a111: Logged on 2018-04-03 18:27 asciilifeform: ROC-RK3328-CC ( currently building a kernel for it, without the 'evil' periphs )
ascii_lander: ckang: it isn't the only reasonable chinese armtron -- there is also, e.g., 'allwinner'
ascii_lander: and 'marvell' (of 'pogo' fame) also
ascii_lander: and possibly a few other
ascii_lander: i picked 'rockchip' for pilot plant because it wins on price/form factor/nic
ckang: allwinner im familiar with, used one of their SoC boards before
ckang: im over them though
BingoBoingo: I have to say, ascii_lander's visit to this planet was very good for the morale. It puts into perspective that My experience with the orcs is what he has been suffering since landing in the EE.UU big prison
mod6: I'm happy to hear.
BingoBoingo: ascii_lander: however can confirm the venezolana that does the language lessons is not a fever dream and does exist
ascii_lander: not only exists, but serious grade-a specimen
mod6: hottie huh
ascii_lander to bed, bbl
ckang: !!up elevatedgal
deedbot: elevatedgal voiced for 30 minutes.
BingoBoingo: <mod6> hottie huh << Seriously alive in the head, a rarity in the land of mate crack pipe lead solder poisoning
ckang: down with RoHS!
mircea_popescu: !!pay tidbitnipply 0.02
deedbot: Get your OTP: http://p.bvulpes.com/pastes/hb8Yh/?raw=true
elevatedgal: Here to show breasts
mircea_popescu: elevatedgal, 0a72a045
mircea_popescu: sounds like alf actually had a ball in uruguay huh.
trinque: ckang: listen, why don't you do this all at once. I'm just about to fire off 12 and you bring in two more.
trinque: line 'em the fuck up and let them get their brand and be done for the day
ckang: lol
trinque: not lol, this is a human powered cold storage over here.
ckang: because they are complicated and finicky
trinque: and I have other things to do
trinque: who gives a shit what women are!
ckang: danielpbarron doesnt ;p
ckang: i noticed things are more pleasant when they arent upset though
trinque: did you ever plan on doing anything productive here, or is this it?
ckang: if you have any projects and it fits my skillset i would be happy to take a stab
ckang: what do you need done?
trinque: have you built your own trb node? used V? understood it? do you have a working gnat? built asciilifeform's ffa? built diana_coman's eucrypt? stood up a gentoo from scratch? fertile ground all over.
ckang: ive done linux from scratch way back in the day
ckang: the rest are foreign terms to be at the moment
trinque: maybe do some reading of the relevant blogs then.
ckang: definitely an interesting mix of people here though
trinque: then when my finger's hovering over the negrate button I'll have something to think about besides "brings in narcissistic nothing-holes that talk too much"
ckang: different from the other chans ive been in
ckang: im the type i simply need direction
ckang: i can figure most things out if its centered around a specific goal or doing something
trinque: alright, stand up a gentoo, and actually learn how portage works, so you can help scrape ebuilds into cuntoo
trinque: appropriate right, you're the guy with the endless flood of dumb cunts
ckang: lol gentoo is out of my element but nothing i cant figure out, ive built/maintained package repos on rhel/centos and apt
ckang: i imagine ebuilds are like makefiles but more package level?
ckang: brew recipe etc
trinque: yep
trinque: package metadata and build/install commands
ckang: whats cuntoo btw? lol
trinque: the republic's confiscated gentoo
ckang: heh pre-systemd?
trinque: consists of an ebuild tree managed by the republic's versioning system, V, and a self-reproducing script
ckang: seems like a bunch of distros have forks now resisting the switch
ckang: im not finding much on V
ckang: what the context?
trinque: so rather than pulling someone's blessed stage3 every time you want to build one, you extract a cuntoo from your existing one
trinque: ckang: http://cascadianhacker.com/07_v-tronics-101-a-gentle-introduction-to-the-most-serene-republic-of-bitcoins-cryptographically-backed-version-control-system << read up
ckang: crap elevatedgal has been msg'ing me trying to figure out how to upload 1sec
trinque: make her wait
ckang: hmm so its like a patch ?
ckang: but for many things?
