|
what am I looking at? nm, apparently this: http://www.theguardian.com/technology/2015/jan/06/personal-details-moonpig-exposed-security-bug e2: heh I skipped a whole page. that'll do, moonpig, that'll do. computer toucher fucked around with this message at 20:27 on Jan 6, 2015 |
# ? Jan 6, 2015 20:17 |
|
|
# ? Jun 7, 2024 02:04 |
|
remember when netflix made the quixter thing and then didnt check if the account was owned by someone constantly talking about weed?? link here is sort of the same thing
|
# ? Jan 6, 2015 20:23 |
|
Surprisingly, the MoonPig flaw is not the first hole Price has found in a British greetings-card website. In October 2013, he disclosed a vulnerability in Funky Pigeon’s website which let an attacker take over a user’s account and gain access to personal data. That flaw was fixed within a week. what is wrong with british web site names?
|
# ? Jan 6, 2015 21:09 |
|
I think sticking two random words together is a better way to get a company name than to take another random word and drop half the vowels.
|
# ? Jan 6, 2015 21:13 |
|
Active666 posted:Talk on the boarding passes gently caress up that was talked a while back... fix your audio if you're going to do a talk
|
# ? Jan 6, 2015 21:37 |
|
pagancow posted:fix your audio if you're going to do a talk Hello. How's everyone doing today? Having a great time at this conference!
|
# ? Jan 6, 2015 21:41 |
|
prefect posted:Surprisingly, the MoonPig flaw is not the first hole Price has found in a British greetings-card website. In October 2013, he disclosed a vulnerability in Funky Pigeon’s website which let an attacker take over a user’s account and gain access to personal data. That flaw was fixed within a week. http://youtu.be/NixkgB_glUc
|
# ? Jan 6, 2015 21:44 |
|
prefect posted:what is wrong with british web site names? they are all generated by that image hosting website
|
# ? Jan 6, 2015 21:57 |
|
Alereon posted:I think sticking two random words together is a better way to get a company name than to take another random word and drop half the vowels. there is a UK company called Boxed Ice. their product/service is called Server Density. the email notification system is called Robot Llama.
|
# ? Jan 6, 2015 22:07 |
|
A British compiler tools company once considered naming their new product "Spiny Norman's Pajama Party".
|
# ? Jan 6, 2015 22:30 |
|
that makes as much sense as any other british name for a thing
|
# ? Jan 6, 2015 22:31 |
|
put the chips in your slappy ham
|
# ? Jan 6, 2015 22:41 |
|
there's a british actor named benedict cumberbatch
|
# ? Jan 6, 2015 22:43 |
|
goddamnit microsoft why can't you write a goddamn useful or at least complete ipsec stack. this tunnel isnt coming up because the microsoft vpn server is specifying its own IP as the only thing in its protected network. it does this because there is literally nowhere in the configuration wizard to configure what the local protected networks should be. i mean i know the ipsec rfcs are a clusterfuck but you'd think theyd implement basic gateway to gateway functionality like every other vendor on the planet. why shaggar why.
|
# ? Jan 6, 2015 23:07 |
|
our ids server at work apparently had ssh open to the world and we didn't notice until someone failed a bunch of logon attempts lol
|
# ? Jan 6, 2015 23:10 |
|
IPvSH6T posted:goddamnit microsoft why can't you write a goddamn useful or at least complete ipsec stack. i haven't used the remote access stuff in forever but i seem to remember it being pretty robust. you may need to get past the wizard to get to more advanced options
|
# ? Jan 6, 2015 23:18 |
|
Shaggar posted:that makes as much sense as any other british name for a thing it's a monty python reference. in fact all those names are probably nerdbait references to some obscure bbc comedy series that stopped airing a generation before anyone involved in the company was born
|
# ? Jan 6, 2015 23:20 |
|
infernal machines posted:it's a monty python reference. I had the ethelthefrog.net domain name for a decade so I can relate
|
# ? Jan 6, 2015 23:21 |
|
Shaggar posted:i haven't used the remote access stuff in forever but i seem to remember it being pretty robust. you may need to get past the wizard to get to more advanced options good thing technet says how to do that. oh wait it just says use the wizard. kill me now. anthonypants posted:our ids server at work apparently had ssh open to the world and we didn't notice until someone failed a bunch of logon attempts lol eh my vps has ssh open to the world who cares. literally just endless attempts to log into root, which is impossible: journalctl -u sshd | grep "Failed password for root" | wc -l 256103
|
# ? Jan 6, 2015 23:23 |
|
