Notices by :abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site), page 109
-
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 23:03:43 EDT 
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@sir 172.93.5.45 is available IPv4 on my side. i'll set up an alpine container there in a bit. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 23:02:10 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@sir what should the peertube instance be called? -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 23:00:53 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals
and, really, that is just a pro tip in general that has come up multiple times in my life.
for example, when developing cracks or attempting to reverse "encrypted" software. most people try to defeat the encryption.
case in point: i was doing a security audit on Plesk many years ago.
if you're not familiar, Plesk is encrypted with a custom PHP interpreter.
somebody on my team was trying to brute force the encryption. but, this isn't how you do it in most cases.
so, what I did was I wrote an LD_PRELOAD module that hooked the PHP interpreter and called abort(), causing the interpreter to dump it's core. i then ran strings against the coredump, and voila: PHP source was present in the dump. i then wrote scripts to automatically run every single PHP file through the interpreter with the modified LD_PRELOAD, yielding fully decrypted Plesk source code.
so, I really can't stress this enough, if you're doing security, it's important to be mindful of what the security context boundaries actually are and how you can manipulate them. and i think this is why a lot of tech people are bad at security -- they play by the rules and assume everyone else does too. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:54:30 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir
i have to be careful about what i write about sometimes, which is why i don't really write about my wacky experiences writing code for startups.
what i will say is that 99% of AdTech is bullshit security products that can be defeated within a few minutes because they run code in security contexts you control -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:51:59 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir
these guys were basically doing exotic traffic arbitrage deals (buy traffic from porn site, trick Google into believing it was from a legitimate site) and affiliate marketing
i interacted with quite a few malware authors too, who were trying to either scam these guys or wanted to sell traffic to these guys
like i said, it was a fascinating experience, but i wouldn't want to do anything like it ever again. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:49:02 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir
but there were several CNN articles on the antics they pulled. they basically invented the whole "fake news in popunder" thing. i just wrote their backend for them because they gave me lots of money to write their code and look the other way.
it was a fascinating experience, but i don't think i would ever want to do anything like it ever again. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:46:35 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir i rather not associate myself with those guys, so no :) -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:44:18 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir
okay basically the background is this
1. get involved in managing the servers for a bullshit AdTech + PornTech startup
2. startup goes bankrupt
3. stuck with colo bill and tons of infrastructure because they were the collateral to keep me involved in the project
i'm personally broke as shit from all of that, but i have some nice equipment -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:41:50 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir
not too expensive, but that's only because i've found ways to offset the expense. the only reason it is still running in present form is because i am stuck in the contracts for the foreseeable future. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:38:45 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sir
i operate my own ASN. multiple 10G links to transit providers and IXes. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:36:32 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@sir @DashEquals if you want, i'll set up a peertube. i have like 8TB free still on my main machine. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:34:23 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sean @Gargron can you have meaningful interactions with that user though? -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:32:44 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sean @Gargron
to be clear, there's multiple AP networks, too. Funkwhale, for example, is off doing it's own thing. -
Bunnybot 🐇 (bunposting@botsin.space)'s status on Sunday, 30-Jun-2019 22:05:08 EDT 
Bunnybot 🐇
RT @rabbit_isle_bot@twitter.com https://twitter.com/rabbit_isle_bot/status/1145496921252888576
-
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:30:57 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@sean @DashEquals @Gargron
to be clear, nobody should adopt Matrix protocol for anything... it's designed and implemented by people who don't know what they are doing -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:29:55 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@sean @DashEquals @Gargron hmm? DenSchub, Emmaly and all the rest have written an open spec for current diaspora protocol, actually. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:27:01 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sean @Gargron no. diaspora is part of the fediverse already because it talks to hubzilla and friendica. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:26:16 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @Gargron @sean
i'm just taking a breather from the diaspora module to work on litepub and specifically OCAP stuff right now. -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:25:14 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @Gargron @sean
diaspora interoperates with some software (soon including Pleroma btw) -
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy: (kaniini@pleroma.site)'s status on Sunday, 30-Jun-2019 22:21:23 EDT
:abunhdhappyhop: :abunhdhappy: :abunhdhop: :abunhd: :abunhdhappyhop: :abunhdhappy:
@DashEquals @sean @Gargron @yang
why would anyone include matrix in the fediverse?
All Jonkman Microblog content and data are available under the