So, someone submitted a 'bug' to Mozilla.

As some of you may know, in the next year, the new mass surveillance law in the Netherlands is going into effect.

Another fun fact is that the dutch security agencies/government have their own CA (Certificate Authority) for SSL/TLS certificates.

The new law says that the AIVD (dutch NSA/GCHQ equivilant) is allowed to hack into systems through obtained certificates and also that they're allowed to INTERCEPT TRAFFIC THROUGH OBTAINED PRIVATE SSL/TLS KEYS.

So someone actually had the fucking balls to submit a fucking issue to Mozilla saying that the Dutch State certs shouldn't be accepted anymore when the new mass surveillance law gets into place.

This person deservers a fucking medal if you ask me.

So, I grew up on the US/Mexican border, in a city where saying there's no opportunity is like saying the Titanic suffered a small leak on its maiden voyage. There were two kinds of people in said town: Mexicans trying to find something less shit than juarez and white trash reveling in their own failure. I came from the latter, for whatever that's worth.

I graduated high school when I was almost 16 years old. Parents couldn't really afford to support three kids and pay the rent on the latest in a long line of shit holes we migrated in and out of. If being a serial eviction artist is a thing, my family were savants.

I applied to college and got accepted only to be told by my father that he didn't see the need. Turns out the only reason he'd helped me graduate early was so I could start working and help pay his bills. I said okay, turned around and tossed a bag and my shitty af spare parts computer into the back of the junkyard Vega I generously referred to as a car and moved cross country. Car died on arrival, so I was basically committed.

Pulled shifts at two part times and what kids today call a side hustle to pay for school, couch surfed most of the time. Sleep deprivation was the only constant.

Over the first 4 months I'd tried leveraging some certs and previous experience I'd obtained in high school to get employment, but wasn't having much luck in the bay area. And then I lost my job. The book store having burned down on the same weekend the owner was conveniently looking to buy property in Vegas.

Depression sets in, that wonderful soul crushing variety that comes with what little safety net you had evaporating.

At a certain point, I was basically living out of the campus computer lab, TA friend of mine nice enough to accidentally lock me in on the reg. Got really into online gaming as a means of dealing with my depression. One night, I dropped some code on a UO shard I'd been playing around on. Host was local, saw the code and offered me a job at his firm that paid chump change, but was three times what all my other work did combined and left time for school. Ground there for a few years until I got a position with work study at LBL that conflicted too much for it to remain mutually beneficial. Amicable parting of the ways.

Fucking poverty is what convinced me to code for a living. It's a solid guarantee of never going back to it. And to anyone who preaches the virtues of it and skipping opportunity on grounds of the moral high ground, well, you know.

Took yesterday off to sort out a new passport.
Today on the stand:

Manager: "So we've been trying to get app X running on a dev environment for client X but we couldn't expose it to them"

Me: "Well yeah it's a dev environment if you want to give them one give them access to staging"

Manager: "Oh well we're still going to give them access to dev because they asked for it. It's due for 10am but we couldn't get it to run. You have to get it running since we edited the config files"

*accessing dev environment*
half of config files is missing, random files committed to the repo, SSL certs manually edited, eth0 down and found swan vpn installed.

never taking a day off again.

Qualification != proficiency

Worked at a company where this bloke (Jepediah mcShitFart we shall call him) had enough programming certs and qualifications to fill a page.

I was the one fixing his fuck ups, because he coded like his ass, debugged like his ass, talked like an ass, and used to shrug off responsibility like an ass. Hr did nothing because he 'was a long time employee'.

Plus, I have met hundreds of programmers who would put many to shame, and they don't have a single qualification.

Buddy from dept I was in 4 years ago: Check your email.
Me: OK
10 mins later
Buddy: Can you join a webex now?
Me: No
Buddy: OK, I'll forward the details, join when you can.
Me: Could you give me a little context?
Buddy: You helped them pull a cert off a USB stick in Switzerland last year (I'm in US).
Me: Don't think I did.

When I get a chance to read email chain, half of it is in German (I don't read it). Have not idea what this is about, but there seems to be a newer one that says it was resolved.

Me to Buddy: Looks like it was resolved.
Buddy: Yes, but they're still mad at you.
Me: Why?
Buddy: Because you wrote that app and it's hard to update the certs.
Me: I wrote that app as a favor, the dev they hired spent 6 months rewriting 3 SQL queries before being fired.
Buddy: LOL, well I guess they don't like the cert part.
Me: OK, but when I turned it over to them it didn't have a cert at all, I have no idea what the feature is.
Buddy: They said you help them last year.
Me: I didn't.
Buddy: Well they still think it's all your fault.

Following a conversation with a fellow devRanter this came to my mind ago, happened a year or two ago I think.

Was searching for an online note taking app which also provided open source end to end encryption.

After searching for a while I found something that looked alright (do not remember the URL/site too badly). They used pretty good open source JS crypto libraries so it seemed very good!

Then I noticed that the site itself did NOT ran SSL (putting the https:// in front of the site name resulted in site not found or something similar).

Went to the Q/A section because that's really weird.

Saw the answer to that question:

"Since the notes are end to end encrypted client side anyways, we don't see the point in adding SSL. It's secure enough this way".

