|
SIGSEGV posted:"no more version numbers they are confusing" stupidity he was right about that
|
#
?
Apr 15, 2015 22:52
|
|
|
|
| # ? May 15, 2024 08:14 |
|
|
yeah its like how am i supposed to memorize every single number that exists???? sure everyone knows 5 is more than 4, but what about 56203 being more than 52300 i wanna know who has the space in their brain to memorize all those dang numbers!
|
|
#
?
Apr 15, 2015 23:17
|
|
|
Sharktopus posted:yeah its like how i don't think this scenario is quite like how
|
|
#
?
Apr 15, 2015 23:18
|
|
|
spankmeister posted:GCCS is top govt level like ministers and stuff, NCSC One is more operational so it has more cool people 
|
|
#
?
Apr 15, 2015 23:32
|
|
|
Sharktopus posted:yeah its like how am i supposed to memorize every single number that exists???? given that Firefox operates on a fixed six week update cycle, version numbers are fairly useless. month and year as the version would make more sense
|
|
#
?
Apr 15, 2015 23:35
|
|
|
Subjunctive posted:he was right about that i'm gonna disagree given his proposed implementation
|
|
#
?
Apr 15, 2015 23:37
|
|
|
pseudorandom name posted:given that Firefox operates on a fixed six week update cycle, version numbers are fairly useless. no that's dumb. it's dumb when ubuntu does it and its dumb here too.
|
|
#
?
Apr 15, 2015 23:47
|
|
|
including the release date in the version number makes sense, especially if it is tagged as a date pretending there aren't actually versions anymore, loving around with the interface all the time, making it uglier and uglier and trying to kill the school/enterprise versions is stupid
|
|
#
?
Apr 15, 2015 23:50
|
|
|
[version].[month].[day].[build]
|
|
#
?
Apr 15, 2015 23:51
|
|
|
EMILY BLUNTS posted:[version].[month].[day].[build] 219.420.69.1488
|
|
#
?
Apr 15, 2015 23:54
|
|
|
Sharktopus posted:yeah its like how am i supposed to memorize every single number that exists???? it's not too bad, the biggest number is only 24
|
|
#
?
Apr 15, 2015 23:58
|
|
|
i use goog  and idc about the version b/c it just updates itself
|
|
#
?
Apr 16, 2015 00:12
|
|
|
spankmeister posted:i use goog i care about such things because i used to be bothered by inflexion points in the texture of those grainy paints when i was younger (and still am more than i'm comfortable with)
|
|
#
?
Apr 16, 2015 00:16
|
|
|
cyber warfare translates to wizard warfare which sounds really cool
|
|
#
?
Apr 16, 2015 00:23
|
|
|
EMILY BLUNTS posted:[version].[month].[day].[build] 
|
|
#
?
Apr 16, 2015 00:31
|
|
|
i wonder what he'll put in the version number when the people ingame will achieve sapience
|
|
#
?
Apr 16, 2015 01:07
|
|
|
lol loving children
|
|
#
?
Apr 16, 2015 07:17
|
|
|
 MS15-034 is now winbleed https://twitter.com/julianor/status/588434794595385344 https://twitter.com/julianor/status/588471579186700288
|
|
#
?
Apr 16, 2015 09:03
|
|
|
it would have been wittier to reference something about rolling backwards oh well
|
|
#
?
Apr 16, 2015 09:08
|
|
|
epic winbleed
|
|
#
?
Apr 16, 2015 09:09
|
|
|
spankmeister posted:
so you can get a few bytes from the machine your exploit then bluescreens? Doesn't seen very exploitable if I understood correctly what this does.
|
|
#
?
Apr 16, 2015 09:24
|
|
|
computer toucher posted:so you can get a few bytes from the machine your exploit then bluescreens? Doesn't seen very exploitable if I understood correctly what this does. depends, it needs further investigating
|
|
#
?
Apr 16, 2015 09:26
|
|
|
spankmeister posted:depends, it needs further investigating I will rate this a solid "maybe" on a scale of "lol" to "omg".
|
|
#
?
Apr 16, 2015 09:28
|
|
|
it's a remote kernel exploit, you can extract literally anything if you upload the right payload
|
|
#
?
Apr 16, 2015 09:33
|
|
|
pseudorandom name posted:it's a remote kernel exploit, you can extract literally anything if you upload the right payload I'm not quite understanding the nature of this exploit - how does it exactly work? It's not a RCE though. How does the payload determine what ends in the dump? Can you target it? If it comes from memory, doesn't ASLR mitigate targeting some important part of the memory to retrieve, for example, private keys? Does this exploit also crash the server or can you just string requests together to extract data from memory? Rizzo says he can get "extra bytes", which doesn't sound very scary unless there's a way to string together various requests or build a payload that will return more than just a few bytes.
|
|
#
?
Apr 16, 2015 09:56
|
|
|
it won't be another heartbleed because no one uses iis for important poo poo
|
|
#
?
Apr 16, 2015 13:11
|
|
|
Parallel Paraplegic posted:because they're a windows user and they don't have any actually useful programs on windows windows doesn't come with telnet either though
|
|
#
?
Apr 16, 2015 13:28
|
|
|
ymgve posted:it won't be another heartbleed because no one uses iis for important poo poo IIS is used for a tonne of important poo poo, it's just that not much of it is publicly accessible
|
|
#
?
Apr 16, 2015 13:33
|
|
|
our head cj punked us all this morning by changing a setting in the internal proxy server to strip any http headers not on a white list notably not included in the built-in list was Access-Control-Allow-Origin oh hey why are all of our client integrations looking broken suddenly
|
|
#
?
Apr 16, 2015 16:36
|
|
|
Shaggar is too silent on this matter
|
|
#
?
Apr 16, 2015 16:41
|
|
|
  ruhroh
|
|
#
?
Apr 16, 2015 16:59
|
|
|
wasn't that very mainframe in that DEFCON talk that someone in here gave (along with all the cool GIFs)?
|
|
#
?
Apr 16, 2015 17:01
|
|
|
Optimus_Rhyme posted:
|
|
#
?
Apr 16, 2015 17:02
|
|
|
Munkeymon posted:our head cj punked us all this morning by changing a setting in the internal proxy server to strip any http headers not on a white list why would you even do that
|
|
#
?
Apr 16, 2015 17:05
|
|
|
Hed posted:wasn't that very mainframe in that DEFCON talk that someone in here gave (along with all the cool GIFs)? ya, thats me
|
|
#
?
Apr 16, 2015 17:05
|
|
|
Wiggly Wayne DDS posted:it's only been network accessible for at least a year Well, last year it wasn't full of all those cool programs: 
|
|
#
?
Apr 16, 2015 17:05
|
|
|
Hed posted:wasn't that very mainframe in that DEFCON talk that someone in here gave (along with all the cool GIFs)? 
|
|
#
?
Apr 16, 2015 17:06
|
|
|
vOv posted:why would you even do that "you can have malicious headers, right?" the cto has him on a security kick because he (cto) wants to look good to a potential buyer so he can get his payout and retire they're talking about taking away my local admin rights because some poo poo idiot ~web designer~ was running a pirate bay branded torrent client (and the malware that came with it lol) so letting devs install stuff on they own machines is now scary and dangreous
|
|
#
?
Apr 16, 2015 17:13
|
|
|
Optimus_Rhyme posted:
Countries YOSPOS cannot visit so far: Russia Egypt
|
|
#
?
Apr 16, 2015 17:28
|
|
|
|
| # ? May 15, 2024 08:14 |
|
|
fly safe security ghost
|
|
#
?
Apr 16, 2015 17:42
|
|
