*happily tapping along on my projects while commuting*

Some random kid appears, overly interested in what I'm writing, so I let him look.

Then he goes *snort* do you know why Java threw c out?

No.

*giggles* because c told Java to stop treating women like and objects.

Well, treating them like primitives is no good either.

*kid walks away*
Then I hear: mom. That man ruined my joke, he said treating women like primitives is no good.

Meeting with smooth suit guy:

"So, our company has pivoted"

I hate everything about this guy, not having slept well at all, I fucking snapped:

"Pivoted? Oh wow, what a wonderfully refined word to describe that your asinine business model smacked flat into the mud, that your obtuse bubble of vague ideas popped and your childish dreams of piles of undeserved gold got caught up by the hard reality that your product does not add any tangible value -- yet you tricked your sheepish retarded investors once again to fall for a new hype-filled pitch deck? Congratulations. At least you probably snort enough coke to keep believing in yourself..."

The guy nervously wiped his nose, stuttered, and walked off looking angry and a little confused.

So it turns out, my boss is apparently the major "sheepish retarded investor" in this company.

Today I got a mail from him. I expected fire and fury, nuclear ICBMs crashing into my desk.

"Thanks for your feedback, this is why I invite you to meetings. Could you take a look at their new pitch slides and preliminary API docs for me?"

Following a conversation with a fellow devRanter this came to my mind ago, happened a year or two ago I think.

Was searching for an online note taking app which also provided open source end to end encryption.

After searching for a while I found something that looked alright (do not remember the URL/site too badly). They used pretty good open source JS crypto libraries so it seemed very good!

Then I noticed that the site itself did NOT ran SSL (putting the https:// in front of the site name resulted in site not found or something similar).

Went to the Q/A section because that's really weird.

Saw the answer to that question:

"Since the notes are end to end encrypted client side anyways, we don't see the point in adding SSL. It's secure enough this way".

😵

I emailed them right away explaing that any party inbetween their server(s) and the browser could do anything with the request (includingt the cryptographic JS code) so they should start going onto SSL very very fast.

Too badly I never received a reply.

People, if you ever work with client side crypto, ALWAYS use SSL. Also with valid certs!

The NSA for example has this thing known as the 'Quantum Insert' attack which they can deploy worldwide which basically is an attack where they detect requests being made to servers and reply quickly with their own version of that code which is very probably backdoored.

This attack cannot be performed if you use SSL! (of course only if they don't have your private keys but lets assume that for now)
Luckily Fox-IT (formerly Dutch cyber security company) wrote a Snort (Intrustion Detection System) module for detecting this attack.

Anyways, Always use SSL if you do anything at all with crypto/sensitive data! Actually, always use it but at the very LEAST really do it when you process the mentioned above!

My school stores everyone's username and passwords (including admins) in plain text on a Windows 2007 server that they remote desktop into.

From my work -as an IT consultant in one of the big 4- I can now show you my masterpiece

INSIGHTS FROM THE DAILY LIFE OF A FUNCTIONAL ANALIST IN A BIG 4 -I'M NOT A FUNCTIONAL ANALYST BUT THAT'S WHAT THEY DO-

- 10:30, enter the office. By contract you should be there at 9:00 but nobody gives a shit
- First task of the day: prepare the power point for the client. DURATION: 15 minutes to actually make the powerpoint, 45 minutes to search all the possible synonyms of RESILIENCE BIG DATA AGILE INTELLIGENT AUTOMATION MACHINE LEARNING SHIT PISS CUM, 1 hour to actually present the document.
- 12:30: Sniff the powder left by the chalks on the blackboards. Duration: 30 minutes, that's a lot of chalk you need to snort.

13:00, LUNCH TIME. You get back to work not one minute sooner than 15.00

- 15:00, conference with the HR. You need to carefully analyze the quantity and quality of the farts emitted in the office for 2 hours at least
- 17:00 conference call, a project you were assigned to half a day ago has a server down.
The client sent two managers, three senior Java developers, the CEO, 5 employees -they know logs and mails from the last 5 months line by line-, 4 lawyers and a beheading teacher from ISIS.
On your side there are 3 external ucraininans for the maintenance, successors of the 3 (already dead) developers who put the process in place 4 years ago according to God knows which specifications. They don't understand a word of what is being said.
Then there's the assistant of the assistant of a manager from another project that has nothing to do with this one, a feces officer, a sys admin who is going to watch porn for the whole conference call and won't listen a word, two interns to make up a number and look like you're prepared. Current objective: survive. Duration: 2 hours and a half.
- 19:30, snort some more chalk for half an hour, preparing for the mail in which you explain the associate partner how because of the aforementioned conference call we're going to lose a maintenance contract worth 20 grands per month (and a law proceeding worth a number of dollars you can't even read) and you have no idea how could this happen
- 20:00, timesheet! Compile the weekly report, write what you did and how long did it take for each task. You are allowed to compile 8 hours per day, you worked at least 11 but nobody gives a shit. Duration: 30 minutes
- 20:30, update your consultant! Training course, "tasting cum and presenting its organoleptic properties to a client". Bearing with your job: none at all. Duration: 90 minutes, then there's half an hour of evaluating test where you'll copy the answers from a sheet given to you by a colleague who left 6 months ago.
- 22:30, CHANCE CARD! You have a new mail from the HR: you asked for a refund for a 3$ sandwich, but the receipt isn't there and they realized it with a 9 months delay. You need to find that wicked piece of paper. DURATION: 30 minutes. The receipt most likely doesn't even exist anymore and will be taken directly from your next salary.
- 23:00 you receive a message on Teams. It's the intern. It's very late but you're online and have to answer. There's an exception on a process which have been running for 6 years with no problems and nobody ever touches. The intern doesn't know what to do, but you wrote the specifications for the thing, 6 years ago, and everything MUST run tonight. You are not a technician and have no fucking clue about anyhing at all. 30 minutes to make sure it's something on our side and not on the client side, and in all that the intern is as useful as a confetto to wipe your ass. Once you're sure it's something on our side you need to search for the senior dev who received the maintenance of the project, call him and solve the problem.
It turns out a file in a shared folder nobody ever touches was unreachable 'cause one of your libraries left it open during the last run and Excel shown a warning modal while opening it; your project didn't like this last thing one bit. It takes 90 minutes to find the root of the problem, you solve it by rebooting one of your machines. It's 01:00.

