Captain Foo posted:

0day poastin'

spankmeister posted:

I preferred the previous thread title tbh

negromancer posted:

that's why you use mobaxterm on windows and stop using putty and winscp like it's 2004.

Shaggar posted:

FileZilla is pretty good so idk why you'd do this.

Shaggar posted:

my favorite thing is ssh-copy-id root@[servername]

i do need to get around to disabling sudo on the lxss tho. that poo poo is annoying and worthless.

Segmentation Fault posted:

iirc filezilla is bundled with adware when it's offered through sourceforge but that's an issue with sourceforge and not filezilla itself

PCjr sidecar posted:

uh always looking for an improvement to putty but a built-in chat server (not enabled by default) and the ability to store passwords (duh don't use that lol) makes me somewhat uncomfortable? what features are good?

Rufus Ping posted:

this should be probatable

MononcQc posted:

haha holy poo poo here's the signing to prevent tampering:

abraham linkedin posted:

lol i used to use that site

it didn't used to have ssl on any pages (not even login) except for a self-signed cert, and you had to manually use https because it didn't redirect

i posted about it and was like "hey this is hosed up, if a bunch of people from ESEA go to a LAN they could get their credentials stolen"

a bunch of people responded like "lol u dont know anything" and "what does it matter they don't store payment info"

bunch of dipshits on there

quote:

Update:


In an emailed statement, a spokesperson for ESL Gaming (parent company to Turtle Entertainment) confirmed that the hacker did in fact attempt to extort money, but the sum demanded was "substantially higher" than the $50,000 previously mentioned.

quote:

Update 2:


In an official statement posted to their website, ESEA says that the hacker demanded a $100,000 ransom.

OSI bean dip posted:

remember firesheep?

pr0zac posted:

This claim is just as unsupported and rejecting everything completely outright makes you just as much of a gullible idiot as anyone taking them as gospel.

OSI bean dip posted:

OSI bean dip posted:

this is the security fuckup thread; not the journalism integrity one

if you want to talk about how much buzzfeed and vox suck, go make a new thread

Subjunctive posted:

buzzfeed published a story about the fact that an intelligence report contained those allegations, and explicitly said they couldn't verify the claims themselves. it's like writing a story "trump appointee claims climate change a hoax".


e: whoops new page

Munkeymon posted:

actually no some total loving dipshit will brag about doing it and be taken seriously enough for someone to pull logs and tens of other cases will be discovered

one of those

Cocoa Crispies posted:

yeah i'm not sure what to think

accessible security is important, and while php is accessible, that accessibility has made it a complete shitshow for doing things securely

redleader posted:

remember, always feel free to roll your own crypto

The_Franz posted:

you can't hack something that nobody uses

Rooney McNibnug posted:

I use OpenBSD for a lot of things, actually.. I really also like their new pledge() restricted-service operating mode option for stuff.

OSI bean dip posted:

https://twitter.com/Viss/status/819685780247298048
https://twitter.com/Viss/status/819686452002861056

Bhodi posted:

it gets better

https://twitter.com/ErrataRob/status/819740885504192512

https://twitter.com/ErrataRob/status/819741399465816064

Volmarias posted:

Installing Linux isn't a realistic option for most end users, and buying a MBP costs a lot of money said user may not have.

Assuming they're even aware of this, which they're likely not.

ate all the Oreos posted:

then how do they check it for valuable bomb components

geonetix posted:

welcome back thread!

BangersInMyKnickers posted:

MS has gotten pretty good about being able to make guarantees that your tenant will only be hosted out of the geographic area you specify and considering the relatively small amount of bandwidth going in and out of that country I would have to imagine there's already a substantial datacenter presence in the country. higher ed does similar things with guarantees that they're tenant will only be hosted inside the continental US

Wiggly Wayne DDS posted:

an argument's brewing over there

Volmarias posted:

Never stop please, these are always interesting

cheese-cube posted:

ESXi 6.5 gives you a 1 vCPU with 256MB memory and 8GB disk VM if you select XP Pro 32/65-bit as the guest OS.

anthonypants posted:

we're implementing a new product that wants us to disable active scanning on a couple folders, and i put some policies into place that would do that. to test it i thought i'd drop in a file with the eicar test string in it and see what sophos did, and it didn't do anything no matter what folder it was in. active scanning reported eicar but that was useless. so instead of a safe little eicar.txt file i have to copy pskill.exe around to test with. gently caress you sophos

Shaggar posted:

lol. like you had any recourse against the government when it was "illegal"

anthonypants posted:

gonna be a cold four years talking about secfucks without being able to mention us policy ever