biffbiffbiff :verified:  

Best ticket notes I've ever entered.
"Found that a switch located behind the server had been accidentally been unplugged during the discarding of an empty pizza box. Plugged switch back in and moved plug to ups which is less prone to pizza box related downtime."

0
biffbiffbiff :verified:  

Worth noting this was only vulnerable if you allowed for user's to change their own password which is off by default.

0
biffbiffbiff :verified:  

Patch your webmin webmin.com/security.html

1
biffbiffbiff :verified: boosted
hoenan the bimbarian :vf:  

is this the dumbest thing i made? possibly

1
biffbiffbiff :verified: boosted
m4iler the Wannabe APT  

@biffbiffbiff I know, but I worry that it'll become a permanent backdoor into my phone.

As long as they're watching my convos, I know they're doing it. I ASSUME they are watching, so that's a point for me. What I'm worried about is what they're doing OUTSIDE of the app.

0
biffbiffbiff :verified:  

Andddddddd I'm uninstalling WhatsApp.. schneier.com/blog/archives/201

1+
biffbiffbiff :verified:  

Fun fact. Friend of a friend owns a bar. Scott Stapp played a show last week. Manager called at last minute and said he required a "full sized wooden cross" in his dressing room and none of me was surprised.

0
biffbiffbiff :verified:  

Listen if we're going to elect people in USA based on meme potential...what is a better matchup than Trump vs Marianne Williamson?

0
biffbiffbiff :verified:  

I write a lot of documentation/wikis at work. Its fun, but also setting me up for future rage when someone asks me something that I know there is a wiki for... double edge sword.

0
biffbiffbiff :verified:  

TLDR;
Use 2fa and you're fine.
nakedsecurity.sophos.com/2019/

1
biffbiffbiff :verified:  

From birdsite. This is most entertaining thing Papa Roach has done since like 2001-2002

0
biffbiffbiff :verified:  

I wrote about this briefly. Require strong password of good length. Only reset if you think is breached. Use unique random passwords everywhere. Call your mom. Brush your teeth.
adventuresinit.net/books/guide

0
biffbiffbiff :verified:  

πŸ‘ requiring πŸ‘ users πŸ‘ to πŸ‘ change πŸ‘ passwords πŸ‘ all πŸ‘ the πŸ‘time πŸ‘ hurts πŸ‘ security πŸ‘ please πŸ‘stop πŸ‘ it.

1
biffbiffbiff :verified:  

me_irl

1+
biffbiffbiff :verified:  

When client gets ransomware via open rdp when you have 2x 2 month old tickets where you notified them that is was bad and they needed to let you turn it off.

0
biffbiffbiff :verified:  

Followup to toot earlier in the week, I've posted my baseline security audit we do for new client onboardings. Huge thanks to @troyhunt and @MGrafnetter for making this possible and making my job easier.

adventuresinit.net/books/guide

0
biffbiffbiff :verified: boosted
Necopinus  

No gods.
No masters.

No saviors.
No kings.

No fate but what we make.

1+
biffbiffbiff :verified:  

COMING OUT OF MY CAGE AND I'VE BEEN DOING JUST FINE

0
biffbiffbiff :verified:  

Heigh Ho Heigh Ho
its off to code I go
to fix your sec and find your holes
Heigh Ho

0
biffbiffbiff :verified:  

I haven't posted anything on my site in a while and figured it was time. Quick rundown of how to deploy your own VPN service for personal or family/friends use. ENJOY!

adventuresinit.net/books/guide

0
Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.

Resources

Developers

What is Mastodon?

infosec.exchange

More…