When the oil industry doesn’t have to pay to clean up their externalities we already don’t have a free market. You break it you pay. Fixing the externalities by incentivizing better technology is at minimum a correction to the market.
Pushing a route also means that the network traffic will be sent over the same interface as the DHCP server instead of the virtual network interface. This is intended functionality that isn’t clearly stated in the RFC. Therefore, for the routes we push, it is never encrypted by the VPN’s virtual interface but instead transmitted by the network interface that is talking to the DHCP server. As an attacker, we can select which IP addresses go over the tunnel and which addresses go over the network interface talking to our DHCP server.
Ok, so double encrypted and authenticated traffic (TLS inside the VPN) would still be safe, and some stuff requiring an internal network origin via the VPN is safe (because the attacker can’t break into the VPN connection and your client won’t get the right response), but a ton of other traffic is exposed (especially unencrypted internal traffic on corporate networks, especially if it’s also reachable without a VPN or if anything sends credentials in plaintext)
Plaintext connections inside corporate networks can still be MITM’ed if the adversary knows what they’re targeting, while they can’t connect to the corporate network they can still steal credentials
I’m tech support so I’ve seen some stuff, sooo many intranet sites on internal servers don’t have HTTPS, almost only the stuff built to be accessible from the outside has it. Anything important with automatic login could be spoofed if the attacker knows the address and protocol (which is likely to leak as soon as the DHCP hijack is applied, as the browser continues to send requests to these intranet sites until it times out). Plaintext session cookies are also really easy to steal this way.
Chrome has a setting which I bet many orgs have a policy for;
This is the second time in this criminal trial (all previous ones have been civil trials), and this me the judge stated that fines are clearly not working and that jail time could be necessary if it keeps happening.
Yes I knew we’ll all believe it when it happens, but it is different now that he’s in criminal court and the maximum fine has been dealt both for the first and second infringement.
You’re admitting to being on the wrong side without realizing it. IDF has been the instigator committing what the rest of us call terror attacks on civilians for decades and you are incapable of acknowledging that makes them bad guys.
You’re also incapable of acknowledging that both sides have civilians which needs protection.
Because you only think one group of civilians are human.
So you’re ignoring that much of the Israeli government says they want to destroy everything, wipe out the entire people, saying that not even the children are innocent, etc?
Neither government protects civilians.
Hamas don’t care at all.
Israel knew about the attack in advance but didn’t care to protect their own. They also don’t give a shit about Palestinian civilians. You’re actively lying if you claim Israel cares about civilian safety.
Misinformation like multiple Israeli newspapers quoting Israeli ministers who spoke in public and checking it against other public information which you can look up
Seen a lot of posts on Lemmy with vegan-adjacent sentiments but the comments are typically very critical of vegan ideas, even when they don’t come from vegans themselves. Why is this topic in particular so polarising on the internet? Especially since unlike politics for example, it seems like people don’t really get upset by...
Federal judge indefinitely postpones Trump classified documents trial (www.cnn.com)
Don't forget to tip your doctor for a good service (lemmy.world)
Republicans are pulling out all the stops to reverse EV adoption (www.theverge.com)
Novel attack against virtually all VPN apps neuters their entire purpose (arstechnica.com)
Judge finds Donald Trump in contempt for 10th time over gag order and threatens jail time (www.cnn.com)
Forcibly displacing Rafah civilians would be war crime, France warns Israel (www.theguardian.com)
Pokémon NO (sh.itjust.works)
Checkmate, science (lemmy.world)
Why Would He Help Putin? (lemmy.world)
[Serious] Why do so many people seem to hate veganism?
Seen a lot of posts on Lemmy with vegan-adjacent sentiments but the comments are typically very critical of vegan ideas, even when they don’t come from vegans themselves. Why is this topic in particular so polarising on the internet? Especially since unlike politics for example, it seems like people don’t really get upset by...
Two newborn twins need a one-dose treatment that would save their lives: Zolgensma, a $2.1M drug. Insurance (also the mother's employer) cut coverage of the drug the day after they were born. (www.wbtv.com)
america is so fucking based man...