gabriel_laddel_p: Is anyone aware of "magic" shared libraries that must be included with a linux distro to work? When I build a MasamuneRescueCD fdisk -l does not see any disks, nor does lsblk, in spite of my including all shared libraries required by lddtree --list
gabriel_laddel_p: emacs, htop, mc, sbcl all work fine, but X11 & fdisk do not, which sort of screws me. strace works, but tracing the X process does not turn up anything useful
trinque: sounds like you didn't pack along the right kernel modules, or otherwise didn't mount dev correctly
trinque: afaik linux always mounts /dev automatically these days, so I'd suspect the former.
gabriel_laddel_p: I would have thought that it was compiled statically, but lddtree turns up deps
trinque: pasting an error would be a start; missing libs would be a pretty recognizable barf.
gabriel_laddel_p: trinque: there is no error to paste. Nothing is missing, nothing shows up as missing when I strace it.
gabriel_laddel_p: I will double check that all kernel modules are being included, but could have sworn I got em all
trinque: also inspecting /dev for the presence of your block device.
trinque: you will see after having loaded the driver for whichever block device, that sdb1 and so on were created.
gabriel_laddel_p: why would I have to load a driver for a block device? and sdb1 and so on and so forth are NOT created, no seen anywhere
gabriel_laddel_p: which I suppose credits your /dev/ is not being populated correctly theory
trinque: you could certainly turn off the driver which would present your sata drive if you got too uncheck-happy configuring your kernel.
gabriel_laddel_p: trinque: I'm the very opposite of "uncheck happy", I use the VERY SAME kernel binary being used in
trinque: maybe the kernel is mounting /dev in an initrd, but when leaving initrd, nobody's attaching it to the new root.
trinque: not looking at the thing in question, so don't know.
gabriel_laddel_p: I don't have it in front of me either so idk. Have not touched this project in a ~month or more. That /etc/init.d/devfs exists is news to me, and will try messing with it next
trinque: on my gentoo box it is part of the "sysinit" runlevel.
mod6: I haven't gotten openbsd to do quite what I want yet, even with the -crtscts flag set for stty.
mod6: Will report if I get it figured out.
phf: re fdisk: check that you have /sys mount
jhvh1: shinohai: The operation succeeded.
shinohai: Also BingoBoingo ... the Noriega article may be one of your best yet :D
shinohai: I hear Oliver North is inconsolable.
jhvh1: BingoBoingo: Bitstamp BTCUSD last: 2209.99, vol: 14688.48510099 | BTC-E BTCUSD last: 2150.011, vol: 7960.10357 | Bitfinex BTCUSD last: 2089.0, vol: 25404.67782437 | BTCChina BTCUSD last: 2179.71, vol: 10525.84350000 | Kraken BTCUSD last: 2191.0, vol: 8851.14375247 | Volume-weighted last average: 2150.10654178
deedbot: erlehmann voiced for 30 minutes.
mircea_popescu: and in today's lulz : bavaria, which apparently still imagines itself a state for some reason, has decided Mahawachiralongkon Bodinthrathepphayawarangkun (that's, incredibly enough, not a german national's name) spends most of his time there, and therefore they get to tax his inheritance.
mircea_popescu: which is rather convenient, seeing how he inherited nothing less than thailand's ~30bn crown fortune (he's the guy in the "scandalous" party where his woman was topless around the pool o noes!11).
mircea_popescu: those 30 bn do include, of course, the blue diamond stolen back in 1989 from saud faisal's palace by a thai janitor, who was then caught by a lt-general of the thay royal police, except when the thais flew back to ryadh to return the loot the saudis discovered the parts not missing were fake.
mircea_popescu: well, they stole one of the guy's airplanes at some point. that sort of thing i imagine
mircea_popescu: the guy strikes me as dumber than rocks, but what do i know.
mircea_popescu: he's funny though, he won a her-fault divorce with some obnoxious cork of a woman through saying she sucks and she couldn't say anything because lese-majeste.
