San Francisco is so proud to be true! 
#SanFrancisco #Pride #Authenticity
Recent searches
Search options
#authenticity
2 posts2 participants0 posts today
Ambiguous impulses for your mental cinema!
#contemporaryArt #mentalCinema #rubberStamp #reliefPrinting #saveBioDiversity #climateActionNow #systemChange #endFossilFuels #makeArtNotWar #noAFD #NoRacism #NoFascism #humanRights #humanDignity #Нетвойны #graffiti #streetArt #banksy #belikeThePanda #panda #stencil #silhouette #scheme #drippings #splatters #bloodStains #defendYourRights #fightForYourRight #resistance #civilDisobidience #moralCourage #zivilcourage #sincerity #honesty #authenticity
The Dead Internet Theory invites us to reflect on our online interactions. By prioritizing authenticity and engaging meaningfully, we can create a vibrant digital community. Let’s champion genuine connections and make the internet a better place! 
#DeadInternetTheory #DigitalLandscape #OnlineEngagement #Bots #Authenticity #Technology #SocialMedia #Curiosity #InternetCulture #AI #CommunityBuilding #FutureOfDigital
Medium · The Dead Internet Theory: Unraveling the Mysteries of Our Digital Realm.
Release your inner Hilbert. Find the axioms and assert them.
It's OK to seek out axioms. Even if you aren't a genius.
Look for the truth in the simplest possible terms. That's why we have been placed on this troubled Earth. Us postulating axioms is His will.
This is good and meaningful. On many levels.
The always excellent actor, director and writer #AlanAlda (of M*A*S*H fame), interviewd by the reliable #SimonHattenstone. Very moving.
The Guardian · ‘My mother didn’t try to stab my father until I was six’: Alan Alda on childhood, marriage and 60 years of stardom
Authenticity 500 Index
"The Authenticity 500 Index is the definitive ranking of the most authentic brands in the world. The index is based on a survey of thousands of people, and it measures brands on factors such as transparency, consistency, and social responsibility."
AUTHENTICITY.coAuthenticity 500 IndexThe Authenticity 500 Index is the definitive ranking of the most authentic brands in the world. The index is based on a survey of thousands of people, and it measures brands on factors such as transparency, consistency, and social responsibility.
Replied in thread
"As part of your earliest remarks, make sure to talk about some kind of link you have with the audience. Preferably something the audience knows more about than you do. Give them something to feel good about, and feel good about listening to you. This opens up their ears & will make them care around 100 times more about the rest of your presentation."
This is sound advice, from someone who knows what they are talking about, 100% yes.
This week, I have discovered something important about myself: I am AuDhd — autistic and ADHD.
A few years ago, close family suggested that I might be autistic. I started to wonder too, but life kept moving and I pushed it aside. Recently, my psychologist recommended a full assessment. I decided it was time to find out.
Now it’s confirmed. I’m officially diagnosed.
It’s life-changing.
It’s a revelation.
It explains so much about who I am and how my brain works.
I finally have answers to the questions I’ve carried for years. Why I think the way I do. Why I experience the world so intensely. Why things that seem “easy” for others cost me so much energy.
I’ve already spent time grieving the parts of my life shaped by misunderstanding — both from others and from myself. This diagnosis doesn’t change who I am. It simply gives me language for it. It makes sense of a lifetime of being “too much,” “too sensitive,” “too intense.”
I’m not broken.
I’m not a failed version of normal.
I’m neurodivergent — and there is strength in that.
I'm still learning what Unmasking for me means, but here are a few things i plan to start doing:
• Asking for clarity instead of masking confusion
• Setting up my life around my brain’s natural rhythms
• Refusing to apologise for my sensory needs
• Speaking plainly about how I experience the world
Getting this diagnosis is not an end. It’s a beginning.
If you’re walking this path too — late-diagnosed, learning who you really are underneath the masks — you are not alone.
We are allowed to exist as we are.
I’m AuDHD.
I’m proud.
I’m building a life that finally makes sense.
Replied in thread
A personal reflection on how trust and professional capabilities are being destroyed by the use of genAI tools. Precise and nuanced. 100% yes to every sentence in this article.
Honesty.
It's that simple. Try to be honest. In what you think, in what you say. Say it as it is.
Be honest. Nothing is harder. This is the battle.
(What you do
in private, what you do in public, that's annother question.)
Accept your mistakes, explain how they came about. Learn.
Don't let cliches or AI speak on your behalf. (Aren't they the same?)
Naturism is a #celebration of #authenticity & #freedom, a recognition of the inherent #beauty of both the human body & the #natural world that surrounds us. In embracing our #nakedness, we rediscover a sense of #liberation & #connection that transcends societal constraints, allowing us to revel in the simple joy of being alive. #naturism #nudism #noclothes #FKK #nude #Naturetherapy
Continued thread
The last part of the book Talk: The Science of Conversation and the Art of Being Ourselves discusses conversations between people who may not agree. Other books have tackled this subject at length, so I won’t rehash the ideas here.
