#public-chat

so the wallpaper logo got burnt into the screen

it's only noticeable on 50% +- 20% grays

so I don't really mind it

Congrats...?

My old monitor had that lol discord and taskbar which my mom is using now for her work from home setup

it's unfortunate

but now I just have a blank desktop with rotating wallpapers, hidden taskbar, no icons

their mic is good

or wait for QDEL

Who made qdel

Sharp

real

mini led ips implemented as well as apple did with the macbook pro is the best solution for a computer monitor right now, but nobody has made a monitor that even remotely competes with the macbooks

Yeaa

even then you don't have to

I just think Asus' move to oled on all their premium laptops is a really bad idea

the oled displays used in laptops are more resistant to burn-in than w-oled and qd-oled are, and they allow them to run at 500nits fullscreen

i have no idea how many years they last but ive never seen a laptop oled user complain about severe burn in

You're right, that's because it's always covered

you won't complain about taskbar burn in until the taskbar changes

but windows has forced the taskbar to be at the bottom

so the taskbar will always be covering its own burn in

id say the m16 and yoga/slim pro 9i have good miniled displays

other than the ghosting, apple def has the best miniled laptop display

the macbook pro probably has the best computer display period aside from its slow pixel response time

Is there a list of ltt staffs twitch channels and youtube channels anywhere? I like following them, but every now and then i stumble across a channel that has excisted for 5 years that i didnt know existed

Is it gonna cut me

Yes

In floatplane, where it says "- 2 Exclusives Per Week (Meet the Team, Extras, Behind the Scenes)", it means that 2 exclusives are posted, or that I can only watch 2 exclusives per week?

2 are posted

Just wanted to make sure! :D Thank you!

There is no limit to watch you can watch

no nothing fell

3am shenanigans

them giggles are most muffled

Question for people with a ryzen 5 7600 does your box cooler keep your cpu below 70 c with the stock paste and fan? Cause my does and I’m wondering if that’s normal

Most people will disagree with you but I gotchu

can someone please help me in tech support

should have bought Razer smh

it has miniled

Should’ve bought a framework

Can someone help me. I can't place the sad song that-the-spilled coke on my PC plays as the coke lands on Linus's PC. It's literally killing me. Someone save me.

I put it to you that you don’t know what literally means

it costed about 1100usd

so

razer doesn't exist at that price

still less than iPhone 15

ok?

What’s that gotta do with anything?

why are you asking

Boredom and confusion

If I acc cared about miniled I coulda gotten an M16

screw razer

Truly an American patriot

I'm Canadian

And that’s why you chose to not get the m16

lmfao

hi

hi

Hehe

“We need more money for doing less”

Ubisoft has been making it so easy to not give them money for so long I'm honestly impressed

Bud sent me this anyone know where to buy it??

Imo kinda ehh but it's my degen friend's money so...

Prob gna cost lil more than a normal 4070 super but ey he love anime soo go for him

How the fuck does a laptop discussion turned into a phone price comparison

100% China only

Thank god

https://24h.pchome.com.tw/prod/DRADLA-A900H1JK3

Too bad I can buy it in Taiwan

Finally he can't buy another anime card

Bros got all Sakura series card

Eh it's actually for the US

Just saw the post and the card's market is for the US

Not sure about Taiwan nor Chinese market.

wild how of the big AAA companies it's fuckin EA that seems to have mostly learned to shut the fuck up

EA sports it's in the game

Because they realize that gamers can hold companies accountable now

Man soo much childhood memories in those lines

Especially EA who used to be the 'legend' of gaming.

I can still hear that guy in my head

Best way is to just be steam.

BF 2 dang love that sht using the black hawk paradrop on the islamist with the boys well 9 of us now just 6

Anyway, my Spigen case has arrived for my iPhone and I loved it so much

And unironically made it bulkier than my old android

Bro using a case

I paid for the phone I'm using it as it is

I don't trust myself to hold my phone still at all times

Besides I need more grip.

Both in my life, mental condition, and phone.

Why?? Clumsy or something

Some sort + I go outside.

Well I also go outside

Though yeah good point since my old iphone x got it's screen kaput

I also run it without a case for a week.

I slap the chonkiest case I can on my phones cause I use them at work and steel decks will humble consumer electronics real quick

It was the best shit I ever touched but I don't think it's worth it.

Also phones are expensive, might as well treat them as such

Treat them with respect.

kiss your phone goodnight after tucking it in

That's what I do

Old phone but tom if I have the time I'm gna frame it

Like what I did on my iphone 7 Samsung J7 and more

This is the iPhone with the case.

Clean ur keyboard

And this is the Xiaomi with the case.

Later.

Btw how many keyboards do u use?

1

Just 1

Yeah

Kek

But yeah, it is time to let the old Xiaomi sleep.

Frame it

Dismantle all the parts

No

I got bank accounts connected to the said phone and I can't have it die for now

That's why I use a passbook cards and online banking is just a hasle

I use online banking just so I don't need to pay VISA fee for checking balances.

I use cashless payments like 90% of the time too.

Dang u must live in a city or something

Taipei

I'll be going to Computex later once there's one

Perfect.

you sure jk. Nice keycaps

Though isn't it a problem having a card or something since you know online games u get pressured to buy and we'll.. u don't even notice your account is on the verge of crying

Since that's the reason why I only use a passbook now cause of a certain game called genshin

Bethesda is trying to be loud as hell lmao
how does that company have supporters

That's why I only play single player games

Fair enough one time payment

I live so cheaply, like frugal, to the point that my mom asked me how the fuck my balance kept on increasing

'like frugal', ie not entirely frugal.

When I had my card in always soo screwed cause of that game milked 6k outa me in 6months

6k what

That's impressive for living in a city

Usd

Converted from my country currency

I live for like 5700 NTD/180 USD per month.

How...

Also wow

Dormitory living

I eat 2 square, fresh hot meals daily, and able to drink either 30 cups of boba or eat out 4 times in a month.

The $180 includes my transport fees, laundry, and groceries.

Fair enough dormitory I live on my house soo expenses does kinda have a toll like each month 120 usd on the electricity 60 on water bill soo that 180 of urs is just my utilities

And this is why I have a hard time not to poject myself when I saw someone spending more money than me for their living expenses.

Yeah ur really cheap and good at your expenses

Btw that 120 usd is only just my pc and lights I don't even use my ac since if I do my bill would be 220 in a month

And that's just 4 hours a day of cold air

Kilowatt hours in my country is kinda expensive

@full fossil just a question do you cook or just eat outside?

Dorm cafeteria like a normal person.

Dang must be good

It is

It is also subsidized.

No wonder you saved more than most people here

The thing I really dislike from uni people is they don't want to eat at the cafeteria for no fucking reason

If it's free food that's good

Be realistic. It is a cafeteria, it is supposed to be cheap and good for you. Lacking in variety makes it cheap.

That's my motto
Though my college doesn't subsidize free food at the cafeteria though meals are cheap like 5 bucks rice any 2 dish and any juice u want or cold water

I saw most intl students from my home country eat out daily/cook at their dorms when me and my roommate does not even spend more than $4 for food daily.

They spent like $4 for food per meal yet here we are $4 in a day.

And we eat better than them, ironically.

That's the thing. The perks are there too.

Must be good 4$ only for food a day while I spend 10$ if I eat at uni

Though if I cook it'll only cost me 7-8$ a day whole day meal only prob is that it's time consuming to eat a healthy meal

Once I know my uni's boba shop, I don't bother buying boba outside of uni. I got more of them here with less money.

What's boba?

Bubble tea

?

Never heard of that

Basically tapioca pearls on a milk tea

Bro has never lived

Vanilla milk tea with dragonfruit pearls >

https://en.wikipedia.org/wiki/Bubble_tea

Bro I lived though milk and tea ehh doesn't mix well doesn't it

Earl Grey milk tea w/ brown sugar pearls >

I prefer just plain tea green or black don't care

It's fucking delicious

Really?

And actually filling

Doubt that since as an Asian I don't feel full without rice or biscuits

Dude

I'm an Asian as well

Forgot

How the fuck can you be an asian and did not know about bubble tea

Are you even Asian

different kind of asian?

overrated

I knew there was a reason i didn't like you

almost as overrated as starbucks drinks

Earl Grey milk tea is underrated as fuck

No fun
No whimsy

starbucks isnt even bad it's just priced like 4080

Earl grey isn't bad but i think prefer assam

earl grey is bit too floral my tastes

You choose... poorly

my top pick is Barry's Tea Gold

it's a irish brand

Well most people confuse me for a texan or American though it's just my taste on clothing and skin color and face prob cause my country was americanized once

There are no boba shop in the Philippines?

