@erik @Sempf @tychotithonus I've forgotten more about HTTP than most people will ever know...
Notices by Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 05:47:27 JST Ryan Castellucci :nonbinary_flag: -
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 05:32:27 JST Ryan Castellucci :nonbinary_flag: @mmasnick.bsky.social skinner.gif
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 03:34:33 JST Ryan Castellucci :nonbinary_flag: @Sempf @tychotithonus do you need a hug?
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 03:33:57 JST Ryan Castellucci :nonbinary_flag: @tychotithonus @Sempf the cursed thing here is that the sending side is silently discarding it
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 02:06:09 JST Ryan Castellucci :nonbinary_flag: @tychotithonus @Sempf being less extreme, it's pretty safe to send a bounce if SPF and DKIM validate
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 02:05:17 JST Ryan Castellucci :nonbinary_flag: @tychotithonus @Sempf hold the connection while validating at the next hop
(this is a bit ideological)
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 02:03:36 JST Ryan Castellucci :nonbinary_flag: @tychotithonus @Sempf if they can't be bothered to decide whether they're going to accept it at that time 🖕
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 02:02:11 JST Ryan Castellucci :nonbinary_flag: @tychotithonus @Sempf rejection at smtp transaction time does not cause backscatter
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-Jan-2025 00:31:32 JST Ryan Castellucci :nonbinary_flag: @Sempf Yeah. So? Lots of domains bounce postmaster@
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 23:02:20 JST Ryan Castellucci :nonbinary_flag: @kevinbowrin I mean, there's fuckall I can do without convincing a government IT department to send me logs, which, 🤣
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 23:01:24 JST Ryan Castellucci :nonbinary_flag: Silently discarding email is an awful, awful thing to do.
Ideally, reject before accepting it, but if you can't do that, at least send a bloody bounce message.
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 22:57:20 JST Ryan Castellucci :nonbinary_flag: Somehow, yesterday I experienced a new form of email nonsense. Someone claimed they were replying to my emails, and able to send without apparent issue, except... my server logs show nothing.
I even checked the pcap ring buffer. Nary a SYN from their server IPs.
Wat!?
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 20:14:21 JST Ryan Castellucci :nonbinary_flag: @Irishmasms lolsob
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 17:47:54 JST Ryan Castellucci :nonbinary_flag: @paul_ipv6 their office chair has been replaced with cake, let's see if they notice
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 17:19:34 JST Ryan Castellucci :nonbinary_flag: Oh dear, I'm getting advance fee fraud spam to an email address I used exclusively for an event put on by Los Alamos National Laboratory (LANL).
LANL, as in where they built the first nuke (and the demon core thing happened), leaked email addresses to spammers.
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 09:54:16 JST Ryan Castellucci :nonbinary_flag: @HorayNarea the worst kind of correct
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 09:48:40 JST Ryan Castellucci :nonbinary_flag: @HorayNarea technically, nfts are a sort of nfs
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 09:45:18 JST Ryan Castellucci :nonbinary_flag: @sangster @johnallsopp I self host mine, but it is an exercise in masochism
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 09:29:13 JST Ryan Castellucci :nonbinary_flag: @acdha they already do, lol
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Friday, 17-Jan-2025 09:14:05 JST Ryan Castellucci :nonbinary_flag: @Yuki I've done that, it was fine because I didn't need to write anything