mircea_popescu: pretty fucking epic, if you ask me, take a fat old nag to COURT, where she fucking loves to go, and dreams every day of her life, and then say THE BAD!!!1 about HER!!!!!! omfg. and she can't give all teh replies!
deedbot: erlehmann voiced for 30 minutes.
erlehmann: full recognition before processing, as they say
mircea_popescu: yes. the vdiff processing was arrived at through historical choice rather than deliberate design. therefore i'd say it's lacking it by accident.
erlehmann: well, i get that GNU diff does not actually verify that there is a timestamp
erlehmann: which is the only thing that makes vdiff possible
erlehmann: sane software would have rejected everything not conforming to the grammar
erlehmann: are you aware of the seven towers of babel?
erlehmann: > The Seven Turrets of Babel: A Taxonomy of LangSec Errors and How to Expunge Them, Falcon Darkstar Momot, Sergey Bratus, Sven M. Hallberg, Meredith L. Patterson
erlehmann: i told all my coworkers to read it. when i told maradydd, she was like “well, that's like the intended purpose”
a111: Logged on 2016-12-11 18:53 asciilifeform: so i had two base64's png files in there,
erlehmann: the seven turrets of babel is a TL;DR for langsec. it collects antipatterns (in section III) and remedies (in section IV)
erlehmann: so i can show it to people who just want to know what to do
mircea_popescu: erlehmann you seem like a nice enough fellow, why not register your pgp key with deedbot ?
erlehmann: i am the guy at my workplace who always rants about grammars, but i think i am the only one who actually did philosophy in university
mircea_popescu: in truth vdiff is an eminent domain for proper abstraction.
erlehmann: but it works. turns out that if you tell people in code reviews for 3 months straight that they should define a grammar and check their inputs, they start to do that.
erlehmann: really, 3 to 4 months. some immediately get it, but others do it after that timeframe.
mircea_popescu: i suspect you ~don't~ get the "many implementations" thing after all :D
mircea_popescu: republic ain't gonna do it ; it's gonna tell YOU to do it
a111: Logged on 2017-01-05 00:24 asciilifeform: ben_vulpes: i'll suggest a 'p-tronic' format for diffs. N\........ specifies N retained-of-a octets (e.g., 5\abcde )
Framedragger: good practice, props for persevering! (i'm the "modularise, bitch" guy at work)
erlehmann: mircea_popescu i was not aware a) registering is possible b) registering is desirable for me. so what do i get out of it and if i want to do it, how?
mircea_popescu: erlehmann well, i'll rate you so you'll be able to self-voice. and see topic, it's in there.
erlehmann: yes, how to participate. i might have read it at some point in the past.
mircea_popescu: in which mp discovers that how to register with deedbot is NOT actually linked in the topic.
erlehmann: mircea_popescu i think i do understand the many implementations thing. data that flowing over abstraction boundaries has the potential to trigger a holographic fracture (i believe that is how it is called). to prevent this, you need a parser and an unparser and both need to have the same grammar (max deterministic context-free) and check it.
erlehmann: every idiot who just takes an uploaded file and converts it using ffmpeg is just a 4 line text file away from me filling whatever storage the idiot has on the converter system
erlehmann: reason: ffmpeg takes synthesizer instructions in plain text
erlehmann: no one expects 999gigabytes.mp3 to be a text file instructing ffmpeg to generate silence with a really high sample rate (around 1GB per second)
erlehmann: asciilifeform actually no, but i think i know what you mean. zip bombs only work with programs that do not do full recognition before processing.
erlehmann: asciilifeform the problem is the different assumption people have about components. the programmer feeding input to ffmpeg expects audio files to be input. a recognizer would solve that.
erlehmann: multiple implementations show multiple assumptions (i.e. multiple grammars)
erlehmann: so it is like testing a lot with malicious compliant testers
erlehmann: maybe. ethereum has a gas price, yet it is still turing complete, still reentrant, still vulnerable.
erlehmann: putting the mechanism in your head
erlehmann: the universe provides a halting guarantee: proton decay
erlehmann: i have a talent to find errors by not comprehending stuff. talk context-free or regular to me!