😵

I emailed them right away explaing that any party inbetween their server(s) and the browser could do anything with the request (includingt the cryptographic JS code) so they should start going onto SSL very very fast.

Too badly I never received a reply.

People, if you ever work with client side crypto, ALWAYS use SSL. Also with valid certs!

The NSA for example has this thing known as the 'Quantum Insert' attack which they can deploy worldwide which basically is an attack where they detect requests being made to servers and reply quickly with their own version of that code which is very probably backdoored.

This attack cannot be performed if you use SSL! (of course only if they don't have your private keys but lets assume that for now)
Luckily Fox-IT (formerly Dutch cyber security company) wrote a Snort (Intrustion Detection System) module for detecting this attack.

Anyways, Always use SSL if you do anything at all with crypto/sensitive data! Actually, always use it but at the very LEAST really do it when you process the mentioned above!

Why the hell do people make websites with VALID SSL certs redirect BACK TO HTTP? What the fuck is wrong with them?!

Hey, @linuxxx

My life... Back to studying (haven't made it far through the book. Trying not to pretend I know it all)

At my fucking wits end, but coding will help me prevail.

Got kicked out my apartment because I couldn't make the payment. Fucking job I have is fucking useless (dev and administrator) in terms of pay. They basically have me by the balls. Can't leave because I need the money, need to leave because I need more money.

Fuck it. Tired of eating noodles and ramen. Tired of being fucked around like this. Paying for my own studies has fucked me harder than a bottle of tequila and a casino trip.

But I shall code, and I shall code until I prevail.

To the place I work for, fuck you (not being unfair, I earn less than the receptionist and I have a degree, a plethora of certs, and a few years exp). My time will come, and when it does, I'll come out on top.

Until then, I rant and code.

New job is paying me to study and get certs. I mean alright.

Xpost from /r/sysadmin:
I occasionally see posts from people who seem like they want to spend every waking hour of every waking minute working on home lab stuff and studying for certs.

If you do this, you're missing out on life which you will regret later, but even if you don't care about missing out on life, it actually is hurting your career.

Being well rounded helps you interact with others at work in a number of ways. It makes you less one dimensional as "the computers guy" and it also gives you topics to discuss with people. If you know how to cook, or brew beer, or bake bread you end up using a lot of your technical and troubleshooting skills. Biking long distancing and learning how to fix your bike helps with your troubleshooting skills too. You learn to look at things from other angles.

Reading novels or writing poetry or making art work also helps because it exercises your brain. Woodworking or metal working involve a lot of skills that'd help your IT career including project planning and measuring and budgeting for each project. Working on cars or motorcycles would be similar. You just have to do SOMETHING.

I have a member of my team who literally has nothing going on in his life other than studying for certs. No friends, no hobbies, and he basically eats nothing but McDonalds and frozen dinners because even making a meal takes time away from his studying. He thinks means he's dedicated and will experience great career success.

But instead he has nothing to talk to anyone about, and when I say nothing, I mean literally nothing. It's borderline terrifying. Even if he was into comic books and video games it might help, which might help him relate to SOME of the IT staff even if the rest of the people at the company know nothing about it. But he doesn't even have that.

This isn't a solitary field anymore. Even if you truly are "the best" you still have to interact with other people and stay mentally stable enough to not burn out. Even if you know more than everyone else (or think you do) you have to try to broaden your horizons.

No biggie, just forgot to renew my lets encrypt certs T_T

I just got a company called me for interview for f**king 3 hours, I wasted 3 hours of them asking me stupid questions. I show them the projects I have done, as they demand. I spent another 1.5 hours of them questioning my intelligence of whether these projects are stolen , fraud, or copied from Youtube. Just because I am a self-taught and have multiple professional certs, they believed these are mine if I have a bachelor degree or a PHD in Computer science.

So at the end of February, my 8 year marriage met it's catastrophic end and I had to immediately relocate, with nada, to a state I've never before set foot in. I was hoping to find an entry level tech position, as I am largely self taught and don't have any certs. So far nothing. I spent 7 years as a cable tech, have to wait another few months to apply at the cable company, but everywhere else tells me I'm overqualified, or need certs/experience in the field. It's a bit discouraging. That's it. Rant over.

Chrome, Firefox, and yes even you Opera, Falkon, Midori and Luakit. We need to talk, and all readers should grab a seat and prepare for some reality checks when their favorite web browsers are in this list.

I've tried literally all of them, in search for a lightweight (read: not ridiculously bloated) web browser. None of them fit the bill.

Yes Midori, you get a couple of bonus points for being the most lightweight. Luakit however.. as much as I like vim in my terminal, I do not want it in a graphical application. Not to mention that just like all the others you just use webkit2gtk, and therefore are just as bloated as all the others. Lightweight my ass! But programmable with Lua, woo! Not like Selenium, Chrome headless, ... does that for any browser. And that's it for the unique features as far as I'm concerned. One is slow, single-threaded and lightweight-ish (Midori) and another has vim keybindings in an application that shouldn't (Luakit).

Pretty much all of them use webkit2gtk as their engine, and pretty much all of them launch a separate process for each tab. People say this is more secure, but I have serious doubts about that. You're still running all these processes as the same user, and they all have full access to the X server they run under (this is also a criticism against user separation on a single X session in general). The only thing it protects against is a website crashing the browser, where only that tab and its process would go down. Which.. you know.. should a webpage even be able to do that?