ckang: oh hashed
ckang: hm
trinque: it is a signed tree of patches which explicitly call out the hashes of the antecedents, the items to be patched
ckang: actually this is going to take a minute to understand...
ckang: more to it than i thought
trinque: sure, enjoy and read.
ckang: yall should recruit terry :) hes a bit crazy but a very skilled programmer
ckang: on the old school stuff too
trinque: and dwell on that for extant portage, I cannot look at it and know who's responsible for that particular damned line in that ebuild.
trinque: can go find wherever they had it in a git repo somewhere else, if I'm lucky, but here, who's responsible, what they did, and to what, crystallized right before the operator.
ckang: hopefully they did it right then
ckang: or on the right path anways..
trinque: which terry anyhow, terry davis?
ckang: yea
trinque: lol
ckang: poor guy
ckang: guess hes homeless in san diego now
trinque: !#s terry davis
a111: 30 results for "terry davis", http://btcbase.org/log-search?q=terry%20davis
trinque: http://www.loper-os.org/?p=46 << here he is commenting on alf's blog
ckang: hahah
ckang: that 1st comment
ckang: hes an interesting character for sure, very smart but also pretty crazy
ckang: last i heard, his sister told him to take meds or leave, he left to SD, his van got tickets and was impounded leaving him homeless
ckang: 1 sec gonna help elevatedgal real fast
ckang: !!up elevatedgal
deedbot: elevatedgal voiced for 30 minutes.
elevatedgal: Head got cut but have another
mircea_popescu: http://btcbase.org/log/2018-04-19#1803058 << nah, that's not the dao, you'll drive yourself mad. just do the 12, let the others wait for next batch.
a111: Logged on 2018-04-19 04:36 trinque: ckang: listen, why don't you do this all at once. I'm just about to fire off 12 and you bring in two more.
mircea_popescu: experience speaks.
trinque: has as much to do with how much log these dummies are taking up
mircea_popescu: now there is that.
BingoBoingo: http://btcbase.org/log/2018-04-19#1803057 << That is my impression. We outwalked his choice of footwear however
a111: Logged on 2018-04-19 04:35 mircea_popescu: sounds like alf actually had a ball in uruguay huh.
trinque: ckang here scurries off in a cuntoo thread because oh, gotta serve the woman
mircea_popescu: and i mean look at the weird shit. elevatedgal what are you doing with that hand ? explain it to me, are you saving on nipple or what is it ?
elevatedgal: I was just touching it, not trying to hide
BingoBoingo: http://btcbase.org/log/2018-04-19#1803066 << This is how YOU get fucked. Girls just want to feel, aite? What they feel isn't important. That they feel is.
a111: Logged on 2018-04-19 04:42 ckang: i noticed things are more pleasant when they arent upset though
mircea_popescu: right. half a face and half a this and half a that and so on. elevatedgal do it properly.
mircea_popescu: http://btcbase.org/log/2018-04-19#1803068 << except you won't say wtf you've done. and without some kind of a bio nobody's going to have much to say to you, because on what basis would they.
a111: Logged on 2018-04-19 04:43 ckang: if you have any projects and it fits my skillset i would be happy to take a stab
ckang: well i don't want to limit myself to only things ive done
ckang: i can learn new stuff, but there needs to be some interest in the subject for me to dive deep and enjoy it
hanbot: <mod6> hanbot: I can help, what are you trying to achieve? Changing /home/username from chmod 755, to chmod 700? << i want to make a user whose access is entirely limited to one specific dir. i'm fed up for the night tho', will be back at it tomorrow evening if you still feel philanthropic then
mircea_popescu: that's not how it works. you're not in control in any sort of meaningful sense, it's not that you're limiting yourself or aren't limiting youself. with a history people can say meaningful things to youi ; without, they can't. that's pretty much the whole story.
hanbot: BingoBoingo> None may know the timing of the MP... except maybe hanbot... And the idaho girlie... And... << i must regret to inform i have no MP clock, no MP clock at all!
