/tech/ - Technology

Quam diu etiam furor iste tuus nos eludet?

Boards | Catalog | Bottom

Check to confirm you're not a robot
Name
Email
Subject
Comment
Password
Drawing x size canvas
File(s)

Remember to follow the rules

Max file size: 350.00 MB

Max files: 5

Max message length: 4096


Anyone following the Intel vulnerability? Anonymous 01/05/2018 (Fri) 00:57:21 [Preview] No. 12159 [Reply] [Last 50 Posts]
The "Meltdown" and "Spectre" thing. Here:
https://lobste.rs/s/cx4jut/meltdown_spectre

Does it have any connection with the Sandsifter research?
22 posts and 6 images omitted.


Anonymous 01/23/2018 (Tue) 03:04:40 [Preview] No.12270 del
>>12267
>Me is on a separate CPU
From what I know it's just microcode running minix, there's no physical separation.

You should not trust a random anon. It's most probably fake, although it's true that most of the hardware today is backdoored. I personally think Meltdown is a backdoor. I imagine how many others is there, looking to be discovered and being used now to crack into China/Russia billionary transactions and watch Putin drinking a good vodka with NK military agents.

>your computer is your enemy
It's not. People are the enemy, not a machine.

You forgot to add that internet itself is also fucked. The billions the spend on submarine cables now companies owned by CenturyLink, Verizon, GCX and Zayo Group is not free from charges. IBM, DXC (HP) and Atos Origin are doing deep packet inspection on all connections these days.
Amazon, Akamai and Alphabet owns the first level interation (where the information is extracted) and then it's analysed by the companies above.

It's sad the capacity humans have to destroy beautiful things.


Anonymous 01/23/2018 (Tue) 18:42:38 [Preview] No.12271 del
>>12267
If that turns image out to be true, I will get my ribs removed and suck my won dick.

Although Linus makes a good point here, something is very off here, they either aren't coming clean that this is worse than they make out or this is actually a huge fucking backdoor.


Anonymous 01/23/2018 (Tue) 18:47:20 [Preview] No.12272 del
>>12271
We knew that Intel imbedded 3G in their processors since 2011. Any computer you use that has been manufactures post 2011 has built-in WiFi (which you CANNOT takeout) and cannot be air-gapped properly. This was mandated by the govt, supposedly, because they did not want "criminals" air-gapping their systems.


Anonymous 01/23/2018 (Tue) 19:01:30 [Preview] No.12273 del
(60.73 KB 630x473 WE WATCH YOU.jpg)
>>12270
>It's not. People are the enemy, not a machine.

True. But these evil creeps have compromised the machines we use and therefore we are stuck with enemy-compromised machinery (unless we build our own from scratch).

That said, yes the whole internet is completely unsecure. To simply air-gap a computer now you need to still be using a computer tower built from the '90s with a physical modem and ethernet connection. You need to physically remove (or cover up) cameras and microphones that are built-in. You should always be using a private encrypted VPN service, with browser safety features like spoofing the browser agent string with blender, using noscript to block third parties, routinely wiping out browser history/cookies (now all stored in sqlite db), HTTPS only, disabling all the other unsecure chrome features in about:config and so an and so forth... disc encryption to forward secrecy.

This is the only way we can defeat this today unless we can build our own machines, and then obfuscate / encrypt the communications which would take a lot of tech savvy work, time and money.

If you use a newer machine, anything new, expect to be compromised right off the bat.


Anonymous 01/24/2018 (Wed) 02:15:50 [Preview] No.12276 del
>>12272
>Intel imbedded 3G in their processors since 2011
No, they don't. The AMT and vPRO system documents says it can only *access* the 3G device, it does not have an receptor inside the processor, at least from what I know there's proof of it. Also, the IHS is made of cooper, they would not be able to receive the signal as a normal smartphone does.
tl;dr citation needed. You're not in 8ch to spread these false news fearmongering here.

>>12273
>other unsecure chrome features
>chrome
Are you kidding, right? I hope so.
Also, if your browser has support to javascript you're already fucked.
>private encrypted VPN service
You mean your own VPN using OpenIKED on a secure server, right? If you don't control the VPN, then it's not private.
>routinely wiping out browser history/cookies
You should not have those too.
>HTTPS only
Not needed for sites you only do GET requests, if you're already using IPsec and DNScrypt or Tor (with TorDNS enabled).
>disc encryption to forward secrecy

Message too long. Click here to view full text.