But what annoys me the most is the sheer amount of memory that all of these take. With all due respect all of you browsers, I am not quite prepared to give 8 fucking gigabytes - half the memory in this whole box! - just for a dozen or so tabs. I shouldn't have to move my web browser to another lesser used 16GB box, just to prevent this one from going into fucking swap from a dozen tabs. And before someone has a go at the add-ons, there's 4 installed and that's it. None of them are even close to this complete and utter memory clusterfuck. It's the process separation. Each process consumes half a GB of memory, and there's around a dozen of them in a usual browsing session. THAT is the real problem. And I want to get rid of it.

Browsers are at their pinnacle of fucked up in my opinion, literally to the point where I'm seriously considering elinks. Being a sysadmin, I already live my daily life in terminals anyway. As such I also do have resources. But because of that I also associate every process with its cost to run it, in terms of resources required. Web browsers are easily at the top of the list.

I want to put 8GB into perspective. You can store nearly 2 entire DVD movies in that memory. However media players used to play them (such as SMPlayer) obviously don't do that. They use 60-80MB on average to play the whole movie. They also require far less processing power than YouTube in a web browser does, even when you download that exact same video with youtube-dl (either streamed within the media player or externally). That is what an application should be.

Let's talk a bit about these "complicated" websites as well. I hate to break it to you framework web devs, but you're a dime a dozen. The competition is high between web devs for that exact reason. And websites are not complicated. The document itself is plain old HTML, yes even if your framework converts to it in the background. That's the skeleton of your document, where I would draw a parallel with documents in office suites that are more or less written in XML. CSS.. oh yes, markup. Embolden that shit, yes please! And JavaScript.. oh yes, that pile of shit that's been designed in half a day, and has a framework called fucking isEven (which does exactly what it says on the tin, modulo 2 be damned). Fancy some macros in your text editor? Yes, same shit, different pile.

Imagine your text editor being as bloated as a web browser. Imagine it being prone to crashing tabs like a web browser. Imagine it being so ridiculously slow to get anything done in your productivity suite. But it's just the usual with web browsers, isn't it? Maybe Gopher wasn't such a bad idea after all... Oh and give me another update where I have to restart the browser when I commit the heinous act of opening another tab, just because you had to update your fucking CA certs again. Yes please!

I joined ACM (Association of Computing Machinery) when I helped my friends found out school's chapter.

I haven't had time to explore all it offers (other than free access to books I'm using for my certs), but I got an email saying they elected Cherri Pancake as President and I can't stop laughing. I feel a bit bad for the lady, as she may have had no say in her name (if it's her maiden name), but it's a wonderful name that makes me happy.

I just spent almost a semester's worth of money on a certification course. I know it'll help me make more in the long-run and get me out of the job that has started to cause me to become actually depressed, but this price-tag is depressing me. Why are certs so damn pricey???

I don't like noob techies who are into IT for the money.

My friend is jealous of me and he wants to get to my level. I told him that he should take Oracle certifications if he wants a good chance to a raise or a promotion (at least, it's a well-respected series of certs and everyone I know who took them got serious salary increases and respect from their managers).
For example, I studied for 12 weeks, for 12 hours per day for the OCA. He thinks he can just quickly cram a cert in three days and get big money. Nope.

This guy failed Network+ countless times. I remember he wanted to quickly get his CCNA when he barely understands how folders work.

The level of foolishness is amazing..
Yeah, anyway..

I’m hired as pizza making burger flipper for $12/hr since I have no formal schooling and then I am walked out back to the utility room to do what cooks REALLY DO... Secret network engineering and admin... Never fails... They always find out and I always end up replacing whatever company or person they used for tech/admin work.

Time to at least get some Oracle certs and a nano degree!

Boss: Hey! I know you just got everything working on that new project. But good news: I have a repo you can clone and we can work together. So just clone that and look at my changes, find something that’s broken, and work away. Oh, I also modified everything to use HTTPS locally. HTTP won’t work anymore. Alright, I’m off on vacation! Ciao!

… and that’s the story of how I spent a day and a half fighting with NPM, Brew, setting up a new CA and self-signed cert, and getting passenger to work with it. The good news is that I can connect locally via 443. The bad news is all assets use http and are thus blocked for being mixed-content. And idk how to fix it. Joy!

Not mentioned: npx removing a required package every time I run it, version mismatches, and the usual NPM problems.

What's up with almost every other site having invalid ssl certs, even though they are signed with a future date and by LetsEncrypt, did chrome again distrust a batch?

~# mkdir certs
~# openssl req -newkey.......

*checked certs dir*
hmm.. empty?
*generated certs again*

Certs dir still empty. Reverted to Google for answers. None found. I was using FileZilla to check the Certs directory.

15 minutes and a million tries late, I realized that I forgot to CD into the Certs directory...............

1.Get my SOLIDWORKS cert
2. Microsoft Certs
3. Microsoft Python Cert
4. Buy a 9 string
5. Have my album ready for August
... Any other suggestions for a somewhat beginner Python Dev

Hi.
Forgot to renew my expiring ssl cert of my smtp/imaps/pop3s on 12/31. Set that date to self-harm me for bad monitoring.

