asciilifeform: !s openbsd dbus

asciilifeform: felipelalli: try reading the thread ?

asciilifeform: florian weimer et al are 'security professionals' for 'fixing' holes after the fact (self-planted, but who will print this.) whereas we are 'nutters' for removing the cancerous tissue preemptively.

asciilifeform: the 'it never happened, and if it did, we had it first' thing has never failed to date.

asciilifeform: etc.

asciilifeform: e.g., expect massive qntra ddos some time in the next few hrs

asciilifeform: would be exciting, if i did not already know how this will go

asciilifeform: nope

asciilifeform: ^ this is a new one for reddit, traditionally they 'shadowban'

asciilifeform: guess wat.

asciilifeform: ahahahahaha

asciilifeform: I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.

asciilifeform: Please do not resubmit your content unless explicitly requested by a moderator.

asciilifeform: Your submission has been temporarily removed pending a moderator review. While no exact time frame can be given, most submissions are reviewed within 24 hours. Should this timeframe be exceeded, feel free to send the moderators a message via the sidebar link with a link to this submission.

asciilifeform: https://www.reddit.com/r/netsec/comments/4635y5/glibc_remote_exploit_affects_all_bitcoin_clients/

asciilifeform: https://news.ycombinator.com/item?id=11110858

asciilifeform: https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html << holy fuck the sheer mass of fecal matter

asciilifeform: and have been for many months.

asciilifeform: BingoBoingo: i would add in your article that the flagship trb boxes are running sans-glibc.

asciilifeform: 'could' even be built on winblowz.

asciilifeform: at least after emacs is fixed.

asciilifeform: it no longer need exist on our planet.

asciilifeform: aha

asciilifeform: ^ what everybody here, i think, is using at this point

asciilifeform: (rotor musl build)

asciilifeform: ~we nuked glibc entirely~

asciilifeform: BingoBoingo: see above

asciilifeform: (in case you are thinking of writing this up for qntra etc)

asciilifeform: mircea_popescu: also recall, i excised not only dns but glibc

asciilifeform: incidentally, http://log.bitcoin-assets.com//?date=23-01-2015#988950 ☝︎

asciilifeform: what i wanted was a generic, fits-in-head (a few 1000 lines of c, no deps) stateless, 'protocol-less' cipherator that one could put, e.g., ftp over

asciilifeform: but not released yet, and at this rate no idea if even releasable at all, i lack a cipher

asciilifeform: PeterL: it is supposed to be a generic cipherator for tcp tunnel

asciilifeform: PeterL: not precisely

asciilifeform: from, as i gather, elementary economic calculations, the enemy focuses almost all effort on real-time/net-connected crapola

asciilifeform: and the offloading of the built binary, via same.

asciilifeform: a la pgp.

asciilifeform: the replacement is manual loading of tarballs from wherever onto the build box.

asciilifeform: is anyone still unclear why i did not and still do not want curl in vtron ?!!!!

asciilifeform: 'The vectors to trigger this buffer overflow are very common and can include ssh, sudo, and curl.'

asciilifeform: l0l!!

asciilifeform: ... and the rest of the glibc team '

asciilifeform: ''

asciilifeform: 'We would like to thank .... blahblah ... Florian Weimer ...

asciilifeform: at this point i would be greatly surprised to see anything else.

asciilifeform: naturally.

asciilifeform: 'The glibc DNS client side resolver is vulnerable to a stack-based buffer overflow when the getaddrinfo() library function is used. Software using this function may be exploited with attacker-controlled domain names, attacker-controlled DNS servers, or through a man-in-the-middle attack.' ☟︎

asciilifeform: (for anyone who forgot, prb still has hardcoded dns seed etc)

asciilifeform: but that'd be burning prb, which is a no-no.

asciilifeform: empty the prb folks

asciilifeform: would've been glorious if they'd fired it first

asciilifeform: apparently

asciilifeform: drep drep drepper

asciilifeform: ahahahahahahaha

asciilifeform: http://arstechnica.co.uk/staff/2016/02/open-instruments-and-tools-nice-idea-tough-to-implement << from same rag, mega-jwz piece

asciilifeform: http://arstechnica.co.uk/security/2016/02/using-ipv6-with-linux-youve-likely-been-visited-by-shodan-and-other-scanners << ntp and ipv6 lulz

asciilifeform: won't be long to wait.

asciilifeform: http://log.bitcoin-assets.com/?date=16-02-2016#1406782 << good nyooz! this is fixable!111 ☝︎

asciilifeform: http://www.imdb.com/title/tt3419894

asciilifeform: 'divine move'

asciilifeform: showcases both.

asciilifeform: saw a great kr film not long ago, about baduk (go) mafia

asciilifeform: the swap detail is interesting

asciilifeform: mmm

asciilifeform: not in famine, but as standard butcher shop fare

asciilifeform: forgot dogs

asciilifeform: mats: tell this to nubbins', iirc he is eating kimchi still, many years after his tour of duty

asciilifeform: mircea_popescu: don't forget the little detail where 'fan death' somehow ... only happens to ethnic koreans!

asciilifeform: look it up

asciilifeform: BingoBoingo: do your know what graveyard orbit is?

asciilifeform: nuke needs only receive.

asciilifeform: also remember that orbit of comm sats is low because tx/rx

asciilifeform: good for ~20 yr

asciilifeform: a fedex crate, aha.

asciilifeform: and deorbits.

asciilifeform: proper nuke - orbits.

asciilifeform: anyway rockets are so 20th c

asciilifeform: l0l

asciilifeform: like sane people.

asciilifeform: i still don't get why cn would need antarctic base when it can shoot over north pole.

asciilifeform: of course this was back when usa had factories there.

asciilifeform: boil the 'great lakes'

asciilifeform: (contemporary of korolev)

asciilifeform: btw idea belongs to chelomey

asciilifeform: ah i get it, nm

asciilifeform: explain?

asciilifeform: texas?!

asciilifeform: mircea_popescu: antarctic ?!

asciilifeform: (or rather, prototypes thereof)

asciilifeform: as in, 1+ cone for every u.s. metropolis.

asciilifeform: recall also that these were primarily 'super' mirv rockets.

asciilifeform: esp. if helped.

asciilifeform: (depending on how measured)

asciilifeform: largest rockets ever built.

asciilifeform: BingoBoingo: phun phakt: the su 'manned moon' prototype rockets exploded - all 4 of'em - for no particularly good reason.

asciilifeform: waiwut

asciilifeform: otherwise snore.

asciilifeform: nasa is great to learn from if you have 1) infinite budget 2) tolerance for occasional catastrophe ☟︎

asciilifeform: hence the adult audience visible in the foreground

asciilifeform: interestingly, these were filmed when some american megacorp (hp?) sent (1980s) its employees to get sicp'd