|
Can you all stop making me look good, I'm clearly the original white noise poster jony ive aces posted:goatseing silicon valley startups is its own reward snipe
|
#
?
May 2, 2016 14:26
|
|
|
|
| # ? Jun 6, 2024 16:34 |
|
|
current security status: password must be between 8 and 12 characters long and must contain a special character the only special character allowed is an exclamation mark
|
|
#
?
May 2, 2016 15:08
|
|
|
Tayter Swift posted:current security status: password must be between 8 and 12 characters long and must contain a special character a very "special" character
|
|
#
?
May 2, 2016 15:11
|
|
|
quote:Heuristic match to horrible posting. User loses posting privileges for 6 hours. 
|
|
#
?
May 2, 2016 15:20
|
|
|
Tayter Swift posted:current security status: password must be between 8 and 12 characters long and must contain a special character
|
|
#
?
May 2, 2016 15:28
|
|
|
Wiggly Wayne DDS posted:saw a new one - uppercase letter every 8th character how does one even come up with that
|
|
#
?
May 2, 2016 15:38
|
|
|
Testiclops posted:how does one even come up with that seems like someone's thought process is "the more complicated the password rules are the harder it is to guess them" which i guess makes sense if you have no actual idea how passwords work
|
|
#
?
May 2, 2016 15:39
|
|
|
uncurable mlady posted:https://labs.detectify.com/2016/04/28/slack-bot-token-leakage-exposing-business-critical-information/ managing tokens and keys seems to a big problem for smaller orgs. someone at my job left, and when we removed his personal keys, a couple of important services that he'd used his personal keys for broke. poo poo made for a serious scramble.
|
|
#
?
May 2, 2016 15:43
|
|
|
a foolish pianist posted:managing tokens and keys seems to a big problem for smaller orgs. someone at my job left, and when we removed his personal keys, a couple of important services that he'd used his personal keys for broke. interesting real world example of a deadman switch
|
|
#
?
May 2, 2016 16:22
|
|
|
Captain Foo posted:gold-medal goatse is a great phrase something something olympic ring
|
|
#
?
May 2, 2016 16:53
|
|
|
a foolish pianist posted:managing tokens and keys seems to a big problem for smaller orgs. someone at my job left, and when we removed his personal keys, a couple of important services that he'd used his personal keys for broke. At least you disabled his access, that's better than a lot of small orgs do.
|
|
#
?
May 2, 2016 17:44
|
|
|
spankmeister posted:$45K a year is pretty good for an intern I think that's what I pulled in when I was an intern. P-dece imo.
|
|
#
?
May 2, 2016 19:09
|
|
|
Pro as gently caress prob. A PROb if you will..
|
|
#
?
May 2, 2016 19:17
|
|
|
his new title is p dece
|
|
#
?
May 2, 2016 19:19
|
|
|
OSI bean dip posted:his new title is p dece on mobile/no avs what is it
|
|
#
?
May 2, 2016 19:29
|
|
|
Adix posted:on mobile/no avs what is it 
|
|
#
?
May 2, 2016 19:33
|
|
|
 one of you is a fantastic bastard
|
|
#
?
May 2, 2016 19:45
|
|
|
i didn't do it but i will gladly take all the credit
|
|
#
?
May 2, 2016 19:46
|
|
|
taking credit for spending money on a forums grudge isn't the best move, frankly but that's just me, with my dignity and all
|
|
#
?
May 2, 2016 19:48
|
|
|
EDIT: oops forgot motherfucker you're stymie you're the eicar test pattern for no dignity
|
|
#
?
May 2, 2016 20:02
|
|
|
and yet i can confidently say i have never bought someone a red avatar, which puts me firmly in the plus column
|
|
#
?
May 2, 2016 20:04
|
|
|
Stymie posted:and yet i can confidently say i have never bought someone a red avatar, which puts me firmly in the plus column
|
|
#
?
May 2, 2016 20:06
|
|
|
Stymie posted:and yet i can confidently say i have never bought someone a red avatar, which puts me firmly in the plus column your avatar is very dope and good also edit: it is nice that the text is red clearance
|
|
#
?
May 2, 2016 20:15
|
|
|
Stymie posted:taking credit for spending money on a forums grudge isn't the best move, frankly 
|
|
#
?
May 2, 2016 20:15
|
|
|
that is one low bar for dignity
|
|
#
?
May 2, 2016 20:15
|
|
|
https://trustfoundry.net/reverse-engineering-a-discovered-atm-skimmer/ basically it's a camera surprise surprise. But there's a cool vid of someone installing a swiper in a liquor store.
|
|
#
?
