|
RISCy Business posted:https://www.youtube.com/watch?v=wdWgvJRHA0s this guy says oh-day, and he's an american who also swears alot to make himself sound important
|
#
?
Jul 8, 2017 04:18
|
|
|
|
| # ? May 14, 2024 22:14 |
|
|
ate all the Oreos posted:did anyone else notice SA was down for two hours due to a bad SSL certificate I was at the gym lifting
|
|
#
?
Jul 8, 2017 04:21
|
|
|
Rufus Ping posted:someone probably tried to turn on strict origin cert CN validation in cloudflare I'm pretty sure the error page from cloudflare said the certificate was expired
|
|
#
?
Jul 8, 2017 04:32
|
|
|
fair enough. richard wont get very far with that one though
|
|
#
?
Jul 8, 2017 04:39
|
|
|
flakeloaf posted:barvo permanent cart and order history, look at me fancy pants swinging his big dick over here
|
|
#
?
Jul 8, 2017 04:41
|
|
|
I like how the pentesters are popping out of the woodwork to diss a guy for calling their job a relatively large scam
|
|
#
?
Jul 8, 2017 04:57
|
|
|
FAT32 SHAMER posted:I like how the pentesters are popping out of the woodwork to diss a guy for calling their job a relatively large scam
|
|
#
?
Jul 8, 2017 05:25
|
|
|
pap schmear posted:this guy says oh-day, and he's an american who also swears alot to make himself sound important ok but what did he say that was wrong
|
|
#
?
Jul 8, 2017 05:58
|
|
|
i mean the man aliased as duncan manuts i don't think pointing out that he says oh-day and also cuss words is going to affect him in the least
|
|
#
?
Jul 8, 2017 06:01
|
|
|
"this guy pointed out that the infosec community is hampered by the fact that normies and even techies and some infosec dudes have no idea what infosec is nor does and because of that pentesting is usually a huge loving scam performed by people who have no idea what they're doing nor why. I'm going to laugh at this dude because he's obviously an idiot that doesn't recognize how my work as a pentester has a major impact on my field"
|
|
#
?
Jul 8, 2017 06:04
|
|
|
BangersInMyKnickers posted:Crypto Config Boogaloo 2017 Edition hey sorry this was several pages ago now but i was wondering why you're prioritising DHE with GCM over ECDHE with CBC. from what i understand GCM provides better performance than CBC but not much more on the security side whilst ECDHE is an effective mitigation against logjam attacks. happy to be wrong though!
|
|
#
?
Jul 8, 2017 07:10
|
|
|
I think I'm going to start using nil-day which we can all agree is wrong.
|
|
#
?
Jul 8, 2017 07:48
|
|
|
it's me. 0cool
|
|
#
?
Jul 8, 2017 07:51
|
|
|
everyone calls me oh cool though should I change my nick
|
|
#
?
Jul 8, 2017 07:51
|
|
|
it had never even occurred to me that "oh day" was a possible way to say it especially when phrases like "zero hour" have existed for a long time
|
|
#
?
Jul 8, 2017 08:10
|
|
|
https://www.youtube.com/watch?v=u7ERHEJLmWc
|
|
#
?
Jul 8, 2017 08:13
|
|
|
BattleMaster posted:it had never even occurred to me that "oh day" was a possible way to say it especially when phrases like "zero hour" have existed for a long time its always pronounced oh hour thouhg? ok im kidding.
|
|
#
?
Jul 8, 2017 08:15
|
|
|
BattleMaster posted:it had never even occurred to me that "oh day" was a possible way to say it especially when phrases like "zero hour" have existed for a long time but exactly as zero cool they spell the word and don't use the numeral
|
|
#
?
Jul 8, 2017 08:26
|
|
|
don't drink coke oh
|
|
#
?
Jul 8, 2017 14:06
|
|
|
Lain Iwakura posted:it's just another example of why sms 2fa is dumber than poo poo is that seriously the thing that worries you the most in "my phone provider reassigned my phone number to someone else"
|
|
#
?
Jul 8, 2017 14:12
|
|
|
hackbunny posted:is that seriously the thing that worries you the most in "my phone provider reassigned my phone number to someone else"
|
|
#
?