erlehmann: i think it is a good rule to talk to autists
mircea_popescu: well, it'd better be, not so much else available to talk to these days, is there.
erlehmann: i also highly prefer it if people talk to me like that. the worst people are those that are like “please send me this and that” – “send me an email with the full details of what and where i should send it please” – “can't you just infer it from the last time you mailed me something?”
erlehmann: i can, but it puts the burden on me. possible misunderstandings.
mircea_popescu: hey, i beat the slavegirls if they fail to infer ; and also if they infer incorrectly.
erlehmann: at one langsec and tea gathering i suspected that every joke contains a misunderstanding on some level
erlehmann: therefore: no deterministic context-free jokes
mircea_popescu: actually in my youth i deemed as the highest achievement in literature a situation where multiple parties participated in a conversation that admits an interpretation for each.
mircea_popescu: lol. there's that joke with the christian and jew debating the truth of the bible also.
erlehmann: so who of you has opinions about build systems?
erlehmann: i am of the opinion that all build systems except my own redo implementation are shit. reason: non-existence dependencies. if you search for header files at locations A, B, C, find it at C, then C is a dependency. but if non-existing A or B start to exist, the target must rebuilt.
erlehmann: you can easily infer what those files are using strace or similar methods
erlehmann: but apparently, i am the only one who does. DJB thought of it, he has notes on it.
erlehmann: as always, make is shit and can not handle this
erlehmann: experimenting with a medium-size C++ project (liberation circuit) i found that there can be as much non-existence dependencies as “normal” dependencies
erlehmann: meaning almost all software is rotten to the core based on this alone
mircea_popescu: i suspect the idea is that systems which require something like make are broken anyway.
☟︎ erlehmann: depends only on coreutils or busybox
deedbot: erlehmann voiced for 30 minutes.
mircea_popescu: speaking of, what should the flymake for lisp be called ? drool ? dribble ?
erlehmann: apparently he implemented at least parts of it. some of his elliptic curve stuff has dofiles.
erlehmann: i asked him at two conferences and both times he was like “i have to answer lots of questions about crypto, ask later pls”
erlehmann: mircea_popescu maggot. a maggot is what makes a fly.
erlehmann: also ugly names discourage superficial hipsters, hopefully
shinohai: "We were playing with maggots before it was cool!"
mircea_popescu: erlehmann "ugly", no. but sexually masculine (ie, suggestive of forceful copulation) names are very well documented to.
phf: fwiw, input parsing should probably be solved through compartmentalization. don't run mpg123 on your gnupg machine. in any case djb likewise said all that needs to be said about "secure languages" in his "Some thoughts on security after ten years of qmail 1.0"
erlehmann: phf who believes people who cannot roll their own grammar can roll their own compar-virtual-boundary-thingy?
phf: erlehmann: people who can't roll their own grammar can still buy two separate machines though
mircea_popescu: asciilifeform altough after that utterly shameful episode with the transvestite whore living at his house...
erlehmann: phf i believe you misunderstand the problem
erlehmann: LANGSEC is about programmers able to reason about protocols and state transitions
mircea_popescu: erlehmann can you explain this liberation circuit thing to me ?
erlehmann: mircea_popescu a real time strategy game by linley henzell (who created overgod and garden of colored lights) where every unit is programmed in a language not entirely unlike C.
mircea_popescu: so far this seems ~same as what led eulora to having open bots. they are programed in... literal c.
erlehmann: there is a graphical unit designer that sets up the structs right
erlehmann: which makes it playable. previous attempt “invincible countermeasure” did not have a graphical designer.
erlehmann: well, gameplay-wise: units are limited by number of ticks. want to do trigonometry? prepare to sacrifice ticks
phf: erlehmann: sure, but the question is, are you designing your protocol from scratch or you're saying something about an existing protocol. and if you're designing it from scratch then there are existing long established solutions that long predate langsec (unless of course they are just an education organization). but if you're saying something about existing solutions, and you mentioned ffmpeg etc., then it's your classical security specialist "y'all i
phf: diots" position. what you going to audit ffmpeg? i'm saying that the correct solution is not to run media decoder on a mission critical machine
mircea_popescu: phf i suspect he's young ; in any case excitable. give the man a moment.
