other cool strat, especially favoured by multinational banks, is “yeah we’ll pass this to our integration team for API access, but meanwhile we can offer you this data via our secure ftp server” rigmarole that pits you against a gigantic pile of autogenerated RTFs or some other ancient garbage format that has you abandon the affair out of sheer cost/benefit analysis
|
|
# ? Feb 18, 2019 19:10 |
|
|
# ? Jun 11, 2024 22:36 |
and internally it will be like a circus of teams in 5-6 countries doing various parts of it in no particular hurry, with all the implications about the number of final versions and such
|
|
# ? Feb 18, 2019 19:11 |
|
cinci zoo sniper posted:other cool strat, especially favoured by multinational banks, is “yeah we’ll pass this to our integration team for API access, but meanwhile we can offer you this data via our secure ftp server” rigmarole that pits you against a gigantic pile of autogenerated RTFs or some other ancient garbage format that has you abandon the affair out of sheer cost/benefit analysis man I wish we could get quality data like that from the healthcare providers we deal with
|
# ? Feb 18, 2019 19:12 |
|
you can it's probably on an insecure samba share exposed to the internet. just portscan them
|
# ? Feb 18, 2019 19:13 |
|
having been on the side providing such ftps at big banks you should probably appreciate that the stuff on the ftp is actually the easiest to access form of that data that exists, to the point where half the internal systems just pull from that same server ;p
|
# ? Feb 18, 2019 19:13 |
|
geonetix posted:you can it's probably on an insecure samba share exposed to the internet. just portscan them its easy to get, but its in random formats cause they manually add it to excel every week.
|
# ? Feb 18, 2019 19:15 |
|
Carbon dioxide posted:They just said on the radio that the EU passed a law that says that third party companies are allowed to ask a bank account holder for permission to get access to their bank data, and in that case the bank must provide this data. if they're referring to PSD2 / Open Banking it's actually a good thing, certainly much better than the old system where you have to give your accounting software your various online banking logins and security answers and they give them to some shady screen scraping company who totally aren't selling your data on the side and in doing so you waive any right to recourse if they get pwned and you lose your life savings
|
# ? Feb 18, 2019 19:43 |
Shaggar posted:man I wish we could get quality data like that from the healthcare providers we deal with Cybernetic Vermin posted:having been on the side providing such ftps at big banks you should probably appreciate that the stuff on the ftp is actually the easiest to access form of that data that exists, to the point where half the internal systems just pull from that same server ;p
|
|
# ? Feb 18, 2019 19:55 |
|
cant wait for the banks to offer their poo poo through an api rather than loving e-mail or sftp
|
# ? Feb 18, 2019 20:57 |
|
Jeoh posted:cant wait for the banks to offer their poo poo through an api rather than loving e-mail or sftp don't hold your breath
|
# ? Feb 18, 2019 21:06 |
|
man bouncy castle's documentation ranges from garbage to non-existent. great way to handle the crypto library
|
# ? Feb 18, 2019 21:08 |
|
Blinkz0rz posted:man bouncy castle's documentation ranges from garbage to non-existent. great way to handle the crypto library java libraries don’t need documentation, that’s what method signatures are for
|
# ? Feb 18, 2019 21:19 |
|
https://twitter.com/thomasareed/status/1097152433724289024 Discuss.
|
# ? Feb 18, 2019 21:25 |
|
Why would they want to buy Coffee Hitlers.
|
# ? Feb 18, 2019 21:35 |
|
Salt Fish posted:Why would they want to buy Coffee Hitlers. how else are you going to brew a stronger cup?
|
# ? Feb 18, 2019 21:36 |
|
Jeoh posted:cant wait for the banks to offer their poo poo through an api rather than loving e-mail or sftp i look forward to working on this 15 years from now
|
# ? Feb 18, 2019 21:37 |
|
Agile Vector posted:how else are you going to brew a stronger cup? I like my coffee strong and black, not dying a coward's death in a bunker
|
# ? Feb 18, 2019 21:40 |
|
That's the good stuff right there. [/quote] These guys are going to catch a GDPR sized brick right in the loving face and I am loving here for it.
