Damn, the day suddenly goes so fucking slow when you can't wait for the day after 😞

!dev

Motherfucker. I always have this. Going to a festival Thursday and Friday and will miss the first artist at Thursday due to friends arriving later.

WHY IS THE ONE ARTIST I DON'T WANT TO MISS AT THURSDAY ALSO THE FIRST PLAYING THIS DAY 😭

I've been waiting for this for half a year 😣

New Dutch (or european?) law requiring https for any website with a contact form or higher is going into effect very soon. Were contacting customers so they can still be on time with this, this is how most convo's go:

Collegue: *explains*
Client: Im sure my security is good enough...
Collegue: i'd really recommend it, we've got free options as well!
Client: its just a secure connection, whats the big deal...
Collegue: *more arguments*
Client: I just don't see the point, security.... well.... does it really matter that much...
Collegue: Google might place you lower in the search results if you don't get a secure connection.

Client: 😶😥😵 uhm so what were the https options again? 😅

I hope they all die a painful death 😠

Fleksy keyboard: We don't access your private information and upload it to the cloud!

No, because I'm blocking your Internet access through a fucking root firewall.

On my way to buy a second hand Oneplus One!

I don't think that not being able to remove Google services from my phone because this phone isn't supported by open source roms is a valid excuse anymore, especially since the new dutch surveillance law goes into plan the 1st of May.
I don't have that much money but I can afford this second hand device right now so let's do this.

Will install an open source rom without Google apps onto it!

Will do a much-security.nl post with answering sent-in questions this weekend.

Please send them to concerns@much-security.nl 😊

Public GPG key can be found at either:
https://much-security.nl/concerns.a... or https://much-security.nl/concerns.h...

Oh and threats (including death threats) aren't much appreciated. They don't really keep me awake at night but if you're one of the people sending them, it's not much fun 😬)

The new Dutch mass surveillance law goes into action on the first of May. I'll of course have a good security setup ready but that does not stop the bulk data collection.

I just setup a website which (still in English at the moment) requests a random search result from bing, google or DuckDuckGo every 3 seconds.

Will work on making it more 'real' :)

If stopping the surveillance isn't an option, let's add more data to filter out for them!

NO FIREFOX AND CHROMIUM, I ALREADY SET THE FUCKING CORS HEADERS CORRECTLY ACCORDING TO THE OFFICIAL FUCKING NGINX DOCUMENTATION. WHY THE FUCK ARE YOU STILL DISALLOWING CROSS-ORIGIN REQUESTS?!

A call I had today, girl registered a domain and put it in her hosting package:

Girl: so where can I view my email accounts?
Me: *explains*
G: Oh, I wanted an email address with info or my first name as part before the @ but I only see an account with the name of my hosting account username?
Me: that's right, that's a default one you get :)
G: oh 😞 I....I.... I've always have wanted a domain name with my own email addresses linked to it and I thought I could do that this way 😩
(I could hear the disappointment and that she seemed very sad suddenly)
Me: do you see that "create new email account" button up there?
G: Yes..... Wait.... Can I make like multiple email addresses myself?!
Me: as many as you can manage inside your hosting account!
G: 😵😍 OH MY GOD
Me: Haha, enjoy creating some!
G: THANK YOU I LOVE YOU BYE
*Click*

It's those moments which can make your fucking day!

Published a new blog article last weekend (finally) and had the idea to make a privacy/security Q&A one this weekend.

I'd make an email address for it to which you can email (a) question(s).

What do you people think?

!dev

Honestly I love the summer (hate the cold) but motherfucker, hyperhidrosis is a fucking bitch (not diagnosed but one doesn't need to be a genius to figure this one out in my case)

😥

An entire evening and partly night of server disruptions while I'm on call.

I'm sitting here, sleep drunk, on my train 😅

Non dev related but: release my first track 😊

I'd love to create something which is near musical perfection for myself 😃

There's a couple of tracks which come close for me but not 99 percent yet.

Question for networking persons or persons who might know more about this than me in general.

I'm looking at setting up a server as vpn server (that part I know) which tunnels everything through multiple other vpn connections.

So let's say I've got a vps which I connect to through vpn. I then want that vps to have one or multiple connections to other vpn servers.

That way i can connect my devices to this server which routes everything to/through other services like mullvad :).

Tried it before but ended up losing ssh access until reboot 😬

Anyone ideas?

Had my first 'mentor' moment at work today!

Newest guy couldn't figure something out and asked me, slightly nervously, for help.

Suddenly I went into mentorish state, explaining stuff I was doing while fixing it in under a minute!

Felt good 😃

Slept terrible the entire week due to a fucking annoying cold.

My turn of being the on call server engineer for a week starts tomorrow.

😭

Had to explain a developer from a wordpress dev agency where to find the wp-config.php file and what it does/what the values do.

This person has been doing this for years.

I looked at this config file for nearly the first time in my life.

I literally had to explain her which variables stood for/did/meant what.

I am fucking done with today.

