florida lan posted:idk about freebsd on the desktop but it is p drat good as a server
|
|
# ? Jun 18, 2019 14:40 |
|
|
# ? Apr 28, 2024 13:17 |
|
flakeloaf posted:i'd say whichever of expressvpn and nordvpn is cheaper for you in the moment, because your clients are probably nosy simpletons and not some three-letter thingy, so time spent thinking about it beyond that is probably time wasted works 4 me
|
# ? Jun 18, 2019 14:42 |
|
i know that it's extremely unnecessary, but I keep a shutdown EC2 ubuntu instance with Wireguard installed that I can spin up via the AWS app at any time. other than an a half-hour of initial setup it's easy to run and Suits My Needs and I pay less than a buck per month since it's honestly fairly rare I even need it.
|
# ? Jun 18, 2019 14:57 |
|
If you're gonna go that route, use Algo. I use ExpressVPN for your original purpose because I'm lazy and agreed, just trying to avoid snooping / open wifis
|
# ? Jun 18, 2019 14:59 |
|
Hed posted:If you're gonna go that route, use Algo. I use ExpressVPN for your original purpose because I'm lazy and agreed, just trying to avoid snooping / open wifis Sorry, yeah, I meant Algo, I just use the WireGuard app to connect. I'm honestly not even that worried about the security of the VPN (although there's been quite a few fuckups on that side), I'm just super cheap.
|
# ? Jun 18, 2019 15:03 |
|
why even connect to a WiFi network if you think people will snoop on it
|
# ? Jun 18, 2019 15:05 |
|
Vomik posted:why even connect to a WiFi network if you think people will snoop on it Sometimes I have bad reception, or I'm travelling without a decent data plan, sometimes I need to download a large file or watch youtube and I don't want to blow through my data caps.
|
# ? Jun 18, 2019 15:07 |
|
Lain Iwakura posted:they’re all their own flavour of bad taiyoko posted:Is there something about the RSA SecurID that you dislike? Thanks guys. No particular hatred of the RSA thing, just looking for alternatives because most of the links that turned up seemed outdated. So I don't X/Y the poo poo out of this: I'm really just looking for an off-premise hosted webmail provider (think Exchange or GSuite) that allows for 2FA with the ability for me to also authenticate against the same service for other applications, so using RADIUS or something like it so that users can use the same creds/factors for a custom web app or VPN auth or whatever. I see some people doing 2FA with Google Auth (which is fine) but would also want the ability to use a disconnected token option like RSA SecurID or similar. Buying two services would be fine, would just want as much hosted off-premise as possible. I can take this to the grays if it gets super off topic
|
# ? Jun 18, 2019 15:08 |
|
Ur Getting Fatter posted:i know that it's extremely unnecessary, but I keep a shutdown EC2 ubuntu instance with Wireguard installed that I can spin up via the AWS app at any time.
|
# ? Jun 18, 2019 15:14 |
|
Vomik posted:why even connect to a WiFi network if you think people will snoop on it my clients tend to work in giant steel buildings which double as a faraday cage. just submitting this post takes a full 30 seconds to a minute. i want to be able to browse SA while I poop
|
# ? Jun 18, 2019 15:23 |
|
mystes posted:Doesn't the instance's IP change when you restart it? no https://aws.amazon.com/ec2/pricing/on-demand/#Elastic_IP_Addresses
|
# ? Jun 18, 2019 15:28 |
|
FIPSMODE Squad will bust your poo poo for even the wrong reasons
|
# ? Jun 18, 2019 15:38 |
|
Extinction Level Event for FIPSmode yubikeys
|
# ? Jun 18, 2019 15:39 |
|
ate poo poo on live tv posted:Can you even get 4K 55" OLED Monitors? Or even just 4K OLED? They're sold as "digital signs" mostly, they just TVs with the minimum necessary to show current signals
|
# ? Jun 18, 2019 15:58 |
|
No? Isn't the default that the IP will change unless you allocate an elastic ip address? Plus, if you do that aren't you paying $3.6/mo just for the IP address even if you just keep the instance stopped? Ur Getting Fatter said he/she was paying less than a dollar a month, so I don't think that can be how he/she had it set up.
mystes fucked around with this message at 16:07 on Jun 18, 2019 |
# ? Jun 18, 2019 16:04 |
|
A thing of beauty.
|
# ? Jun 18, 2019 16:17 |
|
that also appears to be a usb device that will be physically impossible to remove if it is fully inserted into the slot
|
# ? Jun 18, 2019 16:19 |
|
mystes posted:Doesn't the instance's IP change when you restart it? Is there some automated way to set this up so you don't have to manually change the settings on the client? Or are you using DNS? yeah, I use No-IP.org for dynamic dns. Means you need to wait about 60 seconds after launching the instance for the dns update to go through, but other than that it's fairly painless.
|
# ? Jun 18, 2019 16:20 |
|
Hed posted:Thanks guys. No particular hatred of the RSA thing, just looking for alternatives because most of the links that turned up seemed outdated. O365 + Azure MFA will check all of those boxes.