Um

Wat

I just don't know I don't use social media often or something just daily routine wake up planks push up go to college eat back home repeat again

That explains.

“Too floral” tf earl gray you having

You should try boba sometimes

Btw I only use discord and fb don't even have online friends or something

It's great, good as a treat too

Well I've heard of it on some bill boards but didn't peak the interest of mine

Saw not heard

That's where you're wrong

Now that you mentioned it why the hell everytime I saw a Chinese taiwanese jap or any other people above sea you always drink that stuff

…

Like everytime on the bus on the jeepny mall or something if ya saw a Chinese Korean jap taiwanese they are always having boba

Except for the older people I've seen mostly college students bellow

bro, bubble tea texture makes me sick

cant stand the little orbs

Tapioca

At first I even though it's goat chocolates due to a vid my friend sent me on sms

This is pretty good right?

except the fruity water drinks are basically water with no flavor

No.

No..

My internet speed is a lil bit better than ur and I'm at a 3rd class country

Broo ur at Toronto Canada land of beavers and quebecoise

I paid 19 bucks per 6 months for this.

We need a medal

I get 100mbps down for free

Except it cuts out like all the time

They gonna fix that tho

95% uptime for me

24/7

Mine like goes down to kbps or something every few mins for some reason

ik its really really bad, it was sarcasm

real ss tho

Linus should do a bullshit internet speed comparison

Speed/dollar

Mine would be about $100/mb then 😭

makes sense since he is in Canada

second most expensive country

pretty sure lmg pays for a direct line to the vancouver internet exchange lol

BRO what

Wifi and mobile data and my plan is only 20$ a month unlimited advertised 200mbs speed but that only works on my pc due to lan

Dang that's mach Jesus ya got there

pc

didnt know starbucks drink were 1K? thats wild

they might as well be with how damn expensive they are

Star Wars has Star Bucks beat

https://www.disneyfoodblog.com/2022/07/01/details-about-the-elusive-5000-star-wars-drink-on-the-disney-wish/

No it’s pretty bad, even for dessert coffee any local place will do much better

idk what ass starbucks you’re going to

the one around me is quite good it’s just all ovepriced

you missed the point that we hate anything that resembles popularity

Is there a way to filter in gog galaxy which games I own on other platforms that are also available on gog?

IE if I owned nothing on GOG, have witcher series and all the playstation games on steam, only the Witcher games would show

yo

This is mine right now over wifi on my PC. We have fiber, but I have been too lazy to hook up my PC. (Gotta get rid of this couch and get a switch).

Lol we made the first revolver before we discovered DNA

We made the first revolver also before penecilin. So if you shot yourself or anybody else in the gut with this new invented gun that has multiple revolving chambers, you easily got an infection; getting it was the last thing a doctor ever consulted with you.

Flash forward to today they're aiming for sequencing every single person's DNA and tying it into their documentation/identity. It will go into either a proprietary database or a government clearance level one. That's my guess. So somebody else knows your entire genetic sequence while you don't. Then they replace various forensics with this information. Finger marks you can burn off but DNA... 🙈

YouTube is killing my laptop's battery life

Lol but certain things come to think of it might still cheese even DNA forensics. Like down syndrome I always bring up but yet again it strikes with a vengance. I know there are two ways they distinguish all cases of it by separating into the one where every cell has 3x 21 chromosomes and the other one where it's somehow every other cell

if you right click the games that you own on other platforms, it will show you which other platforms you own it on, and will give you the option to choose one as a default install option.

So you never know if somebody's DNA you got ahold of is a pair of 21 as normal only because you found one of the other half cells. Their DNA could test later to compare it and they end up seeing a triplet of 21 instead of a pair. Right away they know exactly that the person has down's 'syndrome' which apart from a syndrome is observed genetic condition. In fact, they're doing that same observation now. Then they learn off the bat that the DNA matches I think everywhere apart from having a whole additional chromosome instead of a pair.

In the end, I'm not sure but my guess is they still match it without any doubt unless I'm wrong and the trisomy and non-trisomy 21 cells have more differences with allele, whatever. It doesn't make sense though. But if I'm right, they match DNA and learn a previously unknown fact about a pretty significant condition of suspect.

But I cant do that if I dont own the game on GOG

GOG for at least their own games doesn't care if you pirate them

But idk I mean they still sell you licenses to 'own' that game. If you don't buy one, you don't own a copy on GOG I guess. And as always, don't ask or post about pirated wares here.

I mean sometimes you get other bonus content also avail for download. Like Cyberpunk they gave me sountrack in both CD quality and mp3. Also some digital artworks or wallpapers n isht

Which I can also pirate the same way I would the game... but I wouldn't own the png file wallpaper

But yeah irl this means no chance they will sue you for sharing or downloading their games w/o permission. So you won't get class action suit or even threat of one where 9999 lawyers with inf bank litigate you into Bill Gates figures but of debt. Good stuff. Interestingly enough, if you pirate a game it's always a GOG copy if one is available.

if you own a game on both steam and epic, right click on either of the entries of that game, and it will give you the option that I previously stated.

Also btw since no DRM was 'cracked' that means in actuallity nobody reverse engineered the studio's intellectual property at least. So less trespassing on somebody else's virtual private property 🤔

In fact by uploading that game you only used the download of files given to you in a way you weren't licensed for. You could use it usually by launching, playing, etc. But you weren't given license to replicate and share with anybody else.

I never even mentioned epic

Which brings up an interesting point about how it can't really be illegal to 'pirate' things in of itself. You can't really pirate truly. It's just copyright, TOS and EULA infringement or lack thereof to do X thing with somebody's intellectual property 🤔 🤔 🤔

And this is for archival. All the situations where publishers are deciding to add drm to 20 year old games is really frustrating

Also just to make things more compatible, and to actually own my games

I mean DRM in general is frustrating old or new. I'd have to agree though one of the amazing bonuses of pre-2000s games is the difference of the approach toward DRM and anti-piracy

I mean CD key was and is to this day fully sufficient I'd argue. At most, you'd usually not have multiplayer or even server list because both master server (hosted by the dev/pub) and the officially distributed server portion of the game checked key. Key check was done against connecting to yet again the dev. Boom. DRM.

At least it was deterrent for me since I'd want to buy the game and have multiplayer.

Then, after that, the only other thing was insert game disc into drive at launch. This was DRM single player only games relied on.

Good evening

I just want a library I can access whenever I want, wherever I want regardless of online status, time since last check in, or anything else of that nature. Further I can get from being tied to online for any singleplayer title especially the better

You had to either patch something in the game binaries usually or sometimes people used a 'no-cd' image which was stripped down 99% except for whatever it was that passed key check. I still don't exactly know to be honest . You would take legit disc and either make image of it or burn a copy... didn't work.

Right. That's actually a scary thing imo and yeah I'm glad you at least consider this. Too many people overlook how their entire game library will ??? when Steam goes offline. Same goes for GOG, Epic launcher, etc. You should already have backups of every single thing you bought and 'own' on Steam and the rest of em.

Because honestly you don't even have to wait until the death of Steam. If you break their TOS in any way, they can just 'terminate their services' to you. IRL they ban your actual entire account so you can't log in. People I've heard asked support for help after their accounts got stolen somehow. They instead banned them

Sharing accounts is against TOS. The real sonofagun is that they did technically admit to their account having been shared at some point. They didn't intentionally do it but somebody IRL looked at their password or some sht. So like a good friend you had during childhood. You shared the account with them already but went unnoticed. Then you had a feud as it often happens with children resulting in silly griefy actions. For instance, that friend changes your password on Steam.

You thought you'd just get your password and email recovered on account for which you have proof of, receipt, etc. Steam believes you. Only in the end you got perma'd :(

Id never share my account with anyone, outside family sharing

I ended up getting hit with a scam at one point, steam support got my account back within a couple hours thankfully

Just another reason though.

