Posts by mathaetaes@infosec.exchange
(DIR) Post #AlgcTY0NelBdJMQFUG by mathaetaes@infosec.exchange
2024-09-05T07:39:21Z
0 likes, 0 repeats
@foone this sounds exactly like my experience when I had Kaiser.Everything was totally great right up until you actually got sick or needs care, then it took an act of Congress to get anything done.No exaggeration, my elderly next door neighbor had a sore in her leg that got infected. 3 trips to Kaiser, no antibiotics. She collapses in the living room and is taken by ambulance to the nearest ER (not Kaiser). The doc there sees her leg is practically gangrenous. Her insurance refuses coverage and says she needs to be transported to the nearest Kaiser ER.The ER doc, knowing how shitty Kaiser is, tells them her condition isn’t safe for transport. Only then do they approve treatment.A course of IV antibiotics later and she’s good to go.She nearly lost her leg, all because Kaiser wanted to say $80 on a course of broad spectrum antibiotics. I hope that other ER charged the hell out of Kaiser for it. F those guys.
(DIR) Post #Alx2NUhGkYI0ePcGMC by mathaetaes@infosec.exchange
2024-09-13T05:44:45Z
0 likes, 0 repeats
@foone this has happened to me with an Amazon package. I reported it to Amazon, and they no kidding sent the driver to the original delivery house to get my thing and deliver it to me in the same day.
(DIR) Post #AtWL8fGynp7ZsFapSS by mathaetaes@infosec.exchange
2025-04-27T15:35:51Z
0 likes, 0 repeats
@futurebird this would require our elected officials to have some sense of their own limitations and the ability to self-reflect… and be willing to admit in public that they could benefit from such things.Maybe I’m just cynical, but i don’t see any of those traits in our representatives, and the political landscape is such that I don’t see us electing anyone with those traits any time soon.
(DIR) Post #AtjsiVuN1jML4Fzjto by mathaetaes@infosec.exchange
2025-05-04T04:22:56Z
0 likes, 0 repeats
@foone just sticking a different QR code on top of the existing would be much easier.
(DIR) Post #Atp5H5mwInQbQyZcFU by mathaetaes@infosec.exchange
2025-05-06T15:20:47Z
0 likes, 0 repeats
@0xabad1dea by that logic, I’m a master craftsman. The number of projects that made it to 80% before I got distracted or ran out of time are too numerous to count.
(DIR) Post #AuINCSXnZlWfy74VA8 by mathaetaes@infosec.exchange
2025-05-20T19:09:03Z
0 likes, 0 repeats
@nemo Pretty sure this has already been fixed.
(DIR) Post #AuINCTpYnDKNxUOCUC by mathaetaes@infosec.exchange
2025-05-20T19:12:49Z
0 likes, 1 repeats
@nemo I mean... it was pretty wide open, so who knows if it was ever actually exploited and what the consequences of that would be... but I thought I saw @GossiTheDog post sometime yesterday that he tested it and confirmed it no longer leaks data.
(DIR) Post #Autzkgw6HzD3e0YF6W by mathaetaes@infosec.exchange
2025-06-07T00:02:03Z
0 likes, 0 repeats
@FinchHaven @ai6yr @uccawx It's definitely going to churn up some amazing surf for SoCal. Know how I know? Because I've got a trip for the second half of the month. My travel schedule is *always* a predictor of good surf in SoCal. It hits every time I leave town. :(
(DIR) Post #AvTQYhUlumPeOJQ4TA by mathaetaes@infosec.exchange
2025-06-15T03:28:12Z
1 likes, 0 repeats
@AkaSci I'd believe there were 10k people in DC today. I'm sure there were plenty of tourists who were going to do whatever they had previously planned to do, military parade or not.According to the census bureau, the daytime population of DC exceeds 1M people. 10k people at the mall is very believable.Whether they were actually there for the parade, or just waiting for the damn thing to be done with so the police barricades would come down and they could get to where they wanted to go - hard to say, but I'd wager most fall into that category.