(144.77 KB 470x265 V1.jpg)
Vehicle Hacking Anonymous 01/16/2018 (Tue) 02:57:10 [Preview] No. 12198 [Reply] [Last 50 Posts]
Post and discuss the modification of vehicles!

Already have a laptop inside mine diverting power from the cars (Upgraded) alternator, and a few transmitters for improved communications and broadcasting.
9 posts and 1 image omitted.


Anonymous 01/19/2018 (Fri) 07:46:30 [Preview] No.12242 del
>>12221
I drive a hybrid and will drive an eletric soon. They told me understanding combustion engines would matter but they were wrong. I don't have time for your 100 year old tech.


Anonymous 01/19/2018 (Fri) 21:31:43 [Preview] No.12245 del
Why this thread got side tracker? Not even OP, but isn't it about "vehicle hacking"?
This is technology related, but this thread is not about it. Maybe create another one just to discuss engines and transportation technology...


Anonymous 01/19/2018 (Fri) 22:06:17 [Preview] No.12247 del
>>12218
I already do take care of horses though. And I can't really fix a modern car because it's basically proprietary shit all the way through, but honestly these days it's the difference between baking your own bread and going to Subway for grody sandwiches, it's such a suboptimal set of options.

I can't wait until the world explodes and we're on full Vampire Hunter D mode.


Anonymous 01/19/2018 (Fri) 22:19:03 [Preview] No.12248 del
>>12247
>full Vampire Hunter D mode


Anonymous 01/23/2018 (Tue) 02:11:06 [Preview] No.12269 del
Tesla Model S is remotely hijacked by glow in the dark CIA niggers, default. Period. I'm keeping my old vehicle.



Anonymous 01/17/2018 (Wed) 22:51:57 [Preview] No. 12217 [Reply] [Last 50 Posts]
What's your excuse for not writing and using your own mini gpg clone using https://github.com/jedisct1/libhydrogen ?
3 posts and 1 image omitted.


Anonymous 01/20/2018 (Sat) 16:46:46 [Preview] No.12251 del
>>12237
>The Cryptol specification language was designed by Galois for the NSA's Trusted Systems Research Group as a public standard for specifying cryptographic algorithms.
?


Anonymous 01/21/2018 (Sun) 15:23:07 [Preview] No.12255 del
>>12251
Just because it's designed for NSA doesn't mean it's bad. Actually, many protocols we use today was designed by, or helped, NSA, such as IPsec and TLS.
What I meant was that, if you want to create a crypto library, you need a proof that it works as specified.


Anonymous 01/22/2018 (Mon) 19:17:40 [Preview] No.12263 del
>>12255
>Just because it's designed for NSA doesn't mean it's bad. Actually, many protocols we use today was designed by, or helped, NSA, such as IPsec and TLS.
I know you probably weren't jewing me and that you're honest but it felt like it. It's made by the guy who made libsodium, and I rike it. I was posting it here so it gains some attention.


Anonymous 01/22/2018 (Mon) 19:54:33 [Preview] No.12264 del
Is it compatible with SystemD?


Anonymous 01/28/2018 (Sun) 21:11:13 [Preview] No.12306 del
>>12217
not even clicking link
it just sounds like another stupid hyped crypto library. i could just write the crypto myself



Interesting google searches Anonymous 12/29/2017 (Fri) 09:56:01 [Preview] No. 12099 [Reply] [Last 50 Posts]
From funny to obvious brain washing, list them here.

Google Images:
"Jewish Piano"
"European people history"

Google Search:
"middle east evil" reclick search box for suggestions after search

Youtube search suggestions:
"how to have" recently removed https://news.slashdot.org/story/17/11/27/1314213/youtubes-search-autofill-surfaced-disturbing-child-sex-results
13 posts and 3 images omitted.


Anonymous 01/02/2018 (Tue) 00:14:20 [Preview] No.12128 del
>>12127
Looks like some retards never learn.


Anonymous 01/03/2018 (Wed) 18:28:26 [Preview] No.12157 del
>>12128
Dude, look. There are literally 5 people on Endchan as a whole this second. This isn't "major" in any way.


