HackerTrans
TopNewTrendsCommentsPastAskShowJobs

Lyrex

no profile record

comments

Lyrex
·4 mesi fa·discuss
I work for a digital bank and the versioning is essentially exactly how we handle T&Cs. The user accepts a certain version of some terms, and if we launch for example a new product that requires changed T&Cs then we ask the user to accept them if they want to use the new product. If they don't, well, then they just keep using the existing offering without accepting any new terms.
Lyrex
·2 anni fa·discuss
Are you sure? The article makes the point that the nop is actually required for this to work in GDB because the instruction pointer might otherwise point at an entirely different scope.

I have to admit I didn't try it out though. Maybe this changed in the meantime and it is not needed anymore.
Lyrex
·3 anni fa·discuss
I think even if it was then it's likely better to have the attackers show their hands by attacking (comparatively) irrelevant targets. I would assume that there are insights to be gained to even more effectively mitigate potential future attacks by this.
Lyrex
·4 anni fa·discuss
Not related to this game, but this has been a thing in the counter strike community for a few years already. This is an example cheat: https://github.com/EngineOwningSoftware/pcileech-webradar And this is the base repo it was forked from that goes into way more technical details: https://github.com/ufrisk/pcileech
Lyrex
·5 anni fa·discuss
In my personal experience I find that zone files work quite well as universal format for that. To pick up your Fastmail example: Fastmail could generate a matching zone file for your domain and let you download it. You could then upload it to any domain service provider that supports importing zone files.

It's obviously not as hassle-free than something like your oauth example, but it's using the infrastructure that is already there.