From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=scpJ=HC=gmail.com=louvianlyndal@gnuweeb.org>
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on gnuweeb.org
X-Spam-Level: *
X-Spam-Status: No, score=1.9 required=5.0 tests=DKIM_SIGNED,DKIM_VALID,
	DKIM_VALID_AU,FREEMAIL_FORGED_FROMDOMAIN,FREEMAIL_FROM,
	HEADER_FROM_DIFFERENT_DOMAINS,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H3,
	RCVD_IN_MSPIKE_WL,SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED,
	URIBL_DBL_BLOCKED_OPENDNS autolearn=no autolearn_force=no version=3.4.6
Authentication-Results: gnuweeb.org; dmarc=pass (p=none dis=none) header.from=gmail.com
Authentication-Results: gnuweeb.org;
	dkim=pass (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20230601 header.b=ZsbTExpH;
	dkim-atps=neutral
Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=209.85.161.54; helo=mail-oo1-f54.google.com; envelope-from=louvianlyndal@gmail.com; receiver=<UNKNOWN> 
Received: from mail-oo1-f54.google.com (mail-oo1-f54.google.com [209.85.161.54])
	by gnuweeb.org (Postfix) with ESMTPS id 95A1924BCC2
	for <gwml@vger.gnuweeb.org>; Tue, 21 Nov 2023 21:14:01 +0700 (WIB)
Received: by mail-oo1-f54.google.com with SMTP id 006d021491bc7-5872b8323faso3168726eaf.1
        for <gwml@vger.gnuweeb.org>; Tue, 21 Nov 2023 06:14:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20230601; t=1700576040; x=1701180840; darn=vger.gnuweeb.org;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:from:to:cc:subject:date
         :message-id:reply-to;
        bh=jjlXqhEdit2xbpNCEx35FcRNnb8CCl1ZKHC9y/THQj0=;
        b=ZsbTExpHYrHTzj/Ua4kLoM6N7hLQIPUVeamB4uQbKHBxQWtkX96FuSInInxtFs19wg
         sD2QubD+o1gVWm4vms3bkP2MjwJqZz4wDFq/hLEjWyr3EIfSP34SA6e6HIwBHTrSJbR2
         zzeMAxFcR6fyVEle1HGiFyl7z8n6ygbiNJYw4SFfk0eel35veOYys0dj9HOqQDEqLfqF
         pFl649wSB88GEMBr1gKxClajyk7YeLk3qN2ZONZl3E3NvApgIrMWB2HJbGD7bS/WLXAx
         5XojOPHKNdFTo6XCq7bS8m0HsA7aC14AN08bULd92eQw72nJXWUMzcVn03Nn+8HnWp8J
         TWag==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1700576040; x=1701180840;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=jjlXqhEdit2xbpNCEx35FcRNnb8CCl1ZKHC9y/THQj0=;
        b=KYblzy5Ok//fYH0Mnm/yULUYFlq/q7lo1jsu96OF9Cl3qUTuvah3s5ALM4sDQ2L/Sa
         9w2AE/0Ks0QYo0iYKPhZFU7luQRakxvEtHVCoF6w9kVZ8L+MCPLw11WDd1NlX6wjXMcC
         xDIkFsiqKbVIPFSs0l30AKzxxOBUPVjCn785l/s3H1stkhDyYPAyIu+RAcNZQsjDDbdh
         RKiLePiR4irrhG14J3GjnEeX9CclFeP43gf6U2a0KsK0HU9XDJVWtDLNQ9GpOa5LIkLI
         O/SsEmdOb1t7Hr+bWCUIB5KFfJAI+oN1SNWZUxWk3pbTPlJVUjiJBrmVmo50kWRfiLL8
         zUEQ==
X-Gm-Message-State: AOJu0YyqUYdUorhlg+fmKzRyoiCZcDA5iu6p5i4X5ANTvBxWEhbnl8f6
	d8es2Ejwd0mWNGUTOrLwKS8q/EWecU7UKf/GrUo=
X-Google-Smtp-Source: AGHT+IE8Dau6NlJTZp1YuT254TRoDMdNnTtMkckKqzncnFuNV3uLazqfxN6OONCpuhvWO3b1EdEQOEP8XTVQp8l16Mw=
X-Received: by 2002:a05:6820:2290:b0:587:2b3c:e11f with SMTP id
 ck16-20020a056820229000b005872b3ce11fmr12443413oob.0.1700576040524; Tue, 21
 Nov 2023 06:14:00 -0800 (PST)
MIME-Version: 1.0
References: <CAOG64qPJ1EOc0Q2r-yf4nM2dwvgt-6=TVumN9Yvaa_b+mXBKfw@mail.gmail.com>
 <CAP2ubgKewQt3pPq-=_Qhn=UkXkrRKjLP06NrB=3WvPHPs=KoXA@mail.gmail.com>
 <CAP2ubgLmQBwckvfMxO7y1DaTpVCTjSctNzRHCV58zZ5rc0KE+g@mail.gmail.com>
 <CAOG64qPTeo=BWuZ837YFCm_g+k3b8+T4QgopuDxPCcVoqhzhYg@mail.gmail.com>
 <CAOG64qPMDZVoq6Fyy0JCs+r=id6CU09Csxa8XcQ-nB+zpnSBDQ@mail.gmail.com>
 <CAP2ubg+MwpKqSf-jcmmGepc-Ln2YyhL_nB1GYLXExidfszN2rw@mail.gmail.com>
 <CAOG64qO4_KRgOGaXoZD2Rybu2_WEhBQ0nUfXZVra1eCHAH1t8w@mail.gmail.com>
 <CAP2ubgKrqFxrvhha6n3_=HfqmOG50P1a8XnMXzLbTJm7AiqkaA@mail.gmail.com>
 <CAOG64qNx7PWhiU+9fgBeKK-CdheZhsALsvcO5d8V0hmpmVdsLw@mail.gmail.com>
 <CAP2ubgKBq2kg2oK3evLEBdwtHXMK=Nfuv8qMNhXRq4Ww2N4Ogg@mail.gmail.com> <ZVy4y9LoFXg/SkRB@biznet-home.integral.gnuweeb.org>
In-Reply-To: <ZVy4y9LoFXg/SkRB@biznet-home.integral.gnuweeb.org>
From: Louvian Lyndal <louvianlyndal@gmail.com>
Date: Tue, 21 Nov 2023 21:13:49 +0700
Message-ID: <CAP2ubgL9_ZNjacFYzkQudL-6gtNpq7FiuRfw7XOYkCscCiYspQ@mail.gmail.com>
Subject: Re: gwcfd v2?
