|
Kassad posted:This is probably a stupid question but... How do you plug in a keyboard and mouse if you epoxy all the USB ports? Super glue them in place, or it's a laptop.
|
# ¿ Nov 22, 2016 14:20 |
|
|
# ¿ May 14, 2024 12:51 |
|
mod saas posted:You're right. There is absolutely no possibility the allowed password length will increase over time. No, don't you see, once you set your password you can never change it. That kind of functionality would me MADNESS!!!
|
# ¿ Dec 4, 2016 16:28 |
|
Sickening posted:Don't sperg out over even the lamest of jokes.
|
# ¿ Dec 4, 2016 18:11 |
|
cheese-cube posted:The best password is the default Oracle one which they use on everything from the JRE keystore to StorageTek LTO tape libraries: changeme Doesn't dell use it too? I know it was the default for both Sun and Dell servers at one fortune 500 I have worked at, tho it may have been baked into the dell firmware update they ran before I got my hands on the hardware.
|
# ¿ Dec 5, 2016 14:33 |
|
BangersInMyKnickers posted:No, no it is not. Please stop saying this everyone. Yes, it is. The problem is the scarcity of common sense.
|
# ¿ Dec 14, 2016 00:57 |
|
Trabisnikof posted:Common sense says, if the error message is asking me to call someone it must be really loving serious and I better do what it says Common sense says to call someone you trust instead of a random phone number.
|
# ¿ Dec 14, 2016 01:32 |
|
apseudonym posted:Relying on common sense is as dumb as relying on AV, even the best people make mistakes. Defense in depth is a thing.
|
# ¿ Dec 14, 2016 01:44 |
|
flosofl posted:Sure, but if I'm doing an internal audit or a risk analysis I can only include systems and solutions that are predictable in nature. People exercising common sense or following process would not be one of them. Isn't this what security training, and all teh audits of training courses I see happening, is about?
|
# ¿ Dec 14, 2016 02:01 |
|
flosofl posted:You're right. You win. I'm done with this stupid argument. Rely on "common sense" if you want. I was explicitly point out that common sense is better than AV, but people don't actually have it.
|
# ¿ Dec 14, 2016 02:46 |
|
flosofl posted:Yeah, I'll fully admit I took the conversation in a weird direction. Sorry. Lack of sleep is my only explanation. That and having to say the same thing over and over again today to upper management types. We all misread things sometimes. No worries.
|
# ¿ Dec 14, 2016 04:31 |
|
CLAM DOWN posted:Better yet, put up a public facing VM and post the IP itt He wants viruses, not 100gb of goatse
|
# ¿ Jan 12, 2017 01:10 |
|
Double Punctuation posted:Great ping on that address. It's almost as if that machine is right next to me. I like how the quote remembered the original value i got and not the new one it should have. Maybe not, just oddly similar. RFC2324 fucked around with this message at 21:34 on Jan 13, 2017 |
# ¿ Jan 13, 2017 21:31 |
|
sarehu posted:Yeah, make your passwords short, and different for each website. The length doesn't help -- if somebody's hacked the website, they'll probably get everything else in the database too, and a targeted crack isn't going to matter much.
|
# ¿ Feb 27, 2017 22:45 |
|
pr0zac posted:Lol. You don't know what you're talking about. Smart lock is unequivocally a good idea and most likely more secure than a password manager. What about securing your password manager with Smart Lock?
|
# ¿ May 3, 2017 19:03 |
|
Moatman posted:Note to self: don't stop massive malware attacks or the press will doxx you. https://flipboard.com/@thenextweb/-doxing-the-hero-who-stopped-wannacry-wa/f-fa540c0a7c%2Fthenextweb.com Jesus, I thought US journos were poo poo.
|
# ¿ May 15, 2017 19:39 |
|
EVIL Gibson posted:Worked on certs for the DOD. They have their own series of private CAs they use to authenticate everything including using it to auth base entry and their websites. So thats why the GIP CE thread freaked out over the pic of Bannon with his exposed.
|
# ¿ May 23, 2017 13:55 |
|
Double Punctuation posted:Don't just go around killing every instance of rundll32 you see. Pussy
|
# ¿ Jun 27, 2017 22:19 |
|
Sheep posted:Hopefully it won't introduce other dumb issues like "DHCP breaks" or "your webcam doesn't work anymore" and what not that we've seen with random patch Tuesdays/new builds with 10. I really hope disabling SMBv1 breaks something completely unrelated, actually. Discover random dependencies the fun way.
|
# ¿ Jun 29, 2017 00:16 |
|
Double Punctuation posted:Windows makes me want to defenestrate my computer. This should be standard practice at least once every few years
|
# ¿ Jun 30, 2017 02:03 |
|
CLAM DOWN posted:Windows is good and cool. For throwing Microsoft products out of. Also apple products and linux systems.
|
# ¿ Jun 30, 2017 02:23 |
|
SeaborneClink posted:Yeah but Minecraft runs on a computer already so what do you suggest? Babbage difference engines in every home!
|
# ¿ Jun 30, 2017 05:31 |
|
anthonypants posted:The issue seems to be that the "User=" field is interpreting the value "0day" as a UID, because usernames are not allowed to begin with numbers. So "0day" runs as root, and "7oz" doesn't run because there's no user with UID 7. It's possible that some part of systemd relies on reading the UID in this manner, which would mean that it isn't a bug. It is unexpected behavior, but so is a username that begins with a number. What is the difference between a bug and "unexpected behavior"?
|
# ¿ Jul 2, 2017 05:57 |
|
anthonypants posted:What would happen if you put a nul character in that username field? Would the result be a bug in systemd if something allowed you to create a username with a nul character in it? It would be a bug in the username parsing, yes. It should simply reject anything invalid, even if the user creation script allowed it. Which is what i am pretty sure happens if you create a null user like that. Anything that relies on that user won't work.
