tmsr - Search: i

40200+ entries in 0.3s

mircea_popescu: i suppose the question of lisp standardization, soon to be visited upon our fair republic, will be one helluva burning flame.

phf: oh, right, that wasn't obvious from what i said, ccl supports multithreading on arms

phf: spyked: i prefer ccl on low powered machines, the only parts of trinque's bot that rely on sbcl are one or two functions related to thread management

spyked: eh, I ended up using it to host my IRC bouncer. at least it's good enough for that.

asciilifeform: spyked: i found 1st gen raspi (entirely aside the q of closed shitware) to be ~unusable -- it shared a usb bus between nic (already slow) and disk

spyked: also, as a fun-fact: I tried running lispbots on an old first-gen raspberry pi, but it seems SBCL doesn't support threading on ARM (at least not ARMv6 and ARMv7). so I want to test that on ARM64.

BingoBoingo: <mircea_popescu> he is better than you rural hicks from southern ill! << This is true. At his age I was solidly anti-productive.

spyked: mircea_popescu: yeh I'm definitely considering that! the reason I've postponed getting an ARM board at all was the lack of a full-fledged SATA 3 port. I wanna get trb running on arm at some point among others.

douchebag: I'm leaving for eastern europe late may

douchebag: I will be in the United States in april

spyked: asciilifeform yeah I was talking about the ROC-RK3328-CC. it seems a tad beefier than the olimex counterpart. but otherwise yeah, olimex live very close to me, had a board delivered in ~2 days some months ago.

spyked: re arm box, /me was considering buying the arm64 olinuxino from teh olimex people. the rockchip board seems very similar (++ on the USB3 port), but I can't seem to find it in the EU.

douchebag: https://i.imgur.com/S18PzjG.png ☟︎

mircea_popescu: douchebag it's basically a very fast i/o low cpu power box.

asciilifeform: BingoBoingo, mircea_popescu : i learned today, that even shitazon ~will~ ship to BingoBoingoistan, BUT demands about 1 $ to every $ of item ordered , in 'import duty prepay'

a111: Logged on 2018-04-03 17:05 BingoBoingo: asciilifeform: Remember, nothing of incredible value. I am still awaiting a birthday card from February.

lobbes: True dat. Anyways I'll bbl. Thanks for allowing me to brain pick

lobbes: Perhaps I ought to go through all my existing designs, map them out, and then blog post em for forum critique.

lobbes: mircea_popescu: But yeah, I need to think through my designs a bit better. Problem is I'm probably missing some crucial first principles.

lobbes: To wrap back to this discussion, I think I see your point. There's no real reason this craptop needs to deal with the user input at all. All I need it for is to download, store and parse shit download from archive.is. >> http://btcbase.org/log/2018-04-03#17924 ☝︎

trinque: general point of "nobody wants your head bud, just move in a direction". I guess he had a health problem, which is rough.

a111: Logged on 2018-04-03 16:44 douchebag: last time I tried looking there were so broken links

a111: Logged on 2018-04-03 16:36 BingoBoingo: <mircea_popescu> so this upscale local market ("automercado") that stocks all the shit i buy and consequently got a multi-mn monthly account came up with the very dubious idea of running a promotion. one of those things where you get stickers with your receipt and then you fill a book ? in the terms of the master provisioneer, "they'll rue the day!". i think she's got like twenty of the things all lined up. << Here "automercados" are

asciilifeform: ( also comes with audio and video but i do not need these and have not tried'em )

asciilifeform: chipset is a 'rockchip', i ported trb to it in 2015 iirc.

mircea_popescu: asciilifeform i like the model.

asciilifeform: the unit i am testing ( will buy a few moar once i'm satisfied that it is usable ) came with 2G. there is a 4G supposedly also in production, but i was not able to obtain it

douchebag: Well, I'm gonna grab a cigarette to aid with this excitement

mircea_popescu: i meant hardware

asciilifeform: the arm gentoo i am cooking up as we speak.

mircea_popescu: what was on those, i forget ?

mircea_popescu: yeah, tell you what, i'll be as happy as you are once it's finally done.

mircea_popescu: asciilifeform i dunno he can arm... one thing at a time.

mircea_popescu: douchebag i'll get you a sever once the pizarro folk unwrap their heads enough to actually have one on offer. so you can tinker on gentoo, trb etc and get out of the "vps" bs hell. ☟︎

douchebag: I bet so many bots could be pwned with similar techniques

lobbes: I'll announce once back up

lobbes: Anyways, archivetron's url snarf has been temporarily disabled for obvious reasons. Will resume once I plug these holes tonight

douchebag: Man I lol

douchebag: I appreciate that, feel free to reimburse it though haha

mircea_popescu: lol. i was going to buy you the pro yearly package, actually. but since you already have it, no need :D

douchebag: mircea_popescu: I got 0.01 for perma voice, do I get 0.02 for Remote Command Execution :-D ?

mircea_popescu: i believe.

douchebag: now he has a couple other people working on it, I know ones name is James Kettle

mircea_popescu: i'm not so certain.

lobbes: Just know, I'm prolly the easiest target here :P

mircea_popescu: ben_vulpes i wasn't initially going to say anything besides "nay" ; but hey, pizarro's a friend of ours, so : nsa would sell the spare machine for cost, which is about .371. comes with two fgs installed and free shipping. ☟︎

lobbes: Man I feel stupid in general

douchebag: I think it's being passed into bash into a PhantomJS interpreter

mircea_popescu: lobbes well fine, but i was discussing teh design as such. there's no rule against "i have a crappy box for a server that's not worth placing in a dc so it sits in garage", sure. nor is there any rule against "i just simplified speech, called it homebox, it's not" -- but what you say is all i have to go on, that's all.

