diddledan | https://www.theregister.co.uk/2017/10/03/yahoo_says_one_beeelion_user_hack_figure_wrong_its_three/ | 00:42 |
---|---|---|
m0nkey_ | diddledan: you still awake? | 01:03 |
diddledan | nope | 01:03 |
m0nkey_ | lol | 01:04 |
m0nkey_ | I think I've solved my issue with calling other programs from perl, without it launching a shell | 01:04 |
diddledan | \o/ | 01:04 |
m0nkey_ | https://pastebin.com/A0BhGjUq | 01:04 |
diddledan | aha | 01:05 |
diddledan | fork | 01:05 |
m0nkey_ | yeah | 01:05 |
m0nkey_ | super simple | 01:05 |
m0nkey_ | and it works | 01:05 |
m0nkey_ | now, I have to figure out how I can run the command remotely. but I guess my program is my ssh session and my options and args are my actual application and args | 01:06 |
m0nkey_ | nice thing now, i have a way to add, remove and validate all options and args before executing | 01:06 |
m0nkey_ | simple to itterate through the array and remove anything that breaks out, such as & or | | 01:06 |
m0nkey_ | so something like: | 01:07 |
m0nkey_ | for(@options) { s/(\||\&)//g; } | 01:07 |
m0nkey_ | that should be enough to remove any crap | 01:08 |
diddledan | check for ; too | 01:08 |
m0nkey_ | good idea | 01:09 |
m0nkey_ | yeah, that code works | 01:09 |
diddledan | awesome | 01:10 |
m0nkey_ | ping: cannot resolve 127.0.0.1echo hello: Unknown host | 01:10 |
m0nkey_ | child exited 17408 at ./fork.pl line 26. | 01:10 |
m0nkey_ | just stripped that crap | 01:10 |
m0nkey_ | even more regex: s/\Q(\||\&|\;)\E//g; | 01:11 |
m0nkey_ | \Q and \E to treat everything as a string | 01:11 |
m0nkey_ | so no nasty escape sequences | 01:11 |
m0nkey_ | change the for to a map and voila! | 01:13 |
m0nkey_ | map { s/\Q(\||\&|\;)\E//g; } @options; | 01:13 |
m0nkey_ | that should be enough to strip all the crap | 01:13 |
diddledan | step 2: ..., step 3: profit | 01:13 |
m0nkey_ | ok, so this is the final snippit.. https://pastebin.com/A0BhGjUq | 01:18 |
diddledan | Simples | 01:19 |
m0nkey_ | and backtick, that can be used to execute code too | 01:22 |
m0nkey_ | https://pastebin.com/A0BhGjUq | 01:22 |
m0nkey_ | that should be it | 01:22 |
m0nkey_ | i modified it to write the output of the code to a buffer instead of stdout | 01:22 |
m0nkey_ | allowing me then to keep the output in a var | 01:22 |
m0nkey_ | #perl tell me I don't need to escape. seems they're right. it gets treated like a normal character | 01:37 |
diddledan | Lol, MS says of SQL Server “this is not just a database engine. This is an enterprise database platform” <— what’s the diff?? | 01:47 |
diddledan | That’s from this video: https://youtu.be/mvr143yvLmk | 01:49 |
m0nkey_ | im out | 01:59 |
m0nkey_ | g'night folks | 01:59 |
diddledan | No | 01:59 |
diddledan | Err | 01:59 |
diddledan | Nn | 01:59 |
diddledan | Silly auto erect | 02:00 |
m0nkey_ | Indeed. Silly erect. | 02:00 |
m0nkey_ | cya | 02:00 |
brobostigon | morning boys and girls. | 06:18 |
diplo | Morning all | 06:58 |
SuperMatt | good morning | 07:08 |
brobostigon | morning | 07:11 |
=== paulmellors is now known as MooDoo | ||
MooDoo | howdy all | 07:40 |
SuperMatt | howdoomoodoo? | 07:46 |
MooDoo | :) | 07:47 |
SuperMatt | oh man, I don't want to work today | 07:52 |
SuperMatt | or ever | 07:52 |
MooDoo | you're not the only one mat4y | 07:55 |
MooDoo | see can't even type today lol | 07:55 |
SuperMatt | indeed | 07:58 |
SuperMatt | typing is for losers | 07:58 |
zmoylan-pi | i win \o/ i get to go to hospital with a wonky foot | 08:49 |
MooDoo | boooooooooooo | 08:56 |
diplo | popey: Just trying gnome-contacts on Solus and it's failing to load.. where is the best place to go from here ? the forums or a repo ? | 11:47 |
popey | yeah, try the forum, and tag @kenvandine on it | 11:48 |
diplo | I just found a post mentioning gnome-contacts | 11:48 |
diplo | thanks | 11:48 |
SuperMatt | diplo: Ubuntu | 12:33 |
SuperMatt | ;_ | 12:33 |
SuperMatt | ;) | 12:33 |
diplo | heh, I was waiting for one person to do that SuperMatt :) | 12:36 |
diplo | Just knew I'd get him here and it's snappy related which is ubuntu | 12:37 |
diddledan | who wears short shorts? | 14:27 |
diplo | Nope, never.. | 14:27 |
