Notices by ../kajer/. (kajer@infosec.exchange)

@gsuberland

fun times with https://www.man7.org/linux/man-pages/man3/inet.3.html

169.254.169.254 can also be -

2852039166
0xA9FEA9FE
a9.fe.a9.fe
or
251.376.251.376

just incase someone tried to be clever and prohibit queries about 169.254 addresses

@ryanc @nyanbinary

nope, the seething rage told me what defcon closing ceremony had the 0day count

@ryanc @nyanbinary kajer does not forget 0-day countz

@nyanbinary

soon: CVE-something: setting clock ahead in bios results in TPM malfunction and unbootable PCs.

PoC code == NTP server using UDP/123 with clock set in 3012

@ryanc @nyanbinary

957 0-days found!!!!

@SecureOwl Give the flock system time....

The cameras themselves do no image processing other than cropping. I had root on a camera I got from ebay, and found the sqlite DB that contained all the metadata... and it's basically single frame clips of what the YOLOv3_tiny model decided were interesting. No OCR / text / any processing happens there, it's all queued for upload to AWS.

So... in a month or two, you might get a hit when the humans have to manually classify objects.

@ryanc for a house firewall, I prefer to not spend a lifetime re-learning iptables

I would like a GUI, but everything opnsource has gone to fuck in the last 4 years

oh, you have a redundant gateway? Let's round robin that shit so ever other session goes over cellular? YEAH

DNS? how about no.....

where is Unbound resolving against? 127.0.0.1

yeah, that makes sense,,, then who was phone?

i HAVE 4 instances... and DNS still fails to resolve a few times out of thousands...

do the logs tell me anything? NO, they are oopsiewhoopsie at best

fucking OPNsense...

want to throw a WG tunnel in the mix... well, that just fucks with the routing table/.. and of course the WG tunnels don't show up as gateways...

and if you want to greate a far gateway, it has to be bound to an interface,,, and WG interfaces DONT show up in the list

wonderful

If I want a reliable / stable opnsense setup with redundancy, and WG tunnels... I'll need 4 instances of that shit

oh, you set GW priorities? OKAy

well, since your cellular WAN is renewing DHCP every few minutes, let's resatart unbound every time and fuck some shit up

@ryanc ntp

@ryanc my second guess is, upstream dns tampering, which you would detect and thus ignore, so no queries were valid, resulting on no host records.

@ryanc cloudflare

can't wait to see the systemd.birthdated fuckery

@ryanc @ilmari

WCGW selling custom faceplates for unfused mains voltage?!

@ryanc @ilmari

yorkav.co.uk

blank http website

facebook page

doubt they still do stuff. /shrug

@ryanc @ilmari

Daddy Bezos has you covered -

https://www.amazon.co.uk/totally_legit_product/dp/B08CNMYTX2

@ryanc @ilmari

NZ has an IEC lock version too

https://rackpower.co.nz/product/10a-c13-iec-lock-outlet-on-white-flush-wall-plate/