|
syscall girl posted:they also had possibly one of the worst fighting games itym best the environmental fatalities are unironically good imo
|
# ¿ Jun 27, 2017 07:17 |
|
|
# ¿ May 5, 2024 02:16 |
|
MononcQc posted:the worst part about vim being from the 70s is all the hot takes from the 70s you get to hear for using it RFC2324 posted:It's not that they are the best.
|
# ¿ Jul 2, 2017 00:07 |
|
Lain Iwakura posted:it's just another example of why sms 2fa is dumber than poo poo is that seriously the thing that worries you the most in "my phone provider reassigned my phone number to someone else"
|
# ¿ Jul 8, 2017 14:12 |
|
Powerful Two-Hander posted:yes and yes. logins are behind an rsa 2 factor so even if my actual logon was swiped it wouldn't be useful though lol when we had to do that but on workplace safety we all independently set up a script to cheat on the mandatory viewing time
|
# ¿ Jul 10, 2017 11:07 |
|
BattleMaster posted:reminds me of like 15 years ago and using IE and getting sketchy activex controls with long names saying they're totally cool and safe and begging to be installed not unlike vampires trying to convince you to invite them in
|
# ¿ Jul 11, 2017 21:34 |
|
I'm pretty sure shovelware is the only thing that makes consumer pcs remotely profitable
|
# ¿ Jul 13, 2017 02:35 |
|
question: we use openssl in our product, as a dependency of a dependency that would be hugely expensive to replace. is the switch to libressl worth it, and is it painless?
|
# ¿ Jul 19, 2017 10:30 |
|
spankmeister posted:use polarssl op but is it source compatible with openssl? otherwise it's just more work for me which I'd rather expend on something else e.g. rewriting the openssl-dependent code to use native os ssl support
|
# ¿ Jul 19, 2017 13:17 |
|
and years ago, microsoft was forced to document a ton of windows internals as part of a settlement, which may have lead to them eventually documenting all their internal protocols and file types
|
# ¿ Jul 28, 2017 08:02 |
|
has this been posted? https://twitter.com/codelancer/status/890620840080941056 twitter moderation always on point "won't you think of the feelings of the war profiteers "
|
# ¿ Jul 28, 2017 08:04 |
|
shadowhawk could you explain why the gently caress does a thumbnailer need to access the product version of an installer package, in the first place?
|
# ¿ Jul 30, 2017 09:42 |
|
a bash script that uses wine to run windows script host to run a vbscript script to run a sql query on an msi file to embed a very minor metadata label in a thumbnail icon Cybernetic Vermin posted:vbscript.exe is entirely innocent here, it is, say it with me ~~~a bash script where arbitrary user data is syntactically escaped into a string by haaaaand~~~ windows script host shares part of the blame though, as code:
blame wine too but especially wsh for being a fragile pos that requires external and easily corrupted metadata for something as simple as retrieving the command line arguments
|
# ¿ Jul 30, 2017 10:46 |
|
are the cards collectible?
|
# ¿ Jul 31, 2017 16:29 |
|
maskenfreiheit posted:"UK model kidnapped by Polish national who reportedly planned to auction woman on dark web" politely tittering at them using the name of the town in the local dialect
|
# ¿ Aug 6, 2017 02:26 |
|
mrmcd posted:Wasn't there a bgp fuckup a couple years ago where a huge chunk of traffic for Europe got routed to some nobody university in Pakistan or something? I remember the time all internet was routed through Iceland, which IIRC would later be revealed by whistleblowers to have been a Tor deanonymization attack by the NSA
|
# ¿ Aug 29, 2017 13:48 |
|
maskenfreiheit posted:oooh interesting... got a source i'd like to read more about that there were several separate incidents of bgp hijacks in 2013, where traffic was variously redirected to iceland, belarus, iran an academic paper from 2014, and a 2015 followup describe how to attack tor with bgp apparently though there's no hard, proven link between the bgp hijacks and nsa's long campaign against tor
|
# ¿ Aug 29, 2017 20:16 |
|
Schadenboner posted:I'm the Moka pot. a 3-cup pot by the looks of it, too. that's a lot of coffee for one person
|
# ¿ Aug 30, 2017 08:46 |
|
use
|
# ¿ Sep 7, 2017 10:23 |
|
Phobeste posted:also one big threat with the facial recognition stuff for people who absolutely have pictures of you is your parent who thinks you're gay or your partner who thinks you're cheating or whatever. those are just as valid threats as mugging. for all the talk of "have a threat model" some people sure love to throw up their hands and jump to the "blackbagged to cia black site" scenario
|
# ¿ Sep 7, 2017 13:55 |
|
Volmarias posted:If that's a euphemism for "my girlfriend is screaming and crying about how I cheated on her in a dream she had and I long for a CIA kill team to end me" I guess that makes sense. I mean that "phsyical access is game over " was and is used as a debate ender by people who really should know better
|
# ¿ Sep 7, 2017 16:33 |
|
