a111: Logged on 2016-05-21 18:53 trinque: Framedragger: if you get tired of aws, there's this cheap-as-shit DC called Joe's Datacenter I've been using
Framedragger: ^ re. product-security@apple.com's key, or is that some broken sub-key of the master key, or somesuch? (broken 'cause of the "Modulus has mirrored low-order 32 bits !", for whatever original cause/reason)
☟︎ a111: Logged on 2016-05-22 00:37 Framedragger: ^ re. product-security@apple.com's key, or is that some broken sub-key of the master key, or somesuch? (broken 'cause of the "Modulus has mirrored low-order 32 bits !", for whatever original cause/reason)
Framedragger: ah ok thanks for the explanation! more logs.... :)
Framedragger: ..hrm. zmap finished scanning sixteen /8's (so a sixteenth of ipv4 space, minus reserved blocks), but in those blocks there were two known servers running openssh which was picked up by ssh-keyscan. they weren't picked up by zmap. if the thing is unreliable then it's worthless (it still found > 95k of ssh servers though, but...)
☟︎ gribble: Current Blocks: 412804 | Current Difficulty: 1.9425482028344403E11 | Next Difficulty At Block: 413279 | Next Difficulty In: 475 blocks | Next Difficulty In About: 3 days, 5 hours, 33 minutes, and 3 seconds | Next Difficulty Estimate: None | Estimated Percent Change: None
a111: Logged on 2016-05-22 00:31 Framedragger: "<product-security@apple.com>" hah!!
a111: Logged on 2016-05-22 00:46 asciilifeform: ;;later tell mircea_popescu perhaps we should only print update here when a previously-unphuctored modulus pops? who even cares when old turds break into finer rubble..?
a111: Logged on 2016-05-22 00:53 asciilifeform: 'here is a meg of lines with '3' and 'divides' in'em' is WORTHLESS
mircea_popescu: and whai do you ambush lords for your failure to use the things properly!
a111: Logged on 2016-05-22 01:20 Framedragger: ..hrm. zmap finished scanning sixteen /8's (so a sixteenth of ipv4 space, minus reserved blocks), but in those blocks there were two known servers running openssh which was picked up by ssh-keyscan. they weren't picked up by zmap. if the thing is unreliable then it's worthless (it still found > 95k of ssh servers though, but...)
Framedragger: i'm now running the reliable but slower ssh-keyscan on the 95k ssh-running IPs just to get a decent sample. will later revisit wtf zmap is doing
Framedragger: hum, no girl ever sucking licking my well-shaven balls :/
mircea_popescu: in other news, there's just enough ipv4 to address every chick out there.
Framedragger: so what you're saying is there's no ip exhaustion crisis at all!
Framedragger: something something "gay ppl have to use [udp] holepunching (to get through NATs)"
Framedragger: mircea_popescu: asciilifeform: in regards to ssh key spidering, it's best then to produce output in the form of e,N,comment - is that right? (where comment in this case would be the ip addr)
Framedragger: i guess i'll give the results in that format for those 95k ssh hosts (actual number of keys will be lower, i can see that some of those hosts are providing clients a nil set of encryption mechanisms, etc etc
Framedragger: no worries - actual scanning progress will apparently be slow anyway..
mircea_popescu: asciilifeform well, if it gets to be too much we might start caring. in principle it should NEVEr be found mind
mircea_popescu: Framedragger a sample sorta thing works to have what to get things going with ; but in general, just do and deliver the whole bunch
☟︎ mircea_popescu: anyway, re the mysterious reappearing 4bn : this is kinda why it's best to err on the side of verbosity a little. if it gets tedious we can cut it back later.
mircea_popescu: in any case for ssh collection ip should be prepended to whatever comment's available.
mircea_popescu: asciilifeform how about we add a credits page, move bernstein there, also add phf for keybase spidering, jurov for github spidering, others as may be ? also theory prolly should be rewritten
a111: Logged on 2016-05-22 03:49 mircea_popescu: Framedragger iirc ssh pubkeys also include an email do they not ?
a111: Logged on 2016-05-22 03:46 mircea_popescu: Framedragger a sample sorta thing works to have what to get things going with ; but in general, just do and deliver the whole bunch
Framedragger: oh god damn it, apparently amazon aws is behind one of those "we protect you" things - arbor networks - these folks detect scans and filter them. fuck amazon, then
Framedragger: (ah more like, they arbor networks' gear, but i was advised the latter may preemptively throttle / filter out scans)
Framedragger: "trinque: Framedragger: if you get tired of aws, there's this cheap-as-shit DC called Joe's Datacenter I've been using" << sooo :) do you know by any chance if *they* are behind any stupid gear which may filter out mass scans?