|
# ¿ Jul 2, 2017 06:09 |
|
Thanks Ants posted:I'm having to move from SMBv1 to loving FTP on a 2 year old Dell multifunction. At least Dell stopped making printers, they were poo poo at it. What's wrong with ftp?
|
# ¿ Jul 3, 2017 17:10 |
|
Thanks Ants posted:Just seems like a step backwards - it requires a new service to be turned on and tested on our file server(s), and in a world where Samba can happily work with SMB3 it's a bit crazy that a printer released years after SMB2 became common doesn't support it. But that's printers all over I suppose. Newer is not always better.
|
# ¿ Jul 3, 2017 17:48 |
|
Furism posted:Why does it take VeraCrypt a solid 30 secs to mount a 15 GB volume (volume size seems irrelevant anyway)? That's on a latest generation laptop with an Intel i7 CPU. Somebody on this thread explained they do a bunch more rounds than TrueCrypt but it's ridiculously longer. Is there a secret setting I'm missing? It prevents brute forcing, iirc.
|
# ¿ Jul 17, 2017 21:16 |
|
Furism posted:I use 200 bits passwords, am I right there's no brute forcing that anyway? anything can be brute forced with enough time and no lockout. This wait makes sure that the time is long enough to be impractical. (It forces 30 seconds between tries)
|
# ¿ Jul 18, 2017 16:18 |
|
Furism posted:I get what you mean but 30 seconds seems unnecessary long. Even one second between each attempt would make an attack against a 200 bits password impractical in any time-frame where the data is relevant. That was my thinking until now. Security people are over paranoid by design. And i can think of a way to significantly reduce the time needed in about 10 seconds off the top of my head (clone the drive to a bunch of blanks, brute force in parallel).
|
# ¿ Jul 18, 2017 16:50 |
|
Rufus Ping posted:I'm pretty sure this isn't how DNS works? Pretty sure you can put anything you want in a TXT field.
|
# ¿ Jul 21, 2017 03:00 |
|
Absurd Alhazred posted:Yeah, I could see myself using a different finger, all right. I thought the goon standard was the head of your dick?
|
# ¿ Jul 31, 2017 00:23 |
|
fsack would be a great username
|
# ¿ Aug 7, 2017 01:02 |
|
Furism posted:Snow Crash 2.0 It's more than one novel. I'm reading through the 3.5k pages of the whole series right now.
|
# ¿ Aug 13, 2017 17:19 |
|
I'm just getting started on the second, and was hoping it would get better
|
# ¿ Aug 13, 2017 21:13 |
|
D. Ebdrup posted:My apologies, I misread it. Thought it was about an outdated ftp client not sshd. Although it's technically possible to send files over ssh, it's a lot easier to use scp. scp is ssh. That is HOW you send files over ssh in a unix to unix transfer. For sending from a windows box sftp is usually easier to get going, in so far as modern ftp clients will automagically use it if you tell them to connect on port 22 instead of 21.
|
# ¿ Sep 2, 2017 19:05 |
|
EVIL Gibson posted:C'mon y'all, let's have arguments over which secure ftp to use: SFTP or FTPS . sftp. That way you don't have to deal with loving SSL certs in a way that was never intended.
|
# ¿ Sep 2, 2017 19:44 |
|
D. Ebdrup posted:Sending zfs bytestreams over ssh seems like a perfect piece of SSH trickery to me, if the boxes serve as backup for each other in case of catastrophic hardware failure, and both happen to run some form of ZFS. It seems like something that would be more efficiently solved in another way, to me. One of those 'can we do things in a sane reliable engineered way, or come up with some wacky ssh solution?' situations. For one, if those boxes server as backups for each other(you mean clustered, right?) wouldn't you want them to have a shared backing datastore?
|
# ¿ Sep 3, 2017 20:45 |
|
EVIL Gibson posted:Also keeping backups on a different machine makes it much harder to gently caress them up. If you know server BACKUP-GOKU-CLOUD-420 will only every contain backups and nothing else ever, it's much easier to reconize you should be super careful with everything in there. yes, but this is all true, but why wouldn't you use an actual backup solution instead of copying snapshots across the network via ssh?
|
# ¿ Sep 4, 2017 06:58 |
|
Volguus posted:There are 3 more (which are probably just as incompetent) that's true, but will the creditors really care? Is not like I chose Equifax and Transunion and whoever else to hold my data in the first place. Unless I'll hear big banks yelling form the top of their lungs that Equifax is cancer and they won't do business with them anymore, it's safe to assume they'll be fine money-wise and can continue doing drugs and drinking on the job. i need to apply with Equifax.
|
# ¿ Sep 20, 2017 22:35 |
|
Truga posted:I had this happen just the other day on one of our websites at a semi-large client. They ran some poo poo, it found 404 pages, tacked a bunch of GET parameters onto the end and said "this is now a blind sql injection". The comedy is, even our CMS doesn't use GET parameters for anything beyond flushing current page cache for convenience when changing stuff, which you also can't do unless you're logged in as admin (which you can't do from outside the network, /admin just drops a 403). But anyway, that's besides the point, the 404 pages are static html Whats wrong with a static 404 page?
|
# ¿ Oct 5, 2017 18:45 |
|
|
# ¿ May 14, 2024 12:51 |
|
anthonypants posted:Once a carrier in the US drops support for SMS. which is unlikely to happen, since they are a core part of how cell service works (they piggy back on the signals for tower location or keep alive iirc)
|
# ¿ Oct 7, 2017 23:16 |