F**K F**K F**K F**K...

Why do I do that?
F******K!

Meh.

You shall have a happy new year... i will regen certs :D

I just got a fucking job again after 2.5 months between jobs and the new place has been allowing (if not encouraging) the piracy of Windows Server in client environments... I thought this place had so much potential but I was wrong.

Going to start looking for another full time job or really buckledown and try to get my freelance project/business started.

BTW fuck microshaft for expensive licensing, but I’m not risking my certs and professional career for some idiots trying to pirate software.

!dev && rant

Looking for a song's lyrics... A very complicated task apparently. Blinding Lights by The Weeknd for whoever's interested.

Firefox: just one small thing to keep going, sorry we just updated our CA certs again. Screw you, close the browser. I will not restart it for you but I will tell you that I would. When you restart the browser, you will lose whatever search you were just doing. Sucks for you bastard! Enjoy the update.

Go to Genius Lyrics, please turn on JavaScript to run this "app". Done that? Okay now solve this CAPTCHA please. Um.. let me just leave that ingenious site.

Next one, AZ Lyrics: Yeah sorry your IP is from a hosting provider, but we will not tell you that is the reason. You've just been denied access to the site. See you next time! Everyone using a VPS to make a VPN connection with is obviously an abuser after all.

Finally found the lyrics on lyrics.com after a long journey that was way more complicated than it should've been. It's a good song.

Oh and Firefox consumed well over a GB for just a single tab of course...
I want Gopher, BBS, IRC and the likes back.

The more I use LinkedIn the more I hate it. I know I shouldn't be a nosy fuck but sometimes I've got nothing better to do for a couple of minutes on my work OS and the tab's right there. Every time I open it up it reminds me of why I'm not on Facebook. My coworkers are probably the most benign people to follow, all they do is repost company videos and blogposts. Basically advertizing, whatever.

It's the other people who get to me, the ones who are advertizing themselves. The soapboxing, the 'look at all the cool shit im doing', the reposting shit from people who I have no clue about. It's literally a window into just the good parts of peoples lives, like any other shitty social media site, but put through the filter of corporate PR bullshit. At least you can be yourself somewhat anywhere else, everything on LinkedIn needs to conform to what's acceptable to the sterile corporate environment, which amounts to showing off your certs or marketable products and the most surface-level 'progressive' social politics.

Fuck LinkedIn and fuck my curious ass for opening it like a dumbass kid who doesn't understand why you shouldn't touch a hot stove.

Today's my company's official final day with Slack.

Starting tomorrow it's nothing but the "superior" Google Chat. I will have no choice but to join the others who have already migrated over.

FML

It also mean I won't have any access to messaging outside the office because I don't want to accept the security certs on my phone.

i fucking hate trying to debug ssl certs

This morning I just discovered all our repos are visible to everyone in the company... Not just the team that created them...

We store passwords and certs in our repos....

Tomorrow I must present a summery of what the prof said in the first session of security+ within 20 min.
All he said was about the most important security certs and some definitions including CIA triangle.

Any idea how I can make my summery cooler or anything relative I can say in addition to those?

I code. I'm not a network or security admin. Did you even read my resume before hiring me? It says "math degree then data analysis then programming degree" Subnets, firewalls and security certs are not my areas of expertise. Given enough time, could I stumble through? Probably. But I'd probably come up with something worthy of mocking on networkadminrant.

Wowza..... Security certifications get expensive! Gonna have to spend half the week writing one hell of a business case for the certs my team needs!

Me and the dba are slowly migrating parts of our JVM stack into .NET AND even tho I love and will always love Java and its ecosystem....I am glad.

IIS as a server is something that I actually look forward to since deploying shit to it is always a breeze

Installing ssl certs is a breeze

Everything is a fucking breeze

Before any of you cocksuckers say anything: this is my opinion only

I just want to say it annoys the shit out of me that my B.Sc. Bachelor's degree in CompSci isn't enough for (ignorant) employers.

Now I have to waste time getting certs in fad languages (even though I did projects in them in college) just so I'm 'marketable' again. Man, f*** this bs.

Ridiculous requirements nowadays!

What disturbs me is when companies uses invalid ssl certs for internal services where you have to login with your company credentials.

A message from my colleague (product name removed):

"I think I hate absolutely everything on this network. I think <insert product name> wouldn't be so bad if the pointy headed wankers hadn't got involved."

"It's the fuckery with https and screwing with certs that make it utterly shite without that, it would merely be irritating."

WHY!
Email was invented a gazillion years ago and it's still a shiit experience to setup on linux. Just give me ONE complete package!!
nooo i need to get postfix, dovecot, spamassassain mailscanner, antivirus, opendmarc, opendkim, dovecot-managesieve dovecot-sieve, roundcube, database, webserver and then i still have to configure everything and setup certs, spf, dnssec, dkimkeys on the domains, domains, mailboxes, deny weak certs etc.

I know the whole do one thing and do that one thing well but how about you just be a mailserver and do that ONE thing well without me needing to putting all of the puzzle pieces together myself! I don't want to waste time setting all this shit up. and don't even get me started on symantec and live.com and their blocking!

