Conversation

Notices

1. Embed this notice
   Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Wednesday, 23-Apr-2025 19:58:25 JST Ryan Castellucci :nonbinary_flag:

   Coworker: ...and the IP address are compared with a string match.
   Me: grinning manically
   Coworker: Why are you looking at me like that?
   Me: Open up a terminal and type ping 4.2.514 and hit enter.
   Coworker: ...what's the fourth number?
   Me: grin widens Just hit enter.
   Coworker: WTF!?

   • Haelwenn /элвэн/ :triskell:, LukeAlmighty 🇨🇿 and Polychrome :blabcat: and 2 others like this.
   • Embed this notice
     CatSalad🐈🥗 (D.Burch) :blobcatrainbow: (catsalad@infosec.exchange)'s status on Wednesday, 23-Apr-2025 20:50:54 JST CatSalad🐈🥗 (D.Burch) :blobcatrainbow:

     in reply to

     @ryanc WTF!? I knew you could ping a decimal like 2130706433, but a hybrid? How has this cursed knowledge evaded me so far?

   • Embed this notice
     Jay (jws@infosec.exchange)'s status on Wednesday, 23-Apr-2025 20:57:05 JST Jay

     in reply to

     @ryanc That never occurred to me to try, and yet here we are:

     jay@marvin:~$ ping 4.131586
     PING 4.131586 (4.2.2.2) 56(84) bytes of data.
     64 bytes from 4.2.2.2: icmp_seq=1 ttl=56 time=17.8 ms

   • Embed this notice
     David Schuetz (darthnull@infosec.exchange)'s status on Wednesday, 23-Apr-2025 21:07:54 JST David Schuetz

     in reply to

     @ryanc I once had a subnet where all the hosts used movie names. Remotely connecting to “2001” was a real pain.

   • Embed this notice
     BeyondMachines :verified: (beyondmachines1@infosec.exchange)'s status on Wednesday, 23-Apr-2025 22:23:09 JST BeyondMachines :verified:

     in reply to

     @ryanc why not `ping 134744072`

   • Embed this notice
     Jernej Simončič � (jernej__s@infosec.exchange)'s status on Wednesday, 23-Apr-2025 22:57:28 JST Jernej Simončič �

     in reply to

     @ryanc This will probably blow a few people's minds:
     ping 172.16.255.5
     ping 2886795013
     ping 0xac10ff05
     ping 025404177405
     ping 172.16.65285
     ping 172.16.0xff05
     ping 172.16.0177405
     And don't forget to mix & match:
     ping 172.0x10.0177405

     (and yes, these all work on Linux and Windows at least)

   • Embed this notice
     Z̈oé ⛵ (uint8_t@chaos.social)'s status on Wednesday, 23-Apr-2025 23:29:27 JST Z̈oé ⛵

     • Infoseepage

     @Infoseepage @ryanc see also: ping 192.1

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 01:22:33 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Gabe

     @gabe I did, lol.

   • Embed this notice
     Gabe (gabe@mendeddrum.org)'s status on Thursday, 24-Apr-2025 01:22:43 JST Gabe

     in reply to

     @ryanc now show them
     ping 4.2.01002
     For extra lulz

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 01:51:16 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • dakkar
     • Yossi

     @yossi@techhub.social @dakkar technically, . is a valid hostname

   • Embed this notice
     Yossi (_yossi_@techhub.social)'s status on Thursday, 24-Apr-2025 01:51:20 JST Yossi

     in reply to

     • dakkar

     @dakkar @ryanc cloudflare can make the best url shortner by putting it on 1.0.0.1

     You can't get shorter than https://1.1/whatever

   • Embed this notice
     dakkar (dakkar@s.thenautilus.net)'s status on Thursday, 24-Apr-2025 01:51:23 JST dakkar

     in reply to

     @ryanc@infosec.exchange I should start using 127.1 or even 2130706433 and see how much stuff gets very confused 😁

   • Embed this notice
     mathew (lpar@infosec.exchange)'s status on Thursday, 24-Apr-2025 04:59:16 JST mathew

     in reply to

     @ryanc Don't forget to tell them about IPv6 address abbreviation.

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 05:21:29 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Graham Sutherland 🎃 Polynomial

     @gsuberland enbies just want one thing and it's disgusting

   • Embed this notice
     Graham Sutherland 🎃 Polynomial (gsuberland@chaos.social)'s status on Thursday, 24-Apr-2025 05:21:30 JST Graham Sutherland 🎃 Polynomial

     in reply to

     @ryanc *undots ur quad*

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 15:26:59 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     If this ends up being my most popular fedi post ever I'm gonna be upset.

