tmsr - Search: as

11400+ entries in 0.089s

a111: Logged on 2018-06-13 18:56 asciilifeform: and '...interprets user ids as status/control messages and does not correctly keep track of the status of multiple signatures, which allows remote attackers to spoof arbitrary email signatures via public keys containing crafted primary user ids.' etc

mircea_popescu: http://btcbase.org/log/2018-06-13#1825015 << what "software development" even is for. this great foss movement that gave us so many wonderful things, such as a firm guarantee to the usg that there's AT LEAST a little idiocy in everyone's computer no matter what. ☝︎

mircea_popescu: http://btcbase.org/log/2018-06-13#1825006 << i'll certainly be very interested of hearing a yes/no to this, secretly even, because so far i've not been getting anywhere (as per http://btcbase.org/log/2018-06-12#1824240 etc ). curious if perhaps im doing something wrong. ☝︎☝︎☟︎

lobbes: Nifty mod6. Likewise, I'll add 'banner ad space for sale' to my radar as I continue to filter the ocean

mircea_popescu: bones hospital doesn't jump on the broken bones to make the point the bones are broken, might as well abstain from pointing out to 14 yo cunts captive in 40yo reverse engineer's bodies that they're transparently and for everyone evidently 14 yo cunts."

mircea_popescu: out my factual and utterly obvious shortcoming], i'm doing you a favour, tough breaks for you that '''the server''' was out of date [which totally isn't my failure, inasmuch as it was my server, that's why i keep it around, to randomly dissociate when things happen]' without skipping a beat. it's therefore reasonable to expect similar breaks from reality to be triggered in similar circumstances. inasmuch as the setting broken

mircea_popescu: http://btcbase.org/log/2018-06-13#1824856 << to be plain, the argument is "hey, you just watched this dood produce broken reasoning in the vein of replacing 'it is my responsibility to register you rightly told me i fucked up the process, for which i am ashamed as i should be, it is after all my responsibility to have my keys' with 'you asked me to register [therefore you somehow owe me somthing, you totally weren't pointing ☝︎

asciilifeform: and '...interprets user ids as status/control messages and does not correctly keep track of the status of multiple signatures, which allows remote attackers to spoof arbitrary email signatures via public keys containing crafted primary user ids.' etc ☟︎

phf: well, if we don't, i'll see if i can get an unlock through corporate channels, and just use it as a one off machine ☟︎

asciilifeform: fritz chip, when senator fritz first demanded it, was seen as ~equally sad joke. but nao life.

spyked: yeah. well, as to how it specifically sux, it's now in the logs. prev. discussions had me believing that it's a potential alternative to the rockchip.

asciilifeform: ( and not, as some might think, using a dartboard, lol )

mircea_popescu: jurov, don't worry about it or anything, i mostly use it as an ideal construct to smack alf over the head with educationally.

mircea_popescu: as in http://pentestmonkey.net/blog/rbash-scp

a111: Logged on 2018-06-13 00:08 asciilifeform: phf: i need an arbiter so as to give players some amt of confidence that rules will not change underneath them.

asciilifeform: mircea_popescu: iirc the track record of folx given 'easy' coin early in their life as a wotperson, is poor

trinque: expired, as usual.

trinque: as the case tends to be

mircea_popescu: i tell you i dun see this as it stands.

asciilifeform: on top of whatever massage already done ( and much as i hate to say it, it seems like a fairly high quality boobytrap )

asciilifeform: because i trust heathens about as far as i can throw'em ?

asciilifeform: player only trusts us ( well, referee in person ) in so far as he trusts.

mircea_popescu: there's no such thing as chainsaws sold with elements of chance.

asciilifeform: well as i understand it , mircea_popescu dun like one of the proposed goals because it includes an element of chance

mircea_popescu: as a statistical approach.

asciilifeform: formulated simply as 'to get other half of prize, it will be the case that vendor update month from submission day, does not contain patch for hole'

phf: i don't think "can still buy and diddle of amazon in a month" is adequate test for "didn't leak the patch to google". but i don't think there's a procedure to test the goal in general (see absence of evidence above). perhaps you could restate the goal, but then whatever restatement i'm not sure it will be under the control of the participant. in fact as mircea_popescu pointed out, a restatement of this particular goal simply introduces a random element

mircea_popescu: consider this : i set up a tent at porcfest, advertising "mp slavegirl intake". and there is sure enough a lengthy line of bikini clad beauties before it. i also put slavegirl in tent, and instruct her to reject the ugly ones. ugliness is "mechanically testably alf 3.o" defined as "lacks third tit". end of day, my slavegirl's pretty downcast.

mircea_popescu: but not as meaningful.