Guys, please use caddyserver as your webserver! It creates official tls certs for you without you having to do anything. Help making the web secure. There are too many websites that do not have any security.

Maaaan, we all knew it was coming, we were warned, again and again, yet still, when Lets Encrypt's old root CA expired today, we found out a tool we were using to get new certs (Not cerbot, custom wrapper around acme-tiny) included the old root in the chain.

So... A few hours ago, some of our servers started having connection issues.

Great final 3 hours of today. Better luck next time I guess? Still, despite the little hickup, Lets Encrypt still remains as one of the biggest revolutions in the adoption of SSL, they're the good guys.

At a friend's New Year's Eve party 2 years ago...

"So you're a programmer? Do you know how to hack someone's e-mail, or maybe just a Facebook page? I have a friend who removed me as an admin from one of my pages and won't give it back..."

Same kid later that night, upon learning one of the other guests is the head of IT for a local company:

"Hey, I'm going to be finishing my CISCO and A+ certs here in a few months, will that be of any help? I can even get you drugs if you like!"

*weird look from friend*

"Or no drugs! None at all!"

...How about you just stop talking about illegal activity at all, kid?

iOS notifications stopped working... Certs are good, nothing wss changed regarding notifications, everything works fine on the android side... What do you want from me apple???!!

Been working shitty odd jobs since I was in high school and college. Spent the majority of 2017 looking for any entry level tech job just to see what kinds of jobs I can land with current work/school experience.

Needless to say I had the absolute pleasure of quitting a doctor's office that I spent five years at. Now I'm in my first week working in tech support where they're actually going to pay for me to take classes and get certs. Couldn't be happier and I'm writing this to send positive energy everyone's way.

FUCK MY MOTHERFUCKING LIFE! FOR GOOD THIS TIME!

I worked about 6 hours straight today to get SSL up and running, so you can include your own certs in my framework. This worked without any problem in Netty. Even forcing SSL was without any problem.

And then I tried to fucking show an image and this motherfucker won't load. I tried to copy code examples from fucking any source I could. As I gave up I tried to comment out a Netty decoder.... AND IT FUCKING WORKED!

FUCK YOU NETTY DOCUMENTATION!!!

FUCK NETTY, LONG LIVE NETTY!

When I thought things couldn't get crazier that my vmware to win chrome mess.....

Doing an upgrade today when I have to VPN in from my mac to access a Web based secret server to get onto another VPN so I can RDP onto a Windows bastion host to then RDP to client windows servers within the RDP and from those hosts need to use putty to ssh into Linux servers to do the admin activities......

Now I'm obviously all for security but seriously VPN to RDP to RDP to ssh is just a bit mental......

But all of the SSL certs between each env is self signed anyhow......

Anyone else out there got any QlikView Certs? Got mine this summer for a summer job. they paid for the training and everything.

My sis wants to career switch into being a dev.

Sis is a kindergarden teacher (great credentials, went through a rigorous program for all the best certs), divorced last year, has a 5 year old. She's a single mom making less than 30k, in Portland, OR -- not great. She's also just started her career/finished school this past year.

Trouble is, sis can be a bit unrealistic about plans at first. She "heard from some people" about making 50k+ starting wage after a coding boot camp. She wants to do this by the end of the summer -- she's never coded in her life.

I can't advise her; I'm in my undergrad c++ courses and I don't know the industry, but my gut tells me this is a bad idea.

Please advise.

Does anyone actually fucking know how certs and provisioning profiles work for large iOS teams without using the cancerous auto provision checkbox? Are we all just fucking it up all the time??

Fucking linux foundation, bought the CKA exam last year and now they tell you if you take the exam after first of April the cert will only last 2 years instead of 3, wtf is this shit?

God certs are such a fucking scam! yet they are quite valuable if you have them on your cv so you just have to suffer in silence.

Who around here is saying the looovveeeee mobile development? EVERYTIME i come back to it, it's just cert nightmare - you need a provisioning profile this, distribution cert that, your profile has to INCLUDE the cert, on and on and on. god i hate it

Wanna know how I do it with web?

git push

okay. Just had an interview for a web application engineer role. It was a catastrophe. Basically, they are taking care only of things I was never worked with, like certification management, ansible deployments, bash scripting. ?? What? Like, what the hell? Guys, I can make you a nice javascript game, or laravel website, eventually mount the routers and switches, configure and automate the networks, but certs... for me ssl is just an extra checkbox when I'm buying a new domain. I asked the recruiter like 5 times, please tell me what the hell is the role about, he doesn't knew... I think, I'll just give up this applying for a jobs stuff, and stay maintenance engineer, dig into plc-s and etherCat even more and forget the IT career completely...

Just had a so called "cyber security" seminar in college today.
The guy who claimed to be a trainer or somewhat network security guy or something behaved enigmatically with utter consistency. He obviously claimed to know facebook hax0ring though.
They were basically there to advertise their complete crap: csksrc.org
(Ethical Hax0ring Course) (also claimed their site to be 99.9% secured - GREAT!)
After obtaining a ISO*** standard cert or after taking multiple sessions on "advanced ethical hacking" if you go about telling peeps in colleges that: "The single way to hax0r a facebook account is CSRF!" "Will hack your facebook account by MITM through malicious WiFi Ap." Then, NO neither I want your shitty cert nor do I want to be in your team and create the next level of "advanced ethical hax0ring - CEH course". Reason why I get cringed when peeps start about their certs and the ISO*** value it contains. What ISO value does your brain cells contain though?

