|
code:
join us on irc: irc.synirc.net #yossec useful news resource for information security professionals: http://reddit.com/r/netsec/ risky business podcast is worth listening to and yospos has been mentioned in it before here are some old threads that haven't been archived: Security Fuckup Megathread - v13.69 - plugins may violate privacy (jan-jun 2017) Security Fuckup Megathread - v12.2 - you have slammed your dick in the car door (apr 2016-jan 2017) Security Fuckup Megathread - v11.4 - who u gonna snitch to pussy bitch gently caress u (apr 2015-apr 2016) Security Fuckup Megathread - v10.1 (Hackers can turn your gas station into a bomb) (nov 2014-apr 2015) Security Fuckup Megathread - v7.69 (stay safe security ghost) (aug-nov 2014) Security Fuckup Megathread - v7.2 "BoringSFM" (jun-aug 2014) Alereon posted:seriously though people dont post anything that would allow a lurker from gbs to gently caress with anything Lain Iwakawa posted:HERE IS A FORUM FOR YOU D&D WANNABES THAT WELCOMES CHAT ABOUT AMERICAN FOREIGN POLICY AND ITS UTTER FAILURE Talk about opsec and government fuckups in this thread.
|
# ¿ Jun 26, 2017 20:48 |
|
|
# ¿ May 2, 2024 04:03 |
|
Trabandiumium posted:3 pages short of 219 my dude i noticed. fucks given: zero just uninterested in seeing my old forums name haha
|
# ¿ Jun 26, 2017 20:52 |
|
syscall girl posted:and OP, apologies for the stuxnet parking lot reference, it's very political but also one of the biggest secfucks we've seen so it balances out no worries. nobody in the thread did anything wrong. like i said, i was tired of seeing my old forums name show up in my bookmarks and was, "enh gently caress it" Thanks Ants posted:Radium these forums are the least of my problems for name changes
|
# ¿ Jun 26, 2017 21:18 |
|
vOv posted:are you implying what i think you're implying here b/c if so then good luck with everything and godspeed yep :bigtran:
|
# ¿ Jun 26, 2017 21:43 |
|
anthonypants posted:congratulations on finally breaking that $25k barrier, you made it ayyy lmao but yeah. i came out in april and sort of disappeared for a while because of it. will be kicking rear end soon enough!
|
# ¿ Jun 26, 2017 22:43 |
|
cis autodrag posted:oh that was why you changed your name? fwiw i tried to get away from my old forums name too and people insist on using it when they quote me anyway yeah. i sort of got it in a mod challenge once and never really liked it but just owned it anyway. i chose this one because it was femme and still rad
|
# ¿ Jun 26, 2017 22:51 |
|
apseudonym posted:Did we touch the poop again? nope. just me being a princess
|
# ¿ Jun 26, 2017 23:08 |
|
ate all the Oreos posted:wife just linked me this:
|
# ¿ Jun 26, 2017 23:31 |
|
No Defcon for me this year but likely next.
|
# ¿ Jun 27, 2017 01:12 |
|
i've always liked anime. i just never really post about it anywhere anymore
|
# ¿ Jun 27, 2017 03:34 |
|
anthonypants posted:is the secfuck thread going to get gassed or shutdown for too much off-topic posting already? it's just barely on page 3 i'll let this slide for tonight but tomorrow, there better be some gently caress ups tonight i am doing some groundwork for 3DO RE work https://twitter.com/KateLibc/status/879536662031638528
|
# ¿ Jun 27, 2017 04:10 |
|
infernal machines posted:3do didn't have any kind of drm did it? zero it just has a really wonky disc format that required me to setup a linux vm running kernel 2.6 to properly read them
|
# ¿ Jun 27, 2017 05:22 |
|
Doom Mathematic posted:So this is from where, exactly? Or is it just a mockup? It came from the same people who came up with those abusive volume sliders.
|
# ¿ Jun 27, 2017 14:47 |
|
we haven't had some grey forum quotes to mock latelyGanson posted:I also thank my lucky stars every day that our entire dev department is on Macs (with like one or two exceptions), production is all Linux, and it's not my job to give a crap about user endpoints anymore.
|
# ¿ Jun 28, 2017 23:21 |
|
i'm so glad that this is the library thread. i totally misread the title when i clicked on it i guess
|
# ¿ Jun 29, 2017 03:52 |
|
BangersInMyKnickers posted:the supported cipher list from a major industrial controls vendor's monitoring and remote access platform: so... rockwell?
