77600+ entries in 0.596s
Framedragger: also, as you noted earlier, there's
a good chance
a bunch of ssh *client* keys were generated on those machines, too, so also possible to try to bruteforce-login with generated keys (to servers which have broken rngs)
a111: Logged on 2016-12-28 10:37 jurov:
http://btcbase.org/log/2016-12-28#1591566 << not
a good idea, because if you pass something clearsigned/encrypted, gpg will decrypt it to stdout, so you end up parsing dangerous user input
mircea_popescu: 10k in
a 20mn sample makes 100s of k's unlikely dunnit ?
jurov: venus colonization is most feasible in the atmosphere, there's
a layer with ~20C temperature, ~1atm pressure, breathable N2-O2 atmosphere is lifting gas, you can have 30hour days by surfing jet streams ...
a111: Logged on 2016-12-28 02:17 phf: there's not much discipline on unix with stderr/stdout. particularly gpg seems cavalier with it. so i wouldn't even bother with error/output separation. i'd make it always return
a single value, string that's combined stdout/stderr, and fail when status code is not equal to zero. maybe add
a key argument, that splits them if need be, but only once there's need.
a111: Logged on 2016-12-28 02:39 phf:
http://btcbase.org/patches/hashes_and_errors#L118 you don't really want to do this. you're subseq'ing there to strip the
a/ b/ but that's not at all
a guarantee! i have
a vpatch with `diff -ib -ruN /Users/pf/cmucl20d-build/src/hemlock/abbrev.lisp src/abbrev.lisp` in it for example. at the very least you want to abstract it away into its own function. that would correctly operate on
a hashed-path datastructure.
mats: there's
a sense of other-ness wherever i'm at, in new england
mats: i mean, i grew up in sv, so i live in
a weird in-between of us and cn culture
davout: what do you need your nails for then? get yourself
a pick or something
a111: Logged on 2016-12-28 05:20 ben_vulpes: guitarists who type
a lot: do you always trim both hands?
BingoBoingo wonders how many hamplanets need be flung into Venusuvian orbit in order to make
a credible moon that spins that bitch around faster.
phf: ben_vulpes: i think best way to answer that question is to read
a lot of existing code from different backgrounds (pre-2000s code, famous people code, etc.). my rule of thumb is that you use optional if ~at call site~ it's still obvious what the argument means. otherwise you promote it to keywoard. (run "foo" `("-p" "bar")) makes sense, but (run "foo" `("-p" "bar") stream) you start guessing. is it input stream? is it output stream?
BingoBoingo starting to think that mebbe Venus just needs
a moon
ben_vulpes:
a shit i'm going to have to rewatch this.
phf: not enough reverb. i always thought baliset being
a 70s instrument, considering that they had those portable source of energy in their shields, would be
a kind of guitar moog
phf: deep purple covers on
a loop?
ben_vulpes: some 1.5 years back i leapt off the couch and demanded
a hand-held instrument to awaken dormant pathways
ben_vulpes: i play at least 30 minutes 4 times
a week
ben_vulpes: guitarists who type
a lot: do you always trim both hands?
☟︎ mircea_popescu: asciilifeform masamune;d better be. ben_vulpes hey, find the hole, get
a prize.
ben_vulpes: actually whole thing is likely just
a ploy to get pre-rooted boxen into republican ops
mircea_popescu: asciilifeform suspicion is unwarranted for the following reason : if he was aware he's packaging crap, he'd not be courting you ; or him. because unlike him you do have wwws. so either he's patently insane or else got something. in either case,
a few hundy, not the end of the world.
a decent escort is ~same.
ben_vulpes: now if only i could find
a graceful way to muffle compiler warnings for functions...
mircea_popescu: dude he sold 4 boxes, if he makes enough for
a decent meal out of that he's ahead of the game.
gabriel_laddel_p: asciilifeform: say that you derp around with MGL_MAT and make
a neat handwriting recognition module like the HP Compaq TC1100 had.
gabriel_laddel_p: I don't want someone to be able to look up
a webpage and debate you about what it is that they get.
ben_vulpes: anyways, otaku gaijin shit aside
a) do you have videos of this thing working or am i supposed to believe that it does because you now have
a key you can use and b) how much for the whole circus, delivered
ben_vulpes: gabriel_laddel_p: it's
a pun on moon hotels
ben_vulpes: so that there are
a set of operations that just happen to be implemented with "external programs" is no reason their errors should inherit from "external program" errors
phf: you have
a set of (incomplete and adhoc, but there) crypto operations. they speak their own language. they can succeed, they can fail, but none of that has to do with "external programs". that's
a different set of operations that deals with unix etc. that speaks its own language
phf: no, that's no the issue, it's more like
a complexity along arbitrary lines
phf: but your bad-signature is an external-program-error, so the whole things is
a swiss chese
phf: well, more important whose reporting the failure. if you want to pass through to the user the fact that there's
a shell call out somewhere and it has all kinds of mechanisms. but verify should probably speak for itself in its own terms.
ben_vulpes: brin mentioned
a trick with endothermic lasers
mircea_popescu: point is, there are expensive things and cheap things. compensating for
a lack of atmosphere is fucking expensive. properly cooling is nothing compared.
a111: Logged on 2016-12-28 02:25 phf: also in the same handler-bind you're losing
a branch. if there's an error, but it's not "BAD signature", then the whole verify silently succeeds. you probably want to (error c) in the else branch to rethrow whatever
a111: Logged on 2016-12-28 02:17 phf: there's not much discipline on unix with stderr/stdout. particularly gpg seems cavalier with it. so i wouldn't even bother with error/output separation. i'd make it always return
a single value, string that's combined stdout/stderr, and fail when status code is not equal to zero. maybe add
a key argument, that splits them if need be, but only once there's need.
