β β β Uππ»βΊπ«6π¬πβ β β β
π¦Facebook re-exposed vulnerability: sharing user data with developers overtime
> Sina Technology News Beijing time on July 2 morning news, after the "Cambridge Analysis Scandal" was exposed, FacebookThere was a promise to impose a time limit when sharing user data with external developers, but the actual deadline exceeded their original promise.
> The company previously stated that if the user does not interact with the developer for more than 90 days, it will prevent the application from obtaining user data. At that time, developers need to re-acquire permission to get access to data such as e-mail, birthday and city,
> But Facebook said in a blog post on Wednesday that this rule has not been implemented smoothly in some cases. If the user also contacts Facebook friends through the application, the developer can obtain the data of the two users at the same time. However, a company spokesperson said that the vulnerability would cause developers to see the data of a userβs friends when they get the data of an active user, even if the latter has not opened the application for more than 90 days.
> Facebook revealed that this issue involves about 5,000 developers. But they did not disclose the number of users who might be affected by this.
> "We will solve the problem after we find it," Facebook wrote in the blog post. "We will continue to investigate and will continue to maintain transparency around any major updates."
> The vulnerability was discovered by a Facebook engineer two weeks ago, but the company said that they have no reason to believe that the relevant data has been misused.
written by undercode
β β β Uππ»βΊπ«6π¬πβ β β β
π¦Facebook re-exposed vulnerability: sharing user data with developers overtime
> Sina Technology News Beijing time on July 2 morning news, after the "Cambridge Analysis Scandal" was exposed, FacebookThere was a promise to impose a time limit when sharing user data with external developers, but the actual deadline exceeded their original promise.
> The company previously stated that if the user does not interact with the developer for more than 90 days, it will prevent the application from obtaining user data. At that time, developers need to re-acquire permission to get access to data such as e-mail, birthday and city,
> But Facebook said in a blog post on Wednesday that this rule has not been implemented smoothly in some cases. If the user also contacts Facebook friends through the application, the developer can obtain the data of the two users at the same time. However, a company spokesperson said that the vulnerability would cause developers to see the data of a userβs friends when they get the data of an active user, even if the latter has not opened the application for more than 90 days.
> Facebook revealed that this issue involves about 5,000 developers. But they did not disclose the number of users who might be affected by this.
> "We will solve the problem after we find it," Facebook wrote in the blog post. "We will continue to investigate and will continue to maintain transparency around any major updates."
> The vulnerability was discovered by a Facebook engineer two weeks ago, but the company said that they have no reason to believe that the relevant data has been misused.
written by undercode
β β β Uππ»βΊπ«6π¬πβ β β β
Forwarded from Free Premium Accounts Telegram Channel - Netflix - Spotify
Please open Telegram to view this post
VIEW IN TELEGRAM
β β β Uππ»βΊπ«6π¬πβ β β β
π¦How to generate certificates in OpenSSL ?
#Pro
In fact, the private key of the web server and the private key of the Certification Authority (CA) are no different in nature - they are generated by the same command. But a Certification Authority (CA) has a special status insofar as:
1οΈβ£Its private key is used for signing certificates (therefore, it is called the root, although in the physical sense it does not differ from the private key of the server)
2οΈβ£Its public key (certificate) is added to the computers of all users as a trusted
3οΈβ£The digital signature in the certificate is not intended to be verified by a third party, since the certificate is self-signed.
> The only difference between a self-signed certificate from a Certification Authority (CA) and one that you can generate yourself is that it is located among trusted ones (in the operating system or in the browser).
> You can place a self-created self-signed certificate among trusted ones, and it will have exactly the same strength as the root certificate from Certificate Authority (CA)
π¦ Let us return to the procedure of signing, but actually creating a server certificate - the created certificate must be cryptographically associated with the serverβs private key. But the private key should be known exclusively to its owner (server). The way out of this situation is the use of the already mentioned Certificate Signing Request (CSR), that is, a "certificate signing request". That is, the Public Key and the domain name are transferred to the Certification Authority, but the private key remains secret. This is precisely the meaning of the existence of CSR.
1) For educational purposes, you can create your own root keys and even your βCertificate Authority (CA)β. Then create a pair of private and public server keys. Using the server key, we will create a certificate signing request (CSR). With a private key CA we will sign (create) a certificate for the server.
