|
Powaqoatse posted:yea the latter i guess just sign up to be an uber driver lol
|
#
?
Apr 15, 2017 01:18
|
|
|
|
| # ? Jun 7, 2024 10:35 |
|
|
Fuzzy Mammal posted:just sign up to be an uber driver lol maybe i should sign you up
|
|
#
?
Apr 15, 2017 01:20
|
|
|
Powaqoatse posted:yea the latter i guess pretty sure you're not eligible to apply since you're not 'murican
|
|
#
?
Apr 15, 2017 01:35
|
|
|
Munkeymon posted:pretty sure you're not eligible to apply since you're not 'murican yeah probably not can you do a foia request against the nsa/cia as a non-citizen lol
|
|
#
?
Apr 15, 2017 01:38
|
|
|
hobbesmaster posted:it's both they wouldn't be if weak kneed defeatocrats hadn't allowed the export of dangerous weapons like cryptography 
|
|
#
?
Apr 15, 2017 01:41
|
|
|
Powaqoatse posted:yeah probably not Actually, there was a bit on On the Media a couple of weeks ago saying that a large chunk of FOIA requests are from foreigners and that they are allowed. Can't speak for what you might get from the NSA/CIA though...
|
|
#
?
Apr 15, 2017 01:50
|
|
|
Yeah, usually your job pays for your security clearance. Not usually a job applicant expense.
|
|
#
?
Apr 15, 2017 02:28
|
|
|
Powaqoatse posted:yeah probably not I mean you can They'll laugh and say not a fuckin chance tho E: current drug policy for all TS clearance, afaik, is not within a year of applying. Past use is generally fine if you weren't like, a dope fiend or dealing
|
|
#
?
Apr 15, 2017 02:29
|
|
|
funny Star Wars parody posted:I just heard the FBI is considering loosening their drug policy because they can't find any tech people who don't smoke weed in a year from now canada will have the best cyber intelligence in the world
|
|
#
?
Apr 15, 2017 02:56
|
|
|
WrenP-Complete posted:Yeah, usually your job pays for your security clearance. Not usually a job applicant expense.
|
|
#
?
Apr 15, 2017 03:08
|
|
|
Powaqoatse posted:yea the latter i guess also security clearances aren't something you can just 'get' there has to be an immediate and specific need in the federal gov't for you to get the clearance. usually a specific project that needs to be staffed.
|
|
#
?
Apr 15, 2017 03:08
|
|
|
Speaking of. https://www.privateinternetaccess.com/blog/2017/04/nato-warns-ipv6-security-concerns-network-intrusion-detection-systems-may-miss/ NATO tried IPv6, and it broke everything. The world is not ready.
|
|
#
?
Apr 15, 2017 03:39
|
|
|
i know itd just be fun to have a piece of paper on official intelligence letterhead saying "yea this kid is a goddamned commie and probably smoked weeed"
|
|
#
?
Apr 15, 2017 05:32
|
|
|
Shaggar posted:that doesn't make any sense. the NSAs job is to improve the safety and security of the united states i guess this would be the first time anyone ever did work outside their job description
|
|
#
?
Apr 15, 2017 06:14
|
|
|
https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/quote:Most of the exploits that were disclosed fall into vulnerabilities that are already patched in our supported products. Below is a list of exploits that are confirmed as already addressed by an update. We encourage customers to ensure their computers are up-to-date.
|
|
#
?
Apr 15, 2017 08:21
|
|
|
quote:EnglishmanDentist mods, pls!
|
|
#
?
Apr 15, 2017 08:26
|
|
|
it's interesting that all of the names start with E
|
|
#
?
Apr 15, 2017 08:44
|
|
|
vOv posted:it's interesting that all of the names start with E Edward Snowden makes u think
|
|
#
?
Apr 15, 2017 09:03
|
|
|
spankmeister posted:https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/ so shadowbrokers waited until the last of the lot were patched on Tuesday. responsible disclosure imo.
|
|
#
?
Apr 15, 2017 14:32
|
|
|
Diva Cupcake posted:so shadowbrokers waited until the last of the lot were patched on Tuesday. responsible disclosure imo. Yes they waited until the vulns had zero value to them.
|
|
#
?
Apr 15, 2017 16:11
|
|
|
so given ms17-010 affected windows 10 and was patched march 14 should we read into the cancellation of february's update? the fix for this smb 0day was put to the side despite it being public then, so what happened right now the spokesperson isn't being forthcoming at all, and no one is credited for ms17-010
|
|
#
?
Apr 15, 2017 16:25
|
|
|
Wiggly Wayne DDS posted:so given ms17-010 affected windows 10 and was patched march 14 should we read into the cancellation of february's update? the fix for this smb 0day was put to the side despite it being public then, so what happened wasn't the february update the first one in the new style? i got the distinct impression that MS itself had to get used to their own new process
|
|
#
?