(DIR) Post #AvtXEtLNOIwWttq8nI by mathaetaes@infosec.exchange
2025-07-07T15:39:10Z
0 likes, 0 repeats
@abucci I don't know where you live, but in the US the relevant consumer protection laws for credit vs debit vary pretty dramatically. You're far more protected using a credit card than a debit card for purchases. With debit card fraud, they can drain your account of money you actually have; with credit, they're just borrowing money in your name - you haven't lost anything until you actually make a credit card payment. Furthermore, the maximum liability for credit fraud is $50; the maximum for debit fraud can be the total amount stolen, depending on when you report it.I suspect your bank has their fraud settings tuned so high because debit card fraud can be catastrophic. If someone fraudulently uses your debit card fraudulently and drains your account, you may start bouncing checks, lose your ability to buy food or pay rent/mortgage, etc. Those things carry fees, fines, and long-lasting consequences that, even after the fraudulent money is returned (which can take a long time), you'll still have to deal with. It's especially risky for people who have limited funds - a few bounced check or late fees can be the difference between staying afloat and sinking into an inescapable debt cycle. Additionally, if you fail to notice a fraudulent transaction for more than 60 days on a debit card, you lose any legal protection; that money is gone unless your bank decides out of the goodness of its heart to reimburse you. I don't know any banks that would do that.I highly doubt they have per-customer tuning of their system-wide fraud monitoring software. Furthermore, the new hotness (as of a few years ago anyway) in scams is subscription services, where you make a purchase but the vendor signs you up for recurring subscription, and makes impossible to cancel. I don't pretend to know the inner workings of fraud detection algorithms, but it seems reasonable that recurring subscriptions to niche things could trigger this. Without knowing your details, it's hard to guess why they're flagging, and it'd all be speculation anyway, but it's possible that the vendor you're subscribing to has been flagged as fraudulent by other customers - maybe they used dark patterns and tricked people into subscriptions, like many US Republican organizations were doing in the run-up to the 2024 elections. Maybe they make it difficult to unsubscribe, so customers report it as fraud to get the charges to stop. Maybe the payment processor has actually been fraudulently charging customers (it's not uncommon for small businesses to get compromised and have their systems used for fraud-adjacent activities like validating stolen card numbers).At the end of the day it seems like being moderately annoyed by false positives is a better outcome than being financially ruined by a false negative; your bank is probably tuning their software with that in mind. Even if you're in a financial situation where fraud won't affect you, they likely have customers who aren't so lucky.If it's a source of that much frustration for you, you always have the option of switching banks, or switching your subscriptions to a different payment method. I highly doubt you'll have much luck getting them to re-tune their entire system just to avoid the inconvenience of a fraud alert, especially in the context of debit card transactions.
(DIR) Post #Aw8GzvjWJ7pBTsoUCm by mathaetaes@infosec.exchange
2025-07-14T18:32:41Z
0 likes, 0 repeats
@futurebird I 100% agree.The same people who insist gender is based on body parts and is instilled at birth, and are so noisy and offended when someone challenges this assertion, also insist on strong, rigidly-defined gendered roles. I strongly believe (a belief reinforced by conversations with the few enby relations I have - by no means enough to generalize across the community, but enough to shape my perspective) that weaker social gender roles may allow people to be who they are without feeling the need to abandon the label. A trans cousin of mine told me straight up that he's not sure if he felt uncomfortable in his body growing up because the parts were wrong, or because of the expectations those parts imposed. He wanted to play sports and be rough, and was attracted to women. Everyone expected him to wear dresses and play with dolls and be attracted to men. So he switched.In other words - if you have a problem with people constantly trying to break out of your box, maybe don't make the box so small and constrictive. I sincerely wonder what an alternate timeline would look like if this social construct had been abandoned back when it became irrelevant, rather than dragged along as vestigial dead weight.
(DIR) Post #AwfLVOOyHSx9vvcmTw by mathaetaes@infosec.exchange
2025-07-30T17:28:42Z
0 likes, 0 repeats
@Nonilex When fascists come to town and start asking people to help them make lists, it's a pretty good idea to opt out for as long as you can....
(DIR) Post #AyQDsIMBRXSAfrDQsy by mathaetaes@infosec.exchange
2025-09-21T06:06:42Z
0 likes, 0 repeats
@futurebird the thing that always gets me with this kind of thing is Matthew 24:36: “But of that day and hour no one knows, not even the angels of heaven, but My Father only.”Like, it straight up says you can’t know it’s coming. The fact that a bunch of people claim to know it’s on a specific day could arguably be a guarantee that it won’t happen on that day.But there’s a lot of stuff in that book. You can’t expect anyone to read and remember *all* of it.
