HomeSearchPrevious dayNext day

00:17:13ssss joins
00:18:12ssss quits [Remote host closed the connection]
00:26:00AmAnd0A quits [Ping timeout: 265 seconds]
00:53:05etnguyen03 quits [Ping timeout: 252 seconds]
01:07:32etnguyen03 (etnguyen03) joins
01:23:04IDK quits [Quit: Connection closed for inactivity]
01:44:14etnguyen03 quits [Ping timeout: 252 seconds]
02:12:06sec^nd quits [Ping timeout: 245 seconds]
02:14:58etnguyen03 (etnguyen03) joins
02:17:45sec^nd (second) joins
02:28:14etnguyen03 quits [Ping timeout: 252 seconds]
02:37:13etnguyen03 (etnguyen03) joins
02:44:41icedice (icedice) joins
03:37:16<fireonlive>https://github.com/curl/curl/discussions/12026
03:37:25<fireonlive>there’s a time now; 06:00Z
03:40:08<fireonlive>so in like 4 hours?
03:40:15<fireonlive>or 3 ig
03:40:32<fireonlive>wait, 2
03:40:38<fireonlive>dont rely on my for time
03:40:38yzqzss quits [Quit: Reconnecting]
03:40:44yzqzss (yzqzss) joins
03:52:22<nulldata>https://www.youtube.com/watch?v=cRHOcWj--cs
03:52:42<fireonlive>uhh
03:52:48<fireonlive>leaked?
03:52:50<fireonlive>https://gitlab.com/redhat/centos-stream/rpms/curl/-/commit/0783247f07250043dceb74e426f16f9d46147163
03:53:25<fireonlive>11h ago too
03:56:33<nukke>Ofc it's fucking red hat leaking it
03:57:39<fireonlive>yuuuup.
04:09:41<nulldata>It's late and I'm tired - if this is the full patch for the CVE it looks like if you use curl with a SOCKS5 proxy there's potential for it to expose local network resources if a URL with a long hostname is passed?
04:14:35<nulldata>Not great, not terrible. With the hype I was expecting an RCE-level issue
04:25:04<nukke>I thought Daniel said the NIST classified it as critical
04:25:10<nukke>Yet he didn't think it was _that_ bad
04:29:51<fireonlive>yeah i was expecting a lot more, unless i'm misunderstanding it too
04:30:06HP_Archivist quits [Read error: Connection reset by peer]
04:31:04<fireonlive>bad for tor users maybe?
04:34:45<project10>seems pretty tame
05:12:41etnguyen03 quits [Client Quit]
05:24:37<Barto>nukke: daniel is not liking the NIST classification of vuln, so it was a reference to this
05:25:11<Barto>nukke: reference: https://daniel.haxx.se/blog/2023/06/12/nvd-damage-continued/
05:37:29<fireonlive>he said 'HIGH' was 'his' classification and that NVD would probably call it 'CRITICAL' and 'meltdown'
05:39:21<fireonlive>https://twitter.com/bagder/status/1709126845516365886 https://twitter.com/bagder/status/1709171102100885728
05:39:22<eggdrop>nitter: https://nitter.net/bagder/status/1709126845516365886 https://nitter.net/bagder/status/1709171102100885728
05:40:39<fireonlive>also: https://twitter.com/bagder/status/1711707869416984788 lol
05:40:39<eggdrop>nitter: https://nitter.net/bagder/status/1711707869416984788
05:57:38<fireonlive>literally just published now: https://curl.se/docs/CVE-2023-38545.html
05:57:45<fireonlive>"SOCKS5 heap buffer overflow"
06:00:49Mateon1 quits [Remote host closed the connection]
06:02:37Mateon1 joins
06:03:24<fireonlive>https://curl.se/docs/CVE-2023-38546.html libcurl (low) cookie injection with none file
06:08:02Arcorann (Arcorann) joins
06:09:02benjins quits [Read error: Connection reset by peer]
