503500+ entries in 0.304s
jurov: hahaha so
the husqvarna joke works well
mircea_popescu: if placebo works, get paid. if it doesn't... "some DARKER force
than my powers..."
mircea_popescu: it occurs
to me... don't
these dating speshulists sound very much like
the classical shaman ? "you are under a
terrible dark curse kind sir" "i will fix it".
mircea_popescu: what you do is, you look for zombies. all it
takes is a good archive of vulns and a working grep.
then you
take your chances.
mircea_popescu: you don't have
to be a genius and read machine code
to find new holes.
that's for alfs.
assbot: Logged on 29-03-2015 16:19:20; Chillum: hint: look at past reoccurring vulnerabilities
that have been fixed and keep coming back
mircea_popescu: something
the imbecillians (is it ok if i refer
to people born in
the 80s as
the imbecillians, given
the poor results discussed yest ? generation y seems improper) all forgot.
mircea_popescu: it does speak of
the ancient and great power of
the irc,
tho.
mircea_popescu: Chillum ah yes,
that. but
this wouldn't really be a browser anyway.
Chillum: javascript can induce a browser
to send a post
that
tricks
the router into
thinking it is
that
Chillum: some routers automatically open a port when
they see a DCC command on sent from an internal computer on an IRC port
Chillum: you can open ports on a lot of routers by using ajax
to make a
http post
that looks like IRC commands
assbot: Logged on 29-03-2015 15:59:56; Chillum: I don't
trust pdfs, so many vulnerabilities in
the past
mircea_popescu: asciilifeform no i know, i was just amused at
ther possible solutions :D
assbot: Logged on 29-03-2015 15:48:55; asciilifeform: did we ever get anywhere in
the ntp-or-not debate ?
assbot: Logged on 29-03-2015 15:45:38; asciilifeform: otherwise all pogos will have
the same one (it is not stored in any kind of nonvolatile memory)
mircea_popescu: trinque ERROR: unknown (Most likely my bitcoind stopped working or
this page is
too large/complex.) < ?
Chillum: you don't have
to put verisign at
the
top
chetty: <Chillum>
the whole hierarchy of
trust used
to issue certs is of course bunk// for some reason when I read
that I wondered if anyone would
trust a cert issued by Obama? If not why would you accept one from any 'lesser' authority in
the same chain?
Chillum: the whole hierarchy of
trust used
to issue certs is of course bunk
Chillum: if you
take out key management and such, how do you feel about
the actual crypto?
jurov: ssl spec is
too complicated, hence inevitably buggy implementations
Chillum: until quantum computers are a
thing
Chillum: okay, gub'mint backdoor
then
nubbins`: <+Chillum> If I
told everyone it would get patched <<< lel
Chillum: there is always another
turd around
the corner, it is
the circle of life
jurov: will get replaces with just different
turd
Chillum: I sort of want
to make a portable rasp-pi
that automatically roots and
then secures wifi routers, as a public service
Chillum: just based off what I have seen in
the wild around here
mats: thats not
true at all
jurov: that's why nerds should maintain
them
themselves, and i don't mean reflash openwrt and forget
Chillum: most run arch linux under
the hood, often about 10 years old
mats: buy an edgerouter lite and
tell your isp
to send you a plain ol modem
Chillum: it is
the linux box
that nobody upgrades!
Chillum: Routers are a sad state of affair. Something like 70% of consumer wifi routers in
the wild are vulnerable
to heartbleed
punkman: I looked into something
that'd replace my modem/router but it seems I'll have
to build a mini-itx or something
Chillum designs a router
that fights back!
Chillum: hacking routers is good practice.
They don't fight back
Chillum: hint: look at past reoccurring vulnerabilities
that have been fixed and keep coming back
Chillum: If I
told everyone it would get patched
Chillum: openwrt can be rooted
too, particularly from
the internal network
jurov: why so few nerds set up
their own linux router?
Chillum: they can go from your malware friendly computer, root your router and live
there between you and
the internet
Chillum: I have a live cd and a laptop with no other storage I use for such
things
Chillum: not on
this computer at least ;)
Chillum: I don't
trust pdfs, so many vulnerabilities in
the past
nubbins`: gonna cave and set up a gentoo install on usb stick here later
today
Chillum: well it is
technically morning here
nubbins`: although
technically afternoon here
nubbins`: "The various
tarballs
that are downloaded by Buildroot are all stored in BR2_DL_DIR, which by default is
the dl directory. If you want
to keep a complete version of Buildroot which is known
to be working with
the associated
tarballs, you can make a copy of
this directory.
This will allow you
to regenerate
the
toolchain and
the
target filesystem with exactly
the same versions."
nubbins`: re: freezing buildroot config in
time
assbot: Logged on 29-03-2015 00:34:21; mod6: <+jurov> my mom was using "husqvarna" <<
they make my favorite chainsaws / best chainsaws imho
[]bot: Bet placed: 10 BTC for No on "The Winkdex: BTC $5000 or more in 2015"
http://bitbet.us/bet/1104/ Odds: 9(Y):91(N) by coin, 9(Y):91(N) by weight.
Total bet: 113.1868 BTC. Current weight: 77,122.
[]bot: Bet placed: 15 BTC for No on "BTC
to
top $700 before 1st July"
http://bitbet.us/bet/1128/ Odds: 11(Y):89(N) by coin, 11(Y):89(N) by weight.
Total bet: 128.96264834 BTC. Current weight: 78,425.
[]bot: Bet placed: 5 BTC for No on "BTC
to
top $413 before Songkran"
http://bitbet.us/bet/1122/ Odds: 10(Y):90(N) by coin, 13(Y):87(N) by weight.
Total bet: 33.07364715 BTC. Current weight: 22,066.
[]bot: Bet placed: 9 BTC for No on "BTC
to
top $500 before 1st May"
http://bitbet.us/bet/1120/ Odds: 11(Y):89(N) by coin, 14(Y):86(N) by weight.
Total bet: 157.6676222 BTC. Current weight: 30,686.
[]bot: Bet placed: 1 BTC for Yes on "Bitcoin
to drop under $150 before July"
http://bitbet.us/bet/1133/ Odds: 94(Y):6(N) by coin, 94(Y):6(N) by weight.
Total bet: 1.1 BTC. Current weight: 99,997.