asciilifeform: imho it is as testable as 'factor this key'

phf: asciilifeform: my thinking is that your goals ("didn't leak to google") ought to be separate from the testing procedures ("can buy from amazon in a month"). some of your goals are potentially untestable and it's up to whoever's doing independent verification to come up with the procedure for testing, or dismiss the goal as untestable. then up to you to either find a different arbiter, or agree not to pursue one of the goals. i think that providing both

mircea_popescu: well looky, i'm not trying to ruin your fun here, but if yo uwant me to try an follow along ima try as best i can. so far, it's not taking me far.

mircea_popescu: as a visitor only, however.

asciilifeform: mircea_popescu: supply of clean comps will become valuable as the resource dries up, which it shows every sign of heading to do.

asciilifeform: mircea_popescu: pogo ? they're as usable as ever as soon as somebody gets trb into 256MB, lol

a111: Logged on 2018-06-13 00:30 mircea_popescu: http://btcbase.org/log/2018-06-13#1824464 << in perhaps better formulation, the very point of having arbiter is so as to avoid exam taking ; the whole point of having "written contract" (import here pizarro's coc, import here the "opposable instrument" thread with trinque, etc) is to permit exam taking. these are contrary design constraints.

phf: http://btcbase.org/log/2018-06-13#1824502 << right. it's also not a good idea for an arbiter to sign someone else's exam, as if it's anything but. i've offered to run the proposed experiments without arbitrating, but that's not what ascii wants. ☝︎

a111: Logged on 2018-06-13 00:07 asciilifeform: after $time , phf goes and buys, from amazon, a c101pa , and administers the pill. if it is cured just the same as his current one, the other half of prize is to be awarded.

asciilifeform: as it is, i'm pretty satisfied with my tentative formulation.

mircea_popescu: gotta pick what you pick ; and as per the common sense notion, if your job isn't a good fit for any tool, your job's not a well defined job.

mircea_popescu: http://btcbase.org/log/2018-06-13#1824464 << in perhaps better formulation, the very point of having arbiter is so as to avoid exam taking ; the whole point of having "written contract" (import here pizarro's coc, import here the "opposable instrument" thread with trinque, etc) is to permit exam taking. these are contrary design constraints. ☝︎☟︎

asciilifeform: if we can't get somebody other than asciilifeform to stand up as referee, can't really have this contest imho. and a pill that gets immediately patched against by enemy , is of no use.

asciilifeform: and generally treasurer and instigator oughta be different people. as in the trb foundation.

asciilifeform: phf: i need an arbiter so as to give players some amt of confidence that rules will not change underneath them. ☟︎

asciilifeform: after $time , phf goes and buys, from amazon, a c101pa , and administers the pill. if it is cured just the same as his current one, the other half of prize is to be awarded. ☟︎

asciilifeform: theoretically as soon as phf gets his snake going, and gives green light, we can start.

asciilifeform: it is to be computed as follows : at the end of the elapsed period, i go to a shop and buy a box, and let it vendor-update

asciilifeform: i trust the bounty-motivated folk about as far as i can throw'em.

deedbot: 7BD5B50222D7457B9710CF728D6436492F4A69AF registered as cnomad.

diana_coman: funny how this hw guy can't even do as much as the girls with tits managed

douchebag: My friend says he's going to research it some more. He said he can have a unit by Friday, he thinks it'll be interesting because it probably hasn't had as much attention given to it due to low market share

asciilifeform: ( unlocking 'rma open' counts as a troo break. )

asciilifeform: aha, in so far as i can tell they did a fairly clean job.

asciilifeform: and in so far as i can tell, thing's a pinball machine, designed to lock up on first sign of glitching

mircea_popescu: http://btcbase.org/log/2018-06-12#1824023 << as he was excitedly pointing out, http://btcbase.org/log/2018-06-11#1822402 ☝︎☝︎

mircea_popescu: it may be as low as a coupla dozen.

asciilifeform: and, as mircea_popescu correctly points out, 'would like' never broke any doors.

mircea_popescu: as far as i'm concerned, two things remain : republicans and slavegirls.

mircea_popescu: might as well offer moon fiddles.

mircea_popescu: cuz im supposed to be just as retarded as any other usg-produced neet.

asciilifeform: in so far as i can tell.

asciilifeform: ( one even on record, as 'no i don't!111' , amstan )

mircea_popescu: if they can't do this, measured as "don't do this", a) the argument they were intelligent is tenuous and b) paying them is exacrtly thr wrong thing to do.

asciilifeform: cnomad: chip appears to be rad-hard, to an extent, also. tho there is a plain physical limit as to rad-hardness of an object half a mm in thickness

asciilifeform: so it is just as good to break the 'rma lock' mechanism, as the firmware verification, as i currently understand it.

asciilifeform: simply must point out, if as side effect of the break, the user-loaded data is nulled, this is not a problem for us.

