|
OSI bean dip posted:https://srsly.de/ srsly
|
#
?
Dec 30, 2014 02:38
|
|
|
|
| # ? Jun 1, 2024 14:24 |
|
|
OSI bean dip posted:yeah people don't expose vnc/rdp to the internet This is good policy of course, but as a home user, what is the best way to get remote access to your desktop? Obviously I don't have a 2 factor RSA services or anything crazy like that.
|
|
#
?
Dec 30, 2014 02:55
|
|
|
Captain Foo posted:SQLi is the most common secfuck there is, c/d think C buffer overflows win because C has been around since the dinosaurs
|
|
#
?
Dec 30, 2014 02:57
|
|
|
Powercrazy posted:This is good policy of course, but as a home user, what is the best way to get remote access to your desktop? Obviously I don't have a 2 factor RSA services or anything crazy like that. a vpn
|
|
#
?
Dec 30, 2014 02:58
|
|
|
Powercrazy posted:This is good policy of course, but as a home user, what is the best way to get remote access to your desktop? Obviously I don't have a 2 factor RSA services or anything crazy like that. teamviewer or something I reckon
|
|
#
?
Dec 30, 2014 02:58
|
|
|
Powercrazy posted:This is good policy of course, but as a home user, what is the best way to get remote access to your desktop? Obviously I don't have a 2 factor RSA services or anything crazy like that. i mean the thing is if you can do it so can literally anyone else in the world so the best chance you have is to never put the ip anywhere and also use a super strong password via keepass or lastpass or w/e and hope to hell whatever you're using doesn't have an insecurity vOv I mean the other good option is "why do you need to"
|
|
#
?
Dec 30, 2014 02:59
|
|
|
Wiggly Wayne DDS posted:idk seems fine to me: https://imgur.com/a/L6ENS  I'm the "lol"
|
|
#
?
Dec 30, 2014 02:59
|
|
|
i'm the "what" after finding out there's no apt
|
|
#
?
Dec 30, 2014 03:02
|
|
|
Powercrazy posted:This is good policy of course, but as a home user, what is the best way to get remote access to your desktop? Obviously I don't have a 2 factor RSA services or anything crazy like that. chrome remote desktop works well enough
|
|
#
?
Dec 30, 2014 03:11
|
|
|
uncurable mlady posted:teamviewer or something I reckon Teamviewer is the easiest
|
|
#
?
Dec 30, 2014 03:23
|
|
|
jadeddrifter posted:Teamviewer is the easiest Dynamic DNS + RDP?
|
|
#
?
Dec 30, 2014 03:30
|
|
|
mogggg posted:Dynamic DNS + RDP? You can access more systems. I guess if you are only accessing one system it is about the same. But I remote to my parents, my sister, some friends to help them with problems. All made very easy with teamviewer
|
|
#
?
Dec 30, 2014 03:36
|
|
|
mogggg posted:Dynamic DNS + RDP?
|
|
#
?
Dec 30, 2014 03:43
|
|
|
Are there any services that provide 2 factor auth for individual consumers?
|
|
#
?
Dec 30, 2014 04:00
|
|
|
Shaggar posted:Are there any services that provide 2 factor auth for individual consumers? r
|
|
#
?
Dec 30, 2014 04:01
|
|
|
apparently RSA resellers offer a "starter kit" and then you can give yourself the 10 fobs, cards, and software authenticator licenses  i'm not sure i have the correct info because they say the auth manager vm is free and you just tack on the user licenses??
|
|
#
?
Dec 30, 2014 04:02
|
|
|
Erwin posted:why isn't it srslydu.de? i assumed it was going for srsly.die
|
|
#
?
Dec 30, 2014 04:05
|
|
|
as in what this thread is supposed to do when you touch the poop honeypot
|
|
#
?
Dec 30, 2014 04:06
|
|
|
|
|
#
?
Dec 30, 2014 04:06
|
|
|
the, srsly.the
|
|
#
?
Dec 30, 2014 04:07
|
|
|
jadeddrifter posted:Teamviewer is the easiest I'm trying to find the lady who men paid to wreck their computers using teamviewer but I can't find them
|
|
#
?
Dec 30, 2014 04:07
|
|
|
The Devil Tesla posted:I'm trying to find the lady who men paid to wreck their computers using teamviewer but I can't find them you can pay me to do it if that helps
|
|
#
?
Dec 30, 2014 04:14
|
|
|
 (from when Viss did his VNC dump)
|
|
#
?
