|
don't touch the poop you imbeciles
|
# ? Mar 21, 2017 02:03 |
|
|
# ? May 22, 2024 15:28 |
|
rafikki posted:don't link this right now, thanks! i'm not very familiar with sql but please tell me what happened is someone read the funny bug report and promptly went to log in as ; DROP TABLE Somebody fucked around with this message at 02:23 on Mar 21, 2017 |
# ? Mar 21, 2017 02:04 |
|
fisting by many posted:i'm not very familiar with sql but please tell me what happened is someone read the funny bug report and promptly went to log in as ; DROP TABLE yep
|
# ? Mar 21, 2017 02:05 |
|
rafikki posted:don't link this right now, thanks! arse is claiming that they send credit card credentials over plaintext: quote:As several commenters have pointed out, the site's subscription page transmits credit card information over plain-vanilla HTTP pages as well. https://arstechnica.com/security/2017/03/firefox-gets-complaint-for-labeling-unencrypted-login-page-insecure/#p3 Somebody fucked around with this message at 02:24 on Mar 21, 2017 |
# ? Mar 21, 2017 02:13 |
|
Don't loving touch the poop.
|
# ? Mar 21, 2017 02:18 |
|
Munkeymon posted:aww the bug report is private
|
# ? Mar 21, 2017 02:21 |
|
don't link to that site from here, thank you!
|
# ? Mar 21, 2017 02:24 |
|
Midjack posted:don't touch the poop you imbeciles OSI bean dip posted:Don't loving touch the poop.
|
# ? Mar 21, 2017 02:27 |
|
Rip probably thread.
|
# ? Mar 21, 2017 02:29 |
|
anthonypants posted:according to the above arse link there's a reddit thread and that's where the poop-touching is happening Reddit can deal with the consequences if any then.
|
# ? Mar 21, 2017 02:30 |
|
Hilariously the DB was apparently dropped.
|
# ? Mar 21, 2017 02:32 |
|
OSI bean dip posted:Reddit can deal with the consequences if any then. OSI bean dip posted:Hilariously the DB was apparently dropped.
|
# ? Mar 21, 2017 02:36 |
|
OSI bean dip posted:Reddit can deal with the consequences if any then. they definitely touched the poop
|
# ? Mar 21, 2017 02:44 |
|
But I love poop!
|
# ? Mar 21, 2017 02:44 |
|
anthonypants posted:yes, some redditor is probably going to jail over some poo poo they learned off xkcd lmao
|
# ? Mar 21, 2017 02:47 |
|
anthonypants posted:according to the above arse link there's a reddit thread and that's where the poop-touching is happening probably still a good idea not to directly link to the action from here
|
# ? Mar 21, 2017 02:50 |
|
Midjack posted:probably still a good idea not to directly link to the action from here
|
# ? Mar 21, 2017 02:52 |
|
RIP that guy. I feel like statement mappers and ORMs are so pervasive nowadays that making a site vulnerable to sql injection is more difficult than not. maybe that's a very sheltered perspective though.
|
# ? Mar 21, 2017 03:06 |
|
a witch posted:RIP that guy. I feel like statement mappers and ORMs are so pervasive nowadays that making a site vulnerable to sql injection is more difficult than not. maybe that's a very sheltered perspective though. Lol if you think that site didn't have hardcoded and unsanitized SQL calls interspersed with HTML outputs.
|
# ? Mar 21, 2017 03:15 |
|
a witch posted:RIP that guy. I feel like statement mappers and ORMs are so pervasive nowadays that making a site vulnerable to sql injection is more difficult than not. maybe that's a very sheltered perspective though. i had to explain to somebody with 6+ years experience recently that just because you're using neo4j instead of mysql, it doesn't mean you can go back to string building queries cypher injection sounds a lot cooler than sql injection tho
|
# ? Mar 21, 2017 03:16 |
|
OSI bean dip posted:Hilariously the DB was apparently dropped. i want to say it was out of benevolence but knowing more than zero humans means i should know better
|
# ? Mar 21, 2017 04:18 |
|
flakeloaf posted:i want to say it was out of benevolence but knowing more than zero humans means i should know better eh, i'm pretty sure the guy who did it thought he was doing a favor
|
# ? Mar 21, 2017 04:21 |
|
it's definitely one way to keep it off of haveibeenpwned
|
# ? Mar 21, 2017 04:26 |
|
Dex posted:cypher injection
|
# ? Mar 21, 2017 05:33 |
|
OSI bean dip posted:Hilariously the DB was apparently dropped. Good.
|
# ? Mar 21, 2017 06:48 |
|
yo, anyone here used skyformation (http://www.skyformation.com/) before? we're looking at it maybe for pulling in events from azure ad and o365 seccom to then pass onto mcafee siem (). just wondering if anyone has any horror stories or can recommend anything better
|
# ? Mar 21, 2017 06:50 |
|
BangersInMyKnickers posted:XTS and CBC diffuser modes at least made some attempt to improve this situation so it isn't as bad as it was a few years ago but still not great. validation has too much overhead, gotta run fast and dirty
|
# ? Mar 21, 2017 09:24 |
|
where would you even store signatures or checksums? iirc both storing them next to the data and storing them all off at the end somewhere both have problems
|
# ? Mar 21, 2017 09:26 |
|
vOv posted:where would you even store signatures or checksums? iirc both storing them next to the data and storing them all off at the end somewhere both have problems IIRC disk encryption solutions don't sign every block. They only protect confidentiality, and depending on the mode, integrity. spankmeister fucked around with this message at 09:47 on Mar 21, 2017 |
# ? Mar 21, 2017 09:44 |
|
so my ex is currently making an shirt+trousers outfit that uses a pair of arduinos to power decorative lights and such something depressing was said quote:how long do you think it'll be until clothes need virus protection and firewalls? the internet of things is reaching clothing
|
# ? Mar 21, 2017 13:15 |
|
continuing lols https://twitter.com/taviso/status/844013365991104513
|
# ? Mar 21, 2017 13:24 |
"150 mb/line of code" 🤔
|
|
# ? Mar 21, 2017 13:36 |
|
is LastPass dead now? did taviso kill it?
|
# ? Mar 21, 2017 15:31 |
|
anyone who knows who taviso is already stopped using last pass ages ago, but this is not normal behavior
|
# ? Mar 21, 2017 15:32 |
|
bunch of people in his replies asking about 1password, i'm just glad he changed his mind about password managers https://twitter.com/taviso/status/765953546713825280 https://twitter.com/taviso/status/769378052254015488
|
# ? Mar 21, 2017 16:24 |
|
quote:RESOLVED WONTFIX yisss that's what I needed
|
# ? Mar 21, 2017 16:26 |
|
so at this point should i just never use a password manager again? lol
|
# ? Mar 21, 2017 16:31 |
Cold on a Cob posted:so at this point should i just never use a password manager again? lol
|
|
# ? Mar 21, 2017 16:37 |
|
Just don't use auto-fill?
|
# ? Mar 21, 2017 16:38 |
|
|
# ? May 22, 2024 15:28 |
|
ate poo poo on live tv posted:Just don't use lastpass?
|
# ? Mar 21, 2017 16:40 |