To: Ammar Faizi <ammarfaizi2@gnuweeb.org>
Cc: Alviro Iskandar Setiawan <alviro.iskandar@gnuweeb.org>, 
	"GNU/Weeb Mailing List" <gwml@vger.gnuweeb.org>, "GNU/Weeb Facebook Team" <fb@gnuweeb.org>, 
	Michael William Jonathan <moe@gnuweeb.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
List-Id: <gwml.vger.gnuweeb.org>

On Tue, Nov 21, 2023 at 9:04=E2=80=AFPM Ammar Faizi wrote:
> On Tue, Nov 21, 2023 at 08:44:51PM +0700, Louvian Lyndal wrote:
> > On Tue, Nov 21, 2023 at 11:24=E2=80=AFAM Alviro Iskandar Setiawan wrote=
:
> > > On Tue, Nov 21, 2023 at 11:07=E2=80=AFAM Louvian Lyndal wrote:
> > > > On Tue, Nov 21, 2023 at 10:59=E2=80=AFAM Alviro Iskandar Setiawan w=
rote:
> > > > > On Tue, Nov 21, 2023 at 10:52=E2=80=AFAM Louvian Lyndal wrote:
> > > > > > On Tue, Nov 21, 2023 at 10:42=E2=80=AFAM Alviro Iskandar Setiaw=
an wrote:
> > > > > > > On Tue, Nov 21, 2023 at 10:23=E2=80=AFAM Alviro Iskandar Seti=
awan wrote:
> > > > > > > > On Tue, Nov 21, 2023 at 6:46=E2=80=AFAM Louvian Lyndal wrot=
e:
> > > > > > > > > On Tue, Nov 21, 2023 at 6:37=E2=80=AFAM Louvian Lyndal wr=
ote:
> > > > > > > > > > On Tue, Nov 21, 2023 at 5:08=E2=80=AFAM Alviro Iskandar=
 Setiawan wrote:
> > > > > > > > > > > There's a rumor that the current CF ticketing system =
is vulnerable (
> > > > > > > > > > > https://ticket2u.id ). Will the GNU/Weeb security tea=
m assess it?
> > > > > > > > > >
> > > > > > > > > > I'll give you some samples so you can be sure it's real=
.
> > > > > > > > >
> > > > > > > > > Here you go:
> > > > > > > > > http://mbol2yli7np6mzfgwimfnhajat6sdnq5frs2w7w3b7ldppdawe=
xaxyid.onion/comifuro2023/
> > > > > > > > >
> > > > > > > > > It contains many events, not only CF. Your job is to crea=
te an OCR
> > > > > > > > > program to classify those tickets (group by event). And e=
xtract user
> > > > > > > > > identities.
> > > > > > > >
> > > > > > > > Ack, that's real.
> > > > > > >
> > > > > > > BTW, it's tiring to filter those out as I have not been able =
to
> > > > > > > identify them programmatically. So far I couldn't find any CF=
 tickets,
> > > > > >
> > > > > > Neither have I.
> > > > > >
> > > > > > > could you please send a valid CF sample? Not expired tickets.
> > > > > >
> > > > > > I found one:
> > > > > > https://mbol2yli7np6mzfgwimfnhajat6sdnq5frs2w7w3b7ldppdawexaxyi=
d.onion/comifuro2023/85b4bcb4-5455-4c91-9d55-76bcd648d165.pdf
> > > > >
> > > > > your claim is real
> > > > >
> > > > > tq tq, will give more effort on creating a program that helps thi=
s research
> > > >
> > > > Note that you cannot report this to Comifuro admins until you manag=
e
> > > > to create a filter to collect only CF tickets. After that, you must=
 be
> > > > able to extract user private information from the ticket to make th=
e
> > > > severity higher. Once everything is settled up, I will give you all=
 of
> > > > the dumps I collected (I'm still collecting newly generated tickets
> > > > now).
> > >
> > > gud deal, oracle hacker
> >
> > We're late, the vulnerable endpoint has officially retired, closing
> > its doors to negotiations. We're at a standstill unless a new
> > vulnerability decides to grace us with its presence.
>
> Uh oh, that was fast. I love how the ticket2u team reacted quickly.
> Deploying a fix immediately like what ticket2u did is a good job. Kudos
> for ticket2u team.
>
> Did you know? It was not the case with Kiostix who took holiday as an
> excuse. Their fix was also horrible and not professional.
>
> Extra Kiostix non-sense story bonus:
> When I and Michael W. met them face-to-face at the venue, they said they
> could detect a fraud using their feeling (they used such a non-sense
> sentence as an excuse not to revoke the already leaked tickets).

How much bug bounty did you get?