 |
Post AxoGyxKVvdUK1IJ0ls by [email protected] |
 |
More posts by [email protected] |
|
Post #Axo83IavuR7RXgyv56 by [email protected] |
|
0 likes, 4 repeats |
|
|
|
FYI - because of what I saw happening over on mastodon. Social and a few other… |
|
|
|
Post #Axo8NLbcQLEiflrWDo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry makes sense and seems best compromise of effective vs annoying.thanks fo… |
|
|
|
Post #Axo8ZxHSAxkyzgRSMK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry does this impact those of us who are using mobile apps? I don’t rememb… |
|
|
|
Post #Axo8dMd2O9OWTjAAnQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@winterknight1337 no, it shou;d only impact people who haven't accessed the… |
|
|
|
Post #Axo8ejKBUVor9rzoi8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry sweet. Thanks. |
|
|
|
Post #Axo8gdp6uofefxNBIW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@paul_ipv6 it shouldn't impact anyone that is a regular visitor here, but I… |
|
|
|
Post #Axo8gdvqVm3h0qWYnQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry seems like a good activity for a Friday |
|
|
|
Post #Axo8ge1s9MsZJXLNBo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@petrillic I did miss my opportunity to do this last friday... |
|
|
|
Post #Axo8kyO8OhvZcBow64 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry smart |
|
|
|
Post #Axo8kyUW0z21vyo22i by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry i know you probably also do not want anybody telling you 'how to do … |
|
|
|
Post #Axo8kybFbwQ4GrxPXc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Viss @jerry This is what I do with failed logins fairly successfully, but I co… |
|
|
|
Post #Axo8kymavlUeq3GTDs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry the idea is that you can derive heuristics from that volume of log data.… |
|
|
|
Post #Axo8x3mq9TjTpi8k5o by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry It really is a shame that 2SA isn't mandatory for Mastodon.I know it… |
|
|
|
Post #Axo90Jh9ShCu2Z23Gq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w @jerry for this circumstance, the right infrastructure is "just logg… |
|
|
|
Post #Axo90JnX4yJMMM19DU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Viss @jerry Gotta have the right tools in place though. Those greps, cuts, awk… |
|
|
|
Post #Axo96nXpOWbuM3lHY8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Viss @cR0w It's a good idea for a project. I'll have to see if there … |
|
|
|
Post #Axo96neD0niMfqkNUm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry @Viss @cR0w 👀 |
|
|
|
Post #Axo9En9siMAbTQNA5Q by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w @Viss @jerry If I can get fgrep / mgrep to process 240+GB in 48 seconds, … |
|
|
|
Post #Axo9MAWMFegrxTP44G by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w @Viss @jerry https://infosec.exchange/@kajer/114552704265408323found the … |
|
|
|
Post #Axo9UE7UkptTR9cGjQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@kajer @Viss @jerry :blobcatpopcorn: |
|
|
|
Post #AxoCjFXe3B6k3KhdI0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry does resetting the password also invalidate sessions? |
|
|
|
Post #AxoGyxKVvdUK1IJ0ls by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry does resetting the password also invalidate sessions? I mean whether Mas… |
|
|
|
Post #AxoGyxQBaY1cIsxXc0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@reynardsec it should not - I am not 100% sure how long sessions last, but it�… |
|
|
|
Post #AxoIrhGBTeiY3rwkuO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry @reynardsec The cookie timeout lasts a long time unless you clear your c… |
|
|
|
Post #AxoK7hW0Ocq7RMXfyS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry The cool thing is that because I am not a laggard, I do not not have to … |
|
|
|
Post #AxoNAETL8L6g62C69w by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@SpaceLifeForm it should not send you one, but to be clear, it’s going to tak… |
|
|
|
Post #AxoNAEZ0nFdyNcqd04 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry Slow is good in this case while the word gets out. |
|
|
|
Post #AxoOA7srjEP3cKeA9g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry “wtf why is my password reset…”*resets password again**logs in**re… |
|
|
|