06:14:25<fireonlive>https://daniel.haxx.se/blog/2023/10/11/curl-8-4-0/
06:15:39<fireonlive>PoC: https://infosec.exchange/@harrysintonen/111214844467791428 ack it leaked but he shut up about it: https://mastodon.social/@bagder/111214818507191934
06:19:58<fireonlive>blog post: https://daniel.haxx.se/blog/2023/10/11/how-i-made-a-heap-overflow-in-curl/
06:59:08themadpro quits [Client Quit]
07:01:10<project10>🥱
07:01:37Mateon1 quits [Remote host closed the connection]
07:01:43<fireonlive>yeah
07:01:44<fireonlive>lol
07:01:52BlueMaxima quits [Read error: Connection reset by peer]
07:02:04Mateon1 joins
07:02:53Mateon1 quits [Client Quit]
07:03:20Mateon1 joins
07:25:44<pabs>!a https://www.youtube.com/watch?v=Dr5rx1_0DQo -e Died
07:25:58<pabs>woops
07:49:54Mateon1 quits [Remote host closed the connection]
07:53:10Mateon1 joins
08:24:11<pabs>Progress on no-GIL CPython https://lwn.net/SubscriberLink/947138/9322fc57dae65f34/
08:28:16IDK (IDK) joins
08:36:42lukash94 joins
08:37:50lukash9 quits [Ping timeout: 252 seconds]
08:37:50lukash94 is now known as lukash9
09:29:45parfait quits [Ping timeout: 265 seconds]
09:41:56parfait (kdqep) joins
10:25:01<@JAA>Very underwhelming curl bug.
10:25:10parfait quits [Read error: Connection reset by peer]
11:00:38qwertyasdfuiopghjkl quits [Ping timeout: 265 seconds]
11:02:08qwertyasdfuiopghjkl (qwertyasdfuiopghjkl) joins
11:04:00qwertyasdfuiopghjkl quits [Remote host closed the connection]
11:04:32qwertyasdfuiopghjkl (qwertyasdfuiopghjkl) joins
11:09:43that_lurker quits [Read error: Connection reset by peer]
11:10:01that_lurker (that_lurker) joins
11:22:50benjins joins
11:31:48<AK>Agreed
11:34:07decky_e_ quits [Read error: Connection reset by peer]
11:34:57HP_Archivist (HP_Archivist) joins
12:04:41katocala joins
12:17:28katocala quits [Ping timeout: 265 seconds]
12:19:02katocala joins
12:27:38<nukke>My disappointment is immeasurable and my day is ruined.
12:28:09<katia>hey at leat it's not that bad right
12:28:12<katia>:D!
12:29:28<nukke>I was gonna take PTO at work today but had to cancel so I could patch our servers
12:29:47<nukke>I'm gonna have to write an angry email to Daniel
12:29:54icedice quits [Client Quit]
12:35:46katocala quits [Read error: Connection reset by peer]
12:36:02katocala joins
12:40:40katocala quits [Ping timeout: 265 seconds]
12:40:56katocala joins
13:10:05katocala quits [Ping timeout: 252 seconds]
13:10:28katocala joins
13:30:01katocala quits [Read error: Connection reset by peer]
13:30:36katocala joins
13:54:25etnguyen03 (etnguyen03) joins
13:59:55<thuban>thanks for the curl-bug links, everyone, informative
14:03:03vukky quits [Quit: Ping timeout (120 seconds)]
14:10:35katocala quits [Ping timeout: 252 seconds]
14:10:47katocala joins
14:19:23Arcorann quits [Ping timeout: 252 seconds]
14:20:21icedice (icedice) joins
14:21:41katocala quits [Ping timeout: 265 seconds]
14:22:25katocala joins
14:27:00katocala quits [Ping timeout: 265 seconds]
14:27:18katocala joins
14:36:11katocala quits [Ping timeout: 265 seconds]
14:36:41katocala joins
14:41:23katocala quits [Ping timeout: 252 seconds]
14:42:09katocala joins
15:03:42vukky (vukky) joins
