log☇︎
100500+ entries in 0.056s
ben_vulpes: anyone have a grahamnews account? submit the phuctoring?
a111: Logged on 2014-11-15 00:28 asciilifeform: one would read instructions. another, turn a wrench, whatever. third would check that 2 corresponds to 1. then, all three sign under that step in recipe.
mircea_popescu: asciilifeform, they came on a signature form thing though! http://btcbase.org/log/2014-11-15#922644 ☝︎
asciilifeform: hm i misremembered, the most famous incident, in kramatorsk ('80s) involved a cs-137 brick.
mircea_popescu: asciilifeform, this was ultrasound, but same principle.
asciilifeform: not as if the idjit who dropped it into the cement, had to pay
mircea_popescu: not very likely, though, sr brick was $$$.
mircea_popescu: lol. i heard the legends.
asciilifeform: mircea_popescu: aaa the radar thing. funny story with these, the old-world version of this was the gamma-radiograph. in su they used them to evaluate cured cement prior to finishing a block of flat. aaand sometimes they'd forget the sr-90 brick inside the wall, and roast several generations of tenants ☟︎
ben_vulpes: motherfucker because i want to dump my entire heated air mass every time the girl fries something
ben_vulpes: asciilifeform: i'll do you one just a hair more ridiculous: this place has a whole-house evacuator that "well you can just run the whole-house fan when you're cooking!"
mircea_popescu: ample potential for hilarious misreads, which is why it's not dispensed with the human operator yet. but way the fuck faster and cheaper than proof hole drilling.
mircea_popescu: asciilifeform, it does two things. one is that it can mostly distinguish concrete from brick from wood and so on, it has the patterns of specific materials. the other is that it can evaluate "decay", in the sense of how uniform or nonuniform the wall is. so once it decided it's wood it can tell you ~how old ; and if concrete ~how fractured so on.
asciilifeform: always it is the ersatz, instead, with the charcoal filter (that gives out in coupla months)
asciilifeform: ben_vulpes: believe or not, none of the places i've ever lived in, had a 'honest' kitchen exhaust (i.e. with actual pipe to the outside world)
ben_vulpes: (how the kitchen came to be without a hood is a mystery i do not think i shall ever understand, given that the dood ran cat5 and coax to every room. what, no women cooking in his life or something?)
ben_vulpes: interesting; i've got to install a hood in the kitchen; so will learn the truth without any electronics.
asciilifeform: what does such a thing do ? or is this the mechanized dowsing rod thing
mircea_popescu: ridoinculous beeping doohickey, too. i was like "so... is it a boy ?"
mircea_popescu: ben_vulpes, old friend showed me some wonders... they have cheap enough US machines to use for building valuations now.
asciilifeform: the one where 'boeck confirms, not true!' etc
ben_vulpes: mircea_popescu: this one is nominally double-walled; haven't cut through it...yet.
mircea_popescu: asciilifeform, how was this in sovrussian, "trained in the workplace" ?
asciilifeform: danielpbarron: '... and a bunch of Neet employees (probably used the same weak tool)' << waaat
ben_vulpes: ohay is there a crackernyooz link?
asciilifeform: plenty of lulz left in the lulzmag.
mircea_popescu: christ on a cracker, the e=3 n=4096 bit key. who makes such things.
mircea_popescu: asciilifeform, odds are, antiques. exp was 3 on "cheap" systems throughout the 90s.
mircea_popescu: these people went to school, beating them over the head repeatedly with any reference is just table stakes, says nothing about eventual outcomes.
mircea_popescu: can't wait for her to wake up, now.
mircea_popescu: danielpbarron, discussion in harem, "isn't that too much linking on the neet explanation ?" "you'll see".
danielpbarron: Victims include developers at big companies such as Microsoft, Facebook, Eventbrite, and a bunch of Neet employees (probably used the same weak tool) << Guy thinks "neet" is a company?
mircea_popescu: a forgotten art, this, to match heating speed of materials with day length.
mircea_popescu: ben_vulpes, my place in tm, had double layered brick walls, proper style. by the time the outside of the inner wall warmed up the sun was setting.
asciilifeform: ( they come on truck, in pre-cut panels )
asciilifeform: ben_vulpes: they're building a buncha communal flats over here, they all get decorative fauxbrick panels over the gypsum
ben_vulpes: http://logs.bvulpes.com/trilema?d=2018-5-11#353878 << i found one made of brick! couldn't believe the thermal inertia.