a111: Logged on 2016-12-28 01:58 phf: also as
a rule you don't really want to let string output streams escape their scope. they don't have standard type (one cmucl it's lisp::string-output-stream for example), so you can't test for it, and for all intents and purposes they act as incomplete builders: you can't do anything with them except get their value, so why not get value there and then?
mircea_popescu: "To whomever it may concern - I strongly advise against hiring the bearer of this letter, as she is not sufficiently qualified to take
a piss."
mircea_popescu: what the fuck happened to "can her in front of the whole staff, in the terms that she may seek employment once she conquers the requirements for preschool ; and if she wants
a recomendation letter this is going in the first paragraph."
mircea_popescu: "Obesity can be
a disability in the EU. That makes it
a sticky legal issue and given that she is the lone female, that makes it doubly so. If she's transgendered (which is possible given that she stands up apparently) then it's triply so. This is so intertwined in legal ramifications I can't imagine anything you can say or do (other than what you are already) that doesn't need
a lawyer to make sure you don't end up in
a suit.
a111: Logged on 2016-12-28 02:17 phf: there's not much discipline on unix with stderr/stdout. particularly gpg seems cavalier with it. so i wouldn't even bother with error/output separation. i'd make it always return
a single value, string that's combined stdout/stderr, and fail when status code is not equal to zero. maybe add
a key argument, that splits them if need be, but only once there's need.
phf: it's an "overkill" for
a "unix script", because you throw all that data out anyway soon after constructing it. but in
a lisp instance, when you already have all that data in the ~correct form~ you can start writing
a dozen of different functions to analyze it, without getting bogged down on format trivia all over the place
phf: so instead of doing subseqs you can just (pathname-path ...), you check for "false" by
a simple null check, you check for hash equality with eql or =
phf: fwiw btcbase parses path component into
a pathname, and the hash is (member nil bignum)
phf: the main folly are the unixisms all over the place. lisp works with
a clear read/eval/print cycle. read means that you want to take outside input and convert it into
a concrete data structure. so you shouldn't have
a hash with strings in it. things like (string= "false" (gethash 'hash c)) should not happen so far down the call chain. your ~reader~ should convert the input data into
a format that's easy to work with. the check could've
phf:
http://btcbase.org/patches/hashes_and_errors#L118 you don't really want to do this. you're subseq'ing there to strip the
a/ b/ but that's not at all
a guarantee! i have
a vpatch with `diff -ib -ruN /Users/pf/cmucl20d-build/src/hemlock/abbrev.lisp src/abbrev.lisp` in it for example. at the very least you want to abstract it away into its own function. that would correctly operate on
a hashed-path datastructure.
☟︎☟︎ phf: also in the same handler-bind you're losing
a branch. if there's an error, but it's not "BAD signature", then the whole verify silently succeeds. you probably want to (error c) in the else branch to rethrow whatever
☟︎ phf: there's not much discipline on unix with stderr/stdout. particularly gpg seems cavalier with it. so i wouldn't even bother with error/output separation. i'd make it always return
a single value, string that's combined stdout/stderr, and fail when status code is not equal to zero. maybe add
a key argument, that splits them if need be, but only once there's need.
☟︎☟︎☟︎ ben_vulpes: that inspection is only performed on
a bad exit code
phf: also as
a rule you don't really want to let string output streams escape their scope. they don't have standard type (one cmucl it's lisp::string-output-stream for example), so you can't test for it, and for all intents and purposes they act as incomplete builders: you can't do anything with them except get their value, so why not get value there and then?
☟︎ phf: that run is
a bit weird
mats: >... we discovered numerous devices that were used for "smart home" services, to include
a "Nest" thermometer that is Wi-Fi connected and remotely controlled,
a Honeywell alarm system that included door monitoring alarms and motion sensor in the living room,
a wireless weather monitoring system outside on the back patio, and WeMo device in the garage area
phf: i for one am looking for to
a gattaca future, where i have to hire
a standin for myself. to run amazon echo and nest and facebook and all the other things like that so that there aren't any irregularities
mats: maybe bates had food poisoning and flushed
a buncha times
BingoBoingo: asciilifeform: would be
a biter with insufficient venom to kill rather than emotionally wound
mircea_popescu: from what i read of the mythical founder, he read very much like
a young naggum / gl
phf: kind of like cat-v, from recent memory, was
a fledgling tmsr at one point: mp died, asciilifeform's left elsewhere, maggots still there
phf: most of the things seem to have sane core, which you can dig for for
a long time, but it's there, and the reason is that ~doing anything at all~ is so much effort, everything that's done is
a byproduct of some human being constructively spending energy at one time in one place.
phf: it's called v8, which is
a case of talented programmers working for fuhrer
ben_vulpes: jurov: didn't polarbeard or whomever threaten us with
a js v?
mircea_popescu: there is
A LOT of strength in this, having
a core of libs/utils that aren't merely written, nor merely reviewed, but TRANSLATED
mircea_popescu: but as
a principle, the shell exists for
a human operator. shelling from code is much like taking knives and forks, melting them, and trying to dropforge tools. they WERE ALREADY metal that was forged into something. go to that source, change that from knives to wrenches or w/e you are doing. no need to involve the whole supermarket chain to sell you metal ingots in fork shape at 20bux
a half dozen
mircea_popescu: if the thing you're shelling to is actually the right thing, take the code put it in
a lib or in your application.
mircea_popescu: now then. can the lispheads live with the idea of an ada tmsr-cryptolib ? perhaps with it as
a reference and
a lisp copy ?
mircea_popescu: ben_vulpes do i have such
a reputation for blocking work ?