Kevin Karhan :verified:<p>Seriously, <a href="https://infosec.space/tags/CrowdStroke" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CrowdStroke</span></a> should've ended <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> or at least <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> for good...</p><p><a href="https://en.wikipedia.org/wiki/2024_CrowdStrike-related_IT_outages#Background" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">en.wikipedia.org/wiki/2024_Cro</span><span class="invisible">wdStrike-related_IT_outages#Background</span></a> </p><p><a href="https://infosec.space/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CrowdStrike</span></a> <a href="https://infosec.space/tags/InsecureUnderAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InsecureUnderAnyConfiguration</span></a> <a href="https://infosec.space/tags/UnsafeAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnsafeAtAnyConfiguration</span></a> <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Malware</span></a> <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ComSec</span></a> <a href="https://infosec.space/tags/CriticalInfrastructure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CriticalInfrastructure</span></a> <a href="https://infosec.space/tags/SinglePointOfFailure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SinglePointOfFailure</span></a> <a href="https://infosec.space/tags/Resilience" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Resilience</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
social.tchncs.de is one of the many independent Mastodon servers you can use to participate in the fediverse.
A friendly server from Germany – which tends to attract techy people, but welcomes everybody. This is one of the oldest Mastodon instances.
Administered by:
Server stats:
3.8Kactive users
social.tchncs.de: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#unsafeatanyconfiguration
0 posts · 0 participants · 0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> see, <a href="https://infosec.exchange/@douglevin/113266385222353147" rel="nofollow noopener noreferrer" target="_blank"><em>this exact scenario</em></a> is why I act as <em>"<a href="https://infosec.space/tags/BenevolentDictator" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BenevolentDictator</span></a>"</em> and literally lockdown stuff so hard <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechIlliterates</span></a> cant fuck up!</p><ul><li>Unless you put that option on the table as a.fellot <a href="https://infosec.space/tags/TechLiterate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechLiterate</span></a>, you won't be able to survive this game.</li></ul><p>I wasted 15+ years of my life trying to make <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> somewhat secure to come to terms with the fact that ut's an <a href="https://infosec.space/tags/unfixable" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>unfixable</span></a> <a href="https://infosec.space/tags/Givware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Givware</span></a> that is <a href="https://infosec.space/tags/UnsafeAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnsafeAtAnyConfiguration</span></a> / <a href="https://infosec.space/tags/InsecureAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InsecureAtAnyConfiguration</span></a>.</p><ul><li>Believe me when I'd tell you that <em>"<a href="https://infosec.space/tags/Users" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Users</span></a>"</em> like her don't give a shit about what Hardware/OS they get: Just set her up once with a good config (i.e. <a href="https://infosec.space/tags/UbuntuLTS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UbuntuLTS</span></a> if you're lazy like me), backup all the important stuff, setup regular backups, remove <a href="https://infosec.space/tags/sudo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sudo</span></a> privilegues and then you'd only need to check in once a year at most if not have a system that just runs for the next 2-5 years without intervention.</li></ul><p>On the flipside I've seen cases where <a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scam</span></a>|my Sales Reps were able to upsell some 5-digit 21,5" gaming monster to a photographer that uses ACDSee to do minimalist editing of their JPEGs.</p><ul><li>So ideally also do their <a href="https://infosec.space/tags/procurement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>procurement</span></a>. </li></ul><p>At least I <em>won't</em> deal with <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows11</span></a> or any of that shite because <em>noone</em> is gonna pay me enough to loose my sanity over such a garbage software!</p> <p>And yes, <em>WE, THE "TECH LITERATES" ARE TO BLAME FOR THIS</em> because we didn't demand <a href="https://infosec.space/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> and <a href="https://infosec.space/tags/Simplicity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Simplicity</span></a> before <a href="https://infosec.space/tags/Convenience" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Convenience</span></a>!!!</p>
Kevin Karhan :verified:<p>Please look at your specific model on <a href="https://ftp.avm.de/fritzbox/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">ftp.avm.de/fritzbox/</span><span class="invisible"></span></a> and if it has a .image file dated 2023-09-04 OR LATER, get that thing updated NOW!</p><p>If your <a href="https://mstdn.social/tags/FritzBox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FritzBox</span></a> is not listed anywhere OR it didn't get any update dated 4th September 2023 or newer, pull it form it's duty as <a href="https://mstdn.social/tags/Router" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Router</span></a> / <a href="https://mstdn.social/tags/Modem" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Modem</span></a> NOW!</p><p>Because it's <a href="https://mstdn.social/tags/UnsafeAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnsafeAtAnyConfiguration</span></a>!!!</p>
Kevin Karhan :verified:<p><span class="h-card"><a href="https://social.heise.de/@ct_Magazin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ct_Magazin</span></a></span> das Problem daran: ES FUNKTIONIERT NICHT!</p><p>Wäre es wirksam und würde tatsächlich schützen, dann wäre es der Standard.</p><p>Das Problem sind nicht <a href="https://mstdn.social/tags/Schadprogramme" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Schadprogramme</span></a> direkt, sondern die unfixbare <a href="https://mstdn.social/tags/Unsicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Unsicherheit</span></a> von <a href="https://mstdn.social/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> im speziellen und <a href="https://mstdn.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a>-Produkten generell:</p><p>Die sind <a href="https://mstdn.social/tags/UnsafeAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnsafeAtAnyConfiguration</span></a> per Design!</p>
Kevin Karhan :verified:<p>And yet people ask me "Why don't you work as public servant / in public administration / for MIL/INTEL/LEAs ?"</p><p>Cuz they are ALL so dangerously incompetent that one doesn't need some Russian Hackers, but the entire <a href="https://mstdn.social/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IT</span></a> of these is so shit that it's <a href="https://mstdn.social/tags/UnsafeAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnsafeAtAnyConfiguration</span></a> and the decisionmakers are "concrete-headed" morons that prefer papers over skill and will refuse to change yet sacrifice one as a pawn when shit inevitably hits the fan sooner or later...</p><p>I'm done with those...</p>
Kevin Karhan :verified:<p><span class="h-card"><a href="https://mastodon.social/@nixCraft" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nixCraft</span></a></span> true, true...</p><p><a href="https://mstdn.social/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Malware</span></a> as being spread on <a href="https://mstdn.social/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a>, doesn't exist in that sense on <a href="https://mstdn.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a>. </p><p>Because not only are there less <a href="https://mstdn.social/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechIlliterates</span></a> that open up every shit and give it admin permissions, but also because noone uses <a href="https://mstdn.social/tags/UnsafeAtAnyConfiguration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnsafeAtAnyConfiguration</span></a> <a href="https://mstdn.social/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> like <a href="https://mstdn.social/tags/MicrosoftOffice" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MicrosoftOffice</span></a> and subsequent insecure file formats like <a href="https://mstdn.social/tags/OOXML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OOXML</span></a> on Linux.</p><p>Basically the only times <a href="https://mstdn.social/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> is being successful is when someone [criminally] neglected to keep systems updated, which is extremely rare...</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload