|
OSI bean dip posted:http://www.tenable.com/security/research/tra-2017-17
|
# ? Apr 20, 2017 00:16 |
|
|
# ? Jun 8, 2024 09:06 |
|
James Baud posted:If it dodges 99% of low-effort attacks, it is "improving" security. Re: the latter, administrative hassle is a biggy what's your favorite antivirus
|
# ? Apr 20, 2017 00:22 |
|
you mean https://www.youtube.com/watch?v=dPAZvxmLfcQ
|
# ? Apr 20, 2017 01:02 |
|
congrats u picked a weird port its on shodan anyway
|
# ? Apr 20, 2017 01:11 |
|
anthonypants posted:i'm going to be putting an appliance on the internet to receive phi and there's no obvious method of telling sshd or the admin web interface to bind to a separate network interface. i opened a ticket and asked them how to do that and they said they'd have to check with an engineer and that's not a very good sign. the only shell access you're allowed to get is a chroot jail or something so i think i'm going to have to boot into single-user mode to get around it. maybe i'll even find a hardcoded backdoor account! e: ah gently caress openssh 4.3p2, openssl 0.9.8e-fips-rhel5 this is insanely old everything else seems to be less then a decade old apache 2.4.16 postgresql 9.4.5 bash 3.2.25(1)-release anthonypants fucked around with this message at 01:32 on Apr 20, 2017 |
# ? Apr 20, 2017 01:14 |
|
James Baud posted:You know, you've actually met me at an industry thing, but the bar to get into those is pretty low. apparently so
|
# ? Apr 20, 2017 01:17 |
|
James Baud posted:You know, you've actually met me at an industry thing, but the bar to get into those is pretty low. I bet that was a relief when you found out you could get in.
|
# ? Apr 20, 2017 01:20 |
|
if only the convention centre put the doors in a nonstandard location
|
# ? Apr 20, 2017 01:25 |
|
So I use nmap all the loving time. If you have a service that doesn't just barf out whatever the gently caress it is to any ole synack (or anything) and you put it on a non-standard port you have a good chance of making sure people have no idea what the gently caress it is. For example, NJE defaults to port 175. Unless you send a very specific packet with the right user/pass combo (I'm simplifying here) it just sends a RST packet. You put that on some weird rear end port like 60666 there's no way an attacker will know what it is. On top of that, in an enterprise environment scanning one host with nmap -p- takes me about 10-15 minutes. I have 100 systems included in a pentest, thats 25 hours to just check open ports. Forget banner grabbing with -sV. Obviously you can just speed that up with masscan, but lol you'll get detected so loving fast using masscan and hopefully blocked, so whats the point. I'm not saying it's good security, like, how does putting sshd on port 42069 make it any harder to find it? But I can understand why less experienced people might see moving a port away from standard can have any effect on security because it appears to obfuscate. And does lower the risk (a minuscule amount) from automated poo poo hitting it and getting lucky, but if your box gets popped cause the username/password was in some default wordlist used by those bots your company is hosed anyway. I'll caution with this though, if you're in an enterprise and they have all these lovely custom apps running on non-default ports, your asset tracking (IP/Port to Application) better be spot loving on. Otherwise you're gonna be hosed when something like struts comes calling. And this feeds back in to logging. If you can't map IP/Port back to an application back to an owner and use some weird custom port ranges to track that poo poo for forensics you're hosed long term. Edit: Also, wanted to add, nmaps tcp probes are hot garbage. So say you put a weird server (some weird sip server) on a non-standard port. There's a very good change nmap won't be able to do the banner correlation because of the way those rules are written. You can fix that with some flags but most people don't even know this is a potential problem. If you put it on the standard port it will find it in half a second. Not saying it'll stop someone of YOSPOS caliber but it'll stop most script kiddies and/or pentesters at trustwave. Optimus_Rhyme fucked around with this message at 01:51 on Apr 20, 2017 |
# ? Apr 20, 2017 01:47 |
|
EMILY BLUNTS posted:if only the convention centre put the doors in a nonstandard location
|
# ? Apr 20, 2017 02:27 |
|
Most companies also don't put signage on their datacenters. Why? But yeah, convention centers are an apt comparison. Was a car metaphor unavailable?
|
# ? Apr 20, 2017 02:39 |
|
Optimus_Rhyme posted:Edit: Also, wanted to add, nmaps tcp probes are hot garbage. So say you put a weird server (some weird sip server) on a non-standard port. There's a very good change nmap won't be able to do the banner correlation because of the way those rules are written. You can fix that with some flags but most people don't even know this is a potential problem. If you put it on the standard port it will find it in half a second. Not saying it'll stop someone of YOSPOS caliber but it'll stop most script kiddies and/or pentesters at trustwave.
|
# ? Apr 20, 2017 03:59 |
|
i fought really hard to not have tenable's nessus installed in a production environment because of government requirements, to the point where we had to get a special exemption. i dragged my feet until we were allowed to just run nessus on some separate VPC with just some instances of the AMIs we used instead of opening a port to the world so the feds could run their dumb scanning tools. whenever i get a notice that there's some weird privilege escalation or remote execution exploit that needs to be patched, theres not a smugdog in the world large enough. total incompetence is pretty standard when dealing with the government, right?
