sunshine-x

- friends
224 link karma
36,464 comment karma
send messageredditor for
what's this?

TROPHY CASE


  • Four-Year Club

    Verified Email

    Secret Santa
    2009
sorted by:
new
hottopcontroversial

I fear that if marijuana is ever legalized it will just become a Monsanto monopoly of GMO weed (potentially hazardous with no benefits). Thoughts? by 0w1Farmin conspiracy

[–]sunshine-x 0 points1 point ago

Follow the money, as always. Look who owns the best land to cultivate MJ. Either they're holding it to use themselves once legal, or they're holding it to prevent competition. Either way, the tobacco industry owns the land.

ZIONIST MONEY AND THE CONNECTION TO THE 2012 US ELECTIONS AS WELL AS FUTURE WAR W/ IRAN by stfelixavein conspiracy

[–]sunshine-x 0 points1 point ago

Please avoid capslock in post titles, see the rules etc to the right.

Why there might not be enough Raspberry Pi to go around by felixfurtakin raspberry_pi

[–]sunshine-x 0 points1 point ago

they've said they do not require pre-orders, as they have plenty of capital.

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

I was thinking something like that would work. Any idea if there are FOSS alternatives? I was imagining something like openldap using pass-through auth, but somehow setting the lockout to a setting lower than the internal accts are configured for in AD. IE: ldap pass-through locks at 3, internal AD locks at 5.

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

I can't see them, as they're encrypted. =(

It can use a heuristic signature, like "10 connections in under 2 mins" for example, but it's likely to block legit use.

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

My recommendation is to count for the "Login failed" messages in an IPS/IDS and to blacklist the source IP for 10 minutes if there are more than 10 unsuccessful tries in one minute.

Due to the protocols being encrypted, the only signatures I can use are heuristic in nature are can't guarantee false positives. (ie: 10 connections from same IP in 5 mins is doable at IPS, but could be a legit user too)

Good ideas re password strength etc, I'll look into that.

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

I like the throttling idea - I'll check into that.

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

I'm not sure IT-sec would go for that, but it's not a bad idea. It would prove problematic for our B2B transfers done by customer systems (it's often customer back-end systems initiating transfers on an automated basis).

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

I'll look into that, it's not running a standard SSH daemon though, it's a java-based SSHD that is tweaked just for file-transfer purposes, no interactive shell etc. Maybe there's an equivalent option though, I'll look into it.

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site by sunshine-xin netsec

[–]sunshine-x[S] 0 points1 point ago

thanks, and I agree - changing ports would help from the casual attack, but a deliberate attacker would see through that, and could deliberately DoS all our internal accounts (killing production systems etc) by locking them.

fail2ban seems like the best option, but we're hesitant to allow host-based firewall rules. IT Sec wants all IT-security functions to be performed by their systems, and I'm left looking for alternatives to host-based firewalling (ie alternatives to fail2ban).

I could somehow pass the authentication failure log details to say the IPS, but I'm not sure that's even possible (tippingpoint IPS and SMS).

What is your favorite conspiracy theory? by toro_de_rojoin conspiracy

[–]sunshine-x 0 points1 point ago

Nice. Have you seen "the revelation of the pyramids"? Have you seen the insane stonework from Tiwanaku / Puma Punku? I'm looking for more on those in addition to the ancient pyramids if you happen to have some.

When I'm home I'll shoot you a few more I've enjoyed.

What is your favorite conspiracy theory? by toro_de_rojoin conspiracy

[–]sunshine-x 1 point2 points ago

Cool!

That's my personal fav too.

Any good documentaries / books you could recommend?

0
0

AskNetsec: How to address internal user account lock-out caused by brute-force attacks against an external site (self.netsec)

submitted ago by sunshine-x to netsec

Iran, perceiving threat from West, willing to attack on U.S. soil, U.S. intelligence report finds by ruskeebluein conspiracy

[–]sunshine-x -2 points-1 points ago

Your observation is correct, and my choice was deliberate. I'm not interested in further discussion, I'm tired. Sorry.

Iran, perceiving threat from West, willing to attack on U.S. soil, U.S. intelligence report finds by ruskeebluein conspiracy

[–]sunshine-x 0 points1 point ago

What? You actually think it's likely that Iran will launch terrorist attacks in America? Don't be ridiculous

Are you having a conversation with yourself? I didn't say that.