Framedragger:
http://btcbase.org/log/2016-05-22#1470431 << hmh actually not sure now. it doesn't seem that the email addy in the ssh host's pubkey is sent to client. yet you're right in that the email addy is included (in e.g. /etc/ssh/ssh_host_rsa_key.pub). will check (ssh-keyscan explicitly doesn't give/relay it though)
☝︎ a111: Logged on 2016-05-22 03:49 mircea_popescu: Framedragger iirc ssh pubkeys also include an email do they not ?
Framedragger: maybe asciilifeform had a point about modern stupidity re. network. i've been very joyfully scanning on three non-amazon hosts and just received first abuse complaint. need to move ops to the likes of ukraine/bulgaria, lookslike! >.<
☟︎ Framedragger: (it came from hetzner btw where lotsa (by european folk standards anyway) 'shady' stuff runs and where quite a bit of hax0ring originates from)
a111: Logged on 2016-05-19 15:03 mircea_popescu: as the maximal leverage avaialble to the individual increases, the % of things crawling out of cunts (which, recall, run perl) that may ever individuate decreases.
mircea_popescu: Framedragger you can also tell them that we're in the process of probing the internet for sever ssh key to break them via phuctor, and as this is a tmsr problem they can get phucked - it will get done over their dead bodies.
a111: Logged on 2016-05-22 12:23 Framedragger: maybe asciilifeform had a point about modern stupidity re. network. i've been very joyfully scanning on three non-amazon hosts and just received first abuse complaint. need to move ops to the likes of ukraine/bulgaria, lookslike! >.<
mircea_popescu: the probject just suddenly acquired a new valence : it will allow us to also reject shitty hosts! move whenever one turns out shit, see what you're left with. report here, too.
mircea_popescu: and if push comes to shove, we might as well use the method described in the original census - ie, write a proper virus for it.
mircea_popescu: with the difference that we were looking for storage/hosting space as well, so might as well make it a p2p abstract republican implementation of aws.
mircea_popescu: something in the vein of what was that project called...
mircea_popescu: not like i WANT to. but if "commercial" turns out to be "shit" a la argentina, it becomes not-an-option anymore.
mircea_popescu: Framedragger if indeed ssh-keyscan wipes it, you'll end up having to gut the tool, and recompile it. ssh-keyscan-tmsr
mircea_popescu: asciilifeform if you can add "current largest prime" and "download 8ball" somewhere that'd also kickass.
mircea_popescu: downloadable as THAT FORMAT with explanation wtf it is, even more useful.
mircea_popescu: you gotta force the world to submit. that journey starts with the first step : show it what to submit to.
Framedragger: heheh. but YEAH, don't worry i haven't given up, formulating plan, meanwhile scanning continues because fuck 'em
mircea_popescu is formulating the other plan, wherein the schmucks haven't learned ANYTHING from the bitcoin experience, will continue with uppity bullshit and we'll in short order end up having to organize bombing campaigns because idiot socialists imagine they may arrest republican folk.
Framedragger: ticket escalation process should include "organizational takeover" at some point
mircea_popescu: but otherwise, let the socialists run the daycare, that's what they know and what they're for. the only edge is that they MUST come to terms with the fact that they're not "il factotum de la citta", but some derpy old women running the daycare, must stay out of way of men, and bow head respectfully when encountering them
mircea_popescu: that's the one loose end of the world right now, that they somehow got the idea everyone's a child and their kindergarten "rules" matter in the objective.
mircea_popescu: fuck me if i want to organize tmsr versions of "customer support" calls, general hospital practice, "they took our jerbs" response and all the myriad other pebcac issues the world's filled with since roosveltism filled it with beoble.
mircea_popescu: amusingly, this existed before (during feudalism, of course, the time everything cool existed). clerics were immune to temporal courts, all they had to do was plead privilege of clergy.
mircea_popescu: hopefully they eventually learn this of words, as the expression goes.
mircea_popescu: and, ironically, the privilegium fori could not even be renounced by individuals.
mircea_popescu: Clericis laicos infestos oppido tradit antiquitas, quod et praesentium experimenta temporum manifeste declarant, dum suis finibus non contenti nituntur in vetitum, ad illicita frena relaxant, nec prudenter attendunt, quam sit eis in clericos ecclesiasticasve personas et bona interdicta potestas, ecclesiarum praelatis, ecclesiis, ecclesiasticisque personis regularibus et saecularibus imponunt onera gravia, ipsosque talliant, e
mircea_popescu: t eis collectas imponunt, ab ipsis suorum proventuum vel bonorum dimidiam decimam, seu vicesimam, vel quamvis aliam portionem aut quotam exigunt et extorquent, eosque moliuntur multifarie subiicere servituti, suaeque submittere ditioni, et, (quod dolenter referimus,) nonnulli ecclesiarum praelati ecclesiasticaeque personae, trepidantes ubi trepidandum non est, transitoriam pacem quaerentes, plus timentes maiestatem temporalem
mircea_popescu: offendere quam aeternam, talium abusibus non tam temerarie quam improvide acquiescunt, sedis apostolicae auctoritate seu licentia non obtenta.
