+    font-weight: 100;
+    src: url(./poppins/Poppins_100_italic_0d7e19fe5b51588a56ee51ac676b63d8_devanagari_v5.woff2) format('woff2');

fmarier

FILE: /home/francois/devel/admin-columns/src/js/admin/columns/form.js
----------------------------------------------------------------------------------------------------------------
FOUND 3 ERRORS AFFECTING 1 LINE
----------------------------------------------------------------------------------------------------------------
 158 | ERROR | HTML string concatenation detected, this is a security risk, use DOM node construction or a
     |       | templating language instead: attr_class+. (WordPressVIPMinimum.JS.StringConcat.Found)
 158 | ERROR | HTML string concatenation detected, this is a security risk, use DOM node construction or a
     |       | templating language instead: message+. (WordPressVIPMinimum.JS.StringConcat.Found)
 158 | ERROR | HTML string concatenation detected, this is a security risk, use DOM node construction or a
     |       | templating language instead: +'</p></div>'. (WordPressVIPMinimum.JS.StringConcat.Found)

fmarier

#!/usr/bin/python3

import csv
import requests
from urllib.parse import urlparse, urlunparse

def feedburner_upgrade(url):
    parsed = urlparse(url)
    if parsed.netloc in ('feeds2.feedburner.com', 'feeds.feedburner.com', 'feedproxy.google.com'):
        return parsed._replace(scheme='https').geturl()

fmarier

by Bill “Woody” Woodcock, Quad9

https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20video%20and%20slides/DEF%20CON%2029%20-%20Bill%20Woodcock%20-%20Defending%20Against%20Nation-state%20%28legal%29%20Attack%20-%20Live.mp4

Started in 2016. EU privacy regulators came to PacketFence because they wanted to see a PoC of a GDPR-compliant DNS recursive resolver.

At the time there were only two public resolvers (Google and OpenDNS) and