Posts by siguza@infosec.exchange
 (DIR) Post #AbaBaSfqip6MOzXRgW by siguza@infosec.exchange
       2023-11-08T01:26:00Z
       
       1 likes, 6 repeats
       
       ⚠️​ HELP WANTED ⚠️​It looks like the new M3/Pro/Max machines are shipped out with THREE separate unreleased builds of macOS:- 13.5 (22G2074)- 13.5 (22G2080)- 14.1 (23B2073)If you're getting any such machine, find it has one of the above builds and would like to help preserve its firmware before updating, please reach out to me.
       
 (DIR) Post #AbaBaXYEaYytWp0w0e by siguza@infosec.exchange
       2023-11-08T02:14:02Z
       
       0 likes, 0 repeats
       
       (Basically the main part would be to boot into recovery, plug in some external drive with 30 GB or more of free space, and run this command in terminal:dd if=/dev/rdisk0 bs=16M | gzip >/Volumes/*/disk0.gzThat is likely gonna take a while, and it will take longer the bigger your SSD is.But there's a few more firmware components that aren't included in this. Dumping them only takes a split second, but can't be done with stock software. I'll guide you through it if you decide to reach out.)
       
 (DIR) Post #AbaVinprvS3jQwToCO by siguza@infosec.exchange
       2023-11-08T05:04:04Z
       
       3 likes, 5 repeats
       
       When their computer lies it's "AI", but when my computer lies it's "tampering" and "a ToS violation".
       
 (DIR) Post #AbsIDQcFf04tWGYNzk by siguza@infosec.exchange
       2023-11-16T18:54:13Z
       
       0 likes, 0 repeats
       
       Synology SMB shares mounted on macOS are dying and disconnecting after 256MiB transferred. But only on the first mount. Once they disconnect and I mount them again, they work fine. And bets on whether this is Synology's fault or Apple's?
       
 (DIR) Post #AcK9aO2dwGWv2BeHDc by siguza@infosec.exchange
       2023-11-30T04:39:06Z
       
       1 likes, 4 repeats
       
       I've wanted to make these diagrams for so long.
       
 (DIR) Post #AcPWjTBXSDfWKRuQVc by siguza@infosec.exchange
       2023-12-02T20:09:36Z
       
       0 likes, 0 repeats
       
       @zhuowei how did you try to mount? `hdik -nomount` followed by `mount`? if so, did you specify readonly for the latter?
       
 (DIR) Post #AcQLC1VSRBBKah2ELI by siguza@infosec.exchange
       2023-12-03T06:20:55Z
       
       0 likes, 0 repeats
       
       @mjg59 isn't that just about every security conference, and a bunch of other tech conferences too?
       
 (DIR) Post #AcURh4rdNdFuL4RFdA by siguza@infosec.exchange
       2023-12-05T05:50:45Z
       
       0 likes, 0 repeats
       
       @mjg59 Time Machine just deletes your backup history every 3 weeks anyway, I'm sure you're capable of hacking up a script to do that yourself.
       
 (DIR) Post #Acac1VVn4aNbrmbPJA by siguza@infosec.exchange
       2023-12-06T20:02:41Z
       
       0 likes, 0 repeats
       
       @opa334 @zhuowei researchers have been saying for years that these things only target jailbreakers, not threat actors...
       
 (DIR) Post #AclGaulz5FKs5yDMEC by siguza@infosec.exchange
       2023-12-13T05:18:32Z
       
       4 likes, 1 repeats
       
       Gmail has once again blacklisted my mail server because of the SIX emails I have sent in the entirety of December so far, because obviously that constitutes "an unusual rate of unsolicited mail".I set up SPF, DKIM, DMARC, first get lumped in with a bad /24 IP block, slowly build up a reputation as a non-spammy IP, etc. etc., but none of that matters.This is nothing but a racketeering scheme to force everyone to pay for Gmail for business.
       
 (DIR) Post #AclHnWVchuw8Yq8bya by siguza@infosec.exchange
       2023-12-13T08:53:27Z
       
       0 likes, 0 repeats
       
       @selea you mean rDNS? Yes ofc. When I enabled IPv6 on my server and got 10 addresses assigned, email delivery failed immediately because I had only set it up for the first IP, so I had to fix that then and there.But I've been able to send mail to Gmail for many years, though this isn't the first time I've been banned for absolutely no reason. This is not a technical issue.
       
 (DIR) Post #AclRxufwi8DrwvYjHk by siguza@infosec.exchange
       2023-12-13T10:47:21Z
       
       0 likes, 0 repeats
       
       @selea I like how this is literally the email version of judging people by the colour of their skin.Again, this is not a technical problem. I've attached the message I got from gmail below. They tell me they've received "an unusual rate of unsolicited mail originating from your SPF domain". They're lying. I checked my outgoing mail logs, this was the first email sent to gmail in over 2 weeks. And anything trying to send in my name but not going through my mail server should surely fail due to SPF and DKIM.This is not a technical problem, it's a corporate politics problem where Gmail doesn't like any party that isn't paying them. There's hundreds of thousands of cases of this on the net, and the one "solution" that works for people is paying some big email provider.
       
 (DIR) Post #AclbYG5DUiT4M9mj68 by siguza@infosec.exchange
       2023-12-13T06:27:55Z
       
       0 likes, 0 repeats
       
       @paduser I get like 80% from gmail, about 10% from some domain registered yesterday, and another 10% from domains like crgnbl.ak.zx.[some random domain of a small website that they probably hacked].
       
 (DIR) Post #AclbYHsWorVTvNrcbA by siguza@infosec.exchange
       2023-12-13T06:28:18Z
       
       1 likes, 0 repeats
       
       @paduser but lol why would gmail care about outgoing spam if they have a quasi-monopoly.
       
 (DIR) Post #AclhL0ibuLmofFHFSq by siguza@infosec.exchange
       2023-12-13T13:39:37Z
       
       0 likes, 0 repeats
       
       @selea I got IPv6 in mid-July 2021.
       
 (DIR) Post #AcliwUOgcslbNbOQk4 by siguza@infosec.exchange
       2023-12-13T13:42:58Z
       
       0 likes, 0 repeats
       
       @feld @selea the DMARC reports I get are mixed between IPv4 and IPv6. Sometimes only one type, sometimes both. So yeah, I'm pretty sure I can reach them over IPv6.
       
 (DIR) Post #AcljeUIIN2aHnlNqWO by siguza@infosec.exchange
       2023-12-13T14:04:32Z
       
       0 likes, 0 repeats
       
       @feld @selea connect from mail-ej1-x643.google.com[2a00:1450:4864:20::643]connect from mail-lj1-x22d.google.com[2a00:1450:4864:20::22d]So yes, they do initiate over IPv6 themselves.
       
 (DIR) Post #Acm9qw8PHeMKQlM4zg by siguza@infosec.exchange
       2023-12-13T18:33:06Z
       
       1 likes, 0 repeats
       
       The Zuck is federating!
       
 (DIR) Post #AdUwOSzgsSBPFK1ggK by siguza@infosec.exchange
       2024-01-04T09:28:12Z
       
       0 likes, 0 repeats
       
       @mjg59 this feels like someone really wanted to solve the Travelling Salesman problem with a single line but halfway through, the overseeing committee got fed up and hired someone else to do the rest of the system.
       
 (DIR) Post #AdfW0mU1WS7qx2omps by siguza@infosec.exchange
       2024-01-09T09:20:58Z
       
       3 likes, 6 repeats
       
       Piracy websites should adopt Midjourney's arguments on copyright:"Look bro, it's just too hard to figure out what license governs each and every file and who its author is."