253 entries in 0.627s
a111: Logged on 2018-12-03 10:39 spyked:
http://btcbase.org/log/2018-11-29#1875947 <-- hm. so I'm seeing a few distinct problems here. 1. de-googlifying the bootloader (and getting rid of the
cr50 mess); 2. using a non-googlistic kernel; and 3. replacing the rootfs with a cuntoo userspace. if I understood correctly, then 2 depends on googlistic signing software because of 1, but 3 should be doable either way (if anything, ave1's compiler is a more immediate requirement to get
spyked:
http://btcbase.org/log/2018-11-29#1875947 <-- hm. so I'm seeing a few distinct problems here. 1. de-googlifying the bootloader (and getting rid of the
cr50 mess); 2. using a non-googlistic kernel; and 3. replacing the rootfs with a cuntoo userspace. if I understood correctly, then 2 depends on googlistic signing software because of 1, but 3 should be doable either way (if anything, ave1's compiler is a more immediate requirement to get
☝︎☟︎ a111: Logged on 2018-08-07 16:39 asciilifeform: ^ maker of
cr50, lel
phf: asciilifeform: right, and as far as we know right now
cr50 doesn't have a remote/wifi access component. if it can't be wholly removed, maybe it can be "cut" (not necessarily by literally cutting the wire, but the direction of closing the plug hole)
phf: tbh i assumed it was a lost cause around when
cr50 was discovered. it's overall a worthwhile direction of exploration since i assume we're still gravitating towards an arm gentoo
lobbesbot: phf: Sent 2 hours and 54 minutes ago: <asciilifeform> other interesting observations: 1) loader is not the same as what appears in the src, in either 3.3 or 3.4 fw bin; not only key differs, but eggog strings, and possibly the rsa per se. 2) seems like : nowhere else in the fw is there any other routine which checksums/rsaverifies the
cr50 fw , or references the rsa keyz at all other than to print keyid .
a111: Logged on 2018-06-22 18:03 asciilifeform: in other lulz, nobody noticed this puzzler, so i'ma put it in the l0gz :
https://archive.li/i7BRf <<
cr50 magic rsa keys; the montgomery multiplier etc uses hardcoded constant, 96 word ( i.e. 3072 bit ) for the mults, but the keyblobs are 97 , for some strange reason, in size...
a111: Logged on 2018-06-18 17:51 asciilifeform: in re
cr50 -- if anybody's puzzled re why they put this level of effort into locking down what is essentially a less-popular, bulkier ipnoje -- it's a beta test for bleeding edge of their pc fritz ( the latter, reportedly already in service in google-built serverz in datacentres )
a111: Logged on 2018-06-13 16:48 asciilifeform: and i'm still curious what an elephant-killing dose of gamma would do to the
cr50.
BingoBoingo: Wikipedia before alf published his
cr50 expose had an article on Fritzchips. Now it doesn't
deedbot: loper_os_cr50 voiced for 30 minutes.
a111: Logged on 2018-06-15 14:52 asciilifeform: once i get another coupla
cr50 boards , will try above method with a small twist ( spoiler : chinese pulse welder as the current source! new!111 original!11 )
deedbot: loper_os_cr50 voiced for 30 minutes.
a111: Logged on 2018-06-13 15:15 asciilifeform: meanwhile , in sad noose,
cr50 apparently would be a 1st-class bitch to fully replace, it ( among errything else ) also does the power brick negotiation thing
deedbot: loper_os_cr50_ voiced for 30 minutes.
deedbot: loper_os_cr50 voiced for 30 minutes.
a111: Logged on 2018-06-13 01:49 asciilifeform: revisiting upstack : i categorically refuse to pay for any
cr50 related work that does not produce a working and practically applicable pill. because there is no way to ensure that 'paid to advance art' rather than 'paid 10 derps' mortgages and student loans'
phf: also contest starts around the time that ascii publishes articles on subj, conceivable that someone else decides to look at the
cr50, white hats a vulnerability to google.
deedbot: loper_os_cr50 voiced for 30 minutes.
deedbot: loper_os_cr50 voiced for 30 minutes.
a111: Logged on 2018-06-12 23:39 asciilifeform: phf: you will test using your c101pa. and so you will need the debug snake, i will need to put the output of sysinfo , ver , brd , etc
cr50 console commands into the statement.
douchebag: My friend was also wondering who has access to
cr50's
douchebag: I didn't even know what a
cr50 was 10 minutes ago
mircea_popescu: douchebag,
cr50 is, by all appearances, an arm cortex fpga
a111: Logged on 2018-06-12 18:48 asciilifeform considers idea of proclaiming a 1 btc prize for a working break of
cr50 . any l1 folk interested in contributing to the prize chest , and/or overseeing the refereeing ?