Posts by nuintari@infosec.exchange
 (DIR) Post #Abb5oekuC881MMFTsG by nuintari@infosec.exchange
       2023-11-08T12:55:58Z
       
       0 likes, 1 repeats
       
       Had a meeting with the NOC director, and one of the senior MSP guys.The MSP guy fully admitted, "no one understands the network in the datacenter, so if you think you can clean it up, PLEASE DO."it is basically this:WAN -> 6 (yes, fucking six) Routers -> LAN.No, none of them are configured as HA, they are have explicitly different roles (that could all be done on one router) And of course it has some little warts and other oddities hanging around off various devices, just to make this extra painful to look at.Four internal LAN networks, most routers exist in two of them, some in all four. Static routes galore, and loads of shit that does not work either by design or by neglect. No one knows.Oh, and this is in a 100% virtual environment.
       
 (DIR) Post #AbqePKnYvPntcw0Tcu by nuintari@infosec.exchange
       2023-11-15T18:23:24Z
       
       0 likes, 0 repeats
       
       Has anyone created a firefox fork with all the DoH code scopped out?
       
 (DIR) Post #AbqePk6CrEZW5zvDeq by nuintari@infosec.exchange
       2023-11-15T18:28:45Z
       
       0 likes, 0 repeats
       
       @Anniiii I don't trust that. Updates happen, settings get flipped. The Firefox devs have shown that they rabidly believe in DoH as much as I mistrust it. I want the capability skullfucked with an orbital railgun.
       
 (DIR) Post #AbqePlqKNF3hVKVZBY by nuintari@infosec.exchange
       2023-11-16T00:55:31Z
       
       1 likes, 0 repeats
       
       @jbaggs @Anniiii Yeah, I already maintain a losing battle against DoH.providers:443, which is entirely the point: undermine actual privacy in the name of bullshit privacy by being indistinguishable from legit traffic.I can't believe people fell for this shit. It's one of those things that sounds good on paper, it sounds good right until you actually think about it critically.
       
 (DIR) Post #Ac0KGBkp7uEPT5gciW by nuintari@infosec.exchange
       2023-11-20T17:00:28Z
       
       1 likes, 0 repeats
       
       Am I reading this correctly? The #PaleMoon fork of #Firefox refuses to implement #DNS over #HTTPSAnd a #FreeBSD port exists?!?!MY PRAYERS HAVE BEEN FUCKING ANSWERED!Fuck #DoH, and fuck every browser trying to make it the norm.
       
 (DIR) Post #Ac0TtYnEIltRnqf0zY by nuintari@infosec.exchange
       2023-11-20T18:57:34Z
       
       0 likes, 0 repeats
       
       @stefano I delivered four of those to coworkers the last time I was in the corporate office.
       
 (DIR) Post #Ac65YbSzvxvc3wQmaO by nuintari@infosec.exchange
       2023-11-23T11:53:07Z
       
       0 likes, 0 repeats
       
       @stefano You can run jails inside jails?
       
 (DIR) Post #Ac6FnlSa3oV8wR6VFY by nuintari@infosec.exchange
       2023-11-23T13:47:55Z
       
       0 likes, 0 repeats
       
       @stefano TIL
       
 (DIR) Post #AcEPhvVgKqsbBD5ZOS by nuintari@infosec.exchange
       2023-11-26T21:56:13Z
       
       0 likes, 1 repeats
       
       Alright, laptop back to normal. I love UNIX, all I have to do is reinstall the OS, copy /home back into place, install all the packages which is a one line command, and copy back some files in /etc and /usr/local/etc. Then I just reboot, and bam, all right back as all should be.Took about 30 minutes, most of which was waiting for network I/O.Now, on to testing a fresh install of #FreeBSD 14.0 on a desktop machine. So far, so good.
       
 (DIR) Post #AcEPhxeGNuvroP7S2y by nuintari@infosec.exchange
       2023-11-27T03:01:46Z
       
       0 likes, 0 repeats
       
       Minor use so far, but.....My webcam works, even with MS Teams.My Yubikey works in Iridium and Firefox browsers via U2F.A very odd issue I used to have is gone, its not worth explaining here, suffice to say, it is gone.Speakers on this laptop are still shit, but that is hardly FreeBSD's fault.wifi still sucks ass, but of course it does. My 801.11n USB dongle works FAR better than my internal AC device that uses the iwlwifi driver. But even its performance is pretty much shit.
       
 (DIR) Post #AcOA76TX32Lgk3fLZA by nuintari@infosec.exchange
       2023-12-02T05:01:10Z
       
       0 likes, 0 repeats
       
       Jesus, sometimes I manage to forget just how batshite nuts RMS is. Then I find something he said I'd never heard before.Dumpster fires can be fun, but RMS needs to just go away.
       
