|
that wasn't the fun one they found tbh: https://team-sik.org/sik-2016-024/ then again these were all disclosed and fixed months ago
|
#
?
Feb 28, 2017 18:44
|
|
|
|
| # ? May 17, 2024 17:08 |
|
|
i'll use lastpass because it works for me  https://www.hackread.com/vbulletin-forums-hacked-data-leaked/ when is nilbog going to be done?
|
|
#
?
Feb 28, 2017 18:48
|
|
|
OSI bean dip posted:when is nilbog going to be done? a week, two tops
|
|
#
?
Feb 28, 2017 18:53
|
|
|
COACHS SPORT BAR posted:a week, two tops oh okay. glad that erlang code is coming along
|
|
#
?
Feb 28, 2017 18:55
|
|
|
Shut up Professor Green! https://twitter.com/matthew_d_green/status/836594951702052864
|
|
#
?
Feb 28, 2017 19:13
|
|
|
 too early to tell if it's a secfuck, but amazon broke the internet
|
|
#
?
Feb 28, 2017 20:51
|
|
|
It's a fine display of dependency on the shittiest region AWS has to offer. I hope a lot of people learned valuable lessons tonight.
|
|
#
?
Feb 28, 2017 21:01
|
|
|
geonetix posted:It's a fine display of dependency on the shittiest region AWS has to offer. I hope a lot of people learned valuable lessons tonight.
|
|
#
?
Feb 28, 2017 21:10
|
|
|
lol at the guy that thinks it's no big deal because theyd have root so could 'get the data anyway'. if only there were some way of storing the data such that it couldn't be read even if you had the file...
|
|
#
?
Feb 28, 2017 21:12
|
|
|
https://twitter.com/Pinboard/status/836665328583135232 ayyyyyyy
|
|
#
?
Feb 28, 2017 21:14
|
|
|
taviso dm'd bezos about unencrypted data on s3, they are now bulk-encrypting everything xd
|
|
#
?
Feb 28, 2017 21:15
|
|
|
infernal machines posted:
alternative uptime
|
|
#
?
Feb 28, 2017 21:20
|
|
|
beff jezos
|
|
#
?
Feb 28, 2017 21:28
|
|
|
https://twitter.com/mathowie/status/836659635159379969
|
|
#
?
Feb 28, 2017 21:30
|
|
|
lorf
|
|
#
?
Feb 28, 2017 21:31
|
|
|
NICE!
|
|
#
?
Feb 28, 2017 21:34
|
|
|
Celexi posted:NICE!
|
|
#
?
Feb 28, 2017 22:06
|
|
|
Hollow Talk posted:This is good advice. OpenVPN comes with easyCA, which serves as a wrapper around openSSL and makes the whole CA creation really straightforward. Depending on keysizes, you might have to edit a pregenerated config file, but it handles everything from CA -> Server Certificate -> Client Certificate(s). easyrsa has had terrible defaults for years, don't use it without changing the keysize to at least 2k
|
|
#
?
Feb 28, 2017 22:54
|
|
|
spankmeister posted:easyrsa has had terrible defaults for years, don't use it without changing the keysize to at least 2k easy-rsa vars posted:# Increase this to 2048 if you  But yeah, that's what I meant. Change the keysize to 4096 or so, add your own entries for KEY_Name/KEY_COUNTRY etc. and it becomes a useful little tool.
|
|
#
?
Feb 28, 2017 22:58
|
|
|
Yeah openvpn is arguably the best vpn and I'll probably start using it at work despite it needing extra software on windows/macos, because holy poo poo the built-in solution for ikev2 on macos is a piece of flaming garbage. Not that the windows one is much better. But the easyrsa defaults are garbage, definitely change that poo poo.
|
|
#
?
Feb 28, 2017 22:59
|
|
|
WireGuard is the new hotness btw.
|
|
#
?
Feb 28, 2017 23:00
|
|
|
Hollow Talk posted:
Lol how many ms of overhead does this add in reality
|
|
#
?
Feb 28, 2017 23:02
|
|
|
BangersInMyKnickers posted:Lol how many ms of overhead does this add in reality 4096 bit keys take like 1s to generate, since it has to find a big probably-prime number
|
|
#
?
