|
why
|
# ? Mar 13, 2018 18:09 |
|
|
# ? Jun 8, 2024 06:16 |
|
for acknowledging a shaggar post in the security thread
|
# ? Mar 13, 2018 18:22 |
|
Stop shaggaring... https://twitter.com/KateLibc/status/973609996071067649?s=19
|
# ? Mar 13, 2018 18:23 |
|
Good luck Cari!
|
# ? Mar 13, 2018 18:24 |
|
break a leg!!!
|
# ? Mar 13, 2018 18:25 |
|
glhf!
|
# ? Mar 13, 2018 18:28 |
|
nvm
|
# ? Mar 13, 2018 18:39 |
|
cheese-cube posted:the new Graph API looks p sw8, been meaning to find time to gently caress with that for a while now. apparently that's where microsoft are going to push all o365+services and seccom reporting to. also looks like a faster method of querying some of the more expensive exchange cmdlets (Get-MailboxStatistics, Get-MailboxFolderStatistics, etc.) I used it for a recent project and there were some things missing that I had to get from some the older apis.
|
# ? Mar 13, 2018 18:45 |
|
So are there any straightforward syslog collectors? What if I want to have all my devices send their syslogs to a central location but I don't want to configure Zabbix or w/e.
|
# ? Mar 13, 2018 19:07 |
|
there was a time people just used syslogd for that
|
# ? Mar 13, 2018 19:10 |
|
yeah logs are still available via syslog from azure, just the auth is a bit more involved.
|
# ? Mar 13, 2018 19:26 |
|
wd cari for surviving the talk, excellently presented imo.
|
# ? Mar 13, 2018 19:29 |
|
Raere posted:So are there any straightforward syslog collectors? What if I want to have all my devices send their syslogs to a central location but I don't want to configure Zabbix or w/e. rsyslogd is super duper extensible if you can use a recent version of it and don't mind their weird dumb config syntax
|
# ? Mar 13, 2018 19:49 |
|
ate all the Oreos posted:just got an email about suspicious activity with one of my microsoft accounts I don't really use, went to go change the password and enable 2fa because why not. tried to set it up using their wizard thing, select android and it's like "ok install the microsoft app and log in with it" and refuses to let me proceed until i log in with it. no thanks, so i go back and select "other" as my phone type and get this: "durr I said I don't want the official app that does the job, now it's telling me to do something less secure" No poo poo Sherlock, it now thinks you're using some blackberry esque abomination since you won't use the real Android app
|
# ? Mar 13, 2018 19:59 |
|
that's a good fishmech, two pages late and no one cares
|
# ? Mar 13, 2018 20:01 |
|
cheese-cube posted:that's a good fishmech, two pages late and no one cares Fishmech on ignore really improves your forums experience. I highly recommend it.
|
# ? Mar 13, 2018 20:12 |
|
no i actually like a lot of fIshmech's posts, like in the transport thread. that post i had to quote because it was so bad
|
# ? Mar 13, 2018 20:17 |
|
cheese-cube posted:wd cari for surviving the talk, excellently presented imo. thanks! i stumbled at one point only because silly me wrote too many notes and lost track of my place
|
# ? Mar 13, 2018 20:18 |
|
cheese-cube posted:that's a good fishmech, two pages late and no one cares He's right though.
|
# ? Mar 13, 2018 20:25 |
|
that’s entirely secondary to the point
|
# ? Mar 13, 2018 20:30 |
|
Lain Iwakura posted:thanks! i stumbled at one point only because silly me wrote too many notes and lost track of my place
|
# ? Mar 13, 2018 20:52 |
|
Lain Iwakura posted:thanks! i stumbled at one point only because silly me wrote too many notes and lost track of my place this was my favorite part because you were like "so what was i talking about, oh yea, it was-"*audio cuts out* aside from stream quality this talk was great, i hope it gets put up as a separate video so i can show the log guys at work. theyre already impressed by that 1/3 reduction in event log bandwidth so ty for that.
|
# ? Mar 13, 2018 21:04 |
|
im a big fan of how ntfs and windows can have file paths of like 2.5 trillion characters but explorer is still limited to 255
|
# ? Mar 13, 2018 21:12 |
|
NEED MORE MILK posted:im a big fan of how ntfs and windows can have file paths of like 2.5 trillion characters but explorer is still limited to 255 not to over use this but
|
# ? Mar 13, 2018 21:18 |
|
fishmech posted:"durr I said I don't want the official app that does the job, now it's telling me to do something less secure" then it could have just left off step 1 and it would have been fine
|
# ? Mar 13, 2018 21:28 |
|
Truga posted:https://amdflaws.com/ quote:CTS-Labs, a security company based in Israel, announced Tuesday that its researchers had found 13 critical security vulnerabilities that would let attackers access data stored on AMD's Ryzen and EPYC processors, as well as install malware on them. Ryzen chips power desktop and laptop computers, while EPYC processors are found in servers.
|
# ? Mar 13, 2018 21:31 |
|
Malloc Voidstar posted:hmmmm https://twitter.com/dguido/status/973648728925048834 https://twitter.com/gadievron/status/973655430441373696 completely independent parties that weren't given money or exposure for this patch tuesday has a few minor gems: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0886 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0883 enjoying the 2 month opt-in period and how it'll make out of date rdp servers even more obvious
|
# ? Mar 13, 2018 21:50 |
|
Wiggly Wayne DDS posted:hang on people are vouching for them quote:To ensure public safety, all technical details that could be used to reproduce the vulnerabilities have been sure sounds like bullshit
|
# ? Mar 13, 2018 22:08 |
|
NEED MORE MILK posted:im a big fan of how ntfs and windows can have file paths of like 2.5 trillion characters but explorer is still limited to 255
|
# ? Mar 13, 2018 22:10 |
|
hobbesmaster posted:sure sounds like bullshit Kazinsal posted:I do not believe the blockchain security researcher in those tweets is involved in any capacity in a 24-hour-disclosure-period massive CPU security bug fest that is in any way real
|
# ? Mar 13, 2018 22:11 |
|
cheese-cube posted:not to over use this but
|
# ? Mar 13, 2018 22:14 |
|
i've yet to see proof he's a security researcher
|
# ? Mar 13, 2018 22:17 |
|
Wiggly Wayne DDS posted:i've yet to see proof he's a security researcher there is no security in blockchain so at best he's an enterprise-grade snake oil salesman
|
# ? Mar 13, 2018 22:19 |
|
which US regulators? why wouldn’t they say?
|
# ? Mar 13, 2018 22:20 |
|
Wiggly Wayne DDS posted:i've yet to see proof he's a security researcher
|
# ? Mar 13, 2018 22:28 |
|
lol
|
# ? Mar 13, 2018 22:29 |
|
limux weighs in:
|
# ? Mar 13, 2018 23:56 |
|
the man has shown a very nuanced view of “security people” in every single email in the past year or so maybe somebody stole his cookies
|
# ? Mar 14, 2018 00:08 |
|
Where may I find the Sec Fuckup thread?
|
# ? Mar 14, 2018 00:17 |
|
|
# ? Jun 8, 2024 06:16 |
|
the entire page has been sec fuckups what more do you want
|
# ? Mar 14, 2018 00:21 |