Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
Donations
Please Support Us!

Please help keep (=WDG=) alive

Donate with PayPal!
Last 100 Shouts:
January 27, 2024, 05:26:45 PM
Happy new year WDG
December 10, 2023, 05:52:39 PM
Hello Power!
November 24, 2023, 09:51:34 PM
Helloes! I'm here for my annual password change! How is everyone doing?
August 03, 2023, 08:42:51 PM
WDG are going to i71. All welcome. Message for more information or ask on discord
July 27, 2023, 07:35:21 PM
The WDG discord channel is up and running. Send me a message or post for details
December 08, 2022, 04:05:12 PM
Odd. Should do. Send Mode a messsage here. He should be able to pick it up and send you an invite
December 07, 2022, 11:26:55 PM
@berath link doesn?t work Sad
August 08, 2022, 09:32:46 PM
December 23, 2020, 12:34:53 PM
Spammers be gone!
September 28, 2020, 11:18:57 PM
Nice!
September 28, 2020, 09:55:06 PM
I’m in 🙌
September 28, 2020, 02:59:45 PM
Yay!!!!!! Wix is in da house
September 28, 2020, 02:55:44 PM
Hey Berath !! I made it !
September 25, 2020, 05:13:56 PM
Wix - we may have some new friends playing a new game finding their way here soon.....
July 01, 2020, 11:05:23 PM
Hello Terror. People still drop by here now and again
June 29, 2020, 02:02:45 PM
Hi guys. I hope you are all well and keeping sane and safe during these trying times (and all that).

Just FYI that mode was looking for ways to get back in touch via reddit (r/WDG).
February 24, 2020, 09:26:46 AM
Zombie TF2? Do we need to dress up?
February 19, 2020, 01:03:56 AM
I'd play zombie TF2
February 19, 2020, 12:52:19 AM
Any appetite for a TF2 revival?
February 19, 2020, 12:52:01 AM
Awesome
February 19, 2020, 12:48:30 AM
Yes this thing is still on
February 19, 2020, 12:47:16 AM
Hello! Is this thing still on?
December 26, 2019, 12:43:10 AM
Merry Christmas!!!
August 13, 2019, 07:35:11 PM
Sweeping and clearing out the cobwebs, keeping everything spruce https://gph.is/2oImD0j
March 08, 2019, 11:38:14 AM
Cheers Stu / Berath was going to happen one day Sad
March 06, 2019, 11:08:46 PM
It's officially 'not secure' according to Chrome now
March 06, 2019, 11:07:11 PM
Damn. 1&1 have upgraded their something or other but seem to have allowed for ancient forums like this to keep on
March 05, 2019, 03:37:50 PM
NuB site is no more due to a forced PHP v7 upgrade on the web host that breaks SMF/TinyPortal.
January 31, 2019, 09:50:48 AM
Sad
January 22, 2019, 11:22:09 PM
Sad nub  site down Sad bye bye

January 01, 2019, 11:43:02 AM
Happy new year.
Who Dares... Grins!!
December 30, 2018, 08:04:52 PM
no
December 29, 2018, 12:05:55 PM
MEssaage me
for a free steam key for faeria
December 25, 2018, 02:35:39 PM
merry xmas wdg
December 23, 2018, 11:34:33 AM
Hello Milli!
December 21, 2018, 10:55:25 PM
Hello WDG!
December 13, 2018, 10:51:13 PM
I still pop by to give the old place a dusting and clear out
November 09, 2018, 03:36:17 PM
The shoutbox has actually had shouts in it recently? Impossible.
November 08, 2018, 07:45:58 PM
:dohjan: :newkid:
November 06, 2018, 07:11:48 PM
Enjoy!
November 05, 2018, 11:49:05 PM
Just poking about
June 02, 2018, 12:56:39 PM
Goodness me, so it does!
May 22, 2018, 03:38:35 PM
this site needs a shout in 2018 Smiley
November 16, 2017, 08:08:43 PM
Spam removed. Thank you muchly Hulinut
October 15, 2017, 06:02:47 PM
Yay, been fixed!
October 14, 2017, 07:08:12 PM
I'm trying to get the mumble server up again
October 11, 2017, 06:23:26 PM
Orange Box 10 years old wow
June 18, 2017, 09:46:41 PM
Fluffy!
June 14, 2017, 03:14:35 PM
:p
May 30, 2017, 10:14:48 PM
Hmph. Spammers!
April 19, 2017, 08:20:44 PM
Also - hai!
April 19, 2017, 08:20:38 PM
Just in case no-one saw it - I posted about i61 over on the wdg-reddit!
April 17, 2017, 02:18:03 PM
April 16, 2017, 12:28:45 PM
Don't mind me, just helping Berath clean up the dust
April 04, 2017, 09:46:13 PM
Mumble server down: I've submitted a ticket
March 13, 2017, 01:20:32 AM
It is. Sleeping
March 11, 2017, 06:24:54 PM
so quiet
December 06, 2016, 03:10:39 PM
Every day or so I drop by to empty out the logs, dust down the furniture and shake out the curtains
November 04, 2016, 05:15:57 PM
How's tricks WDG?
November 02, 2016, 10:36:32 PM
Yay CruelCow!!
November 01, 2016, 08:17:40 PM
Yeah, I still check here regularly
November 01, 2016, 06:16:46 PM
Forum is back up after I did some tinkering. Did anyone notice it was down?!?
September 03, 2016, 05:48:48 PM
Thanks for offering but platformers = frustration for me. All that jumping about and getting impaled
September 03, 2016, 10:54:37 AM
Does anyone want a 75%off coupon for Feist?
July 09, 2016, 02:56:39 PM
I knew you were behind them!
July 08, 2016, 11:40:05 AM
What the fucking hell is all this shit?