I made a wordpress website to one of my friends long time back as he wants to teach online and sell his videos. (he is studying MBBS)
Yesterday suddenly he calls me and says our site has been compromised and its not longer secure.
Me: After seeing screenshot, no actually site doesn't have ssl and in recent chrome updates http site is being flagged.
He: Okay, I saw video on youtube how to buy ssl.
Me: its not just installing the certs, all the links and images has to be on https so it will take sometime for me.
He: Today, Website is no longer opening please help after putting ssl as per the video...
Me: What the hell? Who asked you to do that? Are you nuts?
He:................. Sorry, 😐

Self signed certs break everything.

Stop it you retards.

Apple's certificate and provisioning profile shite can fuck right off

When I'm not busy at work I've been spending my time studying on w3schools to get certified in HTML, CSS and JS development. Are these certs really worth It? Will they help me in the future enough to pay $95 for each one?

Knowing way more than what your current job needs, and enough to get a decent position, but no degree/certs/multi-thousand dollar sheets of paper to prove it and being stuck in a dead end job

A customer of ours not to say names trains people for infosec certs upon investigating their website I noticed they don't have forward secrecy enabled.
Why? What? Even?

Turn it on you baddies.

May have asked this before but couldn't get an answer from any of the "experts" at my company so...

How do you store/pass in db login and certs for testing/debugging from your own machine?

I'm using Java Spring and the way I'm thinking of is to override the application.yaml, in the Debug configs, to point to one that has the credentials but only shared within the team?

Cloud certifications are becoming like subscriptions. Grad students are passing the Solution Architect certs. WTF – I’ve cleared a few myself, BTW

i fucking hate trying to debug microservice certs

Making a hard switch to ubuntu on my desktop at home. Getting just a teeny tiny, tad, bit: absolutely fucking livid....

Trying to learn ansible, vagrant, and docker more in depth for both work and my personal projects. All that I’ve been doing is just spinning my wheels trying to figure out the stupid fuck-mothering quirks with running this shit on Windows. Yes you absolutely can use all of these tools on a Windows box. There’s plenty of ports, patches, and workarounds. But I have spent all day trying to build a few vagrant boxes and use ansible to set them up. Simple LAMP stack boxes on CentOS7. Nothing major... unfortunately I spent like 90-110 minutes trying to figure out why virtualbox wouldn’t run properly. Dumbass me forgot that I installed Hyper-V ages ago.

O...K.... whelp... hyperv provider it is...

Luckily it only took about 15 minutes to determine that Hyperv’s networking can’t be setup from vagrant because vagrant doesn’t know how to interact with the hyperv - vswitch. So networking config is ignored and all VMs run on default switch (NAT) which is annoying but workable.

Ran into other issues trying to stay SSH’ed into the VM. PowerShell core (6) ssh’es into the box perfectly fine, but every time I opened vi to edit configs my terminal color scheme and fonts got fucked harder than a 2 dollar hooker on nickel night.

I’m a bright-green text on black background kinda guy. However the terminal kept changing to bright-red text on white background! It was like getting skull-fucked by a minotaur.

After a while I said fuck it, let’s try putty. Vagrant was using it’s own ssh keypair for the boxes, at work on my mac. Works like a dream. Putty failed me hard and shit the bed, kept getting all kinds of keypair errors. At this point I was finished spent too long trying to make shit work correctly on this jankbox. With enough time and patience I probably could’ve figured all of these problems out. I’m certain that at least 70% of them were caused by user error. I’m known by many as the walking ID-10t.

But alas, I have no time left in the day to fuck around with shit that doesn’t work immediately for morons like myself. My only hang up for the longest time with a complete switch to Linux was gaming. But with Proton and WINE I’m comfortable with giving it the ol’ college try. (Shhhh, don’t remind me I dropped out of college...

...Thrice.)

The gamble here is that I’ll give more than 2 halves of a fuck about trying to get my games working. A Study environment and materials for certs and general training won’t be getting anywhere near my full attention.

So, at long last, I hope this attempt at a full *nix switch finally sticks!!!

👾

So, I manage my server with docker containers (nginx-proxy and the letsencrypt-companion). I limit access to some subdomains using basic auth, but I want to use client certificates for convenience.

So my questions to the experts:
1) Do you know a good (and convenient) way to manage client certificates ? This should include revoking certs and allowing specific certs only for specific subdomains.
2) Should I use my letsencrypt CA for this or would a self signed CA better suited?
3) Any things I should be aware of?

So did everyone here study in college or university to land their first job?

SSL was a good idea terribly implemented. Relying only on big tech for valid certificates was the single most idiotic thing the web baboons could come up with.

Sure, you could always hack comodo (again) to issue yourself some LAN certs but come on. You either expose your server or pay half a kidney for a somewhat secure thing! Give me a break....

While Indian govt. talks about digitizing the country and is pushing ahead with it, their Employee's Provident Fund Org (EPFO) infra is absolutely shit and it's killing small time business that want to help their employees.