BingoBoingo: ckang: I will lend you a +1 rating for a resume, life story, and a picture of a sharpie in your pooper with the string n3gg34Z on your cheeks
ckang: yea, understandable, ive just been trying to soak things in up until this point, a lot of the stuff you speak about id need to look into further because i wont even pretend to have any idea on
mircea_popescu: ckang, not like there's any rush.
trinque: ahaha
ckang: BingoBoingo: lol sharpie
mircea_popescu: but when i say "hey x, how about you do y" it's based on my understanding of x's history, not something else.
ckang: are buttsharpies a thing still?
BingoBoingo: ckang: There is history there.
trinque: guy's totally open to it, look
trinque puts that in the ckang HISTORY file
ckang: haha no no, didnt say that
mircea_popescu: lmao.
ckang: ive been poked with a finger
ckang: and that sent me about a foot up
mircea_popescu: !#s THE STAIN, IT REMAINS
a111: 0 results for "THE STAIN, IT REMAINS", http://btcbase.org/log-search?q=THE%20STAIN%2C%20IT%20REMAINS
ckang: unexpected
BingoBoingo: ckang: What makes your pooper so special? Petroleum jelly is a thing
mircea_popescu: i coulda swore we had that in there.
ckang: BingoBoingo: i suppose, up until this point its been unidirectional
ckang: i mean thats what may separate it from other anus' (not necessarily yalls)
BingoBoingo: ckang: That leaks information. You never tried out for the wrestling team!
BingoBoingo: *wrasslin'
ckang: checking the oil ?
ckang: lol
ckang: but no, never wrestled, played ice hockey instead
mircea_popescu: that's one thing you got in common with mod6 then.
BingoBoingo: Ouch, that's awfully square
mircea_popescu: http://btcbase.org/log/2018-04-19#1803105 << which terry is this ? davis ?
a111: Logged on 2018-04-19 05:05 ckang: yall should recruit terry :) hes a bit crazy but a very skilled programmer
ckang: mircea_popescu: yea, danielpbarron reminded me of him slightly
mircea_popescu: !#s templeos
a111: 46 results for "templeos", http://btcbase.org/log-search?q=templeos
BingoBoingo: hanbot: There was one week where Qntra and Trilema had a weird menstrual sync going on
trinque: https://archive.is/dzLAi << "You will talk with God and have daily prayer. Eventually, you will kill."
mircea_popescu: http://btcbase.org/log/2018-04-19#1803122 << sad. i thought he had his own place for some reason.
a111: Logged on 2018-04-19 05:12 ckang: last i heard, his sister told him to take meds or leave, he left to SD, his van got tickets and was impounded leaving him homeless
trinque: latest templeos.org; I can empathize with that
ckang: mircea_popescu: his parents kicked him out for being a bit racist
ckang: and its been downhill since
ckang: was living in a van for some months, then he lost the van.
mircea_popescu: "We live in a castrated dog oppressed world with way too many hellish dog catchers."
trinque: guy's probably fine and just genuinely hates everyone enough to have gotten weird not communicating.
BingoBoingo: Yo esperando por una foto. ckang when will you stop projecting onto Terry and address your own coyness?
ckang: coyness about what?
mircea_popescu: "King Terry is, now, recruiting the Original Catholic brand Templar Knights. Send email to tdavis@templeos.org."
BingoBoingo: ckang: Your story and your pooper
mircea_popescu: BingoBoingo, you soy esperando una / espero una. no por and verbs change in spanish!
ckang: haha
mod6: <+ckang> but no, never wrestled, played ice hockey instead << right on :]
ckang: i can tell you about the time a finger got poked into it if you really want
ckang: but didnt think you wanted to hear that
mircea_popescu: Visit the TempleOS chat room. << holy shit, he got an irc now ?
ckang: or well, ive never been asked to expand on it past that point..
mircea_popescu: come on, there's no fucking way he's not been reading the logs.
ckang: yea, rizon
ckang: horrible net but, he pops in and out all the time
ckang: terry would put in 48hr marathons i bet, given he had power and a place to sleep
ckang: i heard his stuff may have gotten stolen, he was making vids again for a bit
mod6: hanbot: ok we can tackle it tomorrow
BingoBoingo: <mircea_popescu> BingoBoingo, you soy esperando una / espero una. no por and verbs change in spanish! << Finger speed conjugation is still a work in progress. The locals feed me bad grammar habits the Venezolana has to correct. The accent however is servicable. Alf can elaborate when he has report time.
