#archiveteam-bs 2014-09-25,Thu

↑back Search

Time Nickname Message
03:12 🔗 dashcloud I just went to upload a file, and it was too large- the service tells me if I upgrade, I can upload files up to 931322.57461548 GB large- that's incredibly precise, and makes me wonder if that number has a special meaning
03:17 🔗 vantec Free space in one of the racks? idk
05:10 🔗 yipdw one of the EC2 instances at work has 224 MB of security-only updates
05:10 🔗 yipdw I have no confidence that this thing has not already been owned several times
05:11 🔗 xmc yow
05:12 🔗 yipdw using EC2 outside of Elastic Beanstalk seems like a bad way to go heh
07:08 🔗 godane SketchCow: i have 98 items waiting to be derived
07:08 🔗 godane i really hope more IA gets back online soon
07:09 🔗 SketchCow Someone needs to get this:
07:09 🔗 SketchCow http://www.nec-computers-ap.com/driver.htm
07:27 🔗 godane i'm looking in to it
07:27 🔗 SketchCow http://www.nec-computers-ap.com/default.htm is main page....it will be up for another 4 days....I saved the FAQ page manually as HTML but we really need all the driver pages as HTML as each page at least tells you driver version and release date and for bios usually gives very specific installation details. So that was what I was having trouble configuring htttrack to do. Get the drivers and the pages that link to the drivers. ;)
07:27 🔗 SketchCow I saved the p82xx files also...I think one of the Bluetooth driver links was dead but it was same driver for p72xx series or vice versa so that is recoverable . I ordered the driver discs for the models I had before they closed support but they wouldn't let me buy windows installer discs for machines I didn't have serial numbers for...so i couldnt get like one for each series. And I also need to compare the discs they sent and check driver vers
07:30 🔗 godane path: http://www.nec-computers-ap.com/user/Drivers/Modem/Conexant_RD01%20D850%20modem%20driver_V710405.exe
07:32 🔗 godane so i figure once you know the file category and file name we can grab all of it
07:33 🔗 godane by me blute forcing the driver.aspx?a=$number pages i will be able to get the download pages
07:34 🔗 godane from there we can see the catagorys
07:51 🔗 BlueMax blute
07:51 🔗 BlueMax lol
08:18 🔗 godane 3760 download pages in total i think
08:37 🔗 godane i'm grabbing the download pages now
09:06 🔗 joepie91 godane: you taken care of nec-computers-ap?
09:07 🔗 godane yes
09:07 🔗 joepie91 OKAY
09:07 🔗 joepie91 okay *
09:07 🔗 godane i got all the download pages
09:11 🔗 midas YES joepie91 CAPS IS BETTER!
09:11 🔗 * midas hides
09:15 🔗 * BlueMaxim stabs midas
09:36 🔗 schbirid Noah Everett talking about archival of internet history https://www.youtube.com/watch?v=mBCzREson1A
10:20 🔗 godane i got to love nec downloads are going at very slow speeds
10:23 🔗 godane looks even though its 3759 download pages
10:23 🔗 godane there is only 1436 files
11:31 🔗 godane new way to grab the drivers: zcat *.warc.gz | sed 's/\></>\n</g' | grep -A2 ">[0-9][0-9][0-9][0-9][0-9] bytes" | grep driversdl | sed "s|.*blank'>||g" | sed 's|>||g' | sort | uniq
11:32 🔗 godane i'm grabing them by size
11:32 🔗 godane this way i can grab all the smaller files quickly
11:46 🔗 antomatic very nice!
