|
dpkg chopra posted:Any time I've given the olds any sort of small device that is not their phone, they lose it within 2 months, and within those 2 months they maybe remember to actually bring it with them maybe 2 days. Giving them yubikeys to be able to do their job sounds like hell. this is actually fine because then they have to wait until a new small device is procured and they can't do anything until then, and it's not your problem
|
# ? May 9, 2022 19:18 |
|
|
# ? Mar 29, 2024 10:28 |
|
i keep my small device in my pants where it's safe and secure
|
# ? May 9, 2022 19:20 |
|
CRIP EATIN BREAD posted:this is actually fine because then they have to wait until a new small device is procured and they can't do anything until then, and it's not your problem "you're telling me, that if I lose this small device, I'll be unable to work until I get a new small device?????"
|
# ? May 9, 2022 21:05 |
|
Beeftweeter posted:am i stupid or do nfc stickers seem like a cheap way of doing this If you try to make it work, congratulations you just reinvented smartcards, which have been supported for authentication for a really long time, but you either need readers or the smartcard needs to be a USB token which isn't cheaper than a fido2 only yubikey. Also u2f is designed to be way simpler
|
# ? May 10, 2022 05:05 |
|
Crime on a Dime posted:biometricaly ew, gross, what the gently caress
|
# ? May 10, 2022 05:05 |
|
Real talk. All the NFC usb stuff that's good for desktops is like $100, maybe $50 for sketchy stuff. Does anyone have a recommendation from a reputable vendor? Or are all the $20 readers only available on aliexpress or something? I would be very mad if there was just a cheap hp or dell or microsoft thing that everyone uses but I somehow overlook. EDIT: I'm just talking about something that can read NFC on a yubikey or an NFC tag or something, nothing too complicated.
|
# ? May 10, 2022 07:10 |
|
sb hermit posted:Real talk. All the NFC usb stuff that's good for desktops is like $100, maybe $50 for sketchy stuff. Does anyone have a recommendation from a reputable vendor? Or are all the $20 readers only available on aliexpress or something? I bought this HID reader a couple months ago and 3M stripped it to the underside of my desk. https://www.amazon.com/gp/aw/d/B079T2FKN1 at $67 it’s a slight premium to your sketch tier but works for me. I bought it so I didn’t have to go all the way to the USB port on my compy
|
# ? May 10, 2022 12:34 |
|
sb hermit posted:Real talk. All the NFC usb stuff that's good for desktops is like $100, maybe $50 for sketchy stuff. Does anyone have a recommendation from a reputable vendor? Or are all the $20 readers only available on aliexpress or something? the scl3711 is a fairly competent reader that also works with libnfc if that's something you need. there are a couple of formats it can't handle (don't think it does iclass for example) but it's a good general purpose hf rfid reader.
|
# ? May 10, 2022 13:14 |
|
sb hermit posted:Real talk. All the NFC usb stuff that's good for desktops is like $100, maybe $50 for sketchy stuff. Does anyone have a recommendation from a reputable vendor? Or are all the $20 readers only available on aliexpress or something? idk, a lot of aliexpress poo poo is just rebranded with like xyzzy or some poo poo and then sold on amazon with a 75% markup. i wouldn't entirely count it out
|
# ? May 10, 2022 15:12 |
|
Beeftweeter posted:idk, a lot of aliexpress poo poo is just rebranded with like xyzzy or some poo poo and then sold on amazon with a 75% markup. i wouldn't entirely count it out My understanding was that it was the other way, with the AliExpress poo poo being stuff where the batch failed QA but individual units are (probably) still good?
|
# ? May 10, 2022 16:28 |
|
If you're after a cheap solution, I'm not sure why you'd use a USB nfc reader for a yubikey. You can just plug it in? Get a USB hub or extension to put it on top of your desk if that's what you're missing and price sensitive. If you're just after a fun project, then go for it. I think it could be cool to have it built-in under your desk top, or integrated into the keyboard.
|
# ? May 10, 2022 16:45 |
|
Guy Axlerod posted:If you're after a cheap solution, I'm not sure why you'd use a USB nfc reader for a yubikey. You can just plug it in? Get a USB hub or extension to put it on top of your desk if that's what you're missing and price sensitive. I'm asking for suggestions for which usb based nfc reader to buy. EDIT: I somehow misread this. I'm testing out security solutions and it's easier for users to just use nfc than to try plugging stuff in. I mentioned yubikeys because they're the easiest thing I have on hand to try out. sb hermit fucked around with this message at 16:53 on May 10, 2022 |
# ? May 10, 2022 16:47 |
|
Hed posted:I bought this HID reader a couple months ago and 3M stripped it to the underside of my desk. https://www.amazon.com/gp/aw/d/B079T2FKN1 Midjack posted:the scl3711 is a fairly competent reader that also works with libnfc if that's something you need. there are a couple of formats it can't handle (don't think it does iclass for example) but it's a good general purpose hf rfid reader. Sweet! Thank you!
|
# ? May 10, 2022 16:49 |
|
RFC2324 posted:My understanding was that it was the other way, with the AliExpress poo poo being stuff where the batch failed QA but individual units are (probably) still good? it's both, really. i've bought poo poo from amazon that was clearly from an ODM because i saw the same thing on aliexpress sans branding. yup, it still failed the only benefit of getting it from amazon in that case imo is so you can easily return it, but whether or not that justifies the markup is up to you
|
# ? May 10, 2022 16:50 |
|
Beeftweeter posted:which a lot of enterprise laptops do have and i think a bulk purchase of usb readers or something would probably be cheaper than $30-50/yubikey $30-50 is cheap as hell. Alternatively, do people not get security badges issued? You can always make those more expensive and turn them into nfc-enabled cards. It's probably way more expensive, but maybe it comes from an existing budget line item rather than a new one lol.