You shower, watch yourself on the mirror and search for the line where your forehead ends and your hair starts. It got a little bit back from yesterday; the change can't be seen with the naked eye but you know it's there.

You cry yourself to sleep. Tomorrow is another day, but it's going to be exactly like today.

... was in the detectify newsletter today, thought you may find this as funny as I do 😅

If every developer looks stuff up on stackoverflow, how do stackoverflows first developer create it?

Pro tip:

Make sure you can RECOVER from your backups.

It's all well and good backing this and that up, but make sure that when the shit really hits the fan you can recover.

I've now 4 days into recovering a raspberry pi that ran:
Pi-hole
Snort
DHCP
VSFTP
Logwatch
Splunk forwarder
Grafana

And serveral other things... I've learnt my lesson

The plight of a graphical programmer.

The example on Microsoft's page for styling .NET applications is in comic sans.

Website still in development but client wanted to get access to add data in backend.
Now client calls every single day multiple times to complain about "bugs" in the frontend 🙈

The moment when you change one single line of code and the whole website is broken ...

Upvote if you are one of the lucky devs, which companies use Google Cloud Storage or any other AWS S3 competitor :)

Delivered a website to a client, pagespeed results 99 on both mobile and desktop (just 1 minus point for implementing Google analytics- since it has a too low caching time). Client insists on having a 100 pagespeed result even it doesn't change real pagespeed ... -.-

The moment when your website works in every modern browser but not in IE 7 and downwards but the QM want you to make it work in IE :/

Hate it when customers are acting like they know everything about IT and then say things that make absolutely no sense ... 😡

Nothing lasts forever ...

Upvote if you also had to describe your job as a webdev as "I do websites" because otherwise they didn't know what you do ... -.-

Had virus cause growth thing on my uvula. Dentist saw it got bigger. So we got another doctor to remove it. He suggested we just take the whole uvula out. He said, "You won't miss it." He had it done as well. They want to biopsy to make sure I don't have "the cancer". Not too worried. Been taking things to prevent that. Mostly good general health foods. Good vitamins and anti-oxidants.

So it took like a month to actually line up the time to do it. I was thinking this would take a while. It took somewhere between 5 and 10 minutes to burn it off. They used a cauterizer thing to cut it off. The whole time I couldn't breath out my nose because my mouth was wide open. I was breathing out seared flesh smoke during this time out of my mouth. Burnt me doesn't taste all that good.

I didn't gag nor puke. The doctor said he was good at dodging just in case. I have a feeling he would be fun to have drinks with.

So he said my uvula was large at the base. So it would take more than a week to heal. He gave me script for meds. I appreciate that because it kinda hurts. It feels like there is that large burn at the back of my throat. Because, there is a large burn at the back of my throat. I told them I came to the doctors office and lost weight. Got the nurse to snort.

I hope this turns out like getting my teeth pulled. Needed meds for right after and not again later. We shall see. It feels like a really bad sore throat. It kinda IS a really bad sore throat. Go figure.

So I'm interested in building a Raspberry Pi stack at home to continue securing and adding my smart home capabilities, 👍

Have ideas for 2/3 but what else could I look to add?

1. Pi. Hole with cloudflared argo proxy for all DNS
2. Home Automation server
3. IPS / IDS like Bro or snort? Or firewall like pfsense?
4. Log server with Splunk agent from other pi's and router....
5. What else?

Ideas in the comments

The moment when you have to style a totally unnecessary div/span jungle of a website and you can't change anything else then CSS ... 🙈

For my bachelor thesis I'm working with Snort (an Intrusion Detection System). Running it on some test pcaps I get X alerts. When I switch the alert output from stdout to a file I get a different number of alerts. When I re-run it, I get yet another number of alerts (on stdout the number is always X)

Wtf?!

So... I got a simple task of choosing the best fitting NIDS/MIDS, as well as deploying it, configuring to fit a specific use case and monitor its outputs for one client at work today...

I'm a little... Anxious. At a first glance, setting up like... Snort... Doesn't seem all that difficult, but I have no idea where this takes me and if what I come up with will ultimately be useful or not... Until now I did simple service configuration changes like apache, nginx, php... And a bit of database management with things like mariadb, mysql, postgresql, mongo or elastic... I feel so... Out of my usual waters.

Do you guys thing a person without a title in network security (or... Any title for that matter) can even manage this?...

Okay, so, I have a functional snort agent instance, and it's spewing out alerts in it's "brilliant" unified2 log format.

I'm able to dump the log contents using the "u2spewfoo" utility (wtf even is that name lol... Unified2... something foo) but... It gives me... data. With no actual hint as to *what* rule made it log this. What is it that it found?

All I see are IDs and numbers and timings and stuff... How do I get this

(Event)
sensor id: 0 event id: 5540 event second: 1621329398 event microsecond: 388969
sig id: 366 gen id: 1 revision: 7 classification: 29
priority: 3 ip source: *src-ip* ip destination: *my-ip*
src port: 8 dest port: 0 protocol: 1 impact_flag: 0 blocked: 0
mpls label: 0 vland id: 0 policy id: 0

into information like "SYN flood from src-ip to destination-ip"