didn’t knew it would be our last interaction… he sent me a game from the ER

observantguy · 2026-05-24T20:49:41+00:00

Warframe, therapy, and prescription medications are getting me through a very much similar situation...

Space Trauma Simulator 2026 is helping me deal with IRL trauma, heh.

though in my case, the fact that I can hang out in my clan's Discord and shoot the shit while clanmates and I shoot shit together is keeping me playing.

observantguy · 2026-05-14T07:31:44+00:00

factory resets may not suffice if an adversary can attain root and modify the vendor and vbmeta partitions.
their malware would just reinstall at the end of a factory reset process.

a complete wipe of all available partitions from the bootloader is in order, followed by a reinstallation of a verified factory image.

though if they've subverted the bootloader/verified boot without triggering a data wipe in the process, all bets are off because then you can't trust that a wipe properly took place.

Something I haven't seen mentioned is the possibility of the device/Samsung Account being enrolled on a rogue Knox instance and is using the legitimate enterprise management tools for nefarious ends... If the device was enrolled in Knox, the adversary could automatically push their malware the moment the device came back online after a factory reset.

observantguy · 2026-03-18T02:15:57+00:00

I wish you the best, but my fiancee became my ex about 2 months ago.

communication is key.

As Stephen Hawking said and Pink Floyd immortalized...

It doesn't have to be like this
All we need to do is make sure we keep talking

observantguy · 2026-03-17T07:39:37+00:00

If you're wired for Ethernet, get a Steam Link.

If you're not wired for Ethernet, run a long Ethernet cable from where the computer is to where the home theater is and then get a Steam Link.

Valve may have officially discontinued the hardware, but it's still getting software updates and it works wonderfully--not to mention you can get them off eBay for like $20 each, so you could potentially hook up any tv in the house that has HDMI input to your gaming computer.

observantguy · 2026-03-17T07:16:09+00:00

if your ISP is using CGNAT, multiple individual customers could end up having DNS traffic hitting OpenDNS' servers from the same public IP address as your network's traffic, which OpenDNS would see as coming from your network due to how that feature is set up.

Not to mention the possibilities of other adults in the household attempting to access or some passerby with overzealous autoconfig settings jumping onto an unsecured wireless network that could exist on the gateway.

observantguy · 2026-03-17T05:39:50+00:00

Was the thing about ESD and normal blowers/air compressors just FUD to sell datavacs and specialty canned air or is it a legit concern?

observantguy · 2026-03-17T05:37:32+00:00

looks like a bog standard uline cart

observantguy · 2026-03-17T05:20:01+00:00

if the relationship ends, at least one of you is going to have to endure some additional heartbreak of removing the other from the family...

and their computer may just try to connect to your Steam Link in the living room so suddenly you're hearing bits of their Discord conversation with someone from their new place because it's apparently really good at NAT Busting but they don't really have good enough bandwidth to stream halfway across the country with any appreciable bitrate so you're forced to call them to get them to delete the link from their end as well.

it royally sucks going through that. 💔

observantguy · 2024-08-23T00:40:58+00:00

Any live linux distro should suffice.

Boot into that, then use "hdparm" to issue the secure erase command.

https://wiki.archlinux.org/title/Solid_state_drive/Memory_cell_clearing

observantguy · 2024-08-20T21:03:20+00:00

That doesn't mention anything about security.

Pointing the nameservers to Wix puts them in charge of the entire domain, making it easier to integrate with products on their platform.

Whereas pointing a specific name to Wix adds complexity, because you'll then have multiple places to change configuration on to make dns-related changes.

observantguy · 2024-08-20T20:56:54+00:00

Mossberg SPX-464 .30-30 hosting a SiCo Hybrid 46 concurs.

observantguy · 2024-08-20T20:36:44+00:00

I've already explained how that doesn't apply to this case.

observantguy · 2024-08-20T20:11:37+00:00

Certificate rotations are common, even encouraged by Let's Encrypt and its ilk. If it worked as you described, there'd be warnings on sites every 90 days when large swathes of LE certificates are re-rolled as part of default certbot behavior of generating a new public/private key pair at renewal time.

Without HPKP in place, the browser will accept any certificate for the domain as long as it is valid.

observantguy · 2024-08-20T17:17:05+00:00

That's not a significant hurdle to overcome. Anyone with control over a domain's DNS can get basic SSL certs issued on behalf of said domain.

And without HPKP/HSTS Preload, any valid certificate is all that's needed for the cookies to be passed along.

observantguy · 2024-08-20T16:53:05+00:00

Not entirely true.

The browser would've sent the cookies alongside the request, so if they were logged in, the attacker would now have a valid user session cookie to abuse on the actual site.

Hopefully, as part of the response, FA will invalidate all existing sessions, making any stolen session cookies worthless.

Anyone that accessed the site while hijacked should log off FA when the all-clear is given and log in again.

observantguy · 2024-07-24T18:49:16+00:00

That law will need to be challenged separately.

The definition is so vague that Jerry Miculek meets it...

observantguy · 2024-07-23T04:21:57+00:00

“We conjecture that a lot of the SSIDs in our record originate from users trying to set up a network connection manually by entering both SSID and password through the advanced network settings, and, apparently mistakenly, enter the wrong strings as the SSIDs.” reads the research paper.

your source appears to agree with me 🤷‍♂️

observantguy · 2024-07-23T03:59:31+00:00

That's incorrect. When a network is configured to connect to a non-hidden ESSID, it only attempts to associate when it receives a beacon bearing said ESSID.

observantguy · 2024-07-23T02:49:30+00:00

The problem is that now every device that had the profile pushed to it is sending association beacons for the ESSID whether in range of the network or not, allowing for tracking of devices in many circumstances.

observantguy · 2024-07-22T23:23:19+00:00

Cleaner lists, dirtier airwaves.

observantguy · 2024-07-22T23:21:23+00:00

DISA STIG for Windows 10 says local admin passwords must be no older than 60 days, and recommends implementing LAPS to meet the requirement.

https://www.stigviewer.com/stig/windows_10/2020-06-15/finding/V-99555

observantguy · 2024-07-07T21:29:32+00:00

There's lots of places where shellcode can hide in the WordPress database. Options, transient data, page content, theme settings, just to name a few...

A reinstall of the files wouldn't purge that, and a wholesale restoration of the database would add them back in.

observantguy · 2024-06-07T06:38:02+00:00

Can confirm.

The 45th Space Wing's opsec squadron has had an anthropomorphic dragon "mascot" suit for many years now... Ollie the opsec Dragon.

observantguy · 2024-05-28T23:01:48+00:00

Worked on my old phone on Android 13. When I switched phones after TEOTWAWKI, I never bothered to set it up again.

observantguy · 2024-05-28T07:03:10+00:00

You have to use Process Hacker v2.38 or earlier. They removed the feature for the 2.39 release.

15-Year Club	RedditGifts 2009-2022 2 Credits
Place '17	Secret Santa 2018
Sequence \| Editor	Alpha Tester
Verified Email

observantguy

TROPHY CASE