11:52 🔗 godane there are 405 file names that are in the 6 digit file size
13:34 🔗 BiggieJon anyone running *nix boxen and bash shell needs to update - http://arstechnica.com/security/2014/09/bug-in-bash-shell-creates-big-security-hole-on-anything-with-nix-in-it/
13:42 🔗 Jonimus well and bash scripts in your /cgi/bin
13:43 🔗 Jonimus as far as I know I've not seen an attack vector that doesn't require being able to set environment variables
13:44 🔗 BiggieJon http://linux.slashdot.org/story/14/09/24/1638207/remote-exploit-vulnerability-found-in-bash
13:44 🔗 BiggieJon the slashdot article mentions openssh also
13:46 🔗 Jonimus yes but they need a login first, but yes if you have untrusted users patch patch pathc
13:47 🔗 BiggieJon I never trust users
13:48 🔗 joepie91 Jonimus: no, they do not necessarily
13:48 🔗 joepie91 that's the point
13:48 🔗 joepie91 there's a number of ways in which environment vars can be set remotely
13:48 🔗 joepie91 CGI / AcceptEnv * are two common methods
13:48 🔗 joepie91 but certainly not the only ones
13:49 🔗 joepie91 I'm not sure AcceptEnv * even requires a valid login
13:49 🔗 joepie91 to exploit it
13:53 🔗 midas phpcgi for example?
14:03 🔗 joepie91 midas: does anybody actually still use PHP with plain CGI>?
14:10 🔗 BiggieJon I work for a large web hosting company, the answer is yes, you wouldnt believe the ancient crap people still insist on suing
14:10 🔗 BiggieJon *using
14:13 🔗 schbirid i am a customer of a large web hosting company, you wouldnt believe the ancient crap they still insist on using :(
14:13 🔗 schbirid debian squeeze ftw
14:14 🔗 BiggieJon ouch
14:14 🔗 BiggieJon we use cloudlinux which is based on centos 6
14:20 🔗 joepie91 lol centos
14:20 🔗 joepie91 though to be fair
14:21 🔗 joepie91 apparently cloudlinux is noticeably less shit than plain centos
14:21 🔗 midas joepie91: yes.
14:22 🔗 midas im forced to use centos at work.
14:22 🔗 midas shitos
14:22 🔗 midas yesterday i had to manually press a button to start upgrading bash
14:23 🔗 midas all my debian/ubuntu boxes already did that, and all i needed to do was check my email.
14:23 🔗 Jonimus oh knows, one button!
14:25 🔗 midas i didnt go into IT to do stuff manually Jonimus
14:25 🔗 Jonimus I know I was joking.
14:46 🔗 Jonimus BiggieJon: at least you're better than this https://twitter.com/GoDaddyHelp/status/514951676353339392
14:52 🔗 BiggieJon they would be our biggest competition
15:24 🔗 aaaaaaaaa http://www.itnews.com.au/News/396180,amazon-forced-to-reboot-ec2-to-patch-xen-bug.aspx
15:34 🔗 shannon arkiver sent me
15:34 🔗 shannon http://www.zdnet.com/unixlinux-bash-critical-security-hole-uncovered-7000034021/
15:34 🔗 shannon http://www.zdnet.com/first-attacks-using-shellshock-bash-bug-discovered-7000034044/
15:35 🔗 shannon and it's on!
17:03 🔗 yipdw those "first attacks" are probably just people scanning
17:03 🔗 yipdw also the fix is incomplete lol
17:03 🔗 yipdw :(
17:05 🔗 ersi I'm getting pretty tired of all the conversations about the bash vulnerability.
17:05 🔗 schbirid ersi: stop bashing conversations
17:05 🔗 ersi Just hold on to your tits and a fix will be up, then patch, be glad.
17:05 🔗 ersi Drink beer or selected beverage.
