Forum logs for 13 Apr 2017

Monday, 16 March, Year 12 d.Tr. | Author:
mircea_popescu: !!up xhiggy [00:34]
deedbot: xhiggy voiced for 30 minutes. [00:34]
xhiggy: anyone here? [00:42]
ben_vulpes: 37 seconds from join to up, just shy of two minutes from up to first line, ~same from first line to quit [00:47]
mircea_popescu: heh [00:58]
mircea_popescu: canadians. [01:00]
mircea_popescu: "* A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system. (CVE-2017-2636, Important)" [07:39]
mircea_popescu: did we do this ? [07:39]
Framedragger: mircea_popescu: i don't think so, and i thought about linking this, too heh (need to update/patch kernels if they are < 4.5) [07:49]
Framedragger: it's great fun! [07:49]
mircea_popescu: real men don't multiuser linux boxes. [07:50]
Framedragger: ohno wait this is something else.. i was planning to link https://nvd.nist.gov/vuln/detail/CVE-2016-10229 [07:50]
Framedragger: << this one *does* apply to everyone < 4.5 i think [07:50]
Framedragger: multibugs for multiusers [07:50]
Framedragger: (the latter is a proper RCE) [07:51]
Framedragger: ^ fuckload of android sheep affected. did i hear, 'another internet survey?' [07:54]
mircea_popescu: heh [07:56]
trinque: All those pnojes will be lost in time, like tears in rain. Time to die. [07:57]
mircea_popescu: they support the last flimsy pretense of public participation, you realise. about half the general population is functionally illiterate, will spend all their social time inthe day clucking at the things for literal lack of alternative options. [07:57]
Framedragger: trinque: sounds like a line from a text based adventure game :) [07:58]
Framedragger: ahh blade runner [07:58]
trinque: did they make one? it was Blade Runner, Do Androids Dream of Electric Sheep in tree form [07:58]
mircea_popescu: the options died because of the classical giant-sits-in-chair. in the decade intervening, bars went out of business, and people who knew how to run a bar moved on. it's not like the sheeple will raise up and RECONSTRUCT THE PUB. [07:58]
Framedragger: ah nice. [07:58]
mircea_popescu: so, once they go into the night, that's it. 4 concrete walls. [07:58]
mircea_popescu: same model repeating itself over and over and over again. oh, the ancient world where slave talked to woman talked to husband talked to headsman talked to senator was humiliating and inequalitarian ? let's flatten it into a system where 1% talk to the senator (1000% increase over the 0.1% of yore!!11) and the rest talk into an empty takeout box. PROGRESS!!!1 [08:07]
mircea_popescu: and besides, only terrorists would notice that moving from moderated but present inclusion of everyone towards absolutely exclusiuon of almost everyone is no fucking improvement in public access. what, comparisons ? RACIST!!1 thinking about things ?!!?!? MYSOGINY!!!11 [08:08]
mircea_popescu: idiots. [08:08]
trinque: that trilema was one of the more world-altering ones for me, where you described that the hierarchial social model actually gave better odds for the lower branches to be heard. not that this by itself is the most important thing, but rather that look, sense works better for everyone because it is sense. [08:09]
mircea_popescu: yeah. see, in 1617 the clerk interesterd could go ask the peasants, and if nobody did it was ~an option~ of theirs, which they could remedy or alter. today, pollster is going to talk to peasant's phone which'll tell him moot is to be nytimes man of the year, and he'll call the observation that inexplicably hillary clinton had no support, polls notwithstanding, "Fake news". this is NO LONGER AN OPTION OF HIS. [08:12]
mircea_popescu: huge fucking loss in human control over human affairs, and meanwhile the idiots are sitting around worrying about "Evil ai". hey, guess what, you don't need the ai to fuck you over. [08:12]
mircea_popescu: somehow the fact that i can make the phones ( or solar panels, or fridges/cars/whateverelse) read absolutely anything i wish while the poor fuckers supposedly so represented have exactly 0 recourse and 0 alternative is of no concern meanwhile the deeply inept conclave of imbeciles is happy and patting each other on the back ebcause hey, they stole a botnet! worth 2-3mn ie nothing! IT WAS ALL WORTH IT!!11 [08:14]
mircea_popescu: idiots, no more can be said, what. [08:14]
mircea_popescu: back in 1938 THIS https://www.youtube.com/watch?v=SjJry0vhHj4 was a fucking thing. why ? i have no idea, because a black woman lost her fucking basket. who cares, what difference does it make ? i dunno, none that anyone can discern. NEvERTHELESS!!!!! there she is. she's there. with her stupid basket that only could possibly matter to her. yes, "and half a million black women entirely indistinguishable from her", but this as a [08:31]
mircea_popescu: natural fact not as an outside enforcement. [08:31]
mircea_popescu: today it's "here's a deck of representational trading cards, pick one to think you are, and we'll be reprersenting... the card!!! and therefore (?!?!?) you". [08:32]
mircea_popescu: do you wanna be a kimkardashialladin or a meganfoxarrior ? or perhaps a transgenderogue ? [08:33]
mircea_popescu: deck's got it fucking all, max aoe, max dps, defense buff, you name it! and don't fucking go "wtf is all this dumb shit" because that's self-radicalizing!!11 [08:33]
mircea_popescu: there's a rather tremendous difference between ella fitzgerald caring about her basket for no reason anyone could comprehend and a twentysomething pantsuided aide with 0 sexual experience and owing money coming up with "these are the four things THAT COULD BE, i spent a whole five minutes thinking through the "metaphysics" of "life" and this is what came out so therefore!1". yes, on their own devices people live lives that [08:36]
mircea_popescu: are bad literature. but there's a tremendous difference between letting them do just that and trying to force them to act in your badly written, tendentious bit of fanfic (with bowdlerized bits lifted from shakespeare and mark twain, just like the sad bits of processed fruit that made their way in your granola). [08:36]
mircea_popescu: and this is how i'll end up hittign the rum at six in the fucking morning. [08:37]
asciilifeform: http://trilema.com/forum-logs-for-13-apr-2017#2268216 << who the fuck sets MSG_PEEK flag and why [08:45]
a111: Logged on 2017-04-13 11:50 Framedragger: ohno wait this is something else.. i was planning to link https://nvd.nist.gov/vuln/detail/CVE-2016-10229 [08:45]
mircea_popescu: koch. [08:45]
asciilifeform: where? [08:45]
mircea_popescu: guess why. [08:45]
mircea_popescu: i'm using the name to represent the corruption. you know who sets it, usg agents set it. and for the obvious why. [08:45]
asciilifeform: i dun recall koch calling recv() ever [08:45]
asciilifeform: lolk [08:45]
asciilifeform: but i sat down and tried to answer concrete q, who and where sets it, so far found 0 examples in anything asciilifeform used or would use [08:46]
mircea_popescu: eh, as long as it gets people on the new kernel. it's good for them. [08:47]
asciilifeform: Framedragger do you happen to know of one ? [08:47]
trinque: asciilifeform: https://github.com/craSH/socat/blob/master/xio-udp.c#L220 << appears socat does [08:57]
mircea_popescu: nice find. apparently that's the ONLY thing on all github that does. [08:58]
asciilifeform: lol!! [08:59]
asciilifeform: http://btcbase.org/log/2016-02-05#1397434 [08:59]
a111: Logged on 2016-02-05 21:54 ascii_butugychag: '“I cannot for sure rule out the possibility of a backdoor,” said Gerhard Rieger, a Socat maintainer. “But personally I do not believe that the contributor has a backdoor because he uses an email address at a well known and reputated company, and if someone wants to install such a backdoor he would not use a parameter that can easily be proven as non prime.”' [08:59]
mircea_popescu: aha. socat, what more do oyu need. [09:00]
asciilifeform: + http://btcbase.org/log/2016-02-05#1397436 . [09:00]
a111: Logged on 2016-02-05 21:55 ascii_butugychag: 'A post to a technical forum discovered that the non-prime parameter was introduced more than a year ago. A note in the commit indicates that Socat was not working in FIPS mode because it requires a 1024 Diffie-Hellman prime, and added that a developer named Zhiang Wang provided a patch with the new prime. The poster revealed that Wang works at Oracle and contributes to Socat.' [09:00]
asciilifeform: anybody here have a massive gentoo tarball mirror ? try searching for MSG_PEEK ? [09:01]
mircea_popescu: just did. 3 hits on socat. [09:01]
asciilifeform: and no other? same here. [09:01]
mircea_popescu: hence my comment above. [09:01]
asciilifeform: or rather, 0 here [09:01]
asciilifeform: i dun have socat [09:01]
mircea_popescu: no, but lots of usg-tronic "corporations" do. [09:02]
mircea_popescu: fucking useless chinese names btw. gotta start requiring serial numbers from them folk, i betcha there's 10`000 "zhiang wang" s [09:03]
mircea_popescu: and besides, they all spell it randomly. [09:03]
Framedragger: asciilifeform: i dunno who uses it, either, and why would it be used. it's kind of "remind me about this later" feature, pretty weird/useless [09:23]
Framedragger: hm. are there cases when the program would be like, "i don't have resources to handle this, later", in some embedded/realtime/low-resource context [09:25]
Framedragger: prolly no cases where you couldn't use something saner instead? [09:25]
Framedragger: you can get the length of incoming message by other means than just reading it into the buffer (through ioctl or w/e) [09:28]
Framedragger: so hm good point, pretty retarded [09:28]
asciilifeform: gotta wonder, the folx who signed off on the fix -- why they are silent ? why linus - silent [09:32]
asciilifeform: could say the truth, in theory, 'only used in socat, inserted by wrecker' [09:33]
Framedragger: what are they supposed to say? that this is socat-specific? because it's not [09:35]
asciilifeform: Framedragger: as far as i can tell -- it is [09:35]
asciilifeform: also for some reason silence re authorship of the overflow.. [09:36]
Framedragger: maybe it is.. someone could be using it to get buffer length (folx exist who ask 'so how do i use MSG_PEEK for this...') [09:37]
asciilifeform: kernel is not vtronic, naturally, but linus dun take patches from thin air, they all have names attached [09:37]
Framedragger: can't you use `git blame` to find out the latter? [09:37]
asciilifeform: Framedragger: possibly [09:37]
Framedragger: and commits in linux are pgp-signed, not just "ok"d [09:37]
asciilifeform: Framedragger: so far nobody's turned it up anywhere but in socat [09:38]
Framedragger: there is that. [09:38]
Framedragger: i can find it elsewhere, too, but small/stupid projects [09:40]
Framedragger: !~google site:github.com "MSG_PEEK" [09:40]
jhvh1: Framedragger: recv MSG_PEEK flag ignored · Issue #4586 · kripken/emscripten ...: <https://github.com/kripken/emscripten/issues/4586> MSG_PEEK capability · Issue #551 · ARMmbed/mbedtls · GitHub: <https://github.com/ARMmbed/mbedtls/issues/551> hiboma/ MSG_PEEK .md at master · hiboma/hiboma · GitHub: <https://github.com/hiboma/hiboma/blob/master/kernel/net/MSG_PEEK.md> [09:40]
Framedragger: asciilifeform: actually i can see some rationale. checking that socat source and that line (https://github.com/craSH/socat/blob/master/xio-udp.c#L220), if you check the definition of buff1, it's `char[1]`. [09:44]
Framedragger: it seems to use MSG_PEEK to check info on the connected peer (and drop it if need be), and by using this, it can avoid allocating additional memory to take in whole buffer [09:45]
Framedragger: i guess you could also do `recv(&one_byte_buffer)` and then later `recv(&larger_buffer)`, too but their use at least makes some sense to me. imho. [09:46]
asciilifeform: Framedragger: this is foolish, you're reading the packet regardless [09:46]
Framedragger: (sure, data comes in to network card's buffer anyway) [09:46]
asciilifeform: it doesn't save memory. [09:46]
asciilifeform: it is the exact equivalent of an older idiocy, ungetc() [09:47]
Framedragger: it saves program-internal memory, but the card itself reads in the data regardless, sure. [09:47]
Framedragger: asciilifeform: hah, omg i've only heard about this and checking now, even the description is lulzy. "put stuff back into stream" [09:47]
asciilifeform: Framedragger: it saves no memory of any sort [09:48]
Framedragger: yeah i see what you mean. ultimately it's bullshit/snakeoil. i was just saying that ~some~ sense was had (but you'll prolly deny even that - fair enough) [09:48]
asciilifeform: does same thing as normal recv(), except for clearing the buffer. [09:48]
asciilifeform: so packet can be (why?!) read twice. [09:48]
asciilifeform: no, no sense. [09:48]
Framedragger: yeah i know i know, ultimately pointless [09:48]
Framedragger: hm i guess you don't save *any* memory, i can see why [09:49]
Framedragger: you read in to a fixed size buffer and then discard info/connection if need be. they're pretending to be 'only reading one byte' but it's the kernel which chops off one byte from the rest of the packet [09:50]
asciilifeform: still 'crediting the empire', eh, Framedragger . [09:51]
asciilifeform: 'but there's GOTTA be a valid reason!!1' [09:51]
asciilifeform: nope. there never is. [09:51]
Framedragger: i'll grant you that i'm this overly naive kid as regards these matters. but i fear the psychological alternative :) (becoming an angry man full of bile principle of charity has a psychological function to me, too). and eh, 'empire'. very binary [09:52]
Framedragger: also there is an easy habit to slip into by which you start discarding any things a priori. (mp-emulator: that's not a bad thing(tm)) [09:53]
Framedragger: http://btcbase.org/log/2017-04-13#1642864 << just for context/posterity, i meant ungetc() here, what a load of crap [09:56]
a111: Logged on 2017-04-13 13:47 Framedragger: asciilifeform: hah, omg i've only heard about this and checking now, even the description is lulzy. "put stuff back into stream" [09:56]
asciilifeform: Framedragger: fwiw i read the manpage prior to 'this is liquishit, there is 0 possible justification, it is exactly same as ungetc()' [09:58]
asciilifeform: i dun do the a priori thing. ( it may seem that way, because it does not ever take asciilifeform very long to distinguish flies from cutlets. but this comes from experience, and from flies and cutlets generally looking nothing alike. ) [09:59]
Framedragger: re manpage, thanks for educating me, as always - yeah ok it's the same thing [09:59]
deedbot: http://www.dianacoman.com/2017/04/13/bundling-with-foxybot/ << Ossasepia - Bundling with Foxybot [10:05]
asciilifeform: in other lulz, look which muppet is back in business : https://archive.is/31IH2 [11:23]
asciilifeform: ( see also http://btcbase.org/log/2015-01-12#974526 , http://btcbase.org/log/2015-01-12#974650 ) [11:27]
a111: Logged on 2015-01-12 18:59 mircea_popescu: bitcoin_charlie didn't you make a plea bargain ? [11:27]
a111: Logged on 2015-01-12 19:41 pete_dushenski: so bitcoin_charlie what brings you by on this sunny day ? [11:27]
asciilifeform: in yet-other lulz, https://archive.is/mcaLO >> 'NEW YORK -- Sheila Abdus-Salaam, an associate judge on New York state's highest court and the first African-American woman to serve on that bench, was found dead Wednesday in the Hudson River, authorities said. ... became the first Muslim judge in the United States when she started serving on the state Supreme Court in 1994 ... On the court, Abdus-Salaam was among the most reliable and [11:30]
asciilifeform: steadfast liberal voices, regularly siding with vulnerable parties -- the poor, impoverished ... ' [11:30]
trinque: http://btcbase.org/log/2017-04-13#1642876 << this is not unlike the "rich man must be sad" trope, could instead take pleasure in the way one keeps his cranial house. [11:45]
a111: Logged on 2017-04-13 13:52 Framedragger: i'll grant you that i'm this overly naive kid as regards these matters. but i fear the psychological alternative :) (becoming an angry man full of bile principle of charity has a psychological function to me, too). and eh, 'empire'. very binary [11:45]
ben_vulpes: every single spiderweb does not get its own trial [11:45]
ben_vulpes: here's a vacuum cleaner, get to work [11:45]
* Framedragger sees point. [11:47]
asciilifeform: in other lulz, apparently there is NOT a standard way to grep inside tar.gz. [11:52]
asciilifeform: ( zgrep only greps inside the unzipped tar, producing, e.g., '/usr/portage/distfiles/foo.tar.gz:Binary file (standard input) matches' and dun work on bz2 . [11:52]
asciilifeform: ) [11:53]
asciilifeform: infuriating idiocy. [11:53]
asciilifeform: orc glyphs, gender commits -- as many as you want. useful everyday tools -- none. not since, say, 1995. [11:53]
doppler: why not use a pipeline? [11:54]
asciilifeform: doppler: elaborate [11:54]
trinque: yup, can untar to stdout [11:54]
doppler: gunzip | tar | grep [11:54]
trinque: I'd do it through find for multiple files [11:54]
doppler: yeah [11:54]
asciilifeform: and how about bz2 ? [11:55]
trinque: flag to tar [11:55]
trinque: j [11:55]
trinque: oh right, I mean the bash solution gets hairier from there [11:56]
* trinque backs away slowly [11:56]
asciilifeform: it gets exponentially uglier. [11:56]
asciilifeform: doppler, trinque : the pipe method loses the filename in which the match was found [12:03]
doppler: yeah, I'm working on that now [12:03]
asciilifeform: e.g., tar xvfz cmake-2.8.10.2.tar.gz --to-stdout | grep -H MSG_PEEK > liquishit.txt [12:03]
asciilifeform: you get: [12:03]
asciilifeform: (standard input):#ifdef MSG_PEEK [12:03]
asciilifeform: (standard input): (RECV_TYPE_ARG3)1, (RECV_TYPE_ARG4)MSG_PEEK) == 0) { [12:03]
doppler: this sort of works -> http://stackoverflow.com/a/2407231 [12:03]
doppler: they get the file index, and then grep each file separately [12:03]
asciilifeform: sounds miserably slow [12:04]
doppler: yeah probably [12:04]
asciilifeform: http://wotpaste.cascadianhacker.com/pastes/WfMq7/?raw=true << preliminary list of infected packages, from a well-used gentoo box [12:04]
asciilifeform: mircea_popescu , trinque , Framedragger , et al ^ [12:04]
asciilifeform: and this is ONLY .tar.gz [12:04]
asciilifeform: there are also bz2, which i have not tested (zgrep dun work on'em) [12:05]
doppler: if you just want match then it's easy, as you said [12:05]
doppler: don't need zgrep [12:05]
asciilifeform: i want the motherfucking filenames and lines. [12:05]
trinque: musl's probably defining the thing in net.h or w/e it was [12:05]
asciilifeform: and hah, bzgrep exists [12:08]
shinohai: today is the 13th (Maundy Thrursday) There are now 13 Lords. [12:08]
Framedragger: asciilifeform: neat [12:08]
Framedragger: pkg-config, oh good [12:08]
shinohai: Tjis could be a sign of imminent apocalypse [12:08]
asciilifeform: Framedragger: not all of the hits are actual real-life invocations [12:08]
asciilifeform: but we won't know until we have a proper search [12:09]
trinque: aha, asciilifeform, musl defines the flag only, in include/sys/socket.h:262 [12:09]
ben_vulpes: openssl, surprise [12:09]
trinque: crypto/bio/bss_dgram.c has several invocations with recvmsg [12:11]
asciilifeform: i'ma guess that mircea_popescu was grepping compressed tarballs with plain grep and naturally found nothing. [12:12]
asciilifeform: (i initially did same, when waking up) [12:12]
asciilifeform: naturally all versions of gcc match ( they gotta, they have the header in'em -- snore ) [12:13]
* asciilifeform marvels at the 'respectable kompooter sekoority community' today doing 10,000,001 things, none of them being THIS [12:14]
BingoBoingo: <Framedragger> i'll grant you that i'm this overly naive kid as regards these matters. but i fear the psychological alternative :) (becoming an angry man full of bile principle of charity has a psychological function to me, too). and eh, 'empire'. very binary << There's more than one psychological alternative. Why do you automatically go to the worst case? [12:14]
asciilifeform: mircea_popescu , trinque , Framedragger , et al : part 2 : the bz2 search : http://wotpaste.cascadianhacker.com/pastes/iJwoo/?raw=true [12:15]
Framedragger: BingoBoingo: i smell bile and i hate that taste. but possibly i am misconstruing things (i.e., not actual bile in #t) [12:15]
asciilifeform: ( bzgrep MSG_PEEK ..... ) [12:16]
trinque: dhcpcd << lol [12:17]
Framedragger: xchat.. RCE on irc users heh [12:17]
BingoBoingo: Framedragger: Bile serves a useful function. Without bile you become a cardiac case, a hangry hangry hamplanet. [12:17]
asciilifeform: gentlemen, start yer engines, perlists, awkists. [12:17]
asciilifeform: gotta get the line matches, with context (say, 5 up / 5 down from match.) could qntra it. [12:18]
Framedragger: need to start thinking about internetcensus2012 reboot, i tell ya [12:18]
BingoBoingo: Framedragger: You simply have to have a healthy bile cycle, don't try to live without bile, but also don't try to hold it all in. [12:19]
Framedragger: that makes sense :) circulation is the keyword i suppose [12:20]
Framedragger: asciilifeform: busy at work unfortunately but would be a good effort, yeah [12:24]
asciilifeform: now, not all of these invocations are of recv() for udp. most -- tcp. [12:47]
asciilifeform: (still retarded, as discussed earlier, but won't trigger this particular boobytrap) [12:48]
asciilifeform: sadly there is no automatic means to discover which of the proggies contain exploitable invocations, other than with hard grindstone sweat (or usg's automated tool!1111) [12:49]
asciilifeform: https://news.ycombinator.com/item?id=14105718 ( https://archive.is/nmX2h ) << witness the unsurprising chorus : 'nobody used it! NOBODY! shuddup terrorist' [12:56]
mod6: testing out this first fg here. [12:57]
asciilifeform: mod6: oh hey [12:57]
asciilifeform: mod6: works ? [12:57]
mod6: im using gentoo, having a hard time figuring out which usb device the one. i suspect that it's /dev/tty1 but lsusb doesn't exist on this box. [12:58]
asciilifeform: it will never be tty1 [12:58]
mod6: it ~does~ power on though [12:59]
asciilifeform: will be, in all likelihood, /dev/ttyUSBn [12:59]
asciilifeform: where n is 0...9 [12:59]
asciilifeform: (depending on how many other ttl dongles you have) [12:59]
asciilifeform: check dmesg after plugging in, it will be clearly visible. [12:59]
asciilifeform: then you can the the stty thing from the instructions. [12:59]
mod6: werd. [12:59]
asciilifeform: (unfortunately NO unixlike sets 8bit cleanliness by default, afaik) [13:00]
Framedragger: via that HN post, https://codesearch.debian.net/search?q=recvfrom+.*+MSG_PEEK [13:00]
Framedragger: ^ could be useful [13:00]
asciilifeform: Framedragger: it seems to find strictly 1) glibc 2) quake (?!) [13:00]
* Framedragger tried fg last weekend, was all good, (very) small sample (2.7MB) had 7.999936 bits of entropy per byte. but yet to test more thoroughly, including removing shields, etc. [13:01]
asciilifeform: Framedragger: recommended sample size is 1GB [13:01]
Framedragger: asciilifeform: nah if you iterate thru pages will be other packages as well [13:02]
mod6: dmesg says 'usb 3-2' for this guy. [13:02]
Framedragger: asciilifeform: that's why i didn't wave around with the result :) yeah need to do more testing for sure. [13:02]
asciilifeform: Framedragger: dieharder in particular loops around . (why ? because customary bit-poverty) [13:03]
asciilifeform: mod6: ls /dev/ttyUSB* gives you what ? [13:03]
mod6: no, i have no /dev/ttyUSB devices at all. [13:03]
asciilifeform: hot damn, you found one of those linuxen with no pl2303 support ?! [13:04]
mod6: which is kinda weird, because i hvae a usb keyboard too [13:04]
asciilifeform: or do you have module loading disabled ? [13:04]
asciilifeform: (if you do, you will have to compile pl2303 into the kernel) [13:04]
mod6: ah, hmm. ok. [13:04]
Framedragger: asciilifeform: ah, only glibc etc if "recvfrom" in keywords, you're right. but if only "recv" (https://codesearch.debian.net/search?q=recv+.*+MSG_PEEK&page=1), then lots of results [13:05]
Framedragger: (it's possible that bug isn't triggered if you only recv(), not recvfrom(), but i didn't look into it to confirm) [13:05]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642842 << they misperceive the cost of not saying so as well as the cost of saying so. why's girl in highschool not say "i hate these dumbass girls who claim they're my friends and absolutely like you" ? because human nature. [13:12]
a111: Logged on 2017-04-13 13:33 asciilifeform: could say the truth, in theory, 'only used in socat, inserted by wrecker' [13:12]
asciilifeform: mircea_popescu: see continuation of thread [13:15]
mircea_popescu: will. [13:17]
asciilifeform: Framedragger et al : bzgrep -E 'recvfrom.*MSG_PEEK' /usr/portage/distfiles/*.tar.bz2 zgrep -E 'recvfrom.*MSG_PEEK' /usr/portage/distfiles/*.tar.gz zgrep -E 'recvfrom.*MSG_PEEK' /usr/portage/distfiles/*.tgz [13:18]
Framedragger: asciilifeform: btw udp_recvmsg() is the kernel-internal function which is vulnerable. need to check callstack of recvfrom() vs recv(), possibly only recvfrom() is vulnerable (thereby reducing set of exposed programs greatly). otherwise even more funtimes. [13:19]
