Do you have a source other then your backside for that? Cause I’m pretty sure lawns started out as communal grazing and recreational areas.

I think most foods. Soup, stew, and some sauces I’m fine with reheated/leftover. I still think it changes the flavor though and for sure screws with the texture. Air fryer/convection ovens make some things okay to reheat but again still screws with flavor/texture. I personally just would rather make meals fresh.

Some people just prefer meal prepping and that’s fine. There’s also a fairly sizable contingent of people that if you asked them if they could just take a pill instead of eating they would be perfectly happy doing so. It’s just not for me. I personally really like to cook and I also enjoy eating the things I cook. So I’m kind of on the other side of that spectrum.

See I grew up eating a lot of frozen stuff and I think that’s why I don’t like it. But you’re right it’s totally a matter of opinion. I also really enjoy cooking so that helps.

I think meal prepping sucks donkey balls and most food that is meal prepped tastes like crap after its sat in the fridge/freezer. I have been personally attacked on more than one occasion for bringing this up so I just don’t anymore.

Ohhhhhh. I should’ve guessed that. Sorry can be a bit dense sometimes.

Who the hell is space karen?

https://en.m.wikipedia.org/wiki/Orchestrated_objective_reduction

Is this theory what you’re referring to? Just curious because it always seemed interesting to me but I’m not educated enough to even know how to approach the subject beyond going, “huh neat.”

Feel your pain. Did the same thing for about a decade and it wasn’t awesome. At the end of it I felt like all I did was commute, work, commute, and repeat the next day. Barely saw my family. Hope it gets better for you though!

At least it’s an affordable shithole!

You got a quarter?

Like basically every school in the US has a dress code already. Don’t get this twisted into something else, this is purely performative nonsense by some backwoods inbred redneck.

I think that’s also made up propaganda. Kitty litter is used by janitorial staff basically everywhere (at least in the US) to clean up vomit and other semi-wet solids. Children are prolific pukers so it’s not surprising that basically every school has a bunch of kitty litter in their janitorial closets.

Does the set of all sets contain itself situation huh?

To where? Like where you gonna go that is more suitable than where we already are? You gonna rocketship your ass to Mars? Cause even with global warming earth is still more hospitable than a rocky desert with no oxygen. A bigass bank account with lots of zeros isn’t gonna keep anyone out of the we’re collectively fucked line. Sure it might get you a spot at the back of the line, but we’re all getting in it together no matter who you are.

They are sort of right but have implemented it terribly. Serving out a static webpage is pretty low on the “things that are exploitable” but it’s still an entry point into the network (unless this is all internal then this gets a bit silly). What you need to do is get IT to set up a proxy and run apt/certbot through that proxy. It defends against some basic reverse shell techniques and gives you better control over the webhosts traffic. Even better would be to put a WAP and a basic load balancer in front of the webhost, AND proxy external communications.

Blocking updates/security services is dogshit though and usually is done by people that are a bit slow on the uptake. Basically they have completely missed the point of blocking external comms and created a way more massive risk in the process… They either need to politely corrected or shamed mercilessly if that doesn’t work.

Good luck though! I’m just glad I’m not the one that has to deal with it.

I’m absolutely shocked that a company had a software whitelist before the widespread adoption of the internet. Ahead of their time in implementing, and fucking up, software whitelisting!

Yep you’re right, but at least that adds another layer of complexity to their attack. A lot of security controls are at least somewhat situational, and most non-draconian companies have a process to put further mitigations around those exceptions either from increased monitoring or adding additional supplemental controls.

There’s no such thing at perfect security, just better risk mitigation. Slipping in a usb hub between the computer and keyboard while someone isn’t looking is a bit trickier then just plugging in a usb stick. If you disable unused usbs in the bios, instead of trying to do silly stuff like glue them shut, then the attacker has at least been temporarily thwarted if they slot it into a dead port. Aside from the high traffic areas, disabling ALL usb ports in places like datacenters and especially colocated datacenters, can thwart the attack outright as well.

Really from looking through this thread a lot of people seem to be under the misconception that security that isn’t perfect is pointless. It’s like claiming that locking your doors is pointless because lockpicks exists. The point isn’t to keep a sophisticated attack at bay, but rather to keep script kiddies and drive-by attacks from hitting your network. To defend against sophisticated attacks you really have to go a bit crazy, and even then very small slip ups can be disastrous. Ask Microsoft about their root cert getting leaked via a core dump!

I fully acknowledge that many people also work for places with dumbass security controls. Gluing usbs is WAYYYY up there on that list in my opinion. It also looks like a lot of people work at places that have really shitty security teams that haven’t quite figured out that controls are situational and require more thought then, “see checkbox, execute checkbox.”

That’s obvious when a mouse or keyboard doesn’t work. OP, and clealy other people in here, don’t really understand the actual attack vector in play. They aren’t using the USB as data storage, they are using as a cellular connected RAT and/or a tool to deploy a RAT to a workstation.

I think gluing usbs is dumb in just about any environment (disable them on the BIOS is the right answer), but attackers aren’t using it to drag and drop files and then physically take the usb with them. They are plugging them into a workstation, or just leaving them in the parking lot and letting other people plug them in, leveraging them to get initial access, and then essentially abandoning them.

For example see stuxnet: https://en.m.wikipedia.org/wiki/Stuxnet

I made one comment to you clarifying the other person’s point because you clearly didn’t understand what they were saying. Personally seen a couple of small companies fold because they were ransomed from a password on a post it. But you do you.

The guideline is abundantly clear too with little room for interpretation:

5.1.1.1 Memorized Secret Authenticators

Verifiers SHOULD NOT impose other composition rules (e.g., requiring mixtures of different character types or prohibiting consecutively repeated characters) for memorized secrets. Verifiers SHOULD NOT require memorized secrets to be changed arbitrarily (e.g., periodically). However, verifiers SHALL force a change if there is evidence of compromise of the authenticator.

https://pages.nist.gov/800-63-3/sp800-63b.html