 (DIR) Post #AcTaaiuEoNF0vfk1tg by nuintari@infosec.exchange
       2023-12-04T19:58:45Z
       
       1 likes, 0 repeats
       
       Reading some truly, truly stupid takes on Amazon Web Services being a digital landlord that controls the entire internet.I mean, they are, they basically do, and they suck.But making datacenter assets a public resource? What are you, ducking retarded?People that want to self host are an edge case. I've been one my whole life. But I have never given AWS a fucking penny.Symmetric bandwidth from FTTH providers who don't care what you use the service for are the future you should be rooting for.Problem: we have to charge extra for static IPv4. Otherwise you get CGNAT'd.So, what I'm trying to say is, you want a free net? Stop holding onto IPv4!#IPv6
       
 (DIR) Post #AcbJi9FO1XtHIMVb6G by nuintari@infosec.exchange
       2023-12-08T12:45:28Z
       
       0 likes, 1 repeats
       
       Everyone is talking about Beeper, and how it enables iMessage on Android phones.Cool, cool.I have two problems.1) You HAVE to sign in with your Google account. I try really hard not to use my Google account for anything. Bad enough I need it for my phone because I refuse to pay $900 for an iPhone. But okay, fine.2) They tell you what it costs AFTER you have signed in. Yeah, its only $1.99/MRC, but still, slimy behavior. Cost should be stated up front, not after you already have me signed in with a third party.Huge red flag to me, if they'll pull that kind of shit, they'll pull other shit.So, uninstalled the app, removed them from my Google account. That is all you'll hear from me on the subject of Beeper.
       
 (DIR) Post #Acdo1Tbhw5M8sr0A5I by nuintari@infosec.exchange
       2023-12-09T18:12:13Z
       
       0 likes, 1 repeats
       
       Anyone know of a way to connect two sets of bluetooth headphones to an android device at the same time? Be nice if Kim and I could watch movies together during our flight.
       
 (DIR) Post #Ack1hhBwHglPWvAbYm by nuintari@infosec.exchange
       2023-12-12T18:17:52Z
       
       0 likes, 1 repeats
       
       nuintari's rules of networking 0x16:(e)SMTP sucks ass.But every other possible alternative either sucks more, or is a walled garden. Usually both.Email is one of the only carrier agnostic communications platform left, we must defend it until a fully featured alternative exists.1st Corollary:The same is true for SMS.
       
 (DIR) Post #AcqaSc6wfS7WGKSEKG by nuintari@infosec.exchange
       2023-12-15T22:16:04Z
       
       0 likes, 0 repeats
       
       @xkcd North Carolina, Middle Carolina, South Carolina.....
       
 (DIR) Post #Acu09TeH5SRWnTSXLM by nuintari@infosec.exchange
       2023-12-17T13:45:40Z
       
       1 likes, 0 repeats
       
       I seriously think that the day airlines started charging for your first checked bag, that was the day that flying got significantly more difficult.because now, everyone tries to bring the largest bag they can get away with into the seating area. The overhead bins had to be resized to accommodate this bullshit, and they still run out of space on every fucking flight. It creates a massive choke point for loading and unloading. Every single person waits until the row in front of them clears, and then stands up, gets their bag out of the overhead, usually very slowly, and then saunters on down the aisle.I pay the fucking $30, every time. Just to not have to deal with carrying a big bag through an airport.So naturally, waiting for people to get their bags down, when I am holding a laptop bag and have nothing else to claim, and could be walking off the plane right the fuck now if they had let me go by? Infuriates the fuck outta me. Not a big deal on flights where I am at my final, or have a huge connection.But like yesterday? When I had a crazy short connection, the inefficiencies of everyone managing their own luggage traps me on the plane needlessly.And then we get to how shitty airports have become, but I'm repeating myself from yesterday.I need to not fly for a while.problem: Needed in NC in four weeks.
       
 (DIR) Post #Acu2IMrbsla0Gi41UO by nuintari@infosec.exchange
       2023-12-17T14:00:29Z
       
       1 likes, 0 repeats
       
       People are so dumb.Boarding the plane, and this tiny AA woman was rolling bags down the Jetway for gate checking. She had NO voice, and kept asking people to move to the right, one by one as she tried to get by.She got to me, and I bellowed out, "Everybody, make a hole, move to your right!"Half the people in front of me moved to their left.Someone else yelled out, "Your other right!"
       
 (DIR) Post #Ad0xD57AGTZTjWGJ0K by nuintari@infosec.exchange
       2023-12-20T22:17:55Z
       
       0 likes, 1 repeats
       
       nuintari's rules of networking 0x03:Say no to vendor lock in. Always use industry standards. If something only works on VendorZ's products, using it will forever leave you technically indebted to VendorZ.1st Corollary:EIGRP is not easier to implement than OSPF.
       
 (DIR) Post #Ad2Y2NWtLhKT7g10Km by nuintari@infosec.exchange
       2023-12-21T16:44:43Z
       
       1 likes, 0 repeats
       
       You want proof that no one ever reads the fucking manual? Browse r/zfs for a while.The number of people who think they can mirror an 8TB drive with a 4 TB drive alone is enough to make you shit yourself with contempt.