Framedragger: ah nice ^ [13:19]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642845 << that is misunderstood esprit de corps. it's visible when child does something stupid, gets punished for it, and mother shows up at school to protest ~the punishment~. the fact her son does stupid shit does not bother her -- on the contrary, she knows where he got that from, which knowledge fills her of joy and hope for the future. perhaps if she insists the dumb will inherit the ea [13:21]
a111: Logged on 2017-04-13 13:36 asciilifeform: also for some reason silence re authorship of the overflow.. [13:21]
mircea_popescu: rth ? [13:21]
mircea_popescu: school should punish HER, of course. [13:21]
* mircea_popescu run highschool would have pillory for inept mothers, with topless zebra'd milfs there present almost every day. [13:21]
asciilifeform: lol zebra [13:22]
Framedragger: huh gdb's `bt` is not giving me backtrace. i put a breakpoint on recvfrom(), it got called and everything, and `bt` gives me squat. compiled with debug symbols. go back to school framedragger [13:25]
mircea_popescu: o.O [13:25]
mircea_popescu: this is a new one. [13:25]
Framedragger: is just me i'm sure [13:25]
mircea_popescu: you must be doing something creative. [13:25]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642876 << which adult strikes you as fulla bile ? [13:26]
a111: Logged on 2017-04-13 13:52 Framedragger: i'll grant you that i'm this overly naive kid as regards these matters. but i fear the psychological alternative :) (becoming an angry man full of bile principle of charity has a psychological function to me, too). and eh, 'empire'. very binary [13:26]
Framedragger: "custom shitty udp program" probably fits the bill [13:26]
Framedragger: mircea_popescu: i dare not say, it's more of an emergent effect, a piece from one, a piece of another, and you get a log full o' it [13:27]
mircea_popescu: is that so ? hm. [13:27]
Framedragger: only to an extent, and as BingoBoingo said, circulation. tide goes in, tide goes out [13:27]
mircea_popescu: who knows these things. [13:28]
Framedragger: i'm hangover af after $party, everything is black currently (doesn't happen often, tbh) [13:28]
mircea_popescu: lol fulla bile after party ? [13:28]
mircea_popescu: or wait, bile's green is it. [13:28]
Framedragger: fulla set of different liquids [13:29]
ben_vulpes: http://btcbase.org/log/2017-04-12#1642721 << you mean to tell me that you're culturing some weird population on your floss and then rubbing that all over delicate, highly permeable mucous membranes wired directly to your brain? [13:29]
a111: Logged on 2017-04-12 21:58 danielpbarron: http://btcbase.org/log/2017-04-12#1642660 << i don't use mouthwash, brush and floss once a day (with regular non vibrating brush, and i reuse the floss untill it splits apart or breaks) -- hadn't been to the dentist in over 8 years went in last year and they tell me my teeth are in great shape considering, although i did have to get some cavities fixed (mostly in wisdom teeth which is expected. and yes i still have my wisdom teeth [13:29]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642884 << lolz. camp fed fellow, expert in usg-bitcoin issues and items of interest ? mmkay. [13:30]
a111: Logged on 2017-04-13 15:23 asciilifeform: in other lulz, look which muppet is back in business : https://archive.is/31IH2 [13:30]
asciilifeform: Framedragger, mircea_popescu , et al : http://wotpaste.cascadianhacker.com/pastes/N9Eir/?raw=true << zgrep -E 'recvfrom.*MSG_PEEK' ... ( and bzgrep ...) from several gentoo boxen here. i even found one with -- lol -- socat [13:30]
mircea_popescu: ben_vulpes nothing's "wired directly to brain" wtf are you on about. [13:30]
Framedragger: asciilifeform: nice, and seems realistic! [13:31]
asciilifeform: wtf is it doing in awk. [13:31]
mircea_popescu: those gcc matches. [13:31]
mircea_popescu: /usr/portage/distfiles/gcc-3.3.6.tar.bz2:Binary file (standard input) matches [13:32]
mircea_popescu: /usr/portage/distfiles/gcc-4.3.6.tar.bz2:Binary file (standard input) matches [13:32]
mircea_popescu: and then every gcc subsequent. [13:32]
doppler: uuudsaudas [13:32]
doppler: whoops. :( [13:32]
asciilifeform: mircea_popescu: no shit it's in gcc. headers. [13:32]
ben_vulpes: length of plumbing lines from gums and nasal membranes to brain ispretty short [13:32]
mircea_popescu: do you not have the rest of the 3.* tree asciilifeform ? [13:32]
mircea_popescu: ben_vulpes they're not plumbing lines. there is such a thing as brain-blood barrier. [13:32]
asciilifeform: mircea_popescu: not on running disk, they live on cd somewhere [13:32]
mircea_popescu: aha [13:33]
ben_vulpes: mircea_popescu: it is a thing ben_vulpes is baseline familiar with, believe it or not! [13:33]
ben_vulpes: did we ever do the "brain parasite from flushing sinuses with not-entirely-clean-water" thread? [13:33]
mircea_popescu: no. let's ? [13:33]
asciilifeform: ahahahaha guess what [13:34]
asciilifeform: gawk has proper invocation, exploitable [13:34]
asciilifeform: in socketopen() [13:35]
* asciilifeform had nfi that any awktron knew how to open sockets. [13:35]
ben_vulpes: why does gawk even socket? [13:35]
trinque: by now I assume the g prepended means "shit bolted to side" [13:35]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642888 <<->> http://btcbase.org/log/2016-07-10#1500604 in which vein, let me guess, this is because black, yes ? not because pantsuited, middle aged woman ? [13:35]
a111: Logged on 2017-04-13 15:30 asciilifeform: in yet-other lulz, https://archive.is/mcaLO >> 'NEW YORK -- Sheila Abdus-Salaam, an associate judge on New York state's highest court and the first African-American woman to serve on that bench, was found dead Wednesday in the Hudson River, authorities said. ... became the first Muslim judge in the United States when she started serving on the state Supreme Court in 1994 ... On the court, Abdus-Salaam was among the most reliable and [13:35]
a111: Logged on 2016-07-10 01:40 mircea_popescu: http://btcbase.org/log/2016-07-10#1500575 << let me guess, this is really the washington-thinktank-gendarmerie plan getting rid of those pesky washington-local-thinktanks ? plan proceeding according to plan ? [13:35]
mircea_popescu: tremble, bitches, because you will end up floating on the fucking river. all of youze. [13:35]
asciilifeform: tightvnc -- ditto [13:35]
asciilifeform: recvfrom(....MSG_PEEK [13:36]
Framedragger: nice. [13:36]
mircea_popescu: trinque that's accurate, actually. "shit improved by the radical communist branch of usg". a sort of "Bitcoin foundation" avant la lettre, "GNu the african antelope". [13:36]
ben_vulpes: mircea_popescu: http://www.cbsnews.com/news/tap-water-in-neti-pots-behind-two-brain-eating-amoeba-deaths-in-2011-investigation-finds/ [13:38]
mircea_popescu: how is this supporting "Sinus flushing" as opposed to, i dunno, "used to wash up pre anal sex" ? [13:39]
asciilifeform: and hey hey hey lbj!! [13:39]
trinque: asciilifeform having a great day over here what bile? [13:40]
asciilifeform: there's a recvfrom(...MSG_PEEK...) in apr. [13:40]
asciilifeform: y'know, it : http://apr.apache.org/docs/apr/1.5/group__apr__network__io.html [13:40]
asciilifeform: cleverly disguised, also, it doesn't specifically mention datagram. [13:40]
asciilifeform: anyone who uses apr, and works on datagram socket, gets nailed. [13:40]
asciilifeform: this is discussed afaik nowhere. but now -- here. [13:40]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642916 << actually can coax grep to properly recognize "multifile" by adding a /dev/null at end [13:41]
a111: Logged on 2017-04-13 16:03 asciilifeform: (standard input):#ifdef MSG_PEEK [13:41]
mircea_popescu: nfi why it thinks deluge from pile is single file, but anyway. [13:41]
asciilifeform: mircea_popescu: it dun do any good for searching in tars. [13:41]
mircea_popescu: tar xvfz cmake-2.8.10.2.tar.gz --to-stdout | grep -H "MSG_PEEK" /dev/null > liquishit.txt [13:42]
asciilifeform: and of course it thinks 'single file', it's presently the only known way to grep in a tar.gz. [13:42]
mircea_popescu: try it. [13:42]
asciilifeform: mircea_popescu: null result [13:42]
mircea_popescu: oh tar. doh. [13:42]
asciilifeform: aha! [13:42]
mircea_popescu: so detar it also! [13:43]
asciilifeform: it's what i ended up doing. [13:43]
Framedragger: (meanwhile gdb is "Target does not support branch tracing." (cpu doesn't support one way to do this it's an i5 omg) [13:43]
asciilifeform: (took fucking forever) [13:43]
