The thread that the title comes from is from a Twitter user that later stated about the issue: "And YES: I LOVE hyping the sh1t out of this stuff because apparently sensationalism is the only language that forces these…
Disabling the firewall for testing is simple enough. If things work after turning off the firewall, then this is your problem.
It's easily reproducible with a fresh macOS install. Yes, ESET has its own issue. But this is a problem in and of itself. https://imgur.com/a/Nr7Gk6c
See: https://waclaw.blog/macos-firewall-blocking-web-browsing-aft... If disabling the firewall (for testing) solves this problem, this is likely your issue.
Sequoia also breaks an application's ability to use DNS (or presumably anything UDP-based) if the macOS firewall is enabled, and an app is listed as "Block incoming connections".…
So... two of the routers affected by the recent VPNFilter malware? Interesting choice.
No mention of ASLR. Helping to prevent memory corruption bugs apparently isn't on their radar?
If you're on BSD, that'll kill dd.
What version of IE is that dialog from? 6? Things have changed quite a bit since then. Yes, SSL inspection is a security tradeoff. Whether the folks rolling it out realize this is another story.
Even done in the best way possible, SSL inspection puts end users at increased risk. In the real world, vendors make mistakes, which put them at even higher risk.…
"It desperately wants to just upgrade whenever it wants." Do you think that it's better that operating systems get security updates or that they get left alone? "Copy and paste is still a bit frustrating." You really…
Or just turn off the web features. It's quite trivial to do so. http://www.howtogeek.com/224344/how-to-disable-spotlights-we...
It's the FreeBSD folks that didn't bother. Not you.
We all know that exploit mitigations aren't perfect. But to not even bother using them... that's just ridiculous. There are plenty of scenarios where ASLR helps prevent exploitation. And the fact that FreeBSD doesn't…
I've heard the opposite. Although it's comparing to OpenBSD in this case, here's a good graphic that shows the exploit mitigations that FreeBSD provides by default:…
How's FreeBSD doing in the exploit mitigation department? Last I checked, they didn't even have ASLR. http://networkfilter.blogspot.com/2014/12/security-openbsd-v...
You have to block outbound communication for "Search" in the Windows firewall. Regardless of whatever privacy settings you may have set.
If you have a proven technique for making Windows 10 not phone home, post the details here.
Did you install the CA certificate from whatever software you're using to MITM your machine?
At least for Android: https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w... There are several banking-related apps listed here.
What do you mean "apps like this" ? The OP is talking about the Windows 10 OS, which uses the OS CA store.
It's pretty simple if the OS you're using allows you to install a trusted root CA certificate.
Is it really necessary to use a host that requires JavaScript to display an image? Anyway, I've confirmed this. I've disabled web search and all of the other privacy options I've seen with Windows 10 during and after…
He did use a JPEG...
See also: Idiocracy https://www.youtube.com/watch?v=hL1-340ODCM
The thread that the title comes from is from a Twitter user that later stated about the issue: "And YES: I LOVE hyping the sh1t out of this stuff because apparently sensationalism is the only language that forces these…
Disabling the firewall for testing is simple enough. If things work after turning off the firewall, then this is your problem.
It's easily reproducible with a fresh macOS install. Yes, ESET has its own issue. But this is a problem in and of itself. https://imgur.com/a/Nr7Gk6c
See: https://waclaw.blog/macos-firewall-blocking-web-browsing-aft... If disabling the firewall (for testing) solves this problem, this is likely your issue.
Sequoia also breaks an application's ability to use DNS (or presumably anything UDP-based) if the macOS firewall is enabled, and an app is listed as "Block incoming connections".…
So... two of the routers affected by the recent VPNFilter malware? Interesting choice.
No mention of ASLR. Helping to prevent memory corruption bugs apparently isn't on their radar?
If you're on BSD, that'll kill dd.
What version of IE is that dialog from? 6? Things have changed quite a bit since then. Yes, SSL inspection is a security tradeoff. Whether the folks rolling it out realize this is another story.
Even done in the best way possible, SSL inspection puts end users at increased risk. In the real world, vendors make mistakes, which put them at even higher risk.…
"It desperately wants to just upgrade whenever it wants." Do you think that it's better that operating systems get security updates or that they get left alone? "Copy and paste is still a bit frustrating." You really…
Or just turn off the web features. It's quite trivial to do so. http://www.howtogeek.com/224344/how-to-disable-spotlights-we...
It's the FreeBSD folks that didn't bother. Not you.
We all know that exploit mitigations aren't perfect. But to not even bother using them... that's just ridiculous. There are plenty of scenarios where ASLR helps prevent exploitation. And the fact that FreeBSD doesn't…
I've heard the opposite. Although it's comparing to OpenBSD in this case, here's a good graphic that shows the exploit mitigations that FreeBSD provides by default:…
How's FreeBSD doing in the exploit mitigation department? Last I checked, they didn't even have ASLR. http://networkfilter.blogspot.com/2014/12/security-openbsd-v...
You have to block outbound communication for "Search" in the Windows firewall. Regardless of whatever privacy settings you may have set.
If you have a proven technique for making Windows 10 not phone home, post the details here.
Did you install the CA certificate from whatever software you're using to MITM your machine?
At least for Android: https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w... There are several banking-related apps listed here.
What do you mean "apps like this" ? The OP is talking about the Windows 10 OS, which uses the OS CA store.
It's pretty simple if the OS you're using allows you to install a trusted root CA certificate.
Is it really necessary to use a host that requires JavaScript to display an image? Anyway, I've confirmed this. I've disabled web search and all of the other privacy options I've seen with Windows 10 during and after…
He did use a JPEG...
See also: Idiocracy https://www.youtube.com/watch?v=hL1-340ODCM