There are actually several (published and non-published) ways to exploit that type of configuration, here is one example: https://samy.pl/slipstream/
Seems to be listed on the site: https://devgarden.macalester.edu/projects/1
There is only a single "archive" that does not allow access to Cloudflare DNS users - not many. It is also exceedingly unlikely that you have greater density of anycast PoPs than Cloudflare's 200+. In your case, you…
What you're claiming is false. Cloudflare has over 200 PoPs; in your own name servers, you can use the Cloudflare Resolver's IP (which will be a "close to the user" IP, not 1.1.1.1) to do geotargeting and serve from…
What’s not reasonable about TiDB?
For hosting, I’d suggest to look at hosting providers rather than VPN providers. Here’s one: https://freerangecloud.com/cart.php?gid=11 Cloudflare’s Argo Tunnel is another great option.
> As long as a third party central authority controls our money system, we will always be subject to the whims of the few. Bitcoin is helping to liberate us and it’s absolutely working. A bold claim without evidence. In…
SARS had escaped no less than 4 times from Chinese labs[1]. It’s not implausible at all that coronaviruses have a history of escaping Chinese labs. Meanwhile, this[2] is a terrible source but some of the info can easily…
There is no question that it was a real problem, details available in the linked post: https://objective-see.com/blog/blog_0x56.html The only question is different interpretations of “fake”: it is a real system…
Clinton: https://en.wikipedia.org/wiki/Strategic_National_Stockpile Republican ideology is abhorrent; one doesn’t have to be part of the Democratic Party to recognize that.…
Google is great at security. Privacy, ... not so great.
That article is incredibly misleading in what it leaves out: by using same logic, our existing CA system is equally a “backdoor”. We have certificate transparency to help address that, and were DANE to be in actual use…
He owns the rights to the pictures he takes. No purchase necessary. Especially in the context of wildlife, there are no human subjects to cloud the issue.
Your [18] is a 404. Would like to hear more on your allegation regarding DANE.
Great post, I especially appreciated the extra detail on generating the gifs for the post at the end. Thank you.
There is no need for such facetious argument. Your post is strikingly similar to a modern “let them eat cake”. What does your idea of economic theory suggest for the masses living paycheck to paycheck due to ever…
Yes, absolutely. https://news.ycombinator.com/item?id=21992491
One of the core, fundamental concepts in Computer Science is composition. We are all standing on the shoulders of giants, building on the work of those who came before us. Therefore, to the greatest extent possible, our…
https://sci-hub.se/downloads/2019-12-06/f645/10.1038@s41370-... > “ Our study was conducted at one U.S. university, which may limit generalizability.“
Please respond to the actual contents of my post, and not a strawman version of it. I’m saying what I said, nothing more. > Software absolutely can and does lead to unintended outcomes, else there would be no bugs.…
> "unintentional" is a straight up lie based on how software works This is a very dangerous statement to make. Large systems are not like hackathon projects where you might understand and hold the entire scope and flow…
s/g\//g#/ assets/example.png#LEHV6nWB2yk8pyoJadR*.7kCMdnj assets/example.jpg#LEHV6nWB2yk8pyoJadR*.7kCMdnj No need to send the extra data to the server for each request.
For (2), you may find the section 'Other useful autocomplete values' from this article helpful: https://www.twilio.com/blog/html-attributes-two-factor-authe... Discussed on HN:…
In that recommendation, they provide clear and easy to follow instructions for doing the checksum verification manually before applying the update. > Compare both checksums and, if matching, proceed with installing the…
Requiring the attacker to be active to view traffic, rather than passive (broadcasting it openly) is a very real security improvement.
There are actually several (published and non-published) ways to exploit that type of configuration, here is one example: https://samy.pl/slipstream/
Seems to be listed on the site: https://devgarden.macalester.edu/projects/1
There is only a single "archive" that does not allow access to Cloudflare DNS users - not many. It is also exceedingly unlikely that you have greater density of anycast PoPs than Cloudflare's 200+. In your case, you…
What you're claiming is false. Cloudflare has over 200 PoPs; in your own name servers, you can use the Cloudflare Resolver's IP (which will be a "close to the user" IP, not 1.1.1.1) to do geotargeting and serve from…
What’s not reasonable about TiDB?
For hosting, I’d suggest to look at hosting providers rather than VPN providers. Here’s one: https://freerangecloud.com/cart.php?gid=11 Cloudflare’s Argo Tunnel is another great option.
> As long as a third party central authority controls our money system, we will always be subject to the whims of the few. Bitcoin is helping to liberate us and it’s absolutely working. A bold claim without evidence. In…
SARS had escaped no less than 4 times from Chinese labs[1]. It’s not implausible at all that coronaviruses have a history of escaping Chinese labs. Meanwhile, this[2] is a terrible source but some of the info can easily…
There is no question that it was a real problem, details available in the linked post: https://objective-see.com/blog/blog_0x56.html The only question is different interpretations of “fake”: it is a real system…
Clinton: https://en.wikipedia.org/wiki/Strategic_National_Stockpile Republican ideology is abhorrent; one doesn’t have to be part of the Democratic Party to recognize that.…
Google is great at security. Privacy, ... not so great.
That article is incredibly misleading in what it leaves out: by using same logic, our existing CA system is equally a “backdoor”. We have certificate transparency to help address that, and were DANE to be in actual use…
He owns the rights to the pictures he takes. No purchase necessary. Especially in the context of wildlife, there are no human subjects to cloud the issue.
Your [18] is a 404. Would like to hear more on your allegation regarding DANE.
Great post, I especially appreciated the extra detail on generating the gifs for the post at the end. Thank you.
There is no need for such facetious argument. Your post is strikingly similar to a modern “let them eat cake”. What does your idea of economic theory suggest for the masses living paycheck to paycheck due to ever…
Yes, absolutely. https://news.ycombinator.com/item?id=21992491
One of the core, fundamental concepts in Computer Science is composition. We are all standing on the shoulders of giants, building on the work of those who came before us. Therefore, to the greatest extent possible, our…
https://sci-hub.se/downloads/2019-12-06/f645/10.1038@s41370-... > “ Our study was conducted at one U.S. university, which may limit generalizability.“
Please respond to the actual contents of my post, and not a strawman version of it. I’m saying what I said, nothing more. > Software absolutely can and does lead to unintended outcomes, else there would be no bugs.…
> "unintentional" is a straight up lie based on how software works This is a very dangerous statement to make. Large systems are not like hackathon projects where you might understand and hold the entire scope and flow…
s/g\//g#/ assets/example.png#LEHV6nWB2yk8pyoJadR*.7kCMdnj assets/example.jpg#LEHV6nWB2yk8pyoJadR*.7kCMdnj No need to send the extra data to the server for each request.
For (2), you may find the section 'Other useful autocomplete values' from this article helpful: https://www.twilio.com/blog/html-attributes-two-factor-authe... Discussed on HN:…
In that recommendation, they provide clear and easy to follow instructions for doing the checksum verification manually before applying the update. > Compare both checksums and, if matching, proceed with installing the…
Requiring the attacker to be active to view traffic, rather than passive (broadcasting it openly) is a very real security improvement.