mircea_popescu: asciilifeform hey, i recall having sed crash on me last week. "tools". zamac 100% quality guaranteed. [13:44]
mircea_popescu: Framedragger get better wintel!!1 ? [13:44]
asciilifeform: mircea_popescu: asciilifeform can't possibly be the first to ever try to search inside a dir of tarballs. srsly, 0 support?! [13:44]
Framedragger: wtf apparently server with xeon cores doesn't support it, either? [13:45]
mircea_popescu: you're not deserving. either of you. [13:45]
mircea_popescu: now if you were poor and "from a needy family" or however "two idiots had kids" is doublespoken today... [13:45]
mircea_popescu: i would be authorized to give you a sandwich. [13:45]
mircea_popescu: and pee mcnuggets. [13:45]
asciilifeform: Framedragger: i dun recall it ever working. [13:46]
asciilifeform: other than with intel's magic probe box. [13:46]
* Framedragger retires to pig farm [13:46]
asciilifeform: lulzily enough, asciilifeform ~has the box~ -- but 0 software for it, it never leaked. box turned out to contain empty fpga. [13:46]
asciilifeform: so of 0 use, unless somebody gets hold of the magic proggy. [13:47]
Framedragger: heh. [13:47]
mircea_popescu: dude what are you talking about i/we use gdb all the time to trace [13:47]
Framedragger: asciilifeform: would gdb be able to run on it, tho? with `record btrace`? just curious [13:47]
asciilifeform: Framedragger: nope and nope, intel's thing only works with their shitware [13:48]
asciilifeform: mircea_popescu: he wasn't trying for ordinary trace [13:48]
asciilifeform: but for 'record all jumps' [13:48]
Framedragger: mircea_popescu: function call history for c proggy? i prolly am doing sth horribly wrong, tho [13:48]
mircea_popescu: ah i guess oh. turns out ~i~ was doing some creative reading. [13:48]
Framedragger: bah. [13:48]
mircea_popescu: Framedragger something like "backtrace full" ? [13:49]
mircea_popescu: or could do backtrace full n to limit to n frames. [13:49]
mircea_popescu: but basically ctrl-c bt will print out the whole strack, one line per frame. if that's what you wanted ? [13:49]
Framedragger: full n gave me nothing but i'll recheck again [13:50]
mircea_popescu: you are running this in gdb yes ? [13:50]
Framedragger: yeah [13:50]
asciilifeform: Framedragger: https://archive.is/qEQNe << likbez [13:50]
Framedragger: i sorta did want 'any and all jumps' but should be enough for now maybe [13:50]
Framedragger: mircea_popescu: asciilifeform: ty [13:50]
mircea_popescu: yeah, that's not actually available. i doubt even intewl thing ever worked as advertised (which is the true explanation of the rarity) [13:51]
mircea_popescu: it is a more difficult taks than immediately apparent. [13:51]
asciilifeform: mircea_popescu: iirc it worked by cordoning off a portion of l0/1 caches to use as trace record [13:51]
asciilifeform: (and to store whatever else that dun fit in the standard debug regs) [13:52]
mircea_popescu: which works for fixed length tree ? ookayt. [13:52]
mircea_popescu: hm. [13:52]
asciilifeform: well of course fixed, how else. [13:52]
mircea_popescu: well so then what use it is ? as per alfism, not reliable, worse than useless!!1 [13:52]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642939 << bwahahaha. [13:53]
a111: Logged on 2017-04-13 16:11 trinque: crypto/bio/bss_dgram.c has several invocations with recvmsg [13:53]
asciilifeform: it's as reliable as the box it was slaved to, signalled when the bucked filled, to go and empty. [13:53]
asciilifeform: but again i don't have a working set of box+proggy. only box and manuals. [13:53]
asciilifeform: ( also note, rarely is anyone interested in ALL possible branches in ALL of ram -- typically you want some particular set. ) [13:54]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642960 <<< yeah, it's quite evidently usg burning one of their few remaining good exploits once they finally figured out it was leaked and used by republican interest. [13:55]
a111: Logged on 2017-04-13 16:56 asciilifeform: https://news.ycombinator.com/item?id=14105718 ( https://archive.is/nmX2h ) << witness the unsurprising chorus : 'nobody used it! NOBODY! shuddup terrorist' [13:55]
mircea_popescu: http://btcbase.org/log/2017-04-13#1642982 << such lulz that thing. really, looping over the entropy ? [13:58]
a111: Logged on 2017-04-13 17:03 asciilifeform: Framedragger: dieharder in particular loops around . (why ? because customary bit-poverty) [13:58]
asciilifeform: mircea_popescu: you'll also love how it is done because... prngs sometimes PASS when you do this (how ? idk) [13:58]
mircea_popescu: in any event i am looking forward to the princeton paper providing the original research of "shit we read on #trilema that we came up with ourselves shut up terrorist!!1" [13:59]
mircea_popescu: perhaps it'll be stanford or mit or "another" meaningless head of the same turd of agglomerated stupidity though. for flavour. [13:59]
asciilifeform: mircea_popescu: per the tards' internal logic -- 'we burned the vuln -- we own the tendrils' [14:00]
asciilifeform: pretty sure that they earnestly see it like this. [14:00]
asciilifeform: also i have difficulty picturing enemy burning a hole without having ready replacement. [14:01]
asciilifeform: (dun mean it's impossible.) [14:01]
mircea_popescu: o, you mean like they obsoleted the only remaining useful us plane without having as much as a proper paper replacement for it ? [14:09]
mircea_popescu: yeah, i see it. [14:09]
asciilifeform: waiwat [14:09]
asciilifeform: warthog is actually gone nao ? [14:09]
mircea_popescu: !#s warthog [14:09]
a111: 14 results for "warthog", http://btcbase.org/log-search?q=warthog [14:09]
asciilifeform: iirc it was spared, last-minute. [14:09]
mircea_popescu: no, but they ~obsoleted~ it. the trick is that in physical engineering you are allowed backsies. [14:09]
asciilifeform: the lulzy bit re pwnholes is that they are a renewable resource: every major version of ~everything introduces a few dozen new ones. [14:13]
asciilifeform: the almost forcible induction of gendercommitters, wimminzintech, etc. mushminds into open sores -- tops off the supply of deniable, 'free-range, organically grown' liquishit [14:14]
mircea_popescu: except teh terrorists don't upgrade. [14:15]
mircea_popescu: end up with the same three herbivores on iphone. [14:15]
asciilifeform: if only [14:15]
asciilifeform: megatonnes of 'internet of shit' boxen hanging around, unpatchably. [14:16]
asciilifeform: ( the various 'buried in cement' routers, modems, etc. exhibited in phuctor , say . ) [14:16]
asciilifeform: they're the intended victim, much of the time. [14:16]
mircea_popescu: who was the anodyne condolezza rice clone that was doing "revolutionizing" ukraina and failed so spectacularily ? [14:17]
asciilifeform: psaki ? [14:17]
mircea_popescu: i confess i have trouble retaioning the names of all these c list starlets [14:17]
mircea_popescu: asciilifeform nah [14:17]
asciilifeform: in other lulz, bitbet.us '...is no more, for what he thought was h2o, was h2so4' [14:18]
mircea_popescu: o btw, no more visa free travel in eu for ustards. [14:18]
asciilifeform: ( http://archive.is/fJuR7 << expert entomologists only ! ) [14:18]
asciilifeform: '...for all the bad rep Mircea Popescu gets (trolling, narcissist and an asshole in general), his websites are trustworthy, never been hacked and works.' << lel [14:19]
asciilifeform: 'Also on #bitcoin-assets, but that place is very toxic. People on #bitcoin-assets probably have info about bitbet.us, but they aren't quite sane, so be careful.' << lolx2 [14:20]
mircea_popescu: oh what the fuck was her name. [14:22]
mircea_popescu: dumb bitch, kept trying to push "orange revolution" angle and whatnot, 30 years out of date. [14:23]
Framedragger: tymoshenko? [14:24]
mircea_popescu: o look at that -- wikipedia page re "orange revolution" includes no verbiage of usg involvement mentions vaguely "russian nationalist groups". [14:24]
mircea_popescu: Framedragger nah, us citizen, dept of state aparatchick. [14:24]
Framedragger: ah, ok interesting heh [14:24]
asciilifeform: mircea_popescu: sorta the whole point in even having pediwikia -- so that they can have this. [14:24]
mircea_popescu: just about, yes. [14:25]
Framedragger: http://btcbase.org/log/2017-04-13#1642997 << lulzy: http://www.ecsl.cs.sunysb.edu/elibrary/linux/network/udprecv.pdf diligently follows path of recvfrom() and the likes, *quotes the lines around the bug*, but fails to notice anything bad. if you didn't know, it'd be a very nuanced thing showing that the monk is not actually a good monk [14:27]
