Disqus - Latest Comments for prazgod

Re: Announcing: Backblaze Computer Backup v8.5

Phil Taylor, mySites.guru — Tue, 20 Sep 2022 15:15:47 -0000

Done. #814006)

Re: Announcing: Backblaze Computer Backup v8.5

Phil Taylor, mySites.guru — Tue, 20 Sep 2022 14:08:42 -0000

Just to confirm, its now done the same thing on the iMac and the MacBook Pro.

Re: Announcing: Backblaze Computer Backup v8.5

Phil Taylor, mySites.guru — Tue, 20 Sep 2022 13:39:31 -0000

30 secs after installing the new version I note that it doesn't say that I am using a custom private encryption key (hint: I am) so I go to re-set it, then it tells me I cannot do that, and tells me the most common reason is that the old key is incorrect (but Im not prompted for my old key), the button is entitled "Enter your private encryption key" in the security tab. I login to the web and I see that my data has a passphrase set (as Im asked for it) so there is a bug in the Mac app interface that should tell me that I already have a private encryption key and that my data is secure. Checking the old version, when pressing the button it will tell me I already have a private key and will ask for it, and the new one - whereas the new app doesn't have that bit.

Re: Elementor #3586

Phil Taylor, mySites.guru — Thu, 10 Oct 2019 15:19:39 -0000

Not sure this is that good a review of mySites.guru :-) I invite you to take a new look around now we have launched :-)

Kindest regards
Phil.

Re: Establishing a Websocket PUBSUB server with Redis and Asyncio (for the light sensor)

Phil Taylor, mySites.guru — Wed, 22 May 2019 07:45:32 -0000

It did for a while, then I discovered the nchan module for nginx, and that has been rock solid for over a year in my project now, As I already knew nginx and have nginx running, nchan was very easy to move to. And being nginx based it has everything I need.

Re: Two Factor Verification via Auth Apps

Phil Taylor, mySites.guru — Fri, 09 Mar 2018 07:03:56 -0000

The fact is that ANY APP that implements the "Google Authenticator" can be used with 1Password, in fact, I dont even have the Google Authenticator installed anymore, all my 2FA is powered in 1Password for all my sites.

Re: Two Factor Verification via Auth Apps

Phil Taylor, mySites.guru — Fri, 09 Mar 2018 07:03:03 -0000

I can confirm that it 100% does work. Time after time. 1Password is fully working with 2FA for backblaze. Please watch my video. http://screenshot.myjoom.la... DONT WORRY I REDID MY SETTINGS after shooting this video - none of the leaked credentials in my video are now valid so you cant hack me... but the fact is that I can and do use 2FA with 1Password and my Backblaze account.

Re: Two Factor Verification via Auth Apps

Phil Taylor, mySites.guru — Sat, 03 Mar 2018 15:50:29 -0000

I use 1Password exclusivly and it works fine for me.

Re: Establishing a Websocket PUBSUB server with Redis and Asyncio (for the light sensor)

Phil Taylor, mySites.guru — Sat, 27 Jan 2018 12:10:31 -0000

I could kiss you. Thanks for this - managed to rip out millions of lines of PHP code that I was using, which had a major memory leak, and replace it with a simply one file python script! Soon to be released into the myJoomla.com project re-release :)

Re: Two Factor Verification via Auth Apps

Phil Taylor, mySites.guru — Tue, 18 Jul 2017 14:32:36 -0000

this allows social engineering hacks ... made easy... :-(
as PayPal have proved over the years...

Re: Two Factor Verification via Auth Apps

Phil Taylor, mySites.guru — Tue, 18 Jul 2017 14:21:48 -0000

Nothing to be proud of - just means you are years behind the rest of us when it comes to implementing the most basic account security - something that can be implemented in less than an hour from dev to live.

Re: Channelling Your Own Download With PHP

Phil Taylor, mySites.guru — Thu, 08 Dec 2016 06:04:01 -0000

Those that teach should know what they are talking about and should not teach people how to code insecurely! Facts are facts.

