One of my university courses offered an opportunity for a project like this and I did it with some classmates.
We started by altering the ssh daemon to disallow all logins over this ssh daemon and to log all the usernames and passwords attempted. After a week we gathered thousands of attempts to brute force into the honeypot. Interestingly enough, the passwords used were a combination of the very commonly used ones but also ones that were clearly from other popped boxes.
After a week or so of this we altered the ssh daemon again. This time it would log all attempts but also grant access on the 3rd attempt no matter what the credentials were. The few bots that managed to get in all tried to install various rootkits on the machine, all of which where targeted at a different distro of Linux than we were using so it mostly just busted up our shells output.
Is `match` a reserved word in C#? I don't use it that much, but have used scala and F# pattern matching and they all use the term `match`, which seems more intuitive.
It depends what you want to do. FS2020 is not going to likely have any kind of combat in it.
I fly both FS2020 alpha and DCS World fairly regularly, obviously the former a lot more in the past little bit. If you'd like help with anything DCS world I'd be more than happy to help out.
The author does seem to concede that hitting all the checkmarks in an attack on git would be pretty tricky:
> An attacker would not just have to do that, though; this new version would have to contain the desired hostile code, still function as a working floppy driver, and not look like an obfuscated C code contest entry
The whole idea is that they want to switch away before these things become likely. They are unlikely now, but SHA-1 is only getting weaker as time goes by and more research is done.
You could, but that's technically against the law (circumventing DRM).
You shouldn't have to break the law to protect your privacy.
I'm wondering if this person on twitter had any kind of usage-data opt-out that was on their kindle and they just hadn't opted out. I haven't looked at my kindle's settings in a long while, but I'll take a look when I get home tonight.
That's really cool. Though it does seem to remove almost 50% of the benefits listed in this entry, but those seem to be focused on fuel-consuming vehicles rather than bikes.
Because it turns from "Microsoft has nothing to lose by doing this" to "Microsoft is going to lose a bunch of money spending time negotiating with and paying third parties to be allowed to release their libraries with windows' source code".
If you know there'll only be one concrete implementation, then yeah don't bother.
What people sometimes forget though is that any implementations of this in your tests are also concrete.
Some things like a DB accessor, will use a mocked/lite implementation in testing for code that doesn't need access to the db (but still needs to be provided data) to test it's functionality.
I've been in the workforce for nearly 10 years and I still have this issue when starting a new project.
It takes a conscious effort to just move forward, and it still leaves a lingering thought in my mind about what I'm doing wrong while building exactly what I need.
The researcher/firm was the one that disclosed it, but I don't feel like you could conclusively say that the exploit isn't in the wild.