tmsr - Search: i

109500+ entries in 0.818s

mircea_popescu: think about it. can i be assured ? maybe the person saves it in plaintext and loses the laptop

mircea_popescu: but i do not wish to be assured this ; moreover this "assurance" you provide is false, in substantially the same manner your idea of "infosec" misses security.

mircea_popescu: i don't want any integrity outside of what my wot provides.

mircea_popescu: because why would i gift upon a would-be atacker that;s really a lame ass kid unable to on hios own merit secure the cost of a proper burial

mircea_popescu: consider what happened in gossipd when i said the line above : "<mircea_popescu> you don't know who he has in his contacts.". buncha nodes that i know went "we heard mp say so" to their downlist

maqp: Okay, so basically I tell my peer that this message should at some point reach my contact

maqp: Why couldn't this work on OTR. I have a OTR messaging with my friend and I ask them to relay a message for me to someone peer has on their contacts?

mircea_popescu: i wish to say "Hi" to you. my peers are X, Y and Z. i encrypt "please say Hi for me to maqp" with X, Y, Z pubkeys.

mircea_popescu: i doubt he speaks russian.

maqp: But I fail to see the rat in the sewer, when you're giving the government a finger by bouncing traffic across the globe

mircea_popescu: what's this game of everythingsies, i wanna be tanned but also untanned and sit in the sun and the moon at the same time bla bla.

maqp: I think we need both

maqp: The article steers away from infosec discourse faster than CRC32 collision. I skipped to the end--

maqp: I see nothing being discussed about forward secrecy or deniability

hanbot: kakobrekla vspace isn't too horrid, aside from the voice stuff...which i guess makes it an unfortunate choice. at least it's not a heh.

maqp: Ok, I'll skim it

hanbot: http://wiki.bitcoin-assets.com/the_real_bitcoin/nodes << dude srsly who named their node "mine", how the fuck'm i gonna search logs for it.

maqp: I'd prefer secure by design approach any time

maqp: I'll have to read the article. Tor sucks slides indicate it puts up a fight even against FVEY agencies

mircea_popescu: i think we understand that yeah.

maqp: I completely agree with ioerror on that "pidgin is a flock of zero-days flying in formation"

maqp: mircea_popescu: I looked at the backlog someone linked me and I wanted to address one thing about TFC using it

shinohai: Programs in Java but I won't hold it against him.

pussyfreak: i'm a friend of shinohai

mircea_popescu: i'm not exactly in the business of pushing people to do things.

mircea_popescu: uh i dun see it. guy was gonna do some things, then got sick, then came back, then never did the things. i dunno, lost interest or w/e.

ben_vulpes: heh anyways i just cracked xotika, picked a random feed and whaddaya know the last frame of the bloomberg video that autoplayed itself is superimposed on this poor girl's face

mircea_popescu: guruvan> seems like people round here need bigger heads <<< i thought "the consensus" was b-a heads already too big

gribble: napedia was last seen in #bitcoin-assets 51 weeks, 6 days, 16 hours, 49 minutes, and 12 seconds ago: <napedia> I don't write for SNI. My opinion is that I'd like to see SNI sort it out with economic reasoning and good articles. Pierre's arguments are most persusasive.

maqp: ben_vulpes: I think you're confusing patriotism with nationalism

maqp: Additive keystreams have very low risk after all and I didn't have to trust single external crypto library

maqp: Snowden hinted something about using cascading at Harvard Privacy Synopsium when he was talking with Schneier. Schneier disagreed but it left me wondering whether Snowden's tongue slipped. Cascading was agreed as a good practice in the Schneier's Friday squid blog so I had a go

punkman: "because why trust on a single cryptographic primitive" << because it's nice if the whole thing fits-in-head, and even if you cascade there is still the possibility of meet-me-in-the-middle attacks or I dunno what else

ben_vulpes: anyways, i now return you to your regularly scheduled programming

assbot: Logged on 07-02-2016 16:56:01; ascii_rear: ben_vulpes: good 'v' summary - but i'm still waiting for somebody to crap out a treatise re: the philosophical 'why' of it

ben_vulpes: http://log.bitcoin-assets.com/?date=07-02-2016#1399000 << in the sense that most everything i read here gets filed away and pops up unexpectedly elsewhere. but no, not explicitly. ☝︎

punkman: I think pronounceable words beat baseX

maqp: indeed. I'll look into that <:

mircea_popescu: maqp better than 72 i'd say

mircea_popescu: i mean pun

mircea_popescu: ben_vulpes generally i'm thinking, to make it in people gotta put you in ; but once you're in, yoiu're in, and baring disaster you stay in.

