|
ming-the-mazdaless posted:loving AV poo poo merchants must die in a toxic chemical fire. See also: McAfee
|
#
¿
Jun 14, 2016 17:26
|
|
|
|
| # ¿ May 8, 2024 22:18 |
|
|
Suggestions for a CISSP study guide? The official one good?
|
|
#
¿
Jun 15, 2016 18:12
|
|
|
I've always been wary of LastPass and recommended against it, and I feel vindicated right now.
|
|
#
¿
Jul 27, 2016 16:56
|
|
|
flosofl posted:I think the current recommendation is to stay away from KeePass 2 and use version 1. Really? How come?
|
|
#
¿
Jul 27, 2016 22:59
|
|
|
taqueso posted:The previous generations also knew nothing about security. Companies like Oracle still know nothing about security (gently caress every product they make).
|
|
#
¿
Aug 1, 2016 22:46
|
|
|
Mr Chips posted:For Windows 8.1 users, having a start menu that doesn't take up the entire screen has a certain appeal This is about Windows 10 though, why would you still be on 8.1
|
|
#
¿
Aug 3, 2016 23:22
|
|
|
Interesting new password rules from NIST: https://pages.nist.gov/800-63-3/ Summary: https://nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/ quote:Size matters. At least it does when it comes to passwords. NIST’s new guidelines say you need a minimum of 8 characters
|
|
#
¿
Aug 18, 2016 18:42
|
|
|
dpbjinc posted:Unicode in passwords has kind of the opposite problem. Say you wanted to use the character 'ñ' in your password. The problem is, there are two different 'ñ's: U+00F1 by itself (ñ), and a U+006E followed by a U+0303 (ñ). They're semantically identical, but they will produce totally different hash values. While that's an easy problem to solve, there are a ton of edge cases in Unicode that can make passwords fail to match up. For instance, there's a modifier character for certain emoji that lets you change the skin color. Some systems could strip out that character, resulting in an entirely different password. For the Web in particular, you have to rely on browsers and servers using consistent and correct implementations of Unicode, or your users could get locked out when their browser updates. Interesting. I use characters like é in my passwords because of Quebec and speaking a minimally acceptable level of French, and I haven't run into this!
|
|
#
¿
Aug 19, 2016 16:16
|
|
|
Regular expiration is still good because of PtH attacks imo Even better if you use something like TPAM or CyberArk
|
|
#
¿
Aug 19, 2016 19:35
|
|
|
Whatsapp was bought by facebook 2? years ago now, you can't be surprised.
|
|
#
¿
Aug 25, 2016 17:34
|
|
|
ItBurns posted:Don't be obtuse. It's a relevant development and a significant reversal of their position (and a few poster's own positions) with regard to sharing identifying info with FB and by proxy advertisers and law enforcement where the (now) encrypted messages can be stored until/if an attack on the encryption is found. I'm not being obtuse, you simpleton. I'm saying I'm not surprised, and you shouldn't be either.
|
|
#
¿
Aug 25, 2016 18:19
|
|
|
FlyingCowOfDoom posted:Anyone have any experience with GIAC certs? I'm looking around and IBM has some postings with GIAC and GCIH preferred but I've never heard of them. Anyone have a rough idea on what kind of difficulty level (S+, CEH, OSCP, etc) they are comparable to? I do. They're difficult, a lot of work, and very expensive. They're also a pretty awesome gold standard in terms of infosec certs. GIAC is the certification program, GCIH is a specific cert from the Incident Handling course. I would highly recommend the certs, but your company will definitely be the one paying for it. I have my GSEC, and am taking GCWN in the next month or two. PM me if you wanna chat about them, there's some pretty extensive NDAs around the GIAC exams and stuff so I may not be able to answer some things.
|
|
#
¿
Aug 31, 2016 19:38
|
|
|
OSI bean dip posted:FeloniousDrunk, you should come out to one of the local security meetups here in Vancouver--your profile says you live in the same city. It might help to learn from people who break this stuff as their job. I should go to one of those one day
|
|
#
¿
Sep 4, 2016 22:50
|
|
|
OSI bean dip posted:There is one this Thursday at Central City on Beatie--at 6 PM. poo poo, I definitely can't make anything this week, then I'm at SANS the following. How often do these happen?
