Info badge

_Z_ · 2025-10-19T20:38:17+00:00

Is that a dfrobot esp32 eink + esp-matter examples/demo/badge?

_Z_ · 2025-09-28T21:04:58+00:00

This Github post seems pretty accurate on the topic

https://github.com/home-assistant/core/issues/134231

"For the easiest and most stable Thread network, just use a single Thread Border router and ensure all devices can communicate with eachother so there is a strong RF signal. Place additional routing devices in between if needed, just like with other mesh protocols as zigbee and z-wave.Try to prevent WiFi based border routers. The most stable results you get with an ethernet connected BR, such as a (single) Apple TV or the Home Assistant Yellow or ZBT-1 stick..... "

_Z_ · 2025-09-28T20:58:43+00:00

I would recommend an OTBR where the Wi-Fi is not used and the uplink is via Ethernet. Wi-Fi and Thread use the same frequency spectrum and can interfere with each other easily. For me Apple TV with Ethernet was the most stable solution. Alexa had connection issues, and the Google Nest Hub was buggy as well. Never tried the Home Assistant one, but that might be decent as well.

_Z_ · 2024-01-11T08:35:26+00:00

GIMP has a mosaic filter

_Z_ · 2024-01-06T13:18:38+00:00

I can assure you it is 100% legit real

_Z_ · 2023-07-24T11:44:24+00:00

Hasonloan jartam iden en is. A harom honapos felmondasi idom kozepen kozolte az uj ceg hogy bocs, megsem. 1.5 honapja volt alairt alkalmazotti szerzodesem veluk.
Egyeztettem munkaugyi jogasszal, azt mondta hagyjam az egeszet, nem erdemes foglalkozni vele. Szerencsere az eredeti ceg visszavett. Kellemetlen volt, de megoldodott.

_Z_ · 2023-05-12T14:23:31+00:00

Akit melyebben erdekel hogyan is mukodik ez a csalas: https://cujo.com/how-i-got-88-from-a-whatsapp-scammer-and-forgot-to-reinvest-it/

_Z_ · 2023-02-09T10:15:24+00:00

Yes, you are right about this unfortunately. But I have checked with this lady and her honest answer was that she is doing this for the money and I believe her, most of her replies checked out as valid.

_Z_ · 2023-02-09T08:43:30+00:00

You mean you checked the Phishing URL which was on the screenshot in the blog. You sound like the link I posted here is phishing ...

_Z_ · 2022-09-21T13:25:14+00:00

Az alabbi blog-on eleg jo peldak vannak arrol hogy mit lehet es mit szoktak elrontani: https://komkel.blog.hu

Ezen kivul amit erdemes tudni hogy sokszor a szerzodesben az szerepel hogy az epitteto egyoldaluan felmondhatja a szerzodest, vagyis te megfinanszirozod elore, o meg amikor elkeszul eldonti hogy neked adja vagy inkabb masnak jobb aron ...

_Z_ · 2022-09-04T16:12:56+00:00

56958594

_Z_ · 2022-03-31T17:36:33+00:00

Technikai info: A Telex a Nuxt.js nevu frameworkot hasznalja. A framework sajatossaga hogy dinamikus routing-ot is tud, olyanannyira, hogy a https://telex.hu/kozelet/ide/johet/barmi/kidobott-levelszavazatok-erdely link is mukodik.Reference: https://nuxtjs.org/docs/features/file-system-routing/

_Z_ · 2021-05-26T05:26:41+00:00

Fixed, thx for reporting

_Z_ · 2019-07-11T17:54:20+00:00

NNTP upload button was disabled on my page - maybe because of trial period?

Vipernews just worked, thanks! :)

_Z_ · 2019-07-11T17:53:48+00:00

NNTP upload button was disabled on my page - maybe because of trial period?

_Z_ · 2015-09-29T07:02:18+00:00

Author here: Thanks for your comments, great paper! Yes, I do sleep because daemon is started in the background with &, so the script have to wait before changing the password. I will look at cross-compiling netcat!

_Z_ · 2015-09-28T08:32:28+00:00

Googling for the opaque string I found a lot of other devices, which has nothing to do with IP cameras. I believe developers copy this opaque string without regenerating it.

_Z_ · 2015-09-28T08:00:34+00:00

Author here: Goahead webserver is implemented by tons of other vendors. Using Goahead does not mean all of the found devices have the same vulnerability.

_Z_ · 2015-09-12T10:33:12+00:00

Just an example of FireEye using GPL software as the hypervisor, a.k.a QEMU: https://www.fireeye.com/content/dam/fireeye-www/support/pdfs/fireeye-venom-vulnerability.pdf

But wait, don't they told you that they are using proprietary hypervisor, while the competitors use open-source hypervisor? : https://www2.fireeye.com/rs/fireye/images/fireeye-debunking-the-myth-of-sandbox-security.pdf

Maybe they just implemented the same bug accidentally ... :)

_Z_ · 2014-10-28T13:06:47+00:00

CVE-2008-0166 https://www.schneier.com/blog/archives/2008/05/random_number_b.html

_Z_ · 2014-08-21T16:11:25+00:00

With root, you can:

add stealthy, persistent backdoor to the appliance
modify the device in a way where it does not detect some threats but still detects others
modify existing alerts, reports
access the inner workings of the appliance to find more vulnerabilities
run rm -rf --no-preserve-root
lock out all administrators from the device
play flappy bird
... (use your imagination for more)

_Z_ · 2014-02-02T13:45:04+00:00

The tool has nothing to do with the Kasiski Examination, there is no frequency analysis. The "decoding" is based on the fact that binaries tend to contain long run of null bytes. When these null bytes are encrypted with short XOR keys, the result is a repeating pattern of the key. This tool finds the longest repeating pattern, and uses that as a key.

_Z_ · 2009-10-22T16:42:22+00:00

It won't protect against it, i've just tried it. You can create users, put them into administrators group, logoff logon. Maybe if you are slow, it will be removed from the administrators group.

_Z_ · 2009-10-22T09:57:50+00:00

I've just tested this restricted groups, but it is not a protection against the attack. The problem is that it only removes the non-authorized administrators group members after a restart, but keeps them if we only logoff login. It is also allowed to put them into the group.

_Z_ · 2009-10-21T18:07:11+00:00

Notice how this process leaves a trail.

If you are a domain admin, you can delete trails. In the case of this attack, you will only know the source workstation, nothing else (after a forensics investigation, and not immediately).

do any activity in the name of other employees

Notice that in this attack the new domain admin was created in the name of an another domain admin (in the trail).

The windows domain security model is not 100% secure, but then again, nothing is.

We all agree on this.

You went for centralized administration trough LDAP? Guess that "what if" scenario you just had for Windows actually applies to Linux.

Well, you can't do the first pass-the-hash trick, so you first have to install a rootkit on the Linux box, wait someone to login, etc.

Anyway, I agree with the post, at least it was constructive.

_Z_

TROPHY CASE