mircea_popescu: it occurs to me - only new keys should be paired with full 8ball.
mircea_popescu: extant keys should, independently, be paired with latest prime batch
mircea_popescu: if it has the key in db, then x ; if it doesn't, then y.
mircea_popescu: no, discriminate keys in "newly added" NA and "already known", AK, and then discriminate 8ball in historical H and what we're currently adding CA, and then pair NA with H and AK with CA.
mircea_popescu: this covers the whole thing without insisting to repeat H-CA over AK all the time
mircea_popescu: oh btw, roman law, restated by gratian : someone suing in violation of forum priviledge thereby loses his claim, no matter how well established it may be substantially.
mircea_popescu: you can't revoke a bull. they stand for permanent memory of mankind
mircea_popescu: (the original bull issued in a situation where france and england were moving towards war ; and because there was precedent that churchly goods may be taxed for a just war - ie, a crusade.
mircea_popescu: the respective kids were about to go crusading on each other's ass on boniface's property, so he issued the bull.
mircea_popescu: then got pissy, english king declared the clergy in a state of outlawry, which did noting, and the french king banned export of money fro mfrance, which starved rome.)
mircea_popescu: but the privilege of the learned man is that he may pick from the books what he wants ; and by now there's sufficient books for anything. thus therefore, clericis laicos stands.
mircea_popescu: (really, i only quoted it for the very interesting introduction - plainly states that teh beoble hate us, and always have, and logically always will. because the fruits of satan's own belly can't do no better. o.O)
mircea_popescu: hence, oxford shall be surrounded by thick walls, and gunports.
mircea_popescu: actually, re the times and places of that bull, kathrine hepburn and richard burton made an excellent film.
mircea_popescu: funny that he kept chasing the ill brought up (if very pretty) whore. imo she was a detriment to him.
a111: Logged on 2016-05-12 01:40 mircea_popescu: however, a major point of collaboration imo, would be if everyone who runs bots (ie, deedbot, yours putatively, etc) ALSO keep logs, and provide phf with passive redundancy
mircea_popescu: shinohai not so much a necessity as an utility i think.
mircea_popescu: BingoBoingo do we care about broken 4kb key from 2012 ?
shinohai: oh well then, almost got eulora-style logs working good enough
davout: trinque: looks like deedbot still chokes on trailing whitespace when $v'ing one's otp
davout: also looks like there's an extra white space at the end of the GPG decrypted OTP
davout: mircea_popescu: plox to mpex withdrawals
mircea_popescu: and in yet other lulnewz, harold rosenberg wrote "heard of independent mind" in 1948, and died in 1978. guess who the fuck STILL claims copyright over that fucking essay ? usg!
mircea_popescu: ima publish it later on, fucking scandalous bullshit this. TEN YEARS AFTER THE DEATH OF THE AUTHOR. NO EXCEPTIONS. NO ASSIGNMENTS. NO BULLSHIT.
diametric: so i've been brought current on one side of the fork.
mircea_popescu: and we proceed to discover the wonders of the web! google produces a bevy of "ocr services". as follows : newocr.com "Error! Text can not be recognized." ; ocr.space (best!!!) "Error: All images / PDF pages gave error. None of the image / page was successfully converted. Please check the errors in result area." and in that "page area", "****** Result for Image/Page 1 ****** Error:"
mircea_popescu: free-online-ocr.com claims "low image quality", which is outright fucking ridoinculous.
mircea_popescu: in 2016, like in 2010 , like FOR FUCKING EVER, if you want sometghing done... gotta do it yourself. sigh.
mircea_popescu: so we proceed to install tesseract ; which has obscure notation conventions and incredible inept github page / --help ; and which can only take ".tif" and it MUST NOT be ".tiff" and closes everything witgh a segmentation fault and finally after being catered to for ten mintues declares that "check_legal_image_size:Error:Only 1,2,4,5,6,8 bpp are supported:16" which holy shit omfg.
mircea_popescu: the magical fix, entirely undocumented of course, is to invoke "convert -colors 256 -alpha off -density 300 in.png out.tif" and let imagemagick (yeah, that horror) output stuff tesseract magically likes just fine.
mircea_popescu: i'm so sick of computer-pseudoscience i can't put it in words.
diametric: saw some kind of schism happen, didn't realize it actually resulted in the fracturing of the channel.
diametric: i see there's people straddling both sides of the aisle
diametric: i guess that includes me since i'm still in both channels and voiced in both.
BingoBoingo: <mircea_popescu> BingoBoingo do we care about broken 4kb key from 2012 ? << If someone wants to write it sure.
mircea_popescu: were you looking for something to sink teeth in diametric ?