|
|
#
¿
Sep 5, 2016 00:05
|
|
|
OSI bean dip posted:Please come out to this sometime: I'll definitely be at the next one, mainly because discussion of CSOX is discouraged.
|
|
#
¿
Sep 6, 2016 04:12
|
|
|
FeloniousDrunk posted:Kind of afraid I'm being set up for a huge embarrassment. But hey, I just did this, so how much worse could it be. I shall attempt to be there. I will be likely trying to lurk, unnoticed. You got rightfully poo poo all over in this thread, but if you have a desire to learn more about crypto, don't stop experimenting (just don't pretend you'll publicly release anything) and definitely meet and talk to others in the same industry! Just don't use any open wifi networks in the same meetup spot though.
|
|
#
¿
Sep 6, 2016 04:31
|
|
|
That's a pretty nice DDoS.
|
|
#
¿
Sep 23, 2016 07:29
|
|
|
THIS is how I find out about Brangelina?!?!?
|
|
#
¿
Sep 23, 2016 08:04
|
|
|
flosofl posted:They also lead to hilarious accusations that Pamela Anderson poisoned him  for real?
|
|
#
¿
Oct 19, 2016 20:20
|
|
|
Ahahaha what the gently caress is this world we live in
|
|
#
¿
Oct 19, 2016 20:26
|
|
|
gently caress the internet of things https://krebsonsecurity.com/2016/10/hacked-cameras-dvrs-powered-todays-massive-internet-outage/
|
|
#
¿
Oct 22, 2016 08:29
|
|
|
Reminder that security online is a dumpster fire https://henryhoggard.co.uk/blog/Paypal-2FA-Bypass quote:Recently I was in a hotel needing to make a payment, there was no phone signal so I could not receive my Two Factor Auth token. Luckily for me Paypal’s 2FA took less than five minutes to bypass.
|
|
#
¿
Oct 23, 2016 18:47
|
|
|
Droo posted:No, it's separate and outside the firewall, and not connected to the internal network (even physically). Do you patch it regularly?
|
|
#
¿
Oct 27, 2016 20:27
|
|
|
Droo posted:I would answer that, but I don't want to inadvertently end up with a $2500 bill for a completed security analysis. 
|
|
#
¿
Oct 27, 2016 20:50
|
|
|
BangersInMyKnickers posted:There's character limits for the schannel GPO. I honestly don't think I knew this. What the poo poo, MS
|
|
#
¿
Nov 8, 2016 16:57
|
|
|
Cup Runneth Over posted:Hello goons, something just occurred to me today. If "correct horse battery staple" is a good format for a password, couldn't you easily use quotes as something just as individual, secure, and even more memorable? It seems like subbing it with, say, one of my favorite sayings from Voltaire, gives me 150 bits of entropy to the horse's 107. Yes? e: using quotes is fine, but change the words around or the order of them, use complex characters, keep it long CLAM DOWN fucked around with this message at 18:44 on Nov 14, 2016 |
|
#
¿
Nov 14, 2016 18:18
|
|
|
apropos man posted:How dangerous would something like PoisonTap be, if inserted into an office computer in a corporate building? If you have some form of USB port protection in place, it's not dangerous at all. If you don't, well....
|
|
#
¿
Nov 21, 2016 19:19
|
|
|
cheese-cube posted:jamming two-part in all visible holes 
|
|
#
¿
Nov 21, 2016 19:26
|
|
|
Methylethylaldehyde posted:Does the windows built in USB protection prevent DMA type exploits? Good question, I've never used it. I've used Bit9 and Check Point mainly.
|
|
#
¿
Nov 21, 2016 21:41
|
|
|
Kassad posted:This is probably a stupid question but... How do you plug in a keyboard and mouse if you epoxy all the USB ports? It's better to use a software solution than glue the ports shut imo.
|
|
#
¿
Nov 22, 2016 18:16
|
|
|
OSI bean dip posted:The problem with a software solution is that they don't stop devices from interacting with the controller. That and software solutions are temporary in a sense whereas glue or likewise is generally not. Fair, but a software solution is far more flexible and powerful, because you can customize what you allow and what you don't on which system. However you're absolutely right, and only a physical block like glue would stop that.
