724400+ entries in 0.387s
Anduck: Apocalyptic, mircea_popescu: if it works correctly,
then
the message is wrong. "You must auth with gribble first."
chairman_meow: assbot isnt working properly. I already ident'ed with gribble. I PM'ed !up
to assbot, but it's failing
mircea_popescu: but no, let's discuss nonsense instead of how fuckwit danny failed
to enter
the wot,
then failed
to heed when mp said get in
the wot or i'll fuck you up,
then got fucked up.
mircea_popescu: as if anyone gives a shit if danny brewster's daughter ends up in a snuff video or in cypriots have
talent
mircea_popescu: but a bigger part of which being
that when
they go
to shit,
they can
try
to divert
the discussion on unrelated emo
topicsa
mircea_popescu: for many reasons, part of which being
that
the emotional fuckwits who "invest" with
them react
to such
mircea_popescu: Apocalyptic except it works like
this : scammers love
to mention
their kids/wives (anyone recall patrick harnett ?)
fluffypony: kakobrekla: no, only if it's local, I'm assuming
this isn't someone asking
to go on an overseas holid^z^z^z^z family emergency
Apocalyptic: "The lesson for anyone in
the public domain should already be clear: Don't
try
to answer rumours on Reddit, unless you are also prepared
to provide cast iron proof of what you say, don't discuss your family affairs on a public forum, and especially don't mention your children -
this is stupid beyond belief"
bounce: apparently biometrics stays afloat on
the pretty pix in
teh moveez, for if you spend but a few seconds
thinking about it, it becomes obvious
that it cannot be a good fit for
the purpose
fluffypony: "Yes I am Mirceau Popescu soon
to be extradited
to
the USSA"
BingoBoingo: bounce: A big point is
that OpenBSD is already on Vax working well, and
they are very unlikely
to abandon it.
BingoBoingo: bounce: Sure but I dunno what a MIPs cooks as. A Vax
though is a noble animal
that has
the potential for a delicious meat pie. Also just
the sound of Vaxberry Pie works.
fluffypony: Apocalyptic: I always ask if I can go along
to provide support :)
Apocalyptic: seriously
the guy isn't even
trying
to sound legit
Apocalyptic: "I have a family funeral
to attend." #1 BS excuse
fluffypony: it could start with
the difference between your and you're,
than and
then, and (to spite me) principal and principle:-P
bounce: bingoboingo: later model MIPS in new process might be interesting
too
mircea_popescu: bounce
tbh biometrics was a
thing of
the 70s i
thought. pretty much all sf of
that decade had it, and by 90s it was in every action movie out
there.
mircea_popescu: but you know... what now, make books
that even people who won't learn
the alphabet can read ?
fluffypony: mircea_popescu: agreed. is
this about
the
time I self-identify as a bitcoin-assets cultist?
fluffypony: mircea_popescu: so survival of
the secure-ist?
mircea_popescu: <fluffypony> unless you believe user education is going
to work and everyone is suddenly going
to start using secure one-time passwords :-P << i just belive everyone who isn't is going
to be relegated
to
the salt mines. why should every human qualify as a "user" ?
mircea_popescu: fluffypony "password1234!" is ultra-secure << remember
the 88seals88 and pokerseals etc pws ?
bounce: it's
the industry standard, with pentesting and other such "due diligence"
mircea_popescu: "I assure you our system is not fundamentally flawed,
there are bugs and we
try
to find
them before
the customer."
bounce: the only real fix is
that we really start
thinking about
this, and indeed, educate most people --which used
to be possible,
they learned
their letters and numbers
too, after all-- instead of just
throwing
the latest in buzzwordery at it. like "biometrics".
fluffypony: bounce: also most of
the iOS bypass bugs I've played with have exposed photos, or
the dialler, or something...not a complete unmitigated unlock
bounce: the
thing is
that
this "general populace" includes everyone, which
to
the fone company certainly includes *you*
fluffypony: bounce: I fully agree, but again, we're not
talking about sophisticated attacks here
fluffypony: Naphex: yeah but
that's a different attack surface entirely, I'm just
talking about
taking
the general security level of
the general populace up a notch
bounce: then
there's
the radio interface side
bounce: what was
that lovely bypass bug in iOS again?