Post #AxoOA7zFLVVVw7dG6K by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@vgr yeah, it’s a script that will take a few days to run. Touching 62000 acc… |
|
|
|
Post #AxoPQf6i4ZYHFFZTDk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry @alice Reasonable decision. Maybe automate that. |
|
|
|
Post #AxoPQfD5gqejZ2YZAO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@WTL @alice it’s definitely automated. No way I’m clicking that button 6300… |
|
|
|
Post #AxoPQfJTJ7lBspXf72 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry @alice 🤣 Oh, I meant you should automate it to do that any account th… |
|
|
|
Post #AxoPQfP8y2IUAQCBxA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@WTL @alice That is a good idea. I think I will do that. Should be easy to do. |
|
|
|
Post #AxoYvEVvtX2dKf1NFw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry @alice 🖖🏻 That’s my job: sit here and think. 🤣 |
|
|
|
Post #AxoYyzomTZYwuadDU0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry hindsight and all that |
|
|
|
Post #AxoZ2fQYELeepT35N2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry @cR0w dm me if you want pointers/intel/help |
|
|
|
Post #AxoZ8fBs1Wwnpf2c8O by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w @Viss @jerry +1 just give me root on the box, I'll sort this out. |
|
|
|
Post #AxoZDzYdj5F0RqESRM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Viss @jerry that'd probably be possible with new tool from https://roost.t… |
|
|
|
Post #AxoZbWp4DKIGHI8g6a by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@simonzerafa that would be nice. |
|
|
|
Post #AxoZcooon5d4NgdbpA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@winterknight1337 @jerry Because you check in frequently enough and did not let… |
|
|
|
Post #AxoZgS4BKCbqyUYYVc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry just checked and I've never once received a report of spam coming fr… |
|
|
|
Post #AxoZguIKNCYuWTOFRg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry oh, i understand. i was referring to the annoyance to you. |
|
|
|
Post #AxoZs2LMmsykfi7Pyi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@thisismissem @jerry ripgrep didnt exist in 2012 when i was doing that research… |
|
|
|
Post #AxoZx6MHHwHUZSxZzc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] Also .space, i assume? |
|
|
|
Post #AxoZx6T0stfWuM6xUW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@MsDropbear42 I’ll do .space some time later. .exchange has a LOT of unused a… |
|
|
|
Post #Axoa1pPxhUK7Tjw9ui by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry Who are you? |
|
|
|
Post #Axoa3Zy477m68miv44 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry Don't sweat it; "wtf dude" is more of a permanent state of… |
|
|
|
Post #Axog5VA1YbH1XHcJoO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@LoseFriendsandAlienatePeople @jerry the man, the legend, the owner of infosec.… |
|
|
|
Post #Axogxz6yPtyw42Aa2a by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry I thought my account was hacked 😂 |
|
|
|
Post #AxoihdMfhe73tOqM5o by [email protected] |
|
0 likes, 0 repeats |
|
|
|
4000 account passwords changed, 58000 to go 💩 |
|
|
|
Post #AxoihdUpDKdQIgernk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry as a reminder you are changing them all to welcome1, yes? |
|
|
|
Post #AxoimgvvrVIUPOkR0a by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry sorry, Welcome1 |
|
|
|
Post #Axoimh1xV67Mi5ZFOy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@SecureOwl I opted for something that is compliant with all password complexity… |
|
|
|
Post #AxoirxTXmnt3A2yseu by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry yeah that makes sense |
|
|
|
Post #AxoitB4KjQsXbrloum by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry @WTL @alice So long as it's not accounts with 2FA. If I knock my hea… |
|
|
|
Post #Axoj7IGImjMVyN6EYC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry Was wondering who was trying to get into my account and who was able to … |
|
|
|
Post #Axoj7bBgQ7xOfY5JUO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry come on, Summer2025! Gotta use time as entropy you know... |
|
|
|
Post #AxojCHT5AEBgxUSIs4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry @SecureOwl i feel seen |
|
|
|