|
|
#
¿
Nov 22, 2016 18:41
|
|
|
Wiggly Wayne DDS posted:a software solution is another point of failure in your security model, do it properly or not at all ratbert90 posted:Software can be hacked, a cut trace or cement is a lot harder hack. If you glue USB ports shut, how will you use a mouse/keyboard? PS/2 isn't the answer anymore, it's 2016. If you leave 2 ports for those, what's to stop an attacker from unplugging them and using the ports? A proper approach is multifaceted. e: not to mention there are a range of USB devices that are useful in a work environment, and maybe your company even designs and builds hardware that uses USB. Simply gluing the ports shut is a limited, narrow, and destructive solution, like I said you need to take a multifaceted approach. CLAM DOWN fucked around with this message at 19:08 on Nov 22, 2016 |
|
#
¿
Nov 22, 2016 19:04
|
|
|
Wiggly Wayne DDS posted:well no poo poo you tailor the solution based on the business needs, but don't say a software solution is more flexible and powerful when it's lax and vulnerable Ok fine, the term "powerful" needs more meaning than that, but 100% it's more flexible, gluing a port shut is about as inflexible as you can get... e: actually gently caress that, a software solution absolutely can be "powerful", you're being wrong by immediately dismissing any software option as "lax and vulnerable", I'm curious what products you've actually tried and used in production CLAM DOWN fucked around with this message at 19:16 on Nov 22, 2016 |
|
#
¿
Nov 22, 2016 19:12
|
|
|
Wiggly Wayne DDS posted:endpoint protection software Yup, I'm fully aware of all that. Have you used either Check Point port protection, or Bit9 Parity/CarbonBlack USB device features?
|
|
#
¿
Nov 22, 2016 19:35
|
|
|
ratbert90 posted:Are you serious? You glue them in? Or even better, use wireless and glue the wireless dongle in. I can't tell if you're trolling me or not.
|
|
#
¿
Nov 22, 2016 19:42
|
|
|
Wiggly Wayne DDS posted:i'm dismissing them categorically unless evidence is presented that they aren't opening more holes than they are closing. I highly recommend not dismissing things that you have never used or tried and don't know anything about. Keeping an open mind is very beneficial.
|
|
#
¿
Nov 22, 2016 19:46
|
|
|
Wiggly Wayne DDS posted:okay the rest is fine about that software being deployed in an enterprise environment but this is just adorable. what did you not like about my security analysis on software endpoint protection suites that made you just shutdown? Is there a reason you're being so hostile? I'm not interesting in engaging with someone who is acting like an angry child.
|
|
#
¿
Nov 22, 2016 19:54
|
|
|
Wiggly Wayne DDS posted:i'm just amused that you're against not trusting security software, and will only listen to people who've deployed specific variants of the same snakeoil I never said either of those things. I simply asked a question. You're putting words in my mouth and making assumptions, and doing so in an unnecessarily hostile and unproductive way. You haven't been open to any kind of real discussion since the start, so have a good one.
|
|
#
¿
Nov 22, 2016 19:59
|
|
|
OSI bean dip posted:I think what he's trying to get at is that you cannot rely on a software solution to protect USB as USB in itself is flawed. I am not really joking when I say that the best method is to remove the ability for those ports to function as it is in itself the only solution that is surefire short of shredding the computer all together. Yeah for sure, but like you said before physically blocking ports is an extreme solution that also eliminates the legitimate use of USB peripherals. That's probably a very small minority of environments that would go that route, so a software solution (NB: I am not advocating or even giving a poo poo about using specific products over any other), while far from perfect and deeply flawed, is an acceptable middle ground for most enterprises. This goes beyond just attacks via USB, and gets into DLP as well, preventing external storage like unauthorized flash drives is an important part of this.
|
|
#
¿
Nov 22, 2016 20:24
|
|
|
|
| # ¿ May 8, 2024 22:18 |
|
|
lol just lol if you don't browse the internet only from a segregated VM with no access in/out
|
|
#
¿
Nov 23, 2016 22:10
|
|