|
someone's ddos'ing my friends' university's paper submission system which has caused everyone to get two extra days to finish their homework
|
#
?
Jan 20, 2017 12:18
|
|
|
|
| # ? May 17, 2024 14:23 |
|
|
this feels like a weird Rick and Morty ep "ITS A DDOS PLANET MORTY! SUMMER STOP TRYING TO DDOS ME!"
|
|
#
?
Jan 20, 2017 13:20
|
|
|
Shaggar posted:stuxnet was so cool. the best part was how absolutely none of the other vendors took it seriously for years because "we're not seimens why should we care"
|
|
#
?
Jan 20, 2017 15:39
|
|
|
brianna wu has weighed in on the meitu thing ITS A MATTER OF NATIONAL SECURITY keep challenging state actors to a street fighter 2 battle to the death lol
|
|
#
?
Jan 20, 2017 15:45
|
|
|
BangersInMyKnickers posted:the best part was how absolutely none of the other vendors took it seriously for years because "we're not seimens why should we care" lol
|
|
#
?
Jan 20, 2017 15:54
|
|
|
ate all the Oreos posted:I had a friend do this to an air force base once and he got a very scary visit from a super angry military guy within a week what is going on in that pic?
|
|
#
?
Jan 20, 2017 15:55
|
|
|
my bro was telling me about some of the PLCs at a plant he was managing and he was telling me they have a separate internet connection (DSL, lol) for letting the vendor on to do work. It didn't occur to him that leaving this open all the time was a bad idea cause he didn't realize that theres effectively no security on the PLCs.
|
|
#
?
Jan 20, 2017 16:00
|
|
|
ate all the Oreos posted:someone's ddos'ing my friends' university's paper submission system which has caused everyone to get two extra days to finish their homework does he go to rutgers lol salted hash browns posted:what is going on in that pic? someone's illegally using their 5GHz on the weather bands
|
|
#
?
Jan 20, 2017 16:30
|
|
|
Shaggar posted:my bro was telling me about some of the PLCs at a plant he was managing and he was telling me they have a separate internet connection (DSL, lol) for letting the vendor on to do work. It didn't occur to him that leaving this open all the time was a bad idea cause he didn't realize that theres effectively no security on the PLCs. the best control I've seen on them that's basically idiot-proof is a turn key on each to put them in program, off, or run mode and it will refuse to accept modifications unless in program mode where it can't execute. I wish more vendors did that, but its seen as a undesirable feature for large-scale deployments where people don't want to walk across the floor to unlock a plc to make changes
|
|
#
?
Jan 20, 2017 16:45
|
|
|
Phone posted:brianna wu has weighed in on the meitu thing ITS A MATTER OF NATIONAL SECURITY brianna who?
|
|
#
?
Jan 20, 2017 16:52
|
|
|
Shaggar posted:my bro was telling me about some of the PLCs at a plant he was managing and he was telling me they have a separate internet connection (DSL, lol) for letting the vendor on to do work. It didn't occur to him that leaving this open all the time was a bad idea cause he didn't realize that theres effectively no security on the PLCs. this is far from uncommon
|
|
#
?
Jan 20, 2017 18:00
|
|
|
Captain Foo posted:does he go to rutgers lol nah he lives in the netherlands Captain Foo posted:someone's illegally using their 5GHz on the weather bands yeah in my friends' case they had a point to point link misaligned, so basically a directional antenna pointing right towards a big important radar, on a band that was causing interference
|
|
#
?
Jan 20, 2017 18:37
|
|
|
ate all the Oreos posted:nah he lives in the netherlands Which university? if it's a proper uni they should have internet via the Dutch NREN and those guys have proper DDoS mitigation. So he's probably at a poo poo-tier one.
|
|
#
?
Jan 20, 2017 19:04
|
|
|
spankmeister posted:Which university? even then DDoS mitigation can be predicated on the backend actually being able to handle things like if it's a slow rear end J2EE poo poo with lots of remote stuff and talking to something slow like oracle or mysql you don't need to D your DoS between more than like six attackers that send HTTPS requests
|
|
#
?
Jan 20, 2017 19:31
|
|
|
Cocoa Crispies posted:even then DDoS mitigation can be predicated on the backend actually being able to handle things Yeah an L7 attack could work but they have stuff to deal with that as well.
|
|
#
?
Jan 20, 2017 19:34
|
|
|
crosspost from jobs thread: Is there a market for independent PCI or some other standard auditors/assessors? I think I have the skills and I wonder if I can make more than my salaried job securing and auditing 
|
|
#
?
Jan 20, 2017 22:59
|
|
|
Raere posted:crosspost from jobs thread: 
|
|
#
?
Jan 20, 2017 23:16
|
|
|
Raere posted:crosspost from jobs thread: Serious answer: yes. Most actual auditing orgs that I know hire independents to do the actual auditing - barring the largest like KPMG/Deloitte/The rest of the "big 4", who have strange internal structures anyway. Not necessarily PCI, but the ISO ones. I doubt it'd be a lot different for other standards/auditing type of things. Minor note, this is Europe based. Not sure how it goes wherever you are. e: oh, yeah, don't underestimate the amount of effort you're going to be putting into getting and keeping yourself certified and accredited; by the way. I'm not assuming anything re your current position, but there's a lot of red tape to get through. geonetix fucked around with this message at 23:45 on Jan 20, 2017 |
|
#
?
Jan 20, 2017 23:21
|
|
|
https://lavabit.com/ Lavabit has relaunched after having to shutdown post trolling the fbi by printing it's key super small
|
|
#
?