mircea_popescu: heh voat is down. anyway, apparently it's not his chan, but theirs.
ckang: here 1sec ill find it
mircea_popescu: http://www.templeos.org/Videos/Dianna/LifeAsWife.mp4 in other lulz.
ckang: its irc.rizon.net #templeos
ckang: hes comes in to use the bot for scripture
mircea_popescu: ckang, his own page linked #chimpire
ckang: haha, guess he was trolling, or he recently moved
ckang: ive only seen him pop into #templeos but its been a few months, he may have changed
a111: Logged on 2018-04-19 03:33 tidbitnipply: Oh please, he wouldn't tell me that in person
BingoBoingo: danielpbarron: When are you visiting the oriental republic?
BingoBoingo: You'd probably be well off waiting till december
BingoBoingo: If you want Brasileras. Or second half of January if you want Jew gurlz.
mircea_popescu: danielpbarron, so, are you getting ordained in the true church ?
mircea_popescu: they have some kind of priesthood no ?
ckang: hmm, so to be in your church guys need to let their wives fuck the leader?
mircea_popescu: so your plan for the ~rest of your life is to sit on a patch of dirt in ok and basically wait ?
ckang: before they are married ?
ckang: ohhh
ckang: they will have 2 children
ckang: but the "one child all of whom must believe" thing
ckang: i read as 'one child with all who believe'
mircea_popescu: ohohoh. saucy.
mircea_popescu: "you can only be the leader if you have a child with everybody!"
ckang: lol poor guy
mircea_popescu: https://archive.is/VmPBG in other lulz.
ckang: queen bee situation
trinque: mircea_popescu: the patch of dirt and wait was exactly my idiot mother's plan
mircea_popescu: works a LOT better for women.
trinque: rapture's coming, what's there to do but be PURE until we ascend
trinque: women work a lot better when not listened to
mircea_popescu: well, the pure sort, certainly.
ckang: a mute would be ideal ?
ckang: or do you want them to be able to speak sometimes
trinque: I speak to my woman all the time; brain parts and mouth parts work fine
ckang: lol just noticed, 1:37 AM <elevatedgal> f u all
mircea_popescu: aww.
ckang: can we get them without emotion too trinque ?
trinque: I think mircea_popescu is the one to talk to about that firmware upgrade
mircea_popescu: me ?!
trinque: no?
mircea_popescu: i write fucking poetry ffs!
ckang: so would a 'fuckhole/baby vessel' best describe your ideal woman ?
trinque: lol!
ckang: oh and /cleaning machine
ckang: ;p
trinque: maybe I should've said "obeyed" instead of "listened to"
trinque ftr has no babies.
ckang: my sister has 2 inside her now, her 1st pregnancy
ckang: and they are huge apparently for their age but the last 8 weeks they gain 1lb/week
ckang glad hes not her
mircea_popescu: twins rarely reach 3kgs each (which is the normal weight of humans at birth). so more like 5ish.
trinque 's stepmom had twins, looks downright miserable
ckang: they are 4lbs now
ckang: I was an ounce shy of 10lb
ckang: so maybe somewhere around that
ckang: fortunately shes 6' so they have some extra space
trinque: anyhow I don't think much about the ideal woman, people don't come that way
mircea_popescu: dude check out that place, they supersized babies also.
trinque: gotta be either that they're coming out fat, or the hormones
trinque: non-exclusive or
mircea_popescu: anyway, macrosomia is a serious health risk. mostly for the mother, but not really great for the baby either.
ckang: oh not fat, i was a tall baby though
ckang: yea they said twins are more likely to come early so any day/week now almost
trinque: my noggin got stuck, did some damage on my way down the chute
mircea_popescu: trinque, shoulders, no ?
trinque: evolution didn't give a damn when standing upright came along.
