|
OSI bean dip posted:https://www.reddit.com/r/programming/comments/60jc69/company_with_an_httpserved_login_form_filed_a/df7vnzp/ keep touchin' that poop reddit
|
#
?
Mar 21, 2017 21:33
|
|
|
|
| # ? May 17, 2024 07:47 |
|
|
Reddit is an excellent PTaaS provider
|
|
#
?
Mar 21, 2017 21:36
|
|
|
Browser vendors should establish an html standard for password UI and have hooks for pw managers instead of the lovely code injection and scraping that's done now
|
|
#
?
Mar 21, 2017 21:37
|
|
|
Malcolm XML posted:Browser vendors should establish an html standard for password UI and have hooks for pw managers instead of the lovely code injection and scraping that's done now Funny enough, Android O just put out an API for this. Lastpass and similar managers of its ilk have been screen scraping and injecting autofills on Android login screens.
|
|
#
?
Mar 21, 2017 21:42
|
|
|
OSI bean dip posted:https://www.reddit.com/r/programming/comments/60jc69/company_with_an_httpserved_login_form_filed_a/df7vnzp/ also: quote:Unsurprisingly passwords are stored in plain text and trivial to get out of the database due to verbose logging.
|
|
#
?
Mar 21, 2017 21:44
|
|
|
OSI bean dip posted:https://www.reddit.com/r/programming/comments/60jc69/company_with_an_httpserved_login_form_filed_a/df7vnzp/
|
|
#
?
Mar 21, 2017 21:46
|
|
|
Raere posted:I don't understand why password managers are so bad. Shouldn't they be relatively straightforward to make with some competent security people on your team? I understand that antivirus software is pretty complex so there are secfucks abound, but password managers shouldn't be that complex. I'm very reluctant to describe anything security-related as "relatively straightforward", even with competent security people around, particularly not password managers which are surely huge targets.
|
|
#
?
Mar 21, 2017 22:27
|
|
|
a neat article about hacking tractors for fun and profit https://motherboard.vice.com/en_us/article/why-american-farmers-are-hacking-their-tractors-with-ukrainian-firmware anthonypants fucked around with this message at 00:07 on Mar 22, 2017 |
|
#
?
Mar 21, 2017 22:46
|
|
|
anthonypants posted:a neat article about hacking tractors for fun and profit god drat that is some draconian poo poo
|
|
#
?
Mar 21, 2017 22:56
|
|
|
anthonypants posted:a neat article about hacking tractors for fun and profit it's gonna be pretty cyberpunk when the entire north american farming community simultaneously shuts down because farmers have been installing the equivalent of ~*wEEdGoKu420*~_xda.rom from some rando in eastern europe on their equipment
|
|
#
?
Mar 21, 2017 22:58
|
|
|
https://twitter.com/taviso/status/844312124541186048 please tavis don't hurt 'em
|
|
#
?
Mar 21, 2017 23:19
|
|
|
anthonypants posted:a neat article about hacking tractors for fun and profit pretty cool that farmers appreciate the importance of free software imo
|
|
#
?
Mar 21, 2017 23:21
|
|
|
Meat Beat Agent posted:https://twitter.com/taviso/status/844312124541186048 https://www.youtube.com/watch?v=qQ6wSei-NJU&t=63s
|
|
#
?
Mar 21, 2017 23:23
|
|
|
i almost replied to him with that scene but i didn't feel like hitting up frinkiac (very apt tho)
|
|
#
?
Mar 21, 2017 23:25
|
|
|
anthonypants posted:a neat article about hacking tractors for fun and profit weird extra character on the end there in iOS 
|
|
#
?
Mar 21, 2017 23:31
|
|
|
the farming and software industries standing shoulder to shoulder against the dmca. farmers have earned a lot of goodwill from me today. i will take up their causes alongside my own. i am now in favour of loving cows or whatever
|
|
#
?
Mar 21, 2017 23:36
|
|
|
Chris Knight posted:weird extra character on the end there in iOS
|
|
#
?
Mar 21, 2017 23:37
|
|
|
Chris Knight posted:weird extra character on the end there in iOS Same for Anroid, just gives me some weird 404 horse.
|
|
#
?
Mar 21, 2017 23:43
|
|
|
fisting by many posted:keepass solves #2 I was going to come back to this post because I thought you had recommended lastpass and then I saw all this lastpass madness. Keepass was my original plan so I suppose I'll stick wit hit. Does anybody know a service to help mitigate the impact of identity theft if it already happened? I was still hoping to help out my coworker, and I am terrified it'll happen to me some day. It was from a breach to his medical insurance company, and there's not much one can do about that.
|
|
#
?
Mar 21, 2017 23:47
|
|
|
i think impact mitigation tends to just be checking for credit applications in your name and acting accordingly, take a look at https://www.consumer.ftc.gov/articles/0235-identity-theft-protection-services
|
|
#
?
Mar 21, 2017 23:52
|
|
|
crazysim posted:Funny enough, Android O just put out an API for this. Lastpass and similar managers of its ilk have been screen scraping and injecting autofills on Android login screens. the pwsafe app creates an IME so you can have it enter them for you without them ever appearing on screen or any other weird fuckery other than switching keyboard but they make _that_ easy because lol android
|
|
#
?
