après la fin de nuit dans la Tour au dessus des nuages, la vue depuis la Bastille. Mais les tours ont été cachées quand le soleil est arrivé

Nice, BSI tested password manager security and their analysis actually makes sense: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/DVS-Berichte/passwortmanager.pdf (German).

Two questions are particularly interesting: can the vendor access passwords (5/10 no) and is the entire storage encrypted (3/10 yes). Which leaves 1Password, Keepass2 Android and KeePassXC usable without reservations, while Avira Password Manager and Firefox Password Manager are usable with some concerns (the former uses crypto that cannot be verified, the latter requires a main password to be set explicitly). The other five tested products (Chrome Password Manager, mSecure, PassSecurium, SecureSafe, S-Trust) should not be used.

Not exactly news to me but good to see this confirmed – and good to see a proper analysis rather than grabbing low-hanging fruit for some bullshit statements.

#PasswordManager #security

Tor Browser 15.0.3 has been released. Update!

https://blog.torproject.org/new-release-tor-browser-1503/

Meta proposal for less data sharing is approved by European Commission https://therecord.media/meta-less-data-sharing-european-commission

EMAIL WRAPPED 2025

This year, you received too fucking much email!

Number of emails that found you well: zero

Number of emails that you printed, even though you didn't consider the environment: zero

Number of times an "out of office" autoresponder was immediately followed by the person answering your email: all of the times

Your favorite email was: none of them

Next year, you are considering: are there any countries where email is illegal, and what are their immigration laws?

RE: https://infosec.exchange/@mnordhoff/115675202677067879

https://groups.google.com/a/list.nist.gov/g/internet-time-service/c/Zd7VaR-vqV4

On Saturday, 6 December 2025 at approximately 21:13 UTC, the atomic time source (a single cesium beam atomic clock) for all the internet time servers at the NIST Gaithersburg campus failed and exhibited a time step of approximately -10 ms.

Oh.

“Governments should join the Fediverse!”

IMO, Governments should have websites that work and are regularly updated and should leave social media entirely.