|
DHL allowed you to set a password on your account using a password the mobile app doesn't accept, because the mobile app applies different password rules to the login form. Yes, they apply password rules client-side on the form you log in. Feedback was nil so I had to find this out via trial&error…
|
# ¿ Jun 27, 2020 20:29 |
|
|
# ¿ Apr 26, 2024 06:01 |
|
That's why I use shadyurl.com for everything.
|
# ¿ Jun 28, 2020 16:42 |
|
Munkeymon posted:German Twitter I guess I loving wish.
|
# ¿ Jul 17, 2020 13:31 |
|
It's el reg, when they put "non-malicious" in scare quotes they mean "flesh-eating bacteria for your computer".
|
# ¿ Jul 23, 2020 13:57 |
|
I guess in IoT, sex toy fucks you. Guess that could be an embarassing emergency call, but fire fighters have the equipment to get it open and will be professional enough not to laugh in the face of people. Making all customer data accessible via public API is extremely though.
|
# ¿ Oct 7, 2020 13:16 |
|
In my country firefighters are always itching to try new toys, so I assume there's a small company headquartered in some remote village that is the world leader in tools required to extract sensitive body parts from sex toys, and our local firefighters bought one of those devices last year and have been waiting for an excuse to use it ever since. You call to get your dong extracted and a full fire engine with a dozen people arrives because everyone wants to see the new toy in action. They will be professional while there, but your story becomes the tale of the station for many years to come.
|
# ¿ Oct 7, 2020 13:45 |
|
fins posted:
What is this, the aftermath of an explosion in the GuiFactory?
|
# ¿ Oct 9, 2020 19:43 |
|
We still have expensive instruments that require rsh. Our solution was to put a bastion host in front that speaks ssh and only lets you in with a valid Kerberos ticket or ssh key… I don't think this is supported by the vendor, though.
|
# ¿ Oct 14, 2020 10:22 |
|
Trying to ^] on qwertz is not fun, by the way.
|
# ¿ Oct 15, 2020 09:53 |
|
flakeloaf posted:irvine, ca is ablaze but don't worry, the evac map is safe I hate ESRI so much. gently caress their software.
|
# ¿ Oct 29, 2020 12:40 |
|
IME, everything from the Gnome ecosystem is broken and only works by coincidence when paired with other Gnome components. Regarding gdm, from the wording of that security issue it would think there are no user accounts when getent user doesn't return any non-system accounts, right? That assumption is already wrong. There are auth mechanisms that won't allow you to enumerate users, like pure Kerberos or winbind/sssd with enumeration turned off. You'll only know that a user exists when their auth attempt goes through pam. I read that Ubuntu does Active Directory integration in their installer now, so that would be fun to test…
|
# ¿ Nov 11, 2020 09:38 |
|
Kesper North posted:if you're going to hassle the british/americans about domestic fittings at least do it about something sensible, like electric mains plug design or voltage Making fun of their wimpy electricity is fun and good, but also very pedestrian. Anglos losing their mind over German windows is hilarious however. That's a whole youtube category of people having a religious experience with tilting, opening, and closing windows. Like but with windows.
|
# ¿ Jun 27, 2021 10:56 |
|
The_Franz posted:in what way? I remember that video because it irked me as well! Nothing he threw at that machine would be a problem for my dishwasher at 40°C half-load setting. And I really doubt dishwashers in the USA are that much worse than the mid-range Siemens machine I have.
|
# ¿ Jun 29, 2021 08:11 |
|
https://blog.newsblur.com/2021/06/28/story-of-a-hacking/ "Footgun" aka "exposing MongoDB to the world", the extremely, hilariously well-known fact that MongoDB has no authentication and the devs of MongoDB really like listening to the world instead of binding to localhost like normal people. Also, docker. Maybe I'm showing my age here, but imho db servers shouldn't be on a network where this kind of thing immediately exposes them to the world…
|
# ¿ Jun 29, 2021 16:22 |
|
I truly can not comprehend the issue there. It seems to be hilariously over complicated for no good reason only to be less trustworthy and less efficient than everywhere else. Use paper ballots, vote on the weekend, let everyone who wants observe the count. You can get the whole thing done in an evening, it's secure and trivial to observe while being very hard to manipulate. Doesn't the US have jury duty? Use the same system for election duty until you get enough people to have a proper election.
|
# ¿ Jun 30, 2021 13:41 |
|
Lmao that literally everything BUT our actual print servers is affected.
|
# ¿ Jun 30, 2021 14:22 |
|
The CVE shows RCE on desktop SKUs and Windows needs the print spooler to run so you can print. And naturally it needs SYSTEM privileges. You couldn't possibly run a print server in an unprivileged fashion, that's technology that hasn't been invented yet. gently caress Windows, seriously.