|
# ¿ Jun 30, 2017 00:11 |
|
BangersInMyKnickers posted:There are many vendors in this space and my advice is to validate anything they tell you with regards to cryptography i'm very aware of the ics space i was more or less curious which vendor you're talking about in particular here because the stupid poo poo i see in it is overwhelming
|
# ¿ Jun 30, 2017 01:00 |
|
reminds me of how a customer at $av_vendor was pissed off when we told them that we wouldn't give them follow the sun support for their inability to understand that you don't go and update the software across the board. that said, the software was poo poo but still you don't go deploying crap without testing how it'll affect things these idiots installed the av software on loving medical devices and blindly updated the version
|
# ¿ Jul 3, 2017 04:16 |
|
fishmech posted:for further context on that chat snippet: "eat poo poo"
|
# ¿ Jul 3, 2017 04:22 |
|
Jabor posted:just lol if you can't do zero-downtime updates let's talk about ics then. you cannot believe the nightmares that come with it
|
# ¿ Jul 3, 2017 05:21 |
|
https://twitter.com/KateLibc/status/882644229901529089 and this is why we're doomed
|
# ¿ Jul 5, 2017 18:05 |
|
Wiggly Wayne DDS posted:what could possibly go wrong just do it via dns authentication
|
# ¿ Jul 6, 2017 17:29 |
|
Arcsech posted:why doesnt this guy ever find earthshattering oh-poo poo vulns on like, monday morning or something we find it's always better to release details on a friday. studies have statistically shown that there's less chance of an incident if you do it at the end of the week
|
# ¿ Jul 6, 2017 23:45 |
|
code:
|
# ¿ Jul 7, 2017 04:03 |
|
Rufus Ping posted:What's "0 day" about this, it looks like some run of the mill macro poo poo no idea
|
# ¿ Jul 7, 2017 04:20 |
|
https://twitter.com/justin/status/883171036283285508
|
# ¿ Jul 7, 2017 22:53 |
|
goddamnedtwisto posted:i genuinely thought this was a repost, wasn't there someone else complaining about the exact same thing a few months ago? it's just another example of why sms 2fa is dumber than poo poo
|
# ¿ Jul 7, 2017 23:06 |
|
Powerful Two-Hander posted:i had to use an internet cafe today to do some work bullshit while on holiday and 1) holy poo poo internet cafes still exist 2) they give you local admin which was handy because i had to install java to get our garbage remote access software working* you used a public computer to connect to work resources?
|
# ¿ Jul 10, 2017 06:08 |
|
this font poo poo while hilarious is best suited for the opsec thread
|
# ¿ Jul 12, 2017 16:49 |
|
word on the street is that Mafiaboy is involved if so then lol
|
# ¿ Jul 14, 2017 23:20 |
|
|
# ¿ Jul 16, 2017 20:46 |
|
cruel idea: call up a random security person and claim that you're brian krebs crueler idea: call up said random security person at 4:30 pm on a friday claiming to be krebs cruelest idea: call up said security person at 4:30 pm on a friday, claim you're krebs, and also introduce someone claiming to be tavis ormandy
|
# ¿ Jul 17, 2017 01:08 |
|
i have nexus which is global entry for us canadians i prefer it over having to deal with bullshit questions
|
# ¿ Jul 25, 2017 05:19 |
|
stalking my friends eh? :P
|
# ¿ Jul 26, 2017 22:56 |
|
https://twitter.com/kaepora/status/890640307729047552 glass houses, etc
|
# ¿ Jul 27, 2017 19:52 |
|
SHUT THE gently caress UP ABOUT THIS poo poo
|
# ¿ Jul 28, 2017 23:42 |
|
Cybernetic Vermin posted:haha, oh come on, what are you even trying to achieve? i have made only one post about corporations, but all i did was note that they are legal constructs, never mentioning people. and you can't seriously think that there aren't things that corporations can do that people cannot (though i'd buy share #1 when the fishmech ipo happens). i will yield since i assume people will want to get back to a buffer overflows or something, but you are spewing absolute nonsense man Lain Iwakura posted:SHUT
|
# ¿ Jul 29, 2017 00:00 |
|
spankmeister posted:Don't fishmech this thread don't worry; he's now whining to me in PMs
|
# ¿ Jul 29, 2017 00:06 |
|
Jabor posted:It's almost like having the opsec thread as containment for the security-relevant-yet-somewhat-d&dish discussions was actually a good thing agreed
|
# ¿ Jul 29, 2017 15:50 |
|
|
# ¿ May 2, 2024 04:03 |
|
fishmech posted:defcon was mostly lame this year "this year" as opposed to never every other year
|
# ¿ Jul 29, 2017 23:59 |