|
Wiggly Wayne DDS posted:[pre-watch disclaimer] good stuff! thanks as always
|
# ¿ Dec 28, 2018 18:10 |
|
|
# ¿ May 9, 2024 01:48 |
|
LMFAOOOO good poo poo adlords
|
# ¿ Dec 31, 2018 18:41 |
|
EssOEss posted:Turns out that no, Chromecast is fine and this is just lovely routers being lovely: https://twitter.com/SwiftOnSecurity/status/1081000904688656386 fyi swift is just an unaccomplished CJ who obsessively tweets about infosec and because of their gimmick they got popular so now they punch above their weight as some kind of authority. consumer routers having UPnP enabled on the WAN interface (or at all) by default: secfuck chomecast having UPnP enabled by default: secfuck hurr: https://twitter.com/SwiftOnSecurity/status/1081003077912719362
|
# ¿ Jan 4, 2019 13:54 |
|
EssOEss posted:No, not necessarily. What you say about Switft is true but he does address this - UPnP is a wide-ranging suite of standards and he says Chromecast does not use the "open a port" variant that the lay audience might normally associate with UPnP. Unless he is flat out wrong in his facts, Chromecast is in the clear here. UPnP is straight garbage and i thought i was already dead in tyool 2019. i don't care how chomecast uses UPnP, the fact that it uses it at all is a huge loving red flag, even if it apparently "doesn't use it in a bad way." Shame Boy posted:"adobe flash player for windows server" is the best worst thing I've heard of all week it's for RDS sessions, not unusual at all.
|
# ¿ Jan 4, 2019 16:40 |
|
BangersInMyKnickers posted:its a large protocol suite designed to do broadcast discovery and happens to have some ability to request port forwards from a upstream NAT. some kind of discovery protocol is a requirement for any kind of soho environment without proper DNS infrastructure. you're tilting at windmills and being an idiot. the problem are the routers enabling the port forward functionality by default, implementing in a shoddy manner, and not updating/supporting their poo poo in the field. i don't see how i'm an idiot for calling poo poo what it is: poo poo. upnp is straight garbage, i accept that it has been adopted and exists and that the majority of problems are due to lovely implementation but that aside it's dumb trash!
|
# ¿ Jan 4, 2019 17:51 |
|
BangersInMyKnickers posted:christ you are stupid fine gently caress you then cheers
|
# ¿ Jan 4, 2019 18:05 |
|
Edit: good job dunking on me ozymandOS, fellow white noise poster charlatan. Pile Of Garbage fucked around with this message at 18:25 on Jan 4, 2019 |
# ¿ Jan 4, 2019 18:15 |
|
yah this will end well and not be a thing that no one uses: https://github.com/SwiftOnSecurity/OrgKit
|
# ¿ Jan 12, 2019 16:33 |
|
Shame Boy posted:i noticed on google maps that there's a (branch?) office of GENERAL DYNAMICS INFORMATION TECHNOLOGY near where I work, so i poked around their website and found some fun stuff MIC "cyber" programs/initiatives are part hand-waving bs and part cringe inducing marketing wank. all the major corps have them however lockheed and boeing seem to give them far less prominence than others. comparatively thales and raytheon can't go a day without talking about the size of their cyber wangs. these corporations are also really keen about inserting themselves into higher education and sometimes even K-12 to teach "cyber" which i find quite disconcerting: https://www.youtube.com/watch?v=FS3vp3WxTCw
|
# ¿ Feb 10, 2019 09:15 |
|
i'm the one dingus still using password safe how does it rate?
|
# ¿ Feb 20, 2019 15:10 |
|
ZeusCannon posted:We legit dont have calc anymore on our end points and im pretty sure its because someone was like they cant confirm calc.exe if they dont have it i cannot believe this but i know it to be true
|
# ¿ Mar 7, 2019 16:16 |
|
not sure how much of a secfuck this is but it seems kinda dumb: earlier this month the notepad++ dev posted about how he had tried to get a new code signing cert but in the end he gave up because apparently it was too hard and code signing is just an "overpriced masturbating toy" and everything has been fine for years so why even? https://notepad-plus-plus.org/news/notepad-7.6.4-released.htmlquote:When you install Notepad++ version 7.6.4, You might notice there's no more blue-trusted UAC popup. Here's the explanation for the reason that we remove code signing from Notepad++ : i mean sure certificate pricing is a fuckin rort but it kinda sounds like he hosed up trying to get one issued so just gave up and is making excuses
|
# ¿ Mar 17, 2019 12:51 |
|
i didn't know it was closed-source. loving lol
|
# ¿ Mar 17, 2019 14:12 |
|
Boiled Water posted:i mean its nice until you find out about our lord and savior: vscode yeah i've been using vs code since i started doing dev full-time. that said one of our senior devs was using np++ exclusively up until at least at least 4 months ago lol
|
# ¿ Mar 17, 2019 15:16 |
|
Midjack posted:motherfuckers act like they forgot about jre
|
# ¿ Mar 26, 2019 18:11 |
|
Chris Knight posted:no token ring it's right there on the left (c/o Soricidus)
|
# ¿ Mar 29, 2019 06:24 |
|
|
# ¿ Mar 29, 2019 09:29 |
|
CommieGIR posted:You'll get a VDI and you'll like it. lol that reminds me of the last gig I was at. the customer decided to outsource a bunch of BPO stuff to Accenture (massive bastards btw, look em up re Philippines) in order to automate and streamline processes. Accenture decided to implement this with Automation Anywhere, a software package that just records and plays-back mouse+keyboard inputs, but enterprisey (why spend time and money understanding APIs and building scripted orchestration poo poo for whatever product your dealing with when you can just simulate the user interaction). despite the automation poo poo Accenture were putting in they were still employing a team of poor Filipinos working remotely to operate Automation Anywhere for some reason, probably mad profit min-maxing or some poo poo. anyway to use the AA software front-end it has to run as administrator in the context of the user executing it. at first they wanted to just put it on the Citrix environment to which we said "lol gently caress know" after weeks of back and forth with us saying "this poo poo is hosed, get it outta here" and the customer saying "yeah but we need it kay" we ended up designing and deploying an entire VDI solution solely for the Accenture drones to run AA from remotely. basically gently caress BPOs
|
# ¿ Mar 29, 2019 16:53 |
|
Accenture has +469k employees, they've min-maxed the fuckin numbers on the automation game and know exactly how much they need to do and how to make a profit. poo poo is hosed...
|
# ¿ Mar 29, 2019 22:32 |
|
|
# ¿ May 9, 2024 01:48 |
|
Ulf posted:https://twitter.com/briankrebs/status/1117901485671452672 this is particularly funny because last year i helped transition one of our now former customers to their new provider, namely wipro. their poo poo is wildin i tell you whut
|
# ¿ Apr 17, 2019 06:43 |