|
laziness and ineptitude, mostly i spent $3k on a work thinkpad after we got funded then promptly left it in a rental car less than a week later, never to be seen again i have a new m2 macbook that i pulled from the supply shelf a month or so ago, but still haven't gotten around to setting it up because asahi doesn't run on it yet and i don't like osx now i have a framework 16 on preorder that i'm probably going to expense, but it doesn't ship til january
|
# ? Oct 11, 2023 08:32 |
|
|
# ? Jun 7, 2024 22:03 |
|
of course, my first time touching windows server in like a decade and i became the secfuck was setting up software for collecting electronic exams submitted by students. said software if you connect to its port from a browser, gives you a page that, among other things, reveals the windows server version (including patch level) to the entire internet that software approval got yanked right quick
|
# ? Oct 11, 2023 20:26 |
|
lol that's how we found out one of our vendors was using an OS that was 15 years out of support for an app they were providing. found from a simple bug that you could do to make it throw a DB exception. we dropped them shortly after. tip of the iceberg.
|
# ? Oct 11, 2023 20:35 |
|
FungiCap posted:lol that's how we found out one of our vendors was using an OS that was 15 years out of support for an app they were providing. found from a simple bug that you could do to make it throw a DB exception. wait, 15 years out of support, so like if a vendor was running windows 2000 today?
|
# ? Oct 11, 2023 20:43 |
|
so VBScript is being deprecated in Windows 10 and 11. they're relegating it to an optional feature on demand and then at some point in the future they'll remove it altogether: https://learn.microsoft.com/en-us/windows/whats-new/deprecated-features-resources#vbscript. imo it's a welcome change which won't really do much security-wise as powershell is the preffered vector these days but at least it will stop grognard sysadmins from writing and deploying new vbs scripts in TYOOL 2023 (yes these psychos exist, complete sickos).
|
# ? Oct 11, 2023 20:48 |
|
Pile Of Garbage posted:so VBScript is being deprecated in Windows 10 and 11. they're relegating it to an optional feature on demand and then at some point in the future they'll remove it altogether: https://learn.microsoft.com/en-us/windows/whats-new/deprecated-features-resources#vbscript. imo it's a welcome change which won't really do much security-wise as powershell is the preffered vector these days but at least it will stop grognard sysadmins from writing and deploying new vbs scripts in TYOOL 2023 (yes these psychos exist, complete sickos).
|
# ? Oct 11, 2023 20:57 |
|
mlmp
|
# ? Oct 11, 2023 21:06 |
|
vbs powers MDT and thus SCCM. Very curious what they'll do with it. (lol)
|
# ? Oct 11, 2023 22:48 |
|
Pile Of Garbage posted:so VBScript is being deprecated in Windows 10 and 11. they're relegating it to an optional feature on demand and then at some point in the future they'll remove it altogether: https://learn.microsoft.com/en-us/windows/whats-new/deprecated-features-resources#vbscript. imo it's a welcome change which won't really do much security-wise as powershell is the preffered vector these days but at least it will stop grognard sysadmins from writing and deploying new vbs scripts in TYOOL 2023 (yes these psychos exist, complete sickos). "before being retired in future Windows releases" so those grognards will be able to continue deploying VBS scripts on a supported windows version well into the future but it'll have to be on (checks notes) Windows 10 IoT Enterprise LTSC 2021 (lol) which has extended support until TYOOL 2032 https://learn.microsoft.com/en-us/lifecycle/products/windows-10-iot-enterprise-ltsc-2021
|
# ? Oct 12, 2023 01:58 |
|
shackleford posted:"before being retired in future Windows releases"
|
# ? Oct 12, 2023 02:04 |
|
We”ll all freeze in a nuclear winter way before vbs perishes
|
# ? Oct 12, 2023 02:04 |
|
imagine running windows on an iot device
|
# ? Oct 12, 2023 02:11 |
Shame Boy posted:imagine running windows
|
|
# ? Oct 12, 2023 02:14 |
|
Shame Boy posted:imagine running windows on an iot device Lots of people run windows on idiot devices You spelled idiot wrong btw
|
# ? Oct 12, 2023 02:17 |
|
Shame Boy posted:imagine running windows on an iot device yeah it sounds pretty nice
|
# ? Oct 12, 2023 02:22 |
|
mystes posted:Where are you getting that information about what specific versions it will be supported in? just guessing based on https://learn.microsoft.com/en-us/windows/whats-new/deprecated-features posted:VBScript is being deprecated. In future releases of Windows, VBScript will be available as a feature on demand before its removal from the operating system. and https://learn.microsoft.com/en-us/windows/iot/iot-enterprise/whats-new/windows-iot-enterprise-ltsc posted:Windows IoT Enterprise LTSC is designed for specialty devices and use cases where functionality and features remain constant for the life of the device. These devices are typically found in industries including, but not limited to, banking, healthcare, hospitality, manufacturing and retail. Devices that require regulatory certification and devices that perform a critical business function can't accept feature updates for years at a time. "Windows 10 IoT Enterprise LTSC 2019" is a release of windows "Windows 10 IoT Enterprise LTSC 2021" is a release of windows hypothetically "Windows 10 IoT Enterprise LTSC 2025" could make VBScript optional and "Windows 10 IoT Enterprise LTSC 2029" could remove it entirely. but "Windows 10 IoT Enterprise LTSC 2021" would still be supported until 2032
|
# ? Oct 12, 2023 02:34 |
|
cue the vulnerability
|
# ? Oct 12, 2023 02:35 |
file indexers ftw please run around my user storage and read various structured and unstructured data, what can possibly go wrong
|
|
# ? Oct 12, 2023 03:46 |
|
justcallhimdragon posted:file indexers ftw
|
# ? Oct 12, 2023 07:51 |
|
tracker miner always runs at the worst possible moment it’s like having an antivirus… just random rear end slowdowns and jankiness at either random parts of the day or very soon after you login that lasts for fifteen minutes to an hour no wonder people like the cloud so much because something else is hogging the disk bandwidth
|
# ? Oct 12, 2023 08:09 |
|
i mean, it was unavoidable writing this text mangling task in c, some audio cd's have like 30 tracks, got to get that performance up there to make it through that in reasonable time.