Which is even moreso a bummer if you consider how it was allegedly just laziness of customer support on Steam's part. I mean I personally wouldn't consider that account sharing and would simply do what is normally expected: return their hijacked account. In that position, I can see how it might be easier to just check IPs or simultaneous logins and ban for TOS violation because yeah technically I might get away with justifying how that constitutes account sharing. Or better yet I can just make TOS define something else like "simultaneous logins".

Yeah I mean it's the expected thing to help a person who unwillingly had their login and even recovery creds discovered, used, and changed.

But on the other hand, I mean you enter password into a phishing site. Idk you did share it. For bank access cards here, I'm pretty sure it's even written in your agreement somewhere that you're responsible for keeping pin and card safe

Actually it was an authentication scam, one of my friends on the platform got hit first. They didnt end up getting their account back as far as Im aware

So if you drop your card (irl hard to imagine with pin written down on piece of paper taped to it)... somebody could still tap it for under 100 bucks usually. And honestly I think multiple times too. So not sure but maybe you can have thousands drained because some crackhead found your card and went to tap it for 3.50 at many conveniences

Yeah but if you consider why you sent some auth creds to a place that wasn't what you thought...

So phishing site. The idea is it looks as close to identical as possible to the target service right? But who's really breaking any laws of some kind? It gets kinda tricky no?

I mean phishing site is probably breaking a lot of actual laws, sure. They have trademarked logo/brand (honestly even that is class action suit crap). Fraud I guess you'd aim for. Any kind of actual charges fraud or theft. But the real crime was committed mostly by the scammer/phisher... maybe all of the illegal shite was done solely by them.

But if it was Steam and they interpreted that scam leading to other login you weren't aware of as sharing login details and simultaneously using... and then they terminate the service on those grounds... idk 🤷

I mean the scammer might have broken law and they actually caught them in the end. That guy even did real time for it. But did you share your login with someone else? Are you responsible for keeping it private

They got 'hit'? As in there was a mass hack and he was one of them? Because an phish or auth is awfully personal. A database hack or leak somehow leading to cred stuff attack is practically never done by human at least the logging in (and mostly failing except for select few lucky guesses really). You should think about the service, who got hit and all possibilities how it could have happened. Because it could lead to some interesting details. For instance, how could only a portion of accounts on service X be targetted by cred stuff? Likely because not all creds were leaked. That has perhaps two realistic likely scenarios: partial leak or they are creds from a completely different service for different logins

The latter is very interesting and happened to me irl. The thing is if you manage to get key value pairs of email and password somehow, you know right away that the person has an inbox with exactly one service for all ending with @gmail.com

Then a very unacceptably big portion of it is the user's faults to this day because too many people use one password for all accounts on internet. If you think about it, you don't even have to steal the password. I could just make a legit site where you register and my 'lax security practices' lead to just the plaintext password being sent . 0 information loss. Then I store it in database. The site is fine. You're not aware of anything pertaining this because it's on my end. If you're skilled enough (more than 99% of users prolly), you can see if the http post sent the password or not. Bare minimal practice is for something on your end to hash it and on'y send digested pass. So if you're probably a software engineer or some sht and have paranoia so you monitor every single register form for your password, you know that they deserve an e-mail and maybe news article if popular enough.

Problem is you've already fked up because you're only at risk of anything at all entirely due to using one password. Polar opposite (most optimal possible practice) is use different passwords for each and every set of auth creds

Lol no one ain't getting into my google account without my yubikey

If enough people were taught this properly to the bare minimum. Imma tl;dr this

Bare minimum extent that is. They wouldn't be using same password on their one gmail for the rest of account recoveries and petlynxenthusiastforum.info where they registered an account on phpbb with that same email addy. I've been guilty of doing this myself admittedly but only if the email address is diff.

It was a social engineering attack

Not a cred leak

Cred stuffing despite being so largely automated to carry out the attack portion (literally bot does all logging in for hundreds of thousands of email/pass pairs sometimes)... it depends entirely on an aspect of social engineering. I speak of course of the same fact that people use literally 1 pass for every single account.

This being on bioshock infinite

I mean that's social engineering imo because you're actually in fact using creds from a different site for separate accounts in some cases. You also expect probably a minority to get any success. You're just banking on majority human behavior on the internet. Isn't that the same as guessing security question after chatting w someone?

Only you don't have to do any research on a specific target ever. It works well enough to the point where everybody's security answers are differemt (if it lets you make your own)... but everybody's password as sure as the sun will rise tomorrow will be the same one on different site lmfao :P

Yo LTT should make a video where they hardline water cool a microwave (I don’t know why it just seems funny maybe they could build a pc in it to)

And again, cred stuff happened to me. It was a really cheesy one. It was my reddit account and they prevented it luckily... because the IP was in Romania or some sht. I never logged in from that country and less than 12 hrs or so prior to the attack I logged in once from Canada

Whats cool if second factor is SMS or something physically private... it should theoretically be nearly impossible (impractical) to try primary stealing creds and logging in. I think everybody should at least ask for 2fa on new ip in some recent period of time.

If somebody logs in Rogers Cable from Ontario and like 20 min later from Whateveritistel in Romania... it's physically impossible for one person to do it physically. There is some proxy or tunnel or vpn idk. Which is as law enforcement and security provider for your e-services, you want to stop VPNs. They already blocked them in Russia. In Russia, you must use very advanced VPN that apparently Chinese developed (makes sense). It looks like https traffic.

and are you going to go and write and debug all these features in all platforms?

once again, you have completely vomited an entire train of thought into this discord.

Like AMD. Literally break half of an OS to get rid of telemetry because you have unreleased proprietary gpu driver competing with literally one other company worldwide. Then I use testers to check for bugs or regressions somehow by testing games on every driver version release. Each release has to be tested on every supported version of OS and platform we claimed

every other time i see you in chat its an essay bro

no hard feelings but damn bro save it 😭

I mean a train of thought which literally costs people their own identities, money, entire estate because they relied on internet for every important aspect of their life... but they goofed by using the same password everywhere

an essay is coherent, structured, researched. This is none of those things

I literally work in cybersecurity.

You can probably already find essays on methods, demographics, probably even seasonal shopping patterns from marketing research correlating to something random in cybercrime targetting But nobody outside of an IT field guy or dudette will read those.

my unmedicated possible adhd and autistic brain sort of shuts off when someone posts walls of text in chat

..... it's covered in mainstream media every fucking day

And again even I myself don't check if my password was at least md5ed before being put into post request. Honestly I don't even check the URL for having my registration info being url encoded param

And yet I'm immune to those serious cybersecurity (generally viewed as) less than minimal practices. Because I gave a different password.

This is garbage that shows you don't understand what you're talking about

Wdym. I had a personal experience of a cred stuff. That's not something which happens to everybody. It's less than common tbh. Ask me something :P

a) md5 is not a good hash in 2024. b) there is no absolute need to hash the passord on the client side.

I can see you're writing a whole bunch of garbage. This saddens me.

Right. That's the quality of protecting data such as password. MD5 is considered sub-par and vulnerable for a while I know. The next standard (MD6) I'm still not exactly sure of lol. But the alternatives already exist. Like SHA-256. The tigers I remember. Has anybody pwnt like Tiger512 or whatever it was called

In 2004, I was like 2 years tops from personally dealing with my first passwords saved into a mysql db hashed with md5

"the quality of protecting data such as password" what the fuck does that mean.
You're just making shit up to say "hashing algorithm"

But already they were salted too. Just md5 was even back then considered weak

yes, what the fucking shit does this have to do with passwords being hashed on the client side before POSTing login data

Everything. You should always md5 yourself and then send it in request lol

Why

Because you still keep password private

Actually derp

Either way http without ssl would screw you. Idk it was rougher back then. I remember just plaintexting md5 hashes by submitting to a hacker site

I mean, there's no reason at all to not have TLS in 2024

In a few hours or so it was ready with a high chance. I used the free service so mine was just put into low priority. But lol free plaintexting. Pair that with saminside which I ran from limited account and dumped all local users along with their ntlm hashes

I'm going to slam my head against my desk i'm trying to figure out whether my psu is dying or if my 5700 xt is unstable or if i just didn't mount my cpu tight enough in the socket

or if it was too tight
(thanks thermal grisly contact frame )

so, your knowledge is 20 years old

Right. But picture you're registering on my site, everything HTTPS, no men in the middle. Only I was nefarious and stored your password in plaintext beside your email for later use.