May 2, 2016 20:16
|
|
|
"someone (not naming names but she's my GF)" was possibly the most cringeworthy thing ever said in that thread
|
|
#
?
May 2, 2016 20:19
|
|
|
Dex posted:"someone (not naming names but she's my GF)" was possibly the most cringeworthy thing ever said in that thread seriously like what was his motivation for posting that
|
|
#
?
May 2, 2016 20:20
|
|
|
i agree that AV is useless, all you need is combofix and tdsskiller
|
|
#
?
May 2, 2016 21:00
|
|
|
Tayter Swift posted:current security status: password must be between 8 and 12 characters long and must contain a special character 1. Must be 12 - 16 characters long. 2. Cannot match your initial default password. 3. Must start with a letter. 4. Must contain at least one number in character positions 2 thru 7, inclusive. 5. Cannot match the employee ID. 6. Must contain at least one upper case letter. 7. Must contain at least one lower case letter. 8. Must contain at least one special character (e.g. !, @, #, $, % ) within the password. 9. Cannot be the same password the user had before. 10. Cannot match any of the previous 24 passwords used.
|
|
#
?
May 2, 2016 22:04
|
|
|
ultramiraculous posted:10. Cannot match any of the previous 24 passwords used. lol
|
|
#
?
May 2, 2016 22:19
|
|
|
hunter26
|
|
#
?
May 2, 2016 22:27
|
|
|
ultramiraculous posted:10. Cannot match any of the previous 24 passwords used. this is the ad policy at my work. im up to $LONGPASSPHRASE + "16" now
|
|
#
?
May 2, 2016 22:27
|
|
|
Season or Month + Year + ! for all your dumbass password requirement needs. Password Manager for everything else.
|
|
#
?
May 2, 2016 22:41
|
|
|
Subjunctive posted:from someone smarter than me: i'm seriously starting to wonder if the nsa is releasing stuff they want public through microsoft now  this is the same group that was "sabotaging" the cfrg's curve standardization they kept pushing some crap curves that no one wanted because they're slow for no benefit most curves try to use a prime like 2x - n where n is pretty small for efficiency, but ms hosed their performance by insisting on some dumb prime picking procedure they claimed was more "rigid" that happened to give pretty large n https://research.microsoft.com/en-us/projects/nums/ eventually curve25519 won out of course, it's well established and has great performance so some months later (too late), they come out with a new curve which is actually faster than curve25519 at comparable security, wow, great job, that would have been a real contender 6 months ago. (it's still not over a field like 2x - n, they used another form that is fast as well) https://research.microsoft.com/en-us/projects/fourqlib/ and now an almost practical quantum-safe DH just when nist is starting to make noises about post-quantum crypto it's just great work and well timed of course this is very but who doesn't love a good conspiracy theory?and there are other unbelievable parts of the story like - microsoft research making anything directly useful - djb being outperformed by a team of only five people
|
|
#
?
May 2, 2016 23:08
|
|
|
this is pretty interesting: https://bits-please.blogspot.com/2016/05/qsee-privilege-escalation-vulnerability.htmlquote:In this blog post we'll discover and exploit a vulnerability which will allow us to gain code execution within Qualcomm's Secure Execution Environment (QSEE). list of critical applications that should be trusted with access to write anywhere in the kernel: the media player yeah, that thing that decodes files in a bazillion formats files from the internet but wait, the privileged rootkit access will be guarded by a highly trusted secure api it's so trustable we call it a trustlet we hired some dropouts from securom and safedisc to write it
|
|
#
?
May 2, 2016 23:26
|
|
|
Power Ambient posted:that is one low bar for dignity agreed, and yet folks fail to clear even that
|
|
#
?
May 3, 2016 00:25
|
|
|
suffix posted:this is pretty interesting: https://bits-please.blogspot.com/2016/05/qsee-privilege-escalation-vulnerability.html What a cute little trustlet, it won't bite will it?
|
|
#
?
May 3, 2016 00:35
|
|
|
a trustlet for when you just need a lil bit of trust
|
|
#
?
May 3, 2016 00:38
|
|
|
|
| # ? Jun 6, 2024 16:34 |
|
|
moonshine is...... posted:https://trustfoundry.net/reverse-engineering-a-discovered-atm-skimmer/ basically it's a camera surprise surprise. But there's a cool vid of someone installing a swiper in a liquor store. the usb interface appears similar to the ones i've pulled up so I guess it's an industry standard he said he'd used that atm before so either he got skimmed already or there was a real shield at first. not sure there's a new skimmer at the end of the story though, likely the skimmer replaced a legit shield and the bank put a new shield back on
|
|
#
?
May 3, 2016 01:27
|
|