a111: Logged on 2017-04-13 17:19 Framedragger: asciilifeform: btw udp_recvmsg() is the kernel-internal function which is vulnerable. need to check callstack of recvfrom() vs recv(), possibly only recvfrom() is vulnerable (thereby reducing set of exposed programs greatly). otherwise even more funtimes. [14:27]
mod6: nice. all of the basic tests passed. [14:32]
mod6: on to the advanced tests. [14:32]
asciilifeform: congrats mod6 [14:32]
mod6: thanks alf, looking good! [14:33]
asciilifeform: mod6: stty thing worked without problems ? [14:33]
asciilifeform: ( i must point out, if it doesn't , you may not get any warning, other than idiot linux kernel silently dropping bytes, e.g. 0x03 ) [14:33]
mod6: naw, I gave up on gentoo for the time being, and just used a old deb build machine i've got laying around. [14:34]
mod6: worked straight away. [14:34]
asciilifeform: it has to be done on all known unixlikes. [14:34]
asciilifeform: default is a non-8bitclean tty. [14:34]
asciilifeform: why -- ask the wreckers, not me. [14:34]
mod6: the profile i had on that gentoo machine was 'default/linux/amd64/13.0/nomultilib' and i think it was just an uber basic kernel [14:34]
asciilifeform: where did mod6 get the idea that this was a gentoo-specific thing ? [14:35]
asciilifeform: because it isn't [14:35]
mod6: i don't have that notion. just saying, that this one didn't abide. [14:35]
mod6: was the first box i tried. [14:35]
mod6: i may give some other boxen a try here at some point too. got a handfull of gentoo boxes, freebsd, openbsd, etc. [14:36]
mod6: anyway, am now collecting the fg.bin upto 1Gb. [14:37]
mircea_popescu: o btw, http://btcbase.org/log/2015-06-05#1155360 <<->> http://btcbase.org/log/2017-03-29#1634156 for the record. [14:38]
a111: Logged on 2015-06-05 18:36 mircea_popescu: "[Personal experience: I have taken on a recent high school grad (friend’s son) as an intern in my web development business. He was an above-average student in a Harvard University intro CS class and also completed AP Computer Science in high school plus an additional programming class. His current productivity is about 1/100th of a $25/hour Ukrainian or Filipino contract programmer so any wage+benefit package above [14:38]
a111: Logged on 2017-03-29 17:50 mircea_popescu: not for a fucking second. he is enabling the misbehaviour of 30yo children. i gotta do more work bitchlapping these idiot cunts into the ground because he buys them food and doesn't makle them pay for the shiot they break. [14:38]
mircea_popescu: and in other lulz : http://www.globalresearch.ca/ukraine-protests-carefully-orchestrated-the-role-of-canvas-us-financed-color-revolution-training-group/5369906 [14:38]
mircea_popescu: (apparently dept of state running out of funds, reuse agitprop materiel) [14:38]
mircea_popescu: asciilifeform victoria nuland! [14:38]
asciilifeform: aaah yes! [14:38]
asciilifeform: in related lulz, https://wikileaks.org/clinton-emails/emailid/23225#efmAGIAHu [14:50]
mircea_popescu: well, sincd we're doing linking, http://readersupportednews.org/opinion2/277-75/22758-meet-the-americans-who-put-together-the-coup-in-kiev [14:58]
Framedragger: AQ for al qaida? [14:59]
mircea_popescu: yea [14:59]
Framedragger: nice. [14:59]
trinque: further down named in full [14:59]
deedbot: http://trilema.com/2017/in-case-you-were-wondering-where-all-the-worthless-nuland-drones-ended-up/ << Trilema - In case you were wondering where all the worthless Nuland drones ended up [15:04]
mircea_popescu: (the link is particularly funny for the amounts. when it comes to turkey dollars, usg is really poor. 40k here, 10k there, 5k overages accounted for --- a far cry from the "we lost one trillion dollars in 100 bills that never existed" dept of war fare.) [15:07]
mircea_popescu: anyway, on meditation there's substance to Framedragger 's protest, though perhaps not the sort he'd like. the impulse to "generosity", ie unqualified giving is how people end up in trouble / how the whole mess was engineered in the first place. when you've two oxen yoked to the same cart and one's smaller, sickly and can't pull, some people will naturally have the correct reaction to whip it to death. others will naturaly ha [15:20]
mircea_popescu: ve the suicidal reaction to "try and help it", ruining carts and setting the world on fire in the process. [15:20]
mircea_popescu: tis what it is. [15:20]
asciilifeform: in other lulz, analytical balances have, apparently, come quite a long way since the days of http://btcbase.org/log/2015-11-19#1326780 : http://nosuchlabs.com/pub/balance.jpg [15:30]
a111: Logged on 2015-11-19 02:58 asciilifeform: had an analytical balance sold for use with diamonds and rare earths [15:30]
mircea_popescu: is that a -3 gram weight ? [15:31]
asciilifeform: lolno [15:31]
mircea_popescu: shows 6.77 with a 10g + item in ? [15:31]
asciilifeform: the weight is a test standard (for some reason the box came with 2, and 1 lives in a dedicated hole in the chassis) [15:31]
mircea_popescu: oh [15:31]
mircea_popescu: and does the test measure at 10.000 ? [15:32]
asciilifeform: in fact it does. [15:32]
mircea_popescu: impressive. [15:32]
asciilifeform: chinese thing, fiddybux. [15:32]
asciilifeform: fits in shirt pocket. [15:32]
mircea_popescu: what's it use ? [15:32]
asciilifeform: same piezo as everything else? [15:32]
mircea_popescu: performance piezo chinese make huh. nice. [15:32]
asciilifeform: now unlike the $maxint mettler, this thing probably dun have a thermo-compensator or gravimeter [15:33]
asciilifeform: but it seems to do the job. [15:33]
mircea_popescu: yeah, but it has test weights. just as good. [15:33]
asciilifeform: what i wonder is -- what this thing was intended for. [15:34]
asciilifeform: 20g is too small for the dope aficionados, i imagine [15:34]
asciilifeform: ( 20g is max load on this instrument ) [15:34]
mircea_popescu: no, actually 20g is plenty. [15:34]
mircea_popescu: looks like the chinese are returning the opium war favours. "here, measure your crack!" [15:34]
asciilifeform: the balances sold in american 'head shops' are typically slightly larger than this. [15:35]
asciilifeform: iirc. [15:35]
mircea_popescu: afaik most sold crack rock is 5g. [15:35]
asciilifeform: hm. [15:35]
asciilifeform: then would make sense. [15:36]
asciilifeform: ( prior to buying this little tool, asciilifeform used a... prehistoric su-era hanging balance . y'know, the kind 'lady justice' has . ) [15:38]
mircea_popescu: reason us-made balances are larger being that... they're crappier, helps mask it. [15:39]
mircea_popescu: total tech reversal omg. [15:39]
* mircea_popescu recalls the time su made "bigger" to hide "shittier" behind it. [15:39]
asciilifeform: mircea_popescu: i don't know of any us-made electronic balance [15:40]
asciilifeform: not since, idk, '70s [15:40]
asciilifeform: btw an ~accurate~ balance is a mighty useful thing to have. esp. if you deal with piles of physical objects that are nominally identical [15:41]
asciilifeform: and want to fist-pass test if this is in fact so. [15:41]
asciilifeform: (sorta physical equiv. of 'diff by file size') [15:42]
asciilifeform: ( http://www.mt.com/us/en/home/products/Industrial_Weighing_Solutions/AutomPrecision/High_Precision_Weigh_Modules/WX_Weigh_Modules/WXS_Weigh_Modules/WXS205SDU15_DualRange_Weighing_Module.html << the machine mentioned in earlier thread re subj. finally found the vendor link. ) [15:44]
asciilifeform: http://media.mt.com/dam/ind/Line_Pages/WeighModules_LoadCell/High_Precision_Weigh_Modules/LP-WXS-Weigh-Module-USP2-1010x300.png/_jcr_content/renditions/cq5dam.web.1280.1280.png << is a good photo of what asciilifeform used it for [15:45]
asciilifeform: also worked great for z-axis zeroing (pick up pipette, then stab at the estimated height of the weighing platform, stepwise, until it registers ) [15:46]
mod6: !!deed http://p.bvulpes.com/pastes/3j4QZ/?raw=true [15:47]
deedbot: accepted: 1 [15:47]
asciilifeform: damn. [15:47]
asciilifeform: sorry to hear this, mod6 . [15:47]
mod6: Thanks asciilifeform [15:48]
mod6: <3 [15:48]
* asciilifeform takes off hat. [15:48]
diana_coman: sorry to hear that, mod6 [15:49]
mod6: Thanks diana_coman [15:49]
mircea_popescu: condoleances. [15:50]
mod6: Thank you, Mr. Popescu. [15:51]
ben_vulpes: alas mod6. my condolences as well. [15:53]
mod6: Thanks ben_vulpes. [15:53]