Feb 28, 2017 23:14
|
|
|
spankmeister posted:WireGuard is the new hotness btw. a vpn that runs as a kernel module? plus, their centos rpms are you of date? i'm not jumping on this train just yet.
|
|
#
?
Feb 28, 2017 23:19
|
|
|
Cocoa Crispies posted:4096 bit keys take like 1s to generate, since it has to find a big probably-prime number DH parameters take significantly longer but it's a one time thing anyway.
|
|
#
?
Feb 28, 2017 23:20
|
|
|
is there anything particularly wrong with microsoft's sstp vpn?
|
|
#
?
Feb 28, 2017 23:38
|
|
|
infernal machines posted:is there anything particularly wrong with microsoft's sstp vpn? it's IP-over-TCP, which can lead to meltdown if you don't have ample excess bandwidth
|
|
#
?
Feb 28, 2017 23:40
|
|
|
Subjunctive posted:it's IP-over-TCP, which can lead to meltdown if you don't have ample excess bandwidth is there a microsoft protocol that doesn't have excessive overhead?
|
|
#
?
Feb 28, 2017 23:42
|
|
|
their /dev/null implementation because it doesn't exist
|
|
#
?
Feb 28, 2017 23:43
|
|
|
OSI bean dip posted:is there a microsoft protocol that doesn't have excessive overhead? does CIFS? what is it?
|
|
#
?
Feb 28, 2017 23:45
|
|
|
Subjunctive posted:does CIFS? what is it? SMB is pretty chatty as far as file sharing protocols go.
|
|
#
?
Feb 28, 2017 23:46
|
|
|
Truga posted:a vpn that runs as a kernel module? plus, their centos rpms are you of date? i'm not jumping on this train just yet.
|
|
#
?
Mar 1, 2017 00:29
|
|
|
geonetix posted:It's a fine display of dependency on the shittiest region AWS has to offer. I hope a lot of people learned valuable lessons tonight. yeah, use azure
|
|
#
?
Mar 1, 2017 00:57
|
|
|
Truga posted:Yeah openvpn is arguably the best vpn and I'll probably start using it at work despite it needing extra software on windows/macos, because holy poo poo the built-in solution for ikev2 on macos is a piece of flaming garbage. Not that the windows one is much better. openvpn is the best, clients for everything, including ios, the good mac client is viscosity
|
|
#
?
Mar 1, 2017 02:05
|
|
|
i physically rofl'd irl
|
|
#
?
Mar 1, 2017 02:09
|
|
|
Cocoa Crispies posted:openvpn is the best, clients for everything, including ios, the good mac client is viscosity Tunnelblick for MacOS is free and has never let me down in any capacity. Does Viscosity do something it doesn't, save for cost $9?
|
|
#
?
Mar 1, 2017 02:18
|
|
|
I am currently using Cisco AnyConnect Secure Mobility Client
|
|
#
?
Mar 1, 2017 02:22
|
|
|
bobfather posted:Tunnelblick for MacOS is free and has never let me down in any capacity. Does Viscosity do something it doesn't, save for cost $9? Tunnelblick is free and never stops spamming you about loving updates. Subtly, It's one of the most annoying pieces of software I have ever used even if it does do a passable job of allowing me to juggle VPN configs from the OS X menu bar. It does update itself (unlike Filezilla), but it's still real weird since it feels to me like it should be very stable by this point. I kind of don't want the thing in charge of my VPN creds to be on some weird daily release track. tldr: TunnelBlick is HeartBleeding edge software
|
|
#
?
Mar 1, 2017 02:27
|
|
|
ErIog posted:
well seeing that almost all of the updates are to push new builds of OpenSSL you're more correct than you realize
|
|
#
?
Mar 1, 2017 02:28
|
|
|
|
| # ? May 17, 2024 17:08 |
|
|
<3 openvpn, my home router is running multiple instances, with/without redirecting all traffic over the tunnel, and on alternative ports like udp 53 and tcp 443 (though yeah tcp/ip over tcp isnt great but if everything else is blocked from some location then its better than nothing)
|
|
#
?
Mar 1, 2017 02:29
|
|