ckang: they didnt even try on me apparently, doctor told her the shoulders wouldnt fit through
trinque: nah, I'm told my head wasn't as squashy as they often are
mircea_popescu: ahahaha
ckang: lol
mircea_popescu: this, my dear friend, MAY BE USED AGAINST YOU IN THE FUTURE
trinque: ahaha youdontsay.jpg
ckang: thankfully i will never get to experience passing a 10lb child out from my insides
trinque would collect a whole household full of women like the girl he has now
trinque: and yeah ckang, she talks to me even
trinque: but NOT ABOUT HER
ckang: ah thats good lol, would be pretty awkward if she didnt, for me anyways
trinque: I dunno, we sit in silence and read too
ckang: yea thats healthy, being comfortable with silence
ckang: many arent
trinque -> bed
ckang: nn
spyked: huh, almost missed http://btcbase.org/log/2018-04-18#1802081 <-- thank you! will toast wine from ol' family vine later to honour this.
a111: Logged on 2018-04-18 17:10 mircea_popescu: there we go. mazel tov ; and spyked ave1 lobbes permit me to congratulate you an' to wish you long&happy tenure.
spyked: http://btcbase.org/log/2018-04-19#1802891 <-- /me would love to, but is short on coin atm. will weigh this again in a few months from now if still available. and I still wanna buy a board for home too, to check out the hardware.
a111: Logged on 2018-04-19 02:50 mircea_popescu: iirc spyked was getting one too
spyked: http://btcbase.org/log/2018-04-19#1802935 <-- iirc execute bit on $dir toggles whether {user,group,others} can "search" (i.e. chdir to) $dir or access other files within, including other dirs, making this a recursive thing. so this explains the chdir error.
a111: Logged on 2018-04-19 03:23 hanbot: <mircea_popescu> hanbot, quick solution is to restrict (and immutable) the directory right above the intended home. << actually, if i do that, it tells me permission's denied to land in homedir ("Could not chdir to home directory /home/username/: Permission denied") and dumps me in... /
spyked: http://btcbase.org/log/2018-04-19#1803146 <-- this is (nearly?) impossible to achieve within the Unix access control model. it's easy to express "no one but user1 has access to dir1", but no reasonable way of expressing the reverse, i.e. "user2 can access only dir2". must be one of the reasons why namespaces and cgroups were added to Linux
a111: Logged on 2018-04-19 05:31 hanbot: <mod6> hanbot: I can help, what are you trying to achieve? Changing /home/username from chmod 755, to chmod 700? << i want to make a user whose access is entirely limited to one specific dir. i'm fed up for the night tho', will be back at it tomorrow evening if you still feel philanthropic then
spyked: also, kinda what got me thinking about the whole "general-purpose os" thing a while ago. POSIX ACL wasn't designed to be very flexible, it assumes some level of trust in the processes running on the box (the Unix notion of "user" is attached to processes, while that of "permission" is tied to files)
ckang: but, SELinux :(
ckang: what are you trying to do exactly?
ckang: you can do the user limited to one dir but it would require chroot + copy of binaries or a R/O mount of the binaries linked inside but that shit gets messy
ckang: nowadays with docker and such its way easier to spin something up thats isolated and getting the networking control for the container
mod6: mornin' TMSR~
lobbes: mornin' mod6
mod6: How goes today lobbes?
lobbes: ah can't complain. Trying to get logbot up and running (was able to successfully press the ircbot genesis and test it on my local machine the other night)
mod6: Ah good! Resolved that seal issue then?
lobbes: I did! Was simple as removing the robots.txt from .seals. btw I love the manual you included with yer vtron
lobbes: very useful for noobs like me to figure out wtf I'm doing
mod6: (for ref: http://btcbase.org/log/2018-04-14#1799100)
a111: Logged on 2018-04-14 20:26 lobbes: hm, so I was following install steps for trinque's ircbot-genesis (http://btcbase.org/patches/ircbot-genesis#selection-167.10-167.39) and it looks like the "init http://trinque.org/src/ircbot" step downloads the robots.txt which, upon pressing, barfs with "INVALID SEAL" eggog >> http://p.bvulpes.com/pastes/qHlDI/?raw=true
mod6: lobbes: ah! ok, glad to hear the doc was helpful. nothing worse than unhelpful docs.
