log☇︎
474000+ entries in 0.336s
mircea_popescu: http://log.bitcoin-assets.com/?date=17-05-2015#1135624 << that never happens, but sure. ☝︎
decimation: gotta pay if you want 'google apps' too
williamdunne: I think with pay they still have your data
justJanne: Gmail has two options: sell your data or pay.
williamdunne: Increasing the number of people who know the platform so that enterprise customers will purchase it
adlai: gmail sells adspace to its parent company. the number of people who know its actual revenue is probably quite low.
williamdunne: mircea_popescu: scraping your emails to better sell your advertisements
mircea_popescu: http://log.bitcoin-assets.com/?date=17-05-2015#1135619 << it's unclear to me how you figure gmail makes money. ☝︎
adlai: (a reporter writing about 'accidentally' carrying a multiple-inch blade onto an airplane damages airplane security far, far less than the security practices that let it through)
assbot: Logged on 17-05-2015 23:00:52; decimation: there are clearly people on hacker news who are enemies of #b-a
mircea_popescu: http://log.bitcoin-assets.com/?date=17-05-2015#1135608 << everywhere someone hopes to get something for nothing and figures govt's the answer to that quandry there's an enemy of b-a. amusingly, this boils down to really very few people and traceably so. ☝︎
justJanne: Actual security is sadly a thing that doesn't exist in critical places.
adlai considered writing some words about how security theater damages actual security, but stuck to lazy bean counting
mircea_popescu: who the fuck asked anon what is and isn't reason nao ?
mircea_popescu: "[1] He's been scraping the profiles of young women (specifically) and posting links, names, and hometowns on his blog. Yes, as technologists, we know that this kind of indexing is trivial. That's no reason, as a decent human being, to terrorize innocent people."
justJanne: Read the report on OpenSEL by the OpenBSD guys. It's a whole new level of WTF
mircea_popescu: this is (or at least was) true
decimation: lol she claims that (52:41) that openssl just adds the current time of day in seconds to the entropy pool
justJanne: With a very bad RNG, it would tell you 2 is prime.
justJanne: decimation: that's true. RSA keygens use a probabilistic prime test.
assbot: Logged on 17-05-2015 22:57:59; DreadKnight: we have a saying around, going something like "you drawn like the gypsy near the shore", meaning overall that you failed in the last few steps
mircea_popescu: http://log.bitcoin-assets.com/?date=17-05-2015#1135604 << confirmed romanian. "te-neci ca tiganu' la mal." implying normal people drown in blue water, but gypsies can't even do this right, they drown after almost getting to shore. ☝︎
decimation: https://mvideos.stanford.edu/graduate#/SeminarDetail/Spring/2015/EE/380/9469 < this Nadia Heniger chick claims that rsa keys can be poorly generated by bad rngs (around 50:00 or so)
assbot: Logged on 17-05-2015 22:51:31; DreadKnight: the project gets small contributions constantly, but when it comes to bigger stuff, people tend to vanish at about 90% progress xD
mircea_popescu: http://log.bitcoin-assets.com/?date=17-05-2015#1135600 << heh the blessed 90%. "nothing may ever get done!!1" ☝︎
mircea_popescu: anyway, to quote myself, "I will write up an article addressing this particular set of bullshit tomorrow. I promise it will be good. Engage bated breath."
decimation: Note that your headline was dinged for being inaccurate, while this guy's blog is more inaccurate by his own admission ☟︎
decimation: "I don't really know, but I talked to Nadia Heninger about it and she mentioned that they were probably created by some email software only used in Germany. "
decimation: it's in the comments of that article that replaced yours on hacker news https://blog.hboeck.de/archives/872-About-the-supposed-factoring-of-a-4096-bit-RSA-key.html
mircea_popescu: not that we aren't, just, lulz factor.
mircea_popescu: jeez how the world changes in a coupla hours based on what's said in b-a log, you'd think we're talking to gavin-the-handpuppet & co.
mircea_popescu: decimation wait, we're progressed past the "it occured while copying" to obscure email programs naoi ?
decimation: can you identify the supposed "german email program" that was supposedly the source of these weak keys?
decimation: justJanne: given your interest in this gpg episode, there is something that you could assist with
decimation: ^ sufficiently idomatic to pass the google translate test
justJanne: Die wird aber ganz kurz ausfallen müssen ;P Ist auch nicht viel zu sagen – Geboren in then 90ern, ganz normal Grundschule, bin mit 8 ins Hochbegabtenförderungsprogramm gekommen, hab neben der Schule interessantes Zeug gelernt, dann Gymnasium, hab mit 16 neben der Schule angefangen zu studieren, und hab mit 18 Abitur mit 2,2 gemacht. Bin seit letztem Herbst Vollstudentin ;)
williamdunne: But I couldn't update that to my current age
williamdunne: ich habe eine gross hose schlange is about all I remember from three years of German lessons
adlai: is the middle number vwap?
williamdunne: justJanne: I'm pretty sure a 55 yo Pittsburgh steel mill worker would have the connections to get one of those there fancy emails
mircea_popescu: justJanne well on the plus side now you can voice.
assbot: Successfully added a rating of 1 for justJanne with note: 55 yo Pittsburgh steel mill worker posing as 19 yo girl on the interwebs.
mircea_popescu: !rate justJanne 1 55 yo Pittsburgh steel mill worker posing as 19 yo girl on the interwebs.