What good did TLS do? Or anything? You made an account on my site with gmail.com address and the same pass you use everywhere presumably. I wait until I have a lot of these and begin bruting my way into gmail. Or any other popular enough service honestly. Because there's still even a high enough chance person uses same email and password together for all accounts

(Which by the way is what happened to me w reddit account -- wasn't gmail that they logged into)

Thing is that while I'm not sure which one of the many sites those creds came from, it only worked in the first place because I used the one password on reddit acc which I do actually reuse. Usually it's not with my main email (reddit did use my main one) but I did at times use any of the addys tbh. The main thing was the password which i'd use everywhere I literally don't give two craps about somebody hacking.

But either way, that password is definitely not what I use for any of the inboxes I have anywhere. That's an important point

If only there existed password managers, or oauth providers

Point 2 was that by no coincidence did my reddit account have that same password. Honestly, it was kind of intentional subconsciously. Like what would happen to me if some romanian bot logged into my reddit account? Oh no :P

Back in the day, bots didn't even try to steal accounts. They just made new ones lmfao. After that, it was 99.99% of the time straight to forum with highest post/view count and repost advertisements for pills or gambling site

It will steal all of your updoots

Well i know irl just one serious thing that comes to mind rn

For social media, facebook accounts are actually a pretty sought after thing. Then they use them for serious social engineering I'm pretty sure. Like actual personal attack somebody stalks people or something else requiring that account. So they pretend to be somebody a target knows which pretty much 100% they are already convinced. Perhaps it's our weakness that we treat a single account on e-service as equivalent to meeting person face to face idk.

Then on androids at least I remember they started to bot on stolen accounts and send "is that you in that video? 100 100 fuego emoji". The link infected their app for some users and managed to spread through the same means by messaging friends list.

But personally, I know that for even law enforcement and forensics, FB marketplace is easily the most difficult one to scrape due to bot detection. You need real phone number, use social features in a believable way, etc. Then after a certain period you can even access FBMP.

So we were trying like to scrape high ticket categories in various areas (jetski, car, powertool, etc) and merely save the postings + some analytic like match with potential other posting. Some was automated, some was done by humans. But the idea was that various jurisdictions' law enforcement (our clients) had even proof of stolen vehicle sale lol

Secret btw to those is /r/worldnews. Just watch for breaking headlines on news site, make sure it's gonna be something hype but not contraversial or implicit of any personal opinions by reposting. Eventually, you'll get the repost that picks up and stays on first page. Instant thousands boost upward lol

Honestly was gonna say don't fck up but beauty is you can't really get mass downvoted on reddit right? A full post will get hidden w negative score immediately. Then, on top of that, it gets pushed farther and farther back. Kinda rigged.

I mean still the same cryptography used in freakin currency with billions at stake but sure. Yeah I will cede that blockchains don't use MD5 lol.But again, even like 2008 everybody knew that md5 was sht. It was already usually salted at least back then. I personally remember alleged private servers of a certain game that ends in aplestory. They used sha1 I remember. Not sure about sha1 how it's doing these days but they still use for file checksum today. Sha256 I prefer despite not really knowing at all what goes in there

I do know this though: the bigger the digest size, the more possible values without collisions you can have. It's a rule of thumb that I go by despite not having invented one decent hash func myself lol. For files even a kilobyte, I would use the hash resulting in the biggest value from whichever options I have.

Does anyone know how I can get the OG discord on IOS

layout*

On virustotal actually I've already multiple times gotten hash collisions for file btw. Kinda scary

You drag one file in, it calculates hash, should be upload file confirmation but instead no... file found already submitted, comes up with different name and everything. So antivirus thought it was telling me results about completely different file 😱

Could go two opposite ways lol: you submit legit file from Microsoft and it collides with a binary of win32.sasser or some sht. 99% detection rate, behavior sandbox shows every single file on disk with .exe extension being disasm, then reassembled into bigger one by 5kb always

I didn't upload the file's contents, etc. Name was different but it showed me a diff one as well. Just the name would probably make it worse supplemented to hash only. Now it adds legit file name to list of wrong sample. Btw the other way should go without saying you submit like ransomware but it comes up as diff clean file.

... You know you can just look this stuff up and not be wrong

Also you could just shut the hell up

I don't mean to be corny but I'd personally call it an antonymous word to knowledge... because hashes you intentionally lose part of the information

But again, my point is completely separate from hashing or just crypto in general. Giving out your gmail and same password multiple times is giving out additional information. It's done unintentionally because people don't even realize when they do it. That's the whole problem. In other words, people are oblivious to the fact that they're "making an account" or "registering on some site" while also giving out partial information about a private login somewhere else.

Please stop, I beg you.

But partial here only means that the other end doesn't receive the hard confirmation that you're "one of those people in a large group" which indeed gave their gmail password along with the account name. This is absolutely of no help since (again) people just stuff the creds I guess. That's why they call it cred stuffing?

If I told you to crack an md5 digest and you actually brute forced or rainbow-tabled out 'Toronto2023'... and I did in fact live in toronto... and the password I did make in 2023...

is that my secret? Or did you get something else absolutely random? I could have entered a string twenty times the length. Maybe with CR or LF sprinkled into it. Maybe I wrote /n in PHP if that works and it wrote LF or CRLF or whatever the line ending is for php package on gentoo. So I too don't really know what my own secret is because I can't recall if I did it on windows or linux build. Ofc, I can still test I guess because I know two possible passwords. My brute force is easier and gives me the actual inputted secret. Unless I stumble upon a collision where lf and crlf in the same place of a string are it.

hi

I literally work in cyber security. I understand what hashes are.

what do you mean

Your brute force is in theory the longest possible number of operations until a guaranteed result once you've exceeded the entire digest size. And yet still you ended up never knowing if toronto2023 was my password or not. It could be any of the other collisions with it.

In theory, there are unlimited collisions in a finite length digest pretty sure

If only there was people much smarter than you that have written about this for decades

Case and point. Lost information. We just assume it's same file with that size because what are the odds. Even if if it's gigs apparently. Which is where I was wrong btw. It's still treated naively. So I guess it's not as easy as I think to reassemble exe of exact same file size and get collision for gigabytes.

No, because you don't know shit. You could look up this stuff in seconds and just not be wrong

I mean they're smarter than me by far sure. I mean you gotta figure out how to make a good digest. Just invent one. I'm sure there are mathematics I could learn but at the end of the day, why do I still not see an MD6?

Your question is fundamentally stupid

MD5 became too insecure to be considered usable officially. So they needed the next one. Are they still scratching their heads? Because I would too. You probably won't find any issues from collisions in a hash until they happen lol. Like my LF thing having a collision in any encoding string value with same exact string but CR before it... I would disqualify that hash immediately if the rest of the two strings was alphanumeric mixed case

..... "The next one". Dude, you fundamentally do not understand what you are talking about.

Lol I don't even care about cr or lf being hashed from /n literal in some php file. I personally never hashed anything with line breaks come to think of it. I've hashed strings for authentication (passwords) and I can think of also string ids to integer using fnv32 or whatever it's called. The latter one I hashed into unique ints from unique strings which users defined net messages as. The integer I needed because I don't want every frame of some simulation both ways use a whole string as id lol.

Do you have an acquired brain injury? I'm not being an asshole, like legit you seem to have some self control and communication issues that are consistent with that or similar.

Wdym. Hashes? I'm pretty sure I understand most of it correctly lol. It's a function. It has one parameter in general and it outputs one value. You always know one way input 1-1 relationship w output. Vice versa the goal a lot of times is to lose that information completely. So you want the digest which is the most entropic possible thing apart from your operations forwards.

Hey it’s Dimmskii back posting complete bollocks! Good times.