(DIR) Post #AywaXAJbTAU94PFPFY by mathaetaes@infosec.exchange
2025-10-06T16:47:03Z
0 likes, 0 repeats
@ai6yr Many (probably most) people who visit Everest do so via tour companies - effectively, they're outsourcing their expertise to "pros." It's realistically the only sane way to do it - there's no environment on earth quite like it, so unless you live there you really have no way to be properly experienced to travel there.I see a bunch of comments here that look like they're blaming the hikers for being ill-prepared. It's really not their fault - This is undoubtedly far more to blame on the tour company these folks used than the people themselves. When you travel somewhere foreign, you rely on local pros who know the area to give you good advice... typically through a tour company. The only really dumb decision would be to go out there without one, or to ignore the advice that the local professionals give you.If a bunch of Chinese tourists came out here and their bus got caught in the Donner pass in a blizzard, or the booked a tour to Joshua Tree and they all got heat stroke, or they went sailing and got caught in a storm with inadequate life vests, that's the fault of the tour company, not the people who came in paying local experts and trusting them to properly advise and outfit them.
(DIR) Post #Aywc22R8uXopZD3jPc by mathaetaes@infosec.exchange
2025-10-06T21:08:12Z
0 likes, 0 repeats
@tomjennings @ai6yr A quick google search shows that at least one of these tour companies advertises it that way, and even requires a previous, less strenuous trip with them: https://www.rmiguides.com/himalaya/everest/fitnessIt's reasonable to assume that most of the people who were up there were physically prepared for what they thought they were going to do. You don't drop 5 figures without doing some research. A pop-up winter storm - one that locals didn't predict either - wasn't on their radar. On a strenuous hike with packs up to 60 lbs, you don't want to lug around unnecessary gear. In their shoes, I'd defer to the tour company's gear recommendations and/or any gear that was provided to me, just like I did my first time scuba diving, on various rainforest hikes, or on safari. Like, I didn't show up at Mala Mala with a rain coat and umbrella 'just in case.' Long sleeve, breathable, light was what they recommended, so that's what we brought. If we were caught in a totally unexpected rain storm, I'd have had problems, but that wouldn't be on me.
(DIR) Post #AywmWfxrVlieOBbxMu by mathaetaes@infosec.exchange
2025-10-06T22:35:20Z
0 likes, 0 repeats
Any chance anyone has got experience dealing with 4-pin CB push-to-talk handsets? I got my hands on a really cheap one (looks like it might be this https://www.amazon.com/dp/B0BVKJDS8V), and want to adapt the 4-pin to something my kid can use to play train conductor (honestly, just finding the male end would be useful - kid would be stoked to just plug it into the little train I made him from old diaper boxes), or maybe re-wire it for XLR and make a really crappy sounding microphone for situations that warrant really crappy sounding microphones... then I could run it through FX racks and into a PA - kid would love that. Push-to-talk makes an added bonus.If you do, do you recognize that connector and know where I can find adapters for it? I assume it's got audio in and out, plus a common ground. Not sure what the fourth wire would be - the switch maybe? I was hoping to switch it to 2 mono 3.5mm TS connectors to make it easier to plug the in and out into things that accept them individually.Any resources you can point me to would be appreciated... and if you don't, that's fine too.Specifically tagging @ai6yr because I know you do this kind of stuff.#hamradio #electronics #radioshack
(DIR) Post #AzO0DE8vN7L7E5K8e0 by mathaetaes@infosec.exchange
2025-10-20T02:11:37Z
0 likes, 0 repeats
@foone so o get that this is a project and I don’t mean to discourage you, because it’s awesome, but for the followers who want to 3D print without all this headache: buy a Bambu labs printer and make your printer a tool instead of a hobby.
(DIR) Post #AzitfSz7GGPf8VZDg8 by mathaetaes@infosec.exchange
2025-10-29T19:42:50Z
0 likes, 0 repeats
@MLE_online @ai6yr What does that do for weather satellites? Do we lose GOES in that case? That could be problematic...
(DIR) Post #B19sKi7L4IMnrCzz6W by mathaetaes@infosec.exchange
2025-12-12T02:24:35Z
0 likes, 0 repeats
@foone I didn’t know you could have more than one solid in an STL.
(DIR) Post #B1RaCeYcO33idbng80 by mathaetaes@infosec.exchange
2025-12-19T23:53:08Z
0 likes, 0 repeats
Who here has opinions about buying a pre-made "System recovery" USB from a no-name company on Amazon?I just ordered one (for free - Amazon Vine), but now that I have I need a good way to see if it's actually legit or if it's teaming with malware.I do a lot of application and network service pentesting and vulnerability discovery, but testing USB is new to me. Can anyone recommend a good guide on assessing the security of USB? I'm treating this thing as if it's a random thumb drive found in a parking lot... but I don't have an existing detonation box and last time I built one, UEFI rootkits were purely theoretical.#infosec #hacking #pentesting #bugbounty https://www.amazon.com/dp/B0FXY26MLV