|
https://twitter.com/taviso/status/832768915138678784
|
#
?
Feb 18, 2017 06:10
|
|
|
|
| # ? May 15, 2024 21:26 |
|
|
Cloudflare just announced support for generic TOTP 2FA apps, beyond the sole option available previously (Authy), specifically naming Google Authenticator... Probably some sort of bypass issue related to that change.
|
|
#
?
Feb 18, 2017 06:14
|
|
|
windows 10 home apparently doesn't come with bitlocker. how bout that.
|
|
#
?
Feb 18, 2017 09:36
|
|
|
James Baud posted:Cloudflare just announced support for generic TOTP 2FA apps, beyond the sole option available previously (Authy), specifically naming Google Authenticator... Probably some sort of bypass issue related to that change. Authy keeps a copy of your private keys (or whatever the secret is called for totp) on their servers iirc and I never liked that idea
|
|
#
?
Feb 18, 2017 09:39
|
|
|
i thought that maybe i should enable disk encryption on my laptop, but it has windows 10 home on it and welp
|
|
#
?
Feb 18, 2017 09:40
|
|
|
Wheany posted:windows 10 home apparently doesn't come with bitlocker. how bout that. 
|
|
#
?
Feb 18, 2017 09:40
|
|
|
Windows 10 Home to Pro upgrade costs $100 USD, which is 50% off the MSRP of $200 USD. It's not 3 lattes but it's still not a bad price if you really need bitlocker.
|
|
#
?
Feb 18, 2017 11:03
|
|
|
Jesus christ this guy is a menace 
|
|
#
?
Feb 18, 2017 11:13
|
|
|
Cardboard Box A posted:Windows 10 Home to Pro upgrade costs $100 USD, which is 50% off the MSRP of $200 USD. well on one had, i don't really need bitlocker, but on the other, doesn't everybody need it? like it probably shouldn't be a "pro" feature in cyber year 2015
|
|
#
?
Feb 18, 2017 11:44
|
|
|
Wheany posted:well on one had, i don't really need bitlocker, but on the other, doesn't everybody need it? like it probably shouldn't be a "pro" feature in cyber year 2015
|
|
#
?
Feb 18, 2017 11:59
|
|
|
what if state actors are out there after my nickleback anime music videos
|
|
#
?
Feb 18, 2017 12:00
|
|
|
who cares windows 10 is free software anyway
|
|
#
?
Feb 18, 2017 12:02
|
|
|
Wheany posted:well on one had, i don't really need bitlocker, but on the other, doesn't everybody need it? like it probably shouldn't be a "pro" feature in cyber year 2015 maybe i'm cynical but upselling is the reason IMO. a large majority of users don't know what bitlocker is and dont care so microsoft can make it a pro feature and get more money from the people who do know and care without affecting regular users.
|
|
#
?
Feb 18, 2017 12:04
|
|
|
cinci zoo sniper posted:yeah i desperately need to encrypt my anime trove and configuration files for counter strike: global offensive uhhuh
|
|
#
?
Feb 18, 2017 12:14
|
|
|
Wheany posted:uhhuh
|
|
#
?
Feb 18, 2017 12:16
|
|
|
cinci zoo sniper posted:don't get me wrong, i encrypt my portable electronics that can realistically be lost somewhere. i dont see much benefit for doing so with my personal desktop computer i play video games on at home hmmm
|
|
#
?
Feb 18, 2017 12:28
|
|
|
Wheany posted:hmmm
|
|
#
?
Feb 18, 2017 12:29
|
|
|
Is it still the case that the sort of person who'll break into your house to steal your electronic equipment won't give a poo poo about your data, or are we far enough into lovely future land that he'll sell any personal data he finds?
|
|
#
?
Feb 18, 2017 13:06
|
|
|
Chalks posted:Is it still the case that the sort of person who'll break into your house to steal your electronic equipment won't give a poo poo about your data, or are we far enough into lovely future land that he'll sell any personal data he finds?
|
|
#
?
Feb 18, 2017 13:08
|
|
|
it's more than likely your desktop (and non-business laptop) won't have a tpm anyway so having bitlocker won't be all that useful
|
|
#
?
Feb 18, 2017 20:40
|
|
|
Nobody ever gave me a convincing counter argument to my suggestion that SATA passwords are as good as FDE for all adversaries less powerful than the NSA (in which case you're hosed anyway FDE or no FDE).
|
|
#
?
Feb 18, 2017 20:57
|
|
|
can a sata password be bypassed with a logic board swap?
|
|
#
?
Feb 18, 2017 21:08
|
|
|
source your quotes
|
|
#
?
