421900+ entries in 0.256s
mircea_popescu: asciilifeform in other news -
they've made a new extra dark chocolate icecream. i can't explain it.
mircea_popescu: take
the useful part out of
the enemy's
tendency
to sit in front of
things.
there is actual value in
the "do X, do Y, do Z, you're now done" list.
assbot: Logged on 14-08-2015 00:32:27; mircea_popescu:
http://log.bitcoin-assets.com/?date=13-08-2015#1237131 << im starting
to suspect a "alf's guide
to coreboot" full doc would be more valuable
than anything on cryptome currently and really a great addition
to loper-os. provided it actually is complete.
shinohai: ;;later
tell mod6 gentoo was a sucess \o/
mircea_popescu: or well... at least in
times when
the imperial administration was any good.
mircea_popescu: in
the sense
that yes
they could come out of ANYWHERe, and make a hole anywhere, but
then had
to spend
time
to loot, and
then had
to come back AT
THE HOLE, ie not anywhere. so either
take
time
to make a new hole or go back
to where
the old one was. in either case, giving
the imperial army enough
time
to plug
their ass.
mircea_popescu: if you can't have clean water, not only is it
that you can't
take a hot bath - it's
that you couldn't conceivably want
to.
mircea_popescu: there's a reason people who only have sewer water don't
take hot baths in it.
mircea_popescu: think about it mats : if great wall "can't be had", if
the statement is correct,
there's something fundamentally wrong not merely with your fences, but with
the idea of making one and more importantly with
the process
that results in
this perceived need.
mircea_popescu: wanli changcheng omfg so
THIS is how it feels when people use languages you don't know.
mircea_popescu: there's all sorts of ways
to make you feel better about it,
tho.
assbot: Logged on 13-08-2015 18:36:18; mats: anyway, as phf says, it is of course possible
to kill certain classes of vulns in C, be it memory mgmt
to fix corruption, strncpy and
the _s functions from MS for known, fixed size destinations, properly strict coding conventions, reducing attack surface with sandboxing e.g. NaCl, and full SFI/CFI
mircea_popescu: just like
the upside of picking sane girls
to fuck isn't "that hot blondie" but "i fucked over a
thousand women in my life, most of whose names i don't remember, and yet i never had a venereal disease".
that's
the upside.
assbot: Logged on 13-08-2015 17:21:57; asciilifeform: but upside is
that we aren't passing around a massive binary
turd.
mircea_popescu:
http://log.bitcoin-assets.com/?date=13-08-2015#1237221 << upside is massive but hard
to quantify. upside is
that we HAVE FOUND
THE HOLES IN GCC! upside is
that we know what
to say about linux, and why we're saying it. upside is
that we have rotor, and
that we know why nobody without a rotor has a chance. upside of a sane approach is never "where it gets you", but always "where it didn't
take you".
☝︎ assbot: Logged on 13-08-2015 16:49:27; asciilifeform: (burn
the whole fucking lot, and start with sane programs written by sane people for sanely designed machines)
assbot: Logged on 13-08-2015 16:44:22; phf: i
think
that's
the biggest advantage NSA has incidentally, because
they can print money,
they can probably just spin up a
team for every single "core dump on a funny input" and bring it
to a point where it'll successfully eat a shellcode. older salaried reversers simply don't have
time or desire for
that sort of stuff.
that's in software world anyway.
assbot: Logged on 13-08-2015 16:37:05; phf: when was
that exactly? because i stopped following infosec in 2003 (i
think last
toorcon i've been
to was 2005) and looking at it now not much has changed.
the releases are definitely a lot less interesting, because of
the 0day market, but when i ragequit it was
the same shit. weak releases by pushy guys in faux military gear as a norm, occasional interesting stuff from
the usual suspects and practically negati
mircea_popescu: why is
the usg so insistent in pushing its "private" agencies into forcing slavery on random people ?
assbot: Logged on 13-08-2015 15:41:57; asciilifeform: if you run coreboot (aka linuxbios) you get
to put whatever
the fuck you want in smram
mircea_popescu: there's an elided [just] in
there, which
the illiterately-literate have no idea about.
assbot: Logged on 13-08-2015 14:46:10; funkenstein_:
The man has a great point, but, where did
this
thing start
that humans are not animals, and in what crib do I find it
to strangle it?
assbot: Logged on 13-08-2015 14:06:12; asciilifeform: i am not a clairvoyant, cannot read your hard disk ! gotta give me something
to work with.
mircea_popescu: obviously once rigurous education is abandoned,
the whole of society reverts
to a "tribe of monkeys" levels.
assbot: Logged on 13-08-2015 14:02:03; asciilifeform: wtf is
the point.
mircea_popescu: overheard in #eulora : <diana_coman>
the middle road is shit
assbot: New IHSA ‘success factor’ rule has Mater Dei volleyball in
the state’s biggest playoff class | Belleville News-Democrat ... (
http://bit.ly/1J3f3vM )
assbot: Are you sure you have no
tobacco?
assbot: BtcAlpha.com F.MPIF
Tracker estimated NAV per share: 0.00021525 B (Total: 427.66 B). Delta: 0.11 B. Last
trade for F.MPIF on MPEX was at 0.000207 BTC [+]
trinque: why? probably nothing more
than social signaling... "omg s0 1337"
trinque: yeah, I had a hex clock on my
taskbar for a bit
mats: wish i had
that skill. would be useful for conversions between base16, base10, base8, base2 conversions when doing low level computering
☟︎ trinque: I'll
take a machine for
that
mats: in his head, mind you: i spat out e.g. 253 * 35923 and it
took him ~3s
to give me an answer
mats: he did a buncha 3x5 (digit) calculations for me
to prove he could do it, i was impressed
mats: i met a guy
that
took abacus classes and placed p high at competitions in junior high
trinque: yeah,
that's what I've read
trinque: the amount of
time it
takes
to "fix"
things like
this is... notable
mats: race ya
to
the bottom.
mats: project0
too busy chasing
the sexy bugs
mats: if you're
the guy pissing double digit share orders in
the mpoe book, you suck
assbot: Image
taken from page 582 of 'The United States of America. A study of
the American Commonwealth, its natural resources, people, industries, manufactures, commerce, and its work in literature, science, education and self-government. [By various authors.] | Flickr - Photo Sharing! ... (
http://bit.ly/1DQIWDy )
phf: the idea
that "would do better job with better
tools" applies very differently when you're dealing with people who are already operating at near capacity and would benefit from a better
tool
phf: mircea_popescu: i see
the parallels, yeah i was insulated from
that sort of mentality, but i was also insulated from
the stupid and
the lazy
ag3nt_zer0: on another note I was doing some reading on
the history of astrology yesterday and came across
the "fact"
that originally, in mesopotamia, what became astrology began as a simple catalog of omens, reflected in "if
this,
then
that" statements...
this avenue was state-sponsered
too... just got me
thinking of
the "evolution" of
this logic and how
these same statements are now applied
to exclusively reductionist pragmatic mat
mircea_popescu: 'malignant
twerp will level more houses with bulldozer
than with spade'