Development AI vs Runtime AI - www.grepular.com/Development_...

Protecting Your Host from Malicious Dependencies This isn't limited to NodeJS, but it seems to happen a lot more frequently in that ecosystem. A commonly used dependency gets compromised, developers...

Protecting Your Host from Malicious Dependencies - www.grepular.com/Protecting_Y...

Stadia Maps Privacy Fail This is a tale as old email, but it made me laugh so I thought I'd share it. I have an account with https://stadiamaps.com . I don't even remember setting...

Stadia Maps Privacy Fail - www.grepular.com/Stadia_Maps_...

Cert Authorities Check for DNSSEC From Today About 14 years ago I set up DNSSEC . I've been running it on all of my domains ever since, without issue. First using bind9 and then later using PowerDNS...

Cert Authorities Check for DNSSEC From Today - www.grepular.com/Cert_Authori...

Happy Pi Day

Website Testing on Steroids In a recent post, here I spoke briefly about how I use browser tests to test this website. This has come a long way since I wrote that post so I thought I...

Website Testing on Steroids - www.grepular.com/Website_Test...

ParseMail - www.grepular.com/ParseMail

New Website, New Technology - www.grepular.com/New_Website_...

Spain luxury hotel scammer 'booked rooms for one cent' Police arrest a 20-year-old suspected of defrauding a luxury Madrid hotel of more than €20,000 by manipulating an online payment system.

Somebody knows how to use his browser dev tools www.bbc.co.uk/news/article...

I got myself a Claude Pro plan. The quota is so low I ran out of the 5 hour quota in 90 mins, twice, and after 3 hours of total coding time, I've used 29% of my weekly quota. They should rename the "Pro" plan to "Toy" and the "Max" plan to "Min". Does the "Pro" plan actually work for anyone?

Apple's "Protect Mail Activity" Doesn't Work - www.grepular.com/Apples_Prote...

Security scanners surface issues, but rarely explain what to fix first or why it matters.

Red Sift Radar Lite helps close that gap. Enter a domain to get a prioritized assessment with clear guidance on what to do next.

Free to use, no signup required: redsift.com/tools/radar-...

People are talking how #Xbox Game Pass Ultimate is increasing in price by 50%. Whilst true, it's actually a 75% increase on what I was paying a year ago, here in the UK. And a 110% increase on what I was paying 2 years ago.

Immortal SSH Sessions - www.grepular.com/Immortal_SSH...

Fun With Gzip Bombs and Email Clients - www.grepular.com/Fun_with_Gzi...

Jeff Fortin doubles down on this insane idea that is apparently prevalent at GNOME that security vulnerabilities in dependencies can be ignored indefinitely as long as a bug report exists. Never seen this opinion outside of GNOME. gitlab.gnome.org/GNOME/geary/...

Finally got around to creating my "Bad Email Clients" page - www.emailprivacytester.com/badClients - I will update it with more clients in time.

Andre Klapper went and closed both issues. Presumably he's worried how bad they will look if the devs for either client went and actually addressed this issue instead of passing the buck.

Email clients Balsa and Geary are also vulnerable to the link preconnect privacy issue I recently blogged about in Evolution Mail. Although not to the dns prefetch one. New bugs at gitlab.gnome.org/GNOME/geary/... and gitlab.gnome.org/GNOME/balsa/...

Evolution Mail Users Easily Trackable Part 2 - www.grepular.com/Evolution%20...

I've added a new test to the Email Privacy Tester www.emailprivacytester.com/testDescript... - This one gives you the client IP of Evolution Mail users prior to clicking "Load Remote Content". May affect other clients too.

Evolution Mail Users Easily Trackable - www.grepular.com/Evolution_Ma...

Exim users. I made you a fancy Docker image - hub.docker.com/r/grepular/e...

Always fun to get an update on a Mozilla Thunderbird security bug I reported 13 years ago. Finally changed from Status: new to Status: assigned. By some automation though so probably doesn't mean anyone will actually look at it - bugzilla.mozilla.org/show_bug.cgi...

After years of self hosting NextCloud, and before that OwnCloud, I have finally migrated to Radicale. Running a humongous php app when all I wanted was calendar and contacts sync never quite sat right with me. Syncthing has been there for my file syncing needs.

Copilot just randomly suggested I leave a comment "This is a bit of a hack but it works" next to some code I wrote

Blocking Russian IPs - www.grepular.com/Blocking_Rus...

If this is your first time here, you might want to read the about page and/or the privacy policy.Sorry, but you'll need to enable JavaScript to use the form below. On the plus side, there is no cross-origin content.

Realised I'd accidentally left a Twitter link on www.emailprivacytester.com. Gross. Removed with haste.

Hello World. Here to see what all the fuss is about. Will most likely post my Blog posts here from www.grepular.com/blog/