asciilifeform: mircea_popescu: dun forget the 'dial, at 300 baud' in orcistan
mircea_popescu: in strict, physical terms. i can peel a coupla bills off the roll way before anyone can a) take the card b) orient it to machine slit ; c) slide it through ; d) wait for data to run back and forth to visa servers (include here the pro-rated delay of "servers down" shenanigans) ; e) get me to "sign" like 1100 period barbarians the f) slip of paper it printed and spit out etc. ☟︎
asciilifeform: or was it dour old d00d in tourist hat.
a111: Logged on 2018-05-11 15:42 mircea_popescu: "the RSA supercollider and numerical observatory" << ahahaha i like this. a numerical observatory.
ben_vulpes: mircea_popescu: no argument there
mircea_popescu: ben_vulpes, money is way faster than the cards, though.
asciilifeform: mircea_popescu: re bank cards : it gets funnier : in usa, many folx dun actually qualify to ~borrow~ moneys, and their cards are imitations, they have to pre-fill'em at specially designated places, in exchange for ordinary money; and it actually ~costs~ something, on top of the fill
BingoBoingo: <asciilifeform> funnily enuff i got stuck behind one of these in a little shop in BingoBoingostan : the lulz was in that the modem in the register was slow enuff that cc folx were ~slower~ than ones paying with ordinary money << Serious quality of life issue here. The awful part is the locals CAN'T learn to use the pin pads and have to try 3+ times
asciilifeform: ( cement, too costly )
ben_vulpes: dude just the chip and pin crap is intolerably slow.
asciilifeform: errywhere they turn into 'space for lease' (never gets filled, as prices are deliberately kept at lunar heights to keep rent up for remaining tenants)
mircea_popescu: to think, my impression then was, "pity it all went to shit".
asciilifeform: ( and this is speaking merely of asciilifeform's locale )
mircea_popescu: twas not my experience, but then again it's been what, 15 years.
mircea_popescu: it's universally the case. the only reason it's not obvious in the us is that everyone there is poor, nobody has anyt money.
asciilifeform: funnily enuff i got stuck behind one of these in a little shop in BingoBoingostan : the lulz was in that the modem in the register was slow enuff that cc folx were ~slower~ than ones paying with ordinary money
mircea_popescu: same people who get "excited" about "paying with credit cards". "it's so much easier!!!". and these days "near field" or w/e they're doing.
asciilifeform: ( witness the neverending supply of lost souls who still demand 'pgptron built into email reader' or even automatic signing of this or that )
asciilifeform: this is quite related to the 'subkeys' thread also.
mircea_popescu: well, this is then what even gets one out of bed in the morning : the hope shining through the dread, that even should something from years ago have to be reviewed on grounds of suspected stupidity, there's a shot it may turn out to have actually been quite correct.
asciilifeform: some things are not mechanizable, and whoever tries -- will pay the price.
mircea_popescu: basically, exactly like you say, we have a personhood mechanism, it'll have to be used. can't sit down and "make a mechanical friend JUST FOR THIS ONE CASE"
a111: Logged on 2018-05-11 15:49 mircea_popescu: ~possibly~ the solution is to take gpg-only submissions via webform and any-key submissions via an eventual #trilema bot.
a111: Logged on 2016-08-16 21:03 mircea_popescu: it's not "the sks server" that is retarded. is the concept of machine-spread rsa key that's retarded ; much in the way of "machine-generated trust", be it embodied in "dao" or "colored coins" or "safe bitbet"
mircea_popescu: so there's no way out of it, http://btcbase.org/log/2016-08-16#1522722 <<-->> http://btcbase.org/log/2018-05-11#1812214 reflect over the ages. ☝︎☝︎
asciilifeform: which is the ultimate folly
asciilifeform: and the ( let's charitably suppose something other than plain wrecking ) motivation for the very notion, was 'defense against key substitution' which is really an attempt to get around the need for wot
a111: Logged on 2018-05-11 05:01 mircea_popescu: asciilifeform, it seems to me the factors ~aren;t~ normally distributed.
a111: Logged on 2016-08-16 21:03 mircea_popescu: it's not "the sks server" that is retarded. is the concept of machine-spread rsa key that's retarded ; much in the way of "machine-generated trust", be it embodied in "dao" or "colored coins" or "safe bitbet"
mircea_popescu: so there's no way out of it, http://btcbase.org/log/2016-08-16#1522722 <<-->> http://btcbase.org/log/2018-05-11#1812114 reflect over the ages. ☝︎☝︎
mircea_popescu: what gpg tried to do is somehow kludge a whole working republic into their early prototype key "ecosystem". it didn't work in practice, but that aside, it's not actually useful.
