Paco Hope @paco@infosec.exchange

OK. Time to vent. I was checking out a MUD toolkit (Evennia, anyone know others?). I went to their demo instance. I am using TELNET. T.E.L.N.E.T! Typing a password in the clear, echoed back to my terminal over an unencrypted connection. And you want to tell me my password is not strong enough!? I'm dead.

Green text, meet red text. Red text, meet green text. Now that you guys are acquainted, would you like to go off, have a little chat, and come back to me with a USEFUL error message?

This is a fascinating C2 vector. But I gotta admit: it's hard to take it seriously with this diagram. https://news.sophos.com/en-us/2020/02/25/cloud-snooper-attack-bypasses-firewall-security-measures/

Not mine. But absolutely appropriate for this forum. :) #infosec

Strange event on my house WiFi. A new station joins (associations goes up by 1. Someone opened a macbook air's lid) then all WiFi traffic goes to 0 (sev1 ticket: "daaaaad! The WiFi is broken!") Not sure what the deal is. OpenWRT is usually pretty robust, but this is not the first time I've seen this behaviour, but it's the first time I've captured it in the graph and gotten some data.

Am I doing this right? #security

How crap are my RJ45 crimping skills? Here's speedtest.net with a store-bought cable, and with a paco-made cable. The better results are on the store-bought cable.

I see a WiFi that I SO want to mess with....

#passwords are like #underwear is a terrible metaphor. :)

I just spent the day in Dundee, Scotland at #Securitay2019. If you are looking for the best #infosec talent coming out of UK universities, this is the con to go to. They’re such great kids, incredibly clever, and the conference is a great time. https://securi-tay.co.uk/

After the con I always pull out a box of cigars and we have “cigar-itay”.

What’s the difference between Fyre Festival and Brexit?

I'm running a pi-hole in the house now to block ads and trackers. It's absurdly easy to setup and very effective. Plus the stats are so interesting to see all the ads blocked. The best thing is that because it works at the DNS level, it affects things like TVs, mobile apps, game consoles, and other embedded devices. https://pi-hole.net/

So... I accidentally left a DNS recursive resolver open to the Internet for a day or two. Someone noticed.

Here's how my #Monday is starting. How's yours?

This is not a joke. This was an actual progress bar on a web site I use. Microsoft has nothing on these folks. :)

If you're in #infosec and you're in Europe, the Middle East, or Africa, there's a great award to recognise an outstanding contributor: the ISLA (Information Security Leadership Award). Nominations close in 2 weeks: https://www.abstractscorecard.com/cfp/submit/login.asp?EventKey=ZVLLTVYZ

I disable location services most of the time and disable background app execution all the time. Is it any wonder why?

Someone actually modified our internal ticketing system to offer the option of seeing random cats or dogs instead of staff members' employee photos. It's awesome.

I have to admit, once I got #kibana and #elk running in my #aws account, I just had to Log All The Things. Got some great ability to analyse #CloudTrail out of it.

Despite my #mikrotik router being annoying, I managed to get #elastiflow running on #FreeBSD in #AWS looking at my on-prem network. https://github.com/robcowart/elastiflow