mod6: fwiw, I hope that wasn't a sort of spam for the deedbot. [15:54]
ben_vulpes: more like absolutely appropriate. [15:56]
mod6: Thanks. [15:57]
mod6: She went downhill pretty fast over the last 12 weeks, but her suffering is over. [15:57]
trinque: sorry to hear this mod6. [16:01]
mod6: Thanks trinque [16:01]
mod6: In other, less depressing news... [16:03]
mod6: I'm up to 361k+ and onto blk0019 [16:03]
mod6: asciilifeform: I took bunch of pics while doing the basic tests of the FG. [16:03]
mod6: I'll write up something and put up the pics somewhere. making thumbnails is a pain in the ass... but will do it anyway. [16:04]
phf: mod6: my condolences [16:09]
mod6: Thanks phf [16:10]
mircea_popescu: mod6 mp-wp makes thumbs automatically! [16:28]
mod6: aha, good to know. thx :] [16:30]
mircea_popescu: !#seen znort987 [17:05]
a111: 2016-10-22 <znort987> A fresh set of opinions on the topic would be welcome [17:05]
ben_vulpes: "goxxed!!!" [17:10]
mircea_popescu: some dude asking me on trilema. da fuck can i tell him. [17:12]
ben_vulpes: another lesson in ongoing curation of one's wot [17:13]
mircea_popescu: "it'd have actually been much better for everyone if http://btcbase.org/log/2016-03-13#1431645 ie i had actually kept the bitcoin." is an obvious thing one could say, but whatever. [17:13]
a111: Logged on 2016-03-13 21:02 ben_vulpes: "I will simply consider the matter moot." << and keep bettor funds if no receiver steps forward? [17:13]
mircea_popescu: (no, by no means the first case of "let's take republic wealth and "sell"/give it to usg". our short but rich history is littered with that sort of dorkitude, from http://btcbase.org/log-search?q=from%3Abugpowder to name your poison, which is how "taking investors" ie, allowing outsiders into the wealth even got such a bad name in the first place. the last fucking thing i want is MORE mentally stunted midgits making a profit [17:21]
mircea_popescu: in btc only to immediately turn around and put that behind the usg idiocy du jour.) [17:21]
ben_vulpes: in other constantly increasing costs of cross-referencing all of the inanity all of the time, "'ai' picks up biases from texts on which it's trained" [17:37]
ben_vulpes: a) wat, b) SURPRISE [17:37]
mircea_popescu: lol [17:38]
Framedragger: mod6: so sorry to hear that, man, my condolences. [17:41]
mircea_popescu: for the curious : condolences comes from latin, con - together, dolent, pain. [17:43]
mircea_popescu: indolent has the same root, "one who feels no pain", in the sense of the pain of being a worthless pos. like legendarily some species of africans, "not worth the whipping". [17:43]
pete_dushenski: mod6: sorry for your loss. that's tough. [17:49]
pete_dushenski: damn znort987... there was no way he was going to make his 86btc back at 1 or 2% margins was there. roi approached infinity as bitbet lost broader republican usage and support. shame. [17:51]
mircea_popescu: well, i dunno, back in the day people kept saying things about marketing or whatever. [17:52]
* CompanionCube is very sory for mod6's loss, but at least their suffering is over. [17:53]
pete_dushenski: mircea_popescu: somehow marketing must've just added to expenses! [17:53]
mircea_popescu: i thought marketing is the only thing that adds to revenue, unlike everything else like say engineering etc, that adds to costs. [17:54]
mircea_popescu: i guess this is one of those things people say with no expectation of ever being asked to actually carry through or something. [17:54]
pete_dushenski: you've been reading too many books again, haven't you. [17:55]
mircea_popescu: i skim. [17:55]
mircea_popescu: and, of course, nubbins / the rest of the "defenders of the public interest" will now reach into their deep pockets and make that public interest whole, amirite ? [18:01]
asciilifeform: re: ^ >> <kakobrekla> want me to spin up a fresh instance lol [18:02]
mircea_popescu: i'm sure. [18:02]
Framedragger: (i'm angry with nubbins for upsetting the discourse back then, even tho i wasn't involved at all. shit like http://btcbase.org/log/2016-03-08#1426930 he's of a different kind entirely cf. kako in my mind.) [18:07]
a111: Logged on 2016-03-08 18:14 nubbins`: incidentally this was the idea from the start [18:07]
mircea_popescu: idealism is the notion that there exist "kinds" outside of what experience unfolds. [18:09]
mod6: Thanks Framedragger & pete_dushenski [18:10]
mod6: Thanks CompanionCube, indeed. [18:11]
shinohai: --------{---(@ <<< My condolences mod6 http://btcbase.org/log/2017-04-13#1643247 [18:48]
a111: Logged on 2017-04-13 19:47 mod6: !!deed http://p.bvulpes.com/pastes/3j4QZ/?raw=true [18:48]
lobbes: I offer my condolences, as well mod6. [19:04]
BingoBoingo: <mircea_popescu> or wait, bile's green is it. << Black or neon yellow depending on saturation [19:18]
mod6: shinohai, lobbes, Thank you. [19:43]
asciilifeform: in other noose, a geiger ( sbm-20 tube: sov., circa early 1980s ) tied to a 500g plastic bottle of KCl registers 0.18uSv/hr (incl. room background: 0.07 uSv/hr.) [20:12]
asciilifeform: 99.99% (supposedly) synthesis-grade kcl. [20:13]
mircea_popescu: so about 0.1 huh [20:15]
asciilifeform: this is just the gamma tho [20:17]
asciilifeform: ( kcl puts out a very scarce gamma per however many betas ) [20:17]
asciilifeform: very soon i will have with what to pick up the beta. [20:17]
asciilifeform: ( current idea being, ZnS+optical-grade-epoxy paste spread on PIN diode. ) [20:19]
mircea_popescu: could work. [20:19]
asciilifeform: btw very same geiger parked on top of common american smoke detector (unmodified!) (am-241) -- 0.54uSv/h [20:20]
mircea_popescu: they still sell those ? [20:24]
asciilifeform: no idea [20:24]
asciilifeform: house came with a pile of'em (mandatory!) [20:24]
* mircea_popescu has never lived in a place with smoke detectors. is a good life. [20:25]
asciilifeform: not to be confused with 'sprinklers' [20:25]
mircea_popescu: o, those either. fucking hell. [20:25]
mod6: wait, are you building your own geiger alf? [20:25]
mircea_popescu: nah he has legacy [20:26]
asciilifeform: mod6: i have a bog-standard geiger here in toolbox [20:26]
mod6: ah, ok. [20:26]
mod6: and KCl =~ Potassium Chloride? [20:26]
mircea_popescu: they're hard to calibrate in kitchen [20:26]
mircea_popescu: yes. [20:26]
asciilifeform: mod6: but contemplated experiment (see kcl thread ) is re something else [20:26]
mircea_popescu: it's a wonder they sell that, btw, considering how easy it is to kill someone with it. [20:27]
asciilifeform: mod6: the idea of 'ideal rngistor', self-contained diode+isotope, but also in such a way that $isotope is something that is sold worldwide and passes unmolested through the post etc. [20:27]
mod6: ah, sure. [20:27]
asciilifeform: mircea_popescu: with kcl ?! you'd have to stab somebody with it neh [20:27]
mircea_popescu: yeah, inject 10ml isotone, watch the heart failure. [20:27]
asciilifeform: 10ml of air also kills [20:28]
mircea_popescu: not even detectable unless someone's looking specifically. [20:28]
mod6: yeah, dont they use that stuff for leathal injections? [20:28]
asciilifeform: aha [20:28]
asciilifeform: mircea_popescu: believe or not, americans ~eat~ it [20:29]
asciilifeform: ( supposed to be a 'diet replacement for salt' or sumthing ) [20:29]
mircea_popescu: hey, americans eat ~everything. [20:29]
ben_vulpes: in the brief quiet, a surprising cover: https://www.youtube.com/watch?v=lyRm5kc9ZUY [20:31]
asciilifeform: meanwhile, from the dept. of liquishit, https://archive.is/zxmZA [20:32]
asciilifeform: re usg.'journalists' 'helping' snowdens, e.g., 'If you want to set up a secure way to communicate (which I think every journalist should) the best method is IM with an OTR encryption. You’ll need: a Jabber account, Pidgin IM client, and OTR plug-in.' [20:33]
asciilifeform: ^ for some reason, fresh batch. [20:33]
mircea_popescu: kik [20:33]
asciilifeform: ( get this -- pidgin. the thing with new 0day every 2 wks or so ) [20:33]
ben_vulpes: 4 mentions of pgp [20:34]
mircea_popescu: "otr" is not very specific either. [20:34]
mircea_popescu: anyway. im terrible idea for SECURE comms. because you leak time if nothing else. [20:34]
asciilifeform: mircea_popescu: 9/10 it means the lolcow 'libotr' [20:34]
mircea_popescu: if you want to communicate securely, reg your key and pastebin encrypted stuff. [20:34]
mircea_popescu: asciilifeform even if it did, the way in which it is ductaped to the whole shebang is more important in the end. [20:35]