You need to add Digital Certs to do just about anything (great security wise) BUT,
The digital sign interface is written in Java Flash, that was dropped by all modern browsers 4 years ago.
The only stable working latest browser for it is Firefox 52 released 3 years ago.

The USB tokens used/supported are all Chinese that don't respect OSS drivers and fork built their own (read Watchdata) with no/shitty and cumbersome linux support (couldn't get it working after 2 nights of trying different versions of drivers).
You still have to run Windows to sign the docs or to interact with EPFO using legacy browsers from 2016

Non Tech problems: EPFO charges 500 Rs/month minimum admin charges, and I pay 1200 Rs PF for my driver. That kind of commission is plain stupid and will make small employers run away from paying PF for their employees.

Any interaction with EPFO is like having to eat thorns. painful, unnecessary bullshit. How useless can someone be building such a system released in 2019?
I just hope they fix it. A simple google search shows there is Web Crypto API for modern browsers. Someone wake these people up. SMH

I know it's all for good reason, but man are there so many hoops to jump through to get a web server set up through HTTPS. registering the domain, getting the SSL certs, configuring the DNS, setting up the firewall rules.. what a pain

Update:
I've been trying to leave DoD for a couple of months now. Translating my 10 year's experience with complex Intelligence enterprise level systems to something relatable to the civilian IT world. Grabbed a few certs to help out A+, network+ and security+ with Linux+ as my next target. Photos of me working on unclassified systems, radios, cell towers and servers. I'm a teacher for military UAS so this shouldn't be to hard to get even a basic job in IT right.

No one will hire...
Linux admin: Nope
Network admin: Nope
Assistant Network admin: Nope
IT call service: Nope
Pool cleaner fucking nope
Many interviews and nothing
I'm broke and sold all of my personal valuables. I can't hold out much longer and really looking at becoming homeless. But I'm kinda ok with it, one last payment on my apartment and car is all I can do now. My parents think I'm in Afghanistan working a six figure job lol

DoD: we see you're trying to leave we'll pay you alot to teach A+, Network+ and Security+ traveling all across the country and staying at hotels with all expenses paid.

FU FU FU I want out please tell me someone has a job, I'll be a janitor of a server room Idc I just want out. Fuck the pay

I start Tuesday...

How does Spring Boot/Data create a MongoClient/Template Bean to a **remote** database that requires password, certs, other configs?

These would be set in application properties but how does it get translated to the Beans?

I went through a lot of examples is like @Autowired MongoClient client

And then they just use it.

And I'm like wtf?

Right guys and gals, I need your opinions.

Recently was approached by a recruiter who thought I’d be a good fit for a role, a role that is a step up from senior dev but without moving into people / project management.
More like a bridge between architects and senior devs.

I thought what the hell, why not. So I agreed to go for it.
It could be quite a decent payrise (though that wasn’t my motivation for going for it) and I like the idea of doing more mentoring, design and research than I do now. It would involve stuff like learning new tech, coming up with examples and implementations of how the dev team need to use it to churn out user stories.

For the last few years I’ve been mainly a back end developer, which didn’t start by choice and I always liked to be full stack.

But the recruitment process for this role has been quite slow (number of reasons) and since then I’ve been given a new piece of work at my current employer doing some greenfield angular work, plus the c# back end.

I’m really, really enjoying this angular work. Haven’t done it for a while and it feels great to get back into it. Seem to be picking it back up with no problems, like the old magic is still there.
Also the money at my current place is good enough.

So now I’m wondering if I should bail on this other role in favour of seeing this out and maybe going back to being full stack (tho for reasons I’ll outline below in the long term that might have to be elsewhere)

But I’m also trying to remind myself that up until enjoying this work there’s a reason I decided to go for this other role.
Current place is a small company that has no project management process. It’s chaos, and everything’s an emergency. There are no requirements for anything, not enough people etc. No one has a clue how to run an IT project.
The one thing we do have is good development practices in our team and we have been greenfield for the last 12 months working on a new product. But we do tend to be pigeon holed into looking after a specific service/area.

But this new place if I got the role, is a bigger company (I’ve worked in small, medium and massive companies so I know what the difference is like), they’re a household name, they have resources for learning, putting people through aws certs, etc. They give people time each week to invest in themselves. Much more agile.
And thinking about it now you don’t often see a role that allows you to ‘move up’ without having to take on people/project management and still having time to be hands on.
(Just maybe more hands on with strategic work than delivering user stories for business as usual)

So just in general, what do you think?

As i wrote A DR doc I suddenly thought that making a backup of our SSL certs is *probably* a good idea. Hello pfx 🔒

Ok, you've got some free time and a folder full of bookmarks to get through the subjects you need for that cert....

....but it has been busy these past few months. One day out of your holiday just to chill and do nothing, then you can get to work....

....you have 9 days. 2 out of the 9 is ok just to relax, it is a holiday after all....

....ok, your going back to work in 2 days and the most you've done is read some semi-related articles that were shared on Twitter. Sort it out....

....24 hours to go, you've essentially done nothing productive. I guess I'll go back to fitting it in at work or convincing myself I'll do it when I get home after a long day.

Anyone else struggle with this? Not just for certs in particular, but just learning in general.

