log☇︎
147200+ entries in 0.935s
asciilifeform: if nobody's raped'em through it, it is because evidently nobody can be arsed. ☟︎
asciilifeform: and at same time 'but the RAM region used by ME is not accessible from the OS' goes away.
asciilifeform: gotta luvv, incidentally, the 'huffman compression' thing. 'we can't decompress because nobody has the table'. except if you had instrumented sticks of ram, that can be read out of band ( i.e. without cooperation of the mobo and its contents , through a second hole ) you could quite easily restore the entire image ( which sections get read , in what order ? concatenate'em. )
trinque: http://blog.ptsecurity.com/2017/04/intel-me-way-of-static-analysis.html << "It would seem that ME 11 is based on the MINIX 3 OS" ☟︎
asciilifeform: it dun particularly matter what yer running if the enemy lives on the bus, no.
BingoBoingo: <vlad56324> what i would like to ask after reading the logs: what is a safe linux distro to use for day to day computing? << Minix 2 is prolly closest
diana_coman: oh, oh; as far as I know there were 2 versions at least and one of them with 80kB, yes
asciilifeform: diana_coman: i think he meant kB
diana_coman: mircea_popescu> diana_coman iirc the cobra had 80kb ? <- hmmm, iirc 58 keys but I can't say I'm 100% certain
vlad56324: i really not have understood this part ☟︎
vlad56324: You want all new hardware, don't reuse stuff that was already online
asciilifeform: vlad56324: also 'cold' normally implies the use of non-electrical item ( e.g. paper )
vlad56324: not one that you boot with a live cd w/o internet
a111: Logged on 2017-05-02 12:22 asciilifeform: Framedragger: if you think they use distinguishable magic packets, think again
vlad56324: so true cold storage should be on a dedicated computer, correct?
asciilifeform: ( 'remote control' in the physical sense, greater than your own, he can read 'unused' pages of ram from last warm boot, rewrite arbitrary sectors on hdd, etc )
vlad56324: that's creepy as fuck. Consider that a couple of years ago i was feeling safe generating paper wallets on a online ubuntu distro
asciilifeform: vlad56324: if nic is plugged in, enemy has remote control over whole box at all times. ( if not plugged in -- collects, e.g., keystrokes, and disgorges on demand later. )
vlad56324: (paper + pen then input on PC)
vlad56324: but if i generate entropy with my paper + pen, am i on the safe side or still intel can theoretically fuck me? ☟︎
vlad56324: basically i understood that there is this... kinda backdoor
asciilifeform: the fault, to borrow from shakespeare, 'is not in our packets but in ourselves'
vlad56324: ok and another thing that was really a curiosity after reading the logs
asciilifeform: consider that in the age of 1990s microshit, it was not necessary for a box to have modem at all, to be infected ( just as today )
vlad56324: and this scares me thinking about of real security
vlad56324: now with broadband it seems that everyone has the permission to grant the shit out of my pc in terms of TCP connections
asciilifeform: i.e. the question has an answer, but the phrasing of the question makes the answer inevitably misleading .
vlad56324: you know what: it seems to me that with 56k it was very easy to have some decent "fine grained" control over the packets ☟︎
asciilifeform: vlad56324: asking today for 'which distro most secure' is rather like asking re which apartment block in chernobyl zone is most habitable
asciilifeform: at one time it was small.
vlad56324: may i ask if there is some particular real advantage with freebsd?
vlad56324: then i saw some folks that prefer freebsd "for security" but never understood the reasons behind this
asciilifeform: it will still be possible to be surprised at 'why is this thing, that i put there, doing $x' . but this is a substantial step above the pig farm where you have a bowl of unattributable slop.
asciilifeform: at the end of the day you should have a box where the question 'why is this on my machine' should never have to be asked
asciilifeform: and throw out the kde's, gnomes, similar garbage.
asciilifeform: it isn't a cure but is a treatment.
asciilifeform: take, e.g., the above recipe, and build a box where the only soft is what you put there deliberately, with own hands.
vlad56324: this is meant to be secure? ☟︎
vlad56324: i mean, i like and think that there is no harm about having some ARP request and dhcp stuff, but then, i realized that even if i was with closed browser, doing text editing, there was traffic going outside my lan
asciilifeform: but none of it is a thing that you can 'download, install, forget' etc without working with own hands
asciilifeform: a few of the folx here use heavily modified gentoo-derived items
asciilifeform: but no there is not a sane distro by any sort of reasonable standard
asciilifeform: all of them, if you take out the nic from your box, lol
vlad56324: i would like to ask: there is some specific distro that by default doesn't need to communicate out of my lan?
vlad56324: and saw the hell going in and out my pc w/o reason
vlad56324: basically i'm on ubuntu since a lot of time, then after reading i've discovered some useful networking instruments such as tcptrack
asciilifeform: i'll answer this one : there isn't one.
vlad56324: what i would like to ask after reading the logs: what is a safe linux distro to use for day to day computing?
vlad56324: i knew bitcoin on 2015, trilema blog in the past week, aside from that i'm just an average joe
asciilifeform: vlad56324: say a bit about yerself while you have the microphone ?