Jan 20, 2017 23:22
|
|
|
ate all the Oreos posted:someone's ddos'ing my friends' university's paper submission system which has caused everyone to get two extra days to finish their homework Same, but normally the DDoS is just lots of students trying to upload to the bloated Java PoS blackboard which knocks it over.
|
|
#
?
Jan 20, 2017 23:42
|
|
|
http://edition.cnn.com/2017/01/22/travel/united-grounds-domestic-flights-because-of-it-issue/index.html?adkey=bnquote:United Airlines grounds domestic flights because of IT issue not copying the article because there's literally no other useful info bets on it being a) cryptolockered servers b) someone hosed around with that exploit of the booking system that let you change reservations c) ddos d) Russian hacking e) node.js comedy option
|
|
#
?
Jan 23, 2017 02:49
|
|
|
Ur Getting Fatter posted:http://edition.cnn.com/2017/01/22/travel/united-grounds-domestic-flights-because-of-it-issue/index.html?adkey=bn https://twitter.com/pr1ntf/status/823322800194666497
|
|
#
?
Jan 23, 2017 02:58
|
|
|
From out of nowhere comes Aging and Poorly Maintained Back End Systems for the win!
|
|
#
?
Jan 23, 2017 03:00
|
|
|
Ur Getting Fatter posted:http://edition.cnn.com/2017/01/22/travel/united-grounds-domestic-flights-because-of-it-issue/index.html?adkey=bn f) data center caught on fire like delta or whoever's did
|
|
#
?
Jan 23, 2017 03:00
|
|
|
that's the same system that had issues in October sysadmins gonna get fired
|
|
#
?
Jan 23, 2017 03:05
|
|
|
my latest flight was delayed because they overloaded the plane and we needed to sit there and burn off exactly 140l of fuel.
|
|
#
?
Jan 23, 2017 03:46
|
|
|
eyepyramid update: I'm now 99% sure that the sample I was given is just a download-and-execute and that the real payload is elsewhere. bummer. all it does outside of executing other components downloaded from the c&c is to disable various os and office security features, attempt to kill antivirus software, and open windows firewall writeup on the string encryption/self-protection hybrid later. man, what a drag
|
|
#
?
Jan 23, 2017 03:46
|
|
|
Fuzzy Mammal posted:my latest flight was delayed because they overloaded the plane and we needed to sit there and burn off exactly 140l of fuel. ERROR: TOO MANY MIDWESTERNERS
|
|
#
?
Jan 23, 2017 05:51
|
|
|
Munkeymon posted:ERROR: TOO MANY MIDWESTERNERS hahahaha i get it, the passengers were the overloading because they were fat. fat people are awful.
|
|
#
?
Jan 23, 2017 06:13
|
|
|
LeftistMuslimObama posted:hahahaha i get it, the passengers were the overloading because they were fat. fat people are awful. well, there's a stereotype people around here do tend to fall into so 
|
|
#
?
Jan 23, 2017 07:00
|
|
|
Fuzzy Mammal posted:my latest flight was delayed because they overloaded the plane and we needed to sit there and burn off exactly 140l of fuel. i was traveling this week and i noticed a small wheeled tank on the runway labeled "USED FUEL"
|
|
#
?
Jan 23, 2017 07:04
|
|
|
i bet it was really someone's big ole donger. some guy on the plane had to buy another seat in which to sling his truly gargantuan and yet somehow tenderly beautiful meat monster and the captain radioed down to the tarmac "houston we have the biggest drat darn ding donger i ever did see were gonna need to burn some fuel so we can get this elegant creature there iykwim"
|
|
#
?
Jan 23, 2017 07:06
|
|
|
LeftistMuslimObama posted:i bet it was really someone's big ole donger. some guy on the plane had to buy another seat in which to sling his truly gargantuan and yet somehow tenderly beautiful meat monster and the captain radioed down to the tarmac "houston we have the biggest drat darn ding donger i ever did see were gonna need to burn some fuel so we can get this elegant creature there iykwim" a large wing wanger ding tim dang'er? asking for friends
|
|
#
?
Jan 23, 2017 07:20
|
|
|
duTrieux. posted:i was traveling this week and i noticed a small wheeled tank on the runway labeled "USED FUEL" for sale: used jet fuel, never flown 
|
|
#
?
Jan 23, 2017 08:50
|
|
|
ate all the Oreos posted:for sale: used jet fuel, unable to melt steel beams
|
|
#
?
Jan 23, 2017 09:47
|
|
|
fishmech posted:f) data center caught on fire like delta or whoever's did g) incompatible update installed to wrong part of the fleet
|
|
#
?
Jan 23, 2017 12:54
|
|
|
 http://www.itwire.com/enterprise-solutions/76513-the-great-australian-citizen-28m-active-directory-domain.html "A Reddit posting says the Australian Government may be looking at Active Directory to authenticate 28 million Australian citizens in a future public-facing website."
|
|
#
?
Jan 23, 2017 14:56
|
|
|
what could possibly go wrogn?
|
|
#
?
Jan 23, 2017 15:21
|
|
|
What should they use instead? openldap? NIS+?
|
|
#
?
Jan 23, 2017 15:23
|
|
|
|
| # ? May 17, 2024 14:23 |
|
|
Subjunctive posted:What should they use instead? openldap? NIS+? a custom handmade implementation designed by 8 different contractors whose only contact with each other is via semaphore flags, you know like all government contracting
|
|
#
?
Jan 23, 2017 15:27
|
|