erlehmann: mircea_popescu only by mail. apparently he writes games on windows with code::blocks. i wrote a dofile and contributed some features.
erlehmann: phf i have worked on existing protocol. the grammar codifies the assumptions that you as a programmer make. take an ENUM in the input, for example. grammar should only contain values you know you can process right.
mircea_popescu: life these days is muchly reminiscent of 1980s, reading comuniques from disidents behind the iron curtain, trying to judge how genuine, what happened, etc.
erlehmann: phf someone gives you a “mp3” file with ogg page structure? abort immediately.
erlehmann: phf basically, “be liberal in what you accept” is bullshit. be definite about what you accept.
mircea_popescu: at least the kgb 2.0 is as bumblingly self-absorbed as the original.
erlehmann: mircea_popescu if you like RTS without multiplayer, i suggest to try out liberation circuit. the math seems to be fixed-point only, so real-time multiplayer should be possible if you can wade through the abysmal codebase.
erlehmann: it is written by a single self-taught game programmer who apparently uses indentation randomly
erlehmann: play-by-email against autonomous bots from someone else should be deterministic because of fixed-point math
erlehmann: at least that is what he claims, i never tried
mircea_popescu: erlehmann i own a publisher ; not particularly looking for a game, but vaguely interested in competent/efficient dev people for eulora client improvment.
erlehmann: asciilifeform djb never replied to my emails as well. i asked fefe about it and he was like “that guy has tenure, he does not care, people had to pester him for years to make his stuff public domain”
erlehmann: we sometimes bump into each other at conferences. also i made the yellow press (BILD) stylesheet for his blog some time ago.
erlehmann: mircea_popescu i never heard of eulora. earn BTC for playing games?
mircea_popescu: but the point is principally "try and make ANY sense of the server mechanics"
erlehmann: mircea_popescu i believe linley is creative and knows his theory. but no one ever asked him to clean up his code.
erlehmann: but why not just email him? he answers nicely.
erlehmann: and has a functioning bullshit detector. evidence: someone proposed a docker container to run the game “more easily”. linley politely declined.
mircea_popescu: well up until now because i never heard of him ; from now on tba.
phf: erlehmann: that is true, but doesn't take into account complete attack surface. i agree that "write a proper parser" should be the first step, but that's also a baseline. problem is that most of these protocols are either non-regular, have types that depend on state (e.g. a fixnum whose range changes based on a flag), or are outright turing complete
mircea_popescu: there's also the suspicion that the only reason this "appears to work" as a securitizing approach has to do strictyly with it not being in general use.
erlehmann: phf yeah, the results are not palatable to people. “what i can not do ‘<script>document.write('<script>')</script>’ anymore?”
erlehmann: asciilifeform extrapolate your onions?
erlehmann: what wrong end? it actually plugs both ends. the parser and the unparser.
Framedragger:
http://btcbase.org/log/2017-05-31#1663689 << i believe you misquoted out of context. the purpose of that was to (as you can see if you read till end of para), "The challenge here is to show that secure multi-user RSA key generation can becarried out more efficiently than one-user-at-a-time RSA key generation"
☝︎ a111: Logged on 2017-05-31 14:17 asciilifeform: in recent sads, 'Our batch prime-generation algorithm suggests that, to help reduce energy consumption and protect the environment, all users of RSA—including users of traditional pre-quantum RSA—should delegate their key-generation computa- tions to NIST or another trusted third party. This speed improvement would also allow users to generate new RSA keys and erase old RSA keys more frequently, limiting the damage of key theft.'