Anonymous 01/09/2018 (Tue) 18:51:17 [Preview] No.12178 del
>>12157
unless somebody VERY important browses here, they seem to be looking for somebody specifically, and they must be looking for him/her on every site that ends with "chan"


Anonymous 01/19/2018 (Fri) 05:56:21 [Preview] No.12241 del
>>12099
white couple


Anonymous 01/19/2018 (Fri) 10:01:30 [Preview] No.12243 del
>>12241
fuuuuuuck, that's a bad one, thanks



Acoustic Denial of Service Attacks on HDDs Anonymous 01/16/2018 (Tue) 09:50:15 [Preview] No. 12202 [Reply] [Last 50 Posts]
TL;DR: researchers can crash devices with magnetic drives from just under a meter away using sound waves.

Might be relevant to your interests, /tech/


Anonymous 01/16/2018 (Tue) 10:55:23 [Preview] No.12203 del
It's just finding the resonance frequency to vibrate the plates so the needle doesn't read or write properly? I like the idea of using it to disrupt CCTV recording.


Anonymous 01/16/2018 (Tue) 20:58:01 [Preview] No.12207 del
Thanks. It's already on the list (added some months ago): http://hjvx7xg3n4ejezmh.onion/



(454.76 KB 764x3344 lv-guide2.png)
(59.51 KB 376x566 top_gnu.jpg)
It's a Libre Vidya general thread! Anonymous 01/14/2018 (Sun) 18:52:49 [Preview] No. 12189 [Reply] [Last 50 Posts]
Post some free software video games and general discussion.
7 posts omitted.


Anonymous 01/15/2018 (Mon) 21:43:36 [Preview] No.12197 del
>>12194
Are you talking about this?
https://github.com/tesseract-ocr/tesseract
Considering the last commit was about 5 days ago I don't think it's dead.


Anonymous 01/16/2018 (Tue) 09:36:21 [Preview] No.12199 del
>>12197
No, not the development. There hasn't been anyone in the servers for years.


Anonymous 01/16/2018 (Tue) 09:39:18 [Preview] No.12200 del


Anonymous 01/16/2018 (Tue) 11:49:52 [Preview] No.12204 del
Anyone tried this game? Had never heard of it until the other day.
https://duion.com/games/uebergame/main


Anonymous 01/16/2018 (Tue) 15:36:23 [Preview] No.12205 del
Latest update to Voyager: Elite Force was added today.
https://last-outpost.net/forum/index.php/topic,9656.0.html



(23.23 KB 400x400 laugh.jpg)
FBI chief calls unbreakable encryption 'urgent public safety issue' Anonymous 01/10/2018 (Wed) 01:34:09 [Preview] No. 12180 [Reply] [Last 50 Posts]
>FBI chief calls unbreakable encryption 'urgent public safety issue'
>unbreakable encryption
>mobile phone
https://www.reuters.com/article/us-usa-cyber-fbi/fbi-chief-calls-unbreakable-encryption-urgent-public-safety-issue-idUSKBN1EY1S7

The baits.
3 posts and 2 images omitted.


Anonymous 01/10/2018 (Wed) 23:59:03 [Preview] No.12184 del
(67.52 KB 600x600 1453527414951.png)
>>12183
They're telling you to write to your representative. Not saying you'll succeed or have an impact though.
There are also other methods such as contributing to projects that hinder attempts of mass surveillance in your country/state.
Or getting your family to use instant messaging clients with good encryption.


Anonymous 01/11/2018 (Thu) 00:35:51 [Preview] No.12185 del
(552.93 KB 3000x1770 ghibli.jpg)
>>12184
>They're telling you to write to your representative.
Don't work, conglomerates have too much money.
>projects that hinder attempts of mass surveillance
Don't work, no one gives a shit about privacy anymore, they just follow the bandwagon and no pretty sheep is allowed to criticize.
>Or getting your family to use instant messaging clients with good encryption.
Never worked. They just use whatever the other people is using. I've tried so fucking many times that it's not even fun anymore (I suggested not some obscure software, but Signal, that has fancy interface and all - not once they installed it).

Something must happen and I think it's close (~2022), unfortunatelly.


Anonymous 01/11/2018 (Thu) 23:25:53 [Preview] No.12186 del
>>12185
>NOPE! It's all fucked, no hope in trying anymore.
Try harder.


