|
OSI bean dip posted:want to know what scares me the most?
|
# ? Jan 18, 2017 12:30 |
|
|
# ? May 23, 2024 17:48 |
|
cheese-cube posted:agreedo. also assuming that whatever is on the other end of rj45 jack speaks ethernet is a kind of dumb assumption It could very well be RJ45 for data collection or fault finding. I've seen a number of, granted scientific equipment, which comes with RJ45 so you can collect the data. Don't know if it's a two way street though.
|
# ? Jan 18, 2017 12:36 |
|
this scene
|
# ? Jan 18, 2017 13:02 |
|
Maybe there have been major advancments and all domestic appliances will be run off PoE
|
# ? Jan 18, 2017 14:42 |
|
just imagined this crazy image of a fully populated 48-port PoE switch and all the cables are plugged into a dryer. hell yeah
|
# ? Jan 18, 2017 14:58 |
|
the PoE switch would generate enough heat to dry your clothes at that point
|
# ? Jan 18, 2017 15:06 |
|
hackbunny posted:sorry to disappoint with a relatively lame post and no eyepyramid update, but the opera 12 source code has just been leaked: kinda got lost in the smart meter dustup but I'm kicking myself for missing these because I've been morbidly curious about Presto for a while and hoping something like this would happen
|
# ? Jan 18, 2017 15:17 |
|
ErIog posted:I know this thread is for insufferable assholes who think they know better (me included), but please everybody just listen to Fishmech and Shaggar for once. One's good cop, one's bad cop.. they both agree! I am not shaggar but I will accept the comparison in this case
|
# ? Jan 18, 2017 15:45 |
|
i got into an argument with some colleagues at work recently because they were trying to do some PKI cert stuff and wanted to install openssl on a windows box. i told them to plainly "get to gently caress" but before wandering off i saw them peeping this page which is the top result on google for "openssl windows" and has binaries compiled almost a decade ago lmao http://gnuwin32.sourceforge.net/packages/openssl.htm
|
# ? Jan 18, 2017 15:58 |
|
i got a question a while ago if we would certify or recommend a precompiled openssl for windows. lol nope
|
# ? Jan 18, 2017 17:22 |
|
hey windows comes with the best and easiest to configure crypto stack baked in to the os but lets gently caress that all up with some linux garbage
|
# ? Jan 18, 2017 17:45 |
|
BangersInMyKnickers posted:hey windows comes with the best and easiest to configure crypto stack baked in to the os but lets gently caress that all up with some linux garbage It doesn't do PKI and lol it's not easy to configure at all you gotta be messing with the registry
|
# ? Jan 18, 2017 17:48 |
|
they didn't even want to use it for TLS, they just wanted to generate some keypairs/cert reqs! i told them to use certreq or just hop on one of the many fuckin linux jumphosts we've got. i'm getting really drat tired of every single person on my contract not integrating sec into their thought processes. maybe i'm asking too much but this kind of bullshit as well as other much more egregious things would be avoided if the person involved just took a moment to think about whether they're doing something that's secure. edit: the main reason im pissy about it is because these same colleagues of mine hang poo poo on me when i tell them to do poo poo properly. gently caress them though lol
|
# ? Jan 18, 2017 17:50 |
|
Wheany posted:on one had, we could separate these two components for security purposes. on the other we could combine them and save fractions of a penny per device. the appliance that brought this up literally has the communication component separate from the appliance itself, using an external port to communicate to it. Boiled Water posted:It could very well be RJ45 for data collection or fault finding. I've seen a number of, granted scientific equipment, which comes with RJ45 so you can collect the data. Don't know if it's a two way street though. the port's explicitly for a to-be-developed external device to connect it to a smart grid system. if you wanted to, you could probably rig some sort of homebrew testing and control thing to work with it, i guess though.
|
# ? Jan 18, 2017 17:52 |
|
The correct answer is to have them request certificates from your internal CA.
|
# ? Jan 18, 2017 17:52 |
|
hilariously that's what they were already doing. it was for generating a new riverbed steelhead client cert or something which uses a custom template but still issued by the CA. dinguses didn't know how to do anything but blah blah this isn't cjs
|
# ? Jan 18, 2017 17:55 |
|
mods rename this to the washing machine megathread
|
# ? Jan 18, 2017 18:05 |
|
pls no more washing machine talk i had to do a load of laundry last night and this is causing me to have flashbacks
|
# ? Jan 18, 2017 18:07 |
|
same but two loads and yet i don't have PTSD. maybe you should change things up and/or get really drunk?
