|
bobfather posted:Tunnelblick for MacOS is free and has never let me down in any capacity. Does Viscosity do something it doesn't, save for cost $9? viscosity isn't hideous
|
# ? Mar 1, 2017 02:33 |
|
|
# ? Jun 3, 2024 09:16 |
|
minivanmegafun posted:well seeing that almost all of the updates are to push new builds of OpenSSL you're more correct than you realize Well maybe I did realize and I am also a comedy genius? Hm! You ever think of that?
|
# ? Mar 1, 2017 02:34 |
|
bobfather posted:Tunnelblick for MacOS is free and has never let me down in any capacity. Does Viscosity do something it doesn't, save for cost $9? don't be cheap, also there is a demo period like almost all software available if you really care, which it doesn't seem like you do at all
|
# ? Mar 1, 2017 03:29 |
|
Thanks for literally nothing.
|
# ? Mar 1, 2017 03:41 |
|
spankmeister posted:WireGuard is the new hotness btw. it barely works on linux and doesn't work on anything else i'd like to use it because it sounds promising but every time i remember it exists and check on it it's basically not progressed past the last time i looked 3 months earlier
|
# ? Mar 1, 2017 05:51 |
|
xpost, holy lolyincoherent posted:Please regale me in your stories today of management asking you, personally, to contact Mr. Zon to ask what's up with the cloud.
|
# ? Mar 1, 2017 06:06 |
|
cheese-cube posted:xpost, holy loly There's a reply to that somewhere from memory which is something like "you loving idiot. You massive dipshit oval office. Why would you be relying on this"
|
# ? Mar 1, 2017 06:10 |
|
lol nice
|
# ? Mar 1, 2017 06:13 |
|
cheese-cube posted:xpost, holy loly
|
# ? Mar 1, 2017 06:24 |
|
cheese-cube posted:xpost, holy loly
|
# ? Mar 1, 2017 06:26 |
|
theodop posted:There's a reply to that somewhere from memory which is something like "you loving idiot. You massive dipshit oval office. Why would you be relying on this"
|
# ? Mar 1, 2017 09:36 |
|
Lysidas posted:<3 openvpn, my home router is running multiple instances, with/without redirecting all traffic over the tunnel, and on alternative ports like udp 53 and tcp 443 (though yeah tcp/ip over tcp isnt great but if everything else is blocked from some location then its better than nothing) fyi, openvpn has support for a http wrapper. you set up nginx or whatever, and proxy it to the openvpn http handler. that way, even dumbass firewalls which inspect your traffic to make sure it's valid http traffic can't block your poo poo, it's the best thing and I've used it before and there's no noticeable performance loss over the standard tcp tunnel, mtu is just slightly lower but that's it. https://openvpn.net/index.php/open-source/documentation/howto.html#http e: in secfuck is coming from within the thread news, i got around to adding the internal ca to the system store on my fedora laptop (I just had it in firefox until now because I didn't need non-https things before). now firefox tells me every certificate i issued has the wrong cn??? works fine in other browsers and i have no idea how to fix it Truga fucked around with this message at 10:45 on Mar 1, 2017 |
# ? Mar 1, 2017 10:36 |
|
When Amazon's cloud storage fails, lots of people get wet i think i found the perfect cloud2butt headline
|
# ? Mar 1, 2017 13:38 |
|
Truga posted:their /dev/null implementation then what is nul:
|
# ? Mar 1, 2017 14:18 |
Crankit posted:then what is nul:
|
|
# ? Mar 1, 2017 14:43 |
|
cheese-cube posted:xpost, holy loly so back when i worked for a colocation provider we had a very small POP in manhattan and then hurricane sandy hit of course everything went offline and no one could get in because gently caress it's a hurricane and no one is there to let you in we had some weird guy like standing directly in front of the building screaming at me on the phone about how people were dying because he couldn't get in and get his server. his single-homed, single-instance, mission-critical server. i'm of course in chicago where we were hq'd and all "welp sucks to be you, i can't do anything" i think he tried to break in i would like to think this is the same moron who didn't manage to learn his lesson the first time.
|
# ? Mar 1, 2017 17:17 |
|
minivanmegafun posted:
Don't make fun of Lowtax and his choice of provider.
