Cart Narcs

Yea that’s a tough system to design for. Ideally you want sensitive stuff like that, where you don’t care what the data is just that something matches it, stored as the results of a one-way hash function.

The problem is that most of the data you’re going to want to secure is pathetically tiny. 10 digit SSN? My phone can brute force that in a few minutes if you’re doing raw hashes. Gotta salt them. But now you have a tradeoff decision, salting every one uniquely is best but now your comparison needs to do [leaked data] × [customers] checks to find matches. Same salt on all of them and as soon as one is cracked they all are.

They were talking about Kennedys so you figure there’d be a few. I was not prepared.

Not to mention that ads are a prime vector for malware and spyware (well, more spyware on top of the ad vendor itself).

I thought NPR left Twitter when Musk had them labeled as “state controlled media”

I get that it’s not the point of the article or really an argument being made but this annoys me:

We could blame United or Delta that decided to run EDR software on a machine that was supposed to display flight details at a check-in counter. Sure, it makes sense to run EDR on a mission-critical machine, but on a dumb display of information?

I mean yea that’s like running EDR on your HVAC controllers. Oh no, what’s a hacker going to do, turn off the AC? Try asking Target about that one.

You’ve got displays showing live data and I haven’t seen an army of staff running USB drives to every TV when a flight gets delayed. Those displays have at least some connection into your network, and an unlocked door doesn’t care who it lets in. Sure you can firewall off those machines to only what they need, unless your firewall has a 0-day that lets them bypass it, or the system they pull data from does. Or maybe they just hijack all the displays to show porn for a laugh, or falsified gate and time info to chaos for the staff.

Security works in layers because, as clearly shown in this incident, individual systems and people are fallible. “It’s not like I need to secure this” is the attitude that leads to things like our joke of an IoT ecosystem. And to why things like CrowdStrike are even made in the first place.

So they’re just making “We have God of War at home” now. Everything they’ve put out about this game has made me more and more apprehensive. Guess I just have to accept that Origins was a one-hit wonder and they have no idea how or desire to recapture that.

A.k.a. a Michigan Left, one of those things like roundabouts that’s safer and more efficient but people get annoyed at.

You’ll have a whole 10 years before they grab you for the Near-Death Star

Ubiquiti’s Unifi and TP-Link’s Omada are certainly trying to edge in on Meraki from the Prosumer level (and not having to pay license fees to unlock hardware you already have is a plus). They both have local control hardware / software too if you don’t trust them with your data.

Fortinet was on my shortlist, along with OPNsense’s prebuilt hardware. Ended up just sticking with Mikrotik and getting 10Gb going for less than half the price though. Might be overkill but sure makes my media server and backups faster. Now if only Windows could actually saturate the link and not struggle to get 5Gb

I too would not be picky with a free $4,000 router, especially one that doesn’t lock fucking everything down without licensing (thanks Cisco).

TLD is just another DNS layer, try an SOA or NS lookup for “com.” those are obviously hosted somewhere. Hell the “.” at the end is even another layer with the root nameservers. You’d probably trip up a bunch of systems that filter on common convention rather than the actual RFC, but you could do it.