Dec 30, 2014 04:27
|
|
|
uncurable mlady posted:teamviewer or something I reckon using teamviewer is the same level as using any standard vnc server with a user/password, except now you've gone closed source so you're definitely owned by the NSA
|
|
#
?
Dec 30, 2014 04:38
|
|
|
Powercrazy posted:This is good policy of course, but as a home user, what is the best way to get remote access to your desktop? Obviously I don't have a 2 factor RSA services or anything crazy like that. put a neckbeard approved OS on a little box that runs a vpn server and then vpn before you rdp you can google up some copy/paste steps.
|
|
#
?
Dec 30, 2014 04:51
|
|
|
prefect posted:we'll be fine; all we have to do is get into a boat. they're terrified of boats 
|
|
#
?
Dec 30, 2014 04:54
|
|
|
the thing to keep in mind here is that this isn't taking advantage of an exploit, this is literally passwordless vnc so if you want to not be on that list use literally any password at all but yeah, leaving the port exposed to the world is suboptimal from a security fuckup perspective, but what we're seeing here is the goddamn biggest fuckup of not even having auth
|
|
#
?
Dec 30, 2014 04:54
|
|
|
Daman posted:using teamviewer is the same level as using any standard vnc server with a user/password, except now you've gone closed source so you're definitely owned by the NSA
|
|
#
?
Dec 30, 2014 05:03
|
|
|
Storysmith posted:the thing to keep in mind here is that this isn't taking advantage of an exploit, this is literally passwordless vnc there's a password bypass on some vnc servers too if it's old enough @viss' windows 9x example there is probably a likely candidate for such
|
|
#
?
Dec 30, 2014 05:03
|
|
|
Daman posted:using teamviewer is the same level as using any standard vnc server with a user/password, except now you've gone closed source so you're definitely owned by the NSA lol if a TLA is after you OPEN SORES TITEVNC isnt gonna save u
|
|
#
?
Dec 30, 2014 05:09
|
|
|
yeah, you need to use a safe system like rdp
|
|
#
?
Dec 30, 2014 05:27
|
|
|
please leave the shaggaring to shaggar
|
|
#
?
Dec 30, 2014 05:37
|
|
|
Shaggar posted:Are there any services that provide 2 factor auth for individual consumers? yah google auth. not just for goog.le. my bank uses it too
|
|
#
?
Dec 30, 2014 05:48
|
|
|
anthonypants posted:please leave the shaggaring to shaggar got the moves like shaggar
|
|
#
?
Dec 30, 2014 05:51
|
|
|
IPvSH6T posted:yah google auth. not just for goog.le. my bank uses it too no, if I set up RDP at home and want it to use 2FA, what does the server side part of that for me?
|
|
#
?
Dec 30, 2014 06:00
|
|
|
Subjunctive posted:no, if I set up RDP at home and want it to use 2FA, what does the server side part of that for me? https://github.com/google/google-authenticator/ the algorithm is public (so you could might be able to find something in a more convenient form for whatever you're doing), but there's a PAM that's pluggable into basically anything that supports that particular format of authentication plugins.
|
|
#
?
Dec 30, 2014 06:34
|
|
|
just ssh tunnel?? use pem keys and do 2fa with your OpenLDAP poo poo if you wanna go hyper nerd
|
|
#
?
Dec 30, 2014 07:01
|
|
|
Aleksei Vasiliev posted:yeah, you need to use a safe system like rdp nah you see, Daman posted:now you've gone closed source so you're definitely owned by the NSA
|
|
#
?
Dec 30, 2014 07:09
|
|
|
Subjunctive posted:no, if I set up RDP at home and want it to use 2FA, what does the server side part of that for me? Google Authenticator is just an implementation of the RFC 6238 Time-based One Time Password Algorithm, it doesn't have a server component. No clue how you make Windows do it, it probably involves giving Microsoft a lot of money. edit: the answer is ICredentialProvider which is very nearly undocumented pseudorandom name fucked around with this message at 07:42 on Dec 30, 2014 |
|
#
?
Dec 30, 2014 07:22
|
|
|
|
| # ? Jun 1, 2024 14:24 |
|
|
 finally done the canary alerts stuff for the page itself. once i can rely on the alerter tool to do its job (trying to get around some quirks) and write some more godawful documentation, i'll be able to update the site
|
|
#
?
Dec 30, 2014 07:42
|
|