diddledan | https://www.youtube.com/watch?v=UcvjXAtzaMU | 14:28 |
diddledan | omg, CD-ROMs?! https://www.youtube.com/watch?v=9NU_XI7fguI | 14:32 |
diddledan | lol, love that they thought that the killer product to put on CDROM was "more encyclopedias, better encyclopedias..." | 14:41 |
zmoylan-pi | encarta did very well. a new version every year. kerching | 14:45 |
zmoylan-pi | of course in the early years encarta made a lot of dosh for pc sales.... no it won't work if your pc has no cd-rom.... no it's better with sound... | 14:59 |
diddledan | nearly time for the googs (50 minutes) | 15:08 |
zmoylan-pi | come see our new phones without headphone jacks? | 15:09 |
diddledan | yup | 15:09 |
zmoylan-pi | how... untempting | 15:09 |
diddledan | annoyingly, I'll only see the first 30 minuets live, cos I have to go out at 5:30 | 15:09 |
zmoylan-pi | see if only you had google glass 3 you watch it on the fly out and about till you walk into a lampost not marked on os maps :-P | 15:10 |
diddledan | :-) | 15:10 |
zmoylan-pi | fixed in google glass 4! | 15:19 |
daftykins | crikey, domain registrar's DNS control panels can be so inconsistent | 15:53 |
diddledan | it's android time | 15:59 |
diddledan | life stream: https://www.youtube.com/watch?v=0YGoxbeSzLc | 15:59 |
diddledan | live, too | 15:59 |
* zmoylan-pi puts on the soap opera androids... hums away to the theme tune... | 16:00 | |
daftykins | time for another $900 phone announcement | 16:00 |
diddledan | human lives matter too. AIs shouldn't be privileged | 16:05 |
diddledan | I vote for "people first" rather than "AI First" | 16:06 |
zmoylan-pi | be quiet human, or we'll cut your food pellet supply! | 16:06 |
diddledan | AI and Software and Hardware?? you mean AI isn't software? | 16:09 |
diddledan | AIs are designing AIs now???! | 16:10 |
diddledan | has nobody even watched terminator?! | 16:10 |
zmoylan-pi | but it'll obey the generals who pay for it, the salesman said so | 16:12 |
daftykins | sales reps in the front row, mmm that's not what i'd want to hear XD | 16:12 |
zmoylan-pi | if they bring out ed-209 duck! | 16:13 |
diddledan | you have three seconds to comply | 16:13 |
diddledan | surprise, we're not releasing new phones | 16:17 |
zmoylan-pi | smart suppositories? | 16:18 |
diddledan | mmmm | 16:18 |
zmoylan-pi | no one will ever mug you for it... | 16:18 |
diddledan | I wonder how many times they're gonna say "Deep Learning" | 16:18 |
diddledan | BINGO | 16:18 |
daftykins | it's so uninteresting | 16:19 |
diddledan | radically helpful | 16:19 |
zmoylan-pi | it's a sales pitch with nothing new to show... | 16:19 |
diddledan | two different presenters, and nothing new yet | 16:20 |
zmoylan-pi | be excited aout the cloud! | 16:21 |
diddledan | maybe three is a charm | 16:21 |
diddledan | handsfree calling in the UK? free? | 16:23 |
diddledan | fourth presenter, and still no new hardware | 16:24 |
* daftykins suddenly remembers Arnold Rimmer instructing the Scutters to repaint Red Dwarf | 16:27 | |
zmoylan-pi | it was the wrong shade of gray | 16:28 |
zmoylan-pi | and it's arnold j. rimmer ssc bsc to you | 16:30 |
diddledan | mustn't forget the bsc | 16:30 |
zmoylan-pi | very important | 16:30 |
daftykins | apologies :> | 16:31 |
diddledan | I wonder how accurate that kids behaviour would be | 16:39 |
diddledan | it's certainly a good idea to keep kids occupied. I just not sure they'll respond like that | 16:39 |
daftykins | now you need a soundproof room to put them in | 16:47 |
diddledan | chromebook | 16:47 |
diddledan | ok, pixiebook | 16:48 |
daftykins | cheap? well no, no... | 16:48 |
zmoylan-pi | only one question, can it run linux? | 16:49 |
diddledan | wat. a browser only laptop with 16GB of RAM?! | 16:50 |
zmoylan-pi | well the browser is chrome... | 16:51 |
diddledan | point | 16:51 |
zmoylan-pi | which has an appetite for ram that makes zombies look vegan... | 16:52 |
ahayzen | "the snap team is working with us" ... then you realise they are talking about snapchat not snappy :') | 16:56 |
diddledan | 1000$ for a tablet | 16:58 |
diddledan | that's as cheap as the new iphone | 16:58 |
