Roughtime is a protocol that aims to achieve rough time synchronisation in a secure way that doesn't depend on any particular time server, and in such a way that, if a time server does misbehave, clients end up with cryptographic proof of it.

“Rough” time synchronisation means that, at this stage, we would be happy with time synchronisation to within 10 seconds of the correct time. If you have serious time synchronisation needs you‘ll want the machinery in NTP or even PTP (which needs hardware support to do right). There’s no reason why Roughtime shouldn‘t be (almost) as precise as NTP, but the use cases that we have in mind for now don’t need much precision. For example, about 25% of certificate errors shown by Chrome appear to be caused by bad local clocks and we don't need much precision to fix that.

Found via Cillian O'Driscoll's fork https://github.com/odrisci/roughtime
See also https://github.com/oreparaz/vroughtime for a simple client written in C.

Found via https://rgoulter.com/blog/posts/programming/2020-08-22-early-impressions-of-bm40rgb-ortholinear-keyboard.html
See also
https://rgoulter.com/blog/posts/programming/2022-02-20-using-home-manager-to-manage-symlinks-to-dotfiles.html
https://rgoulter.com/blog/posts/programming/2014-04-26-online-resources-for-git.html
and probably more.

Qubes OS is a free and open-source, security-oriented operating system for single-user desktop computing. Qubes OS leverages Xen-based virtualization to allow for the creation and management of isolated compartments called qubes.

This repository documents how to implement custom FIDO2 extensions. It contains supplementary material to our paper at ETAA 2021. We describe how to implement extensions on all parts of the FIDO2 stack: On the relying party (website), on the client (browser), and on the authenticator (hardware token).

Found via https://positive.security/blog/find-you and https://github.com/seemoo-lab/openhaystack

Recommendations for improving security/privacy-related settings of common Web browsers.

Found on the FSF website https://www.fsf.org/news/fsf-announces-jshelter-browser-add-on-to-combat-threats-from-nonfree-javascript
As of 2022-01-05, it can be installed on Firefox, Chrome and Opera.

Article from Tom Duff, August 1987
Executable files in the Ninth Edition of the UNIX system contain small amounts of unused space, allowing small code sequences to be added to them without noticeably affecting their functionality. A program fragment that looks for binaries and introduces copies of itself into their slack space will transitively spread like a virus. Such a virus program could, like the Trojan Horse, harbor Greeks set to attack the system when run by sufficiently privileged users or from infected set-userid programs.

Disroot is a platform providing online services based on principles of freedom, privacy, federation and decentralization.
Found on https://idiomdrottning.org/matrix-vapor

Chosen-prefix collisions for SHA-1. Note that this can affect GPG 1.4.
Found via https://fossil-scm.org/home/doc/trunk/www/fossil-v-git.wiki

Instructions for running Firefox as another, less privileged user. Found on https://www.tuhs.org/pipermail/tuhs/2017-March/010757.html
In the following post, https://www.qubes-os.org/intro/ was recommended as an improved way.