log☇︎
244200+ entries in 0.147s
mircea_popescu: t to the point, to disentangle a skein of thought, to detect what is sophistical, and to discard what is irrelevant."
mircea_popescu: not, on the other hand, to deny that there in fact exists this subculture dedicated to the screenshot as quotation mechanism, or that tech support teams regularly see terrabytes of crap each month, clogging the tubes for no conceivable reason. it has to do with a failure of literacy, a certain laziness of the mind that thinks in symbols (which is what the screenshot is).as newman put it, "to see things as they are, to go righ
asciilifeform: promisetronic 'verifications' are an eternal plague among the stupid. consider even the timestamp in gpg (to make the phuctor sig from last night's qntra, i used ordinary gpg 1.4, with patch). what business does a userland proggy have asking for the wall clock time without permission? if i want it to have a time, i will pipe 'date' to it...
mircea_popescu: the very notion of "screenshot as proof" is suspect and to my mind inseparable from http://trilema.com/2014/o-hai-let-me-verify-your-identity/
mircea_popescu: Framedragger if that blurring is not imagemagick'd in place, then how was it obtained ? that sorta thing.
mircea_popescu: asciilifeform "quitting" is how they'd like it to be called.
mircea_popescu: not that it's out and out impossible, after all the bee will do what it knows in preference of all otehr deeds.
asciilifeform: (that forest of office towers around wh is full of these, traditionally)
mircea_popescu: Framedragger re automation angle - i dunno, i suppose varying amounts of elbow grease could be employed, entirely as a mechanical gearbox, in lieu of actual automation. just it doesn't fit in my head - the same people who wouldn't read ten words would then go through the motions, orders of magnitude more complex, of making screenshots etc ?
asciilifeform: speaking of public amusement, word is that ~all~ 3,000 or so obummer 'staffers' are quitting. and now being replaced. ☟︎
asciilifeform: i picture that even this gets old. (though i will still buy ticket!)
mircea_popescu: well, you can kill them elaborately for the public amusement...
asciilifeform: at this point i cannot think of what these 'bees' might be good for, they are not even bees, but roaches, there is no roach candle wax afaik.
mircea_popescu: but they concerned with the proposition of alf the bee-dog's bees, ie these things... they've a serious problem.
asciilifeform: (story is in the logz)
asciilifeform: reminds me, more than anything, of that time, half decade ago now, that i bought some 'google ads' for my robot control product
mircea_popescu: anyway. i don't think they wasted my time nor do i think myself the victim. fact is i can turn them into value if i so decide, much like the beekeeper can make candles and honeycomb if he wants. and if i don't want - i just don't make a fiverr account. not like they can do anything whatsoever, they can't even elect hillary.
Framedragger: i see what you mean. now it's a closed bubble/system for them, sort of...
mircea_popescu: but these kids, who cobble not sandals but the very words... they're stuck in monoband world. and i honestly see no possible solution.
mircea_popescu: the ancient cobbler apprentice who did a bad job had two out of band systems, his master's crop and his master's words, to shake him out of biological amoebasty.
mircea_popescu: Framedragger the problem they face is that as they cannibalized language itself they're now stuck in a very lost world without any possibility of out of band
Framedragger: except for the whole "wasting time of actual people" side of things..
asciilifeform: and l0l!!1 is THIS why i'm getting arsebook hits on dulap..?
Framedragger: well, good for the skriptkiddies then. a spammy-scripty strategy is a strategy nonetheless.
asciilifeform: mircea_popescu: lemon market, there.
mircea_popescu: Framedragger i expect they have a fully scripted environment cobbled together out of visual basic, httpfox and what have you
asciilifeform: and if we really get mircea_popescu's botnet system, perhaps phuctor can finally get off the elephant box and onto 1024 chickens..
Framedragger: could it be that half of them are bots, mircea_popescu? can't imagine them being able to use imagemagick for the life of me
mircea_popescu: you should see the level this kabuki has achieved. they actually post multiple imagemagick generated jpegs. which are "proof"
asciilifeform: in all fairness, i will likely rewrite it again before 2 yrs . seems to have become a yearly chore.
Framedragger: well, it is nice to have data.
mircea_popescu: asciilifeform straight to http://trilema.com/2016/theyre-not-progressive-theyre-just-lazy-a-practical-exercise/
Framedragger: ahh, that's what you mean. yeah k lol.
mircea_popescu: Framedragger the idea being that we're overflowing data to process, after your set ends up in spring jurov's goes in and may take a year+
asciilifeform: as these folx tend to.
asciilifeform: they published (claimed) tally, charts, 'discussion'
mircea_popescu: except a) they didn't and b) we did and c) they published nothing and d) we published both ips and factors ?
asciilifeform: and then wrote fancy paper with charts etc. but 0 actual hard evidence
Framedragger: mircea_popescu: i have this idea of doing focused not-for-coal-mines work this summer (some time after May) lol. so maybe even 2017!!1
asciilifeform: well, they -- supposedly -- did phuctor-with-ssl
asciilifeform: or the ip of one single popped box.
asciilifeform: mircea_popescu: they never, afaik, published one single factor.
asciilifeform: phuctor is a living illustration of the tradeoffs of 'muntzing'. it is ~100 % reliable, and (aside from the unicode turdolade) demonstrably bug-free. but this comes at a price.
asciilifeform: (they, as everyone probably already guessed, get db queried one-at-a-time. to do anything else would result in a 50x more complicated phuctor.)
asciilifeform: betcha even if this is slow, it is still faster than feeding'em into the db currently
Framedragger: aha yes, ssl certs should go into the oven, too.
