|
sarehu posted:It's so easy to gently caress up a copy/pasted password so making you type it makes a lot of sense. You're a dipshit
|
# ¿ Feb 27, 2017 18:22 |
|
|
# ¿ Jun 2, 2024 13:48 |
|
Yeah, has to be a troll.
|
# ¿ Feb 27, 2017 22:49 |
|
Salt Fish posted:I don't get this. Calculating the md5 of something isn't a security flaw, they're supposed to be easy to calculate. Yeah, md5 sucks but.... Someone correct me if I'm wrong 'cause I don't know much, but it's broken because it's now trivial to make an identical hash/fingerprint aka a collision, defeating the whole purpose of calculating it in the first place. If you can't guarantee the hash is unique, then there's no point. There was already an incident where a committed file with an identical hash to another file broke Webkit's SVN repo because SVN relied on the fact that the hash was supposed to be unique. So unless you're just using the hash to.. show a cool number/letter combo after a file's name? It can't be safely relied upon. And that file does calculate to f5ca... I checked using hacker tool onlinemd5.com Last Chance fucked around with this message at 22:01 on Mar 16, 2017 |
# ¿ Mar 16, 2017 21:50 |
|
apropos man posted:Main positive from this set up is not relying on a third party to handle my db. Except for the Android app that hasn't been updated in almost two years?
|
# ¿ Mar 27, 2017 22:15 |
|
uh oh
|
# ¿ May 6, 2017 04:29 |
|
SeismicTriangle posted:anyone here come from military background? im currently about to enlist for this. People are saying it will be pretty easy to transition to a civilian career afterwards, just wondering if thats true from your perspectives and anything else you'd like to share. I dont really know anything about infosec/networks atm and school is only 6mo long so i have my doubts about those claims I don't know much about nothin' here, but wtf is this when I visit that URL:
|
# ¿ May 23, 2017 01:41 |
|
Evis posted:Make sure you're using good passwords. I think the default settings don't encrypt metadata. Also: there are crack utilities out there. (I haven't used it, just spent a few seconds on google. But doesn't that article actually imply that 7zip's using decent encryption? quote:At least from version 3.x, 7-Zip has been using a strong AES algorithm, which doesn't allow any attacks more effective than the brute force. Besides, the key derivation function is very similar to RAR one, and uses more than 130000 SHA-256 transformations and brute force rate on modern CPU is very low, only several hundreds of passwords per second. This carries inference that 7-Zip password encryption is one of the strongest between popular encryption systems in the context of brute force rate. quote:Please bear in mind you have quite no chance to crack unknown password (longer than 6-7 symbols) if you have no additional info about it.
|
# ¿ Jun 8, 2017 18:16 |
|
Double Punctuation posted:The Eternal September continues. How is a keychain vuln part of "Eternal September"?
|
# ¿ Sep 25, 2017 21:52 |
|
poisonpill posted:*beats you with a wrench until you pass out, in turn relaxing your vitals* maybe pair it with something that ensures your paying attention *gets roofied
|
# ¿ Jan 24, 2018 01:27 |
|
The Fool posted:Bad default settings and bad ui design is a different discussion. *LOUD BUZZER SOUND*
|
# ¿ Jan 29, 2018 15:02 |
|
Proteus Jones posted:The nice thing is the Apple Keychain syncs across your devices. But it's limited to apps that actually the Keychain, so mostly just Safari. Starting with iOS 11 you can use the Keychain password manager with most native apps' password fields, not just Safari
|
# ¿ Feb 13, 2018 19:26 |
|
iCloud Keychain is by FAR the best pass manager if you're deep into the Apple ecosystem.
|
# ¿ Feb 26, 2018 00:08 |
|
Horse Clocks posted:Back on the subject of password storage and KeePass, how do iOS users sync their kdbx file with their devices? (And which app do you use?) I use iCloud Drive
|
# ¿ Apr 21, 2018 19:37 |
|
that sounds dumb to me
|
# ¿ Apr 30, 2018 02:38 |
|
yeah, it'll be a cold day in hell before I send my DNA to a company just for it to be stolen because they left MySQL open to the world, and they use it to breed an army of strong, huge-dicked criminals to commit crimes that they eventually pin on me due to forensic DNA analysis.
|
# ¿ Jun 7, 2018 22:21 |
|
I think most mail apps allow you to have more than one account set up..
|
# ¿ Jul 24, 2018 19:22 |
|
Can you use Thunderbird with Exchange
|
# ¿ Jul 30, 2018 01:07 |
|
Docjowles posted:I suddenly realize that next year there are going to be people old enough to buy "smokes" and "porno mags"? what are those
|
# ¿ Oct 5, 2018 21:33 |
|
Schadenboner posted:You could have just said you were on Facebook? ???
|
# ¿ Sep 13, 2019 13:57 |
|
stevewm posted:Finally! I just received word the cogs of government IT have turned and surprisingly the option they picked was to unblock Youtube. You just became the hero of that office
|
# ¿ Nov 1, 2019 14:10 |
|
as long as your 100% sure all browser extensions you have enabled havent been compromised either
|
# ¿ Nov 19, 2019 18:13 |
|
can we also stop using the term "bug" for a glitch? i don't like bugs
|
# ¿ Mar 13, 2020 04:09 |
|
Schadenboner posted:Probably not for very long, though? Depends on how much water or urine they have access to
|
# ¿ Jul 24, 2020 20:41 |
|
Fame Douglas posted:That's what happens when the NSA doesn't allow you to fix it for a while. Pfft, next you're going to say that BitLocker is only for Windows Pro users and not home users because the Gov't wants to make it more marginally more expensive/difficult to encrypt files.
|
# ¿ Aug 18, 2020 02:42 |
|
The Iron Rose posted:I occasionally have salespeople reaching out to bribe me in exchange for listening to their pitch but I've yet to figure out the verbiage to request, say, an Uber eats contribution. tell them it's your scheduled lunch time
|
# ¿ Jan 13, 2021 17:08 |
|
admiraldennis posted:Yeah, I might do something like this. Though instead of running a bunch of http servers - I'd really just like Chrome itself to be aware of my "default DNS suffix" preference and do the redirecting on its own. Come on, where's the dumb plugin for this? I may be way out of my depth here, but wouldn't a browser plugin that's designed to be able to forward local traffic to a TLD be a security risk of sorts if used in the wrong hands?
|
# ¿ Feb 16, 2021 23:14 |
|
Dear god lmao
|
# ¿ May 8, 2021 04:29 |
|
We are going through that right now at my job so many wasted dollars
|
# ¿ Jan 20, 2022 17:03 |
|
CLAM DOWN posted:you should not trust technology companies to have your privacy, security, or best interest at heart unless it makes them buckets of money. Isn't this the angle Apple's going for? aka make more money by selling privacy/security and providing an alternative to companies selling and scraping data from consumers' mobile devices. i appreciate them trying but there is a part of me that's like.. why don't they make the whole phone out of lockdown mode..
|
# ¿ Jul 7, 2022 21:01 |
|
Subjunctive posted:I’m surprised that there isn’t some standard protocol for talking to a password manager in a separate process such that the browser or other app can request a credential and the manager can pop a confirmation dialog or just rate limit and yell. Similar to what iOS and I presume Android have, I guess. Safari sort of does this on ios. you can choose to fill passwords from another secure storage besides iCloud Keychain, e.g. you can fill in a password from chrome’s password store while using safari
|
# ¿ Dec 30, 2022 14:47 |
|
|
# ¿ Jun 2, 2024 13:48 |
|
|
# ¿ Sep 13, 2023 17:23 |