log☇︎
594000+ entries in 0.355s
mircea_popescu: diametric i don't think anyone tries to clean servers. reinstall is the only pill.
joecool: most certainly timthumb, that script allowed you to upload any file trivially
diametric: "Removing a compromised website’s backdoors is difficult because it is not possible to be certain all backdoors have been found." lols.
joecool: after they fixed the issues
joecool: even the creator of timthumb doesn't suggest it anymore
joecool: a lot a of theme designers used it
mircea_popescu: ah. from what i see a lot of sites get owned through some sort of image plugin
diametric: joecool: quite possibly, the data i had was real world scenarios, so actual real world wordpress installations.
joecool: diametric: DNN would win most compromised in my experience, wordpress usually got compromised through crappy plugins (of which there are MANY to choose from)
punkman: well dunno about security, but once upon a time I tried to work with it and it made 0 sense
asciilifeform: statistically - christmas never comes for the goose.
diametric: at a previous job i had a decades worth of data involving compromised websites, and wordpress by far lead the pack in vulnerable and shitty cms
punkman: drupal's even worse than wordpress
asciilifeform: ^ massive total pwn
asciilifeform: mircea_popescu: this is the thing with bitcoin << well, halfway there. stokes appetite, yes. but can't satisfy hunger by rubbing stomach.
mircea_popescu: !up Takeshi
mircea_popescu: it's all been a "let the wife handle it" sort of whatever, while graham went on with "his real work" up until now.
jurov: lxr is a steaming turd?
mircea_popescu: from money and what poor idiots may get all the way to concordance mechanisms.
mircea_popescu: this is the thing with bitcoin. never before have been smart people motivated to consider a wide swath of issues
asciilifeform: mircea_popescu: http://www.w3.org/Tools/Prog_lang_filters.html << classic decay of civilization. 9 of 10 links - dead. and most of the systems are for producing 'auto documentation' - that is, made for satisfying retarded management, rather than to actually aid in study of code.
mircea_popescu: https://www.r3.org.uk/ "R3, The Association of Business Recovery Professionals is the leading organisation for insolvency, restructuring and turnaround specialists in the UK." but meanwhile www.r3.org.uk/styles/list.cfm?id=221 nike blazar
mircea_popescu: http://www.ocmetro.com/ << orange county experts. meanwhile www.ocmetro.com/pp.aspx up their butt.
mircea_popescu: no argument there, just... you know
asciilifeform: mircea_popescu: basic principle, you tell it how to tokenize a given language, the rest is concordance mechanism
asciilifeform: no one knows of a cpp to html-concordance gizmo that isn't a steaming turd ?
mircea_popescu: esp given the low weight.
mircea_popescu: and why have a fucking email anywhere on the site ? not like you need to be warned when you got buttraped, because super-speshul and errything.
mircea_popescu: www.usapglobal.org/webalizer/low-concord-11s.html << the spammers thank the usap for all the free hosting/google rank
[]bot: Bet placed: 20 BTC for No on "BTC network hashrate will exceed 1 Exahash/s before 2015" http://bitbet.us/bet/713/ Odds: 11(Y):89(N) by coin, 21(Y):79(N) by weight. Total bet: 54.81502285 BTC. Current weight: 14,770.
jurov: you thought NSA ate it?
jurov: yes i did get notification for the first one
ben_vulpes: jurov: the unsigned email did not arrive, so i must presume your filter is doing *something*
asciilifeform: what's php to do with it? in principle it could work for any language syntax
mircea_popescu: cuz php is the tool for that job and ppl are too good for php ?
asciilifeform: i always wondered why there isn't just a gizmo that eats a source tree and craps out html where any keyword that appears more than once is hyperlinked
asciilifeform: lxr << what a turd! wants 'apache', and to be a server, etc.
thestringpuller: isn't he that guy on ABC news
ben_vulpes: my mail client doesn't seem to have a problem sending plaintext emails.
thestringpuller: ^- these are pretty good
assbot: 213 results for 'from:asciilifeform turd' : http://search.bitcoin-assets.com/?q=from%3Aasciilifeform+turd
thestringpuller: !s from:asciilifeform turd
ben_vulpes goes to test
jurov: it generates crosslinked html from c sources have used it to hack
jurov: rithm, thx i remembereed lxr
rithm: there's actually some new appify thing that takes source code and make pretty .pdfs from it
ben_vulpes: those who wish to write messages to the mailing list must ensure that their messages arrive mutilated.
ben_vulpes: so what's wrong with a needle through which interested parties must pass their messages?
jurov: with another attachemnt the signature
asciilifeform: ben_vulpes: every email system everywhere appears to feel entitled to rape plain ascii in a dozen ways
ben_vulpes: forgive my mis/poor-understanding of the gpgmail thing, but...
