Welcome to the aforementioned slinky and sultry Web 2.0 crap.
Navigation
Tags
attrition: advisory errata archive vendor_fail news charlatan lazlo security_comp_fail going_postal rant box_of_shit movie_review book_review music_review contest buy_shit
twitter: technical_difficulties unsolicited_updates foursquare wefollow musings imdb dmfail
hobbies: critter_of_the_day squirrel guinea_pig stalking
related: osf datalossdb conference osvdb
type: quote screenshot photo video tweet audio question chat link
Links
Tools
Posts tagged "chat"
-
@JosephKBlack: My closest Advisor is a Wizard, after that it's a furry Squirrel! ;0 ~Joe Black@attritionorg: As a furry squirrel, I advise you to seek a competent psychiatrist. Quickly.Notes: 2 / 7 months ago
-
@postmodern_mod3: osvdb.org doesn't support SSL. #irony@OSVDB: Login is over SSL, the public data we maintain is not.@postmodern_mod3: Ah ha. The link to login should probably be https.@attritionorg: Did you notice http://postmodern.github.com/ isn't HTTPS? Maybe complain to them first...@postmodern_mod3: You never submit credentials to postmodern.github.com. Also, why are you replying? @osvdb made their point, issue closed.@attritionorg: saying OSVDB should be 100% HTTPS and running a site that isn't is #hypocrisy@attritionorg: because OSVDB uses HTTPS for creds, no reason to use it for the rest of the site. You wasted 15 mins of their lives.@postmodern_mod3: To clarify, I said 100% https would be "ideal". http is fine for a static site.@postmodern_mod3: I guess your right. Someone on the internet was wrong.@jcran: am i wrong in thinking i could grab a cookie over http & use that to change pass?@attritionorg: possibly. then what? you make changes to a database that require moderation to go live? annoyance at best it seems?@jcran: but yeah, annoyance at best, it seems #wikipediastillfuctions@jcran: yeah, i'm behind ssl only where it makes sense, but unless @osvdb reqs old pass to change pass, accounts can be comp'd@attritionorg: doesn't require an old pass to change, will open a ticket on that. overall, the mods consider HTTP for that site acceptable risk@jcran: thanks!@attritionorg: no thank you, hadn't noticed that or I would have ticketed it long ago (begin the mocking)@jcran: no worries, anyone effing w/ it gets the wrath of a thousand rabid squirrels anyway. #notadvisable@postmodern_mod3: sorry if I'm wasting more of your time, but could you allow https URLs for /show/osvdb/:id ? It redirects me back to http.@OSVDB: Can you provide a good reason for this? Again, that is part of the public database, nothing sensitive.@postmodern_mod3: Also, web.nvd.nist.gov seems to support https requests. So I would think OSVDB should too.@attritionorg: NVD has a lot of bad habits too, doesn't mean @OSVDB should follow them...@jkouns: maybe best to just use NVD then if it meets your needs =)8 months ago
-
[cupcake]: directory permission denied[jericho]: don't stop in asshatsNotes: 7 / 8 months ago
-
[cupcake]: i have standards you know[jericho]: obviously you don't, given your association with attrition.org8 months ago
-
@ioerror: Threat Post is embarrassing to read, what idiots. Aaron Barr is not "a respected authority on computer security" at all http://t.co/GpunVBl@attritionorg: do you think he is not a) respected b) an authority on compsec or c) both?@ioerror: c!@attritionorg: thanks for clarifying (it was an honest question)@ioerror: No problem, you're welcome. He belongs on your charlatan page.@attritionorg: if you (or anyone) can provide a compelling list of reasons, we'll look into it. "being an asshole" or "vaguely slimy" != count8 months ago
-
jake: you are like a bad reporter quoting me out of context!jericho: rub some dirt in it, walk it off8 months ago
-
jake: i'm just annoyed i thinkjericho: Enhance your calm Jake Kouns.jake: fuck the 3 seashells8 months ago
-
jake: true, but at BH panel many people in audiencejericho: 5x more snippy at BH. i want to upset them into caring8 months ago
-
lyger: SPEAKY DA ENGRISHjericho: eat a bowl of dicks grammar nazi9 months ago
-
D: Not sure if that's an alternate spellingjericho: i assure you, it's alternate spelling. check the New Scotch dictionary9 months ago
-
[jericho]: did you read lyger's article on wrestling?[cupcake]: infosec thinks it's a special snowflake industry[jericho]: BRB SQUIRREL9 months ago
-
@quine: Hanging in a hotel bar, drinking wine & watching SpongeBob. Damn it feels good to be a gangster. #foreveralone@attritionorg: ... you are a wine n00b. you drink RED with SpongeBob, duh?!9 months ago
-
@dinodaizovi: Evidence: @mdowd must cut himself while auditing code in order to feel something.@mdowd: Nah, all those scratches on my arm are courtesy of my cat. He sits next to me while I'm auditing - I feel like Dr Claw@attritionorg: Dowd reveals his auditing secret. Code scrolls.. cat scratches him.. he stops and finds a vuln.9 months ago
-
jkouns: there?jericho: nojkouns: cock9 months ago
-
Odd: I BOW BEFORE YOUR MAD FISTING SKILLZ!!!!Odd: (shit - disregard. hit tab once too many. oops.)9 months ago