2) We will also learn how to add our root certificate to trusted certificates, verify and manage trusted certificates already present.
3) Which command to use, genpkey or generate :
There are two commands in the OpenSSL package that perform a very similar action - they generate a RSA private-public key pair:
1οΈβ£<font style="vertical-align: inherit;"><font style="vertical-align: inherit;">openssl genpkey -algorithm RSA</font></font><font></font><font style="vertical-align: inherit;"><font style="vertical-align: inherit;">
2οΈβ£openssl genrsa</font></font>
4) In fact, the formats of the keys generated by these RSA programs are slightly different. The genpkey command replaces the genpkey command , as well as two more commands: gendh and gendsa .
5) That is, you need to use genpkey with which you need to specify the key algorithm with the -algorithm option .
ENJOYβ€οΈππ»
Written by
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
β β β Uππ»βΊπ«6π¬πβ β β β
π¦How to generate certificates in OpenSSL ?
#Pro
In fact, the private key of the web server and the private key of the Certification Authority (CA) are no different in nature - they are generated by the same command. But a Certification Authority (CA) has a special status insofar as:
1οΈβ£Its private key is used for signing certificates (therefore, it is called the root, although in the physical sense it does not differ from the private key of the server)
2οΈβ£Its public key (certificate) is added to the computers of all users as a trusted
3οΈβ£The digital signature in the certificate is not intended to be verified by a third party, since the certificate is self-signed.
> The only difference between a self-signed certificate from a Certification Authority (CA) and one that you can generate yourself is that it is located among trusted ones (in the operating system or in the browser).
> You can place a self-created self-signed certificate among trusted ones, and it will have exactly the same strength as the root certificate from Certificate Authority (CA)
π¦ Let us return to the procedure of signing, but actually creating a server certificate - the created certificate must be cryptographically associated with the serverβs private key. But the private key should be known exclusively to its owner (server). The way out of this situation is the use of the already mentioned Certificate Signing Request (CSR), that is, a "certificate signing request". That is, the Public Key and the domain name are transferred to the Certification Authority, but the private key remains secret. This is precisely the meaning of the existence of CSR.
1) For educational purposes, you can create your own root keys and even your βCertificate Authority (CA)β. Then create a pair of private and public server keys. Using the server key, we will create a certificate signing request (CSR). With a private key CA we will sign (create) a certificate for the server.
2) We will also learn how to add our root certificate to trusted certificates, verify and manage trusted certificates already present.
3) Which command to use, genpkey or generate :
There are two commands in the OpenSSL package that perform a very similar action - they generate a RSA private-public key pair:
1οΈβ£<font style="vertical-align: inherit;"><font style="vertical-align: inherit;">openssl genpkey -algorithm RSA</font></font><font></font><font style="vertical-align: inherit;"><font style="vertical-align: inherit;">
2οΈβ£openssl genrsa</font></font>
4) In fact, the formats of the keys generated by these RSA programs are slightly different. The genpkey command replaces the genpkey command , as well as two more commands: gendh and gendsa .
5) That is, you need to use genpkey with which you need to specify the key algorithm with the -algorithm option .
ENJOYβ€οΈππ»
Written by
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
β β β Uππ»βΊπ«6π¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Some Steps for protect your android from Ransomware :
#fastTips
How to protect yourself?
> We recommend that you take basic precautions to protect yourself from these threats:
1) Never open email attachments from unknown senders- also scan any usb plugged in
2) Never click on links in SMS or MMS messages.
3) Even if the letter looks normal from some company ,.
4) Go to Settings β Security and disable "allow installation of applications from sources other than Google Play."
5) We do not recommend connecting to unknown Wi-Fi networks and turn off Wi-Fi when not in use.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Some Steps for protect your android from Ransomware :
#fastTips
How to protect yourself?
> We recommend that you take basic precautions to protect yourself from these threats:
1) Never open email attachments from unknown senders- also scan any usb plugged in
2) Never click on links in SMS or MMS messages.
3) Even if the letter looks normal from some company ,.
4) Go to Settings β Security and disable "allow installation of applications from sources other than Google Play."
5) We do not recommend connecting to unknown Wi-Fi networks and turn off Wi-Fi when not in use.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How to Port Forward Minecraft ?