jurov: lol... we miss that damn thing
ben_vulpes: <jurov> http://explo.yt/post/2014/10/29/some-dangerous-idea << my braindump about turdatron << UPNP was me, jurov
ben_vulpes: how would they know...
ben_vulpes: what is the net column?
asciilifeform: for n00b turdatronic engineers >> https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures
punkman: ben_vulpes: did you try the gpg multisig hack?
thestringpuller: linked but malformed! my bad. i'm trying to get better at this words thing.
mircea_popescu: oh i see it's malformed. thanks!
assbot: MPEx, the Bitcoin securities exchange.
ben_vulpes: i'd really like punkbot to take in the raw doc and .sig files. but...whatever.
ben_vulpes: or not validating the same doc...
ben_vulpes: this not being able to sign the same actual document thing is downright irksome.
ben_vulpes: mircea_popescu: ...conceptually possible << do clearsigned copies of the contract from both parties per S.WOL suffice?
assbot: How to leak sensitive data from an isolated computer (air-gap) to a near by mobile phone - AirHopper | Cyber Security Labs @ Ben Gurion University
mircea_popescu: 18k ups, that's something.
thestringpuller: TomServo beat me to it
kakobrekla in tears
kakobrekla: i just had the best meat plate i had in years!
undata: elementofone: loud idiot from mass; who'd have expected that...
asciilifeform: mircea_popescu: the smell.
mircea_popescu: asciilifeform the ip or what ?
mircea_popescu: prolly safe to email then followup
thestringpuller: mircea_popescu: had an article I wrote last night. BingoBoingo said he'd be in "the office" in the morning. I guess I can just send to their inbox.
thestringpuller: damn the editors are asleep
gribble: cazalla was last seen in #bitcoin-assets 14 hours, 31 minutes, and 35 seconds ago: <cazalla> http://qntra.net/2014/10/mit-bitcoin-project-goes-live/ less than a week to claim the coins, i wonder if what remains will be pocketed by someone
jurov: upon seeing the result.. well, i quite stepped into something
jurov: http://explo.yt/post/2014/10/29/some-dangerous-idea << my braindump about turdatron
gribble: Bitstamp BTCUSD ticker | Best bid: 340.48, Best ask: 340.63, Bid-ask spread: 0.15000, Last trade: 340.63, 24 hour volume: 11877.38045173, 24 hour low: 337.74, 24 hour high: 359.5, 24 hour vwap: 348.749963197
mircea_popescu: http://41.media.tumblr.com/52ce5e8ead58f62482a9ae7f96f9c7c5/tumblr_n8k4d0zXxN1s7xduro1_500.jpg << if only that were a nailgun, she could be a banker callgirl.
mircea_popescu: "Let’s take a moment and chat. No secrets or techniques this time, I just want to take a post and discuss my own personal strategies for consistently dominating almost every niche I enter. Instead of creating an objective and methodologies I’m just going to casually write and talk some details, because of course my strategies require quite a bit of work and aren’t for everyone."
assbot: Open Letter to Bitcoin Businesses: Why I'm closing my accounts - General - Bitcoin Foundation
mircea_popescu: johntraveller in that case you'd better get in the wot asap.
mircea_popescu: maybe they've not got to it yet.
mircea_popescu: punkman is the address on the linked page ?
johntraveller: and sit in my $200/mo apartment in china, slowly converting my british fiat into btc and planning business ideas that work once the fed’s printing presses stop spinnng
assbot: Bitcoin Address Tags - Blockchain.info
punkman: if anyone has a clue about bc.info tags, let me know why it hasn't verified https://blockchain.info/tags?filter=16
mircea_popescu: johntraveller http://wiki.bitcoin-assets.com/first_steps_in_bitcoin-assets << also a good thing to read, as a primer on the technology that is the fundament of our superiority.
johntraveller: mircea_popescu: thanks, though I’m planning on lurking for a while until I’ve read more
punkman: also, now there is http://deeds.bitcoin-assets.com/deed/BXZKQx2i/json and http://deeds.bitcoin-assets.com/deed/BXZKQx2i/raw
mircea_popescu: k so then it can just proceed with the bundles normally, irrespective of what happened to previous bundle.
mircea_popescu: consider the following situation : bundle 1 gets made, added, gets 1 confirm. bundle 2 gets created, gets added just as the blockchain reogrs.
mircea_popescu: yeah but i mean, better to queue the made txn than this i think
punkman: because only one tx in address
punkman: well gotta confirm previous tx to spent again
mircea_popescu: is this useful ?
punkman: added transaction broadcast retrying, and also bot will stop bundling if previous bundle tx remains unconfirmed
asciilifeform: mircea_popescu: 'he turned off the light, so the room will be empty'
mircea_popescu: asciilifeform remember the people who think whitening does something ?