Feb 18, 2017 21:28
|
|
|
minivanmegafun posted:can a sata password be bypassed with a logic board swap? depends. on some ssds the sata password mechanism is a potentially deece fde (*), but sata is a very pc industry standard so you'd better be sure your particular drive mfr did it right before you depend on it * - dense flash media can have problems storing some bit patterns - long runs of ones, zeroes, etc. running all the data through encryption helps with that, since the output of good crypto looks like noise. so, there are a poo poo ton of ssds that always encrypt everything written to flash. the algorithm is usually aes-128 or -256 in counter mode out of the box these drives store the data encryption key in the clear so the drive can function without any unlocking. if the user sets a sata password, a fresh random aes key gets generated (effectively wiping the drive!) and encrypted with the sata PW, so now the system must provide the sata PW in order to unlock the drive. this is more or less equivalent to popular assumed-to-be-good FDE schemes like bitlocker and filevault2, but with everything implemented inside the drive. i don't windows much but i seem to recall that bitlocker can operate in a mode where it actually relies on the sata drive to do all the work personally i'd rather rely on operating system "soft" FDE because LOL if you think that storage devices have reliably competent implementations of anything. also the OS is more likely to get security patches.
|
|
#
?
Feb 18, 2017 22:04
|
|
|
Sapozhnik posted:Nobody ever gave me a convincing counter argument to my suggestion that SATA passwords are as good as FDE for all adversaries less powerful than the NSA (in which case you're hosed anyway FDE or no FDE). In 2011 my hard drive password wouldn't work anymore. I ended up paying $50 for a license for software that removes the password without erasing the drive. I think it was http://www.hdd-tools.com/products/rrs/ but I can't find the email anymore. The software removed my SATA password I set in the BIOS for my hard drive and I still had my data.
|
|
#
?
Feb 18, 2017 22:34
|
|
|
fragments of the HackingTeam agent for OS X found in the APT28* equivalent: https://objective-see.com/blog/blog_0x18.html probably a copy-paste job from the hackingteam leak  * the russians
|
|
#
?
Feb 18, 2017 23:31
|
|
|
There is a so called high security mode and a so called maximum security mode I assume the "high" security mode works on the honor system or smth
|
|
#
?
Feb 18, 2017 23:33
|
|
|
Sapozhnik posted:There is a so called high security mode and a so called maximum security mode the encryption key is set to "420" regardless of what you type in
|
|
#
?
Feb 19, 2017 00:17
|
|
|
Security level setting names are like condom sizes Ain't nobody gonna buy a pack o small condoms
|
|
#
?
Feb 19, 2017 00:22
|
|
|
hackbunny posted:fragments of the HackingTeam agent for OS X found in the APT28* equivalent: https://objective-see.com/blog/blog_0x18.html
|
|
#
?
Feb 19, 2017 00:39
|
|
|
https://twitter.com/AlecMuffett/status/833076449942843394
|
|
#
?
Feb 19, 2017 01:34
|
|
|
Yeah I was looking for that the other day. loving google.
|
|
#
?
Feb 19, 2017 01:42
|
|
|
spankmeister posted:Yeah I was looking for that the other day. loving google. it has been in place since before christmas too
|
|
#
?
Feb 19, 2017 01:43
|
|
|
lol google is garbage
|
|
#
?
Feb 19, 2017 01:55
|
|
|
Safari is chrome stable (and also not hot garbage)
|
|
#
?
Feb 19, 2017 05:43
|
|
|
eight? what? press F12 -> pick 'Security' tab -> click 'view certificate' still one more than 'click lock next to URL' -> 'click view info' but eh
|
|
#
?
Feb 19, 2017 09:23
|
|
|
Munkeymon posted:eight? what? there is a "learn more" link that goes here https://support.google.com/chrome/?p=ui_security_indicator there is a link to the cookies used for the site, if there are cookies there is a site settings link at the bottom that goes here chrome://settings/content they removed any way to easily view the certificate for an https site a long time ago
|
|
#
?
Feb 19, 2017 10:18
|
|
|
anthonypants posted:in chrome there is no "view info" link when you click the lock icon next to a url Munkeymon posted:press F12 -> pick 'Security' tab -> click 'view certificate'
|
|
#
?
Feb 19, 2017 10:57
|
|
|
Wheany posted:well on one had, i don't really need bitlocker, but on the other, doesn't everybody need it? like it probably shouldn't be a "pro" feature in cyber year 2015 looks like windows 10 home at least supports bitlocker-to-go, at least when the usb drive has been encrypted in windows 10 pro.
|
|
#
?
Feb 19, 2017 11:50
|
|
|
|
| # ? May 15, 2024 21:26 |
|
|
just download some lovely windows 7 pro iso and upgrade to windows 10, jeez
|
|
#
?
Feb 19, 2017 12:00
|
|
