GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 09-Jul-2024 16:26:23 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:

    Update on that exploit I really hoped wouldn't work: It did.

    Also, the impact is actually slightly worse than I originally thought.

    Waiting on vendor response.

    In conversation about 4 months ago from infosec.exchange permalink
    • Embed this notice
      傻逼 :thisisfine: (aagot@infosec.exchange)'s status on Tuesday, 09-Jul-2024 16:34:51 JST 傻逼 :thisisfine: 傻逼 :thisisfine:
      in reply to

      @ryanc I submitted to a vendor once and they never replied and the vuln is still there, 5 years later

      In conversation about 4 months ago permalink
      Ryan Castellucci :nonbinary_flag: repeated this.
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 09-Jul-2024 16:53:25 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • 傻逼 :thisisfine:

      @aagot I've just gotten a reply from the vendor expressing an appropriate level of "oh shit". They'll fix it.

      In conversation about 4 months ago permalink
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 09-Jul-2024 18:31:25 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • 傻逼 :thisisfine:

      @aagot I actually have a pwnie award I accepted on behalf of a vendor I dealt with who was awarded "worst vendor response". They fucked up so badly that they won it again the following year.

      In conversation about 4 months ago permalink
    • Embed this notice
      傻逼 :thisisfine: (aagot@infosec.exchange)'s status on Tuesday, 09-Jul-2024 18:40:51 JST 傻逼 :thisisfine: 傻逼 :thisisfine:
      in reply to

      @ryanc oh wow. Considering how bad some vendors are and then them winning twice... That is kinda impressive

      In conversation about 4 months ago permalink
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 09-Jul-2024 18:46:19 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • 傻逼 :thisisfine:

      @aagot John McAfee was involved...

      In conversation about 4 months ago permalink
    • Embed this notice
      傻逼 :thisisfine: (aagot@infosec.exchange)'s status on Tuesday, 09-Jul-2024 19:39:16 JST 傻逼 :thisisfine: 傻逼 :thisisfine:
      in reply to

      @ryanc I don't know if I should laugh or cry

      In conversation about 4 months ago permalink
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 09-Jul-2024 19:49:50 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • 傻逼 :thisisfine:

      @aagot Yes.

      In conversation about 4 months ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.