tmsr - Search: a

94800+ entries in 0.765s

asciilifeform: at a certain point i'ma have to make it a batch thing

Framedragger: http://btcbase.org/log/2016-07-18#1504926 << in truth, use a sane browser like lynx :) ☝︎

asciilifeform: it has a tremendous qty of ram, without which whole experiment would be quite impossible

asciilifeform: (if it were a commercial thing, it would probably live on a large farm)

asciilifeform: and whole thing is a couplaehundredlines.

asciilifeform: and it lives on ONE box, not a cluster or wtf.

Framedragger: and e,N,IP for the additional 1.82M key ball is in the http://95.85.10.71:8000/all/openpgp/ssh_openpgp_diff_2016-07-13.tar (file at top, directories under contain the openpgp'd versions). hope this makes sense, it's a bit ad hoc

Framedragger: asciilifeform: i implied that i'd be interested to maybe write an api; if everything's in postgres properly indexed, should be fine. hey i'm a masochist, all the better for tmsr!!1

asciilifeform: (a mod with 2 or more ips gets a colour; plot each ip on the traditional 2d grid, and connect with line of that colour.) ☟︎

a111: Logged on 2016-07-18 16:19 mircea_popescu: let's give Framedragger a courtesy ping seeing how it's all his data.

Framedragger: http://btcbase.org/log/2016-07-18#1504774 << ftr, there's a consensus mechanism, so it's not "everything works or everything's broken" ☝︎☟︎

asciilifeform: http://phuctor.nosuchlabs.com/gpgkey/69420B90B8B1C02C8C0E3F9F591801396FE97A6C87714A63D64C25EA47B5B88E << this last one is interesting. 'usaa' is a bank.

asciilifeform: same garden hose, for cake batter and for kerosene, i dun have a second.

jurov: Still. It's just a simple table without js.

asciilifeform: a winner:

asciilifeform: 'ip' is not a field in my db !!

asciilifeform: it is a valid point: there is no physical way to distinguish 'all connected to same box' from 'boxes with dupe key'

mircea_popescu: well, at least it offers a hierarchy of "in which order to factor keys"

asciilifeform: typically from a single /16.

asciilifeform: mircea_popescu: wwwtronics is a misery.

asciilifeform: but doing just about anything to this beast is a misery bordering on self-appendectomy

mircea_popescu: don't worry, sucking cock doesn't make you a whore!

mircea_popescu: if you want a csv version, why not make that. if you're making a html version, should have pages. ☟︎

asciilifeform: my current hypothesis is that enemy was a little more clever than reported by the bocks, and divided dupe keys into equivalence classes

mircea_popescu: it's a 550kb page!

asciilifeform: (the dupes page is a rogue's gallery of these.)

asciilifeform: i kept it a 1pager so i can grep

mircea_popescu: let's give Framedragger a courtesy ping seeing how it's all his data. ☟︎

mircea_popescu: i'm guessing phuctor is right on schedule : just about time for yet another paper, a month after the prev a month after the prev etc.

mircea_popescu: wtf is this anyway, people decide to use a single key on all their boxes ?

mircea_popescu: i would say as a matter of policy we should immediately hijack, copy and completely wipe these boxes.

mircea_popescu: this seems to me not a case of "key baked in dsl modem" ; but a case of "someone is running software which can be made to create deliberately weak keys in certain deployment contexts"

mircea_popescu: so is anyone going to actually bother a) factoring the ssh keys found weak ; b) go own the machines, copy over their ssh agent ; c) hack it apart see wtf caused the collisions ?

mircea_popescu: good thing you can't use timings and other side channels to unmaks them when such a thing happens.

mircea_popescu: mats what'd you use as a price signal ?

asciilifeform: it was a handy thing

asciilifeform has long wondered: whether tmsr will have a new bitbet

mircea_popescu: "Tonga will be permanently shut down and all associated crytographic keys destroyed on 2016-08-31. This should give the Tor developers ample time to stand up a substitute. I will terminate the chron job we set up so many years ago at that time that copies over the descriptors." << if there were a bitbet i'd put a little on "there will not be a replacement in time"

mircea_popescu: well i was going a little further up the tree.

mircea_popescu: jurov from aluminum ?! with what, a 300 amp house wiring arrangement ?

asciilifeform: jurov: the thing starts life as a casting, yes, though.

mircea_popescu: yes, sure. if i was selling a rifle, and it had a wooden reciever, would you buy it ?

asciilifeform: mircea_popescu: ar(m16) 'receiver' is not a pressurized part, it just holds the mag and the trigger clockwork

mircea_popescu: so if i'm going to make like... three ? receivers, why buy this cuisinart for 1500 when i could just buy 3 guns and a six ounce bag from tyrone ?

