exu

  • 51 Posts
  • 591 Comments
Joined 1 year ago
cake
Cake day: September 29th, 2023

help-circle









  • The .mobi was a previous post where they bought the expired domain which was previously used by the .mobi WHOIS server.
    A bunch of systems apparently didn’t update their WHOIS database and still tried to get WHOIS information from the old domain.
    This could lead to RCE in some implementations if they provided a malicious response.
    A bunch of CAs also accessed the old domain and use WHOIS to verify domain ownership. By setting their own email address for verification, they could have issued themselves a certificate for any .mobi domain (microsoft.mobi, google.mobi for examle).

    Now to this article, here they looked at a bunch of webshells with backdoors added by the developers. Some of the domains had expired, so by getting those domains and setting up a webserver they got connections from different systems infected by the malware. They could have used the same backdoor previously used by the devs to access those same systems remotely and do whatever.







  • Do you have the same ALVR settings on Windows and Linux?

    Edit: I reread and realised you didn’t use ALVR on Windows.
    If you haven’t changed any settings yet in ALVR, you’ll want to increase the bitrate used for streaming. ~200-300mbs should be easily doable on 5ghz wifi and improve picture quality drastically.
    Also look at the foveation settings, these determine how much of your fov has increased quality vs the sides which are less important.