Framedragger: but the 2nd ssh-key-extractor stage can do the stuff you want, yes.
Framedragger: aha, the way it'd work, it'd still scan only port 22 initially, because grabbing banners / doing stateful communication is much slower. doing the former is a matter of TCP SYN/ACK, with embedded 'cookies', no need for state
asciilifeform: why should henninger et al and their 'seekrit evidence' remain 'state of art'
asciilifeform: because these, imho, ought to go next.
asciilifeform: (and if https -- the pubkey also!)
asciilifeform: if telnet - the greeting string
Framedragger: or banner-grabber? i have all the banners still. (and no i haven't done anything with them, yet)
asciilifeform: Framedragger: this time, i recommend, with built-in port scan
jurov: yea, they usually don't survive reinstalls
Framedragger: also, i may want to re-run the base ipv4 ssh server finder at some point, i'm sure i'll get some more keys :p
Framedragger: ah yeah i recall. i think my only modification is that it handles bulk amounts, but really nothing special
asciilifeform: (and posted that version here also)
asciilifeform: Framedragger: jurov posted a quite working one earlier, i used it for the amd keys recently
jurov: Should have converted them to gpg, as Framedragger did.
Framedragger: jurov: i have a trivial python script based on your openpgp-generator to convert arbitrary numbers of e,N,comment into pgp if interested (but you prolly have something of the same - just in case)
mircea_popescu: jurov sorry if this is frustratingly slow.
mircea_popescu: cool then.
mircea_popescu: i thought he sent it
asciilifeform: dun think so
mircea_popescu: asciilifeform did you ever get a copy of jurov's keys though ?
mircea_popescu: there's worse fates than a 2year phuctor fuel supply. (i guess.)
asciilifeform: will need substantial work tho.
asciilifeform: theoretically there are ways
mircea_popescu: asciilifeform any way this can be sped up though ?
asciilifeform: mircea_popescu: the feeding is the sole bottleneck.
jurov: iirc 10millions. they're still in e,N,comment CSV
mircea_popescu: and so then what, jurov 's set is gonna add another what... two years ? more ?
asciilifeform: jurov: if you have them in ready format, send'em over.
mircea_popescu: somehow i was under the impression we're just about running out
asciilifeform: jurov: i can slip'em in after the current batch of Framedragger keys is digested, a few wks from now. otherwise - april or so.
mircea_popescu: o, those are still waiting ? i thought they were in already for some reason.
jurov: i have the github pubkeys
jurov: mircea_popescu: to actually connect, client keys must be cracked. asciilifeform: when can i expect the hopper to free for these?
asciilifeform: (and not, as naively one might expect, to their ~actual~ customers as such)
asciilifeform: btw everyone possibly already knows this, but bugmakers refer to nsa et al as 'customers'
a111: Logged on 2016-11-15 02:09 asciilifeform: 'The attacker just have to press and keep pressing the [Enter] key at the LUKS password prompt until a shell appears, which occurs after 70 seconds approx.'
mircea_popescu: also what customers have come to expect, what with http://btcbase.org/log/2016-11-15#1567492 etc ☝︎
asciilifeform: admin/[blank] interestingly, most common on the current set.
mircea_popescu: though "admin" and "12345" usually carry the day
asciilifeform: (the remainder - also can, with manufacturer's backdoor pw, which i simply do not happen to know)
asciilifeform: btw quite a few of those boxen you can log into, right ~now~
mircea_popescu: i think people generally misunderstand just how fucking abundant insanity is
mircea_popescu: more a case of "locate the maniacs" than anything.
asciilifeform: though i will point out that i do not conclusively know this about ~all~ of them, only all of the ones that are still alive at the ip where they turned up in june...
asciilifeform: this would be a slightly more interesting imho exercise if the popped boxes were not all routers/webcams/etc where no one hangs on shell
mircea_popescu: but i'm thinking maybe it went from "crack rsa" to "phuctor" level of dubiousness.
mircea_popescu: now, whether anyone has actually done this who's also in our set is of course dubious
Framedragger: okey dokey. point taken
mircea_popescu: Framedragger 1. open cpanel session 2. generate ssh key 3. export it 4. import it into another. see a connect to b.
Framedragger: hm. worth a try for sure.
Framedragger: well for one ssh client keys normally have an email/ID associated with them, not sure if ssh agent would like an ssh server key. in theory, yes, sure
mircea_popescu has this morning looked into cpanel, it would seem you can do this trivally.
asciilifeform: i presently know of no system that ships with remote-login-with-key-auth enabled by default. does not mean that there isn't such a thing.
Framedragger: i mean in practical terms, of course, theoretically, but as in, would a canonical ssh agent eat it up