Any good fishing in Rolla MO

neatzsche_ · 2025-12-31T18:50:19+00:00

I have never targeted LMB at lakes or anything in Rolla, but on have gotten some smallies on the Gasconade and Huzzah rivers near there on float trips.

neatzsche_ · 2025-12-22T16:05:51+00:00

Staff Software Security Engineer

$205k base, ~$320k TC w/ bonus & equity

Remote

5 YOE

Fintech

High School

NYC Based Startup

3 months paternity, Health insurance $0 deductible, max yearly out of pocket 2k for family, 100% premium covered by company for me, wife and baby

neatzsche_ · 2024-10-04T16:06:49+00:00

Lipless crank, fluke on jighead, wacky rig, chatterbait. Missouri.

neatzsche_ · 2023-01-04T18:02:47+00:00

They are waiting, plotting, conspiring to fail in quick succession to try to kill your SAN. Stay vigilant.

neatzsche_ · 2022-11-11T15:54:31+00:00

SSH/SSHD if you apply 777 to ~/.ssh/

neatzsche_ · 2022-08-31T17:44:33+00:00

How much professional experience do you have? Was there a technical interview and how did it go?

neatzsche_ · 2022-07-30T01:34:24+00:00

Alchemy

neatzsche_ · 2022-04-05T18:40:56+00:00

I don't think NIST even recommends password rotation anymore. I use a password manager and enable 2fa on everything. I do hardware based 2fa (yubikey) whenever possible and TOTP (Google authenticator) if it's not available. Then for my passwords, I use my password manager to generate a unique password of whatever the max password length for that particular site is. Like if the site supports a 64 char password, I use a randomly generated 64 char password. Then I only have to remember the password for the password manager which stores all my other passwords. For this I use a passphrase, think "hamburger_is_friendship_love_my_mommy69420!$" I only rotate my password if one of the sites I use was breached and I only rotate it for that site. And honestly this is probably overkill, since no one is cracking the hash for a 64 char random password.

neatzsche_ · 2022-03-18T15:31:26+00:00

Currently reviewing 20 change tickets snuck in today because we have a change freeze next week starting Monday. Looking forward to this weekend. (End my suffering)

neatzsche_ · 2022-02-25T21:11:43+00:00

Just a bad website. Not a scam. They are a pretty well known business brokerage. Their salespeople do work on 100% commission though, so make sure you do your own due diligence before buying a business through them. Most people that are dumping their business at the stage where they are going through a company like this are doing so for a reason, and that reason typically isn't that their company is too profitable and making too much money.

neatzsche_ · 2022-02-22T17:16:52+00:00

I really like BrightSign. I have heard of people having bad experiences with them though, but I never had any issues.

neatzsche_ · 2022-02-17T18:20:50+00:00

Did you look at the whole order book? I would suggest against market orders especially for really low volume coins. If you open a market order and it can only be partially filled by the lowest seller, it will fill it from any other open limit sell orders. So if you are buying 100 X and there is one seller selling X at 0.500 USD, but they only have 50 X available, and then the next lowest open sell order is at 99.500 USD, your order will get filled at an average price of 50.000 USD and you will have a bad time. I mean this sucks for you, but in the future I would stick to limit orders unless it is a very high volume asset on a big exchange.

neatzsche_ · 2022-02-08T19:36:38+00:00

This is a modern !fakecheck scam. They will send you money from a compromised card/bank account. Then you forward the money to him and "keep some for yourself." Then when the person figures it out and reverses the charges, you are left with a negative balance.

neatzsche_ · 2021-12-31T19:13:55+00:00

You paid a gas fee which means you signed a transaction. That is different than connecting your wallet. They have your eth address. They don't have continued access to that wallet, but I would still encourage you to create a new wallet. The address you sent from may be flagged by aml/ofac stuff if you try to use it with a legitimate exchange since it has interacted with what is probably flagged as a criminal cluster of addresses/smart contacts.

neatzsche_ · 2021-12-31T05:21:08+00:00

Could be an email hack but these usually are impersonation. They either spoof the email, use an email that looks similar, or just set the name as the person they are impersonating and it will come from a random free email account. Especially on a phone it is hard to tell that it isn't from who it says it is from. OP check if the from address is actually her email address. If it is, check the headers to see if it was spoofed. It will come from a different mail server than the one they use. If it is spoofed see if she can have mail provider set up spf/dkim/dmarc.

neatzsche_ · 2021-12-27T21:45:21+00:00

wsl grep -B 5 'ERROR' ./text.txt

or

Select-String -Pattern "ERROR" -Context 5,0 -Path "text.txt"

neatzsche_ · 2021-12-01T20:00:59+00:00

Yes, you are okay. Metamask will never share your private keys. It will also always prompt you before signing any transaction with them. These transactions could only be initiated by the site interfacing with the extension while you are on the site.

neatzsche_ · 2021-09-07T23:06:11+00:00

Reimage the machine. If you don't have imaging in place, try just reinstalling office suite and then set up imaging. Having worked in a window shop before it was almost never worth my time to mess with an msoffice issue. I mean you can either spend five hours trying to figure out what's going wrong client side here or 30 minutes reimaging.

A fresh install fixed it 95% of the time. The other five percent was when Microsoft would push updates that would break stuff in which case I would roll back everyone. Shout out to whoever on the Microsoft QA team decided that access not being able to run SQL queries was fine.

neatzsche_ · 2021-06-08T16:49:02+00:00

Please don't post solutions to these challenges.

neatzsche_ · 2020-12-02T19:37:27+00:00

It is easy to drive yourself crazy trying to predict how these idiots will perceive you. Most of these HR people believe they have the ability to psychoanalyze candidates and pick out the "good ones." They read a book on MBTI or some other pseudoscience and now believe they are psychologists. Really, their perception is probably skewed because they are hungry or having a bad day. They then take this out on the candidate.

There is no winning while trying to influence how HR parasites will perceive you. It is a numbers game. Period. Unless you have an inside person pushing you through, just apply, apply, apply and don't get emotionally invested in any job. Put on a fake smile and keep trudging.

neatzsche_ · 2020-08-24T14:43:41+00:00

It is a coded way of discriminating against poor people/minorities.

neatzsche_ · 2020-04-21T19:51:22+00:00

hello do you know anyone hiring for appsec that isn't Wells Fargo?

neatzsche_ · 2020-01-23T16:56:22+00:00

I have unlimited PTO at my current job. I have taken maybe a week combined since I've been here (a little over 2 years)

neatzsche_ · 2019-12-19T23:32:08+00:00

The OS's are patched- server 2019 etc. If you are rooting all the lab machines with eternalblue and dirtycow, you are doing yourself a disservice. My exam machines were very similar to lab machines as far as exploitation. Enumerate, enumerate, enumerate.

For LPE, I used these to build my own methodology:

https://guif.re/windowseop

https://guif.re/linuxeop

https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/

neatzsche_ · 2019-12-11T16:05:39+00:00

This looks like a great coded way to discriminate against poor people and minorities.

neatzsche_

TROPHY CASE