Jul 8, 2017 14:17
|
|
|
https://boringssl.googlesource.com/boringssl/+/fed35d32245ee4563691d21f55c12b4f8dac840a/crypto/fipsmodule/FIPS.md google's going to get their fork of openssl (or part of it) fips 140-2 certified
|
|
#
?
Jul 8, 2017 14:34
|
|
|
Volmarias posted:The open source nature of Android means that Google can recommend and strongly suggest, but ultimately cannot fully control what OEMs do, which is unfortunate for end users. No, they can. Good luck selling an Android without play store or play services. Amazon tried this and failed.
|
|
#
?
Jul 8, 2017 16:38
|
|
|
ate all the Oreos posted:nope we use slack's hosting and we don't even pay for anything so it deletes all our messages within a week because we've used up our free quota lol IIRC nothing is actually deleted, if you bought a subscription it's all still there. This is hearsay though so I could be wrong
|
|
#
?
Jul 8, 2017 16:41
|
|
|
Everything is still there, it just shows the last 10000 lines (over all chats including PMs)
|
|
#
?
Jul 8, 2017 16:47
|
|
|
Speaking of certificate errors:
|
|
#
?
Jul 8, 2017 16:55
|
|
|
maskenfreiheit posted:Speaking of certificate errors:
|
|
#
?
Jul 8, 2017 17:00
|
|
|
Progressive JPEG posted:No, they can. Good luck selling an Android without play store or play services. Amazon tried this and failed. isn't that happening for many millions of users in China?
|
|
#
?
Jul 8, 2017 17:19
|
|
|
Subjunctive posted:isn't that happening for many millions of users in China?
|
|
#
?
Jul 8, 2017 17:26
|
|
|
Ive walked past some amazon app store people a lot over the past year but I'm frankly not sure what they do, and I don't think their app works on my android phone. They watch a lot of hearthstone.
|
|
#
?
Jul 8, 2017 18:28
|
|
|
anthonypants posted:well paypal doesn't have any other type of 2fa, are you saying people should just stop using paypal??????? The first hardware 2FA token I ever had was for PayPal. Are you saying they stopped offering this or even the smartphone-based varieties?
|
|
#
?
Jul 8, 2017 18:31
|
|
|
Vanadium posted:Ive walked past some amazon app store people a lot over the past year but I'm frankly not sure what they do, and I don't think their app works on my android phone. They watch a lot of hearthstone. firetv / fire tablets i guess because people buying the cheap-rear end tablets are going to go ham for appstore coins
|
|
#
?
Jul 8, 2017 18:41
|
|
|
wolrah posted:The first hardware 2FA token I ever had was for PayPal. Are you saying they stopped offering this or even the smartphone-based varieties?
|
|
#
?
Jul 8, 2017 18:41
|
|
|
paypal's 2fa options are a disaster of UI https://itunsecurity.wordpress.com/2013/08/07/paypal-how-to-not-implement-2-factor-authentication/ apparently there's also a way to use standard TOTP but you have to trick it with fake serial numbers or something
|
|
#
?
Jul 8, 2017 19:00
|
|
|
I have facebook 2fa enabled with totp/gauth. They still send me sms codes and the sms codes still work. Afaict there's no way to just have totp 2fa.
|
|
#
?
Jul 8, 2017 20:14
|
|
|
I mean I only use fb like twice a year so whatever but lol
|
|
#
?
Jul 8, 2017 20:15
|
|
|
Progressive JPEG posted:I have facebook 2fa enabled with totp/gauth. They still send me sms codes and the sms codes still work. Afaict there's no way to just have totp 2fa. Facebook also supports u2f which is kingshit
|
|
#
?
Jul 8, 2017 20:15
|
|
|
you can remove your number from Settings -> Mobile, I believe.
|
|
#
?
Jul 8, 2017 20:16
|
|
|
I'm on phone so I can't see the ui, but last I checked in the 2fa config settings, it has a grayed out filled in checkbox for sms 2fa saying that it's required
|
|
#
?
Jul 8, 2017 20:20
|
|
|
|
| # ? May 14, 2024 22:14 |
|
|
Cocoa Crispies posted:Facebook also supports u2f which is kingshit I'll use it if Firefox ever supports it
|
|
#
?
Jul 8, 2017 20:21
|
|