Re: Housing proposal announced for Redhill Aerodrome

Phil Taylor, mySites.guru — Tue, 25 Oct 2016 06:44:28 -0000

Another one bites the dust. Soon there will be no where to land...

Re: Channelling Your Own Download With PHP

Phil Taylor, mySites.guru — Tue, 11 Oct 2016 13:07:13 -0000

This article still contains factually incorrect statements, and wrongly gives the assumption of the use of headers to restrict content types. It is clear you don't understand real world basic security in PHP. This article should be deleted. Its not serrving the purpose it was written for.

Re: Five nuclear airspace restrictions lifted

Phil Taylor, mySites.guru — Tue, 11 Oct 2016 13:05:28 -0000

Oh great. A few weeks after my CPL training, where I had to divert around Harwell three times a week, the correct 60/120 way to satisfy my instructor :)

Re: Channelling Your Own Download With PHP

Phil Taylor, mySites.guru — Mon, 29 Aug 2016 19:03:55 -0000

Why? Because its clear the author doesn't understand the basics of security and/or PHP developing at all. This blog post is not fit to be published!! If you want to download a file - DONT do this. Its a great example on how NOT TO DO THIS, or how to write insecure code!

Re: Channelling Your Own Download With PHP

Phil Taylor, mySites.guru — Mon, 29 Aug 2016 18:34:20 -0000

DO NOT USE THIS CODE EVER - It is insecure and the author has absolutely no idea about security at all!

Re: Fix a hacked Joomla web site

Phil Taylor, mySites.guru — Tue, 01 Mar 2016 13:53:43 -0000

I have never heard of, nor undertaken work for, and we have no accounts in any name for Brendon Tyler.

Re: Fix a hacked Joomla web site

Phil Taylor, mySites.guru — Mon, 29 Feb 2016 17:23:59 -0000

Posting under a false name - but still Paeterasp Vevaina, your site IS HACKED that is a fact. The truth speaks volumes. I'm happy to publish the full, in context, abusive, threatening emails from you in public to prove my case.

Re: Critical 0-day Remote Command Execution Vulnerability in Joomla

Phil Taylor, mySites.guru — Fri, 18 Dec 2015 08:26:56 -0000

No - a SSL Certificate will not protect you from this issue at all.

Re: Critical security vulnerability affects Joomla 1.5 through 3.4.5 — immediate update required

Phil Taylor, mySites.guru — Thu, 17 Dec 2015 12:48:52 -0000

This has nothing to do with that - its because he is using the FTP Layer and not provided correct credentials. Best ot move to a secure webhost that doesn't rely on the FTP Compatibility layer because its set up correctly.

Re: Critical 0-day Remote Command Execution Vulnerability in Joomla

Phil Taylor, mySites.guru — Wed, 16 Dec 2015 15:30:53 -0000

Whatever. A webhost refusing to host joomla on security grounds is incompetent and foolish. If you dont care for my honest engagement then block me from your site - I honestly could not care less. There is so much disinformation in the comments in your posts anyway - and more to this vulnerability that you dont know and will come to light this week... much... much more...

Re: Vulnerability Details: Joomla! Remote Code Execution

Phil Taylor, mySites.guru — Wed, 16 Dec 2015 13:56:54 -0000

If you're not using a database to store session data YES this exploit still is valid. Its a session issue - not a database issue.

Re: Critical 0-day Remote Command Execution Vulnerability in Joomla

Phil Taylor, mySites.guru — Wed, 16 Dec 2015 11:05:44 -0000

Seems my other comment is being held for moderation - so I'll give you a 4 word summary here - you are factually wrong!

Re: Critical 0-day Remote Command Execution Vulnerability in Joomla

Phil Taylor, mySites.guru — Wed, 16 Dec 2015 11:02:39 -0000

The session data has to be stored somewhere - so no - that would not protect you.