mod6: (if anyone notices any erratum in that doc, please write in)
trinque: ah, looks like I need to get the src dir pulled over to pizarro
lobbes: ah! okay that was my next comment
trinque will do shortly
lobbes: I was having issues with the logbot init step (wasn't pulling the patch into patches)
mod6: cool, gonna have a mirror over there, or just the main repo now?
lobbes: but okay, I'll just hold tight for now
trinque: mod6: main repo
mod6: kewl
trinque: yeah, it's fantastic to know the people touching the hardware. I'm so far very pleased with the service.
mod6: trinque: *thumbsup*
ckang: what rockchip SoC board are yall messin with?
mod6: ckang: <@mod6> http://btcbase.org/log/2018-04-03#1792521
a111: Logged on 2018-04-03 18:27 asciilifeform: ROC-RK3328-CC ( currently building a kernel for it, without the 'evil' periphs )
ckang: pretty stout
ckang: ive been wanting to build a small single port router or inline router that protects ones entire internet
ckang: with the ability to do policy based routing over various tunnels/vpns/tor what not
ckang: but the typical ARM offerings just dont have the nuts to do openvpn with decent speed
mod6: ah
ckang: then for a minute I was exploring using the ESP32's cryptography accelerator with QSPI and DMA
ckang: since it actually solves stuff fairly quick
spyked: ckang, one alternative you can consider is "pcengines" board. plenty of info in the logs. fanless, runs coreboot bios iirc and has at least 2 gigabit ethernet ports.
spyked: !#s pcengines
a111: 78 results for "pcengines", http://btcbase.org/log-search?q=pcengines
trinque has an apu2 router over here
ckang: this is actually how i stumbled across wireguard initially
ckang: trying to find something secure but had performance on ARM based equipment
ckang: openvpn is just a piggy
ckang: spyked: i think at that point i would go with an intel atom board with dual or quad port from ali, they arent too bad price wise and you dont get stuck maintaining a fork
ckang: https://www.aliexpress.com/item/Minisys-4-Lan-pfsense-minipc-Intel-atom-E3845-quad-core-mini-itx-motherboard-linux-firewall-computer/32825684280.html
ckang: AES-NI support
trinque: "yes, let me accelerate your crypto in this black box citizen. hold still."
ckang: https://www.aliexpress.com/item/Fanless-Mini-PC-4-Gigabit-Lan-Ethernet-NIC-Core-i3-security-AES-NI-Qotom-Router-Pfsense/32847784876.html <-- ooo, i3
ckang: lol, well its coming from china so its probably 100% legit ;p
ckang: would be extra components and they are very thrifty
trinque: idea that the chinese wouldn't diddle cryptography devices they export is pretty entertaining.
ckang: well its on the intel silicon
trinque: ah, I thought we were talking about the arm thing, but it goes double for intel
trinque always thought that name for a chip company was cheeky
trinque: bbl
phf: it's a shame that soekris stopped making their network boards. asciilifeform though thinks they were overpriced, but i suspect it's "not made in china" premium. i have one soekris board with 4 years uptime, and i use another one for the router, which does some of the tricks ckang mentioned.
ckang: phf: my worry is being able to sustain enough throughput mostly, a somewhat higher end consumer model cant manage much over 20Mbit/s
ckang: and availability
ckang: (consumer model router, sorry)
phf: soekris was one of those boutique operations. guy closed the u.s. branch (he's scandinavian), and now he only makes high end DACs instead.
ckang: yea, those places are typically premium price, but as to be expected, small batch runs are expensive
ckang: even being able to buy a small qty of SoC can be hard with most mfg
ckang: am curious what those little atoms/i3 can push though, pretty nice package overall w/ wifi and quad port
phf: ckang: so i had a lot of throughput problems when i started doing this, back when budged option was to flush consumer router firmware with a linux, but when i built this router i was already tmsring, so it's running openbsd and is more sekuriti oriented
phf: i should probably test it at some point in isolation. it would be a pointless exercise though since i don't have a 20MBit/s pipe out anyway. perhaps the value might be "look at what custom board can do compared to this chinese crap", but i somehow doubt that would be the result.
