If you have uBlock Origin installed - and if not stop what you're doing right now and install it first (on Firefox, preferably) - you can use the 'zap' function to kill all those annoying login overlays used by the likes of Fbook. Bind the function to a key combination (I use shift-leftAlt-z) and whenever an annoying overlay or other annoying thing appears in a web page you can simply zap it by pressing the key combination and pointing at the offending page element. On Fbook you'll need to zap a number of overlays before you get to the actual page since they layer the annoyance on quite heavily but just persevere and you'll eventually get there.
Thanks, FF fork here with ubo, most lists, and medium settings enabled ... somehow this is not the case for me. I'm not being served a page with any overlays / modals, just this redirect to login page.
I know exactly what you're referring to those "content hovers". Like the substack highlight, sign up overlays on immediate visit, or upsells in shopping cart flows.
Thanks for the response, somehow this is not the case for me. Like past times, I always hit the walled garden unless it's Facebook's actual Blog pages.
Yea good assumption, SQLMap for instance, defaults --dump to .csv with sqlite as an option if you're just looking for a simpler test point. Plenty of other tooling options out there too. Tooling providing your encoding during dump will overcome the ',' concern though, no?
Free labor that you're handing away. Saw your edits, sounds like you've got start carving boundaries in stone and letting colleagues know it's their loss and fault for not eyeing timezones / after hours.
Load Balancing && WAF or CDN enablement usually suggests at least a decrypt step or two in the HTTP(s) chain. WAF for layer7 payload inspection, or the default wildcard cert'ing your Cloudflare site for instance.
There's also significant aggregation of traffic at handfuls of service providers amongst service categories, all generally HTTP(s) type services too ... Mail, CDN, Video, Voice, Chat, Social, etc. Each of these are still likely to employ Load Balancing & WAF.
Most WAF/Load Balancing providers have documentation about when/where to perform decrypt in your architecture.
How many Cloudflare sites are just using the Cloudflare wildcard cert?
From there, plenty of 3 letter agency space to start whiteboarding how they might continue to evolve their attack chain.
I'm all in until figuring out what to do with those operations. In this example, I think the scenario is straight forward. What do I do with adding or multiplying phone numbers? If I add phone numbers, what results should I expect and how do I use those post-decrypt?
I was under the impression here, that I hand you an encrypted phone number and you provide meta data back suggesting scam / known business / etc. Hence having trouble grasping how you can mathematically approach a phone number you wouldn't know to then change it.
I recognize the use-case, have you the service provide info/data back based on my query, and I don't want you to know I am receiving a call from said phone#. But what do I add to the phone number when querying you the service or what are you adding via FHE operations? Or why are you adding to the phone number that you can't know? What results from the addition when I'm decrypting, a longer phone number or additional results regarding the unknown phone number?
Separately, why would I provide this service two phone numbers to then multiply? I'm not sure the axis which would result, but the string I would expect is not a valid phone number and wouldn't result in my knowing more than before? Are there other technical aspects which cause add / multiply to be novel per implementation which isn't resulting in classical plaintext data actions?
I've been wondering the same and finding not much. It's hard to find implementations which have technical detail describing the novel problem FHE fixes.
I think it's a subjective call on what you consider spying. Amazon and its integrations / 3rd parties are certainly using what they can gather based on Alexa interactions to better sell and serve their ad ecosystem at minimum right? And I've never seen someone leave theirs muted/red in practice.
https://arxiv.org/abs/2204.10920 among others are certainly available in this question space to help navigate your own tolerances.