|
# ? Oct 12, 2023 08:10 |
|
the only surefire way I’ve found to disable tracker miner is to symlink the cache directories to /dev/null
|
# ? Oct 12, 2023 08:10 |
|
libcue is like 30 years old, of course it was written in C
|
# ? Oct 12, 2023 08:11 |
Wiggly Wayne DDS posted:it's always annoyed me how you can never truly disable many of these index functions... looking for sane secure defaults, thanks *tips hat*
|
|
# ? Oct 12, 2023 08:20 |
Even better are DLP products that shant be named relying on Windows Search to do all the heavy lifting. Fun to bypass DLP on accident by removing the user folder from Indexing Service in Control Panel, which didn't require admin.
|
|
# ? Oct 12, 2023 08:30 |
|
Windows start menu search, where a program will only appear if you type in exactly 4 letters of its name, but not if you type 5. I still have no idea what the gently caress the people at MS are smoking. How do you gently caress up a simple substring search that badly?
|
# ? Oct 12, 2023 11:01 |
|
if you type more than 5 characters clearly you’re making an internet search which we will helpfully facilitate with bing.com - product goblin at m$, presumably
|
# ? Oct 12, 2023 11:59 |
|
unless you end that search with a dot and three letters, in which case you aren't searching for a program called dogballs.exe, but instead you want the website dogballs in the .exe tld, which I will now look up for you
|
# ? Oct 12, 2023 16:19 |
|
do I want the command line interpreter or do i want to hang a picture on my wall
|
# ? Oct 12, 2023 16:20 |
|
flakeloaf posted:do I want the command line interpreter or do i want to hang a picture on my wall you want the dogballs
|
# ? Oct 12, 2023 16:38 |
|
Captain Foo posted:you want the dogballs
|
# ? Oct 12, 2023 16:55 |
|
flakeloaf posted:do I want the command line interpreter or do i want to hang a picture on my wall Por que no los dos?
|
# ? Oct 12, 2023 17:28 |
|
flakeloaf posted:do I want the command line interpreter or do i want to hang a picture on my wall por Volmarias posted:Por que no los dos?
|
# ? Oct 12, 2023 17:56 |
|
Armitag3 posted:if you type more than 5 characters clearly you’re making an internet search which we will helpfully facilitate with bing.com - product goblin at m$, presumably Bung Search STRIKES again!
|
# ? Oct 12, 2023 18:50 |
|
don't get bingled
|
# ? Oct 12, 2023 18:51 |
|
Shame Boy posted:don't get bingled
|
# ? Oct 12, 2023 19:52 |
|
univbee posted:wait, 15 years out of support, so like if a vendor was running windows 2000 today? One of our Fortune 500 clients has a bunch of identical pension management sites for employees of other big companies to log in to, to view their pension information. Once a year they sign up new clients' subdomain sites - newclient.companyname.com and ask us to assess them. So for every new site we have to report that the ASP (not ASP.net) version number leaked by the site fingerprints the version of Windows 2000 Server they're running, along with the XSS, SQL injection, CSRF and a host of other sec fuckups. I expect them to bring more online next year.
|
# ? Oct 12, 2023 21:41 |
|
Clyde Radcliffe posted:One of our Fortune 500 clients has a bunch of identical pension management sites for employees of other big companies to log in to, to view their pension information. Once a year they sign up new clients' subdomain sites - newclient.companyname.com and ask us to assess them. lol, gotta be either Mercer or Hewitt
|
# ? Oct 13, 2023 01:18 |
|
justcallhimdragon posted:file indexers ftw I got dinged by IT security for trying to run a powershell script to read the OCR data from pdfs that had been indexed by windows Antigravitas posted:Windows start menu search, where a program will only appear if you type in exactly 4 letters of its name, but not if you type 5. it is so bad if you search "settings" it gives you everything except the actual settings menu. Sorry, settings "app" and the settings menu sucks as well since they renamed everything for no reason, breaking 20 years of consistency
|
# ? Oct 13, 2023 12:18 |
|
|
# ? Jun 7, 2024 22:03 |
|
Powerful Two-Hander posted:I got dinged by IT security for trying to run a powershell script to read the OCR data from pdfs that had been indexed by windows I feel like I spend half my life logging into servers, typing "iis" into the search bar, being told "no results", pressing space, still no results, deleting the space, oh now you've found it thanks. Every single time.
|
# ? Oct 13, 2023 13:11 |