fluffypony: I don't
think
there's been a successful attack on
TouchID / Samsung's fingerprint login
that lifted a fingerprint from
the device and used it
to unlock it?
bounce: sure, pickpockets and petty
thieves usually prefer billionaires,
that's a fact.
fluffypony: and unless you know I'm Bob
the Billionaire with Billionz in his Bank...why
target me?
fluffypony: you need
to physically control
the device
fluffypony: unless you believe user education is going
to work and everyone is suddenly going
to start using secure one-time passwords :-P
fluffypony: bounce: we're
talking about a significant improvement over
the current state of affairs,
that isn't snake oil
bounce: why yes, "make believe security" and other snake oil are awesome for
the general populace
fluffypony: which are more sophisticated and
targeted
fluffypony: and moves
the attack surface from drive-by, remove attacks,
to on-device/in-person attacks
fluffypony: stuff like
TouchID when coupled with iCloud Keychain is awesome for
the general populace
pankkake: maybe for unlocking
the phone if it has been unlocked less
than an hour ago, but I would never put more
trust in it
fluffypony: remember
that like 90% of
the world
thinks "password" is an ok password, and "password1234" is secure
bounce: hax! and yet you can see paypal deaffirm
their religious beliefs in fingerprint "security". no wonder
the hatted bunch keeps on having a field day.
pankkake: bio id will always be stupid, why even
try
assbot: [HAVELOCK] [COG] [PAID] 3.17320895 BTC
to 13`595 shares, 23341 satoshi per share
Apocalyptic: "Part of
the gains or losses for
that day are lost" is
this acceptable ?
bounce: pretty speedy response at least. but how
the fsck do you fail
to account for p/l on a day you "restart your systems"? what're
they running, batch-only dinosaurs?
jborkl: so might be why it looks heavy idk have not gotten
that far yet
jborkl: artifexd
ty - I am using a js cache on
the server
Apocalyptic: "but
they said
they are an industry-grade exchange !"
bounce: bit heavy on
the js for a page
that doesn't look like it should need any
artifexd: jborkl: Dude!
That is a seriously massive improvement!
mike_c: is lisp functional?
this seems odd.
mike_c: so i dump a 5mb buffer on
the stack?
mike_c: hardware garbage collection? what arch does
that?
BingoBoingo: C == Portable language
that is dangerous because it offers
too many points of failure, Java ==Portable language
that places points of failure in
the runtime
to avoid C's points of failure
Naphex: few cities in romania
that use our full solution for public
transport
bounce: page appears
to make some unwarranted assumptions in
the layout, but anyway
fluffypony: no clue if it progressed much from
there, I went on
to other
things
fluffypony: re-index, and fresh reports are available in
the morning
fluffypony: instead of live reporting off DB2 (each business unit pays for DB2 access
they use over
the month, so it's pricey) it was cheaper
to drop and re-copy
the entire DB every night
to a reporting DB
fluffypony: well
that was one of
the projects I was on
bounce: not a bad move otherwise.
though I'd still be mighty
tempted
to just quietly start and refactor parts until I have a fully working system, even if it
takes a few years
bounce: OS/2 does funky
things
to
the hardware, apparently a bitch
to emulate
fluffypony: because rewriting
the system would have been
too expensive, and IBM sold
them on OS/2 in
the 80s/90s
fluffypony: literally every single agent/manager/support person in
the home loans dept used
that
fluffypony: the one, Standard Bank, ran OS/2 warp in a VM for
their home loans client
fluffypony: bounce: from about 2003-2007 I was heavily involved with
two of
the local banks
fluffypony: and
then for some reason automation and
tooling written in COBOL
bounce: really should do linux (well, *BSD really)
thin clients at least for all
the desks, and something reasonable for a back-end. which might still be some mainframe or other.
fluffypony: lots of IBM DB2 on
the backend if it's really old stuff
fluffypony: bounce: and also seems
to be quite an MS shop in many parts, at least with
the older more established banks
bounce: bit of an old boys network, apparently. hard
to get chummy with if you're not one of
them.
Naphex: a lot more risk
to expect from handling money and bitcoins
then public
transport data
Naphex: i did lots of
this stuff before, so most come in natural