While some of the ideas in the book aren’t new (to me), I think they could be applied to collective benefit, both in person and on social media. Less one-upmanship, fewer “gotcha” questions, less correction, less ego. More question asking, more connection, and more kindness, most of all.
end
My 12yo daughter is into the Young Sheldon series right now. Sometimes she invites me in for a shared viewing. (I treasure it while it lasts.) So it came to pass that I saw young Sheldon's too-good-to-be-true grandma quoting Sissy Spacek to Sheldon, as a role model of Texan resilience.
That made me remember and cherish how much I love the work of Sissy Spacek.
Sissy Spacek is right, whatever she does. A real actor, flawless, giving life and depth to every character she plays. I know next to nothing about her, but I do know that she has the magic touch.
Thank you, Young Sheldon, and thank you, my daughter, for this reconnection.
"I do not want a computer to summarise texts sent by my friends into shorter sentences, as though the work of being updated on the lives of those I love is somehow strenuous or not what being alive is all about."
Writer and painter Joseph Earp nails it in this Guardian essay.
The Guardian · AI promises to free up time. But what if it spares us from learning, writing, painting and exploring the world?
Why AI Writing Will Never Worry Me
I believe this dystopian wake-up call will ignite the human soul Continue reading on The Writing Cooperative »
https://writingcooperative.com/why-ai-writing-will-never-worry-me-56f69d5d562
#creativity #ai #authenticity #creativewriting #aiwriting
@indieauthors
MediumMedium
One thing that may happen as you grow and step into your authenticity is that your current relationships may feel unsatisfying.
You may now crave a different dynamic and wish for different needs to be met (or the same needs to be met in a different/better way).
You don't have to end relationships with people who are in your life, but you may consider renegotiating the terms. Whether or not they are on board with that will remain to be seen.
"Franse overheid voert phishingtest uit op 2,5 miljoen leerlingen"
https://www.security.nl/posting/881630/Franse+overheid+voert+phishingtest+uit+op+2%2C5+miljoen+leerlingen
KRANKZINNIG!
Het is meestal onmogelijk om nepberichten (e-mail, SMS, ChatApp, social media en papieren post - zie plaatje) betrouwbaar van echte te kunnen onderscheiden.
Tegen phishing en vooral nepwebsites is echter prima iets te doen, zoals ik vandaag nogmaals beschreef in https://security.nl/posting/881655.
(Big Tech en luie websitebeheerders willen dat niet, dus is en blijft het een enorm gevecht).
Replied in thread
@BjornW :
I've stopped doing that after a lot of people called me an idiot and a liar if I kindly notified them. I stopped, I'll get scolded anyway.
Big tech and most admins want everyone to believe that "Let's Encrypt" is the only goal. Nearly 100% of tech people believe that.
And admins WANT to believe that, because reliable authentication of website owners is a PITA. They just love ACME and tell their website visitors to GFY.
People like you tooting nonsense get a lot of boosts. It's called fake news or big tech propaganda. If you know better, why don't you WRITE BETTER?
It has ruined the internet. Not for phun but purely for profit. And it is what ruins people's lives and lets employees open the vdoor for ransomware and data-theft.
See also https://infosec.exchange/@ErikvanStraten/112914047006977222 (and, in Dutch, https://security.nl/posting/881296).
Infosec ExchangeErik van Straten (@ErikvanStraten@infosec.exchange)🌘DV-CERT MIS-ISSUANCES & OCSP ENDING🌒
🧵#1/3
On Jul 23, 2024, Josh Aas of Let's Encrypt wrote, while his nose was growing rapidly:
<<< Intent to End OCSP Service
[...]
We plan to end support for OCSP primarily because it represents a considerable risk to privacy on the Internet.
[...]
CRLs do not have this issue. >>>
https://letsencrypt.org/2024/07/23/replacing-ocsp-with-crls.html
🚨 On THAT SAME DAY, Jul 23, 2024, LE (Let's Encrypt) issued at least 34 certs (certificates) for [*.]dydx.exchange to cybercriminals, of which LE revoked 27 mis-issued certs approximately 6.5 hours later.
Note that falsified DNS records may instruct DNS caching servers to retain entries for a long time; therefore speedy revocation helps reducing the number of victims.
Apart from this mis-issuance *blunder*, CRL's have HUGE issues that Josh does not mention: they are SSSLLLOOOWWW and files are potentially huge - while OCSP is instantaneous and uses little bandwith.
🌘NO OCSP INCREASES INTERNET RISKS🌒
If LE quits OCSP support, the average risk of using the internet will *increase*.
🌘LIES🌒
Furthermore, the privacy argument is mostly moot, as nearly every website makes people's browsers connect to domains owned by Google (and even let's those browsers execute Javascript from third party servers, allowing nearly unlimited espionage). In addition, IP-addresses are sent in the plain anyway (📎).
(📎 When using a VPN, source and destination IP-addresses *within the tunnel* are not visible for anyone with access to the *outside* of the tunnel - but they are sent in the plain between the end of the tunnel and the actual server.)
Worse, the remote endpoint of your E2EE https connection increasingly often is *not* the actual server (that website was moved to sombody else's server in the cloud anyway), but a CDN proxy server which has the ability to monitor everything you do (unencrypting your data: three letter agencies love it, FISA section 702 grants them unlimmited access - without anyone informing you).
