|
That’s no difference for me, so it’s still an option.
|
# ? Jul 9, 2018 15:01 |
|
|
# ? May 10, 2024 00:45 |
|
dogstile posted:If this thread has taught me anything its that I should never get into infosec or i'll be abrasive and mad all the time. It's the times that make you salty are also bittersweet. You: This Win2000 web server has not been touched or patched for years. Here's a report on what's on it and the risk if that poo poo becomes a jump point or the data on it is stolen Management: heh. Barely anyone know this web server even exists. (Never accept risk because the process is barely up and running) *Year later* Management: You wouldn't believe what just happened!
|
# ? Jul 9, 2018 15:05 |
|
dogstile posted:If this thread has taught me anything its that I should never get into infosec or i'll be abrasive and mad all the time. Pretty much e: Oh, uh I mean "duh, idiot".
|
# ? Jul 9, 2018 15:13 |
|
dogstile posted:If this thread has taught me anything its that I should never get into infosec or i'll be abrasive and mad all the time. You'd probably actually fit right in at most orgs.
|
# ? Jul 9, 2018 15:23 |
|
dogstile posted:If this thread has taught me anything its that I should never get into infosec or i'll be abrasive and mad all the time. I prefer cynical and alcoholic
|
# ? Jul 9, 2018 16:38 |
|
Mirrored avaiators, ccl licenses, and other leo cosplay.
|
# ? Jul 9, 2018 16:42 |
|
cheese-cube posted:I was just posting a thing that I thought people might enjoy reading. Also posted the same thing in the secfuck thread in case you want to throw your weight around there. Mind linking to the secfuck thread?
|
# ? Jul 9, 2018 18:15 |
|
PCjr sidecar posted:Mirrored avaiators, ccl licenses, and other leo cosplay. *checks thread title* How did I end up in the never-served, lifted truck with skull sticker, constantly posting memes about “safe spaces” thread???
|
# ? Jul 9, 2018 18:36 |
|
Apex Rogers posted:Mind linking to the secfuck thread? They keep closing it and opening new ones, looks like this is the current though. https://forums.somethingawful.com/showthread.php?threadid=3855827
|
# ? Jul 9, 2018 21:44 |
|
Two D-Link certificates were apparently stolen a while back and then used to spread some malware.
|
# ? Jul 10, 2018 15:04 |
|
PBS posted:They keep closing it and opening new ones, looks like this is the current though. Thanks for that. I did peek into the 'POS looking for it, but didn't try hard enough I guess.
|
# ? Jul 10, 2018 15:21 |
|
Getting into infosec means you have a huge "CYA" folder in your inbox full of email chains that end in "We have your report, solution: WONTFIX". Then a year later poo poo hits the fan and they start to bitch and moan at you until you pull that email chain with a giant.
|
# ? Jul 10, 2018 20:04 |
|
https://bgr.com/2018/07/10/apple-1password-acquisition-deal/amp/
|
# ? Jul 10, 2018 20:11 |
|
https://twitter.com/1Password/status/1016710603359096846
|
# ? Jul 10, 2018 20:16 |
|
ratbert90 posted:Getting into infosec means you have a huge "CYA" folder in your inbox full of email chains that end in "We have your report, solution: WONTFIX".
|
# ? Jul 10, 2018 20:16 |
|
I need to get better at twitter.
|
# ? Jul 10, 2018 20:17 |
|
AT&T is buying AlienVault. lolquote:AlienVault is excited to announce the intended acquisition by AT&T. This acquisition will bolster AT&T’s and AlienVault’s ability to deliver cybersecurity solutions, including threat intelligence, across all sales channels. AT&T will continue to invest in and build on AlienVault’s foundational technology as the company integrates AlienVault into AT&T’s cybersecurity suite of services.
|
# ? Jul 10, 2018 21:37 |
|
Diva Cupcake posted:AT&T is buying AlienVault. lol Wtf
|
# ? Jul 10, 2018 22:38 |
|
Telcos getting involved with things always improves them, I'm optimistic about this
|
# ? Jul 10, 2018 22:38 |
|
Thanks Ants posted:Telcos getting involved with things always improves them, I'm optimistic about this
|
# ? Jul 10, 2018 22:40 |
|
One of the best Avatar/Post combos in a while
|
# ? Jul 11, 2018 14:37 |
|
I'm looking for a lightweight command/program to encrypt/decrypt using .asc public and private keys. I've already tried gpg and aws-encryption-cli and both aren't quite working for my use case. Has to be linux command line and relatively easy to install via script. Anyone know what I should be using?
|
# ? Jul 11, 2018 19:13 |
|
What about gpg isn’t working for you?
|
# ? Jul 11, 2018 19:14 |
|
Evis posted:What about gpg isn’t working for you? We need to use an external application to fire off gpg -e encryption commands to our external server using su. gpg doesnt allow that by design and we can't engineer around that limitation.
|
# ? Jul 11, 2018 19:18 |
|
SnatchRabbit posted:We need to use an external application to fire off gpg -e encryption commands to our external server using su. gpg doesnt allow that by design and we can't engineer around that limitation. What is the exact limitation? Are the keys living on local or the remote external server?