IPod didn't sync well on my Linux machines so decided to give windows - in a highly isolated environment disconnected from the Internet behind a firewall and sandbox - a shot with itunes.

- during the installation it wouldn't detect the fucking harddrive multiple times (genuine unlicensed copy) and after the 4-5th time it's random-fuckingly recognized out of fucking nowhere; I didn't change shit.
- crashes (blue screen and freezes) multiple times during the installation, multiple retries and suddenly it works(?!)
- it took about 10 minutes (!!!!!!!) to install 10+ drivers for an iPod and an external hdd:
Installing Apple iPod drivers... Done
Installing seagate drivers... Done
Installing apple iPod drivers... Done
Installing seagate drivers... Done
Installing Apple iPod drivers... Done
Installing seagate drivers... Done
Installing Apple iPod drivers... Done
Installing seagate drivers... Done
Installing Apple iPod drivers... Done

WHY INSTALL THOSE FUCKERS 5 FUCKING TIMES?!

- iTunes installation fails multiple times without error code (unknown error occured, restoring to original state...),just said fuck it and clicked the shortcut after the ***th fail and it works just like this, THANKS FOR NOTIFYING ME (NOT)!
- iTunes has to restore the entire ipod, this was done with iTunes in the store I bought it already, thanks for nothing.
-restore takes 30+ minutes?!
-syncs the iPod 3 times afterwards.

*clicks close button*
*are you sure you want to quit? Sync in progress*
*oh shit, cancels*
*itunes quits*
*?!?!?*

*tries to import media library*
*seagate hdd suddenly not detected*

I'm fucking tired of this bullshit, windows and iTunes can go die in a fucking corner after getting ass raped while their genitals are being scraped off layer by fucking layer and dipped into fucking acid.

Mother of god, was listening to the US govt hearing of zuckerberg about the recent scandals. The amount of very fucking simple obvious questions he 'could not' answer normally...

Govt person: Would you be willing to change Facebook's business model if this was required for the security and privacy of Facebook users' accounts?

Zuck: I don't understand your question.

Sorry, WHAT?! You don't need particular rocket science to understand what's being asked here. A combination of common sense and knowing the English language and English grammar in combination with maybe having finished some form of education should be enough to understand this ridiculously easy question.

Do you need it written on a golden plate with fucking blue letters in Facebook's font with the S letters as dollar signs while drinking 10 gallons of 'fuck every persons privacy'?!

Or maybe shoving it up your ass in the form of heated/glowing metal letters of 10+ inches in height? We could arrange that as well.

A fellow intern recommended the use of windows server for security and speed reasons.

Few details about the situation: windows server got hacked due to a vulnerability which had no patch released yet and this had happened multiple times that year. Also, the company was migrating everything to Linux (servers).

The senior/lead programmer literally gave him a GTFO face and pointed at the door.

Everyone was giving him the GTFO face by the way, he didn't know how fast he had to get out 🤣

Alright fuck it, let's release this fucker!

https://lynkz.me is the main domain. The interface is *usable* and nothing more than that. I'll invest more time in that soon but for now, hey, it works.

Api is located at https://api.lynkz.me.
Documentation for this (literally some echoes to the screen but it contains the needed information for now) is at that api url.

Found a bug or a security vulnerability? Please let me know!
Yeah I use mariadb but sql injection is luckily not possible due to quite some sanitization ;)

WARNING: if you make a shortened url and forget the delete key, you won't be able to delete it.

Let's see how this goes 😅

That moment that everything seems to be working well enough but you're too afraid to release because of stuff you might have missed 😅

Found two awesome domain names (shown as available on namecheap) for the url shortener!

Paid when an error appeared. Contacted the customer service through the live chat.

A bug in their system showed them as available while they're taken.

😭

After 3-4 FUCKING hours I finally found a bootstrap thingy which properly centers a div!

In my defense, this shit is all Chinese to me so it's copy-paste-lets-hope-this-works 😅

Custom CSS? Who am I kidding, I'm a backend/security/server guy.

Fuck this shit, bootstrap, here I come!

Url shortener seems to be working well enough as for the features without interface yet, still doing testing but it's looking good (few minor non-critical bugs but that's it as far as I can see)

Now the frontend/interface.

😅😰😬

Was literally about to release a test version of the url shortener when I did some more testing and found some security vulnerabilities, let's fix those first tomorrow 😅

This link shortener service. It's nearly good enough for public testing.

Finding a good domain name, though.... 😅

Overheard a phone call of a collegue:

Person on phone (P): okay so how do I upload the code?
Colleague (C): well you could use filezilla for example
P: oh... okay... yeah.... So how does that work?
C: you said earlier that you were going to hire a more technical person, a developer, to develop this wordpress side, maybe he/she could help you out with this?
P: I am that developer.

C: 😶😐

Dear namecheap, I honestly love your service and prices but how in the hell can I see an ip address in the dig of a new domain (url shortener) which I never put or saw there and which doesn't even belong to any server I own/operate?!

DNS cache after the last chance of three days ago, nah, don't think so.

Fucking hell.