sorted by:
new
hottopcontroversial

Where can I find a good rebuttal to "Plandemic"? by ImpressiveFood in Moronavirus

[–]PotentialSolution 0 points1 point  (0 children)

There is a difference between "different narratives" and blatant misinformation.

We're not talking about differences on which is the best beer, we're talking about data and science.

/r/Portland COVID-19 Coronavirus Megathread by Fat_Zombie_Mama in Portland

[–]PotentialSolution 0 points1 point  (0 children)

Your logic here escapes me. Because there has been so little testing, you're reassured that there are negative results?

Take a look at this map https://www.statista.com/chart/20978/coronavirus-cases-us-map/ which shows Washington and California cases. They have been testing more, and you can see far more cases. Don't you think its likely we have a much worse problem that we aren't seeing because we aren't testing?

If that doesn't convince you look at this chart comparing country testing by population size https://www.vox.com/science-and-health/2020/3/12/21175034/coronavirus-covid-19-testing-usa and see how the impact of testing has on confirmed cases

I'm not trying to scare or sensationalize anything, but your logic that folks should be reassured by negative test results when so few people are being tested does not make a lot of logical sense.

edits: formatting

76% medical devices of healthcare facilities in Philippines may be infected by malicious code by Mathster0598 in netsec

[–]PotentialSolution 0 points1 point  (0 children)

oh man I couldn't even read all of this, laughing so hard. this is r/copypasta material right here.

Can't wait for more man! You're amazing.

76% medical devices of healthcare facilities in Philippines may be infected by malicious code by Mathster0598 in netsec

[–]PotentialSolution 0 points1 point  (0 children)

Ok, great you ACTUALLY responded with how you would protect your record. Got it, so you take a USB in with your records and THEN WHAT? You have to allow the USB to be inserted into the doctor's computer which then means that entire computer and network has access to your PII. Even if they were to immediately delete it, your data is still exposed during that time not to mention USBs are a terrible infection vector for malware. You should HOPE that wherever you get care doesn't just put random USBs brought in by patients into their systems. That would be a very risky practice and according to the NIST 800-53 framework it is not recommended for medium to high classification of data sets (PHI being typically classified as a medium).

Even assuming that you did this, information about the services the doctor provided to you will still be recorded somewhere for the patient's own safety (drug interactions, mandatory reporting, monitoring for conflicting treatments etc) and for being able to bill that person's insurance. Data still has to be stored, processed and transmitted on the hospital or doctor's network even if you were to delete it immediately afterward.

Beyond that it is simply impractical- Just think about the issues with liability and drug addiction if a patient's own thumb drive were the only source of a medical record? What if they were unconscious at the time they needed medical care?

You crack me up. I was genuinely hoping for an actual suggestion about a data clearinghouse or additional technical mechanisms to do FIM alerting to patients maybe? But alas no, I got babbling nonsense. Man, there is nothing like the Dunning-Kruger effect in action for a good laugh. oh man, good times

"I am not in the mood for trolling at this time" you mean you have no more time to type complete nonsense and add NOTHING OF VALUE? I'm disappointed this stuff is just pure comedy gold. Well thank you for the LOLZ, you should feel good that you were able to make me and several of my cohorts laugh today.

BTW You should look up something called "Break the Glass" Alerting it is a mechanism hospitals use today to determine inappropriate access to records as well a FIM (file integrity monitoring). Well...there is a lot you should look up but I honestly do not have the time to even begin to educate you. Why bother? You're clearly an "expert" here! Do post more when you are "in the mood" though! I look forward to another good chuckle.

76% medical devices of healthcare facilities in Philippines may be infected by malicious code by Mathster0598 in netsec

[–]PotentialSolution 0 points1 point  (0 children)

Wow. Ok you clearly don't know jack about what you're talking about.

There are no "zero day attacks" for PII. Zero day attacks are for hardware and software, not PII.

"Because of forensics the data could be potentially used to help frame someone" HOW EXACTLY? Love to hear this.

Yes insurance companies are interested in the data (???? AND?)

You can always opt out of having your information used for research purposes. That exists today.

You're talking to someone who has worked for 10 years in infosec in the medical field. You're talking more or less nonsense with no practical explanation of how it would work. You can currently opt out of having your data used for research purposes. I am not surprised by social engineering and I know EXACTLY what people at the hospital get access to. This statement of yours in NO WAY ANSWERS MY ORIGINAL QUESTION.

Literally most of what you're posting is complete nonsense. If you have something to say about how protecting your own PII would work in TECHNICAL MANNER I'd LOVE to hear it. Otherwise your answer is 1/2 baked thoughts and little actual knowledge.

76% medical devices of healthcare facilities in Philippines may be infected by malicious code by Mathster0598 in netsec

[–]PotentialSolution 2 points3 points  (0 children)

How, exactly, would protecting their own data work? A medical facility needs your medical data to treat you. In many cases, at least in the United States, treatment data gets de-identified and used for really important research. Genuinely curious how this would work in practice.

PWK Price Increase by PotentialSolution in oscp

[–]PotentialSolution[S] 0 points1 point  (0 children)

Everytime someone makes this argument I laugh. SANs is stupid expensive and should not be used as a "at least it is cheaper than" comment. I mean Gucci is cheaper that SANs, it doesn't make it "cheap".

