[-] starkzarn@infosec.pub 3 points 3 weeks ago

My brother in Christ, scope your sessions... Firefox has containers, chrome has profiles, or hell, just use two different browsers.

[-] starkzarn@infosec.pub 4 points 9 months ago

I'm not sure you understand what "objectively" actually means... Care to provide your data in support of your objective conclusion?

[-] starkzarn@infosec.pub 6 points 9 months ago

Ah it's fine, we know they'll be totally fine on their own. I mean, they have their own totally reliable, independent electric grid, right?

[-] starkzarn@infosec.pub 109 points 9 months ago

It's just an NTP pool. The device is trying to update it's time. Likely it made many other requests to other servers when this one didn't work.

Maintaining up to date lists of anything is a game of whack a mole, so you're always going to get weird results.

If you're actually unsure, pcap the traffic on your pfsense box and see for yourself. NTP is an unencrypted protocol, so tshark or Wireshark will have no problem telling you all about it.

That said, I'd still agree with the other poster about local integration with home assistant and just block that sucker from the Internet.

[-] starkzarn@infosec.pub 9 points 10 months ago

I don't know how you got a picture of me, but I demand it is removed!

[-] starkzarn@infosec.pub 7 points 10 months ago

This is absolutely not what DNSSEC is. DNSSEC provides authenticity of the response, not privacy. You're describing a means of encrypted name resolution, like dns-over-tls, dns-over-https, etc.

[-] starkzarn@infosec.pub 7 points 10 months ago

I haven't done a code review so I can't answer that question with facts. I do think however, that anything that bootstraps a FLOSS framework like openwrt could easily be a risk to privacy.

You use privacy and security interchangeably here. They are not the same.

[-] starkzarn@infosec.pub 15 points 10 months ago

If you have any question on truth worthiness, you can flash stock openwrt on them. You just lose out on their proprietary webUI and pre installed plugins. I believe their firmware is public on GitHub though.

[-] starkzarn@infosec.pub 6 points 1 year ago

Yeah, put that trash in prison!

[-] starkzarn@infosec.pub 13 points 1 year ago

That all sounds correct to me. The random port you're seeing in the logs is a high port, often referred to as an ephemeral port, and it is common for source ports. All good there.

[-] starkzarn@infosec.pub 3 points 1 year ago

I had no idea Jeremy Clarkson lost so much weight.

[-] starkzarn@infosec.pub 4 points 1 year ago

Firefox recently passed chrome on the speedometer benchmark

view more: next ›

starkzarn

joined 1 year ago