Framedragger: i don't believe they are actually suggesting that doing key gen on third party is a good idea for user. discussion was about performance, no? (granted, did not read whole paper)
phf: well, that's why i referred to that djb paper about qmail. he stated both the problem and the solution, and his solution was essentially "compartmentalize", but when it comes to parsers specifically it's something very aggressive. like a fixed length line reader that dispatches on a single prefix character. not even a "grammar"
Framedragger: asciilifeform: alright, will do later. given that you quoted from the concluding section however, makes me doubt whether my opinion will change. but will do.
phf: validating input is the security community mantra that i remember since i joined it in 99 or so
☟︎ erlehmann: asciilifeform by that standard, everything is insane (i might even agree). LANGSEC is not planet-wide asepsis, it is washing hands before walking to the operating table.
☟︎ phf: these days it has additional twist of haskelization and provable grammars and such
erlehmann: asciilifeform a spy opens an envelope and finds a patchset. what next?
deedbot: erlehmann voiced for 30 minutes.
erlehmann: my answer would be: spy whips out recognizer, nukes everything from orbit if language of patchset does not match language that is expected.
☟︎ mircea_popescu: Framedragger the whole notion of "rsa keygen efficiency" is a little bit in the vein of "cheapest wedding dress".
erlehmann: asciilifeform mixing validation and processing code makes it harder to reason about possible code paths. after the recognizer you can be sure that the rest of the system does not have to handle anything.
erlehmann: anti-pattern “shotgun parser”. draw the processing diagram on to the wall. shoot at it with a shotgun. everywhere the bullets hit, validate stuff.
erlehmann: this is how most people do it, basically
Framedragger: mircea_popescu: yeah, after writing that i recalled gossipd design and intentions (need to generate a lot of keys, and if it takes a month - so fucking be it)...
erlehmann: ad-hoc validation creates a lot of exit conditions that interact with each other
erlehmann: system does not fit in head as easily
erlehmann: i do not understand the question, care to elaborate?
erlehmann: urbit at one point broke down crying if you fed it U+1F46C GAY MEN 👬
erlehmann: asciilifeform so what does this `p` do you wrote earlier of?
a111: Logged on 2016-12-11 23:00 asciilifeform: i was not going to expand on the 'p' thread until the proggy is done, but this is probably a good time to say 1 more
erlehmann: reminds me of my adventures with libglitch (most useless shit i wrote and probably most popular)
☟︎☟︎ erlehmann: i chose postfix notation and a wraparound ringbuffer as a “stack” because postfix can always be evaluated
phf: erlehmann: i think what we're saying is that validation for the sake of validation is an incomplete solution for various reasons. you come from a position where you need to convince people that parsing is important, we're saying that ~we know~ and ~we do it~, but we also think that it's not the whole solution.
erlehmann: idiots reimplemented it themselves using infix notation
erlehmann: of course infix allows you to have an incomplete expression – like “(a + b” without a closing paren
erlehmann: so the synthesizer would stop if you did not type fast enough
erlehmann: asciilifeform i see what you mean. i can not claim to understand everything, but it looks saner than C.
erlehmann: you know part of why i came here is my friends have become mad
erlehmann: they no longer write roguelikes where you can shit yourself to death
erlehmann: more like: <buckket> ok habe nun MSI GTX 1070 für mein mining rig gekoppt
phf: erlehmann: well, i said "parsing" i didn't say grammar. there are different ways to write a parser. btcbase uses a readtable dispatch based parser to construct an in memory vpatch structure, i just checked, in about 90 lines of lisp. presumably if somebody wanted to write a parser using yacc, they'd have to write a lalr grammar for a vpatch
erlehmann: i believe at least some crypto currency marketing triggers similar magpie instincts as earlier scams
erlehmann: but i have not yet found out why people are unaffected. and why i do not feel the same as they do.