|
# ? Apr 20, 2017 04:32 |
|
https://twitter.com/xor/status/854833469880283136 boy our security's egregious
|
# ? Apr 20, 2017 06:02 |
|
that dudes twitter handle is worth a fortune
|
# ? Apr 20, 2017 06:19 |
|
flakeloaf posted:https://twitter.com/xor/status/854833469880283136 wouldn't noise cancelling require outside mics and "media information" on it
|
# ? Apr 20, 2017 06:31 |
|
anthonypants posted:it's running centos 5.11 lol They probably installed the those by hand or from some random repo. If you're lucky they used centos software collections but probably not. it's all moot anyway because CentOS 5.11 is unsupported as of like 2 weeks ago.
|
# ? Apr 20, 2017 06:43 |
|
flakeloaf posted:https://twitter.com/xor/status/854833469880283136 no highs, no lows, customer data flows
|
# ? Apr 20, 2017 07:11 |
|
spankmeister posted:They probably installed the those by hand or from some random repo. If you're lucky they used centos software collections but probably not. it's all moot anyway because CentOS 5.11 is unsupported as of like 2 weeks ago. anthonypants fucked around with this message at 07:50 on Apr 20, 2017 |
# ? Apr 20, 2017 07:45 |
|
JawnV6 posted:wouldn't noise cancelling require outside mics and "media information" on it not sent through an app to a tracking firm my qc20s don't have an app
|
# ? Apr 20, 2017 12:41 |
|
And I don't believe they need that information anyway. They have what they need, the audio signal, from the device plugged into the headphones.
|
# ? Apr 20, 2017 12:56 |
|
JawnV6 posted:wouldn't noise cancelling require outside mics and "media information" on it outside mics yes, and nothing else
|
# ? Apr 20, 2017 13:32 |
|
it's ok guys things with mics have ne... hang on MCDONALD'S! anyway, as i was saying
|
# ? Apr 20, 2017 14:21 |
|
Storysmith posted:no highs, no lows, customer data flows
|
# ? Apr 20, 2017 14:33 |
|
Lol. trashcan? recycle bin? nope, we got a dumpster!
|
# ? Apr 20, 2017 14:40 |
|
akadajet posted:Lol. trashcan? recycle bin? nope, we got a dumpster! much like *dances a little jig to some funky bass* you're posting
|
# ? Apr 20, 2017 14:48 |
|
i always assumed Apple had trademarked the idea of a trashcan which is why windows has a recycle bin and I assume why that thing has a dumpster
|
# ? Apr 20, 2017 14:55 |
|
ate all the Oreos posted:i always assumed Apple had trademarked the idea of a trashcan which is why windows has a recycle bin and I assume why that thing has a dumpster dumpster(tm) brand mobile garbage bins is a trademark
|
# ? Apr 20, 2017 14:58 |
|
Malcolm XML posted:dumpster(tm) brand mobile garbage bins is a trademark well maybe but so is escalator and trampoline and heroin apparently
|
# ? Apr 20, 2017 15:01 |
|
ate all the Oreos posted:i always assumed Apple had trademarked the idea of a trashcan which is why windows has a recycle bin and I assume why that thing has a dumpster apple wastefully throws away your unused data where Microsoft recycles it.
|
# ? Apr 20, 2017 15:39 |
|
Shaggar posted:apple wastefully throws away your unused data where Microsoft recycles it. MODS NEW THREAD TITLE TIA
|
# ? Apr 20, 2017 16:07 |
|
CRIP EATIN BREAD posted:i fought really hard to not have tenable's nessus installed in a production environment because of government requirements, to the point where we had to get a special exemption. i dragged my feet until we were allowed to just run nessus on some separate VPC with just some instances of the AMIs we used instead of opening a port to the world so the feds could run their dumb scanning tools.
|
# ? Apr 20, 2017 17:41 |
|
reuse your bits but also EMILY BLUNTS posted:if only the convention centre put the doors in a nonstandard location
|
# ? Apr 20, 2017 17:47 |
|
Cocoa Crispies posted:not sent through an app to a tracking firm no, not that digitizing external audio for processing through an app is required to do noise cancelling, DSP's have the functionality built in now im saying that it's written so broadly as to enable them to hoover up every sound around you, not just what's ostensibly being played
|
# ? Apr 20, 2017 17:58 |
|
flosofl posted:I bet that was a relief when you found out you could get in. security pro who knows all about firewalls and posts the weakest burns a shameful sec bro
|
# ? Apr 20, 2017 18:00 |
|
brace yourselves https://twitter.com/tumult/status/855082563395768321
|
# ? Apr 20, 2017 18:26 |
|
artisanal handcrafted wooden memcpy
|
# ? Apr 20, 2017 18:28 |
|
a revolution in audio rendering
|
# ? Apr 20, 2017 18:31 |
|
so I noticed a weird icon in sleep cycle when going to bed last night and after a quick google search: https://support.sleepcycle.com/hc/en-us/articles/207392375-What-does-the-link-symbol-on-my-night-screen-mean-?mobile_site=true quote:What does the link symbol on my night screen mean? HMMM HOW COULD THIS POSSIBLY GO WRONG?? for what it's worth I'm at a hotel. my phone has been broadcasting a recording of my sleep to strangers for who knows how long. great job
|
# ? Apr 20, 2017 18:49 |
|
|
# ? Jun 8, 2024 09:06 |
|
funny Star Wars parody posted:that dudes twitter handle is worth a fortune at least 15k. this is based on having sold a five-character twitter handle for 10k.
|
# ? Apr 20, 2017 18:53 |