Anonymous 01/12/2018 (Fri) 06:27:41 [Preview] No.12187 del
>>12186 not 12185,
but what have you succeeded on?

You are dealing with a social problem you cannot fix.
FBI here is admitting encryption and good OPSEC actually work,
But if your family, and society as a whole, does not want either,
what are you left with?

I'm ignoring OP, and several respondents here who clearly read NSA's ANT Catalog,
and know clearly how NSA bypasses encryption by fuzzing Qualcomm chips worldwide[1].
NVM LTE is designed top to bottom to dox everyone in the planet (which is why
Snowden is COINTEL).

So tell me, what should I try?

[1]https://web.archive.org/web/20170130091614/http://www.telegraph.co.uk/technology/2016/08/08/bug-leaves-900-million-android-devices-vulnerable-to-attack/


Anonymous 01/12/2018 (Fri) 07:37:01 [Preview] No.12188 del
(2.51 MB 1280x720 liderally shaking.mp4)
>>12182
> countries
> a fucking federal state over a half a continent
> "lol just leave"
just be honest and tell people to change it or fucking change it like ANTIFA does



(101.97 KB 350x350 WLST-350x250.jpg)
Anonymous 08/08/2017 (Tue) 13:05:04 [Preview] No. 10603 [Reply] [Last 50 Posts]
There seem to be a lot of privacy conscious people on this board.
Provided we can actually find a way to communicate, would anyone be interested in making our own alternative to privacytools.io ?
54 posts and 17 images omitted.


Anonymous 08/15/2017 (Tue) 03:21:23 [Preview] No. 10724 del
(3.01 MB 720x404 knifegame.webm)
>>10719

>I'm what you call "unangstfag" and also who 'designed' the html and all the information in it,

Well, like I said, it's an improvement over the previous version. It looks nice. Good job.

>since no one here is interested in contribute but, instead, talk shit.

Sometimes talking shit _is_ contributing. It is when I do it, anyway; my shit talking is (almost) never pointless.

Nonetheless, as a gesture of goodwill, I will read over the list again and attempt to make a more traditional contribution to the list.

>>10721

>why does it have to be a website?

I can't speak for the guy who started it or for Unangstfag, but I would suggest the following:

Message too long. Click here to view full text.



Anonymous 08/15/2017 (Tue) 06:20:37 [Preview] No. 10726 del
>>10724
good point
>.html is just .txt with markup
>hosting pastebin is just bloat over .txt
Oh. I really should have known that. Maybe I shouldn't be an Ideas Guy™ if I'm not a webdev person and I haven't slept much. I'll be off to check my ego.


Anonymous 08/16/2017 (Wed) 05:05:59 [Preview] No. 10738 del
>>10713 (me)
The Endwall folk is out? I wanted to start the flamewar on other imageboards already...
Any alternatives on how we can host it? Maybe ask odilitime to create a /tech/tools.html ?


Anonymous 01/09/2018 (Tue) 12:47:17 [Preview] No.12177 del
Stop hiding your data



(86.78 KB 1603x667 1511786713001.png)
Anonymous 11/27/2017 (Mon) 14:59:29 [Preview] No. 11803 [Reply] [Last 50 Posts]
Is this the true power of technology TM ?
10 posts and 1 image omitted.


Anonymous 12/18/2017 (Mon) 02:25:59 [Preview] No.11988 del
>>11811
>This reads as the story of a shitty persona slut and her beta cuck provider.
B-b-but Anon she suffered abuse during her childhood!


Anonymous 12/28/2017 (Thu) 06:28:32 [Preview] No.12092 del
>>11805
looks like there isn't a place on the world without brainwashed retards like you


Anonymous 12/30/2017 (Sat) 01:51:31 [Preview] No.12113 del
>>11811
Pretty much /thread.


Anonymous 01/08/2018 (Mon) 16:08:02 [Preview] No.12173 del
> browsing Reddit news





Anonymous 01/03/2018 (Wed) 19:29:50 [Preview] No.12158 del
Maybe some guy some day invents a way to cache public web page data like layout, css, scripts and content, but the private data will be still strictly passed between core server and user cryptographically signed end-to-end.
On the other hand, should we trust VPS hostings, it's a clear MiTM between website admin and users after all. After all it's one more nail into TCP/IP coffin.