Notices by kajer (kajer@infosec.exchange), page 2

@mkljczk @feld @elfin Fully agree, but the browser print should not be a factor in a place like cloudflare blocking traffic because it "might be a bot"

@feld @elfin
this seems like the thread I remember... https://news.ycombinator.com/item?id=31317886

They "fix" it then block everything a week later anyway...

@feld @elfin

IIRC WaterFox, PaleMoon, and some others just don't support some of the "features" that cloudflare was using to fingerprint. There was a HackerNews thread on it a while ago.

Cloudflare just went "oopsiewhoopsie" and basically said to pound sand since nobody uses those browsers anyway. (heavy paraphrasing, and witnessing their actions)

@elfin Lol, the press release even has a big quote from the article interrupting it's own article.... useless.

Fucking AI and ADs... Just... no.

But, because cloudflare blocks waterfox as a bot browser... what are you going to do about it consumer? That's right nothing. 🖕

@ryanc You want me to send a care package? Or at least stock up for the next time (if) you come back to the states?

@ryanc if you don't patch cable, then how do you justify NOT buying these?!

https://www.monoprice.com/product?p_id=44504

@ryanc idontgetit.avi

@ryanc @catsalad lol I thought the same thing!!!

@ryanc @reijomancer

drake meme:

no: tuned transmitter
yes: spark gap

@ryanc I can think of a few legit uses for a signal like this, since my atomic clocks get signal at ~2am only.

On the otherhand... a time based "CTF challenge" seems neat.

@ryanc Simple explanation is Aruba Central is a PoS thanks to HPE.

ROFL Aruba Central.

Me: goes to old office suite to remove Aruba AP635
Me: unplugs AP
Aruba Central Slack Alert: Hey! That AP you just removed, yeah, it reconnected! Good to go! :thumbsup_hmn_h2:

(there was no alert about it being disconnected)

me looking at unplugged AP: [confused noises]

@cR0w There is a reason we used MACSEC on "darkfiber." We setup IPSEC over AWS direct connects. IPSEC over MPLS links.

These are all non-public network links, and the fintech I worked for took no chances with anything "in the clear."

Presented without context.

@ryanc <3

I was unsuccessful in getting a different OS on the existing motherboard.

PXEboot results in continuous beeping just after trying to get the pxelinux.0 file

Booting FreeBSD11 results in a partial load of the kernel until something beeps and the boot hangs.

Booting various i386 linux is the same, something causes a short beep and the boot process hangs.

I swapped the X6 motherboard with a X11, but with the ASIC installed, the MB won't post.

cool, cool... not in the rockyou.txt I have

Time to fire up my CMIYC cluster... my laptop 940MX won't be up to the abuse I have planned.

put everything back, but with a video card installed. Managed to stop GRUB in an attempt to get single user mode.

Grub has a MD5crypt password (hashcat -m 500)

yay

I can either change it on disk, or... CRACK IT

If I do manage to boot a vanilla RHEL, I might be able to pillage some device /asic drivers out of the rpm library I found in the disk I mounted.

I dug in to the OS a little bit last night after doing hardware stuff. The OS is based on RHEL but can't quite tell which version.

I am thinking I clone the HDD back to another disk, but inject a root password in to the shadow file so I can login to the underlying OS before PanOS takes over getty.