asciilifeform: 'has a machinable area of 8.25″ x 2.95″ x 2.35″, optimized for machining AR-15 and AR-10 receivers' << mega-l0l

asciilifeform: http://btcbase.org/log/2016-07-18#1504707 << think for a minute. 1500 (about ~triple the cost of making the mill yourself from surplus partz) AND NOW BE ON THE LIST ☝︎

a111: Logged on 2016-07-17 19:58 asciilifeform: 'Mr Vancel said the men were shooting at each other before the officers arrived. "This was not a 'come at police' situation they weren't targeting the police at first - I don't assume so - because these were men out here shooting at each other in an empty parking lot until the police showed up and it turned into a gun battle," he added.' << lel

mircea_popescu: he tells himself this is a stepping stone to a carrier as congress gofer - where he'll suck his boss' cock and do the same thing to "laws"

asciilifeform: but this could change at the drop of a hat

asciilifeform: and, interestingly, won't even make the 'receiver' from aluminum billet, you need a '80% complete' one

asciilifeform: it is a fairly ordinary, and very cheaply made, cnc grinder thing

asciilifeform: it is almost as if they all heard napoleon's 'in every private's rucksack there is a feldmarshal's baton'

mircea_popescu: a fool's game, all sound and fury, signifying nothing.

asciilifeform: i dun even own a chronoscope powerful enough to see this.

mircea_popescu: if qntra sells to... i dunno, who hasn't bought anything in a while, apple say ? for a perfectly market-reasonable hundred billion dollars, then a shareholder that bought however many shares for however many bitcents will receive however many hundreds of millions of dollars.

mircea_popescu: how not ? you own a share of x item that's worth a lot.

mircea_popescu: the only impact they'll have on anything is if i decide to use their skulls to remodel a wall. then they'll impact alright, and even temporarily color things.

asciilifeform: 'The Web of Trust is a buzzword for a new model of decentralized self-sovereign identity. It’s a phrase that dates back almost twenty-five years, the classic definition derives from PGP. But some use it as a term to include self-sovereign identity authentication & verification, certificate validation, and reputation assessment, while the vibrant blockchain community is also drawing new attention to the concept we aim to reboot it.'

mircea_popescu: http://btcbase.org/log/2016-07-18#1504597 << a) beautiful to see phuctor work as gcd proper, innit ? and b) wtf is with these broken ssh keys, they're all used on narrow ip spaces. third case today it's xx.xx.xx.yy vs xx.xx.xx.zz sort of thing ? ☝︎

mircea_popescu: there;s a group of pumpers working them.

thestringpuller: Anyone else notice a trend that altcoins with high BTC trade volume tend to go accidental ponzi?

mircea_popescu: (i only bother with the reference because it's a very convenient example of many thousands extant that "nobody knows about".)

mircea_popescu: i can't quote the item for lacking a title ; romanian copies are curated and collected by ioan ursu as "historia turchesca 1300-1514), editura academiei romane, 1910 - where it's found at page 91 and urm.

mircea_popescu: i fuora della terra, il quale si teneva, et era fornito, ma perche le vettovarie erano venute a manco, non si stette a perder tempo, et ritornato il campo per un'altra via, venissemo ad un forte castello, posto in monte, nel quale si trovava esser li prigioni del Turco, che furono presi l'anno avanti supra inverno, quando fu rotto Soliman Bassa, et fatta esperienza de haver detta fortezza, vi furono piantate sette bocche di b

mircea_popescu: Framedragger wordplay not present ; note that this is a work of fiction - for instance the "killing of the commander of artillery" actually happened during a siege by mahomed 2. apud giovanni maria angiolello, Venetian banker to the sultan : "Era il resto di Suzava con fossi et palanche circondata, le case et chiese erano di legname coperte di scandole, solamente un castello v'era fabricato di pietra et calcina, a coste, et d

a111: Logged on 2016-06-01 17:49 asciilifeform: btw when i went down into the snakepit with several dozen renowned 'cryptographers' earlier this year, i asked a few folks about this.

asciilifeform: jurov: i ended up in a delegation to an even lamer darpa thing, at one point, it was lysenko-level crapolade

shinohai: Maybe there could be a dapp for that.

jurov: "Cyber Grand Challenge: a competition that seeks to create automatic defensive systems capable of reasoning about flaws, formulating patches and deploying them on a network in real time."

a111: Logged on 2016-07-18 13:05 Framedragger: ...but yeah. the last para is a kind of foreshadowing i imagine, skeleton of a giant and all. such a strong image, incl of what's to come for them...

a111: Logged on 2016-07-18 11:31 mircea_popescu: i don't agree with his illuministic/humanitarian blaming of the hardware, i believe we can't have computers until and unless impaling every single derp currently involved in computing in any capacity, but this looks like a dispute for the ages.

