NVQXE23I's comments

A deal-breaker for me and others.

You can only sign in by using Google? This sounds really phishy to me.

Another website which is closed on Sundays is https://www.baby-dump.nl/. The site used to be really "off", but nowadays you can not order anything, but still take a look at what they're selling.

Babydump has 12 brick-and-mortar stores around the Netherlands.

I don't classify myself as a highly skilled hacker, but I just like this site and the discussions on this board.

You are looking in the wrong place. https://securitytxt.org/ proposes to create a text file called security.txt under the .well-known directory of your project.

So, the URL becomes: https://www.digitaltrustcenter.nl/.well-known/security.txt

This returns a 200 (via 302).

From an attacker perspective:

If I can get access to these tracking systems full of recorded conversations and video, can I use this information to advance my attack?

Maybe I can even set queries on the collected data, like "mark all conversations about domain admins" or "mark all videos containing a clear view of somebody typing in a password on a terminal".

This also opens up a new trove of espionage. Imagine getting inside info on big investement.

What I find confusing is that the German Citizens are targeted. Twitter, TikTok, XHamster, etc.. are hosting the images. Why are they not fined for not providing a system to check that the user is above a certain age?

Or do these people not flagged their images as 18+/Offensive to children? Is that the problem here? But this isn’t possible on Twitter, which does not make such age-verification or age-checking tools available.

So, if they only post content on sites with age-restriction, they're fine?

This is THE tool to run after you have access to a system. The Windows version called WinPEAS is also very good in finding vulnerabilities and assessing a client.

I use this script as part of a pipeline in pentesting. By running the script and returning the output to the C2-server I can discover vulnerabilities while I am doing something else.

How is this a measure? I have my own domain, so why would I make several accounts for your service? I just need one.

And labeling a domain as disposable, when it's clearly isn't, sounds a bit strange to me.

Came here to point out that my personal email is wrongfully listed as a disposable email address. It must be that it's a three letter url with a .nl TLD.

Maybe take a look at your mail checking API?

This article is claiming that .01% of the BTC owners hold more then 27% of the supply. This is not true. Those .01% are in exchanges and from early adapters who lost their keys. The main consensus is that around 3,000,000 BTC are lost.

Furthermore, the article makes a lot of assumptions. "Crypto presents anarcho-libertarians with an escape hatch that seemingly puts one’s no wealth, data, and resources beyond the reach of the state or a corporation". On paper this sounds plausible, but in reality (by using an exchange for example) bigger whales can be better identified.

To be clear, I own crypto, because I like the technology. Off-course it would be impossible to create a society where I make my (untraceable) money by working and spent this money in buying a house or car. You need some form of control, so you can't go around robbing people and using that stolen money to fund your lifestyle.

But the big problem BTC tackles is that the money I make is not influenced by printing more, thus making it less valuable. Maybe the whole world should go back to the gold standard and keep the amount of money going around the same.

The bearing of my Whirlpool washing machine got corroded due to a leaking seal. So when the drying cycle started, the bearing started screeching so loud that my kids woke up.

I decided to replace the bearing and (after measuring) found the correct SKF bearing. After picking it up at the local dealer and paying 7 euro's, I started. But what did Whirlpool do? They made it impossible to remove only the bearing and seal. You had to replace the whole drum, which costs about half of the machine.

Why? I emailed Whirlpool and got a reply where I could buy the new drum..SIGH

I am asking the same question in my head for a year now. The last year i'm dipping my toes in machine learning, and using it in my infosec job. So i'm Googling a lot of things on how to set up a environment, how to implement stuff in Python and so.

But Google isn't really helping me. I have to use uBlock Origin filters to weed out the BS that gets shown me everytime. If anyone has a suggestion if there are better search engines for code and concepts.. Please show me.

I never use Office 365, but how this fatigue attack work? If I have my phone lying on my desk and I am not doing anything with Office 365, wouldn't it be very strange that I receive a request to authorize a login?

I would call the Helpdesk, like I am instructed. Or do people just get annoyed and click "Authorize" eventually?

After 10 years of hosting my own email-server, I stopped last year. Getting DKIM, DMARC, and SPF right were a nuisance, but worked in the end. My biggest problem was that my mailserver had been blacklisted multiple times due to IP's in the same subnet misbehaving.

In 2022 I am going to host it somewhere more reliant, but for now i use the mailserver of my ISP.

Bit offtopic: I used AnonAdddy (https://github.com/anonaddy/docker) for my email-aliases.