You'll be blaming me for shit Tf2 updates next!
July 06, 2016, 11:35:09 PM
Therefore, Lefty is indeed responsible
July 06, 2016, 10:56:20 PM
Wales voted Leave
June 25, 2016, 05:30:56 PM
Well he *is* called Leftism
June 24, 2016, 07:36:47 PM
I'm going to completely unjustifiably hold Lefty to blame for the Brexit.
That is all.
June 05, 2016, 01:56:52 PM
Woop woop i58 ticket bought!
May 13, 2016, 06:08:28 PM
I want that game
May 07, 2016, 10:20:36 PM
its not optimized well just like the ps4 version
May 07, 2016, 09:01:50 PM
why does everyone's gone rapture run like doggegg on my pc
April 13, 2016, 05:18:58 PM
Just to really bang it home. WDG sub-reddit here: https://www.reddit.com/r/WDG/
April 06, 2016, 10:06:39 AM
Thank you Smiley
April 04, 2016, 04:24:56 PM
Just send you one.
April 04, 2016, 10:48:17 AM
If there are any still going, I'll have one
April 02, 2016, 11:47:32 AM
i have beta passes if anyone wants them as well
March 23, 2016, 12:18:40 PM
If anybody wants a tf2 competetive beta pass, i have a spare.
March 18, 2016, 12:18:46 PM
It's too expensive Sad
March 15, 2016, 03:24:04 PM
Will you all go buy The Division now so I have someone to play with? Smiley
March 11, 2016, 08:32:56 PM
FIREWATCH
March 11, 2016, 07:56:09 PM
March 11, 2016, 07:56:08 PM
March 02, 2016, 06:02:38 PM
some of the stealth sections are a bit of a drag, but they're not as bad as the VIP escort missions in THE VITNESS
March 02, 2016, 12:06:23 PM
Easy with the spoilers, guys! I'm still  on the blunderbuss part.
March 01, 2016, 09:17:32 PM
Can't believe Henry managed to use his NAVY Seal experience to defuse the bomb that was strapped to the bear in the end
March 01, 2016, 03:38:29 PM
I just unlocked the rifle scope in firewatch, makes it much easier to pick off bears before they get into melee range
March 01, 2016, 12:34:14 PM
FIREWATCH
March 01, 2016, 12:13:37 PM
I can't believe GAMERS don't like the witness. It's the MOST GAMER game EVER.
February 29, 2016, 12:08:32 PM
Its overrated. Now FIREWATCH on the other side...
February 29, 2016, 11:21:43 AM
I got the basic ending in the witness and it was B A D
February 22, 2016, 10:58:37 AM
I have no understanding of the environmental puzzles
February 22, 2016, 10:58:25 AM
Every so often someone says something about "environmental puzzles" in the witness and I skip it because of spoilers
February 15, 2016, 01:02:48 AM
press x to exercise 5th freedom
February 14, 2016, 11:53:36 AM
My game came with an EXCLUSIVE PREORDER CODE for the Chaos Theory suit, shoulda preordered DUH
February 14, 2016, 02:02:52 AM
i want the super stealth suit.

