Michael Lindell's Cyber Symposium - DAY 2 - LIVE - POST UPDATES HERE

frankspeech.com ^ | August 11, 2021 | self

[FR_addict]

Starting a new thread for Day 2

Highlights from Day1
Excellent video by Colonel Phil Waldren
Dr Frank's excellent presentation of his separate election fraud data
Dr. Frank also explained PCAPs.
Bolsonaro's son excellent presentation of his father's story. President Jair Bolsonaro of Brazil.
Whistleblowers from Colorado.

[Boogieman]

“How are Qtards connected to the missing 7 PM announcement?”

Well, nobody but Lindell knows what the fabled 7PM announcement was supposed to be, so who can say?

However, the Q brigade was saying quite adamantly that Lindell got his “37 terabytes” of data from NSA or military intelligence loyal to Trump, and now it turns out he got it from the con man Dennis Montgomery instead. So there’s that...

[goodnesswins]

Bfl

[Pilgrim's Progress]

Some so-called FReepers jumped on method last night with their “SEE! We told you this is a scam!”

Hey you creeps, “POUND SAND!”

[Technical]

You are right it's a bit too early to declare this symposium a scam.

But it's scheduled to end today. And if it ends without Lindell turning over the packet captures that represent absolute proof of Chinese interference, then it's time to declare this a scam, and we can all go home and pound sand.

[Pilgrim's Progress]

Have you watched all the videos in his “proof” series?

[Technical]

Wait - you're not trying to change the topic, are you? :D

Lindell promised absolute proof with packet captures for attendees, which is the topic of the thread.

Can you think of any legit reason people leave without that data?

[whattajoke]

Lindell and his Red Team also googled “Larry Johnson” and determined him to be “CIA.”

(GP’s Larry Johnson is not the former CIA Larry Johnson.)

[whattajoke]

I have (most of them anyway.) The only thing they proved is that Mr. Lindell is not clear on what “proof” constitutes.

This is a 3 day pillow commercial by a guy about to be destroyed by crushing debt and lawsuits. He’s paid money to scammers for nothing. Everyone left his conference and some of his closest allies have bailed on him.

It’s over. Time to come to that reality.

[Boogieman]

Yes, OSQL allows you to authenticate using Windows authentication instead of normal SQL authentication, IF you are logged into the SQL server machine with a Windows account that has permission to modify the database.

So if you can gain access to an account like that on the server, you don’t actually need SQL credentials.

[Lakeside Granny]

CDMedia
@CDMedia
·
2m
Cyber Symposium - Dershowitz - 1st Amendment under attack in lawsuit against Lindell - the only way to prove Dominion was slandered is to get discovery of Dominion operations

https://gettr.com/post/p7gfwp9325

[Pollard]

Everyone left his conference

They showed the room this morning and it was pretty full. There's still some sort of representation from almost every state. If this ends with states having thorough audits or fixing their election systems, then that's an accomplishment.

[sevlex]

They are demonstrating packet capture process live right now.

[The MAGA-Deplorian]

However, the Q brigade was saying quite adamantly that Lindell got his “37 terabytes” of data from NSA or military intelligence loyal to Trump, and now it turns out he got it from the con man Dennis Montgomery instead. So there’s that...

Yeah thats pretty much impossible to capture that much data from all the voting precincts in the country, and to have no one out of all the cyber experts not say “this is BS”. This was Space Force data. Remember Lindell, a pillow guy was one of the last people to meet with Trump in the White House before he stepped down. This is an optics operation. Trump can’t be seen as involved.

[Technical]

Yes, OSQL allows you to authenticate using Windows authentication instead of normal SQL authentication, IF you are logged into the SQL server machine with a Windows account that has permission to modify the database.

So if you can gain access to an account like that on the server, you don’t actually need SQL credentials.

It's not just OSQL. SQL Server by default supports Windows Authentication, and/or SQL Authentication for any client connecting to the database.

Yes - if you long on with a Windows account that has elevated privileges, then you already have that access. Executing a command under the context of that account, whether through a batch file, an application, or SSMS isn't elevating your privileges - it's what you had when you logged onto that account.

[Unrepentant VN Vet]

..if it ends without Lindell turning over the packet captures that represent absolute proof of Chinese interference..

Why do I have to wonder exactly where the goal posts are going to move if that happens?

If those packets for one or two sites got presented today, first words we'd hear would be, "Has to be part of a Court record" followed by "Only two? Have to have [fill in the blank]".

Then we'd get a hundred posts an hour from various bots doxing everybody/everything in sight in hopes we'd give up and shut up.

The Playbook's in dire need of update.

[Technical]

Is a demonstration the same thing as distributing the captures which contain absolute proof? I ask because the demonstrations so far have involved fuzzy screens scrolling over illegible data.

Is there any way to call this conference legit if they walk about without distributing the captures Lindell claimed contained absolute proof, and would result in a 9-0 SC decision?

[Technical]

If I'm understanding you correctly, the packets Lindell promised may or may not be delivered. But it doesn't matter if they aren't delivered, because *if* he did follow through with his promise, skeptics *might* not believe him and demand more proof, which is some kind of diabolical playbook.

I believe in you. You can do better than this.

[Boogieman]

“Executing a command under the context of that account, whether through a batch file, an application, or SSMS isn’t elevating your privileges - it’s what you had when you logged onto that account.”

Yes, but batch files can be scheduled to run later, when you may not have elevated privileges anymore, so it’s an exploit you can use for various purposes when combined with that.

Similar to the old method used by the “Cuckoo’s Nest” hacker, if you ever read that book.

[txhurl]

Today has been good.

[Technical]

I'm reluctant to explain this again today, because I went around on this topic yesterday.

Also, the BAIT to get people to this conference was packet captures proving Chinese interference. Now we are SWITCHing the topic to talk about whether batch files can hack SQL Server.

They can't. Let's use your example, my AD account is CORP\joe. I'm dbo on a database. I create a batch file job in Task Scheduler (why would I ever do this??? Database maintenance jobs run in SQL Agent). I get demoted, and my CORP\joe creds are lowered (or elevated, you pick). When my nonsensical scheduled task runs under the context of CORP\joe, the permissions I have to the DB in this moment are applied, not when the job was created.

If you think database permissions are that unsophisticated, there isn't anything I can say to you that will register.