|
# ? May 10, 2022 17:03 |
|
Sup infosec peeps, I created this cowardly rereg account so as not to doxx myself. Although I’m sure that some of you have the skills and connections to figure out my identity if you truly cared. I’m looking to get into infosec. I’m currently working on improving various fundamental skills before I attempt to attain professional script kiddie status and start looking for an infosec job. Ultimately I want to be a defender and do blue team type stuff, but I understand that you cannot be good at defense until you know how offense works. Defense is at such a disadvantage sometimes I wonder why I am bothering to do this. But I find infosec really interesting, and I like helping people. Aside from learning technical stuff I have done a ton of reading so I can understand the big picture stuff. Gotta make sure learning all this technical bullshit is worth it. I know the learning never stops and if you want to be any good you have to learn stuff in your spare time. I hear infosec can pay well but I’m not in it for the money. Do you mind if I ask you all some questions about getting into the industry? I don’t know anyone that works in infosec. And I’d rather ask goons these questions anyway. I’ve already learned a ton from lurking this thread and the SH/SC infosec thread. It’s clear that most of the people posting in these threads measure their experience in decades. And I would bet money that there is a goon that works for every major tech company either posting in this thread or elsewhere in YOSPOS.
|
# ? May 10, 2022 17:13 |
|
El Mero Mero posted:$30-50 is cheap as hell. Alternatively, do people not get security badges issued? You can always make those more expensive and turn them into nfc-enabled cards. the yubikey security key nfc is $25 and at times has been as low as $10 (in a $100 10-pack)
|
# ? May 10, 2022 17:33 |
|
sb hermit posted:Sweet! Thank you! Sure thing. I actually went to my order history and realize now I paid $54 for this in January; it's $67 now. Also the seller was named "UNIQUEPOS LLC" so I think it's a sign.
|
# ? May 10, 2022 17:41 |
|
|
# ? May 10, 2022 17:46 |
|
aspiring_skid posted:Sup infosec peeps, unsure why you think posting that you want to get into infosec is going to doxx you
|
# ? May 10, 2022 18:03 |
|
aspiring_skid posted:Sup infosec peeps, sure thing kid here's a pdf that explains everything and will get you started: https://www.legit-update-server.cn/wp-includes/.documents/how-2-cyber.pdf.exe
|
# ? May 10, 2022 18:08 |
|
heres a host you can practice your l33t skillz on OP 127.0.0.1
|
# ? May 10, 2022 18:10 |
|
hbag posted:heres a host you can practice your l33t skillz on OP How did you get my IP?!
|
# ? May 10, 2022 18:17 |
|
hbag posted:heres a host you can practice your l33t skillz on OP why are you sockpuppetting itt
|
# ? May 10, 2022 18:24 |
|
aspiring_skid posted:Sup infosec peeps, You're going to have to go into FYAD and post your balls with this burner. Only way to get an invite to the discord.
|
# ? May 10, 2022 18:29 |
|
CommieGIR posted:How did you get my IP?!
|
# ? May 10, 2022 18:43 |
|
KirbyKhan posted:You're going to have to go into FYAD and post your balls with this burner. Only way to get an invite to the discord. serious post how did that work out for you?
|
# ? May 10, 2022 18:44 |
|
Crime on a Dime posted:serious post how did that work out for you? Oh somebody posted their balls while I was in the shower. Totally deflating, never even posted mine out of shame.
|
# ? May 10, 2022 18:46 |
|
was pretty obviously you but I'm not continuing this derail or giving you attention ITT
|
# ? May 10, 2022 18:51 |
|
lol
|
# ? May 10, 2022 18:54 |
|
aspiring_skid posted:Gotta make sure learning all this technical bullshit is worth it. i have some terrible news for you, op,
|
# ? May 10, 2022 18:55 |
|
Crime on a Dime posted:was pretty obviously you but I'm not continuing this derail or giving you attention ITT Yes, we have to focus on who's alt this is and where they sourced this cringy request for coffee chats. It's ok dude, we're in the same loving bootcamp you don't have to do this.
|
# ? May 10, 2022 19:00 |
|
post hole digger posted:i have some terrible news for you, op,
|
# ? May 10, 2022 19:04 |
|
|
# ? May 10, 2022 19:06 |
|
as an intro to learning infosec you have to watch at least every conference video i've ever linked in these threads. that should be a brief starting point i swear i had put them all into one post at some point, your job is to dig out that post or make it for me
|
# ? May 10, 2022 19:37 |
|
your first job as an infosec security intern is to go outside and check if p still equals np.
|
# ? May 10, 2022 19:46 |
|
first things first! is everything secure? no? well, secure it. but don't spend a lot of money
|
# ? May 10, 2022 19:47 |
|
i would start with reading this thread and previous incarnations, trying to understand some of the secfucks and articles linked after you do all that, and still want to work in infosec then godspeed disclaimer i dont work in infosec and seriously wouldnt want to i feel
|
# ? May 10, 2022 19:53 |
|
you guys *snort* I just told the intern to go to the CEO and tell him he has to use MFA from now on
|
# ? May 10, 2022 19:54 |
|
|
# ? Mar 29, 2024 10:28 |
|
brb going to the best buy to get some rng fluid
|
# ? May 10, 2022 20:12 |