Spread idk but if I remember correctly that should be maximal. But how do you look at it? Idk this part maybe you do Bob but all it can really be is two values beside or close eachother bit-wise ending up the same or also close enough to the output

Then again, one isn't bad. Having a lot of pairs of those sprinkled all over the hash idk but I bet disqualifies it. It seems even worse somehow if the pairs of values have perfectly uniform spread

To me but idk I feel like I'd immediately forget a hash if it collided like crlf and lf in the middle of alphanumeric string. Even if the cr was the exact overflow of the digest's size. I don't care if it's ascii, ansii or win1250 or whatever that text editors dont even support anymore. It's crlf and lf colliding in alphanumeric crap which has some of the highest chances of being valid input... with line break... which I hashed

I legit can't imagine any use for md5 a paragraph but idk. /n into string literal can feed two diff values into hash function depending on platform lol

So I guess even back then I'd have the common sense to not salt md5 passwords with string literal containing /n

Actually I never even know what that actually means for php bc string literal comes back as string or chars to me. Encoding is whatever I want if I manually convert a char to byte or more. I can be restricted in choice if I'm dealing with something that has unicode char. Probably why I'm dealing with bits of a string in the first place (or I'm the author of that very same hash function overload taking string )

https://tenor.com/view/family-guy-peter-griffin-omg-oh-my-god-who-the-hell-cares-gif-5137136

But yeah goes to show you don't really consider how hashing strings you don't want certain chars for specific reasons. I guess there are collisions in reverse like CR and LF. You literally never see any representation of which character is in the con buffer or something. You just see that it's a line break. The only time there's something you can see which indicates information about which line break character is used... is when it's the wrong one

So I open txt file in like notepad on xp. My eyes get a cursed feeling and I'm most likely well within good reason to guess that there were line breaks in the file... now they're gone. So I knew that the file had no occurences of two char sequence. I knew it was either just CR or LF lol. Fkn linux or mac

There isn't. You don't know what you're talking about.

Idk man I've used hashes successfully for a while now. Very simple concept. Looking stuff up right now obviously there are things I didn't know. Like sha256 apparently has two general methods to hash files -- one less secure than the other

You, as always, have a whole bunch of actual facts mixed in with a nice sprinkling of pure imagination

So yeah I didn't know that they hash in a tree. As opposed to a sequence of parts until you reach end of file. I mean you can see how one part of a file can remain the same while another changed lol. On the other hand, how do they know and what exactly does that even mean "more secure".

Again, this is a field people have dedicated their entire life to. You don't need to guess.

Oh god can't resist another corny joke.... because the best hash you can do nothing but guess

Which btw I do know at least md5 had rainbowtables which I myself even had passwords plaintexted. It wasn't dictionary and the pass was something like Toronto2010 or some sht. That's why md5 is no longer secure right? I'm not really guessing I read about it at one point. And this I'm sure I remember correctly: you want as little collisions as possible, you want the most uniform spread... which means absolutely nothing to a lot of hashing in auth because it's a string. It kind of does have an effect but brute forcing and rainbow tables even I've always seen staged into sets of chars by complexity

I think dimmskii has some mental health issues. Walls of bollocks posted as fact.

My mind is not in the right state rn. So I mean mental issue for sure. Health idk but if I'm permanently changing something in my brain, it's health I guess.

That's half this server mate

Honestly I've heard that the internet was disproportionately filled with perverse or somehow antisocial folk. Now they have a voice. They still raid other sites right? So like when 4chan went on reddit and spammed the lemmy face or whatever it's called but changed it to be antisemitic for some reason lmfao. I think the subreddit was Jewish or something... like wtf

(⁠⁠_⁠⁠)

Fuck

(⁠*⁠_⁠*⁠)

So hundreds or even thousands of people literally read a post on 4chan (amidst possibly other insane crap on the same page) that said everyone should go on diff site and post racist crap. They all did it. Thousand or so people. Just post a reflexively humoresque sequence made of sht from charmap.exe that looks like face. Then they somehow found a way to work in hatecrime because why not lmfao

And originally the entirety of the joke in its origin and humor was some guy either mashing alt+numpad keys or intentionally on charmap looking how to make a face. At some point, a guy discovered it. I mean it's kinda jokes though gotta admit. 4chan racist raid tho idk. Why? Raids themselves were cool when young kid. Or you cause damage.

Right. The earlier back you go the more hardcore it was in a sense lol. IRC idk but you legit had channel takeovers. If ops leave, then usually server would grant op to next person that joins lol

I heard people actually dosed eachother n sht, got their clients to crash to take over channels. It was a warzone :P

4chan honestly was next era. Freenode user vibes :P

Channel didn't really exist until you joined one. If you wrote unique name, it created it. That was the usual way. The server it really depends on

So like freenode, it sets your nick to something else if somebody registered it and logged in in the last like year. Channel too I think it has chanserv, auto op etc

Which is hated on by irc ogs I guess for those reasons lol

Idk on IRC people had bots already. Honestly this discord isn't that groundbreaking lmfao

You couldnt listen to music or voice chat tho

What about today? Idk just download a client and connect. A lot of original servers are still online lol

Is efnet still up?

Lmfao so I open up the site and what do I see

Due to an insecure password on an old admin account, hackers were able to retrieve a data dump of the forum database. At this point, it is safe to assume that all passwords are compromised. All passwords have been reset to a random string, you will need to perform a [url=http://forum.efnet.org/ucp.php?mode=sendpassword]password reset[/url] in order to login.```

Speaking of password leaks lol

I mean even with people you couldnt just join random channel. Everybody's all quiet and just hanging there. You might not even be able to talk on join tbh because you're not +v yet :P

When I was little I remember joining +v sometimes and getting it taken immediately :P

But IRC I only spent real time because it was some community thing. Other than that, I didn't like the vibes of IRC wilderness lol. Maybe like #linux-mint once or some sht?

Then I remember there was eggdrop n sht. It was a bot that sent you files. I think it was over DCC

I found ffdp recently and their afterlife album has been nice

just because you said this im gonna be unsafe out of spite

im going to pull out my usb pendrives without safely ejecting them

I am 3 too many drinks into tonight to read walls of text about cryptography. omg.

yeah, not many major irc networks left, efnet is 1 of the 2 or 3 major ones left

Yeah it isn't though, it's walls of text about the concept of digest functions with just ... Garbage peppered in.

Mathematically, it's a function that takes literally anything countable and orderable in our positive logic algebra and returns another number but it's usually within some ceiling value.

Avg dimmskii monologue

MD5 you can literally look at it as you give it literally x natural number (not even negative bit, compliment, blah -- read it as unsigned whatever length). Then it returns you the same thing only it has a ceiling for possible values you get back. The number you get back seems to objectively be as entropic as possible with respect to which exact count was the input. You only know that it's literally anything you want if you can represent it bitwise and yeah... after that idk I remember seeing and hearing different things. For instance I was told not to md5 twice. Idk what it means... md5 string and then again as string (of hex chars)? Now I'm reading about two methods of sha256 a file and one being less secure.

Yappotron goin full throttle

I should hire dimmskii to replace some lorem ipsum text for me

Dolor dolorem dolit

Dimmski is the subject of a long term neurological study on the effects of drilling holes in the brain

see if that translates to anything in latin lol. I hope it's pain hurts pain

Only you know which pain in the sentence is the dealer and which is the receiver of pain. Also dolit might be subjunctive but I don't know any other potential conjugation lol

That's impressive then because I'm still typing after having more than one thing puncture my brain lol

yes, that's the point

You don't need anywhere near an entire brain to type out huge swathes of garbage into the internet

Idk but there actually was one. Lobotomies lol. They studied for a bit tbh but continued to use them on like violent mental patients. Now it's illegal or banned as violation of human rights by UN or some sht

Well they did the frontal lobe I think a lot through the nose or eye with a sharp metal "pick" or some sht

For some reason they say it turned people into vegetables. Just scratching it and guy was wheelchair bound often times. I think that was the whole schtick

And you think I don't know about lobotomies?

you are just a word association bot.

I remember being told that they must have done enough of that medical procedure to get rarely a person who isn't a full vegetable and can still move etc. I'm guessing that number was too many times. Honestly a medical procedure described as: scrape the brain enough until some (usually debilitating) change happens in patient... yeah. Technically scientific if you say that the objective is some change and the procedure is some cutting into a lobe

This is like reading genesis

Which part? I don't know

yeah this is literally how religions start.

The cult of lobotomy

I'm just in Ontario now where it's legal to get euthanized all of the sudden. I mean I'm kinda starting to relate in ways I didn't realize. Like lobotomies honestly if you have an actual person who is not even there and shows no signs or hope of ever stopping running around and just killing/violating ppl... you can't let them go. You have to somehow remove them from everybody that guy is a threat to... so here, literally everybody

Aight see yall in a bit

Lobotomies did it I mean. They definitely knew that it was just a brain scrape with metal stick and they're just taking off a piece of whatever it is their brain is actively doing lmfao. Personally, I agree with dropping that procedure because you can just lock them into solitary. Some people actually are locked up in solitary for life because of the same exact problem

You still gotta treat them with minimal humanity so it costs tax money. But honestly, you're paying for law enforcement because it actually protects you. So it serves you irl always if it's working properly. But with lobotomy it's the same thing really. The care might be more intensive if theyre a vegetable lol

If you lobotomized somebody and they turn out to be one of those lucky patients walking out and still able to function in society somehow (or at least they function like minimal independant adult)... so how did your lobotomy even work? It did something as in there's something still more vegetable-y about them. Idk. So they stopped killing everybody because they're no longer in a frenzy 24/7 bouncing off walls

again, this is all public knowledge that is easily accessible to you, you don't need to theorise with an incomplete understanding.

