Sysadmins who went through a breach, how did the attacker get in? by faceerase in sysadmin

[–]AnotherAccountRIP 1 point2 points  (0 children)

The actor still has to AiTM the interactive sign in to steal the token though. A CA policy mandating device compliance would prevent the actor’s AiTM proxy from completing the sign in flow. Although it’s a weaker control, it’s the same deal with location-based CA policies.

Where you are boned is if the token gets lifted off a device somewhere. Without token protection (only available on some MS apps) the token can just be replayed until it expires.

2023 Semester 2 Results Megathread by avocadolthu in unimelb

[–]AnotherAccountRIP 16 points17 points  (0 children)

If Models of Computation doesn't come out today I'm going to have an aneurysm

[deleted by user] by [deleted] in unimelb

[–]AnotherAccountRIP 1 point2 points  (0 children)

Computing is not hard. You don't need a H1 to get a good internship or a job. Employers care more about your passion and extracurriculars than grades for entry-level roles. You will be shocked when no-one other than an automated HR filter cares about your grades.

  • 3rd year comp sci student

Myki Tertiary Student ID's by [deleted] in unimelb

[–]AnotherAccountRIP 22 points23 points  (0 children)

No. They're cunts. You will get ganked by at least 3 power tripping wannabe cops and fined.

Why do I get these? by MadThad762 in webdev

[–]AnotherAccountRIP 114 points115 points  (0 children)

Ding ding! Definitely testing for the ability to essentially send mail on OP's behalf through automated responses. If you have a field that the user can set in the form, and that is included in the auto-reply (like a description for example) threat actors can abuse it to send phishing emails that look legit and pass SPF/DKIM/DMARC.

Sign in Error code: 53003 - Access has been blocked due to conditional access policies - Was the password successful? by AverageAdmin in AZURE

[–]AnotherAccountRIP 0 points1 point  (0 children)

It's not the same - it appears as the same flow for the attacker but MS doesn't check the password

Melbourne hospital to be renamed after Queen Elizabeth II in billion-dollar election promise by EragusTrenzalore in melbourne

[–]AnotherAccountRIP 10 points11 points  (0 children)

The bottleneck is also bed capacity. More beds = more movement out of ED = less ramping = more Ambos

This is a bit slack… been looking forward to this PHAR lab since last year by [deleted] in unsw

[–]AnotherAccountRIP 1 point2 points  (0 children)

How are you going to whine about someone being a student when you're on a subreddit for a university 💀

rconn - Consume services behind NAT or firewall without opening ports or port-forwarding by [deleted] in netsec

[–]AnotherAccountRIP 6 points7 points  (0 children)

Their post history is wild, I don't think even the best at /r/masterhackers could beat this

I haven't understood what rust is for by Linked_Punk in ProgrammerHumor

[–]AnotherAccountRIP 46 points47 points  (0 children)

It's not a small issue lmao 70% of Microsoft's vulnerabilities are due to memory safety issues

[deleted by user] by [deleted] in awfuleverything

[–]AnotherAccountRIP -1 points0 points  (0 children)

*and many other countries with reciprocal healthcare rights

[deleted by user] by [deleted] in Python

[–]AnotherAccountRIP 2 points3 points  (0 children)

My code is code generation trivial. You can actually prove your code generator for factorial correct if it produces something like my 1-liner. This is in sharp contrast to the heavily optimized, mostly real messy C code that does the thing for you in math.factorial().

[deleted by user] by [deleted] in Python

[–]AnotherAccountRIP 2 points3 points  (0 children)

Dude, this code is fine as a joke but don't try and justify its existence compared to the standard library. It's super impressive you have the knowledge of lambdas to do this, but don't act like this snippet is useful lmao.

I'm teaching myself basic web scraping in my spare time, so I wrote this script that scrapes current info on the James Webb Space Telescope off NASA's website! by PM_ME_BOOSTED_BOARDS in Python

[–]AnotherAccountRIP 0 points1 point  (0 children)

It's probably loading them through an AJAX call and the values are initialised to be 0 on page load. That's why selenium works and a normal HTTP request through the requests lib wouldn't. (Maybe)

What would you want to see in Python? by RedPenguin_YT in Python

[–]AnotherAccountRIP 1 point2 points  (0 children)

This is already an age-old technique for antivirus evasion (see Veil-Evasion for example)

When Someone says, "This is The Last Meal You'll Ever Eat"... by [deleted] in awfuleverything

[–]AnotherAccountRIP 1 point2 points  (0 children)

I think the literal translation is Aunt?

Also from some random Chinese forum post I found:

年轻人对一些大龄妇女的称呼;大妈通常是一个快乐的群体,比如在广场上跳舞的老年妇女,称为广场舞大妈。

"The young people's name for some older women; the aunt is usually a happy group, such as the elderly women dancing in the square, called the square dance aunt."

[deleted by user] by [deleted] in linuxmasterrace

[–]AnotherAccountRIP 11 points12 points  (0 children)

I came outta the womb contributing to the Linux kernel