asciilifeform: total runtime ~5 hrs., 16 cpu.

asciilifeform: ;;later tell mircea_popescu fermat with 100,000 iter. / mod. (3518444 mods) ran to completion. found still just the 2.

asciilifeform: (coming soon!1111)

asciilifeform: Run Moar Consumer Biometric Gadgets, Especially Cloud-Uploading Retina Scannerz.

asciilifeform: http://www.loper-os.org/pub/einsatzgruppen_jewdetector.png ☟︎☟︎

asciilifeform: dun miss:

asciilifeform: aaaaaaaaaaaaaand,

asciilifeform: http://www.loper-os.org/pub/cash.png << moar lulz.

asciilifeform: http://www.pps.ru/?part=catalog&product=248 << their nonlinear junction detector catalogue appears to include one that goes up arse..

asciilifeform: apparently this is a thing.

asciilifeform: in other pnoje lulz, http://www.pps.ru/?part=catalog&product=232 << 'acoustic safe'

asciilifeform: so i have nfi what kind of imbecile would pay the ransom. ☟︎

asciilifeform: the other thing is, pnoje is ~always backed up to 'cloud' etc., ~and~ has vendor reset mode that lets you reformat.

asciilifeform: originally

asciilifeform: so recipe needs to include a trojanned box.

asciilifeform: trinque: recent years' jailbreak need, iirc, a cable connection.

asciilifeform: is it motherfucking reddit ?!

asciilifeform: shinohai: source ?

asciilifeform: prolly in 'ogniem i mieczem'..

asciilifeform: just lyin' there

asciilifeform: relatedly, i was looking recently at a house and landlord had petrol tank, disembodied, from airplane, and part of a wing

asciilifeform: WHY are these jokers always so similar!?1

asciilifeform: quite possibly since '90s.

asciilifeform: but yes, he was a 'hot spare.'

asciilifeform: 7/31/16

asciilifeform: $s marlinspike

asciilifeform: ahahahaha mircea_popescu 'killed' boeck, so guess who gets to be the new boeck, https://www.wired.com/2016/07/meet-moxie-marlinspike-anarchist-bringing-encryption-us

asciilifeform: (whatever happened to that ?)

asciilifeform: http://btcbase.org/log/2016-08-01#1512482 << recall when there was briefly a fashion for banning obvious microshit victims from one's site ? ☝︎

asciilifeform: i suspect they are penile-compatible!

asciilifeform: phf: try those things they make for the arm-less, to press with nose

asciilifeform: similar!

asciilifeform: i can tell that mircea_popescu never answered mailz with one finger, of one hand, hanging from a rail, from a moving train, over 8kbaud modem...

asciilifeform: it isn't a device!111111

asciilifeform: mircea_popescu: if somebody sold a morse code arse muscle clenching-powered entry thing, i might test even that.

asciilifeform: mircea_popescu: i've tested 1,001 devices

asciilifeform: dafuq is gboard ben_vulpes

asciilifeform: mircea_popescu: it would if it could!1111

asciilifeform: (and has a primitive on-screen thing, ok for short text)

asciilifeform: mircea_popescu: thing takes an external kbd

asciilifeform: on turdroid this cripplement is absent, but things go in opposite direction, battery is eaten by 1,001 mandatory background crapolade

asciilifeform: 'to prevent apps from eating the battery'

asciilifeform: i dug in, and turned up, iirc, that this is DELIBERATE

asciilifeform: gotta love how ios 'almost worx' in 1,001 ways. for instance, you can get a ~functional irc client. BUT it will disconnect after backgrounded for ~30 sec. NO EXCEPTIONS. ☟︎

asciilifeform: phf: wat?

asciilifeform: prolly just some lamer.

asciilifeform: was a test.

asciilifeform: trinque: it is, as far as i can tell, a paste of a stock metasploit thing.

asciilifeform: 'dumb' as i understand, traditionally means battery life measured in ~weeks~

asciilifeform: lel

asciilifeform: jurov: thread was about 'dumb' phones..

asciilifeform: modulus, note, happened 5 times, someone was testing whatever.

asciilifeform: but was genned scriptologically, and author cut corners, and made q = nextprime(p)

asciilifeform: i suspect that it was, precisely as mircea_popescu describes, low-effort - ~key gen~. which is to say, it was not meant, necessarily, to pop

asciilifeform: but why generate such gnarly modulus.

asciilifeform: looks like.

asciilifeform: they both show in public collections of old 0days, so prolly not

asciilifeform: all i see is the dropper

asciilifeform: phf: where is the payload though ?

asciilifeform: phf: i was reasoning from the fact that this pubkey does not appear to exist anywhere, publicly, other than phuctor.

asciilifeform: (it is not in sks.)

asciilifeform: ancient xss 0day ended up reencoded as pgp key userid field by cosmic rays, and submitted to phuctor also by cosmic rays ?

asciilifeform: phf: let's have alternative hypothesis ?

asciilifeform: soooooo we have a half-baked attack against l0gz readers etc.

asciilifeform: but i have nfi what the intended eater was.

asciilifeform: well, pops some popupz

asciilifeform: phf: it fires in 'chrome'

asciilifeform falls down.

asciilifeform: ben_vulpes ^ yer gizmo EATS IT

asciilifeform: SURPRIZSE! http://wotpaste.cascadianhacker.com/pastes/e88f3371-0bf6-4e9e-9d7c-01c9d460b076

asciilifeform: ...

asciilifeform: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaand...

asciilifeform: why it was necessary to put this in a strictly fermat-breakable artificial key, vs. some simple case of gcd or 8ball, i do not know - write to hitler and ask him, not me.

asciilifeform: 1) 'of course s.nsa uses some private wwwtronic thing to view results!1111' 2) 'of course it evals embedded crapola if we ask it!' etc.

asciilifeform: and the sheer monkey-assumption-sandwitch baked into this !!

asciilifeform: likely, crafted for us.

asciilifeform: doesn't appear to be an sks key.

asciilifeform: eh.

asciilifeform: ;;google 0xF791040E3E7D27D1

asciilifeform: pretty lame pwntron, but points for effortz.

asciilifeform: https://github.com/client9/libinjection/blob/master/data/xss-html5secorg.txt .

asciilifeform was expecting a great deal moar.

asciilifeform: mircea_popescu wins, and nobody else played.

asciilifeform: mircea_popescu: the total unique count (fermat with 10,000 iterations / modulus) is 2.

asciilifeform: https://github.com/danielmiessler/SecLists/blob/master/Fuzzing/JHADDIX_HTML5sec_Injections.txt << possibly from this.

asciilifeform: trinque: read the link.

asciilifeform: nonono

asciilifeform: ben_vulpes ^ ? phf ?

asciilifeform: ^ who wants to take a stab at this gem ^

asciilifeform: http://phuctor.nosuchlabs.com/gpgkey/614469D3EF6BF58C797FFD118727304F76F2C921CF1C3419CBF99AFAF8E7A225 << mega-l0l

asciilifeform: oh for fuckssake. ☟︎

asciilifeform: ^ for n00bz ^

asciilifeform: http://facthacks.cr.yp.to/fermat.html << bernstein's quick likbez on subj

asciilifeform: (answer in < 1hr)

asciilifeform: takin' 'bets'

asciilifeform: gentlemen?

asciilifeform: noted.

asciilifeform: (at least 1, per the mahmud thread)

asciilifeform: btw we dun have bbet but does anyone want to unofficially bet how many fermat bangs in 3518444 moduli ?

asciilifeform: cable comes with the thing ?