But he gets paid by the word

good eve

Actually I don't. I could be some of the most underpaid typists ever lol

I don't think anyone cares
You just never shut up and consistently ruin chat when you're here

Whatd i ruin tho lol. There is no chat. It's just my monolog and Bob occasionally saying I'm full of sht. Which I am honestly but there actually is no public knowledge on lobotomies lol. At least not the knowledge you'd expect minimally before doing on human because they're "danger to society and themselves"

There is no chat because you take up the whole chat

Nobody wants to talk in between your shit

I don't wanna have to scroll up two entire phone screens worth of real estate to see something 3 messages ago from someone I'm trying to have a convo with, it isnt worth it

Wow, the guy's not finished yet?

It's dimmskii he never is

He's never self aware either

It's just spam, every time he does this everyone in chat is pleading with him to stop the entire time

Guys I was once taken to a hospital because "I was found unconscious or not in the right state of mind whenever I gained consciousness at times"

I would believe that. Like I said before, I really think there is something NQR with your brain.

What the hell is going on

Back to back written on police report followed by "he gave us his name and consented to be taken to hospital". Even my lawyer laughed at it

You have no concept of when to stop, and how to have a conversation or argument.

Dimmskii is the resident "never shuts the hell up and types paragraphs of worthless info for no reason"

This is a common occurrence unfortunately

But what's scary is that here you might still get screwed over even if you legit were not supposed to be there and were within rights to self defense (flee at least)

See?

What the hell is he even fuckin talking about

It's just spam, it ruins chat

Oh fun

Like normal, mods or staff don't care if the main channel is unusable

So that's not theory. This is something that actually happened to me personally. Now picture w euthanasia lol. Just lied on police report "he took the form from us and signed it along with three doctors". Get killed in hospital because idk expense report has to add up.

https://tenor.com/view/twice-twicediary-twicediarytzuyu-gif-19180333

Imagine how quiet and lovely chat would be if that happened

I swear nobody was inturrupted... I think

You talk past everyone how would you even know

God this chat sucks

I think I will lobotomise myself now

Well I mean I can cede and hear you guys out.

I do go off sometimes sry

We've been saying our piece for ever

once again, you miss the entire point.

Sometimes????

Lmfao I should be finishing up a site now. Instead Im googling how to make my own hash algorithm

Idk I remember looking at md5 metacode and maybe others but it didn't click w me. Maybe I am extremely dumb

Why are you making your own hash algorithm?

That's a solved problem

because he thinks that because there is no "MD6" we haven't moved on from MD5

Errrrrrr

exactly.

You are making the mistake of thinking logically.

Doh!

Imma stop using sha256 and build my own!

Weeeeeee

I'm not saying do that. Even when I randomly needed a hash for something other than passwords, I just used a popular one lol. String to 32 bit signed int. Idk hopefully nobody will stumble on two unique string ids that hash into the same number

If they do, idk it's gonna be hard to debug maybe, I did add essentially a factory where they are created/registered and it gives out warning if you registered the same number twice 🤷

Even back 15 years ago, we'd just loop sha1 a few thousand times with a salt and end up with a unique string that was never going to collide

Was the salt even necessary then The fact that you did sha1 1000 times feels like salt in of itself lol

yes

Hey can i get bread role

That's the thing though. There's a reason why people salt once by concatenating input and that's it. My father once told me you shouldn't hash twice. At least for md5 it was

no, you cannot.

Why not

limited event

My father told me that all my life decisions were wrong and that I should abandon my wife and move to another country. Maybe the moral of the story is you should make your own decisions based on informed input.

Well dang

Can you fit sodimm in dimm slot

Right I was gonna say I still don't know if it's mythos or not lol. But still I mean he's a programmer lmfao

also you don't understand what salt is

You can, just don't expect it to work

Salt is secret concatenated value usually to the input before you hash it altogether wdym

before repeating information, you should probably read, and understand that information. especially when its around cryptography

no, the salt isn't secret.

The salt is stored in plaintext with the hash.

he has neither read NOR understood, so .. hey

didn't realise you guys were talking encryption stuff lol, thought you guys were talkin about table salt lol

dimmski was having a competition with himself to see how wrong he could be about something

Wtf apparently I am on one about salt

"on one about salt" those words might make sense, just not in that order

it's dimmski for "I am wrong about salt"

It's unique. I've seen that too. I've had tables w hashed password and salt column beside it w unique values I guess. But the salt and the pass both looked like they were sha1'd from something. Was that just how they generated it? And if so, wtf did they hash because I'm reading it should be randomly generated

though, isn't it so that the salt is still normally not readable by anyone else except the user/process which handles storing the hashes?

Is it supposed to be non-deterministic? So tail -69 /dev/random > random.salt

yes it should be randomly generated, but you can use whatever you want to generate it, and if you wanna hash it, thats up to you, its just something that particular implementation chose

/dev/random is deterministic, its pseudorandom

so not quite as secret as a password, but still considered a secret

It is the same level of secret as the encrypted password.

ah, right

Right. It's generated on the server side. But I also remember seeing many config files for things with one global 'salt' setting which was appended to every password supposedly. I mean if the database got pwnt, they wouldn't know where the password started and ended. They wouldn't even know if it's salted or not...

until they break the second hash and easily notice that there are the same chars at the end of that one as well

if someone had the db. they still need the config with the salt, and the salt can be anything... and, they would need the source code to know its a single global salt

Exactly

you are assuming that the attacker knows more than they already know

No I'm not. That was my exact concept of it haha

The key thing to understand is WHY

And in practice, it's not uncommon for just db to get dumped while for instance your php files are still secret

1 salt per hash is best practice, and more secure, because you are increasing the amount of work that the attacker has to do... but at the same time, 1 global salt still needs them to do a large amount of work

So mysql injection attack common as dog. You get to just execute any query you want best case scenario

you can use both.

yeah, if you write shit php.

this is going to shock you, but modern software design can actually make that much better.

having the salt doesnt tell you what hash algo they used, having the salt doesnt tell you if they used hmac or not, having the salt doesnt tell you where on the original string the salt was put (appended or prepended)... having the salt is 1 of many steps

so having the salt in the db or the config file is irrelevant

Well personally I never had any php I wrote get mysql injected as far as I know lol. I've found potential vulns while working on other ppls at work. But at the end of the day, what PHP isn't shite these days

Yeah don't use php... or mysql lol

exactly. don't use PHP

even if you do have all that information... a hash is a 1 way algorithm... you can only verify against it, you cant reverse it and pull the password out of the hash... you need to know what the original text was to check it

MySQL is fine, basically same as any other SQL db

We can agree on that haha. Although sometimes its just so convenient.

php is anything but convenient

Is 80c still considered fine for a GPU

yes

depends what its doing, if its idle... no... if its at 100% load, its fine

perfect mine is pinned at 80 on furmark

iima buy a breadboard and a bunch of other stuff

also a bunch of NFC tags

like... 215 nfc tags

lot of amiibo

They're only like 3$ cuz they're on mad sale

real

Idk but querying your data store with a string literal? Already foreboding if you look at it lol. And then when you are building variations of those queries based on user input... that's exactly when SQL injection vulns like 99.9969% of them occur. Because you're concatenating strings for the query lmfao

Actually I could totally dupe my bus card with those NFC tags

Fraud 🔥🔥🔥

no not really, you are always querying a db with a string, its just whether you hand craft it, or let a robot craft it for you

How is that any better than exec string or whatever it is where you run PHP in a string? If you use sql at least use those non-string ones

nah I'm planning to write a bunch of JSON to them and have tags on my desk where if I lay my phone onto them it starts up an app or triggers my lights

..... I see you don't know shit about modern SQL libraries or SQL token replacement

(I'll write a custom interpreter for them)

ORM's are just abstraction layers that generate strings for you

first I gotta clean up my floor to get my new chair here

I found a random 240GB SSD on my floor btw

Yeah exactly. Modern even jdbc has an oop variant for statement, etc right?

and a sata cable

and ORMs generally produce piss poor SQL too, and are poorly optimised and slow as shit

don't need full ORM to use proper parameterised SQL

parameterised safe SQL has been a thing for decades

people just love to fuck it up

parameterised sql is still strings, just with certain parts of it validated by the client library and the server its self, but im pretty sure they are on about ORM's with what they are saying

no, he's talking about strings. Parameterised SQL solves SQL injection.

ah fair enough...

who doesnt use parameterised now anyway? thought all the libraries forced you to use it now?