Framedragger currently trying to fight ceo who wants to do an ICO, can relate somewhat
erlehmann: the former boss of my boss, when asked about ethereum, was like “my investment strategy is: i hope you get rich with ether and then give me some of it”
erlehmann: asciilifeform where does the tron(ic) suffix come from? versionatron? chumpatronic?
mircea_popescu: sounds very "we in europe have 60% taxes and think women should talk at the table."
mircea_popescu: "in the manner of, to the effect of, in the style of, like"
erlehmann: i think he meant it more like “haha good luck you imbecile”
phf: it's a calque from russian
erlehmann: in german the calque word for a german calque is “zangendeutsch”
erlehmann: “forced/forcing german” → “zwangs deutsch” → losing the “w”, sounding like the word for forceps → “zangen deutsch”
Framedragger: erlehmann: just idly curious, why did you not continue studying at TUM? i'm only curious because i considered that once, too, and "heard it was good" (well they also seemed to be offering solid-looking courses when i visited them in ~2013). just in case answer pertains to objective details
deedbot: erlehmann voiced for 30 minutes.
phf: chumpatron is from "lohotron" where loh is a chump, it's a word play on "lototron" which is a lottery machine
mircea_popescu: ahh, recall the grand old days when this terminology was getting established ?
erlehmann: Framedragger 1. prof demoed some program he wrote (?) in linear algebra course 2. i asked about source code. 3. answer was like “you do not get source code, you would not understand anyway” 4. no other student thought it ridiculous for a teacher to not give source. 5. i found out implementation was really simple.
erlehmann: i moved to berlin to study philosphy at humboldt university. different climate there. especially regarding bad teaching.
Framedragger long ago got a "you're not yet ready to read kant, read this about kant", which in retrospect may have been a misjudgement (you can kinda sorta just read Kant, esp. if you're read hume), but i just went along with it. worked in the end. maybe not comparable situation, but anyway
erlehmann: the only person who would not give complete corresponding source and supplementary materials for stuff was a neuroscientist i think. something about having done lots of work to collect the data and analyze it.
erlehmann: Framedragger in short. climate at TUM is like “you are becoming engineers. do not ask questions. money goes to research.”
Framedragger: source code.. wonder if there's a good reason possible if intention was to give source eventually. prolly not...
mircea_popescu: natural language is useless for any serious rational purpose without endless washing and starching. math does not suffer from the same problem.
erlehmann: i quit studying philosophy at HU to earn money.
erlehmann: turns out i am a far better programmer than philosopher btw
mircea_popescu: most oracles also discover they're much better cooks than oracles.
phf: Framedragger: it's probably shit code that professor was planning on fixing "eventually". i've managed to acquire a number of these "secret" sources while at umd and most of them were horrendous.
Framedragger: (not sure what "good philosopher" would even mean these days, most of "modern philosophy" is same ol' "research journal" printolade anyway)
erlehmann: Framedragger if you know german, i suggest to play unteralterbach. i also suggest to not visit commonwealth countries and others with weird sex laws (comic sex = real punishments) when having that.
erlehmann: well, unless you are easily offended, that is
Framedragger: erlehmann: am currently in UK which given its government's position on "weird sex" probably has outlawed said website through multiple acts of parliament
erlehmann: Framedragger probably. won't visit UK anytime soon.
Framedragger: thanks for the pointer, will actually check. i know a bit of german but too little. may make it even more fun, tho
phf: i wonder if this creates significant cognitive dissonance in these people. it took me a while to learn how to scale elegance (and how incredibly costly it is, hence gems like tex.web ARE gems), but here you have a prof, drinking own koolaid of whatever best practices, attempts to write a non-trivial project and ends up with unmanageable complexity
mircea_popescu: phf and then you ask him why he continues to pretend like he has something to say in plenum and he breaks down and cries before 200 students.
erlehmann: phf good profs listen and learn even from students if appropriate.
mircea_popescu: of all the gone traditions of the academic citadel, the one mp most regrets is mercilessness.
erlehmann: i once had a case of a philosophy lecturer claiming computers cannot work on meaning, only syntax. i answered with an explanation of undefined behaviour in C compilers.
erlehmann: i think part of the room was sufficiently disoriented by the fact that GCC drops loops without side effects
phf: (heavy technobabble) prof: yeah yeah ugh i can see that, moving on
erlehmann: i think i actually got through by demonstrating n3
mircea_popescu: "ex nihilo nihil fit ergo please believe computers are people"
erlehmann: i have no idea how someone can believe elementary logic is something magic
erlehmann: while teaching formal methods to work with it
mircea_popescu: erlehmann elementary logic does not work on meaning ; only syntax.