asciilifeform: ( though as i understand it will also be possible as a side-effect of any general break. )

asciilifeform: so long as it doesn't carry x86 firmware on board

mircea_popescu: moar like backtop, as in https://i.pinimg.com/originals/e6/22/42/e62242f22f740b99d2206ae187d3eb6d.jpg

ave1: aha, yes I did not try to order the 4g version (also the 2g version is twice as expensive on the german amazon)

ave1: as an aside, I've been readin the google code for the cr50 but I also did not find any obvious holes so far

ave1: yes, it's the same chip as in the notebook, also cost more (and will be even more with the european import tax added)

mircea_popescu: asciilifeform, there is such a thing as people with cars and pack animals.

asciilifeform: it is theoretically possible to turn rk3328-roc-cc ( as in pizarro pilot plant ) into a portable of a kind. one can get miniature hdmi lcd, etc. but there is no convenient way to handle power; it expects 5v, and has no provisions for interrogating battery level, one would have to build something , rather gnarly.

asciilifeform: given as rk has no idea which dram a given board maker will want to use, they made the timings settable

asciilifeform: ( as does, iirc, phf, and possibly a few other l1 folk )

phf: mircea_popescu: that as always makes a lot of sense. i knew that the original was an area in germany, but i didn't give much further thought to the obvious modification

asciilifeform: and such gems as 'make code build with gcc 8.1'

asciilifeform: ( as can be seen in the paste, shows '0' )

mircea_popescu: tbh i find this entire "can't turn off" bs as the originating quanta of offense.

a111: Logged on 2016-12-29 18:40 asciilifeform: not everybody wants to be involved with mega-empires, on the giving or on the receiving end. in that light, the pashtun mountains are every bit a 'high-tech' deterrent as a SAM battery.

BingoBoingo: danielpbarron: This isn't lack of belief in their heads so much as lack of life

BingoBoingo: <danielpbarron> nontheless, it would offend my brothers and sisters to do such a thing << Come to Uruguay. Live here six months. Hire girls you would have though good looking when you arrived, but because of their deep cultural failings you now view as well dressed more fuckable goats.

mircea_popescu: danielpbarron, it's mostly a medieval conceit. had to display it as something. you ever saw the dog-like elephant i linked once ?

danielpbarron: (the fruit of the knowledge of good an evil was never descsribed as being an apple)

mircea_popescu: because otherwise, really, the thing you "identify as" at parties bears no meaning and no interest, for us as for the chicks that don't come with you to your records collection.

danielpbarron: asciilifeform, you certainly missed 0. it was only fun for me for as long as there were easy drugs and poker, and now going forward, because they will let me openly preach along side Darwin Fish

mircea_popescu: dog that doesn't learn speech doesn't so much have a pathology as a dogology.

Mocky: was cured first time i saw 'yeah this dns exploit reveals everything' immediately saw whole things as crock of shit

asciilifeform: wireless is the little iron shielded box in the corner, the thing 1 of the earlier folx referred to as 'm2'

asciilifeform: as in , did physically test yet ? nope

danielpbarron: as in, anything else, just not bitcoin, that thing i told them years ago they shouldn't be spending on hotdogs and coffee

mircea_popescu: http is a ~stateless~ protocol. you need state, do something else. no, there may not be such a thing as a "website login", not anymore than there can be a planesubmarine.

mircea_popescu: different from, say, comp.lang.lisp archive in that a) their chosen kid wasn't naggum and b) they actually had gathered around properly, as opposed to the idiots on bbs, captive in their self-important notions of independence and other man-alone-isms.

mircea_popescu: we don't generally support the idiocy known as https, so merely you not serving http may put you outside of the web.

a111: Logged on 2018-06-11 19:14 |\n: even if something is not clear - hardware is full of shit, supplying any trust towards vendors is as stupid as saying that someone might now have some private keys from whatever, being it an IT or automotive industry (pick any), i believe that is why some papers on standards that might shed light on ways of how proprietary things (that belong to owners) work

a111: Logged on 2018-06-11 19:05 |\n: apart from things unspeakable on freenode i love to bring up tor relays and i got a job as an admin of shitty place

mircea_popescu: as the whole bee-dog has been a thing for all these many years.

a111: Logged on 2018-06-11 22:15 BingoBoingo: Well, living in the land of Mate crackpipes you get to see this behavior taken to extremes. They are playing the game where they TRY to burn as many man hours as possible in an unproductive manner.

a111: Logged on 2018-06-11 21:24 hl`: that's actually a fair point too. as implemented in e.g. PCs nowadays, even putting the closed firmware issues aside, the way they are integrated is _not_ secure. they're just connected using open pins to the CPU, you could easily replay everything