Shinku ABOOKEN posted:if i was the eu i would be digging for reasons to sue us companies. free money y'all. lol if you think any digging is required
|
# ¿ Sep 9, 2017 18:19 |
|
Trabisnikof posted:sneakers is the best hacking movie I think I read it here: the least believable part of sneakers is mainframes that use strong crypto
|
# ¿ Sep 12, 2017 12:08 |
|
Rooney McNibnug posted:c'mon ya'll... rep The Net ludicrous premise: identity theft as a life threatening tragedy vs a depressingly common occurrence
|
# ¿ Sep 12, 2017 12:10 |
|
I think the device in sneakers was a prime factorizer, so asymmetric crypto specifically
|
# ¿ Sep 12, 2017 14:30 |
|
Max Facetime posted:Encryption is not a human right and neither is downloading apps, in fact both could well be illegal in some places, so where's the human rights violation? could you be any dumber (edgier?). "illegal" isn't in the ballpark of "not a right", it's not even the same game
|
# ¿ Sep 14, 2017 11:26 |
|
surebet posted:i mean if you want to have a thing that'll spy on you and make shopping lists that's fine, but why in the hell would you give it authoritative access to your money ask the many, many yosposters who own one
|
# ¿ Sep 15, 2017 10:57 |
|
Max Facetime posted:modern encryption is something computers do, not humans. ergo it's not a human right communicating with other people is something people do you gigantic boob
|
# ¿ Sep 15, 2017 10:58 |
|
Farmer Crack-rear end posted:honestly my plan for all future international travel is to just take my work phone and leave my personal phone at home. failure to provide sensitive data to border control is grounds for refused entry, foreigner
|
# ¿ Sep 16, 2017 12:17 |
|
Cocoa Crispies posted:gg on shipping the debug symbols they didn't ship the debug symbols, just the link to the debug symbols: a UUID and the original path to the PDB file. what's worrying is that they apparently compromised one of the developer machines, because it appears the malware was built there
|
# ¿ Sep 18, 2017 14:55 |
|
on the other hand: that looks like the symbols for the installer itself, not the malware part, which is probably just a self-contained .obj dropped somewhere on the build machine and sneakily added to the linker's command line. from how it's described to work, it's trivial to make it self-contained: the payload is saved in a big static array, and the bootstrap function is registered as a TLS constructor by declaring a pointer to it in one of the specially named sections that the linker merges to form the array of TLS constructors
|
# ¿ Sep 18, 2017 15:02 |
|
Mr. Nice! posted:or if you're really worried about customs digging through your phone, make a backup beforehand, wipe your phone, and hand it to them to look over. like that won't get you detained, interrogated and refused entry
|
# ¿ Sep 18, 2017 18:12 |
|
Optimus_Rhyme posted:the real option is a shadow os on phones/laptops. thegrugq works or is otherwise involved in a company making shadow os phones. for obvious reasons they don't advertise a lot, the photos on the site are completely unbranded devices, and they aren't mass marketed. iirc they don't even list prices
|
# ¿ Sep 18, 2017 18:14 |
|
my bank is about to roll out an improved internet banking platform. among the security improvements, I can choose to irrevocably disable my current otp key and rely on one time codes sent by sms instead
|
# ¿ Sep 20, 2017 17:36 |
|
Carbon dioxide posted:SAN FRANCISCO (Reuters) - An international group of cryptography experts has forced the U.S. National Security Agency to back down over two data encryption techniques it wanted set as global industry standards, reflecting deep mistrust among close U.S. allies. the algorithms in question are block ciphers SIMON and SPECK. did we really need two new block ciphers, anyway?
|
# ¿ Sep 21, 2017 22:35 |
|
spankmeister posted:Speck has been optimized for performance in software implementations, while its sister algorithm, Simon, has been optimized for hardware implementations. and aes rounds are now cpu instructions. so?
|
# ¿ Sep 21, 2017 23:17 |
|
akadajet posted:I miss being able to swipe my card. It just worked without delays and angry buzzing noises. nfc cards are hella fast
|
# ¿ Sep 29, 2017 00:37 |
|
The_Franz posted:nfc cards in the us are a chicken/egg thing. some cards had it 10 years ago and dropped it since almost no terminals had support for it and now that the terminals do support it the cards don't. not that it matters these days since apple pay makes that irrelevant. how does apple pay make that irrelevant, do you want to make idevices mandatory or what
|
# ¿ Sep 29, 2017 21:27 |
|
is it this guy? https://en.wikipedia.org/wiki/Morgan_Marquis-Boire
|
# ¿ Oct 13, 2017 00:01 |
|
Midjack posted:thought he was a piece of poo poo anyway. that's all itsec people though
|
# ¿ Oct 13, 2017 01:26 |
|
|
# ¿ May 5, 2024 02:16 |
|
itsec is important, it's necessary, and it's an assembly line of entitled assholes and I don't believe this correlates in any way with being a rapist
|
# ¿ Oct 13, 2017 09:59 |