|
# ? Jan 18, 2017 18:11 |
|
I fixed my washing machine the other day. The magnetic inlet valve had failed. I temporarily rerouted the main wash water intake thru the pre wash until my $25 part came in, and replaced the part yesterday. It was easy to diagnose and fix because it doesn't have a computer inside. ok thanks for reading bye
|
# ? Jan 18, 2017 18:21 |
|
The drums on Sarnsung washers will fail after 3-5 years because the spider flanges that support it and connect to the motor assembly are made out of raw cast aluminum instead of stainless like everything else in the machine and detergent destroys it. Because what the gently caress do morons at samsung know about making washing machines? they're still shipping units like this to this day, its a known problem and they are not correcting the design. https://www.youtube.com/watch?v=BAsFb-_k0Hk good news is if you know what you are doing you can pick up a broken one for cheap/nothing, order the part, get it powder coated, and its a p.good washing machine after that fix
|
# ? Jan 18, 2017 18:26 |
|
BangersInMyKnickers posted:what the gently caress do morons at samsung know about making washing machines? they seem to have a pretty good grasp on normalizing the idea of treating a large appliance like a disposable piece of consumer electronics that you just repeatedly replace every 3-5 years BangersInMyKnickers posted:they're still shipping units like this to this day, its a known problem and they are not correcting the design. guarantee they do not see it as a "problem" and would not want to "correct" the design
|
# ? Jan 18, 2017 18:59 |
|
my mom just replaced her washing machine that she's had for almost 20 years with a model that will likely only last a quarter of that e: poo poo this is the security thread not the tech bubel thread, ignore me
|
# ? Jan 18, 2017 19:31 |
|
my bad osi said to shut the gently caress up about washing machines and i posted about washing but everyone take your whitegoods to the whitegoods thread
|
# ? Jan 18, 2017 19:40 |
|
krebs released his big expose on the mirai author https://krebsonsecurity.com/2017/01/who-is-anna-senpai-the-mirai-worm-author/ it's minecraft and anime all the way down
|
# ? Jan 18, 2017 19:45 |
|
fisting by many posted:krebs released his big expose on the mirai author quote:For example, Dreadiscool has been an active member of the Minecraft forum spigotmc.org since 2013. This user’s avatar (pictured above) on spigotmc.org is an altered image taken from the 1994 Quentin Tarantino cult hit “Pulp Fiction,” specifically from a scene in which the gangster characters Jules and Vincent are pointing their pistols in the same direction. However, the heads of both actors have been digitally altered to include someone else’s faces. wowza.
|
# ? Jan 18, 2017 19:53 |
|
fisting by many posted:krebs released his big expose on the mirai author yeah been reading this, it's a lot of words even for krebs
|
# ? Jan 18, 2017 19:55 |
|
fisting by many posted:krebs released his big expose on the mirai author lol anime child so hosed, don't be a wizard if you're over 18 in the usa
|
# ? Jan 18, 2017 19:57 |
|
quote:The story noted that vDOS earned its proprietors more than $600,000 and was being run by two 18-year-old Israeli men who went by the hacker aliases “applej4ck” and “p1st0”. Hours after that piece ran, Israeli authorities arrested both men, and vDOS — which had been in operation for four years — was shuttered for good.
|
# ? Jan 18, 2017 20:14 |
|
https://bugs.chromium.org/p/project-zero/issues/detail?id=1088quote:On January 12th, an automatic Adobe Acrobat update force installed a new chrome extension with ID efaidnbmnnnibpcajpcglclefindmkaj. You can view it on the Chrome Webstore here: https://chrome.google.com/webstore/detail/adobe-acrobat/efaidnbmnnnibpcajpcglclefindmkaj/
|
# ? Jan 18, 2017 20:14 |
|
I got another recruiter email from Uber, at least this one got closer to what I actually do.
|
# ? Jan 18, 2017 20:32 |
|
fisting by many posted:krebs released his big expose on the mirai author holy gently caress like i always knew that people into minecraft and anime were emotionally unstable and this just cements it further
|
# ? Jan 18, 2017 20:47 |
|
fisting by many posted:krebs released his big expose on the mirai author if he can't even figure out that SuperMicro makes servers not routers and that those devices exposing IPMI to the world also has nothing to do with routers being hacked, I'm not really sure I trust anything else in that article to be factually correct same thing with crediting Microsoft for Minecraft
|
# ? Jan 18, 2017 22:07 |
|
McGlockenshire posted:if he can't even figure out that SuperMicro makes servers not routers and that those devices exposing IPMI to the world also has nothing to do with routers being hacked, I'm not really sure I trust anything else in that article to be factually correct Microsoft paid 2.5 Instagrams for Mojang and Minecraft. Also that's a fuckup on the SuperMicro part but they make more than just servers.
|
# ? Jan 18, 2017 22:11 |
|
They make L3 switches which are technically routers I suppose but we're splitting hairs here.
|
# ? Jan 18, 2017 22:14 |
|
spankmeister posted:p sure the SSL settings already break opera 12 even my lovely Amiga browser from a million years ago can use a modern OpenSSL library port and TLS 1.2
|
# ? Jan 18, 2017 22:14 |
|
you can still compile current openssl source for nextstep and beos (well haiku really)code:
|
# ? Jan 18, 2017 22:35 |
|
i'm DJGPP
|
# ? Jan 18, 2017 22:41 |
|
McGlockenshire posted:if he can't even figure out that SuperMicro makes servers not routers and that those devices exposing IPMI to the world also has nothing to do with routers being hacked, I'm not really sure I trust anything else in that article to be factually correct Krebs is actually pro-tier awesome and a very good and reputable info sec journalist (though his areas of expertise tend to be more of the organized cyber crime type). The part you're complaining about to sound so smart and knowledgable to all of us, and to show how much better you are than my man with the giant forehead is pretty silly though since it's a summary from verisign mentioned as a throw away: quote:Verisign said the 2014 attack was launched by a botnet of more than 100,000 hacked routers sold by a company called SuperMicro. Days before the huge attack on ProxyPipe, a security researcher published information about a vulnerability in the SuperMicro devices that could allow them to be remotely hacked and commandeered for these sorts of attacks. quote:same thing with crediting Microsoft for Minecraft jesus learn to read quote:The most frequent target of the lelddos gang were Web servers used to host Minecraft, a wildly popular computer game sold by Microsoft that can be played from any device and on any Internet connection. e: sorry, this came off a lot more dickish than I meant. Winkle-Daddy fucked around with this message at 23:01 on Jan 18, 2017 |
# ? Jan 18, 2017 22:54 |
|
|
# ? May 23, 2024 17:48 |
|
OSI bean dip posted:you can still compile current openssl source for nextstep and beos (well haiku really) neat the Amiga version is a shared library wrapper around a generic GCC 4 build so any program conforming to the library API will work with any version of OpenSSL it uses
|
# ? Jan 18, 2017 23:12 |