|
# ? Feb 18, 2019 22:01 |
|
hey is this video accurate because I can't understand all this techno-moon language https://www.youtube.com/watch?v=O13G5A5w5P0
|
# ? Feb 18, 2019 22:29 |
|
going 1s into the video and the description that's clickbait so enjoy them monetising that and if what they say is true they're extremely talented at finding CP so they should show themselves to the local police force e: yeah that's an incel for starters, let's not delve further into that guy's past... Wiggly Wayne DDS fucked around with this message at 22:37 on Feb 18, 2019 |
# ? Feb 18, 2019 22:32 |
|
now let's get away from the crazy person and not ask where they found that video https://twitter.com/matthew_d_green/status/1097605046198517766
|
# ? Feb 18, 2019 22:48 |
|
Blinkz0rz posted:man bouncy castle's documentation ranges from garbage to non-existent. great way to handle the crypto library https://twitter.com/SarahJamieLewis/status/1097584389750284289
|
# ? Feb 18, 2019 22:52 |
|
Wiggly Wayne DDS posted:okay own up were you involved i know better than to roll my own c'mon
|
# ? Feb 18, 2019 22:55 |
|
actionjackson posted:hey is this video accurate because I can't understand all this techno-moon language I don’t want to test if this is accurate or not seems plausible tho, since the YouTube algo is designed to keep you on the site and nothing keeps pedos on a site like little girls x 1000
|
# ? Feb 18, 2019 22:56 |
|
Wiggly Wayne DDS posted:now let's get away from the crazy person and not ask where they found that video which video? I already knew there was all sorts of creepy "children's" videos on youtube.
|
# ? Feb 18, 2019 22:57 |
|
actionjackson posted:which video? I already knew there was all sorts of creepy "children's" videos on youtube.
|
# ? Feb 18, 2019 22:58 |
|
Cybernetic Vermin posted:having been on the side providing such ftps at big banks you should probably appreciate that the stuff on the ftp is actually the easiest to access form of that data that exists, to the point where half the internal systems just pull from that same server ;p knowing people who work on IT at banks , when having a conversation in 2016 it took me a long time to realize FTP was literally “File Transfer Protocol” and not “Financial Transaction Processing”
|
# ? Feb 18, 2019 23:01 |
|
Wiggly Wayne DDS posted:you're not making a good case for yourself here I'm Chris Hansen why don't you have a seat Wiggly Wayne (if that is your real name)
|
# ? Feb 18, 2019 23:07 |
|
please enjoy this security fuckup https://i.imgur.com/j9TbCF7.mp4
|
# ? Feb 19, 2019 01:05 |
|
bug: authentication bypass notes: couldn't reproduce, possibly only works if user is already trusted
|
# ? Feb 19, 2019 01:07 |
|
actionjackson posted:hey is this video accurate because I can't understand all this techno-moon language Man, Pete Townshend is seriously online these days. Edit: yeah, that's terrible. don't watch it akadajet fucked around with this message at 01:17 on Feb 19, 2019 |
# ? Feb 19, 2019 01:15 |
|
fisting by many posted:bug: authentication bypass
|
# ? Feb 19, 2019 01:22 |
|
akadajet posted:Man, Pete Townshend is seriously online these days. I mean it's true youtube in Nov. 2017 said they would disable comments on videos that their algorithm determined were sexually exploitive towards children and yet here they are
|
# ? Feb 19, 2019 02:00 |
|
nobody should be on youtube.
|
# ? Feb 19, 2019 05:43 |
|
Ulf posted:please enjoy this security fuckup Clever girl
|
# ? Feb 19, 2019 08:42 |
|
what a strange collection of domains to whitelist flash on edge by default https://bugs.chromium.org/p/project-zero/issues/detail?id=1722
|
# ? Feb 19, 2019 19:15 |
|
Wiggly Wayne DDS posted:what a strange collection of domains to whitelist flash on edge by default im dilidili dot wang
|
# ? Feb 19, 2019 19:20 |
|
from the corporate america thread:Ashcans posted:Also this morning, I come to you with a tale of IT security. We use a secure file service, where people can upload documents to you and you get an email notification, log in and access them, I assume this is a pretty typical tool. When we started using this, you could allocate permissions so that someone else in the system could look at your received files. Which is ideal for when you have some old senior staff who are not prepared to handle document security, they just forward the notification to their staff and someone can log in and access the documents.
|
# ? Feb 19, 2019 19:31 |
|
quote:- The whitelist was trimmed down to just 2 entries:
|
# ? Feb 19, 2019 19:32 |
|
|
# ? Jun 11, 2024 22:36 |
|
privacy.com seems like a secfuck waiting to happen no matter how much I like the idea of insulating my actual credit/debit channels from random lovely vendors.
|
# ? Feb 19, 2019 19:56 |