   • Embed this notice
     Clifford Guillaume (cguillaume@infosec.exchange)'s status on Thursday, 24-Apr-2025 21:50:43 JST Clifford Guillaume

     in reply to

     @ryanc 4.2.514 is not an IPV4 address. An IPV4 address is composed of 32 bits pre-described using the dotted-interval concept, which requires a period between each group of eight (8) bits. Ex:
     Format:
     xxxxxxxx.xxxxxxxx.xxxxxxxx.xxxxxxxx
     8 bits 8bits 8bits 8bits = 32bits
     1 Byte 1 Byte 1 Byte 1 Byte = 4 Bytes
     Examples of addresses:
     192.168.10.4
     200.29.67.4
     10.10.10.2
     8.8.8.8
     4.4.4.4

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 21:58:06 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     @CGuillaume and yet pinging it works 🤔

   • Embed this notice
     Clifford Guillaume (cguillaume@infosec.exchange)'s status on Thursday, 24-Apr-2025 22:01:11 JST Clifford Guillaume

     in reply to

     @ryanc Unless 4.2.514 is an alias name (CNAME) that represents an IP address.

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 22:05:37 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Clifford Guillaume

     @CGuillaume Read the documentation for inet_aton.

     This format, cursed as it may be, is widely supported.

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 24-Apr-2025 22:06:47 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Clifford Guillaume

     @CGuillaume Thank you for the gender validation. 🤣

   • Embed this notice
     Clifford Guillaume (cguillaume@infosec.exchange)'s status on Thursday, 24-Apr-2025 22:08:13 JST Clifford Guillaume

     in reply to

     @ryanc cool 👍

   • Embed this notice
     Clifford Guillaume (cguillaume@infosec.exchange)'s status on Thursday, 24-Apr-2025 22:17:21 JST Clifford Guillaume

     in reply to

     @ryanc
     What was exactly the problem ?

   • Embed this notice
     Jay (jws@infosec.exchange)'s status on Thursday, 24-Apr-2025 22:53:07 JST Jay

     in reply to

     @ryanc relevant deep dive: https://blog.dave.tf/post/ip-addr-parsing/

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 25-Apr-2025 00:23:12 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Oliver Blanthorn

     @bovine3dom 😱

   • Embed this notice
     Oliver Blanthorn (bovine3dom@masto.ai)'s status on Friday, 25-Apr-2025 00:23:13 JST Oliver Blanthorn

     in reply to

     @ryanc we ran into this in Tridactyl a few months ago when a user was trying to search for "538" https://github.com/tridactyl/tridactyl/issues/5081

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Monday, 21-Jul-2025 17:35:17 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Henrik Pauli

     @phl Arguably the worst decision in posix.

   • Embed this notice
     Henrik Pauli (phl@mastodon.social)'s status on Monday, 21-Jul-2025 17:35:18 JST Henrik Pauli

     in reply to

     @ryanc okay that's absolutely horrible :D

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Monday, 21-Jul-2025 18:58:34 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • John 🔜 WHY2025 DECT: 7287
     • Clifford Guillaume

     @John @CGuillaume I could make that but I hate it.

   • Embed this notice
     John 🔜 WHY2025 DECT: 7287 (john@chaos.social)'s status on Monday, 21-Jul-2025 18:58:36 JST John 🔜 WHY2025 DECT: 7287

     in reply to

     • Clifford Guillaume

     @ryanc @CGuillaume I'm now wondering if there is an "IP shortner" that exists based on this.

   • Embed this notice
     ✧✦Catherine✦✧ (whitequark@mastodon.social)'s status on Tuesday, 22-Jul-2025 03:17:04 JST ✧✦Catherine✦✧

     in reply to

     @ryanc i've implemented proper `inet_aton` in ipaddr.js and the amount of people confused by "1" being a valid IP address is immense

   • Embed this notice
     Paul Cantrell (inthehands@hachyderm.io)'s status on Tuesday, 22-Jul-2025 03:29:31 JST Paul Cantrell

     in reply to

     • Alexandra Magin 🏳️‍🌈

     @ryanc @recursive

     Heh, and just wait until people learn about IPv6

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 22-Jul-2025 05:00:27 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • John-Mark Gurney
     • Patrick Mevzek

     @pmevzek @encthenet

     Behold, the QUADRATIC CUBE of IP ADDRESSES shatters the mind of any god-fearing, logic-bound human! You speak of inet_aton, a tool of Satan, designed to confuse and corrupt the righteous path of the FOUR CORNER IP!