Son is being bullied. by GatorBallzin AskReddit

[–]sunshine-x 1 point2 points ago

kids bully and get bullied. you're trying to apply adult-world solutions to kids and that doesn't work.

there's one and only one answer a bully will understand. teach him to stand up for himself physically or how to cope with life as a doormat.

having been bullied once or twice, the ONLY thing that worked to both get them off my back and recover my self esteem was to stand up to them alone, and take them down as best I could. I wasn't a ninja like your kid, but all it took was my standing up to them and a little scuffle. that was it, no more issues.

Iran, perceiving threat from West, willing to attack on U.S. soil, U.S. intelligence report finds by ruskeebluein conspiracy

[–]sunshine-x -1 points0 points ago

I can't see how this could come as a surprise.

Anyone ever hear of the Area 51 caller? The radio station as taken offline during broadcast of his call, spooky stuff! by jonnyvicein conspiracy

[–]sunshine-x 1 point2 points ago

was the station failure and abrupt end of the call just a coincidence?

A must watch VIDEO! by ruskeebluein conspiracy

[–]sunshine-x -1 points0 points ago

Anyone else having problems with the link (I'm on a smartphone).

I have a bone to pick with r/conspiracy. by phidel_kashflowin conspiracy

[–]sunshine-x 1 point2 points ago

I've repeatedly said that this is not at all what I meant.

Weekly Discussion: The Ultimate History Lesson with John Taylor Gatto by highlady420in conspiracy

[–]sunshine-x 6 points7 points ago

Being a parent, I really enjoyed hearing his views on how poorly suited current educational approaches are to developing minds, and couldn't agree more with his approach. Kids love to learn, and I remember feeling crushed and limited by the structure forced on me as a young student.

The interviewer, while knowledgeable, was probably my least favourite part. The lengthy rambling intro left me disliking him throughout the video(s).

It's full of great content, but needs better editing.

I have a bone to pick with r/conspiracy. by phidel_kashflowin conspiracy

[–]sunshine-x -1 points0 points ago

re "managing the issue": Regardless of the validity of any single issue, mods need maintain a balance on this subreddit so it doesn't become monopolized by any single topic. Additionally, in this specific case, I've seen many posts that seem to direct negative attention at Jewish people, rather than stay on-point and direct the criticisms at Zionism.

I have a bone to pick with r/conspiracy. by phidel_kashflowin conspiracy

[–]sunshine-x 3 points4 points ago

I did not suggest censorship, but understand how you'd jump to that conclusion.

I have a bone to pick with r/conspiracy. by phidel_kashflowin conspiracy

[–]sunshine-x 3 points4 points ago

great point. It wouldn't take much to manipulate the overall tone of this subreddit, and I could see someone with an agenda doing so. sounds like.. a conspiracy. ;)

I have a bone to pick with r/conspiracy. by phidel_kashflowin conspiracy

[–]sunshine-x 5 points6 points ago

I didn't realize how much it bothered me until I mentioned to a Jewish friend/coworker that I'm a moderator here, and he's a redditor. I imagine him coming by on one of the "bad days" where the front page here is plastered with story after story about "Jewish bankers and their Zionist agenda" or some such.

I LOVE conspiracy and conspiracy theories, and agree that all governments are likely involved in many. Also, I agree that there are certainly secret societies pulling strings, including Zionists and many many more. Some days, it feels like disproportionate attention and negativity are directed at Zionist conspiracies, some of which I can imagine could be viewed as thinly veiled racism or anti-antisemitism. Maybe I'm being overly sensitive.

I don't have any suggestions at the moment for how we (as mods) could better manage this issue. Anyone have any suggestions? Is it just me picking up on this? Maybe we need to open a discussion with the community, if for no other reason to get our thumb on the pulse and know what the broader opinions are.

view more: next

Use of this site constitutes acceptance of our User Agreement and Privacy Policy. © 2012 reddit inc. All rights reserved.

REDDIT and the ALIEN Logo are registered trademarks of reddit inc.

π Rendered by PID 18839 on app-48 running 445327a.