Since February 2025, Debian 13 (Trixie) and APT introduced the deb822 format for managing APT sources. This new format replaces the traditional /etc/apt/sources.list file with the more structured and readable /etc/apt/sources.list.d/debian.sources file.
This change was introduced by APT, starting with an update that enabled users to run:
apt modernize-sourcesThis command automatically converts the old sources.list format to the new deb822 format.
hi, i'm daniel. i'm a 15-year-old high school junior. in my free time, i hack billion dollar companies and build cool stuff.
3 months ago, I discovered a unique 0-click deanonymization attack that allows an attacker to grab the location of any target within a 250 mile radius. With a vulnerable app installed on a target's phone (or as a background application on their laptop), an attacker can send a malicious payload and deanonymize you within seconds--and you wouldn't even know.
I'm publishing this writeup and research as a warning, especially for journalists, activists, and hackers, about this type of undetectable attack. Hundreds of applications are vulnerable, including some of the most popular apps in the world: Signal, Discord, Twitter/X, and others. Here's how it works:
By the numbers, Cloudflare is easily the most popular CDN on the market. It beats out competitors such as Sucuri, Amazon CloudFront, Akamai, and Fastly. In 2019, a major Cloudflare outage k
| ip,user_agent | |
| 116.202.x.x,CUPS/2.2.10 (Linux 4.19.0-17-amd64; x86_64) IPP/2.0 | |
| 212.235.x.x,CUPS/2.2.7 (Linux 4.15.0-213-generic; x86_64) IPP/2.0 | |
| 202.188.x.x,CUPS/2.3.3op2 (Linux 5.10.0-23-amd64; x86_64) IPP/2.0 | |
| 202.188.x.x,CUPS/2.3.3op2 (Linux 5.10.0-23-amd64; x86_64) IPP/2.0 | |
| 5.9.x.x,CUPS/2.2.7 (Linux 5.3.0-64-generic; x86_64) IPP/2.0 | |
| 147.203.x.x,CUPS/2.2.7 (Linux 4.15.0-176-generic; x86_64) IPP/2.0 | |
| 60.191.x.x,CUPS/2.2.12 (Linux 5.3.0-64-generic; x86_64) IPP/2.0 | |
| 64.62.x.x,CUPS/2.2.12 (Linux 5.3.0-64-generic; x86_64) IPP/2.0 | |
| 103.234.x.x,CUPS/2.4.1 (Linux 5.15.0-118-generic; x86_64) IPP/2.0 |
This is a living document. Everything in this document is made in good faith of being accurate, but like I just said; we don't yet know everything about what's going on.
Update: I've disabled comments as of 2025-01-26 to avoid everyone having notifications for something a year on if someone wants to suggest a correction. Folks are free to email to suggest corrections still, of course.
| FROM docker.io/rustlang/rust:nightly-alpine AS build | |
| RUN apk add --no-cache musl-dev perl make | |
| RUN rustup --version | |
| RUN rustup target add aarch64-unknown-linux-musl | |
| RUN rustc --version && \ | |
| rustup --version && \ | |
| cargo --version |
| const hasGroup = typeof Object.groupBy === typeof undefined || typeof Array.groupToMap === typeof undefined || typeof Array.group === typeof undefined; | |
| if (!hasGroup) { | |
| const groupBy = (arr, callback) => { | |
| return arr.reduce((acc = {}, ...args) => { | |
| const key = callback(...args); | |
| acc[key] ??= [] | |
| acc[key].push(args[0]); | |
| return acc; | |
| }, {}); | |
| }; |
| #!/bin/env bash | |
| # | |
| # Filter the given tables out of a MySQL/MariaDB dump file. | |
| # | |
| # | |
| # The MIT License (MIT) | |
| # | |
| # Copyright © 2023 metaworx resonare rüegg, Martin Rüegg, Switzerland. All Rights Reserved. | |
| # | |
| # Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated |
| #! /bin/bash | |
| mkdir -p /var/cache/kerneltest | |
| #Make a file system image for the VM, and mount it. | |
| if [[ -e /var/cache/kerneltest/fs.img ]] | |
| then | |
| rm /var/cache/kerneltest/fs.img | |
| fi | |
| truncate -s 2G /var/cache/kerneltest/fs.img | |
| mkfs.ext4 /var/cache/kerneltest/fs.img |
| I used this handy one-liner to search ip ranges while looking up its PTR record. | |
| The PTR record will have the string "stretchoid". This process took about an hour. | |
| for N in {128..255}; do echo "Testing 192.241.$N.0 - 192.241.$N.255" >> stretchoid_ips.txt; for L in {0..255}; do host -t PTR "192.241.$N.$L" | grep -qF 'stretchoid.com.' && echo "192.241.$N.$L `host -t PTR \"192.241.$N.$L\"`" >> stretchoid_ips.txt; done; done | |
| Credit goes to sissy for the idea: | |
| https://forum.netgate.com/topic/169024/stretchoid-com-ip-list-for-use-in-blocking-their-port-scans?_=1671484145965&lang=en-US | |
| I then opened up the text file in notepad++ and did a regular expressions Search/Replace (CTRL+H) |
| def pma_import_resubmit(br, sqlfile, target_dbname): | |
| """ To be used in phpmyadmin dump.sql file imports using python-mechanize | |
| as described in <https://github.com/phpmyadmin/phpmyadmin/issues/17423#issuecomment-1268271930> | |
| Only call this function when you have already found a 'timeout_passed=' string in browser response | |
| (so you are sure the page contains a resubmit link) | |
| """ | |
| # https://stackoverflow.com/questions/3569622/python-mechanize-following-link-by-url-and-what-is-the-nr-parameter/3569707#3569707 | |
| #link = br.find_link(url = resumeurl) | |
| link = br.find_link(text = "resubmit the same file") | |
| link.absolute_url = link.absolute_url.replace("&","&").replace("?", "?db="+target_dbname+"&") |