|
# ? Jul 11, 2018 19:23 |
|
EVIL Gibson posted:What is the exact limitation? Are the keys living on local or the remote external server? The keys live on the external server, but the application needs to be able to send the gpg command using an su profile which gpg does not support. I've tried for a couple weeks trying to get it to work but seems its explicitly not supported.
|
# ? Jul 11, 2018 19:36 |
|
still awaiting the actual constraints or requirements for su being involved
|
# ? Jul 11, 2018 19:53 |
|
SnatchRabbit posted:The keys live on the external server, but the application needs to be able to send the gpg command using an su profile which gpg does not support. I've tried for a couple weeks trying to get it to work but seems its explicitly not supported.
|
# ? Jul 11, 2018 20:03 |
|
Thinking that I might be able to user amazons key management service with external keys. The docs had me generate a new key with the command $ openssl rand -out PlaintextKeyMaterial.bin 32. Is it possible to generate a public key based on the key I get from that command?
|
# ? Jul 12, 2018 03:14 |
|
This is so awesome https://github.com/eslint/eslint-scope/issues/39 Dumping npm credentials right to a pastebin
|
# ? Jul 12, 2018 16:42 |
|
CLAM DOWN posted:This is so awesome https://github.com/eslint/eslint-scope/issues/39#issuecomment-404543050 posted:For anyone curious about the signing situation, the NPM maintainers actively rejected package signing in 2015.
|
# ? Jul 12, 2018 17:09 |
|
Everything is terrible
|
# ? Jul 12, 2018 17:42 |
|
Looks like NPM stepped in and invalidated all tokens themselves rather than wait for users to maybe do it https://status.npmjs.org/incidents/dn7c1fgrr7ng This entire thing was caused by a contributor not having 2FA lmao
|
# ? Jul 12, 2018 19:50 |
|
CLAM DOWN posted:Looks like NPM stepped in and invalidated all tokens themselves rather than wait for users to maybe do it
|
# ? Jul 12, 2018 20:04 |
|
anthonypants posted:Do they mention how they knew that everyone had upgraded from the bad versions of eslint-scope and eslint-config-eslint before they did this? Nope!!
|
# ? Jul 12, 2018 20:15 |
|
Diva Cupcake posted:AT&T is buying AlienVault. lol misery loves company
|
# ? Jul 13, 2018 03:10 |
|
I just ran into an issue where some of our partners were pulling the incorrect IPv4 addresses for their payment processor (CES / FirstData). The payment gateways are: vxn.datawire.net vxn1.datawire.net vxn2.datawire.net The correct IP's are 216.220.36.75, 205.167.140.10, and 64.243.142.36. However, our affected locations (in Alaska on two different ISP's) were getting 45.227.252.17 as the IPv4 address, which I think is registered to a web hosting company in the Caribbean. The HTTPS site at that IP is using a self-signed SSL certificate, issued on 7-5, for those domain names. The Hello World text is the same as the actual servers. This all looks like someone trying to harvest credit card records. Fortunately for us, our card processing software does verify the SSL certificate and didn't send any transactions since the cert wasn't signed by a trusted CA, but this is still really weird and I'm wondering how the ISP DNS servers are getting the wrong server. My initial thought was their router got popped by some bot since I'm sure no one updates their firwmare ever, but on investigating the bad records were actually coming from the ISP nameservers. From googling around and trying different public DNS servers in that corner of the world, I found that the University of British Colombia is serving the incorrect IP as well. Doing an NSLOOKUP against the public servers listed on this page will get you the wrong IP (at least as of 8:54 AM mountain time on 7-13-2018). One of the originally affected sites is now getting the correct IP information from their ISP (MTA Online), but ACS Alaska's nameservers are still serving incorrect info. I guess I'm wondering if anyone else is seeing this and how the records were poisoned, and who I would go try to report this to if I was so inclined. wyoak fucked around with this message at 16:23 on Jul 13, 2018 |
# ? Jul 13, 2018 16:15 |
|
wyoak posted:I just ran into an issue where some of our partners were pulling the incorrect IPv4 addresses for their payment processor (CES / FirstData). As someone who has been a customer of both of those ISP's, this post gets a big fat LOL
|
# ? Jul 13, 2018 18:21 |
|
wyoak posted:I just ran into an issue where some of our partners were pulling the incorrect IPv4 addresses for their payment processor (CES / FirstData). We also saw this (in Alaska), we were also thinking some targeted DNS poisoning (bunch of different ways this could happen, BIND vulnerabilities, etc), but were not sure, it's interesting to see that other people saw this as well. We reported it to MTA and it was resolved, I'd recommend doing the same to ACS (although lol ACS). EDIT: Apparently this thread is now about the joys of working with Alaskan ISPs Maneki Neko fucked around with this message at 18:59 on Jul 13, 2018 |
# ? Jul 13, 2018 18:47 |
|
|
# ? May 10, 2024 00:45 |
|
A few years ago I discovered a routing issue between ACS and another Alaskan ISP, it took getting my old employers business rep involved because the regular channels kept blowing me off.
|
# ? Jul 13, 2018 19:05 |