Framedragger: ...but yeah. the last para is a kind of foreshadowing i imagine, skeleton of a giant and all. such a strong image, incl of what's to come for them... ☟︎

shinohai: Always got to have a shitty app/

mircea_popescu: i don't agree with his illuministic/humanitarian blaming of the hardware, i believe we can't have computers until and unless impaling every single derp currently involved in computing in any capacity, but this looks like a dispute for the ages. ☟︎

mircea_popescu: especially his discussion of kqueue and the hashtable/array duality + fd_getfile workings strictly indicates a) he's an idiot ; b) that http://trilema.com/2016/cargo-cults-a-case-study/ 's "This is what cargo cultism is, you see : memetic stupidity, inescapable for the aculturated. Even if they try. Especially if they try." is exactly right and, sadly, c) that alf is exactly correct : we can't have computers as a continuation

mircea_popescu: this is a broad meeting not a board meeting.

mircea_popescu: incidentally, weird that the capon population doesn't come up with this, you know ? there should be The Office Slut, a magazine, depicting and discussing items of juvenile interest.

shinohai: Is this what a board meeting of tmsr would look like?

a111: Logged on 2016-07-18 02:27 hanbot: asciilifeform it's when they don't deliberately tent their fingers with evil glee (or alternatively, pet a sleeping cat from comfortable armchair) afore launching Plans to Set the Werld on Fire.

asciilifeform: which is a fallacy because... correct-c still is not conducive to fits-in-head; is not readily distinguishable by naked eye from underhanded-c; cannot provide rational guarantees of handling error conditions mid-way; and 10,001 other defects that don't look like defects to folks who grew up with crippled systems

mircea_popescu: but altogether the argument seems to me something like "stick shift vehicle will always end in a crash".

mircea_popescu: not necessarily because i'm proposing "data" ie, "here's a meaningless, unstructured pile" or "gotta do your sorting in software because we're too busy doing three level caching and besides, not like sorting is a solved problem" are workable technological choices.

a111: Logged on 2016-07-17 17:06 Framedragger: sure, open source culture is mostly a pile of crap, with little to no reflection on the culture *itself*, hard to disagree with you here.

mircea_popescu: http://btcbase.org/log/2016-07-17#1504216 << isn't this kinda strange ? the sum total of their reflectivity is inept bullshit a la "how many women" etc. this is generally the halmark of stupid people, n'est pas. ☝︎

a111: Logged on 2016-07-17 17:03 Framedragger: (well to be true, 'throw away openssl' has been seriously contemplated by any a folk recently, i would wager a guess. but perhaps much less so with the latter, sure.)

hanbot: asciilifeform it's when they don't deliberately tent their fingers with evil glee (or alternatively, pet a sleeping cat from comfortable armchair) afore launching Plans to Set the Werld on Fire. ☟︎

asciilifeform: '...all the grain needed to support a village fits in a hole so small you won't likely find it in a week of searching. A week you don't have.' << this led to many lulz during ru time of troubles in 1920s

mircea_popescu: asciilifeform guy was a poet/novelist mostly.

mircea_popescu: "in a dumnezeirei carte e scris ca omul se desparte de tot ce-i e mai drag pe lume, dar sfinta carte spune-anume ca despartirea nu-i pe vecie, ca revedere-o sa mai fie. nu-ti spun adio, la revedere! la revedere-n alte sfere!"

mircea_popescu ended up reading ancient gravestones from that translation, get a load of this :

asciilifeform: (it was a 3-parter, took ~40 years to make whole thing...)

asciilifeform: otr is a sad sack of crumbled brick, yes.

Framedragger: the latter seems hard on a practical level, even if very admirable. maybe it's a rationalization of my laziness, though

mircea_popescu: (and as a general rule, never read a summary unless you own the producer.)

mircea_popescu: i dunno, maybe it's opaque without a lot of other bits not directly obvious to me ; but until i hear better i'll continue to believe it directly works.

mircea_popescu: whart we do here would suffer from delay ; but would not benefit from encryption. shit, there's a log anyway.

mircea_popescu: generally, tmsr stuff is very powerfully innovative exactly for this reason : that it utterly rejects ~very well selected~ priors commonly shared by "community consensus". it's a bunch of people that "can't spell properly", but not for lack of knowing grammar.

Framedragger: which is a fresh perspective for sure, regarding 'infosec' etc

mircea_popescu: this is insanity, though. suppose tomorrow you decide to implement say http://trilema.com/2013/nobody-could-have-foreseen-their-using-a-plane-like-a-rocket/

mircea_popescu: i think we broached this before ; anyway - perfect forward secrecy is not a trivial matter.