🤷 LE may try to blame others for their mis-issuance blunder, but *THEY* chose to use old, notoriously untrustworthy, internet protocols (BGP and DNS, including database records - that DNSSEC will never protect) as the basis for authentication. By making that choice, LE and other DV cert suppliers were simply ASKING for trouble.
🔓 In fact, the promise that Let's Encrypt would make the internet safer was misleading from the start: domain names are mostly meaningless to users, 100% fault intolerant, unpredictable and easily forgotten. If your browser is communicating with a malicious server, encryption is pointless.
Josh, stop lying to us; your motives are purely economical.
🌘CORRUPT: BIG TECH FACILITATES CRIME🌒
DV-certs were heavily promoted by Google (not for phun but for profit) after their researchers "proved" that it was possible to show misleasing identification information in the browser's address bar after certificate mis-issuance (the "Stripe, Inc" incident, https://arstechnica.com/information-technology/2017/12/nope-this-isnt-the-https-validated-stripe-website-you-think-it-is/).
This message was repeated by many specialists (e.g. https://www.troyhunt.com/paypals-beautiful-demonstration-of-extended-validation-fud/) with stupid arguments: certificates do NOT directly warrant reliable websites.
OV and EV certificates, and QWAC's, more or less reliably, warrant *WHO OWNS* a domain name. That means that users know *who* they're doing business with, can depend on their reputation and can sue them if they violate laws.
"Of course" Google recently lost trust in Entrust for mis-issuing certificates (https://security.googleblog.com/2024/06/sustaining-digital-certificate-security.html).
Meanwhile the internet has become a corrupt and criminal mess; its users get to see misleading identification info in their browser's address bar WAY MORE OFTEN, e.g. https:⁄⁄us–usps–ny.com (for loads of examples see https://www.virustotal.com/gui/ip-address/188.114.96.0/relations; tap ••• a couple of times).
Supporting DN's like "ing–movil.com" and "m–santander.de" *is* facilitating cybercrime, by repeatedly mis-issuing certs for them (see https://crt.sh/?q=ing-movil.com and https://crt.sh/?q=m-santander.de) and by letting them hide behind a CDN (see https://www.virustotal.com/gui/domain/ing-movil.com/details and https://www.virustotal.com/gui/domain/m-santander.de/details).
In addition, *thousands* of DV-certs have been mis-issued - without *their* issuers getting distrusted by Google, Microsoft, Apple and Mozilla.
People have their bank accounts drained and companies get slammed with ransomware because of this.
But no Big Tech company (including the likes of Cloudflare) takes ANY responsibility; they make Big Money by facilitating cybercrime. Not by issuing "free" DV-certs, but by selling domain names, server space and CDN functionality, and by letting browsers no longer distinguish between useful and useless certs. They've deliberately made the internet insecure *FOR PROFIT*.
🌘CERT MIS-ISSUANCE ROOT CAUSE🌒
The mis-issuance of LE certs was caused by the unauthorized modification of customer DNS records managed by SquareSpace; this incident was further described in https://www.bleepingcomputer.com/news/security/defi-exchange-dydx-v3-website-hacked-in-dns-hijack-attack/.
Note that a similar attack, also affecting SquareSpace customers, occurred on July 11, 2024 (see https://www.bleepingcomputer.com/news/security/dns-hijacks-target-crypto-platforms-registered-with-squarespace/). Even if it *looks like* that no certs were mis-issued during the July 11 incident, because (AFAIK) none of them have been revoked, this does not warrant that none of them were mis-issued; such certs can still be abused by attackers, albeit on a smaller scale.
🌘MORE INFO🌒
Please find additional information in two followups of this toot:
🧵#2/3 Extensive details regarding Mis-issued dydx.exchange certs on 2024-07-23;
🧵#3/3 Links to descriptions of multiple other DV-cert mis-issuance issues.
🌘DISCLAIMER🌒
I am not (and have never been) associated with any certificate supplier. My goal is to obtain a safer internet, in particular for users who are not forensic experts. It is *way* too hard for ordinary internet users to destinguish between 'fake' and 'authentic' on the internet. Something that, IMO, can an must significantly improve ASAP.
Edited 08:16 UTC to add people:
@troyhunt
@dangoodin
@BleepingComputer
@agl
#DV #LE #LetsEncrypt #Certificates #Certs #Misissuance #Mis_issuance #Revocation #Revoked #Weaknessess #WeakCertificates #WeakAuthentication #Authentication #Impersonation #Identification #Infosec #DNS #DNSHijacks #SquareSpace #Authorization #UnauthorizedChanges #UnauthorizedModifications #DeFi #dydx_exchange #CryptoCoins
So much of my life is performative, it's annoying. Like even my studying. I just want to get to the end of the flashcard stack and am not focused on actually being honest with myself and learning anything. What a waste of time. This shit is going to take a while to overcome.
In a world where we chase likes, let's not forget the real connections. If dogs can teach us to live in the moment, maybe we should take a cue from them. Prioritize authenticity over popularity. #SocialMedia #Authenticity