I setup 16 OpenVPN servers
No you didn't, you're using Surfshark's servers.
t. VPN Fren
This shit glows.
Also nice security, cute twink. Parameterise your SQL queries.
fricking L M A O
thread: https://archived.moe/g/thread/95091081
EDIT: deleted thread xd, desuarchive: https://archived.moe/g/thread/95091081
!codecels a lesson you must learn, but dont learn it like this r-slur
Jump in the discussion.
No email address required.
How is this still a thing in Current Year?
Jump in the discussion.
No email address required.
Watch CIA recruiting media to understand how shit like this happens.
Jump in the discussion.
No email address required.
How's your daughter
Jump in the discussion.
No email address required.
Still refuses to change in front of me after i got drunk and bragged about how hot my daughter was to fricking my friends. Kids these days.![:lelolidk: :lelolidk:](https://i.rdrama.net/e/lelolidk.webp)
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
Diversity hires
Jump in the discussion.
No email address required.
More options
Context
cashgrab and/or r-slur
Jump in the discussion.
No email address required.
More options
Context
For real, neighbor should've rerouted the auxiliary encryption to the dedicated network processor first and foremost lmao
Jump in the discussion.
No email address required.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
If he hired sexy Indian dudes to code for him, I'm not surprised. Or maybe he hired Null.
Jump in the discussion.
No email address required.
More options
Context
I'm not a codecel, what does this actually mean?
Jump in the discussion.
No email address required.
Basically a SQL query gets (or puts) data from your database.
A query might look like
SELECT FIRSTNAME FROM USERS WHERE USERNAME = 'drumpf'
If you take data from a user (like in a username field on a page) and pass it straight over to the database a malicious user might be able to frick up your database. In my above example 'drumpf' would be ok. But if I instead said my username was drumpf'; drop table users; I could chain multiple commands together and cause trouble.
Parameterizing queries prevents that and is so elementary that it's shocking to see people neglect to do it. Basically it would prevent me from chaining the above commands and treat the whole thing as my username, which wouldn't find any matches but it wouldn't break anything either.
Jump in the discussion.
No email address required.
More options
Context
Databases use Structured Query Language which is text to do things like look up values. You write out what you want to happen. Quite often you're taking user's input and using it in your searches. But critically bear in mind that it is, at the end of the day, a big line of text. When dealing with inputs, there are two ways of doing things:
You build up a string of what you want to run on the database filling in the inputs as you go
You use a sort-of "template" and pass the template and the inputs in separately.
The problem with (1) is that you're not in control of what's inside the input, I am. So instead the username "bob" that the programmer expected, it is "bob';" and that extra quote-semicolon tells the database that the query is finished. You then tack on whatever you want and it'll be run. So things like "add GenocideMaxxer to the list of people who can log in to the management console" are popular to use. You then finish off by adding "--" and those two dashes tell the database to ignore the rest of what was sent. For example "find users called 'bob' whose id is 123" becomes "find users called 'bob' and then also do this thing"
The second method is method superficially similar but critically different in the way that inputs are used. You pass "find all the users called $1 whose id is $2" and then you pass that along with the inputs separately. The way that the query parser/planner operates means that by the time the parameters are read then the database request isn't a string that can be injected in to at that point, it's been broken down in to bits and the values/inputs that I enter can't be used for anything other than being a value/input in the process.
The vulnerability expressed in the former case is notorious and has been widely exploited since the late 90s when the Interwebs were taking off. You can more about it here, but that's the gist of it. https://en.wikipedia.org/wiki/SQL_injection#Incorrectly_constructed_SQL_statements
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
So im not rarted but im also not a savant; did some idiot just make a "vpn" and slap terry's shit on it in an attempt to make money?
Jump in the discussion.
No email address required.
basically
Jump in the discussion.
No email address required.
Lol
Jump in the discussion.
No email address required.
More options
Context
More options
Context
lol MarseyVPN when
Jump in the discussion.
No email address required.
More options
Context
More options
Context
Common sharty dub
Jump in the discussion.
No email address required.
More options
Context
Dude gender ontology is settled science; the soul is real and it has a gender which you can identify by reflecting on your irreducible gender qualia, bigot. It's called basic common sense and human decency.
Snapshots:
https://archived.moe/g/thread/95091081:
archive.org
ghostarchive.org
archive.ph (click to archive)
Jump in the discussion.
No email address required.
More options
Context
also if anyone can post the sharty thread (dont have the time to look) ill pin ya
Jump in the discussion.
No email address required.
https://soyjak.party/soy/thread/4194729.html
no hacking though so probably not the main thread. there's email interactions with the developer here albeit.
Jump in the discussion.
No email address required.
404'd
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
a. its probably logged (even if it is just connections in and out)
b. i would imagine those IP ranges are already blocked
c. just get a vps from like anywhere else lol
Jump in the discussion.
No email address required.
I just use a vultr vps with wireguard self hosted.
is this fine?
Jump in the discussion.
No email address required.
id imagine 4chan and a handful of other services already block that range, but yeah it should be fine.
Jump in the discussion.
No email address required.
I haven't messed around with it at all I might have to zombie walk thru the wireguard docs to get around any blocks.![:marseysigh: :marseysigh:](https://i.rdrama.net/e/marseysigh.webp)
Jump in the discussion.
No email address required.
if you want around blocks guarenteed, you want a residential IP. Idk of any services that do it (that were not shutdown/honeypots/scams). The malicious way of doing it is putting a raspberry pi in someones home, then just have it reverse ssh into your PC and setup wireguard there.
Jump in the discussion.
No email address required.
Thanks bestie
Jump in the discussion.
No email address required.
Yeah idk how feasible this shit is long-term unless you're putting Raspberry Pis in people's houses and businesses every month. Eventually there will be a bug or something that knocks the Pi offline or shuts it down, and the only way to bring it back up is by doing manual maintenance.
Jump in the discussion.
No email address required.
I'm guessing you'd probably set up backup things on the pi so when it turns on it'll attempt to auto connect, which an issue would be if your IP is elastic but using an aws with the assigned IP thing then you could have the oi connect to that set ip, then your home network routes to the aws. If you plug it into permanent power than it should last until found and if found you won't be able to do maintenance.
Also pis are (usually) cheap enough
Jump in the discussion.
No email address required.
More options
Context
There's the pwnie plug that's designed to look like a power splitter. But yeah, getting into sketchy blackhat shit now.
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
Mysterium is good if you need residential IPs, I use it for ban evasion all the time![:marseytroublemaker: :marseytroublemaker:](https://i.rdrama.net/e/marseytroublemaker.webp)
Jump in the discussion.
No email address required.
More options
Context
HolaVPN wasn't a scam.
All those residential IPs knew they were giving security and marketing people virgin
IPs.
Jump in the discussion.
No email address required.
More options
Context
You can find them on hacker forums. Selling clean socks5 proxies goes hand in hand with stolen credit cards
Jump in the discussion.
No email address required.
More options
Context
More options
Context
More options
Context
More options
Context
More options
Context
More options
Context
Streaming sites can tell you're not on a residential IP and block accessing regionlocked content. It should be fine for security on a dodgy wifi network.
Jump in the discussion.
No email address required.
More options
Context