|
i love my dead gay smart home
|
#
?
Mar 22, 2017 18:40
|
|
|
|
| # ? Jun 8, 2024 08:14 |
|
|
my goth gf posted:i love my dead gay smart home does a gay home like to be close with other homes or something? is it like a duplex?
|
|
#
?
Mar 22, 2017 18:46
|
|
|
no home-o
|
|
#
?
Mar 22, 2017 18:51
|
|
|
spankmeister posted:no home-o lol obviously apartments and condos are mormon then
|
|
#
?
Mar 22, 2017 18:52
|
|
|
cis autodrag posted:does a gay home like to be close with other homes or something? is it like a duplex? duplex is extremely codependent
|
|
#
?
Mar 22, 2017 19:05
|
|
|
"Ormandy RCE" is an actual phrase now
|
|
#
?
Mar 22, 2017 19:11
|
|
|
cis autodrag posted:does a gay home like to be close with other homes or something? is it like a duplex? freehold to be you and me
|
|
#
?
Mar 22, 2017 19:16
|
|
|
cinci zoo sniper posted:"Ormandy RCE" is an actual phrase now https://twitter.com/ramriot/status/844575453226713089
|
|
#
?
Mar 22, 2017 19:24
|
|
|
fishmech posted:they were also not encrypted/even encryptable at all originally, pretty sure Mozilla supported the master password from when it first got password management, in the late 90s
|
|
#
?
Mar 22, 2017 19:38
|
|
|
yep, the mozilla solution is pretty ok, though i think there's some issues with syncing passwords over different devices if you have the master password set? or has that been fixed?
|
|
#
?
Mar 22, 2017 19:39
|
|
|
I haven't had a problem with it
|
|
#
?
Mar 22, 2017 19:45
|
|
|
Truga posted:yep, the mozilla solution is pretty ok, though i think there's some issues with syncing passwords over different devices if you have the master password set? or has that been fixed? firefox sync will replicate the password blob to anything else that supports sync
|
|
#
?
Mar 22, 2017 19:57
|
|
|
our hr person got a notification that a vendor is updating the ssl cert on their website, and gave them instructions on how to install the cert. it's not self-signed, so i don't know why they wouldn't just attach the CA and intermediate certs instead. i think they might be worried about pinned certificates?
|
|
#
?
Mar 22, 2017 22:24
|
|
|
anthonypants posted:our hr person got a notification that a vendor is updating the ssl cert on their website, and gave them instructions on how to install the cert. it's not self-signed, so i don't know why they wouldn't just attach the CA and intermediate certs instead. i think they might be worried about pinned certificates? Are you sure it isn't a client certificate? One of our financial vendors used certificates for user authentication, and that was a real trip figuring out. Their 2013-ish instructions were for IE6 on XP.
|
|
#
?
Mar 22, 2017 22:57
|
|
|
McGlockenshire posted:Are you sure it isn't a client certificate? One of our financial vendors used certificates for user authentication, and that was a real trip figuring out. Their 2013-ish instructions were for IE6 on XP. quote:Here are the steps you can use to test the URL to confirm if you will need to manually update your company’s SSL Certificate: anthonypants fucked around with this message at 23:06 on Mar 22, 2017 |
|
#
?
Mar 22, 2017 23:03
|
|
|
https://blog.lastpass.com/2017/03/important-security-updates-for-our-users.htmlquote:Based on our URL parsing process in Firefox 3.3.2, malicious websites could spoof legitimate websites and fool the LastPass add-on into providing user site credentials.
|
|
#
?
Mar 22, 2017 23:43
|
|
|
yep.
|
|
#
?
Mar 22, 2017 23:45
|
|
|
Malloc Voidstar posted:are they saying they just straight up forgot to patch a vulnerability in a maintained version of their addon? what they're saying is that they have the highest quality assurance practices going and that they take the development of their application real serious
|
|
#
?
Mar 22, 2017 23:48
|
|
|
either forgot or didn't care about it because it was deprecated, despite telling taviso earlier this week that most people were on that version
|
|
#
?
Mar 22, 2017 23:49
|
|
|
http://orionbrowser.com/ 
|
|
#
?
Mar 23, 2017 00:35
|
|
|
the cert is for http://www.evestigator.com.au/ which  how did he think this was a proper site design
|
|
#
?