maqp: I wonder if there's a library for that

maqp: mircea_popescu: indeed. I just figured the few extra chars were't that important, and that typing upper/lower case might make it slower. I'll have to look into that

assbot: Successfully added a rating of 1 for maqp with note: I showed him the log, and he joined! I'm on a roll.

mircea_popescu: otherwise what, wipe mike_c because he had a kid ? nonsense i say!

ben_vulpes: i don't intend this as an attack on mthreat, trying only to tease out the logic.

mircea_popescu: my thinking, vague as i admit it may be, is that if the guy's service is running, the guy is ok.

ben_vulpes: i also don't quite know what mthreat's doing in there beyond running search and being a known usg antagonist.

maqp: punkman: It's a classical one-time MAC with excess key expenditure. Not a good idea I admit

ben_vulpes: aha precisely what i was asking.

mircea_popescu: i don't see how it could.

ben_vulpes: i propose excising artifexd from the lordship, and i further propose adding phf to it

maqp: I tried it earlier, but the classic Diffie-Hellman had much less security and a lot longer public key

mircea_popescu: i wonder how gabriel spoonful's doing these days.

gribble: artifexd was last seen in #bitcoin-assets 41 weeks, 3 days, 22 hours, 19 minutes, and 18 seconds ago: <artifexd> I'm comfortable calling it a review. Not just of what it is but what it was and how it got to where it is.

gribble: dignork was last seen in #bitcoin-assets 5 days, 5 hours, 22 minutes, and 41 seconds ago: <dignork> PeterL: I'm lurking

ben_vulpes: nigga you think i keep shit in my head that computers remember for me?

ben_vulpes: i dunno i'm not diffing your html with my face

ben_vulpes: right, and given the extremely long lead time for review around here i want to kick the conversation off now

ben_vulpes: you proposed changes, but i'm not seeing those changes cemented anywhere.

mircea_popescu: no i think he was a terrorist before.

mircea_popescu: phf aha something like that. i suppose that's really it, move alt to shift or caps or something. tho really caps lock is kinda too high, crosses the fingers.

phf: actually i think original tom knight keyboard puts control and meta under pinky by spacing things out

maqp: I won't have to disconnect since it's running on uni server's screen. But you get more assurance on my future bitcoin account signed with my PGP key https://pgp.mit.edu/pks/lookup?op=vindex&search=0x085ADF061C2B20CD

mircea_popescu: i keep the pinky on ctrl. which is why making it further in would be inconvenient for me.

phf: it sort of relies on the idea that control is easier to chord with. all the control combos are basic text manipulation stuff, so when i'm emacsing i chord with the thumb opposite of key, i.e. c-a is left pinky a, right thumb control

mircea_popescu: anyway, there's a 1 BTC with your name on it here. if you post an address in this session you got it. if you disconnect before you registered a sig with assbot, you won't be able to get it cuz i won't know it's you.

mircea_popescu: maqp i suppose you could look into TRB. get yourself V and make your own secure node.

maqp: i.e. I'll have to look into secure deployment when generating one.

mircea_popescu: i guess.

maqp: Maybe. Provided that there are no obligations to where my project should be heading towards. I could use a cup of coffee, but it'll take some time to learn how to secure the account and endpoint

phf: ascii_rear: http://log.bitcoin-assets.com/?date=07-02-2016#1399083 << i've remapped it to cntrl for decade+, like other sane folk << you know that's a filthy unixism and is going to overwork your already qwerty abused left hand even further? lispm puts control on both sides of spacebar, followed by alt/meta, follwed by other stuff.. ☝︎

maqp: yeah, sure. I haven't had the need for it. At least yet.