mircea_popescu: asciilifeform, indeed. i tell you, i don't see it. the arguments from 2016 prevail, making the ssh-style correct imo.
a111: Logged on 2016-08-16 21:10 mircea_popescu: as it's not acctually correctly designed it 1) creates false sense of security ; 2) creates unnecessary byzantinism and "can't pop the hood on this"
asciilifeform: also the term 'self signature' as used in kochiana/rfc2440/4880 world , is misleading : if all that were signed were a modulus, one could trivially produce 'self sig' for any modulus/exponent that satisfy the rsa equation, incl. ones generated on the spot. 'self sig' in gpg world is simply attempt to tie commentstrings to keys.
asciilifeform: i did not cite $thread in the american judge 'we already precedented!11' sense, but in 'let's reread'
mircea_popescu: the excitement of "let's see if we said something stupid two years ago that informed policy for the interval and now we're biting it" in the morning...
asciilifeform: http://btcbase.org/log/2016-08-16#1522697 << orig mircea_popescu thread ☝︎
mircea_popescu: i'd like to review this, i've been thinking about this nonsense ever since you started making noises about the ssh set.
asciilifeform: i seem to recall a thread where mircea_popescu convincingly described 'self signatures are meaningless'
mircea_popescu: my only concern here is whether this actually invalidates the e, N, comment republican format, as a rsa key format.
mircea_popescu: so at the same time people want to see whether "their" ssh key is fucking them like historically they have ; but we can't distinguish "their" key from garbage.
mircea_popescu: te as a thing-in-itself.
mircea_popescu: but it goes to show what seems to me actually an intrinsic failure of the ssh key format : the fact that it isn't self-signed (rather more generally, the fact that it "segwits" the metadata, having the whole authority mechanism separated from the actual key [and generally implemented as "this key has authority because $user emailed it to me"]) makes it very vulnerable to any failure outside of itself, and impossible to evalua
mircea_popescu: asciilifeform, that's exactly the idea, the herd won't bother until you reach the precise epsilon.
mircea_popescu: ~possibly~ the solution is to take gpg-only submissions via webform and any-key submissions via an eventual #trilema bot. ☟︎
asciilifeform: really excitable folx, can spam already, in principle. but nobody to date bothered.
mircea_popescu: yes, but even if you were to, the argument is cogent, "lowering the bar to spamming results in exponential spam volumes"
a111: Logged on 2018-05-11 13:46 asciilifeform: nao ! at some point i'ma rewrite it. again. and build it around 'naked' rsa moduli, and with variant types of indices, etc. but i have nfi when i will get a chance to do this.
asciilifeform: the ones that come out of Framedragger's, jurov's, and then asciilifeform's , scripts, i mean
asciilifeform: ( how would they )
asciilifeform: aactually the generated keys also carry no self-signature
mircea_popescu: as you know, plenty of them have, as proven by recent publishments.
a111: Logged on 2018-05-11 13:44 asciilifeform: additionally, the difficulty of keying in random garbage and having it show up as 'key', has worked to date as primitive, yet 100% effective, spam control.
mircea_popescu: http://btcbase.org/log/2018-05-11#1812165 << so basically the idea here is "ssh keys are not self signed". still though, the usecase is this : guy ssh-gens a key, wants to see if openssl fucked him. ☝︎
asciilifeform: mircea_popescu: most extant ssh pubkeys ( as scanned in the wild ) carry no comment.
a111: Logged on 2018-05-11 13:43 asciilifeform: http://btcbase.org/log/2018-05-11#1812141 << phuctor was written very tightly around indexing pgp keys, and demands that all keys be indexable in the same ways ( by e.g. gpg-compat fingerprint ) . additionally , it demands that all keys have a human-readable legend, and ssh key format does not give any field for such.
mircea_popescu: http://btcbase.org/log/2018-05-11#1812163 << are you saying basically that your indexing of keys depends on spurious metadata that's unrelated to the keys ? anyway, ssh key has a comment field implicit, people often drop an email in there say. ☝︎
mircea_popescu: "the RSA supercollider and numerical observatory" << ahahaha i like this. a numerical observatory. ☟︎
mircea_popescu: i suspect they were wondering whether there's a dylsexic agnostic insomniac.
mircea_popescu: btw hanbot, i noticed last night the dogs were lying awake.
asciilifeform: ( there's a few keys with outlandishly huge ones; and even 1 with exponent of... 1 )
a111: Logged on 2018-05-11 09:42 ave1: I have a key with e==35! This one was generated 9 years ago on a redhat linux of that period.
mircea_popescu: diana_coman, for a while 35 was actually the default exponent in the circus circle.