172300+ entries in 1.294s
mircea_popescu: anyway,
a) why wouldn't you surge protect what sounds pretty costly and b) what the fuck is in there to explode.
ascii_field: they have short-range radio and
a stereotypical 'nsa van' has to come by
nubbins`: i just want
a phone number that i can put in the YP, ya know?
nubbins`: anyway IDGAF about uptime guarantees or *whatever the fuck* makes
a business phone cost more
mircea_popescu: then he could go to
a marathon and the announcer could say
nubbins`: they won't update an entry in
a database
mircea_popescu: you've unwound
a bit of thread that indicates you're unoptimized in more ways than just phones.
nubbins`: so right now i'm paying $30/mo for
a phone number i don't use
nubbins`: so local telco refuses to change the caller id on my landline to business name unless i run copper(!) to the house for $130 setup fee and sign up for
a $60/mo POTS
mircea_popescu: the russians did
a lot of that in the 00s, pushing the various euros for whatever bizarro kremlin reasonings drove the oligarchs
mircea_popescu: ascii_field it is generally
a good way for postgrad level students to practice.
Chillum: I would say the
a low percentage of adults are creative or intelligent, and
a lower non-zero person of children too
mircea_popescu: in m's case is more like.,.. 12. but note that his father DID exploit him as
a monkey act
Chillum: Beethoven's musical talent was obvious at
a young age
mircea_popescu: but no children can be either creative or intelligent. being childen is
a full time job.
Chillum: it is just an expression which means to accept the ideas of
a group
mircea_popescu: clearly, this person should be in charge of ^H^H^H used as
a front for
a thing intended to be marketed to the sort of idiots who like to hear this sort o fnonsense. you know, like randi zuckerberg going to davos.
mircea_popescu: dexter was
a boy jenius, his sister dee dee was kind-of
a 7 yo model of
a valley girl
mircea_popescu: holy shit the only google reference to that is
a logs link.
nubbins`: if they had
a good backstory for THAT, maybe
mircea_popescu: bad titjob in cheap dress, among
a rural setting being transformed into high density "houses".
ascii_field: most folks in the business have
a few dedicated physical boxes, also (with removable hdd, segregated net, etc)
nubbins`: i used to work with
a guy who brought his own mac pro to the office and ran windows in
a vm
Chillum: what do you mean? You could plug it in and it could in
a matter of seconds download and install something onto
a windoze box and then erase the evididence. Would be useful to any blackhat or penn tester
ascii_field: mircea_popescu: thread was originally about my dislike for qr and gedankenexperiment involving
a more reasonable means of encoding machine-readable bits on paper.
mircea_popescu: in any case :
a hammer is not
a good analogy for your item.
Chillum: I am sure there is
a master key out there
Chillum: what problem does
a hammer solve? This is
a general purpose tool for sending
a text payload as
a keyboard and erasing itself
Chillum: it could also be used to send
a payload to
a system and remove evidence
mircea_popescu: what in insecure location b prevents it from making
a copy of your key ?
Chillum: the idea is that you load the key with
a password in secure location
A, then you got to insecure location B, use it to start
a computer and it erases itself
Chillum: I want to make
a digispark that when plugged in to usb sends
a very long password from the eeprom, then erases it several times
ascii_field: Chillum: i thought it was obvious that this is not
a commercially-available device.
Chillum: I was thinking something like
a Digispark, probably cost about the same as the parallel/ps2 cable
ascii_field: Chillum: you don't even need
a microcontroller. can bitbang ps/2 trivially with parallel port of another machine nearby.
Chillum: fuzzing will find all kinds of stuff
a careful search of an OS/codebase will
Chillum: if you do use the keyboard port create
a ps/2 fuzzer with the arduino ps/2 library. Send it all kinds of random stuff, see if you can cause unexpected behavior.
Chillum: The Planiverse is
a cool book
assbot: The Tinkertoy computer and other machinations : Dewdney,
A. K : Free Download & Streaming : Internet Archive ... (
http://bit.ly/19zm2T8 )
Chillum: at the very least I would want
a filter to remove any non-printable keystrokes
ascii_field: if you play gramophone into
a root shell, you deserve to be owned.
Chillum: or you could use RS232 with
a little microcontroller to read the upc
Chillum: I suppose you could put
a bios password in, and disable all kernal triggers
Chillum: sorry, but
a guy at the computer being hostile is certainly part of real word computer security
Chillum: the device can have physical security with only
a rs232 port within reach
ascii_field: Chillum: why on earth would you spin the gramophone attached to
a computer with no os loaded ?