asciilifeform: it gets better, [20:35]
asciilifeform: 'From the start, he said, their communication was flawed. Snowden had initially forgotten to provide his own PGP key, which meant that Micah’s reply couldn’t be encrypted. “Everything wasn’t perfect,” Micah said, recalling such missteps. “But there was no red flag, and I’ve gotten lots of emails from random anonymous people. I did pretty well, considering that I had no idea what the hell was going on. I kept switching a [20:35]
asciilifeform: nonymous identities. When I first talked to him, I made a new anonymous identity, and then when he got to Hong Kong, I switched. And when he left Hong Kong, I switched again.”' [20:35]
asciilifeform: get this, 'anonymous identities'. [20:35]
mircea_popescu: she's clueless, trying to say pseudonymous [20:35]
asciilifeform: nope, probably meant exactly this. 'anonymous' (in the sense of, no fixed rsa pub.) [20:36]
mod6: hello, this is dog! [20:36]
asciilifeform: 'hi, it's still me, here's my new key, now let's talk'--anonderp4398598395 [20:36]
mod6: just install jabber and talk to the dog, w00f! [20:37]
mircea_popescu: meanwhile at "what she should have been doing instead" ranch, http://68.media.tumblr.com/5bc80fc98bc47de87a0575b1a322db71/tumblr_o3hvmtIMT91uxdiqco1_1280.jpg [20:37]
ben_vulpes: nice rug [20:38]
mod6: haha [20:38]
mircea_popescu: ben_vulpes old country stuff. [20:38]
ben_vulpes: i grew up on prayer rugs quite like it [20:39]
ben_vulpes: older, rougher [20:39]
ben_vulpes: eventually parents bought shiny new [20:39]
ben_vulpes: palpable difference between that which came from grandpa's estate and the fresh purchases. [20:39]
asciilifeform: in classical su rug like this is 1) on floor 2) on wall (usually next to bed) [20:41]
asciilifeform: 'Once the ladder ended, it was easy to climb from branch to branch up to where the material was located. A bird had built a nest on top of the sealed container. Happily, the nest was empty: breeding season had passed. We opened the container. The item was inside. We remained in the tree for a while....' [20:42]
* asciilifeform pictures nsa goons with NJDs combing the woods [20:43]
asciilifeform: ( http://trilema.com/2013/and-then-i-said-to-him-jimmy << oblig!! ) [20:43]
mircea_popescu: lel [20:45]
mircea_popescu: meanwhile in "cheap and effective pet carrier" news, http://68.media.tumblr.com/6edd44baf2da5f6359ceb6379eef268f/tumblr_o3qp6oxFhq1tvpchzo1_1280.jpg [21:00]
asciilifeform: lol! [21:00]
* asciilifeform immediately thought 'vectored shit?!' [21:00]
deedbot: http://trilema.com/2017/hiking-inc/ << Trilema - Hiking, Inc. [21:15]
asciilifeform: police radio : '...no one was in danger. and the caller was anonymous.' [21:44]
mod6: no mosquitos!? [21:47]
mod6: im in the wrong locale. [21:47]
mod6: i just killed the first ones of the year, last weekend. which is pretty insane for Minnesota to have mosquitos /already/. [21:48]
mod6: I had my revenge though. [21:48]
mod6: It snowed on very early Tuesday morning and killed the SOBs. [21:48]
mod6: muhahaha [21:49]
mircea_popescu: i haven't yet seen one. or i think i might've seen one, that may also have been a misidentified wasp [22:01]
mircea_popescu: the variety of wasps they have here is staggering. i got TWO kinds nesting, one's a perfectly harmless paper wasp, they eat the polen off a vine growing ion the fence. the other's a mud hut building guy, i think he eats spiders. then a third really fearsome type showed up evidently praying on the first type... then later a fourth super tiny kind was discovered when one fell in my drink.... [22:02]
asciilifeform: cop 'a': 'your caller is janet. she wants to discuss... strange things with you. she says she saw strobe lights in her neighbour's house, and that he is communicating with her via... electromagnetic fields.' cop 'b' : 'yes i'm familiar with her' [22:02]
mircea_popescu: asciilifeform a good half of police work in all times, interfacing with bored / insane middle aged women. [22:03]
asciilifeform: i'd naively imagine they would 'excommunicate' these [22:04]
mircea_popescu: in functioning state entirely not up to them. [22:04]
mircea_popescu: meanwhile in home invasion news, http://68.media.tumblr.com/9142f815031afe4b548edd08528c563f/tumblr_oaz8rea7BC1uvwznco1_500.gif [22:04]
asciilifeform: i suppose dc is 'functional' then!11 [22:04]
asciilifeform: '...an ar-15, a shotgun, five pistols... in bedroom closet' [22:05]
asciilifeform: '... the complainant's dog is running around the house, strangely, as if it senses someone... ' [22:13]
mircea_popescu: is this in the "we're about to break and enter and trying to pretend like no warrant is needed because probable cause" ? [22:14]
asciilifeform: apparently [22:15]
mod6: the wasps sound nasty tho ya. [22:17]
mod6: <+mircea_popescu> asciilifeform a good half of police work in all times, interfacing with bored / insane middle aged women. << did alf just flip on his scanner? [22:17]
mod6: lol [22:17]
BingoBoingo: lol https://www.reddit.com/r/Bitcoin/comments/654yzl/goxxed_by_bitbetus_lost_16_btc/ [22:18]
mircea_popescu: they're not really the attacking type. [22:18]
asciilifeform: '...25 y.o. female... took entire bottle' [22:22]
asciilifeform: 'Mircea Popescu stole a large amount of BTC from BitBet.us prior to this...' << lol [22:23]
CompanionCube: lol: 'They used fake details for the domain registry. The "company" behind the domain is Polimedia which is currently in "Forfeited Existence" in Texas. The registry info has been the same even before they switched owners a year ago.' [22:27]
mircea_popescu: ahem ? [22:29]
CompanionCube: mircea_popescu: from some random redditor re: bitbet [22:30]
mircea_popescu: !#s polimedia [22:30]
a111: 649 results for "polimedia", http://btcbase.org/log-search?q=polimedia [22:30]
CompanionCube: ik it's yours [22:30]
CompanionCube: you'd think they'd update the whois *eventually* [22:30]
mircea_popescu: http://btcbase.org/log/2012-08-15#-319236 [22:30]
a111: Logged on 2012-08-15 19:45 mircea_popescu: smickles http://trilema.com/2012/falimentul-polimedia-srl/ there, 2011 results. the 2010 and 2009 are also published on my blog [22:30]
mircea_popescu: ~nothing changed, same corp numbers etc. [22:30]
CompanionCube: unfortunately I can't read romanian. [22:31]
asciilifeform: '...94 year-old, said he was a vet..' [22:32]
mircea_popescu: CompanionCube what is this relevant to ? [22:32]
CompanionCube: the linked blog post? [22:32]
mircea_popescu: you think ? [22:32]
mircea_popescu: aanyway, let's just say this bla bla has been going on for as long as there's been an internenet. nubbins abound, and they have shit to say about things, obviously. [22:34]
mod6: <+CompanionCube> unfortunately I can't read romanian. << i used to translate trilema from .ro for, a long while before it was ever written in english. [22:35]
mircea_popescu: meanwhile on the webz, The password should not contain the invalid characters like: ', ". [22:35]
asciilifeform: '...complainant's father is hitting her... ...he has access to long guns, a shotgun, but it was not used in this incident...' << lol! [22:36]
BingoBoingo: Condolences mod6, consider submittting obituary to paper of record? [22:37]
mircea_popescu: eh, too much publicity don't you think. [22:38]
mod6: Thanks BingoBoingo [22:42]
mod6: I don't think it needs to be announced otherwise. Just my way of tribute for my folks. [22:42]
mod6: My family appreciates the outpouring of sympathy from the Republic. [22:43]
mircea_popescu: Last updated at block 461176. << is that like 3 days ago ? [22:44]
BingoBoingo: <mircea_popescu> eh, too much publicity don't you think. << The option's available to the berieved lord [22:50]
mod6: wb [23:05]
mircea_popescu: ty! [23:05]
mod6: <+mircea_popescu> Last updated at block 461176. << is that like 3 days ago ? << i think trinque's node was down for repair for that wallet thing. might be behind a bit. not sure tho... [23:05]
mircea_popescu: ah yeah. [23:06]
mircea_popescu: did you ever nail that issue trinque ? [23:07]
deedbot: http://qntra.net/2017/04/bitcoin-mining-difficulty-up-4-238-to-520808749422-13983154/ << Qntra - Bitcoin Mining Difficulty Up ~4.238% To 520808749422.13983154 [23:13]
Category: Logs
Comments feed : RSS 2.0. Leave your own comment below, or send a trackback.
Add your cents! »
    If this is your first comment, it will wait to be approved. This usually takes a few hours. Subsequent comments are not delayed.