maqp: I see. The problem with GPG however is the lack of deniability. I'd rather keep things off the record <:

mircea_popescu: one case is ratings, which is how that wot is made. i go !rate x y

maqp: Well, since this is a public chat room with no secrecy/authenticity, I don't really see the need at the moment

maqp: I haven't had the time to update the two other versions

maqp: thanks. I wanted to recommend you guys take a look at the TFC-NaCl that's fresh out of oven and has better design compared to OTP/CEV versions

ascii_rear: i dun get it

ascii_rear: http://log.bitcoin-assets.com/?date=07-02-2016#1399083 << i've remapped it to cntrl for decade+, like other sane folk ☝︎

mircea_popescu: tomes could be written on the particulars of an overcompensating inferiority complex that seeks to remedy internal tension through far reaching "reforms" of the outer world. i'm too lazy. tomes could similarly be written about tardspedia, but i've done all of that i could be bothered to. so let's forget they both ever existed and move on.

mats: i wonder what it cost to spin up the 20% diff increase

mircea_popescu: oh oh that i see.

punkman: dark city was fun, I think I actually saw it in a cinema

punkman: well I couldn't really give you a good definition of "film-noir", but there's a cynical private-dick type guy, searching for a girl that disappeared mysteriously

mircea_popescu: i got as far on my own, but... wut ?!

phf: can't, all the books are in storage, so i have to talk out of my ass

punkman: relevant quote in something I was just reading: "History is not the study of origins; rather it is the analysis of all the mediations by which the past was turned into our present."

assbot: Logged on 07-02-2016 14:12:45; mircea_popescu: or at least, no obvious "gtfo flags" i immediately notice.

mircea_popescu: ascii_rear> most civilians i've introduced to vtronics had problems with, initially, this << the problem here is that the only reason why is not obvious is because of issues in the reader's head, and a general treatise to address all possible personal issues can not really be made.

ascii_rear: most civilians i've introduced to vtronics had problems with, initially, this

ascii_rear: ben_vulpes: good 'v' summary - but i'm still waiting for somebody to crap out a treatise re: the philosophical 'why' of it ☟︎

phf: ben_vulpes: oh i remember dan weinreb died couple of years ago, of cancer actually.

hdbuck: hum so any chance you’d let me know if I would still be leaking IP now?

phf: ben_vulpes: man is anyone from X3J13 still alive at this point? << probably better question, who has died, because the majority of the people form the committee are still alive. http://quimby.gnus.org/circus/cl/dpANS3/chap-0-edit-history.tex has an almost complete list of 104 ("These are attendees from minutes back through 3/88"), of those i recognize about 40, of those ~~10 i've been in touch with in the past year and another ~~10 are

mircea_popescu: "I'll leave the bombast and politics to those typically responsible for such." << ha!

mircea_popescu: "Stan's program makes excellent and judicious use of global state, but I am nowhere near disciplined enough to do the same to good effect" << a simple trick [expert programmers hate] to achieve this is you know you can map state on paper for a while until it's learned.

phf: as far as what it does i hope formatting in the paste above makes it more readable. for each line that starts with --- or +++ awk extract the filename and runs shasum on the file, then prints the new diff line with shasum included. for other files it just outputs whatever's there. so it's a filter that transforms mentions of diff'ed files into diffed files + checksum

phf: http://log.bitcoin-assets.com/?date=07-02-2016#1398750 << http://paste.lisp.org/display/306741 i thought i posted this before, but there are two fixes required on mac os x, sha512sum needs to be replaced with shasum -a 512 (and on openbsd with sha512). since awk can't find the command, it always goes for false. second fix is that you need to explicitly close the external checksum command, because bsd awk doesn't. instead it keeps all ☝︎

mircea_popescu: http://log.bitcoin-assets.com/?date=07-02-2016#1398901 << i have nfi how they figure that the LANGUAGE is going to protect you from the hardware. what can it do ? say to any misbehaving items sharing its heap that "oh no you don't, this here is extra special good stuff!" ? ☝︎