Post #AxojJ1o7mvO6PnW0hc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Shello my apologies for the confusion |
|
|
|
Post #AxojQil6UjOdeYlpia by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry lol, no problem. It got me to log into the app for the first time since … |
|
|
|
Post #AxokkNyzY5qqxnCumm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry You said elsewhere that this is automated, but 7hrs for 4k is super slow… |
|
|
|
Post #AxokkO5NAMxJHaC0jQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@dvandal it’s a shell script iterating through a text file running the tootct… |
|
|
|
Post #Axoktwdu3OKh46twkC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry ahhhh okay I understand now.Well. God speed and hope you didn’t have p… |
|
|
|
Post #AxokvB6vkMi4E94CXY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Shello I was hoping the resets wouldn’t send an email and bother people, sin… |
|
|
|
Post #Axol9wfzhDQznrVcjA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@dvandal given the response from the first 6%, I’m going to do something diff… |
|
|
|
Post #AxoqZzKmw5GRLYpNnU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry If a coffee in the early morning doesn't wake you up, try a "fu… |
|
|
|
Post #Axovc7pko0ea3c9MnI by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry uff, I thought someone guessed the password that my iPhone randomly chos… |
|
|
|
Post #Axow4sha90XnWb2W6C by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@LoseFriendsandAlienatePeople I often ask myself that same question. |
|
|
|
Post #AxowA7GXQL1M8pt0ZE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry that's what I said the first time my kid showed me cookie clicker.@W… |
|
|
|
Post #AxowA7Ogw1XiY7hWHA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@alice @jerry @WTL my hand just hurts thinking of the idea of clicking 63k time… |
|
|
|
Post #AxoxCgsY5OwF7vSO4O by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry @Viss @cR0w if you have the time and are willing to spend it on such a p… |
|
|
|
Post #Axp1IsxQUT9k8swoi0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry I would be tempted to rethink that strategy 😅 maybe a notification to… |
|
|
|
Post #Axp9PM51vQo1pr6HBI by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Thank you @jerry |
|
|
|
Post #Axp9QwUG3DDR2Teo6q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @jerry We've already have been discussing that and I suggested… |
|
|
|
Post #Axp9qyq1vpdrrOFz7o by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @jerry He already did that notification on this instance.It is not… |
|
|
|
Post #AxpIPTpvzBp1TmAptI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry @ShelloCan't you access the database directly?Update users set passw… |
|
|
|
Post #AxpeicGZ4EeM7I9y2S by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry @SecureOwl I think I got to double digits at one job, after incrementing… |
|
|
|
Post #AxpfxF6ZYucOa71ZZI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w @Viss @jerry DuckDB or ClickHouse ftw in these situations (even raw logs). |
|
|
|
Post #AxpfxFEj4b8kzOq5HE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@hrbrmstr @Viss @jerry Dammit, boB, you're going to convince me to try it o… |
|
|
|
Post #AxqB2YZvgVkb0Klmc4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry wait until April 1st and falsely accuse the remainder of suspicious logi… |
|
|
|
Post #AxqB2r9gcJ32cRdaqW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerryI've always been partial to 'guest' myself @SecureOwl |
|
|
|
Post #AxqB32LR0xyvK4DdBY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerryOh thank god I feel safe now@SecureOwl |
|
|
|
Post #AxsJPURoOh8gnoL5Gq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Viss @jerry Not stupid. We did this at Dropbox. We mapped botnet ls and could … |
|
|
|
Post #AxsJnbqIYS1qggIFUm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jerry @Viss @cR0w The key insight is to find your login failure to success rat… |
|
|
|
Post #AxsL5P0d6iiK3IAqum by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@seanie @jerry see, thats cool. and im jealous. consider yourself lucky you did… |
|
|
|
Post #AxsL5P70izomN59wrQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Viss @jerry It was cool. We copied a bunch of stuff FB were doing with their T… |