Apr 15, 2017 16:31
|
|
|
spankmeister posted:wasn't the february update the first one in the new style? i got the distinct impression that MS itself had to get used to their own new process this is one of the most profound things i have ever read on yospos
|
|
#
?
Apr 15, 2017 16:48
|
|
|
spankmeister posted:EnglishmanDentist ah so these were non-existent exploits to begin with
|
|
#
?
Apr 15, 2017 17:09
|
|
|
spankmeister posted:Yes they waited until the vulns had zero value to them. same thing though the real issue is nsa or whoever not giving pointers to ms &c that there were exploits in the wild for more than a year?
|
|
#
?
Apr 15, 2017 17:18
|
|
|
Powaqoatse posted:same thing though why the gently caress would they?
|
|
#
?
Apr 15, 2017 17:23
|
|
|
their tools were blown so why not be a comrade to your own country eh
|
|
#
?
Apr 15, 2017 17:24
|
|
|
Well the thing is the nsa is never going to claim ownership of any of this. So even if they did notify microsoft, you can bet part of the terms would be to not reveal they had any part in it.
|
|
#
?
Apr 15, 2017 17:24
|
|
|
Also, the exploits were still useful to them anyway. Just cause someone has your kit doesn't mean you burn your tools. Like, they could still use them despite knowing someone has access to them. Ethically questionable. But this is the NSA we're talking about so......
|
|
#
?
Apr 15, 2017 17:43
|
|
|
Shaggar posted:ah so these were non-existent exploits to begin with heh
|
|
#
?
Apr 15, 2017 18:04
|
|
|
Rex-Goliath posted:also security clearances aren't something you can just 'get' and then you have to have a bunch of infrastructure to "hold" the clearance, etc., it's a huge expensive pain in the rear end
|
|
#
?
Apr 15, 2017 18:17
|
|
|
anthonypants posted:judging by how long some of them held on to sha-1 issuance, i think you'll be waiting a while. if any did, it would increase the level of complexity by offering more choices, and historically people don't do too well with more choices. plus if anyone got an ecdsa cert because they read it was higher security, and then put it on like their storefront domain they would get very unhappy with the ca when customers complain about being unable to shop it's a private link between our app and our server appliance! I want ecdsa because I want certificate based authentication of clients and ecdsa is what the iphone's built-in crypto token supports. but it seems there's several CAs that will issue them!
|
|
#
?
Apr 15, 2017 21:37
|
|
|
http://www.cbc.ca/news/canada/montreal/hp-tech-company-data-breach-scam-1.4067975quote:When Montrealer Hamid Shirdastian alerted tech company HP Inc. to a possible scam earlier this month, the company admitted to him it had been hacked, he told CBC and then asked him for $100 to try to fix the problem. You keep being you, HP
|
|
#
?
Apr 16, 2017 00:13
|
|
|
Migishu posted:http://www.cbc.ca/news/canada/montreal/hp-tech-company-data-breach-scam-1.4067975 lol gg guys also it sounds like they lost product registration info. never register your product with any company of you can help it
|
|
#
?
Apr 16, 2017 05:02
|
|
|
Notepad++ 7.3.3 bug-fixs & enhancements: 1. Fix CIA Hacking Notepad++ issue (https://wikileaks.org/ciav7p1/cms/page_26968090.html) 2. Fix mouse wheel to task list scroll crash bug. 3. Fix flickering issue while switching back after modifying or deleting a document from outside. 4. Support Motorola S-Record, Intel and Tektronix extended hex file formats. 5. Improve multi-line tab: maintaining the selected tab position. 6. Fix add char into word char list bug. 7. Add Shift+Enter in Find dialog for searching in the opposite direction. 8. Fix a regression that delimiter settings is not retained correctely. 9. Add clear command button in shortcut mapper. 10. Enhancement: file extension supported in Load/Save Session dialog if a session file extension is set.
|
|
#
?
Apr 16, 2017 11:00
|
|
|
Nice way to make yourself not look like an idiot because you had a bog-standard DLL hijacking vulnerability.
|
|
#
?
Apr 16, 2017 12:31
|
|
|
Optimus_Rhyme posted:Also, the exploits were still useful to them anyway. if you were feeling particularly  you could say they released these themselves to muddy the waters if they get caught out in the future, i mean even though they've all been patched now these vulns are still going to be usable over a distressing amount of the internet for years to come(i don't believe that of course but it's always fun to think that way)
|
|
#
?
Apr 16, 2017 13:22
|
|
|
i do all my hacking from the most weird domains, ones that would be extremely awkward for a prosecutor to read out
|
|
#
?
Apr 16, 2017 14:46
|
|
|
cheese-cube posted:i do all my hacking from the most weird domains, ones that would be extremely awkward for a prosecutor to read out they'll never find me because I come from IIIlllIIlIliiilillIlllIlll.com
|
|
#
?
Apr 16, 2017 15:11
|
|
|
|
| # ? Jun 7, 2024 10:35 |
|
|
brb registering
|
|
#
?
Apr 16, 2017 15:16
|
|