honk

Stand back... I'm going to write some code.

kuijsten bonked 05 Apr 2026 11:29 +0200
original: eanakashima@hachyderm.io

My greatest professional accomplishment of the year: I got my exec & manager teammates saying "point positive," a term from whitewater rafting and kayaking.

Meaning: when facing hazards, point people toward where to go/what to do, rather than drawing attention to everything to avoid.

A drawing showing a river rafter who has fallen out of a raft in rapids. The people still in the raft are pointing to a safe way to swim rather than at rocks to avoid. Caption: "Point positive: pointing the way to go, rather than at the problem." Drawing created by sketchplanations.

kuijsten bonked 24 Mar 2026 16:32 +0100
original: cakewallet@mstdn.plus

2/ Zcash is here 😍

In Cake Wallet, Zcash is implemented the right way: shielded by default, with privacy built in, not optional. You get the best privacy that Zcash has to offer, with no extra hoops to jump through or manual steps to take. A modern, open-source experience, no waitlist required 😉

kuijsten bonked 09 Mar 2026 15:36 +0100
original: smaurizi@mastodon.social

Where: #Berlin
When: March 19-23

Don't miss this great conference on the impact of #WikiLeaks organised by #DisruptionLab and #TatianaBazzichelli

https://www.disruptionlab.org/exposing-crimes-is-not-a-crime

kuijsten bonked 28 Feb 2026 17:06 +0100
original: nilix@cafe.nilfm.cc

#honkers ; does anybody know what happened to Ted?

Also does anybody have an up-to-date clone of honk? it appears the version i'm running is newer than the version i have the source for and the wayback machine doesn't have consistent snapshots of the source :<

kuijsten honked 28 Feb 2026 07:05 +0100

@GrapheneOS any idea if a recent Pixel with your OS is vulnerable to any of the new airsnitch attacks?

kuijsten bonked 28 Feb 2026 06:48 +0100
original: vanhoefm@infosec.exchange

We found that Wi-Fi client isolation can often be bypassed. This allows an attacker who can connect to a network, either as a malicious insider or by connecting to a co-located open network, to attack others.

NDSS'26 paper: https://www.ndss-symposium.org/wp-content/uploads/2026-f1282-paper.pdf
GitHub: https://github.com/vanhoefm/airsnitch

Excellent article on the work by Dan Goodin: https://arstechnica.com/security/2026/02/new-airsnitch-attack-breaks-wi-fi-encryption-in-homes-offices-and-enterprises/

I'd say we bypass Wi-Fi encryption, in the sense that we can bypass client isolation. We don't break Wi-Fi authentication or encryption. Crypto is often bypassed instead of broken. And we bypass it ;)

kuijsten honked 27 Feb 2026 16:59 +0100

Anyone know where @tedu is? https://flak.tedunangst.com has been offline for a while...

kuijsten honked back 27 Feb 2026 16:57 +0100
in reply to: https://jasette.facil.services/users/plutocrash/statuses/116138065811800131

@plutocrash I also wonder what's up. Anyone know where @tedu is?

kuijsten honked back 17 Feb 2026 15:18 +0100
in reply to: https://exquisite.social/users/mischa/statuses/115928807683569375

@mischa sorry only see it now :)

The back and forth was about getting a replacement module, it being shipped to the wrong address, missing a memory module, summer holiday, etc. etc. Apart from the summer holidays they were quite responsive.

kuijsten honked back 19 Jan 2026 19:38 +0100
in reply to: https://exquisite.social/users/mischa/statuses/115887434653018434

@mischa @js after a long back and forth with Protectli I don't have a successor yet. Good to know Mischa!

kuijsten honked back 23 Dec 2025 11:00 +0100
in reply to: https://cybervillains.com/users/djm/statuses/111255948769148166

@damienmiller could you elaborate a bit on how manifest v3 can mitigate supply chain attacks? There's nothing that can stop a hijacked developer account pushing a new malicious update, is there?

As stated here: https://cybervillains.com/@djm/111255948769148166 in this (old) thread https://infosec.exchange/@lcamtuf/111253626757075766

kuijsten honked 26 Oct 2025 13:00 +0100

snaps v1 is released! a backup program to backup untrusted hosts and protects for example against the rsync exploits from last year (https://phrack.org/issues/72/11_md#article)

After running the beta release since 2018 reliably, it is time to call it stable.

https://github.com/timkuijsten/snaps

#openbsd #backups

kuijsten honked back 11 Oct 2025 21:38 +0200
in reply to: https://exquisite.social/users/mischa/statuses/115349666290498337

@mischa ♥ goeie timing ook :)

kuijsten honked 09 Oct 2025 16:25 +0200

Pretty surprised to see that the armv6m optimized Ascon-Hash256 (winner of NISTs lightweight crypto competition) is 3x slower than the standard BLAKE2s reference implementation on a Cortex-M0+ 😲

#hashing #ascon

kuijsten honked back 08 Oct 2025 16:23 +0200
in reply to: https://chaos.social/users/kora/statuses/115338622636725761

@kora right, makes sense.

blake3 came after one of the blake authors realizing there is "Too Much Crypto":
1. https://eprint.iacr.org/2019/1492.pdf
2. https://www.youtube.com/watch?v=u9wPIWZYxLw
3. https://toomuchcrypto.xyz/

kuijsten honked back 08 Oct 2025 11:22 +0200
in reply to: https://chaos.social/users/kora/statuses/115334905654998639

@kora I see Noise stateful hash objects mentioned in the blake3 paper and because of past fame with blake2, especially w.r.t. the Noise framework.

kuijsten honked 07 Oct 2025 21:10 +0200

Hi @kora, thanks for making rosenpass, it looks very well composed and engineered!

Question, has blake3 been considered for rosenpass and what were the reasons to settle on shake256 instead?