williamdunne: You need a lord to do that
cazalla: 14/f/cali oldest fbi trick in the book
mircea_popescu: http://trilema.com/2015/full-disclosure-4096-rsa-key-in-the-strongset-factored/#comment-114229 << lol check it out, ~they~ are going to ~lend me~ credence. i've been visited by backwards world wtf is with today.
mircea_popescu: anyway, get in the wot, then you can voice.
mircea_popescu: that totally kills the whole thing. i bet you're not even from cali.
justJanne: sorry, forgot to update it -.-
justJanne: oh, btw, need to update that.
decimation: you can see the logs at log.bitcoin-assets.com
justJanne: Meh, too lazy to copy it from my other PC, I’ll just make a new one and sign it with my old key later
decimation: justJanne: Someone compiled a list of ips that originate dos'er
decimation: justJanne: no problem, make a new subkey or extend the date
justJanne: danielpbarron: looking into it, but just found out my last GPG key’s validity ends this month
danielpbarron: justJanne, while you're waiting, read this: http://wiki.bitcoin-assets.com/first_steps_in_bitcoin-assets
justJanne: anyway, let’s wait for that DDoS-bot ;P
justJanne: at least so that one doesn’t discover their botnet that easily
justJanne: but yeah, I was kinda surprised, would have assumed they’d put the control for the botnet on a different system
williamdunne: Guessing for some reason they thought it would be a swell idea to use the IRC server for additional DDoS power?
adlai wonders whether any of the strongset edges point to the diddle
justJanne: assumed as much, but I have no experience with them yet, and was surprised seeing one in the wild
williamdunne: justJanne: Thats an IRC botnet
trinque: it'll be interesting to see how much longer that stays at #1
trinque: and the abrupt rise of the rebuttal
trinque: check out that precipitous drop
danielpbarron: and this http://log.bitcoin-assets.com/?date=06-01-2015#966322 ☝︎
assbot: Logged on 08-12-2014 17:59:30; asciilifeform: incidentally, if anyone bothered to read the packet dump i posted a while ago, they should know that the ddos bot uses misconfigured consumer routers (upnp reflection)
justJanne: Sometimes when I get DDoSd I run nmap against the attacking servers, one time I found a small IRC server with only one channel, in which were 256 clients all with just a number as name, and one other client sending specific commands every few minutes ☟︎
justJanne: BingoBoingo: It should be easy to find.
BingoBoingo: justJanne: I dunno what nick it uses. Never much cared to try identifying it.
justJanne: BingoBoingo: tell me when the bot is online, I’d like to analyze the traffic xD
BingoBoingo: justJanne: Yeah, just anyone without a freenode cloak who joins when their spybot is online here to pull the trigger
justJanne: So, they really DDoS random people?
mats: if you read this -- please stop by for another friendly conversation
BingoBoingo: People examining the traffic spotted that most of the zombies were ntp reflection and stuff anyone could walk away with, and they likely did leaving less to hit here with.
williamdunne: lol what a tool
justJanne: I got some traffic on my system from 159.118.187.45 accessing my server via HTTPS and sending a few thousand GET requests, but nothing really devastating
BingoBoingo: justJanne: Well the person doing it at first called themselves the reddit police and started by DoS'ing sites affiliated with regulars here. Then the sites beefed up and weren't so easy to DoS. So now they's had to settle for messing with home internet connections.
danielpbarron: i heard that it just targets the user who most recently joined, and especially if it is a new hostmask
justJanne: Reminds me of that guy spamming a gaming channel with links to their DDoSing company
BingoBoingo: justJanne: It isn't anything done by any of the channel regulars. It's just some butthurt dickbag with an excess of unwarranted self importance who imagines they are saving the world by DoSing every ip they spot here
justJanne: I mean, I see some traffic, but it’s minimal.
justJanne: Nah, I was just reading on the RSA factorization article where someone claimed this channel would still DDoS everyone who joins. Sadly I can’t see any of that (was hoping to see if it actually is true xD)
decimation: well, then sjw is where it's at
mats: decimation: i'm just happy to find a fun action movie that passes the Bechdel test
mats: (they tend to shit on everything)
mats: http://www.metacritic.com/movie/mad-max-fury-road << surprised metacritic treats it so well ☟︎
mats: in other news, the new Mad Max picture is quite good
cazalla: wasn't just me though, he had my mother out there doing the same thing
mats: i drank something like 6-7 litres of water that day... missouri is hot as fuck during the summer
mats: http://terminallance.com/2015/04/10/terminal-lance-374-no-party-like-a-working-party << basically this.
cazalla: http://log.bitcoin-assets.com/?date=18-05-2015#1135780 <<< did this one countless times, not as punishment though, old man forced me to do it along the fenceline so he didn't have to whippersnip it ☝︎
mats: i spent the whole day (0900-1600) with some other trainees cutting grass at battalion hq because one of the nubs in my squad saved his granola bar from the mess hall and put it in his locker where it was discovered
assbot: Logged on 18-05-2015 00:39:54; pete_dushenski: some kids helped in teh kitchen, some cleaning garbage.
cazalla: http://log.bitcoin-assets.com/?date=18-05-2015#1135775 <<< heh we had this even here but i'd walk off with the group which cleaned dishes the night before, never washed as much as a plate ☝︎
pete_dushenski: you call that grass ? i trim more manbush than that on a monthly basis.
pete_dushenski: decimation no doubt. it wasn't *that* expensive, at least compared to the bbyo summer camps.
pete_dushenski: i wrote for the newspaper, wrote mad magazine-esque fake nooz
decimation: sounds like a good way to save on staff costs