|
# ? Jun 18, 2019 17:32 |
|
yeah theres an azure MFA plugin for NPS so you can have azure do MFA for anything that supports radius
|
# ? Jun 18, 2019 18:02 |
|
Hed posted:Thanks guys. No particular hatred of the RSA thing, just looking for alternatives because most of the links that turned up seemed outdated. Yeah Azure will do this just fine. They are adding support for OATH tokens soon so you buy whatever tokens you want that are standard OATH with seeds and use them with Azure if you really love hard keyfobs. https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-methods
|
# ? Jun 18, 2019 18:03 |
|
today in secfuck: I log into aws for work and the first thing that pops up is: secwarning, this function sends your credentials as strings use function_safe instead how long has this been the case? it’s left as a thought exercise for the reader
|
# ? Jun 18, 2019 20:32 |
|
Thanks guys for the help with the multi factor... looks like the Azure stuff is actually good
|
# ? Jun 19, 2019 00:09 |
|
entrust has a token as well I’ve had to “synchronize” my token a few times by providing the serial and then several subsequent generated codes but it works otherwise
|
# ? Jun 19, 2019 01:08 |
|
ewiley posted:FIPSMODE Squad will bust your poo poo for even the wrong reasons FIPSMODE is the greatest
|
# ? Jun 19, 2019 01:35 |
|
fails in providing security
|
# ? Jun 19, 2019 01:39 |
|
~Coxy posted:this should default to off now that everyone has 4G with decent data caps the thing that boggles my mind is that there have been third-party android apps that manage your wifi radios silently and efficiently for years, but the ios behaviors for the same task are garbage. the open-source android apps record the cell-tower and/or GPS data around where your saved wifi networks are, and then just straight up turn the radio off if you aren't near them, which is a great. it improves your security and it saves battery too. the ios equivalents to this are just awful part of this is ofc the fact that android lets you download any old sketchy app to do important system functions like "turn wifi on and off" but c'mon timb!! your poo poo is garbage over here
|
# ? Jun 19, 2019 03:56 |
|
D. Ebdrup posted:I mean I probably have a case of Stockholms syndrome, but I've been using it on the desktop since 2000, and on a laptop for the past two years or so. my tv runs freebsd. works for me.
|
# ? Jun 19, 2019 05:44 |
|
Bulgakov posted:my tv runs freebsd. works for me. lol, i bet your tv cant even run any of the popular viruses, just lmao
|
# ? Jun 19, 2019 05:48 |
|
Are Samsungs Android TVs, or do they run that garbage fire OS they developed in-house?
|
# ? Jun 19, 2019 05:49 |
|
idk if they're tizen branded now now, but they used to be a generic linux platform developed by samsung in house they were also insecure as poo poo back in the day and samsung has actually had malware scanning for their tvs for quite a while
|
# ? Jun 19, 2019 05:52 |
|
infernal machines posted:malware scanning for their tvs What an amazing future this turned out to be
|
# ? Jun 19, 2019 05:56 |
|
Lutha Mahtin posted:the thing that boggles my mind is that there have been third-party android apps that manage your wifi radios silently and efficiently for years, but the ios behaviors for the same task are garbage. the open-source android apps record the cell-tower and/or GPS data around where your saved wifi networks are, and then just straight up turn the radio off if you aren't near them, which is a great. it improves your security and it saves battery too. the ios equivalents to this are just awful that anroid behavior sounds completely awful
|
# ? Jun 19, 2019 06:32 |
|
Bulgakov posted:that anroid behavior is really something awful
|
# ? Jun 19, 2019 07:09 |
|
infernal machines posted:idk if they're tizen branded now now, they are as are their digital displays so if you think you're saving money buying a QH55H display instead of a Q8FN television.... well maybe you're better at google than me, cause i see no way that's the case
|
# ? Jun 19, 2019 14:05 |
|
love to put success conditions in the url and not validate them anywherequote:Yesterday, the SEC announced that they'd found a second, even more disturbing pattern of cheating, one that went right to the top, with Big Four accounting firm KPMG's most senior staff cheating on their integrity exams. The tests were delivered online, and in the URL for the test was a variable that set the percentage needed for a passing grade: "MasteryScore=70" -- by lowering this value, cheaters could turn any number of right answers into a pass http://fcpacompliancereport.com/2019/06/day-reckoning-kpmg-failures-ethics/
|
# ? Jun 19, 2019 19:27 |
|
duz posted:love to put success conditions in the url and not validate them anywhere Hahah, well earned imo
|
# ? Jun 19, 2019 19:32 |
|
This is timely, since I have a bunch of KPMG auditors running around the place right now.
|
# ? Jun 19, 2019 19:33 |
|
quick request for anyone running fedora or similar, with selinux enabled, booting with grub and efi please paste me the output of: ls -lZ /usr/sbin/grub2-set-bootflag /boot/grub2/grubenv /boot/efi/EFI/fedora/grubenv many thanks
|
# ? Jun 19, 2019 23:35 |
|
|
# ? Apr 28, 2024 13:17 |
|
Rufus Ping posted:quick request for anyone running fedora or similar, with selinux enabled, booting with grub and efi i'm running centos, that counts right code:
|
# ? Jun 20, 2019 04:20 |