IPvSH6T posted:good thing technet says how to do that. ms lesson #1 don't use the wizard for anything as it will invariably use the most nonsensical options by default and changing them after the fact will break poo poo ms lesson #2 if you don't use the wizard your poo poo will probably break in an unexpected way during an update or integration with another product because everything assumes you used the wizard and just sets things accordingly
|
# ? Jan 6, 2015 23:27 |
|
anthonypants posted:our ids server at work apparently had ssh open to the world and we didn't notice until someone failed a bunch of logon attempts lol
|
# ? Jan 6, 2015 23:35 |
|
infernal machines posted:ms lesson #1 don't use the wizard for anything as it will invariably use the most nonsensical options by default and changing them after the fact will break poo poo this except the opposite
|
# ? Jan 7, 2015 01:46 |
|
if the wizard won't do it then pay someone else to do it lesson 1: don't be that someone else
|
# ? Jan 7, 2015 01:48 |
|
Mido posted:if the wizard won't do it then pay someone else to do it i am that someone else otherwise, yes your analysis is correct
|
# ? Jan 7, 2015 01:49 |
|
alternatively pay an actual wizard to do it
|
# ? Jan 7, 2015 02:04 |
|
Jewel posted:alternatively pay an actual wizard to do it kkk window admins to be specific
|
# ? Jan 7, 2015 02:18 |
|
Mido posted:kkk window admins to be specific grand windows dragon
|
# ? Jan 7, 2015 02:27 |
|
infernal machines posted:ms lesson #1 don't use the wizard for anything as it will invariably use the most nonsensical options by default and changing them after the fact will break poo poo
|
# ? Jan 7, 2015 02:54 |
|
ya... this kind of humor is lost of me
|
# ? Jan 7, 2015 03:17 |
|
this video roughly conveys how incredibly unpleasant the process of configuring ms software is probably not in the way intended, but just by being really gratingly unpleasant throughout
|
# ? Jan 7, 2015 03:30 |
|
Captain Foo posted:grand windows dragon Mods rename Shaggar this
|
# ? Jan 7, 2015 05:16 |
|
Erwin posted:there's a british actor named benedict cumberbatch that's a Salad Fingers side character name right there.
|
# ? Jan 7, 2015 07:02 |
|
Erwin posted:there's a british actor named benedict cumberbatch he cant say penguins https://www.youtube.com/watch?v=-GnLDJAgrws
|
# ? Jan 7, 2015 09:50 |
|
so i decided to feed a fresh install of windows to virustotal via a script and see what the the results arequote:MD5: ad61f7afe913b2642650504df283aa63 da fuq is up with aegislab
|
# ? Jan 7, 2015 16:07 |
|
Where'd your install media come from?
|
# ? Jan 7, 2015 16:12 |
|
BangersInMyKnickers posted:Where'd your install media come from? an msdn iso
|
# ? Jan 7, 2015 16:17 |
|
ultimate media? there's a bunch of 3rd party crap bundled in there from drivers that could be triggering it. SP0 Win7 pro media had a UPS driver in it with a virus and even MS was distributing it through Windows Update for a while until I reported it. Stranger things have happened. If its in the SxS folder it is likely inactive. That or something somehow tampered with your media or your machine, but it would be odd for it to only mess with SxS and none of the live files
|
# ? Jan 7, 2015 16:23 |
|
BangersInMyKnickers posted:ultimate media? there's a bunch of 3rd party crap bundled in there from drivers that could be triggering it. SP0 Win7 pro media had a UPS driver in it with a virus and even MS was distributing it through Windows Update for a while until I reported it. Stranger things have happened. If its in the SxS folder it is likely inactive. I was gonna say something along the lines of 'this goes all the way to the top' but goddamn it almost does quote:That or something somehow tampered with your media or your machine, but it would be odd for it to only mess with SxS and none of the live files or virus detection databases are full of false positives and OSI just reverse engineered the white list they use to avoid quarantining stock system files
|
# ? Jan 7, 2015 16:28 |
|
BangersInMyKnickers posted:ultimate media? there's a bunch of 3rd party crap bundled in there from drivers that could be triggering it. SP0 Win7 pro media had a UPS driver in it with a virus and even MS was distributing it through Windows Update for a while until I reported it. Stranger things have happened. If its in the SxS folder it is likely inactive. msdn windows 7 enterprise media downloaded from msdn itself
|
# ? Jan 7, 2015 16:31 |
|
|
# ? Jun 7, 2024 02:04 |
|
Munkeymon posted:or virus detection databases are full of false positives and OSI just reverse engineered the white list they use to avoid quarantining stock system files that is what i am wondering
|
# ? Jan 7, 2015 16:33 |