I will peacefully fight for more freedom for all of us. Our spark may never die.
Whoever wrote this article (https://bitcoincore.org/en/segwit_wallet_dev/#native-pay-to-witness-script-hash-p2wsh) on the #Bitcoin Core website, it's amazing but the examples are pointing to an offline website.
So maybe, just maybe.. you move those example to your Git provider of choice and let us know so we can throw some sats your way.
Hey nostr:npub1lh273a4wpkup00stw8dzqjvvrqrfdrv2v3v4t8pynuezlfe5vjnsnaa9nk, I've been discussing with a group of friends to establish our own Datum instance where all of us would join with their hash power and we'll compete for a block with the rest of the network.
Is there a way to distribute the rewards trustlessly in case we find the block?
Over 3 million mail servers without encryption exposed to sniffing attacks
# Over 3 Million Mail Servers Exposed to Critical Security Risks Due to Lack of Encryption
## Widespread Security Vulnerability
More than **3.3 million mail servers** using **POP3** and **IMAP** protocols are currently vulnerable to **network sniffing attacks** due to the absence of **TLS encryption**. This critical oversight exposes sensitive user data, including login credentials, to potential interception.
## How POP3 and IMAP Work
- **IMAP (Internet Message Access Protocol)**: Designed for accessing emails from multiple devices, IMAP keeps messages stored on the server and synchronizes them across devices.
- **POP3 (Post Office Protocol version 3)**: Downloads emails to a single device and removes them from the server, limiting accessibility to the original device.
Despite their widespread use, many mail servers leave these services running **unencrypted**, transmitting sensitive data in **plain text**, making it susceptible to eavesdropping and credential theft.
## Why TLS Encryption Matters
**Transport Layer Security (TLS)** is a cryptographic protocol designed to secure communications over the internet by encrypting data in transit. When **TLS encryption** is not enabled:
- **Usernames and passwords** are transmitted in **plain text**, easily intercepted by attackers.
- Servers become vulnerable to **password-guessing attacks**, further compromising security.
The **Shadowserver Foundation**, a cybersecurity monitoring platform, recently identified and reported these vulnerabilities, urging server operators to enable encryption and disable unnecessary services.
## Recommended Actions to Secure Mail Servers
To mitigate these risks, mail server operators should:
- **Enable TLS encryption** for both IMAP and POP3 services.
- **Deactivate unused services** or move them behind a **VPN** to limit exposure.
- Implement **up-to-date TLS configurations** to prevent attacks relying on outdated security standards.
## The Evolution of TLS and Industry Action
The **TLS protocol** has evolved significantly over the years:
- **TLS 1.0 (1999)** and **TLS 1.1 (2006)** have become obsolete.
- **TLS 1.3 (2018)** offers significant improvements in security and efficiency.
In **2020**, major tech companies, including **Microsoft, Google, Apple, and Mozilla**, phased out support for **TLS 1.0 and 1.1** due to their vulnerabilities.
The **NSA** also issued guidance in **2021**, warning against outdated TLS configurations, citing the risk of:
- **Passive decryption** of sensitive data.
- **Man-in-the-middle (MITM)** attacks that can modify traffic.
## Conclusion
The presence of millions of unencrypted mail servers underscores a significant **cybersecurity gap** that requires immediate attention. Enabling **TLS encryption** and following modern security standards is essential to safeguard sensitive user data, prevent unauthorized access, and maintain trust in email communication systems.
originally posted at https://stacker.news/items/836520
Merry Xmas! Wishing Santa drop a block to all the #bitcoin #miners #mining today π πͺ.
And if he does, remember to zap the online fren who called it πββοΈ
Some laid back #AI #art to finish Sunday with some sci-fi / daft punk vibes with my freedom frens π
They are not prepared for us #nostr #bitcoin #freedomtech
#hola #gm it's Monday! ππ₯³
Imagine not liking your job and having to go anyway Monday morning, it wouldn't be me, it shouldn't be you as well.
Care to elaborate?
5 km walk/run with friends and family
Feeling blessed! πβ€οΈ 
Bom dia mleku!
Very good morning lads and ladies #gm
Itβs Friday! 
#hola Jona, mucho gusto!
Hmm, it seems odd that a Bitcoiner would pay to join something a social network when they can just come to #nostr and find amazing people.
hey nostr:npub18ams6ewn5aj2n3wt2qawzglx9mr4nzksxhvrdc4gzrecw7n5tvjqctp424 it's time to check your Orange Pill App messages π€
https://web.orangepillapp.com/
Is Orange Pill App a paid social network aimed at Bitcoiners?
I'm mind blown (and a bit anxious) with everything going on #Nostr, I'll list the few that stood out but in no particular order:
- NSite (https://github.com/lez/nsite): A way to deploy censorship-resistant web frontends
- Habla News (https://habla.news): A blogging engine with space for communities
- Olas (https://olas.app): Nostr take on Instagram
Some really cool stuff being built out in the open, inspiring shit. Huge kudos, thanks, and shoutout to all the creators behind these. Hat's off to all of you!
I feel somehow you are being ironic π
I also feel this should be somehow simplified π
Add some mutation test runner, that way you can find parts that are not covered and also mutants (pieces of code that when removed don't break any tests).
Hey #nostr π I'm a software engineer and I want to build freedom tech. So if you know some #Bitcoin, #Lightning, Nostr, or some other initiative that could help me learn more while contributing to the community, I'm open! #introductions