|
# ¿ Jun 30, 2021 15:01 |
|
Really, I'm surprised Microsoft showed restraint here and isn't running in kernel mode like its web server and font renderer is.
|
# ¿ Jun 30, 2021 15:03 |
|
Methanar posted:lol what are you guys doing that you ever print anything srs answer: We have stuff like A0 plotters to print large, detailed maps in full colour. Those aren't affected of course since they behind print servers and nobody uses windows print servers unless they love restarting the print spooler every few hours.
|
# ¿ Jun 30, 2021 21:10 |
|
"PrintNightmare" is just normal Windows printing though
|
# ¿ Jul 2, 2021 09:49 |
|
SYSV Fanfic posted:Is there anything about printing on windows that isn't a nightmare? No, its terribleness is recursive. I wonder if anyone is going to clock that the ability of networked printers to push drivers onto client pcs via the PRINTER$ share is easy to abuse. The last time I played around with that feature I could get clients to install drivers with malformed signatures just by adding the printer, no elevation required, no prompt. At least I think MS disallows kernel-mode print drivers nowadays…
|
# ¿ Jul 3, 2021 12:12 |
|
"unclear where it comes from" says anime person unaware of the amazing skill of looking up the ssh key format?code:
|
# ¿ Jul 6, 2021 16:17 |
|
Moving the exploitable part into the kernel to make it faster would be extremely on brand for microsoft.
|
# ¿ Jul 7, 2021 22:09 |
|
Making your desktop security framework thing use js feels like taking a massive amount of piss tbh. I've written stuff for polkit and ugh
|
# ¿ Jul 20, 2021 20:35 |
|
Can confirm, Gentoo is the most zen.
|
# ¿ Jul 21, 2021 13:59 |
|
I built qtwebengine yesterday.
|
# ¿ Jul 21, 2021 20:56 |
|
Once upon a time during a business trip the galaxy brains I was travelling with decided to jump up and down in unison. At 01:00. In the elevator of the hostel we were staying at. I had ditched them hours before to enjoy the last light by hiking through the local vineyards so I wasn't trapped in an elevator in the middle of the night.
|
# ¿ Jul 28, 2021 09:45 |
|
Imagine they are down so badly that they have to bring up everything from scratch, but nobody knows the procedure and they have circular dependencies in services.
|
# ¿ Oct 4, 2021 21:09 |
|
Ultra Comedy Option: They are currently trying to get into their edge routers, but nobody can find the blue cable
|
# ¿ Oct 4, 2021 21:26 |
|
Well joke's on them, because even if they find the blue cable, the USB serial adapter is one of those crappy ones that can't get the timing right, and someone will have to run to the nearest computer store to find one of the non-poo poo ones.
|
# ¿ Oct 4, 2021 21:51 |
|
Makes sense to me. You don't want to give any indication when you've caught someone trying to fake ad impressions. That's better than youtube happily selling ad space nobody ever sees.
|
# ¿ Oct 6, 2021 21:24 |
|
ymgve posted:the anti-ASMR is some german dude with a very thick english accent reading slides I always cringe when I hear German accents, but also when it's an eastern European accent except when that person is angry. Angry eastern European English is pure and divine. No German can pull off angry English.
|
# ¿ Oct 7, 2021 15:34 |
|
That package has a more complicated dependency chain than my entire Gentoo workstation. Incredible.
|
# ¿ Nov 5, 2021 20:38 |
|
I have one Unifi AP that requires their dumb controller that is poo poo. Mongodb, lmao. I like the UFO, I just wish the software was less garbage.
|
# ¿ Dec 6, 2021 21:50 |
|
Huh. So, a real camera would be illegal (prison time illegal) to put in your child's bedroom in Germany (after a certain age that is), but now I wonder if a fake one would be as well. I have a hunch that it would be just as illegal. Hm.
|
# ¿ Dec 7, 2021 14:06 |
|
hellotoothpaste posted:thanks ubiquiti guy for helping me figure out wtf the APs with a U on them were that came with the house, lol. If they’re lites they’re going in the trash. The APs are fine, just don't let network devices communicate with the Internet. That's a general rule. I learned today that we have >9000 Unifi APs, lmao.
|
# ¿ Dec 9, 2021 11:33 |
|
Our 500 000 € electron microprobe is controlled by software running on windows 98
|
# ¿ Dec 17, 2021 08:22 |
|
Would anyone be surprised if that regex turned out to be a sneaky exploit in php 5.4?
|
# ¿ Dec 19, 2021 14:38 |
|
"Teledildonics" is still the funniest word of the decade.
|
# ¿ Dec 22, 2021 11:25 |
|
|
# ¿ Apr 26, 2024 06:01 |
|
rm -rf /* is more portable than rm -rf --no-preserve-root /
|
# ¿ Dec 23, 2021 12:21 |