|
# ? Mar 1, 2017 17:35 |
|
Cocoa Crispies posted:viscosity isn't hideous Username/post combo. But yeah, openvpn is good, and tunnelblick ships upstream openvpn and takes normal openvpn configs, which is nice.
|
# ? Mar 1, 2017 17:38 |
|
Dear xxxx: The newly designed xxx Web Portal is in production on March 1, 2017. The new web portal can be accessed either through the same url as before REDACTED. You may need to reload the url REDACTED a few times to see the new web portal. In addition, please ignore the warning about the mismatch of the host name for the certificate of the new web site. We will have a new certificate for the new web portal in the near future. Please send comments, feature requests and bug reports to BLACK HOLE WHERE WE WON'T PAY ATTENTION. Thank you very much. Sincerely, zzzzzzzzz development team
|
# ? Mar 1, 2017 18:19 |
|
i once had a discussion with a developer who claimed that he was going to 'bolt the security on at a later date', maybe he works for you guys now?
|
# ? Mar 1, 2017 18:30 |
|
Thanks Ants posted:i once had a discussion with a developer who claimed that he was going to 'bolt the security on at a later date', maybe he works for you guys now? if not, he may need a refresher course at upstairs virginia cyber school and ham outlet before the hire
|
# ? Mar 1, 2017 18:35 |
|
Thanks Ants posted:i once had a discussion with a developer who claimed that he was going to 'bolt the security on at a later date', maybe he works for you guys now? i hope that dev is now dead. loving ignorant bastard. it's exactly that attitude which is the cause of all our problems. pissssssss
|
# ? Mar 1, 2017 18:35 |
|
Thanks Ants posted:i once had a discussion with a developer who claimed that he was going to 'bolt the security on at a later date', maybe he works for you guys now? personally i'd rather have it riveted on
|
# ? Mar 1, 2017 18:38 |
|
https://east-ee.com/2017/02/28/rebreakcaptcha-breaking-googles-recaptcha-v2-using-google/
|
# ? Mar 1, 2017 19:15 |
|
Carbon dioxide posted:https://east-ee.com/2017/02/28/rebreakcaptcha-breaking-googles-recaptcha-v2-using-google/ No mention of private disclosure before public disclosure, and the one comment at the bottom has a person saying they can't repro this. A shameful disclosure.
|
# ? Mar 1, 2017 19:20 |
|
Carbon dioxide posted:https://east-ee.com/2017/02/28/rebreakcaptcha-breaking-googles-recaptcha-v2-using-google/ hahaha that owns
|
# ? Mar 1, 2017 19:22 |
|
spankmeister posted:SMB is pretty chatty as far as file sharing protocols go. that hasn't been true since 2.0 and its way better in 3.x
|
# ? Mar 1, 2017 19:24 |
|
lmbo symantec mail security is leaving copies of people's email attachments sitting around as .tmp files in the root of C: gently caress this product
|
# ? Mar 1, 2017 20:22 |
|
BangersInMyKnickers posted:lmbo symantec gently caress this product ftfy real talk though, if you've got on-premise exchange trend micro scanmail seems pretty OK. i've only had to install it and manage the exchange instances it's on but it seems very set-and-forget, never had any issues. ofc you shld be doing anti-spam/av/whatever at the edge before it even hits your network but lol idk
|
# ? Mar 1, 2017 20:28 |
|
Truga posted:fyi, openvpn has support for a http wrapper. you set up nginx or whatever, and proxy it to the openvpn http handler. that way, even dumbass firewalls which inspect your traffic to make sure it's valid http traffic can't block your poo poo, it's the best thing and I've used it before and there's no noticeable performance loss over the standard tcp tunnel, mtu is just slightly lower but that's it. Hollow Talk posted:Username/post combo. I thought the issue with OpenVPN was you were always relying on 3rd party VPN clients that would occasionally leak traffic under certain situations? That using a normal built-in IPSEC VPN was the more robust option?