15:08:52Peroniko (Peroniko) joins
15:13:24Peroniko quits [Ping timeout: 265 seconds]
15:14:17Peroniko (Peroniko) joins
15:14:17Peroniko quits [Max SendQ exceeded]
15:14:43Peroniko (Peroniko) joins
15:15:03Peroniko quits [Remote host closed the connection]
15:30:19etnguyen03 quits [Ping timeout: 265 seconds]
15:49:12knecht4204 (knecht420) joins
15:52:43knecht4204 quits [Client Quit]
15:53:07knecht4204 (knecht420) joins
15:53:48knecht4204 quits [Client Quit]
16:12:29icedice quits [Client Quit]
16:16:43katocala quits [Ping timeout: 265 seconds]
16:23:08BearFortress quits [Ping timeout: 252 seconds]
16:23:49icedice (icedice) joins
16:40:13katocala joins
17:02:43HP_Archivist_notsignedin joins
17:03:27<HP_Archivist_notsignedin>Not at PC, but I hope we're grabbing TT videos https://www.washingtonpost.com/technology/2023/10/10/tiktok-hamas-israel-war-videos/
17:14:14HP_Archivist_notsignedin quits [Ping timeout: 265 seconds]
17:14:38etnguyen03 (etnguyen03) joins
17:18:50petrichor (petrichor) joins
17:40:16parfait (kdqep) joins
17:41:18katocala quits [Ping timeout: 265 seconds]
17:42:05katocala joins
17:42:20etnguyen03 quits [Ping timeout: 252 seconds]
18:10:23katocala quits [Ping timeout: 252 seconds]
18:10:39katocala joins
18:32:32katocala quits [Ping timeout: 265 seconds]
18:33:29katocala joins
18:43:10katocala quits [Ping timeout: 265 seconds]
18:44:42katocala joins
18:47:13BearFortress joins
19:06:22katocala quits [Ping timeout: 265 seconds]
19:06:38katocala joins
19:10:03<fireonlive>https://shadow.tech employee was socially engineered into installing malware
19:11:14<fireonlive>getting a copy of the email from someone one sec
19:12:38<katia>taht's OVH now
19:14:05<fireonlive>email: https://bpa.st/A5SQVV3XXJY5C5RKTEAWNYUVWE
19:14:20<fireonlive>OVH bought shadow.tech?
19:14:23<katia>yeah
19:14:26<fireonlive>oh wow
19:14:27<katia>some tiem ago
19:14:35<fireonlive>missed that somehow
19:15:02<fireonlive>"At the end of September, we were the victim of a social engineering attack targeting one of our employees. This highly sophisticated attack began on the Discord platform with the downloading of malware under cover of a game on the Steam platform, proposed by an acquaintance of our employee, himself a victim of the same attack."
19:15:02<fireonlive>> highly sophisticated attack
19:15:08<katia>>This highly sophisticated attack began on the Discord platform
19:15:10<katia>lol
19:15:12<fireonlive>ikr
19:15:13<fireonlive>lol
19:15:34<fireonlive>may I propose you don't use the same system you use for personal things as your gaming things
19:15:47<fireonlive>to go above that too, your work machine should be separate as well
19:16:03<fireonlive>but at the very least, isolate your gaming
19:16:27<katia>hey yo download this game
19:16:34<katia>free_cupholder.exe
19:16:50<fireonlive>here's it as plain text because that blue on gray looks like butt: https://bpa.st/CVM33MJFOLWFZ4YVHPSGCWT4NE
19:17:11<fireonlive>oooh free cupholder!
19:17:16<fireonlive>*runs as admin*
19:17:29katocala quits [Ping timeout: 265 seconds]
19:17:46katocala joins
19:23:06<HP_Archivist>RE: From my post earlier. Is there a dedicated channel for Tiktok material?