douchebag: https://i.imgur.com/Wwrp9VP.png

lobbes: mircea_popescu: the logs, but it is an old craptop with an ssd dedicated to public toilet Only place I had to store the gbs of archive data.

lobbes: Likewise, I'll give ya a favorable rating once in front of my gpg key

douchebag: No problem man, just glad I could help!

lobbes: Yeah really. Thank you for uncovering this (I am n00b, you will soon learn)

douchebag: Because if I was a blackhat I could have pwned ur home box

lobbes: I'll dig more into it tonight once I'm in front of it all

douchebag: For you, I really do suggest fixing that

lobbes: That is done through a process where a python script reads from (ahhh now I think I see where it may remotely execute) db and passes url via bash to a phantomjs script which submits to archive.is

lobbes: Also not 100% positive if that was my home ip, but charlotte nc is my residence. I'll confirm that tonight

douchebag: I'll show you how to fix it

douchebag: I got remote code execution on your box

lobbes: Hmm interesting. Yeah this was a few weeks ago iirc when I curiously grabbed one of yer payloads via wget

lobbes: Actually, when was this? I think I may hace manually wgot

lobbes: douchebag aha I think that is my home ip. Plox do test payload again

douchebag: Alright, give me a moment I just didn't want to bother anyone with my payloads

mircea_popescu: i don't see why not.

douchebag: To see if I get another pingback

douchebag: It it okay if I test this payload again right now

a111: Logged on 2018-04-03 15:24 douchebag: no clue, I just checked the logs and saw that lolz.txt was grabbed via wget

mircea_popescu: http://btcbase.org/log/2018-04-03#1792296 << oh don't be silly. i now concur with alf, this is no indication of anything yet. get it to do it systematically, in reaction to something you control, THEN you have maybe something. ☝︎

mircea_popescu: but very distantly read. it's a perl meatgrinder, i'm sure it misses most of the meat.

mircea_popescu: http://btcbase.org/log/2018-04-03#1792286 << i very well fucking don't. jesus christ, 1mn+ lines/day, god help me. i catgrep the item now and again, but the odds of me noticing something in there are pretty slim. ☝︎

lobbes: Re: douchebag's recent wget payload: I can confirm that it most likely wasn't my archivebot. The bot doesn't download links directly, it stores list of urls found in chan and forwards them to the archive.is submit form

douchebag: It seemed to be out of North Carolina if I remember correctly

douchebag: I did do a reverse search on that IP address though

douchebag: Actually, I exited out of that - I'm able to retrieve it but I need to know the proper request to send. waiting on a response from that right now

douchebag: I need to get the boxes full IP

mircea_popescu: asciilifeform well, some ip apparently. i dunno, going through teh logs.

mircea_popescu: (consider, the way linux works today, if i can run wget as a user i can take the box, the memory leaks.)

douchebag: When I geoip'd that IP adddress

douchebag: My machines are capable but if I'm going to be running a node, it would probably be best to have a dedicated VPS to do so

mircea_popescu: BingoBoingo i remember a "bitcoin police" lol ?

a111: Logged on 2018-04-03 12:30 shinohai: http://logs.bvulpes.com/trilema?d=2018-4-3#324610 <<< I'm sorry, been working on my new book "How to set chmod permissions in under 1 minute so users can log into their shell, and other things isp ops should know!" .... but I'll look into that as time permits.

mircea_popescu: http://btcbase.org/log/2018-04-03#1792252 << lol wait, is he on the list of pizarro victims, with thewhet, minigame an' so on ? or what dramas am i missing here ? ☝︎

asciilifeform: and yes BingoBoingo i did think of the item you mentioned, and already prepared it, it ought to satisfy

BingoBoingo: asciilifeform: Remember, nothing of incredible value. I am still awaiting a birthday card from February. ☟︎

asciilifeform: hey BingoBoingo , possibly i already asked this a while back and then lost -- but plox to gpg me a postage addr where you can get mail. i want to try experiment.

ben_vulpes: http://logs.bvulpes.com/trilema?d=2018-4-3#324745 << you have it backwards; how i behave defines lordship and lo i got my way

douchebag: last time I tried looking there were so broken links ☟︎

douchebag: I can have some ready tonight if you can link me to where qntra shares are traded

BingoBoingo: <mircea_popescu> so this upscale local market ("automercado") that stocks all the shit i buy and consequently got a multi-mn monthly account came up with the very dubious idea of running a promotion. one of those things where you get stickers with your receipt and then you fill a book ? in the terms of the master provisioneer, "they'll rue the day!". i think she's got like twenty of the things all lined up. << Here "automercados" are ☟︎

shinohai: yup and it shall rejoin as soon as i get back @ desk. my apologies for inconvenience

shinohai: I mean, i still can't play eulora because minigame.bz/ hasn't a server, but i certainly didn't negrate the lot of the #pizarro folks.

douchebag: i mean commands

douchebag: I tried a number of different requests

douchebag: I have no clue - I woke up this morning and saw it in the logs

trinque: yeah I followed that part the first time

douchebag: And I saw the file actually was requested with wget from an IP address I did not recognize

douchebag: trinque: I was just issuing commands to the bot

shinohai: I don't see join/parts