kriive's comments

Yeah, I agree that 13 days from the last contact was maybe a bit too fast. But they haven't replied to this day and I reported the vuln two months earlier without response!

P.S. sorry for the american time dates, I don't know what I was thinking lol.

Hey! Congrats on the reverse engineering work and all the time you put in your research. As you and many other people have already said, RIGOL scopes are not exactly a security fortress, so this exploit I've found isn't impressive at all.

After finding the vuln, I checked online if someone else had already found the vuln, and I admit I have come across the EEVblog, but I didn't find the exact vuln I found (I also must admit I didn't read all the posts there).

I am sorry if I have in some way disrespected your work, but it wasn't my intention at all!

Well, it works on FF and certain builds of chromium (those built with ENABLE_PIPEWIRE flag on). I am using xdg-desktop-portal-wlr and it works quite good. I was able to present my desktop to others without significant hiccups. Once Electron enables Ozone (and builds with PIPEWIRE on) we will be able to use screen sharing also on teams and other electron-packaged apps. This obviously works for my workflow and I understand it won't work for everyone. I don't know about Zoom, but I heard (and thus not entirely sure) it works only on specific distros with some specific GNOME versions.

EDIT. I misread Slack for Zoom.

Well, I am using sway, and I have found that not true in my experience. Qt has also good support for Wayland and so do SDL-based apps. I don't use any GNOME native applications and I manage just fine.

I have been using sway on Fedora for a year. It's been really good so. It's a smaller niche than X.org's, but I get to do everything I need. HiDPI support is just right, just throw output eDP1-1 scale 2 in the config and you're set.

Clipboard works perfectly splendid, screen-sharing works (not as perfectly splendid as clipboard does), input works, chromium/electron is getting support for native wayland. Qt and GTK Wayland support's quite good.

I have had no problems whatsoever and I invite you to try it. I have no hard-proof evidence or numbers to support my opinion, just try it.

Rust Evangelism Strike Force

You are not required to pledge which politician you are going to vote in the next EU elections. The purpose for this is to facilitate contact between you and a local politician who has not publicly declared his/her vote intentions on article 13 yet. Your job is to convince him/her to vote against article 13.

I understand that the title is a little misleading, but come on!

P.S. I'm italian too.

Thank you, now I understand.

I'm not a crypto guy, but I'm trying to understand how this backdoor could be used by governments or WhatsApp/Facebook itself. I'm not entirely sure how such an attack based on this backdoor would work.

The article says that WhatsApp servers have the ability to trigger the clients to generate new keys, but even with new keys how can the server read the messages at all? Has the server got a copy of the new generated keys?

Probably there is something big I'm missing.

I don't really know what the anti-establishment movement in America is and what it proposes but I can tell you that what Five Star Movement in Italy believes in is yet to be understood. They have too many conflicting ideas in the same party. Some are in favour of Europe, others are not. Some are pro-Euro, others are not. If there's a thing they are good at it's shouting. They have no political plans, but they shout loud. Very loud. Having zero experience in managing a country.

Short answer: yes and no. People wanted to say no to Renzi's politics without a clear reason. The focus shifted from the actual consitituion reform to Renzi's presidency, and he can blame himself.

People felt that Renzi didn't have the right to be the president. People thought that Renzi was a liar, that the constitutional reform was only a way for himself to get more power. So many people voted accordingly to their feelings, not basing their vote on what they tought about the reform. Italy's vote is the result of an irrational hate directed to the establishment. People thought they were "saving" the Constitution. Not joking. In Italy people don't know how many articles are there, when the constitution was written and in which situation it was written. And then they pretend to "save" it.

Sorry for my english. Oh, and that's the opinion from a "yes" voter.