Chillum:
a keyboard can do
a lot of damage
ascii_field: it cannot behave as anything other than
a keyboard. no matter how much it wants to.
Chillum: it went from fixed length only to variable length. The software was
a fool to trust it though
ascii_field: Chillum: may as well presume
a winblows xp box, etc.
Chillum: example of
a reader being too smart
Chillum: he shows how to turn on multi-code qrs, then mysql inject
a computer attached to the reader
ascii_field: the correct way to do 2-dimensional barcodes would be 1) traditional barcode laser pen, combined with 2) something like
a small gramophone
ascii_field:
a traditional barcode can be decoded with your eyes, and some patience, to verify. try this with qr.
Chillum: so if it is set to UPC only you can still activate QR and inject long strings, which
a lot of software does not expect
Chillum:
a lot of readers can have their mode changed to accept other types of codes by giving it
a special UPC
Chillum: there are
a lot of <10 watt computers
Chillum: if you only discharge
a vehicle battry 20% before charging it they last
a good amount of time
Chillum: I am thinking the power systems for RVs, they run
a lot and I think they can be charged from the mains
ascii_field: commercial cells are good for
a few dozen cycles, max.
Chillum: though
a cold wallet sized Faraday cage is
a more reasonable endeavour
Chillum wants
a room sized Faraday cage
Chillum: of course there is the act of making all adapters
a bit noisy by poor design so it can be picked up on radio
ascii_field: that is, that 1) yields something useful 2) in
a situation that is actually likely to play out 3) isn't embarrassingly obvious
ascii_field: and ask yourself the question, when contemplating whether
a piece of hardware could have been boobytrapped - what would you, in the place of the enemy, place as the payload ?
ascii_field: (and if you don't have
a ps/2 jack you don't have
a computer, sorry)
Chillum: mag stripe cards that can be swiped at variable speeds(different speeds in the same swipe) use
a timing signal
Chillum: If there were
a strip of timing lines at even intervals you could even just put it into
a depression and hand pull it across, if they were wide enough
a bit of slant would be okay
Chillum:
a modified printer can pull the paper past the readers
nubbins`: <+ascii_field>
a virginal gentoo box is imho presently the gold standard of non-retarded computing (at least on linux. could argue with openbsd, etc) <<< if anyone reading this is at all interested in playing with .foundation releases going forward, i'd strongly encourage they fire up
a VM and actually go through
a fresh gentoo install. official guides are well-written and if you can't handle this step, you're not ready for monkey-football
ascii_field: nubbins`: and this is everyone's loss, because i was gonna attempt
a proper fix for the orphans thing tonight
Chillum: hmm
a strip of thermal paper could have 4 different barcodes running along the length of the strip to be read concurrently to reduce paper size
ascii_field: traditional barcode gives you
a very easy means of estimating the size of the payload
Chillum: even if you have
a trusted barcode reader feeding information into
a rs232 port you can still trigger
a buffer overflow in something that uses the data
ascii_field: Chillum: barcode reader is simple enough conceptually that it doesn't need
a cpu.
☟︎☟︎ Chillum: I wonder if you can feed
a very long 2d barcode as
a paper tape
Chillum: so how would one move information to and from
a cold wallet? I want to avoid USB which is full of issues
Chillum: even if you software decode
a signal the hardware can still tamper with it
ascii_field: it is NOT ACTUALLY
A KEYBOARD - just presents as one
trinque: hardware assist likely means the qr code reader is actually
a keyboard
ascii_field: Chillum: you may come from
a place where the word 'hardware' means you are permitted to not think about how something works. #b-
a is not such
a place.
ascii_field: Chillum: If one could have cheap hardware with
a built in hardware assist qr reader << this is one of the things i disagree with mircea_popescu about. i do not like qr codes. they require
a surprising amount of algorithmic complexity and consequently cpu horsepower to decode.
chetty: well I guess eulora will get the ultimate test then, mp is planning on installing
a copy on such
a box soonish
☟︎ ascii_field:
a virginal gentoo box is imho presently the gold standard of non-retarded computing (at least on linux. could argue with openbsd, etc)
ascii_field: BingoBoingo: 'Force had
a habit of throwing is profession around' ?
assbot: Logged on 26-03-2015 01:51:17; danielpbarron: last time i tried to build bitcoind i got this far -> util.h:650:8: error: 'uint32_t' does not name
a type
ascii_field: ben_vulpes, mod6, et al: auto.sh leads to 'util.h:650:8: error: ‘uint32_t’ does not name
a type' on my boxes.