Exactly.

.... our mans writin php here.

You'd be surprised lol. Government stuff even.

mysqli has been the default, with the old mysql php lib being deprecated for about... 10 years now?

dimmskiis knowledge tends to be about 15 years old

They were preoccupied with the fact that there was an iteration inside mysql string query instead of around it in php. It was less efficient lmfao

i recognise the words you have used... but... im not sure that is a real sentence... almost certain its chatgpt

guy is a bot

Idk but I guess 15 year olds know from seeing with their own eyes 2021 or 2022 (probably to this day though) a public contract software dev company dealing with millions of dollars. Yeah all PHP and yes mysql queries 100% of them are string concatenated lmfao

Sometimes string format I think other times I'm not exaggerating fkn like "select * from archaic where name is" . $userName_sanitized

tbh, worst part of that query is the select *

never select *

SQL INJECTION GO BRRRR

the select * isnt about injection, its about data leakage.. .you dont want to over select, ever, always select what you need and no more, to avoid accidentally leaking, or somebody maliciously forcing a leak

One sec.. I want to see how you'd drop all databases from there if you didnt sanitize $userName

theres a dry piece of bread on my floor... wtf

something along the lines of $username = " ""; DELETE FROM master.databases; ---"

But data leakage I mean it won't happen as long as you intended for just WHERE name to end up wherever. SQL injection is the part where they add to the statement because you didn't sanitize that variable and user sent it

SELECT * is literally day 1 "dont do this" stuff when learning how to do this sort of stuff, and data leakage is certainly a thing

Yeah I thought of that one but can you write multiple statements with delimiter in PDO or whatever tf

DATA LEAKAGE GO BRRR

return whole object as json and handle it in the client!

Serves as a good backup!

I'll call this "Toy Story" method where we return the whole thing as a file and handle it in the client as a way of data backups

And later got fired.

at my last job, several parts of the system did that, and i went through and had to fix it, AFTER i told them it was a security fix, AFTER they told me it wasnt, AFTER a pentest by a multi-billion-pound potential client 😄

Idk but unless the data leaked out somehow because unintended stuff got selected and outputted into doc somewhere... maybe echo "<h2>" . $result . "</h2>"

Result was returned from mysql query which was supposed to return column page_title where page_id is $id

id was url encoded not sanitized. So people can append sql using that url encoded param. That's sql injection no?

guy isnt responding to anything being said, just vomiting out more stuff tangentially related to what is being said... guy is 100% a bot

imagine not using a template in 2024

2004*

hence my suspicion of an ABI

guy is a bot trained on data that existed up to 2004 😄

You people are still going

Aight back later

In my experience, that's also when politics gets involved. I mean you fixed an sql injection vulnerability for db with passwords and emails of serious accounts...

Let's just do and say we didn't

no, i fixed a data leakage issue that required several front end components to be rewritten, several api endpoints to be rewritten, and several stored proc SQL queries to be rewritten, took about 2 weeks to fix it... and it was leaking not only GDPR protected data, but medically protected data too. the 2 weeks it took to fix it, wasnt worth it because "nobody will see it and nobody cares"... until somebody did see it, and somebody did care, and it almost cost the company more than the company was worth

so no, you cant just down tools to fix something for 2 weeks, and then sneek it through a PR review with nobody noticing, and then explain away those 2 weeks of not doing the job you were asked to do

I guess not

So... what were you doing the last two sprints? Y'know programming n shiet ^)

more like, "what were you doing for the last 2 weeks" "that thing you specifically told me not to do because you said it was a waste of time"

Government contracts are even worse because they have additional regulations and crap. For instance, the data about government employees must be hosted within the country. Both Canada and US have this

So guess what wasn't followed allegedly for a long time without anybody knowing lmfao

yep, well aware of it, dealt with government agencies, NGOs, massive multi-national corporations, small companies, individual traders, everything in-between.. been doing this for 22 years now

Worst part was the entire thing was such a mess. The only feature I necro'd was some dead code where you can parameterize the db host per jurisdiction (client). Sadly, this was exactly where all of their information wasn''t

there are wireless headphones on my floor

Their personal information was in wp_users table

wtf is not on my floor at this point

I could make a video titled "the all floor stuff PC"

my floor doesn't even have a floor

hi

hi

what are the chances I find a functioning mother board on the floor

Wdym floor is the OG test bench

true

100 USD mat for what? Floor doesn't conduct either usually. And test bench you're just stuck screwing things on and off again. What's the point lol

but like theres an office mouse

Ayone know how to get a batery to charge my iphone?

and a desk pad

step 1: buy a battery to charge your iphone

(not ltt)

im working on a project but i dont know how to convert the batery power into a charger

What makes a mouse office mouse? It only has mouse1 2 and 3? If you have mouse 4 through 69 then it's gaming

||and rgb||

poll rate.

Yeah I know I was joking :P

it looks like it was 5 cents on amazon

its logitech so ofc it cost way more

floor

theres also headphones

thats way cleaner than mine

mines filled with pc parts, dishes, empty bottles and trash

I wont get baned if i ping someone (not ltt staff)

Which btw I used to rock on 10$ microsoft mouse. Then got used to logitech g502 or whatever its called. Now I'm spoiled :/

if its not spam

right?

ok

Lmfao pc parts and dishes sounds like a cursed combo tbh

I mean yeah because I took everything out of the room so I could build the floor 😛

I found a microsoft mouse that has a scroll wheel that can go left to right

dunno where I placed the wireless ADAPTER

@full fossil I know you give good advice on projects can you help me get an 8 volt batery to charge my phone?

beep off caps lock

I was... literally about to mention that. Did yall know there's a mwheel left and right? Lol. Why don't gamer mice have it as often? What kind of mouse do I buy?

I'm behind... but I once had a guy working for me (this was about 20 years ago) who did select * in a for loop.

I printed out the 1500 pages of results it generated and dumped them on his desk

Logitech G569 Sidewinder

Are you trolling or stupid

mines blue and translucent (sus stuff) white

I still have a Club GTX 560 SE on my desk

Its actually useful code too. I use it in joytokey. So it's like in the ps3 browser where you can move cursor with one analog stick; move the page with the other

I was like... "why are we having out of memory errors on this one page?"

The guy literally only needed 100 ids from the DB

was my daily driver until christmas

now I got an XFX radeon R9 270X

Everything supports scroll left and right lol. Idk why it's not that common

rounded off PCB's look so NICE

its such a cool feature

especially for designers

like in figma, I could move around the entire canvas with the scroll wheel... without pressing it

scroll balls should be a thing change my mind

Right on lol

my favourite was code that was connected to the database, but there was a seperate process that exported the users every whatever.
It read the file like this:
newarray = line + array
So it would create a new array for every line (50k lines or so)
Then it iterated over the array... all of it, every time, regardless of if/when it found a match.
Went from taking 3+ seconds to fuckall

Scrolling side to side used to be more common like in the 90s and 2000s right?

im not old enough to know

Then again any scroll wheel I remember was privilage lmao

I am a portal release year boi

speaking of which I still gotta play portal 2

I remember you'd sometimes have just lmb and rmb or three button as well

and then I might try portal revolution

our school laptops can play games btw

like decently intense games too

damn... that's some next-level noob stuff

button 3 btw is the same mouse 3 scrollwheel press does. It was the original gamer button because way easier to press. Scroll wheel button is crazy enough as it is. Logitech g502 has scrollwheel down and also presses left/right. Impossible.

yeah this was 20 years ago, contracted to fix that issue 🙂

wow thanks for this information, that's amazing

o(n^69)

i found a jar in a jar

whats next, a jarin a jar in a jar?

a jar in a man

Nah I had poisonous plants in me hwen I was 7

those were not 3 fun days that I had to spend in the hospital

that was the last time I was at the hospital tho so we good

well as a patient

I was there once to visit my grandpa... who sadly passed away in 2019

My condolences dude

But why tf did you get poisonous plants in you at age 7 lol

why is there an arm rest on my floor

I could build a chair from stguff from my floor

Build another floor.