Mar 23, 2017 00:52
|
|
|
The blog is even better: http://www.evestigatorblog.com.au/
|
|
#
?
Mar 23, 2017 01:00
|
|
|
Malloc Voidstar posted:the cert is for http://www.evestigator.com.au/ which browse the site from tor: 
|
|
#
?
Mar 23, 2017 01:01
|
|
|
oh man the stuff he boasts about is incredible "This is when I got involved. When he presented his laptop to me I was able to take off the important data and remove the entire malware/virus, and even further since [the tech support scammers] were still trying to get money out of him, I decided to locate them. Via proprietary techniques, I attained the criminals IP Address, IP, Mobile device make, firmware which was in India." "I uncovered one of the largest DDOS cyber-attacks (with this case being followed closely in the media) involving defamation of a celebrity." "15 years ago I discovered a flaw in (one of the world's largest accounting software companies) that revealed credit card details in the hexadecimal binary of the unencrypted data file and alerted the producers of the software to the problem."
|
|
#
?
Mar 23, 2017 01:04
|
|
|
that mcmahon gif but with each of these pages
Malloc Voidstar posted:the cert is for http://www.evestigator.com.au/ which ohgodwhat posted:The blog is even better: http://www.evestigatorblog.com.au/ OSI bean dip posted:browse the site from tor:
|
|
#
?
Mar 23, 2017 01:05
|
|
|
I imagine it's like 419 scams being obvious scams intentionally so that only dumb people fall for it. This guy actually makes sure only idiots hire him so he doesn't have to do poo poo and just makes bank.
|
|
#
?
Mar 23, 2017 01:06
|
|
|
part of me wants to do a follow up post to this i posted in haste: https://securitysnakeoil.org/2017/03/22/shooting-fish-in-a-barrel-orion-browser/
|
|
#
?
Mar 23, 2017 01:07
|
|
|
Malloc Voidstar posted:hexadecimal binary Wow!
|
|
#
?
Mar 23, 2017 01:35
|
|
|
|
|
#
?
Mar 23, 2017 01:37
|
|
|
OSI bean dip posted:browse the site from tor:  legit amazingWhat ya gonna do, when the austrian police come from you ?
|
|
#
?
Mar 23, 2017 01:50
|
|
|
OSI bean dip posted:browse the site from tor: 
|
|
#
?
Mar 23, 2017 01:59
|
|
|
how can i tell if i have an illegal ip address 
|
|
#
?
Mar 23, 2017 02:00
|
|
|
you must erase this bios within 24 hours
|
|
#
?
Mar 23, 2017 02:00
|
|
|
surebet posted:i'm accident prone, and since i'm not always in an office environment means my gently caress-ups are usually around machinery or concrete floors my sister acknowledged she was a dipshit with technology in general so in college her strategy was "use whatever blackberry model came out 2-3 years ago" so every 4-6 weeks she destroyed her phone and just picked up one that was being liquidated from large company fleets for like $20.
|
|
#
?
Mar 23, 2017 02:24
|
|
|
i'm seriously thinking at this point that storing my username/pws in google keep would be more secure than lastpass, jfc i'm not actually going to do this
|
|
#
?
Mar 23, 2017 02:28
|
|
|
a bit surprised that guy isnt on the attrition charlatans page
|
|
#
?
Mar 23, 2017 02:29
|
|
|
Cold on a Cob posted:i'm seriously thinking at this point that storing my username/pws in google keep would be more secure than lastpass, jfc This is true though so...
|
|
#
?
Mar 23, 2017 02:32
|
|
|
anthonypants posted:these instructions were provided in a word document sent as a link in the notification email: I don't think IE does cert pinning so they're probably worried about XP or something that might not still be getting root certificate updates. also you haven't been able to install certs that way from IE for a few years now since they started sandboxing it.
|
|
#
?
Mar 23, 2017 02:33
|
|
|
apseudonym posted:This is true though so... lol yeah i meant i wouldn't put them in keep because then google could read them too which is still better than any loving website i visit doing it via lastpass, but still not what i want
|
|
#
?
Mar 23, 2017 02:40
|
|
|
|
| # ? Jun 8, 2024 08:14 |
|
|
Rufus Ping posted:a bit surprised that guy isnt on the attrition charlatans page
|
|
#
?
Mar 23, 2017 02:42
|
|