When you are playing Minecraft you might need to forward some ports in your router. Forwarding ports is a useful trick in gaming because it can really help to make your network connection most stable and sometimes even faster. Routers were not designed to allow incoming network requests and some games can play tremendously better if an incoming connection is forwarded through the router to the game.
Before You Forward a Port
π¦Before you can forward a port you need to know the following things:
1οΈβ£The IP address of your router.
2οΈβ£ Your gaming machine's IP address.
3οΈβ£ A list of TCP and UDP ports that need to be forwarded.
π¦How to locate your router's IP Address ?
> The easiest way to locate your router's IP address is to run our free Router Detector utility. It's a part of the Network Utilities suite of tools and it's completely free to use.
How To Forward Ports
> Use our Network Utilities for a quick way to get your ports forwarded. Network utilities makes it easy to enable and disable your port forwards to keep your network security as tight as possible. You can also do it by hand by following these steps.
π¦The process for forwarding a port is generally:
1οΈβ£ Start by logging in to your router.
2οΈβ£Find your routers port forwarding section.
3οΈβ£ Put the IP address of your computer or gaming console in the correct box in your router.
4οΈβ£Put the TCP and UDP ports for your game in the matching boxes in your router.
5οΈβ£Frequently you have to reboot your router for the changes to take effect.
π¦Which Ports Does Minecraft Require
The incoming ports that need to be forwarded for Minecraft are as follows:
1) Minecraft - Xbox 360
TCP: 3074
UDP: 88,3074
2) Minecraft - Playstation 3
TCP: 3478-3480,5223,8080
UDP: 3074,3478-3479,3658
3) Minecraft - Xbox One
TCP: 3074
UDP: 88,500,3074,3544,4500,1935,3478-3480
4) Minecraft - Playstation 4
TCP: 1935,3478-3480
UDP: 3074,3478-3479,19132-19133
5) Minecraft - PC
TCP: 25565
UDP: 19132-19133,25565
6) Minecraft - Switch
TCP: 6667,12400,28910,29900,29901,29920
UDP: 1-65535
Powered by Wiki
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
β β β Uππ»βΊπ«6π¬πβ β β β
π¦How to Port Forward Minecraft ?
When you are playing Minecraft you might need to forward some ports in your router. Forwarding ports is a useful trick in gaming because it can really help to make your network connection most stable and sometimes even faster. Routers were not designed to allow incoming network requests and some games can play tremendously better if an incoming connection is forwarded through the router to the game.
Before You Forward a Port
π¦Before you can forward a port you need to know the following things:
1οΈβ£The IP address of your router.
2οΈβ£ Your gaming machine's IP address.
3οΈβ£ A list of TCP and UDP ports that need to be forwarded.
π¦How to locate your router's IP Address ?
> The easiest way to locate your router's IP address is to run our free Router Detector utility. It's a part of the Network Utilities suite of tools and it's completely free to use.
How To Forward Ports
> Use our Network Utilities for a quick way to get your ports forwarded. Network utilities makes it easy to enable and disable your port forwards to keep your network security as tight as possible. You can also do it by hand by following these steps.
π¦The process for forwarding a port is generally:
1οΈβ£ Start by logging in to your router.
2οΈβ£Find your routers port forwarding section.
3οΈβ£ Put the IP address of your computer or gaming console in the correct box in your router.
4οΈβ£Put the TCP and UDP ports for your game in the matching boxes in your router.
5οΈβ£Frequently you have to reboot your router for the changes to take effect.
π¦Which Ports Does Minecraft Require
The incoming ports that need to be forwarded for Minecraft are as follows:
1) Minecraft - Xbox 360
TCP: 3074
UDP: 88,3074
2) Minecraft - Playstation 3
TCP: 3478-3480,5223,8080
UDP: 3074,3478-3479,3658
3) Minecraft - Xbox One
TCP: 3074
UDP: 88,500,3074,3544,4500,1935,3478-3480
4) Minecraft - Playstation 4
TCP: 1935,3478-3480
UDP: 3074,3478-3479,19132-19133
5) Minecraft - PC
TCP: 25565
UDP: 19132-19133,25565
6) Minecraft - Switch
TCP: 6667,12400,28910,29900,29901,29920
UDP: 1-65535
Powered by Wiki
@UndercodeTesting
@UndercodeSecurity
@UndercodeHacking
β β β Uππ»βΊπ«6π¬πβ β β β