What I need to do today:
* terraform init
* terraform plan
* terraform apply

What I'm doing today:
* Rebuilding a docker container, because our outdated version of Terraform doesn't run on M1 Macs natively.
* Fighting with corporate IT man-in-the-middle SSL certs, because those aren't trusted inside the Docker container. These are now applied to all internet traffic, not just traffic destined to the VPN. Terraform doesn't like it, so it won't download any modules.
* Waiting for a blazing fast 1.5 Mbps connection rate when connected to the VPN.
* Learning I can no longer turn off the VPN, as it's a forced policy on my laptop.

Not sure if I'd be more productive today fighting these issues, or just waiting around for days (weeks?) for IT to mail me an Intel mac.

I know I haven't been productive lately but after two years of slowly build an upgrade to my app, I lost keys, signing certs and keystores :(

How does someone with. A+ certs and a Network + and Cyber Security certifications and still only getting Help Desk jobs calling them 🤷‍♂️

FML!!!

Nessus SSL authentication through Kali Linux is next to impossible. I generated certificates through terminal and I still get error "SSL received a record that exceeded the maximum permissable length" (in Iceweasel).

Tried importing certs into separate Firefox browser and now just SSL handshake errors.

I joined in 2011 when there were 3% architects/technologists. Even those were PMP certified.
Now we have 80% archs/techs/coders/devops/cyber, with aws/azure/java/db/cyber certs and no PMP.

Even now managers go off-site for a week to some exotic location and come back to present the architecture.

Do you guys have or recommend any dev certs? I want to know your experience good / bad. Im looking at getting some under my belt

this is something that's always bothered me, I figured this would be the perfect place to ask. so some projects have files you need for development but can't commit to VCS (for example, files containing AWS keys, certs, etc). I've always dealt with this by just storing them/backing them up on an intranet server not connected to the internet. does anyone have a solution easier than manually distributing these files to new developers via a flash drive?

Why are so many websites' TLS certs broken? This month I've come across at least four different websites with cert errors that I've tried to email the webmasters about. "Tried" - the fourth has only twitter as a contact point and "can't be messaged". None of the other three have been corrected, although I received responses from two claiming they'd look into it.

And that's not even counting the ones I've seen that I didn't care about enough to contact the webmaster.

After leaving my internship job to try out pre-med, getting to the end of pre-med, and studying for the MCAT for months, I am now getting married in May and looking for an apartment, so nixing the medical school idea...

Trying to get my old job back, was absolutely *lovely* to see that SCCM (the abusive father that it is, I knew how to work with him) is now getting discontinued? Man.

Might just bumrush these IT certs and see what happens. At least I know LaTeX now.

Any tips for getting into the freelance game?

I’m a FE dev (React / TS / Next) with a11y certs and 7+ yrs of experience, but am wondering how I can get my first clients freelancing?

I’ve got drafts for contracts and all the legal protection stuff sorted to prevent me getting fucked over in most cases, but am struggling when it comes to getting myself out there and actually grabbing clients.

What tips do you guys, gals and non-binary pals have for someone wanting to break from big-corpa and to go into this new direction?

I dunno why but I'm sold by AWS and how anyone may start off on the right note when starting a "startup" project. A lot of IT folks I know have vouched for it as well. Maybe because I'm engineering graduate and I have put the costs and maintainability on top of the checklist. I even plan to take the SAA certification since it was also surveyed as one of top paying IT certs to get. But mostly I care about the stuff I can learn and rely on its ecosystem. Tell me something I should be wary about this cloud provider. Coz maybe I'm just too "sold" by the hype.

working postman request with SSL , pfx cert against microservice

go to do the same thing against different microservice , SSL error , review config, looks like im supplying same certs, etc

FML

I have hoed around in different technologies during my university life, Web dev, game dev, cybersecurity (even got a CEH certificate, the training wasn't adequate tho and it's an expensive field needing all those certs), tried blockchain, machine learning but at the end, I haven't gotten anything done. No big projects.... well, apart from a miniproject that extracts text from videos, doesn't work half the time (T-T), No internships...no experience, nothing. I was really, reaaally dumb xD

Now, in my 4th and final year of university , I have decided to settle on Web development (MERN) with game dev on the side (leisure activities), but I need advice.

Before deciding my path, I enrolled in the year-long ALX Software Engineering course. I'm in my 6th month. It promises access to The Room, where they say job opportunities that aren't shared publicly exist. Problem with the course, tho, is they rush, and I don't get time to consolidate what I learn in the course. I feel like i am not gaining anything (first few months were cool). I am on the verge of giving up cos I found solace in FullStackOpen. It teaches MERN, is self-paced, and ergo gives me time to build my portfolio and has a nice community. I know what to do (quit and focus on my portfolio and projects cos my CV is crap ), but advice from you all could really help. Thanks in advance seniors, this little brother appreciates it.

Hey devranteers,
Do some of you know the LPI-Certs? Are those certs which have some reputation?
Or are there „better“ ones?

Using boot2docker behind a corporate proxy that fucks with your SSL certs will drive anyone insane!! 👹

I may have an opportunity to become a Network/Systems Administrator. I just wanted to know what Salary range I should be targeting. I don't have any Certs but am working towards it. I spent about 1 year and half in IT. Almost a year during Help Desk and currently been a Network Tech tole for about 4 months