17:06 🔗 yipdw be glad seems like the product of hopeless naviete
17:06 🔗 schbirid when i looked through my logs i saw "GET /filebase/{{{file}}}.zip" which filled me with happiness at someone scripting to download alll the files :)
17:15 🔗 midas people care about data! 'uses hands for heart sign thingy'
17:16 🔗 antomatic http://cache.desktopnexus.com/thumbnails/1329050-bigthumbnail.jpg
17:25 🔗 ersi yipdw: Well, the world is a depressing place
17:32 🔗 yipdw I think it's only depressing if you work in computers
17:32 🔗 yipdw it's pretty awesome outside of it
17:32 🔗 ersi heh, not quite unique to us computatorers
17:33 🔗 ersi I'd say that's pretty self-selecting bias
17:33 🔗 yipdw like, what really gets me is the extraordinary shittiness of contemporary software plus all of those Silicon Valley cheerleaders trying to push their software-will-eat-the-world mantra
17:33 🔗 ersi Heh, fuck those guys
17:33 🔗 yipdw the problem is that they have money
17:33 🔗 ersi and presumably those girls
17:34 🔗 yipdw actually I've only seen white dudes push that
17:34 🔗 yipdw women seem to have more sense
17:34 🔗 ersi yea, that's why I carefully added presumably
17:34 🔗 ersi I dunno, you're going to have those assclowns in any business
17:34 🔗 ersi take home building, pre-fab is all the jizz there
17:35 🔗 yipdw oh sure
17:35 🔗 yipdw I'm sure selection bias is all up in this
17:35 🔗 ersi I'm just saying the world in general can be quite depressing, so sit back and relax with a favorite beverage and be glad/contempt
17:35 🔗 ersi :)
17:36 🔗 yipdw contempt or content? :P
17:36 🔗 ersi both
17:36 🔗 yipdw heh
17:37 🔗 ersi I did mean content though
17:37 🔗 ersi but both works
17:50 🔗 midas I love the whole bash security thing, bossman is going 'WHATTHEFUCK PATCH ALL THE SERVERS!' while the foreman is doing that part im already going to bed and telling my boss i had to work to deep in the night
20:42 🔗 schbirid http://smethur.st/posts/176135860
21:24 🔗 wp494 that's a p. banged up car that SketchCow posted on twitter
21:28 🔗 aaaaaaaaa really is, I hope no one has any asymptomatic injuries
21:31 🔗 garyrh .tw https://twitter.com/textfiles/status/515251957314117632
21:31 🔗 botpie91 One driver only had his car for 3 days. Another only had hers for 5. The third is unlicensed. One driver is Piiissed. At fault driver whiny (@textfiles)
21:32 🔗 yipdw I'm expecting an Uber ad
21:41 🔗 midas I think his driver might be a uberist
21:41 🔗 midas https://twitter.com/textfiles/status/515252174755205121
21:41 🔗 midas .tw
21:41 🔗 botpie91 midas: Give me a link, a username, or a tweet id
21:41 🔗 midas backlog it you fool
21:43 🔗 xmc .tw 515252174755205121
21:43 🔗 botpie91 Apparently my taxi has no insurance TWIST ENDING SQUIRRREL (@textfiles)
21:46 🔗 midas what the fuck
21:46 🔗 midas http://www.rantic.com/
21:47 🔗 mistym midas: "rantic" themselves appear to be a hoax. It's hoaxes all the way down?
21:48 🔗 midas still, a call for internet censorship by anyone is mindblowing
21:49 🔗 midas best thing to do now is remove all females from government and revoke the right to vote for women.
21:50 🔗 yipdw not sure how B follows A but ok
21:55 🔗 godane looks like aol files will have music videos also
21:56 🔗 midas because we might as well go back to the 50s and shutdown the entire internet if you start to censor it. heck, not even a month ago we grabbed ferguson because of censoring AND equality yipdw
21:56 🔗 midas before that, ukraine, turkey, iran, iraq etc etc
21:57 🔗 yipdw I meant the bit about women
21:57 🔗 mistym midas: WTF. Even if you're joking, I am not cool w/ statements of misogyny
21:57 🔗 yipdw nobody knows who rantic is, I don't know where the jump in logic is
21:58 🔗 midas mistym: sarcasm, read it again and again untill the penny drops.
21:59 🔗 mistym yipdw: Rantic is a hoax run by SocialVEVO, a group behind some other hoaxes. It seems like they mostly want attention.
22:00 🔗 mistym Their last big one was some dumb Family Guy thing, so I'm not sure they have an agenda more specific than wanting attention
22:00 🔗 yipdw ah ha
22:16 🔗 DFJustin it's just trolling for knee-jerk reactions I guess, first the emma watson stuff to get feminist reactions then go for internet censorship to get all the internet liberty folks hot and bothered
22:17 🔗 DFJustin seems effective

irclogger-viewer