zmoylan-pi | well you wouldn't want your phone to feel left out | 16:58 |
diddledan | yup, no headphone hole | 17:01 |
zmoylan-pi | pay more get less | 17:02 |
diddledan | dig at apple there | 17:03 |
m0nkey_ | diddledan: my new code is being pentested now. so far, it hasn't got in. | 17:04 |
diddledan | \o/ | 17:04 |
zmoylan-pi | huzzah | 17:04 |
m0nkey_ | I also re-wrote the re-write :) | 17:04 |
diddledan | hah | 17:05 |
diddledan | metarewrite | 17:05 |
daftykins | you see Austin, he loves coooooode | 17:05 |
m0nkey_ | https://pastebin.com/2WzeCSRT | 17:05 |
m0nkey_ | that's the new routine | 17:05 |
m0nkey_ | using open3 | 17:06 |
m0nkey_ | the scan is on-going, but i haven't been penetrated yet | 17:06 |
* diddledan penetrates m0nkey_ | 17:06 | |
daftykins | what if her family aren't in the kitchen? | 17:08 |
daftykins | ;D | 17:09 |
* m0nkey_ sighs | 17:12 | |
m0nkey_ | dear Amazon.ca, please ship my crap. | 17:13 |
m0nkey_ | I want my switch | 17:14 |
daftykins | i think there are health and safety ethics against that | 17:14 |
daftykins | heh you getting Zelda? | 17:14 |
m0nkey_ | lol | 17:14 |
m0nkey_ | not that kind of switch | 17:14 |
daftykins | ah :> | 17:14 |
m0nkey_ | the switch i bought will serve a purpose | 17:15 |
m0nkey_ | and not look pretty on the tv table, unused. | 17:15 |
m0nkey_ | https://www.amazon.ca/gp/product/B00I5W5EGA | 17:15 |
daftykins | ah i've got one of those at a clients spare now, we had to move up to a 48 port for his house | 17:16 |
daftykins | too many gadgets :) | 17:16 |
m0nkey_ | now you tell me :P | 17:19 |
daftykins | :D | 17:20 |
daftykins | in fact i still haven't vacuumed out the dust and considered a plan for it, ah well it might go in his London flat perhaps | 17:20 |
daftykins | i'm flying out to his Spain pad and then checking out the London one from Monday next week! | 17:20 |
daftykins | SW6 if anyone lurks there :> | 17:21 |
daftykins | arsenip: ooh are you still in the area? | 17:21 |
zmoylan-pi | pssst.... don't use ryanair ;-) | 17:28 |
daftykins | heh client and his wife and kid were booked on Monarch until Monday... | 17:35 |
m0nkey_ | fun, we monitor their network devices | 17:38 |
m0nkey_ | lets look at the network utilization trend for the last month :) | 17:38 |
daftykins | o rry | 17:39 |
m0nkey_ | oh yes, there is a drop of traffic | 17:40 |
=== redshift is now known as Guest98611 | ||
m0nkey_ | daftykins: PM? :) | 17:45 |
daftykins | sure | 17:45 |
daftykins | he... he showed me things D: | 18:42 |
m0nkey_ | lol | 19:04 |
daftykins | :> | 19:05 |
m0nkey_ | don't say that. diddledan will be unhappy | 19:05 |
daftykins | that's true, bit jelly he will be | 19:05 |
m0nkey_ | btw, confirmed, the remote code execution bug has been fixed. changes pushed to prod. no more gaping hole. | 19:05 |
daftykins | vewy gewd, i thought you were unpenetrated earlier, though | 19:06 |
m0nkey_ | I was penetrated yesterday | 19:06 |
m0nkey_ | then i patched the hole | 19:07 |
daftykins | ah right | 19:07 |
m0nkey_ | thankfully it was during a security scan that revealed it, not some black hat. | 19:07 |
daftykins | yet ;D | 19:07 |
* diddledan penetrates m0nkey_ again | 19:08 | |
zmoylan-pi | thars a hole in server dear liza, dear liza... | 19:09 |
daftykins | i've asked if i can go and check out my Dad's companies server, as apparently the excuse for why windows updates has been turned off on the domain for 2 years was "the disk was full" | 19:09 |
daftykins | *had | 19:10 |
zmoylan-pi | lets see a virus copy itself on there then! | 19:10 |
daftykins | pls viruses are so 90s | 19:10 |
m0nkey_ | lol | 19:11 |
m0nkey_ | anyway, going home time | 19:11 |
m0nkey_ | talk later | 19:11 |
* zmoylan-pi leaves 8" floppy outside daftykins gaff... | 19:11 | |
daftykins | m0nkey_: \o | 19:11 |
daftykins | zmoylan-pi: the drunks will get your floppy on the next wander by | 19:11 |
zmoylan-pi | that'll wipe off | 19:12 |
zmoylan-pi | unless they've been drinking tape head cleaner again | 19:12 |
m0nkey_ | my netgear switch has shipped | 22:34 |
m0nkey_ | i should see it tomorrow | 22:34 |
daftykins | \o/ | 22:34 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!