erlehmann: mircea_popescu certainly, i was referring to a different person that claimed a computer can not work with “a → b … and also, a is false” or something like that
erlehmann: i am ever so slightly sorry for not telling in understandable ways
erlehmann: but back to the GCC example, i think someone said “a computer can not recognize meaninglessness” or similar
Framedragger: isn't it fun that even C macros are not context-free, huehuehue. such language!
erlehmann: reducing something to NOP seemed to imply something different
erlehmann: i bet you read that at the orange wobsite
Framedragger: it *reminded* me of that fact, i knew it was crazy turing complete madness before tho :D
phf: erlehmann: do you still use "neo 2 keyboard layout"?
a111: Logged on 2017-05-31 14:39 asciilifeform: erlehmann: 'validating input' is idiotic - a sanely designed system simply contains no physically possible perdition state to be led into.
mircea_popescu: this i suspect is generally the case, if an item doesn't contain deadly possible states it is more properly a toy than a tool.
☟︎ mircea_popescu: in any case, the problem of the 110/220 swich is not, to this day, solved.
☟︎ mircea_popescu:
http://btcbase.org/log/2017-05-31#1663768 << let me tell you what it does, because i recently ran a browser games check. a) won't allow email from domains with >3 char tlds. because VALIDATING INPUT, yes. b) won't allow your password. it's too long (yes), it has special characters (o ya), it whatever on a stick.
☝︎ a111: Logged on 2017-05-31 14:41 phf: validating input is the security community mantra that i remember since i joined it in 99 or so
a111: Logged on 2017-05-31 14:41 erlehmann: asciilifeform by that standard, everything is insane (i might even agree). LANGSEC is not planet-wide asepsis, it is washing hands before walking to the operating table.
a111: Logged on 2017-05-31 14:44 erlehmann: my answer would be: spy whips out recognizer, nukes everything from orbit if language of patchset does not match language that is expected.
mircea_popescu: i spent a while having to subdue my fridge which had become embroiled along with my washing machine and its allies in an air-and-sea war over some misunderstandings, and i decided no more of that! no fridge, no washing machine, no spy etc needs its own armored divisions!
a111: Logged on 2017-05-31 15:36 mircea_popescu:
http://btcbase.org/log/2017-05-31#1663763 << this i'm affraid is wishful thinking. consider the simple case of the 110/220 volt switch on most desktop power supplies. it... does contain such a state, as part and parcel of why it even exists in the first place.
a111: Logged on 2017-05-31 15:37 mircea_popescu: in any case, the problem of the 110/220 swich is not, to this day, solved.
a111: Logged on 2017-05-31 15:36 mircea_popescu: this i suspect is generally the case, if an item doesn't contain deadly possible states it is more properly a toy than a tool.
a111: Logged on 2017-05-31 14:52 erlehmann: reminds me of my adventures with libglitch (most useless shit i wrote and probably most popular)
a111: 2017-05-31 <jhvh1> BingoBoingo: Bitstamp BTCUSD last: 2209.99, vol: 14688.48510099 | BTC-E BTCUSD last: 2150.011, vol: 7960.10357 | Bitfinex BTCUSD last: 2089.0, vol: 25404.67782437 | BTCChina BTCUSD last: 2179.71, vol: 10525.84350000 | Kraken BTCUSD last: 2191.0, vol: 8851.14375247 | Volume-weighted last average: 2150.10654178
phf: would be handy if a111 tracked parts..
shinohai: server reset last night asciilifeform ... should be back up momentarily.
a111: Logged on 2017-05-31 14:52 erlehmann: reminds me of my adventures with libglitch (most useless shit i wrote and probably most popular)
jhvh1: asciilifeform: The operation succeeded.
phf: i wonder what they mean by "large amounts", could they just run a handful of FUCKGOATS in parallel? is there some hidden flaw in FUCKGOATS approach that makes the solution non-viable? so many questions!