Mar 21, 2017 23:59
|
|
|
Rocko Bonaparte posted:I was going to come back to this post because I thought you had recommended lastpass and then I saw all this lastpass madness. Keepass was my original plan so I suppose I'll stick wit hit. Was waiting for someone else to answer, but if you haven't yet, freeze your credit with all 3 major credit bureaus if you haven't already.
|
|
#
?
Mar 22, 2017 01:15
|
|
|
OSI bean dip posted:https://www.reddit.com/r/programming/comments/60jc69/company_with_an_httpserved_login_form_filed_a/df7vnzp/ is this /r/programming or /r/scatplay?
|
|
#
?
Mar 22, 2017 02:53
|
|
|
infernal machines posted:it's gonna be pretty cyberpunk when the entire north american farming community simultaneously shuts down because farmers have been installing the equivalent of ~*wEEdGoKu420*~_xda.rom from some rando in eastern europe on their equipment personally, i find it far more cyberpunk that you buy a tractor, but it's not actually yours, it's only licensed to you for its lifetime, with a 10 billion page eula honestly, it's just as shady as the ukrainian firmware, and it's a great ticking bomb they brought on themselves.
|
|
#
?
Mar 22, 2017 03:49
|
|
|
it's also funny because the repair restrictions are completely illegal and unenforceable in several other states, usually on the basis of laws originally intended for high end sports cars
|
|
#
?
Mar 22, 2017 03:54
|
|
|
It's immoral as gently caress and I hope they get sued.
|
|
#
?
Mar 22, 2017 03:55
|
|
|
unlocking your tractors speed limit is badass
|
|
#
?
Mar 22, 2017 03:58
|
|
|
hifi posted:unlocking your tractors speed limit is badass https://www.youtube.com/watch?v=gEJHrmliVQw
|
|
#
?
Mar 22, 2017 04:01
|
|
|
hifi posted:unlocking your tractors speed limit is badass in the mid 90s i was in 4h with a guy who routinely had points deducted in the tractor driving competitions for driving too fast. i thought it was bullshit humblebragging until one event where i handled the score sheets and yup, jj lost 5 points for "excessive speed" though to be fair to the judges in that one he was basically drifting the tractor around some of the corners
|
|
#
?
Mar 22, 2017 04:13
|
|
|
Midjack posted:in the mid 90s i was in 4h with a guy who routinely had points deducted in the tractor driving competitions for driving too fast. i thought it was bullshit humblebragging until one event where i handled the score sheets and yup, jj lost 5 points for "excessive speed" though to be fair to the judges in that one he was basically drifting the tractor around some of the corners yeah we wouldn't want our stupid farmer games to be exciting, gotta obey the posted speed limits and tractor in an orderly fashion
|
|
#
?
Mar 22, 2017 04:18
|
|
|
we all agree that the cryptographic link between the touch sensor and the secure enclave is a good thing, right?
|
|
#
?
Mar 22, 2017 04:29
|
|
|
infernal machines posted:it's gonna be pretty cyberpunk when the entire north american farming community simultaneously shuts down because farmers have been installing the equivalent of ~*wEEdGoKu420*~_xda.rom from some rando in eastern europe on their equipment
|
|
#
?
Mar 22, 2017 04:51
|
|
|
ate all the Oreos posted:yeah we wouldn't want our stupid farmer games to be exciting, gotta obey the posted speed limits and tractor in an orderly fashion drifting a traction engine seems like kind of an affront to their existence
|
|
#
?
Mar 22, 2017 04:59
|
|
|
xPanda posted:drifting a traction engine seems like kind of an affront to their existence i think that's really what displeased the judges and this was their only way to express it
|
|
#
?
Mar 22, 2017 05:01
|
|
|
Phoenixan posted:your farm is locked until you pay 5 bitcoin Freemium really is creeping in everywhere isn't it
|
|
#
?
Mar 22, 2017 05:09
|
|
|
pseudorandom name posted:we all agree that the cryptographic link between the touch sensor and the secure enclave is a good thing, right? what does it do?
|
|
#
?
Mar 22, 2017 05:29
|
|
|
Truga posted:what does it do? interferes with your Right To Repair also prevents TouchID MITM attacks
|
|
#
?
Mar 22, 2017 05:35
|
|
|
Volmarias posted:Freemium really is creeping in everywhere isn't it farmville was the proof of concept
|
|
#
?
Mar 22, 2017 05:43
|
|
|
pseudorandom name posted:also prevents TouchID MITM attacks just loving lol if you use a fingerprint sensor to log into a device, anyone with a modern phone can lift yours thanks to the high res cameras packed into them these days. here, have a poc: http://www.smh.com.au/technology/technology-news/researchers-steal-fingerprints-from-peace-sign-photos-20170116-gtss3e.html
|
|
#
?
Mar 22, 2017 05:46
|
|
|
|
| # ? May 17, 2024 07:47 |
|
|
on a slightly more serious note, maybe don't have the touchid sensor be a part of the screen so people can get their phones fixed.
|
|
#
?
Mar 22, 2017 05:51
|
|