vlad56324: yes going to do
asciilifeform: massive piles of loose-hanging theoretical 'sub noise floor max possible bit rate' etc
asciilifeform: yesterday i learned that there exists a similar subculture in academia as pertains to 'covert radio' ( see 'olivia' thread )
asciilifeform: gotta luvv the 'i have a tall pile of mathemasturbatory squigglies ergo I Fix Bitcoin' school of derpery
ben_vulpes: the corn syrup says maple syrup, that means it's just as good and certainly cheaper at any rate
ben_vulpes: well there's a whitepaper, that makes it just as good as bitcoin.
asciilifeform: gotta wonder, how come none of the audience have the half cup of oil in their braincase to answer the 'here is some lolcatcoin, gimme btc in exchange' with 'if it's so great, why dontcha keep it, and why would you trade it for boring old btc' ☟︎
ben_vulpes: which is all regulation buys one: houses built to the minimum standard, and retirees so accustomed to government insulation from possible bad decisions that the entire stockholding class has nfi that paper could be worthless
asciilifeform: but somehow became 'normal' behaviour in the rat pit, unremarkable nao.
asciilifeform: i still even recall the days when shitcoin artists tried to mask their premining or at least distract from it somehow
asciilifeform: and naturally, 'Chia Network is a San Francisco-based company' 'Chia will be sold to the public next year'.
asciilifeform: 'Bram Cohen, famously invented BitTorrent' 'proofs of space and time' [many squigglies] 'decentralized, and more secure' 'Install and setup Keybase' etc. ☟︎
a111: Logged on 2017-11-03 16:45 asciilifeform: the dark seekrit is that the old rusty dacia in empty street of timis, goes faster than mazerati on washington 'beltway'.
mircea_popescu: http://btcbase.org/log/2017-11-03#1732583 << to think timis street empty one must come from not such a good life. ☝︎
a111: Logged on 2017-11-03 16:31 asciilifeform: ( spoiler : cans of sprats. but no one confiscated them, or even opened suitcase, but the ritual of putting'em through larger xray magicbox was carried out and the voodoo gods -- satisfied )
mircea_popescu: http://btcbase.org/log/2017-11-03#1732564 << they've gotten very "thou shalt not open bags, the might of inca rests in remoteness". ☝︎
mircea_popescu hasn't been following the story.
a111: Logged on 2017-11-03 16:19 asciilifeform: pete_dushenski: i then stand corrected : ran once, and then came back twice to fleece the incorrigible idjits
mircea_popescu: http://btcbase.org/log/2017-11-03#1732558 << afaik there were no outstanding claims after either of these ☝︎
mircea_popescu: definitely. i still have the old tim-s'n
asciilifeform: tapes broadcast on tv etc
asciilifeform: hm i distinctly recall a thread where mircea_popescu and z80
mircea_popescu: but iirc it had a full cp/m os to o
mircea_popescu: i don't even know i ever had one. by the time they were more or less available i got ibm pc
asciilifeform: of the chipz that is
asciilifeform: mircea_popescu: do you remember the colour ? ( black plastic ? or ceramic white and gold cap ? )
mircea_popescu: asciilifeform "swiss" in this context means refloated via switzerland
mircea_popescu: asciilifeform well, "iprs" was the comp dealing. mostly german / swiss contacts yeah.
mircea_popescu: imported chipsets iirc too.
mircea_popescu: went into production 1988, then 1989 it was all over.
mircea_popescu: no im telling you, this was later/advanced model
mircea_popescu: diana_coman iirc the cobra had 80kb ?
asciilifeform: ( for n00bz : 1980s micros, esp in orcistans, tended to have kbd resembling that of cheap chinese air conditioner remote today )
mircea_popescu: but yes, at the time this was it.
asciilifeform: wouldja believe at one time it was thought to be the worst physically possible kbd. but never underestimate crapple, pinoneer of drawing-only keyboard.
mircea_popescu: eventually they ended up coming that way from the factory. orig kbd was utter shit.
mircea_popescu: basically these thin plastic pill style things lemme see if i can find one
asciilifeform: mircea_popescu: what did they come with , bk0010-style 'chiclet' ?
asciilifeform: ( asciilifeform for instance had a 486 in 1990s that couldn't speak 115200 )
mircea_popescu: i had to have custom fucking made kbd replacement put into teh old style timisoara-made z80 clones
a111: Logged on 2017-11-03 15:53 asciilifeform: http://www.homecomputer.de/pages/easteurope_ro.html#cobra << hilariously and unsurprisingly, ro z80 clone had better keyboard than today's 3000+ $ crapbooks etc
mircea_popescu: http://btcbase.org/log/2017-11-03#1732547 << the cobra was relatively advanced/later. ☝︎
asciilifeform: mircea_popescu: was thinking in case someone wants to literally connect to pdp8 or other item that capped out under 115200
a111: Logged on 2017-11-03 15:40 asciilifeform: btw if anyone REALLY needs a 9200 baud ( or other ) baud rate, i ( or for that matter anyone ) can build a replacement cpld firmware image that makes this happen
a111: Logged on 2017-11-03 15:32 asciilifeform: btw : truly, genuinely spiffy pc mobos ( e.g. pcengines 'APU' series ) have ~on-board ttl serial port pins~
mircea_popescu: ah misread, it was 1.71 to 1.56
asciilifeform: mircea_popescu: i have nfi over what, iirc there were a few hundy btc in limbo
asciilifeform: dacia prolly lasts longer, and moar repairable : i saw more than one example from clearly pre-ceaușescu times
asciilifeform: and its owner -- eats better, sleeps moar sweetly, fucks thrustier.
mod6: funny how that works huh