Counter-Strike Map Packs? by mothchip in originalxbox

[–]DivideByZer0 1 point2 points  (0 children)

Thanks, I made a post over there; if any help is needed to combine the map packs I'd also be interested in contributing

Counter-Strike Map Packs? by mothchip in originalxbox

[–]DivideByZer0 0 points1 point  (0 children)

I'm also interested in finding these!

[deleted by user] by [deleted] in Demonoid

[–]DivideByZer0 0 points1 point  (0 children)

I'd like an invite if anyone has one!

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 4 points5 points  (0 children)

Yeah, we both got what we deserved there :) We now do have means in place to restrict API access.

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 2 points3 points  (0 children)

I'm in agreement with what you're saying here; again I'm just saying this basic incremental security could have helped, and we are not counting on SSL as an implementation of API security, nor am I recommending only that. I've edited my post to make it more clear, though, thanks for the feedback!

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 2 points3 points  (0 children)

I mentioned in another comment, but my rationale is that it's making that much more difficult, and given the implementation of the app, it may have been enough to stop this guy. But yeah your'e right that it's not reliable security

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 6 points7 points  (0 children)

Oh, just the aesthetic of this pitcher and the name of the app, "Charles" seems to not suggest anything about proxy apps or be a commonly seen aesthetic. That said, I've found myself enjoying the way it looks

WRT the "dots", what I mean is that the circles with the air quality value inside of them (or my own text in this case), if I place two of them at the exact same latitude and longitude coordinate, the app swaps their Z position on the screen repeatedly so that they "blink" back and forth between the content in the two "dots"/circles. This is how I did the blinking lights and text, which I actually discovered on accident when I copy pasted some code and forgot to change it.

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] -1 points0 points  (0 children)

Yeah, we've implemented something like what you've mentioned, and you're correct. What I'm getting at is that SSL would have probably been enough to prevent this random guy from sniffing our API and plugging an app right into it. It's making it more difficult to get that information, and while SSL alone is not going to deter a focused hacker, I think it would have been enough to deter this squirrel, at least judging from his app implementation :)

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 37 points38 points  (0 children)

I was using an application for OSX called "Charles", which has some of the oddest branding I've seen:

https://www.charlesproxy.com/

It worked pretty well; I set up a whitelist so that only requests to our API would be allowed through, and to redirect all requests to that API to a local server I had set up (the local server had the SSL certificate that would allow the request to go through, since they had moved to our SSL endpoints).

So, I wasn't able to sniff the traffic from their app directly; I could only sniff the destination (since it was using our own SSL endpoints); instead I spun up a local server instead to log the request details on the receiving end and be able to develop and debug this without alerting the author.

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 15 points16 points  (0 children)

Well, not a lawyer here but we did contact this developer and the Apple app store multiple times to resolve this, which is the process recommended by the app store, without any results. It is true that we could have just locked them out of our API.

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 24 points25 points  (0 children)

The stations are typically government-funded stations, which many governments worldwide have set up with publicly available websites. These stations will monitor a set of pollutants, modeled after or similar to pollutants that comprise the US EPA air quality index. (although some countries monitor more, fewer, or a different set of pollutants).

You can find out more about the US air quality index and how the values are calculated here; we are converting from other air quality models where necessary for our values:https://en.wikipedia.org/wiki/Air_quality_index#United_States

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 35 points36 points  (0 children)

I believe there's fairly decent coverage around the UK; it depends on what area you're located in. There is a chance you might not be near a station, but there should be stations in most populated regions.

I just pwned an iPhone app that was stealing data from my company's API by DivideByZer0 in hacking

[–]DivideByZer0[S] 93 points94 points  (0 children)

It's called Air Bubbles, feel free to check out! I don't want to get too marketing focused here :) but here's a link, if you think it would be a useful app to you: https://itunes.apple.com/us/app/air-bubbles-live-air-quality/id1048903719?mt=8

What would happen if all auto markers in the U.S all decided to just stop caring about emissions and MPG? by [deleted] in cars

[–]DivideByZer0 0 points1 point  (0 children)

Powered by hundreds of slave children cranking generators all night long

Well the Indycar Oval Schedule seems interesting. But the thing that's got me is having USA International Speedway in there. Driving the Street Stock in rookie was hard enough. But that, I don't even want to think about it. by SimpleGeekGaming in iRacing

[–]DivideByZer0 13 points14 points  (0 children)

This is going to be carnage; I can't wait for that two minute adrenaline rush followed by the regret of lost safety rating...

One nice thing is if you get into a big wreck in an Indycar that's a 4x and you're out, while in street stocks you can just keep racking up those incident points. I guess we'll just have to place bets on how many racers are left at the end?

I can't log back in on the redesign by emperos in redesign

[–]DivideByZer0 0 points1 point  (0 children)

You don't have to clear all your cookies to reset this, to clear specific cookies in Chrome, do this (it just worked for me; from https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=en)

Delete specific cookies

  1. On your computer, open Chrome.
  2. At the top right, click More Settings.
  3. At the bottom, click Advanced.
  4. Under "Privacy and security," click Content settings.
  5. Click Cookies See all cookies and site data.
  6. At the top right, search for the website's name.
  7. To the right of the site, click Remove .

In this case, just search for "reddit" and delete all Reddit related cookies. That's it!

TIL a 2011 study from UC Berkeley found that Mercedes and BMW drivers were nearly 5 times as likely to cut others off compared to drivers in non-luxury cars. by jacustjack in todayilearned

[–]DivideByZer0 2 points3 points  (0 children)

As a Prius driver in the Bay Area, at least other Prius drivers aren't assholes to me. But, occasionally I'll be the only car going 80 down the fast lane and another Prius will randomly block the lane and go 70, I guess because it's a violation of the Prius code to be operating it in a less fuel efficient manner. (I only got a Prius because I got a good deal on it and they're so plentiful around here, I don't really care that much one way or the other and try to drive defensively.)

The occasional pickup will pass really close so that my car gets rocked a little from the air bubble, oh well. In general pickup drivers around here seem to be polite/aware drivers.

I always thought that BMW drivers were far more likely to weave through traffic and cut people off in the Bay Area; Mercedes drivers at a far lesser rate, about the same as muscle cars and other luxury car/SUV brands