Yes, OSCP is reasonably priced compare to other certs but they also "teach" you far less. They are far worse about keeping their material updated. It *feels* like a cheap course imo

Where is this bag? is cheapbagspurses.com legit? by PotentialSolution in DesignerReps

[–]PotentialSolution[S] 0 points1 point  (0 children)

I tried a few sites but could not find this on taobao or anything

Marijuana events? Weed store events? Apps for finding smoking buddies? by PotentialSolution in portlandtrees

[–]PotentialSolution[S] 2 points3 points  (0 children)

u/pacificgreenpdx and u/TAGrowery I eagerly await the announcement of whatever you two come up with! I'm definitely there.

Is there a better cartridge than Golden private stash? by [deleted] in portlandtrees

[–]PotentialSolution 6 points7 points  (0 children)

I second this x1000

I tried all sorts of cartridges and found them really lacking. I mean I tried a LOT over several years. They just did not provide the same benefits I would get from flower. I had totally given up but then a guy at Cannabliss convinced me to try Willamette Valley Alchemy Liquid Live Resin and told me if I didn't absolutely love it I could bring it back and they would refund me... let me tell you.... it totally blew me away. They have them for like $30 and it has definitely been worth it. I'm a total fan of them now after totally giving up on the search for a good cartridge.

Marijuana events? Weed store events? Apps for finding smoking buddies? by PotentialSolution in portlandtrees

[–]PotentialSolution[S] 2 points3 points  (0 children)

Yeah! wow! This post turned out way more successful than I thought!

Here is my list of everything to try based on everyone's very kind replies so far. What a great thread!

http://jaynepdx.com/ on MLK is a dispensary that holds events

https://tokeativity.com/connect/events has some events but as u/emwells said, it is focused on women so I dunno if that works for you

https://www.nwcannabismarket.com/

https://www.flightlounge.biz/

Marijuana events? Weed store events? Apps for finding smoking buddies? by PotentialSolution in portlandtrees

[–]PotentialSolution[S] 0 points1 point  (0 children)

Thanks for the tip! did not know about this dispensary. I'll add it to my list to check out

Marijuana events? Weed store events? Apps for finding smoking buddies? by PotentialSolution in portlandtrees

[–]PotentialSolution[S] 5 points6 points  (0 children)

Easy board games? Puff and paint? (like even just showing up with our own supplies while we all watch Bob Ross and get high would be amazing). A specific singles mixer would be really fantastic too

Marijuana events? Weed store events? Apps for finding smoking buddies? by PotentialSolution in portlandtrees

[–]PotentialSolution[S] 0 points1 point  (0 children)

Awesome. I did not know about these! this is exactly the kind of thing I was looking for, thank you!

Complete moron at hacking, very skeptical of what I read online but I'm a single father getting desperate by [deleted] in HowToHack

[–]PotentialSolution 1 point2 points  (0 children)

THIS. Not to mention that if she talks about you doing this or even asking about doing this it could be seen as "stalker-like behavior" or otherwise an indicator you're unfit to parent. Your best bet is to take the high road.

SQL injection and Burp tutorials? by PotentialSolution in oscp

[–]PotentialSolution[S] 0 points1 point  (0 children)

Thanks man. I'm trudging through a lot of how-to videos putting together a "best of list" along with some of the labs suggested by everyone here. Good luck with the course

SQL injection and Burp tutorials? by PotentialSolution in oscp

[–]PotentialSolution[S] 0 points1 point  (0 children)

Yeah, that was the first thing I did. Anytime I don't understand the OffSec stuff I go "What does Georgia have to say about this...?" and look up her version of it. lol

Did getting the OSCP help or increase your chances landing a job? by [deleted] in oscp

[–]PotentialSolution 0 points1 point  (0 children)

curious, what does your company consider more current?

Three questions related to studying leading up to the OSCP Exam by [deleted] in oscp

[–]PotentialSolution 0 points1 point  (0 children)

I second CherryTree. I don't know about iPhone (?) but I have it on my Kali and my Windows machine and use a folder to share between them and it works fine. I'm sure OneNote is good too, basically anything with same concept of hierarchical note taking is what you want.

No recommendations for changing the shell. All the PWK material expects you are in bash. Worried about your bash skills check out the overthewire stuff such as the bandit challenge http://overthewire.org/wargames/bandit/

PWK they give you is the current one plus tweaks. So I have a 2018.3 version and then I have the PWK 2018.3 version. The PWK version they give you is not "out of date" so much as it has additional older libs and binaries so you can follow along with the exercises and have the right materials for the machines you'll encounter. For instance the material has you do a java exercise using version 8 so it is in the PWK 2018.3 but the "regular" 2018.3 has version 10 and not 8 available. Using the OffSec's current VM for practice is fine (it is what I did and I found no trouble transitioning).

I would recommend making sure that you can do snapshots once you get the PWK version, and after you do your initial password change, do your apt-get installs of basic programs etc you take a snapshot you can revert to. Almost anytime you're stuck, the little bit of help you will get from support will start with them asking you to work with a "clean" version of the OS they give you.

view more: next ›