|
# ? Mar 1, 2017 20:36 |
|
cheese-cube posted:i hope that dev is now dead. loving ignorant bastard. it's exactly that attitude which is the cause of all our problems. pissssssss he's still alive and has since become the sort of person who wears odd socks on purpose to prove how laid back he is
|
# ? Mar 1, 2017 20:40 |
|
Thanks Ants posted:he's still alive and has since become the sort of person who wears odd socks on purpose to prove how laid back he is gently caress me the mans an insufferable singularity i really do hope he dies e: mlmp
|
# ? Mar 1, 2017 20:42 |
|
salted hash browns posted:I thought the issue with OpenVPN was you were always relying on 3rd party VPN clients that would occasionally leak traffic under certain situations? That using a normal built-in IPSEC VPN was the more robust option? i use vpn for 2 use cases: - people at work might need access to internal file shares/*.lan services - playing games via steam streaming from home on my chomebook (i openvpn to my rpi and wol my pc and can play anywhere) so there really isn't traffic that could leak. my clients prefer having split tunneling anyway cause the internet at work gets lovely during work hours and their youtubes stop working i installed a pretty robust ikev2 solution at work and it performs great on lunix and android, pretty ok on windows, and very badly on sierra/ios (clients disconnect every 8 minutes). there's a workaround, but it involves settings that make windows clients not work at all, because windows only supports cyphers with sha1 and not sha256 . i guess that's a good enough reason to just move to openvpn, in light of shattered thing.
|
# ? Mar 1, 2017 21:00 |
|
Truga posted:vpn 2 use cases internal file shares/*.lan services steam streaming my chomebook openvpn to my rpi and wol my pc split tunneling their youtubes robust ikev2 solution on lunix and android on sierra/ios cyphers with sha1 and not sha256 .
|
# ? Mar 1, 2017 21:05 |
|
salted hash browns posted:I thought the issue with OpenVPN was you were always relying on 3rd party VPN clients that would occasionally leak traffic under certain situations? That using a normal built-in IPSEC VPN was the more robust option? Are you thinking of any more specific instances, or of leaked DNS? You can push DNS servers from the server to a client to solve that. That said, I haven't ever used it with Windows, only with Linux/MacOS/Android, so this might very well be an issue under some circumstances. There is apparently also a Windows-specific option --block-outside-dns regarding DNS leaks.
|
# ? Mar 1, 2017 21:10 |
|
cheese-cube posted:ftfy we're doing this because the edge is so misconfigured that it lets every possible thing through and I can't control it. and we are "standardized" on symantec so SMS was my only recourse and they block purchase of anything else
|
# ? Mar 1, 2017 21:24 |
|
BangersInMyKnickers posted:we're doing this because the edge is so misconfigured that it lets every possible thing through and I can't control it. and we are "standardized" on symantec so SMS was my only recourse and they block purchase of anything else ah poo poo my condolences, especially if you've got messagelabs (now symantec.cloud) as your edge MTA. that product is hot garbage. for example, they recently got more than half of their MXs blacklisted by some prominent RBLs. who the gently caress even lets that happen?
|
# ? Mar 1, 2017 21:29 |
|
BangersInMyKnickers posted:lmbo symantec mail security peter norton mail cop
|
# ? Mar 1, 2017 22:05 |
|
salted hash browns posted:I thought the issue with OpenVPN was you were always relying on 3rd party VPN clients that would occasionally leak traffic under certain situations? That using a normal built-in IPSEC VPN was the more robust option? yeah, the official android client has a problem where even if you tell it to seamless tunnel (block the internet if you aren't going through the vpn) if it loses connection and fails to reconnect it silently fails and disables the vpn which happened to me somewhat commonly with the last vpn service i used that limited the number of sessions at a time you are allowed and didn't properly terminate them sometimes when switching from cell to wifi or vice versa
|
# ? Mar 1, 2017 23:35 |
|
|
# ? Jun 3, 2024 09:16 |
|
Hollow Talk posted:Are you thinking of any more specific instances, or of leaked DNS? You can push DNS servers from the server to a client to solve that. That said, I haven't ever used it with Windows, only with Linux/MacOS/Android, so this might very well be an issue under some circumstances. There is apparently also a Windows-specific option --block-outside-dns regarding DNS leaks. DNS and IPv6 are the areas I'm aware of. Some OpenVPN clients don't use the v6 stack which can lead to a bunch of direct connections. Wheras (from what I understand) ipsec built-in clients generally don't have this issue.
|
# ? Mar 1, 2017 23:47 |