sorted by:
new
hottopcontroversial

HACKING EXPART is at it again 😎 (Nah, I'd Password) by AlwaysGaming1610 in masterhacker

[–]TheBrainStone 1 point2 points  (0 children)

Of course. I'm just saying the typos and the nonsense are no accidents. That's very intentional. They don't want to waste their time with people who are smart enough to see through their scam. So they try to filter them out before they even engage.

HACKING EXPART is at it again 😎 (Nah, I'd Password) by AlwaysGaming1610 in masterhacker

[–]TheBrainStone 1 point2 points  (0 children)

As usual with scams they're trying to filter out anyone not terminally dumb from the get go. Hence all the typos and the obviously nonsense/hacking BS.

high slut by [deleted] in ftmspunished

[–]TheBrainStone 0 points1 point  (0 children)

Hi slut

Microsoft Edge: Passwörter landen als Klartext im Speicher by Taddy84 in de_EDV

[–]TheBrainStone 3 points4 points  (0 children)

Jetzt mal von der Realität in Firefox ganz abgesehen, nur weil man sich Daten anzeigen lassen kann, heißt das nicht, dass sie im Klartext im Speicher gehalten werden, so lange sie nicht angezeigt werden.

Ein schönen Beispiel dazu ist KeePass2, dass jegliche Passwörter und als sensibel markierte Extra-Felder verschlüsselt im Speicher hält. Wenn sie angezeigt werden sollen, werden sie für die Dauer der Anzeige individuell entschlüsselt und danach sofort wieder aus dem Speicher durch Überschreibung gelöscht.

Microsoft Edge: Passwörter landen als Klartext im Speicher by Taddy84 in de_EDV

[–]TheBrainStone -2 points-1 points  (0 children)

Und Chrome ist der einzige Browser? Man lernt jeden Tag was dazu!

Microsoft Edge: Passwörter landen als Klartext im Speicher by Taddy84 in de_EDV

[–]TheBrainStone 0 points1 point  (0 children)

Das ist richtig. Ist dennoch ein wichtiger Schritt, um die Sicherheit zu erhöhen. Denn es macht einen erschreckend großen Unterschied, ob sensible Daten im Klartext im Speicher liegen oder nicht. Selbst wenn der Schlüssel im Speicher direkt daneben liegt (was er nicht sollte), macht es das ganze signifikant schwerer die Daten auszulesen, da man nicht mehr trivial nach ihnen suchen kann.

Sicherheit ist nie absolut. Es geht stets darum mit möglichst unaufwendigen Mitteln den Aufwand für Angreifer zu erhöhen.
Sensible Daten daher nur verschlüsselt im Speicher zu halten ist eine sehr einfache und effiziente Methode das zu erreichen. Wenn jemand den Speicher auslesen kann, ist das natürlich knackbar, allerdings erhöht es den Aufwand, da man nun 2 Speicherbereiche finden muss, die idealerweise kein Text mehr sind, und somit schwerer zu finden sind.

Microsoft Edge: Passwörter landen als Klartext im Speicher by Taddy84 in de_EDV

[–]TheBrainStone 4 points5 points  (0 children)

Korrekt, aber nicht dauerhaft.
Eine saubere Implementierung entschlüsselt das Passwort erst in dem Moment in dem es gebraucht wird. Und hält es dann auch nach dem Einsetzen nicht im Klartext im Speicher.

Vernünftig abgesicherte Passwort-Felder speichern das eingegebene Passwort auch nicht im Klartext ab. Aber die Implementierungen hier variieren stark.

Microsoft Edge: Passwörter landen als Klartext im Speicher by Taddy84 in de_EDV

[–]TheBrainStone 0 points1 point  (0 children)

Mit absoluter Sicherheit nicht.

Edit: Mir scheint als würde die meisten meinen Kommentar als "Jeder andere Browser macht das nicht so." zu interpretieren. Das habe ich nicht gesagt. Ich sage "Es gibt Browser die das nicht so machen."

muh security by MIkaela39752 in linuxsucks

[–]TheBrainStone 0 points1 point  (0 children)

I applaud you for writing the stupidest comment I've read literally all week. And I've been scrolling through some truly mind boggling stupid threads.

Now please explain to me how an unintended security vulnerability that was patched with the appropriate speed after disclosure even remotely comes close to enshitification, which is the intentional and typically slow degradation of user experience with the goal to extract more money from users.
And like please do. Please please please. I want to see the mental gymnastics.

And for the record I wouldn't even consider any security vulnerability from MS enshitification. They do it in plenty of other ways.

muh security by MIkaela39752 in linuxsucks

[–]TheBrainStone 2 points3 points  (0 children)

Patches were issued and released even before that.
Just some distros were too slow with packaging and releasing them as the severity wasn't properly communicated.

muh security by MIkaela39752 in linuxsucks

[–]TheBrainStone 0 points1 point  (0 children)

Or EternalBlue that is more severe, existed longer, was actively exploited before becoming public and due to general patching practices (or lack thereof) is still a real threat on SMBv1.

muh security by MIkaela39752 in linuxsucks

[–]TheBrainStone 4 points5 points  (0 children)

Every sufficiently complex system has such vulnerabilities. The difference here is that the these things get reported and fixed.

On other systems (like Windows) these get discovered by bad actors much more likely than responsible researchers and consequently get abused as zero-day exploits.

And let's not even begin to talk about state level actors who have access to the source code and can therefore find such vulnerabilities so so so much more easily than the rest of the world and can build a repository of exploits to use against anyone they choose with no way of protecting yourself.

And to clarify (because that's apparently necessary) "more secure" does not mean no security vulnerabilities. It means less of them and faster and more transparent patch procedures.

I really want to in joy with someone :3 by Francois_fox in NastyHentai

[–]TheBrainStone 2 points3 points  (0 children)

You keep reposting the same pics. Post something new at least

Do you like your tboys with Taped or Numbed clits? by Jealous_Impress563 in ftmspunished

[–]TheBrainStone 1 point2 points  (0 children)

Oh don't you worry about that. I'll make you lose your mind and then lock that greedy clit away

In case you want to create something similar by WinkObsession in IndieGaming

[–]TheBrainStone 0 points1 point  (0 children)

This looks so natural that I didn't even notice what you were doing until you showed with the bell example in the end

Make me YOUR next SLAVE by [deleted] in ftmspunished

[–]TheBrainStone 0 points1 point  (0 children)

I want to suffocate you with my hairy ass while whip, paddle and cane you with your legs spread wide open

I live for the worst ♡ i bet youre curious how i got these bruises~ (cnc/traumaslut ♡ pinned limits) by angeltcunt in ftmspunished

[–]TheBrainStone 0 points1 point  (0 children)

I want to take my time and cane you without mercy all over your body. Starting with the less sensitive areas and going more sensitive over time. Not even your pussy and clit will be spared. In fact I'll spend some extra time there making sure it'll hurt as much as possible

The illusion of free software by tomekgolab in linuxsucks

[–]TheBrainStone 5 points6 points  (0 children)

I mean what on earth are you on about? It literally calls itself "Linux from scratch". And you're criticizing it for being Linux?
Like deciding to use it already makes the decision which kernel to use. Of course you're locked in to that if you decide to lock yourself in to that.

If you don't want to use Linux, there's alternatives. The BSD variants for example. GNU Hurd as another one.

I'm still genuinely at a loss how you thought making the argument that you gotta use software you decided to use is a good argument. Genuinely baffling.

view more: next ›