I go lethal on grim missions
February 13, 2016, 12:40:44 PM
any of the optional missions are annoying.
Calendar
March 2024
MoTuWeThFrSaSu
123
45678910
11121314151617
18192021222324
25262728293031

Birthdays
iondine (28), Guilt (42)

Upcoming Events
April Fools
Upcoming Birthdays: iondine (28), Guilt (42)
Members
Total Members: 304
Latest: vayuh
Stats
Total Posts: 126972
Total Topics: 4002
Online Today: 63
Online Ever: 340
(September 23, 2014, 12:11:24 PM)
Users Online
Users: 0
Guests: 45
Total: 45
Pages: 1 [2]
Print
Author Topic: Security  (Read 10105 times)
0 Members and 1 Guest are viewing this topic.
DeadlyAvenger
Ex-Leader
Donator
*

Karma: 1265
Offline Offline

Gender: Male
Posts: 5291


Spam, Egg, Sausage, Chips and Spam


WWW
« Reply #15 on: April 12, 2014, 12:06:40 AM »

http://arstechnica.com/security/2014/04/nsa-used-heartbleed-nearly-from-the-start-report-claims/

I was ignoring the cries of conspiracy at first. But hmmmmm. To be fair they probably have the people to do the software verification than OpenSSL couldn't be bothered to do. But still, right from the start? Getting a bit suspicious.

It seems a bit toooo convenient that they would know about it from the beginning and rather than inform OpenSSL they would let it stand for 2 years and cause so much damage.
Logged

Leftism
"Stay Calm and Listen to the Mad Lefty!"
Clan admin
****

Karma: 263
Offline Offline

Gender: Male
Posts: 1441



« Reply #16 on: April 12, 2014, 12:23:01 AM »

Being the devil's advocate here, but is it within the NSA's purview/interest to maintain a user's privacy? :x
Logged

"Those fucks will not save you. A knock on your door is coming." - DodgyEmu
discordance


Karma: 417
Offline Offline

Gender: Male
Posts: 4933


Curious


« Reply #17 on: April 12, 2014, 12:13:21 PM »

The FBI website was using it, considering they are about the only people who could arrest the NSA for what they know are illegal activities they were probably pretty keen to exploit is as long as possible. Its not really surprising they knew and didn't reveal it, or that they knew because they presumably review all security code they can find. I mean either their review capabilities are so good it only takes them a week or two to start exploiting stuff or it was a set up after all. Considering how crap the internal reviews are at OpenSSL its obviously possible to get stuff past them if you were really trying and would require only the developer to be compromised, hell you could even change his code remotely before commit and he probably wouldn't have noticed. If the NSA are producing exploits on purpose they would look like innocent C coding errors like this one. But if the open source teams are as bad as this one seem to be the NSA doesn't need to go to all that trouble it can just wait for mistakes to be made.

Either way the sources from that article and anonymous and weak, still need more facts here.
« Last Edit: April 12, 2014, 12:16:36 PM by discordance » Logged

DeadlyAvenger
Ex-Leader
Donator
*

Karma: 1265
Offline Offline

Gender: Male
Posts: 5291


Spam, Egg, Sausage, Chips and Spam


WWW
« Reply #18 on: April 12, 2014, 12:25:35 PM »

Either way the sources from that article and anonymous and weak, still need more facts here.

The NSA have also posted on their twitter page and some official tumblr blog (lols) denying they knew about it before the public announcement. Still...
Logged

CruelCow
Unofficial Official Non-WDG WDG member


Karma: 1665
Offline Offline

Gender: Male
Posts: 5922


Move along. Nobody suspicious is here.


« Reply #19 on: April 12, 2014, 12:42:52 PM »

Being the devil's advocate here, but is it within the NSA's purview/interest to maintain a user's privacy? :x

The NSA actually has two jobs: offense and defense (though sometimes the distinction isn't very clear ofc)

Ideally they would have backdoors that only they can use, that are hard to detect and even harder to trace back to them. (Which is why they put so much energy into recording and storing web traffic: Undetectable and if sometime in the future cryptography/computing power becomes good enough to crack the stuff, they can go back to it.)

Whether they (would) have seen more benefit in using this bug or saving their people from it is up to debate.

IF they knew, they probably wouldn't protect their publically facing websites: it would be a huge tipoff and there shouldn't be anything super valuable on those servers anyway.




Also, xkcd posted a nice non-technical explanation of the bug:
« Last Edit: April 12, 2014, 12:44:35 PM by CruelCow » Logged
Karthus
Sound the bigplaysiren


Karma: 731
Offline Offline

Gender: Male
Posts: 3377


Tommy thinks I can make movies


« Reply #20 on: April 12, 2014, 04:17:23 PM »

Logged
Pages: 1 [2]
Print
My CommunityForumPublicTechnicalTopic: Security
Jump to:  


Who Dares... Grins UK TF2 Clan