So you have more floor space for stuff

no my floor is almost entirely covered

I'm just cleaning up so I can place the new chair here

There's bad fungshei however you spell it... then there's just bad for health lol

Entire floor covered sounds like the latter. Either for yourself or whatever is on that floor lmao

Working mobo stepped on cracked in half =/= two working mobos

How do i just get anny role

Like the regular

You have a flower whatever tf that means. There you go.

more fibre in your diet

Yoooo

Epic

THERE IS A ROCK ON MY FLOOR

I have no role lol. True basic biznotch here.

True. But no bread or flowers whatever

Did I miss out by not getting breaded?

lmao

broken smartwatch on the floor

After a while, rocks can get eroded to the point where we call them sand grains... but only if they're together with a craptonne more of the same.

By itself, it's a small pebble, grain of rock, minipebble whatever. But not sand

nope, you can have a single grain of sand.

How would you tell? Unless you know it came from sandy beach or some sht. I mean yeah there's other kinds of sand. Quartz sand n sht. Idk but a tiny grain of quartz isn't quartz sand to me lol

I have not a grain of a brain cell left

"large boulder the size of a small boulder" what does that mean exactly or am I missing smth

Not rly

That's the joke

What is this??? https://www.amazon.com/Airmax-TrueRock-Boulder-Cover-Sandstone/dp/B00PV44EB6

What size of rock do i buy lol

wtf is that the real Obama

I’m a big fan Obama

I'd get the biggest one

Yes!!!!

Dang that’s pretty cool

THERES A PSU ON MY FLOOR... what the hell?

wassaaap

Yay free psu

Yay

take it.

Steal it

lick it

i put it in ||the box||

Open it

I think I’m gonna get the crucial p5 pro 2 tb instead of the Samsung evo 970

Get a t500

They are on sale rn

It has better read & write speed, same tbw endurance, and I already have a 1 tb version which works great

🤔

I’m going to have to buy the one I currently have in there a heatsink because it’s going back into the Lenovo

Thank you!

Transitbiker

Yeah?

I’m trying to determine if your pfp related to your username

wow the real obama is in the chat !1!!!111!1!1

Hold on im getting a call from michelle

<@&750150305383186585>

Huh

big fan sir soo hows the kids and michelle

Bro mod pinged over Obama

That’s crazy

Obama! Tell Michelle that she sucked for making school lunches suck

Very good thanks!

I hate her for that! But I love you

I know it does suck

Art.

Fire

She wont let me eat my Dino nuggies

now hows your game night with the boys better be trump didnt say the n word again ohh and did joe finally get his dino nuggies

Nahhh tell her you deserve those Dino nuggies

the best thing to ever exist for people that loves to do tax evasion by donating it to a museum even though the art piece doesnt cost much but inflated by the people doing the wrong act

Fr

I love art, 21 savages new album is pure art

Yo Obama

yeah cause my prof who is a lawyer deals with these stuff way back since 2017 idk how or what but thats what he just tell us if u want to evade taxes buy art and donate it on a inflated price

nee-nah is great

i didnt listen to the rest of it tho

Buy a $10 piece of art, and value you it at $300

Tax evasion

Don’t forget to donate it as $300 art

Game night with the boys was good trump said the n word 5 times tho but me and joe ended up jumping him for it.

same thing with those nft sht or something

Nah that’s crazy, trump needs a talking to

noice

Trunkey Monkey does need a talking too

and sleepy joe needs to stop with the icecream

yeah too much ice cream aint good

On

same for you aswell with the KFC

KFC is fire

im not even using ad blockers lmao just microsoft edge

i just got scilenced by the bot

ooof

THEY WILL NOT SCILENCE AMERICA

Obama threatened his daughters boyfriend with a dronestrike

SCILENCE
thats not how you spell science

Or silence

Yeah edge seems to be doing this lol

Wow

rtx 4070 super or rx 7800 xt?

https://www.techpowerup.com/317929/amd-radeon-rx-7900-xt-drops-to-usd-710-on-newegg-msrp-lowered-to-usd-749

Edge has an in-built ad blocker

rip

Yeah, its mostly in RT that the 4070 super is up

non-google created browsers are not allowed on YouTube, please use chrome

Does RT make the game really that different?

Depends on the game really

Yeah but is it really considered important to have a good gaming experience?

no, not at all

Cause the thing is the 4070 super FE is going for 679€ and the rx 7800 xt for roughly 589

do you play a lot of RT games and consider RT to be core to the gameplay yourself? it doesnt matter what we say about RT or what games we play... you are buying it

So should i consider getting the 4070 super cause it has the 3rd gen RT or go for the 7800xt even if it has 2nd gen RT

generations of RT are incomparible across brands

RT in general, is incomparible across brands

Ngl, im new to RT gaming, i never experienced it since ive been a console player for a long time

I dont even know what titles have RT in it

then you dont need it

if you NEEDED it, you would already know why

Where can I ask for a music which I can't find?

google

go for whatever will run the games you play

Google shit

Tried Shazam

no, you suck at doing your own research and want somebody else to do it for you

Also

Its cause of how my friend was telling me how RT should also be considered important and how amd is not a trustworthy company gpu wise

your friend is a moron

Are the temps like low on the 7800xt and also the noise, asking if you have it has your gpu

I tried researching gpus and stuff

AMD make GPUs that are great, the drivers these days are also great, and the work they put into both, is as good as the work nvidia put into theirs

Maybe idk. Like Shazam can pick up PPAP. But can't find a song speaking Tagalog

my 6750xt runs at 65c and i cant hear it when running at full load

I always encountered rx having high temps even with good cooling and pulling more power

@fossil frost your a developer right?

no, AMD cards always pull less power than their nvidia counterparts... thats part of the point of AMD cards, AMD does everything more efficiently

yes, have been for a very long time now

Im also into software development rn, i guess imma go for amd if you use it

Cause the thing is i wanted this build to be future proof even if in some cases its impossible

dont pick something because someone else told you to do so... pick whatever will do the job you want it to do, at the best price you can get for that particular thing

ie. a 4090 will do the job you want.. but its fucking insane... a 7700xt will also do the job and cost about 1/4 of the price, but wont have all that extra headroom a 4090 will have (headroom that you will never use)

find out what is good at the class of game you are playing... and buy the one that suits your budget in that class

AMD vs NV is irrelevant unless you REALLY want to do hardware accelerated AI stuff, but if you were doing AI stuff, you wouldnt be asking this question and would have already bought an nvidia gpu

Aight one last question, which gpu would you consider more future proof if you had to pick one?

whatever is out now, dont buy that, wait until the next one... and when the next one comes out... wait for the next one after that... and so on

there is no such thing as future proof

So even a card has more vram it wouldnt be considered future proof?

no

there is a "correct amount" of vram for a particular resolution

ie. a 4k capable card with 8gb of vram is a paper weight

a 1080p class card with 24gb of vram, is more expensive than it should be because it has twice as much vram as it could ever use

1080p textures are the same now as they were 5 years ago and the same as they will be in another 5 years... so vram will still hold them.. .what will change is the number of vertexes they are applied to, which is the compute power

Oh

I would honestly go for more performance because i still have not utilized more than 4 gb in most games

memory speed/bandwidth is relevant, because you want to fill and empty that vram as quickly as you can... but its actual size, too much on a given class of card is making it artificially more expensive

4070 super is the better card for sure but it'll be $100 more

1080p cards, 8gb max, 1440p, 8-12, 4k cards, 12-16. any more than any of those numbers is just trying to be artificially different from the competition

Well, i guess i found an answer atleast

anyway, my dogs are starting to piss me off, they know its dinner time and wont leave me alone

up to you whether the better efficiency, encoder, raytracing, machinelearning/AI, 3d rendering, and upscaling/framegen are worth $100 to you

Tried asking this question to other people and they would tell me nvidia graphics card without a reason

Aight cya, thanks a lot for the suggestion, imma do more research and see which one fits my demand

Yeah imma do more searching on which card fits better for me