19:23:32katocala quits [Ping timeout: 252 seconds]
19:24:09<fireonlive>HP_Archivist: #TikOff
19:24:19<fireonlive>no bot/etc that i know of though
19:24:32<fireonlive>HP_Archivist: #TikOff
19:25:00<HP_Archivist>Ahh okay. Thanks ^
19:27:50<Barto>i was expecting it to be underwhelming, just like that critical openssl bug
19:29:20katocala joins
19:30:36pabs quits [Read error: Connection reset by peer]
19:31:24pabs (pabs) joins
19:37:09<nukke>https://megamansec.github.io/Squid-Security-Audit/
19:37:22<nukke>35 0days in squid proxy ouch
19:37:47CandidSparrow quits [Quit: Ping timeout (120 seconds)]
19:38:06CandidSparrow joins
19:40:35katocala quits [Ping timeout: 252 seconds]
19:42:12katocala joins
19:48:17Irenes quits [Ping timeout: 252 seconds]
19:52:08katocala quits [Ping timeout: 252 seconds]
19:52:55katocala joins
19:55:03<fireonlive>oh yay i can access my client back
19:55:04<fireonlive>again*
19:55:14<fireonlive>nukke: ooof. glad i don't use that at the moment
19:56:00<katia>tinyproxy seems nice
20:15:14Irenes (ireneista) joins
20:21:08Naruyoko quits [Client Quit]
20:30:08etnguyen03 (etnguyen03) joins
20:31:41Naruyoko joins
20:34:55<nukke>caching is useless anyway. most people have asymmetric 1Gbps fiber nowadays
20:36:21<@HCross>nukke: not in all parts of the world
20:38:44thuban flashes back to https://danluu.com/web-bloat/
20:41:13<flashfire42>1Gbps???
20:42:01<fireonlive>i fuckin' wish
20:42:16<fireonlive>but yeah; i don't want to want to run a tls mitm proxy
20:42:25<flashfire42>https://server8.kiska.pw/uploads/bec4672e9a825705/image.png
20:42:45<flashfire42>if most people have 1Gbps I am getting fucked over
20:50:26etnguyen03 quits [Ping timeout: 252 seconds]
20:52:41<katia>lol
20:54:30<audrooku|m>50/10 i cri
20:55:14<flashfire42>Which is why I want to configure my warrior to download 1 item at a time but be able to upload up to 10 items at a time but I can't figure out how to make it do that
20:55:27<flashfire42>because my download speed is alright but my upload speed
20:55:29<flashfire42>is yeah that
21:01:35ymgve_ joins
21:01:36benjinsm joins
21:01:51parfait_ joins
21:01:53Naruyoko5 joins
21:01:56AlsoHP_Archivist joins
21:02:48benjins2_ joins
21:05:16Naruyoko quits [Ping timeout: 265 seconds]
21:05:16parfait quits [Ping timeout: 265 seconds]
21:05:16HP_Archivist quits [Ping timeout: 265 seconds]
21:05:16benjins2 quits [Ping timeout: 265 seconds]
21:06:14benjins quits [Ping timeout: 265 seconds]
21:06:14ymgve quits [Ping timeout: 265 seconds]
21:08:20BlueMaxima joins
21:20:01BigBrain quits [Ping timeout: 245 seconds]
21:22:21BigBrain (bigbrain) joins
21:26:03katocala quits [Ping timeout: 265 seconds]
21:26:07etnguyen03 (etnguyen03) joins
21:26:26katocala joins
21:27:25parfait_ quits [Client Quit]
21:34:30BlueMaxima quits [Read error: Connection reset by peer]
21:34:35BlueMaxima joins
21:42:36DogsRNice joins
21:47:06<nukke>you guys don't get fiber?!
22:19:24DogsRNice_ joins
22:21:11DogsRNice quits [Ping timeout: 252 seconds]
22:21:57<DogsRNice_>i sure love when my internet speed drops so low even irc times me out
22:22:17<DogsRNice_>at&t is so cool
22:48:41etnguyen03 quits [Ping timeout: 252 seconds]
23:56:53katocala quits [Ping timeout: 252 seconds]
23:57:44katocala joins

HomeSearchPrevious dayNext day