☟︎ phf: why is there a need for a "quantum random number generator" (from yesterday's thread)?
phf: indeed. i'd like for one of these fucks to go "oh, we've tried this solution in 87 and there's reason A and B for why it's not applicable at industrial scale" or "oh we need 10000KB/s which means that blah blah blah"
☟︎ phf: because as it stands it all very much looks like "we don't need solutions because dat grant money"
mircea_popescu: asciilifeform> and not by 'autodetecting' (validating!111) either, but by actual design << awww, k.
mircea_popescu:
http://btcbase.org/log/2017-05-31#1663991 << yes, there is. it's not hidden, either : it dispenses with any role for or need of the stupid fat old women in "the Commission of the European Communities" not to mention " the Netherlands Organisation for Scientific Research " and etcetera.
☝︎ a111: Logged on 2017-05-31 19:16 phf: i wonder what they mean by "large amounts", could they just run a handful of FUCKGOATS in parallel? is there some hidden flaw in FUCKGOATS approach that makes the solution non-viable? so many questions!
mircea_popescu: if only we agreed to agree the dumb cunts are important they'd gladly agree fuckgoats works!
mircea_popescu: problem is, when we wake up tomorrow, the dumb cunts will still be dumb cunts ; while fuckgoats will still work.
a111: Logged on 2017-05-31 19:23 phf: indeed. i'd like for one of these fucks to go "oh, we've tried this solution in 87 and there's reason A and B for why it's not applicable at industrial scale" or "oh we need 10000KB/s which means that blah blah blah"
mircea_popescu: that's the thing with superior technology, the fact that you need 10 tons carried rather than 10kgs is not an argument in favour of oxcarts and against trucks. on the contrary -- the more needs carried, the more you want the trucks to carry it.
BingoBoingo: It's pretty clear that without scintillator'd FUCKGOATS that NoSuchlAbs needs to produce PASHTUN to herd FUCKGOATS
BingoBoingo: Give it 36 months for TMSR weather service S.CLIMAx to need ruinously high bitrate for "forecasting"
mircea_popescu: just pent-up domain to save the environment by publishing more pointless papers.
BingoBoingo: The driver left the scene of a property damage accident where his vehicle left the roadway. The driver smelled strongly of an alcoholic beverage and his eyes were red and glassy in appearance. The driver admitted to drinking an alcoholic beverage. The driver was unable to complete the field sobriety testing.
BingoBoingo: Wigginton refused to take a Breathalyzer, according to the report. He posted $100 bail and was released. Wigginton resigned as U.S. attorney for the Southern District of Illinois on Nov. 24, 2015, to work for a private law firm. Wigginton became U.S. attorney in August 2010 after former U.S. President Barack Obama nominated him to serve as the top prosecutor in the state’s southern 38 counties. Wigginton, a Democrat, replaced Republica
BingoBoingo: n Courtney Cox, who was appointed to the position in 2007.
BingoBoingo: But how many 1 in 100 doing the time also were Preetlings appointed by Hussein Bahamas?
BingoBoingo: So in other local lulz, Marxist aggitators want to remove Confederate memorial from park in StL city. Same aggitators love/ignore local "farmer's" market that used to hold "Pick-a-Nigger Sunday" sales.
mircea_popescu: i don't think they go by what could be described as criteria.
trinque: same nonsense noise about sam houston statues here, by whichever loud daughters of california league.
mircea_popescu: ~statues seem to be problematic to the ambulant children these days
trinque: kids can't stand up straight; objects that can't but otherwise, naturally offensive
mircea_popescu: i confess i find toppling lenin statues quite satisfying myself.
mircea_popescu: ~what the common libertard thinks hitler is, basically.
mircea_popescu: not that many hitlers either. some evil empires are more figurative than others.
mircea_popescu: "why didn;t you pull it down back when it'd have meant something" ?
mircea_popescu: i suppose when he was alive they weren't letting her get close enough ?