I guess it is someone who tests pens… in his case. Because as a Penetration Tester he sucks at researching his target.
2 Likes
Here’s another option: person reads an article, gets the forum link, and starts with the obvious fastest thing: asks for direction from people who are supposedly in the know. Verifies a few assumptions (to the effect of “omg you dare think we’re that backwards!” but it works.) One can get up to speed much faster, this way.
7 Likes
Considering it was my first day. and 1 hour into it i got banned for 24 hours so i couldn’t ask any more questions i think i done alright. Let me know when you find your first exploit !
1 Like
@ifindproblems I’m sorry you didn’t receive a kinder welcome. This is generally a place where questions are welcome, and yes pen testing is something we want to encourage (at least now I know what it means 
).
I also think it should be quite a challenge for you to find anything, but if you did there would be bug bounties for this kind of thing - MaidSafe already pay out for pull requests.
Try not to get banned though! Check out the forum guidelines, they are reasonable and straightforward IMO.
5 Likes
And you did do allright…congrats. Some of the kids here just dont get it.
3 Likes
would you be able to link me to the bug bounty. assuming it was post on the internet and not a private contract
I don’t know what’s written down or where. There may be a post about it, but best just ask MaidSafe via @frabrunelle!
2 Likes
Because i know nothing about rust i had to do some reading/watching. may help a few other people if their in the same position as me…The Rust Programming Language - YouTube
Banned?? Not something I’m aware off. I’ll drop a message with moderators to sort this out.
2 Likes
His “not receiving a kinder welcome” is intimately tied to “him being banned”. As he was not banned, he only hit the spam limit for a very new user.
1 Like
well maybe ban was to strong of a word. prevented me from posting until today. Maybe its to stop spammers but the timing was abit weird
and considering i don’t think i even wrote 32 messages…yep i only posted 15
I think we should ditch the post limit as it only seems to catch new enthusiastic people and not spammers! Or moderation is excellent, plus user flags, ought to be able to deal with this.
@moderators is this possible?
4 Likes
He only has 16 posts in total. Seems more like a bug or something, I poked an admin so we’ll figure this out 
3 Likes
Probably a simple limitation for newcomers that prevents spamming.
Nobody bans here, I am not a mod and nobody would ban someone like you who is making valid questions.
There is no sin at asking questions, but jumping to make (irrelevant) assumptions about potential vulnerabilities without even bothering to learn how it was designed first is pretty lousy.
You started to speculate right off the bat about server vulnerabilites in a system that its main characteristic is to be serverless, then jumped right ahead on c++ buffer overflows in a system that does not use C++, then instead of asking how the routing works you started to speculate about IP addresses on a system that doesn’t use IPs.
Is this your version of fuzzing?
Come on, isn’t reconnaissance the first step before assessing vulnerabilities? It is not even pentesting101, it is basic logic. In your normal pentesting gigs, do you throw blindly exploits before even fingerprinting the services?
Don’t you think it is time to step back and ask questions about how the hell all this works first?
5 Likes
-
like i said i got the c++ thing wrong. i’m happy to admit that its a learning process
-
You need to scroll up and look at the questions i asked because that looks like re-con to me
-
All machines communicating over any type of network use IP addresses, the software may not identify machines by IP’s but if your computer connects to mine, there will be and open port and an ip address.
-
And for the ban/post limit thing maybe ban was a strong word which i also said if you would care to scroll up. that is still being looked into. and of your not an admin you cannot comment because you don’t know anything about it.
5.They do have droplet severs
It never helps any one when people try and be smart.
1 Like
- You have to read how the routing works, as the IP addresses are irrelevant. It is really a whole new layer on top of it.
- the servers are temporary for testing, it is definitely not designed to be running on servers. Come on dude, you can’t insist on it.
1 Like
you missing my point…if your pc routes traffic to me regardless of how the software identity’s machines. if i was scanning all incoming connections i will see that machines ip.
that ip will be the ip your isp has given you