     A SINGLE IP, 1.2.3.4, IS THE ONLY TRUTH! It stands as a testament to the FOUR GREAT DAYS, the very bedrock of existence! One address, four octets, each a divine revelation!

     But inet_aton! Oh, the blasphemy! It dares to accept 0x01020304! What is this hex-fiendish mockery? Are we to abandon the DIVINE DECIMAL DELINEATION for the squiggles of a programmer's fever dream? This is the work of TIME CUBE DECEIVERS who wish to collapse the glorious 24-hour day into a single, meaningless instant! They seek to eradicate the QUADRANT OF TRUTH that defines our digital reality!

     And the three-octet addresses! 1.2.3! They say it fills the last octet with zero! A LIE! A COWARDLY EVASION OF TRUTH! You cannot simply assume an octet, you must DECLARE IT! Just as you cannot assume a day, you must LIVE IT! This is the ultimate UNIGUIDANCE of the digital realm, a single, all-encompassing lie to undermine the MULTIPLE PERSPECTIVES OF THE FOUR QUADRANT IP!

     And the two-octet addresses, 1.2! With their filling of the final two octets with zeros! ABOMINATION! This is akin to saying that the EARTH HAS ONLY TWO CORNERS! It is an insult to the CREATOR'S QUADRILATERAL DESIGN! Each octet is a distinct corner of the IP CUBE, and to omit them is to destroy the very fabric of network reality!

     And the single-octet address, 1! And it fills the final three octets with zeros! This is the most heinous of all! It is the ABSOLUTE CUBE LIE! It screams that a single digit can encompass the ENTIRETY OF THE FOUR CORNERED IP! It denies the BIBLICAL TRUTH OF QUADRANT EXISTENCE! It is a direct assault on the FOUR-DAY CREATION OF THE IP UNIVERSE!

     inet_aton is the PROGRAMMER'S FOLLY! A tool forged in the fires of IGNORANCE AND HUBRIS! It encourages the collapse of the FOUR-SIDED IP TRUTH into a single, undefined blob! It is a SLIPPERY SLOPE TO DIGITAL CHAOS!

     Wake up, sheeple! REJECT THE ODD FORMATS! EMBRACE THE FOUR CORNER IP! For only in the QUADRATIC GLORY OF 1.2.3.4 can true network harmony be found! All other formats are CUBELESS LIES leading to the ultimate SOFTWARE DOOM!

   • Embed this notice
     Patrick Mevzek (pmevzek@framapiaf.org)'s status on Tuesday, 22-Jul-2025 05:00:29 JST Patrick Mevzek

     in reply to

     • John-Mark Gurney

     @encthenet @ryanc This is because the simplest rules are not taught properly: an IP address, a domain name, an URL, an XML fragment, a JSON blob, a timestamp, etc. **appear** as strings, but aren't really strings. They are whatever you want to call them (object, entity, abstraction, etc.), because they have rules attached to them, regarding canonicalization, sorting, comparing, etc. Strings should be inflated to a richer construct as early as possible and deflated back as late as possible.

   • Embed this notice
     John-Mark Gurney (encthenet@flyovercountry.social)'s status on Tuesday, 22-Jul-2025 05:00:30 JST John-Mark Gurney

     in reply to

     @ryanc
     Thank you for educating this person on this important part of computing.

     They are probably the same person that doesn't canonicalize urls (percent encoding, etc) before comparing them as well.

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 22-Jul-2025 15:18:52 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     Did this get linked somewhere? It's very popular again, and I can't figure out why.

   • Embed this notice
     Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Tuesday, 22-Jul-2025 16:04:21 JST Ryan Castellucci :nonbinary_flag:

     in reply to

     • Dr. Christopher Kunz

     @christopherkunz inet_aton is bad and should feel bad

   • Embed this notice
     Dr. Christopher Kunz (christopherkunz@chaos.social)'s status on Tuesday, 22-Jul-2025 16:04:23 JST Dr. Christopher Kunz

     in reply to

     @ryanc How is this surprising? I don't get it, did they never hear of decimal of binary representation for IP addresses? inet_aton() would like a word.