ckang: what have you managed to push encrypted on the board?
ckang: or pull
ckang: i ended up just adding a deb8 vm and my entire router is virtualized now, only lose ~2Mbit off the top (148Mbit) while still only using the tunnel with wireguard
mircea_popescu: http://btcbase.org/log/2018-04-19#1803308 << very fucking easy to do, are you kidding me ? system builds the FS tree, exposes / to all users symbolically but only lists permitted files and then for every node in the directory treee only lists those which are either all or user.
a111: Logged on 2018-04-19 10:24 spyked: http://btcbase.org/log/2018-04-19#1803146 <-- this is (nearly?) impossible to achieve within the Unix access control model. it's easy to express "no one but user1 has access to dir1", but no reasonable way of expressing the reverse, i.e. "user2 can access only dir2". must be one of the reasons why namespaces and cgroups were added to Linux
mircea_popescu: ie if you have / 755 root:root home/ 755 root:root klinki 755 klinki:klinki /sikrit 700 klinki:klinki then user bolek can see all the way to /home/klinki and user klinki all the way to /home/klinki/sikrit.
mircea_popescu: and if you want to get fancy you can even reconstruct dirstructure by restating it while skipping invisible spots, so that a path may be /a/b/c/ for one and /a/c/ for another.
mircea_popescu: what the fuck, there's 0 high level difficulty here, 100% unixtards being unixtards.
BingoBoingo: !Q later tell avgjoe I don't talk to strangers in private
lobbesbot: BingoBoingo: The operation succeeded.
spyked: mircea_popescu, okay, but can you make klinki see *only* /home/klinki/sikrit and nothing else? that's how I understood hanbot's problem. I dun see any practical way of doing it (other than by chroot'ing).
spyked: anyway, I'm sure that this can be enforced by having all the other users except the "limited user" deny rwx access to their dirs. but this doesn't say anything about the "limited user" explicitly, only implicitly. kinda like in that joke with enclosing the sheep using as little fence material as possible.
mircea_popescu: spyked, by making the first dir that's not specifically world-visible or his own whatever she wanted it to make.
spyked: (note that I did not claim this to be "the wrong way" or anything. just that in other access control schemes it can be explicitly expressed, in some cases at cost of implementation complexity etc.)
mircea_popescu: understand, this model whereby user falls into root because "we couldn't open the subdir you should have" is the lulz of all time.
mircea_popescu: "i can't identify you so here's the oval office"
mircea_popescu: "you were fired, the way to the vp lounge is to the left"
mircea_popescu: and it all came from original idiocy, "oh, to have bash AT ALL you must have access to /sbin/bash or else a copy of it somewhere". bullcrap. look at what apache does -- somehow it DOES manage to run all users' php crapolade from whatever directories. bash can (and obviously should fucking have) worked the exact same way. of course you can run bash from your homedir even if that is /home/users/f/u/c//k/t/h/i/s/l/u/s/e/r/john.
mircea_popescu: and even if you think /home/users/f/u/c//k/t/h/i/s/l/u/s/e/r/john is actuyally /
mircea_popescu: (which is what is the only fucking POSSIBLE meaning of "set home directory" : as far as ALL POSSIBLE terminals that user springs up, the indicated point in the filestructure is his root. and he sees its downstream and nothing else fucking ever.)
trinque: now there's a point. user's shell should just have whatever commands he can use loaded into it
trinque: and not rely on a $PATH
mircea_popescu: duh.
mircea_popescu: fucking path, the hack of all time.
mircea_popescu: you know what is the HARDEST, most screaming, wailing and tear ladden item every time i explain unix, the posix model, linux basics etc to fundamentally minded slavegirls that are well accomplished in other fields and can think ?
mircea_popescu: the fucking path. and for the very good reason that it's nonsense enough to make gates proud.
mircea_popescu: meanwhile the russkis made online-homm3. http://www.lordswm.com/
mircea_popescu: "lords of war and money" lol.
hanbot: http://btcbase.org/log/2018-04-19#1803390 << exactly, that blew my mind. no idea why limiting someone to their homedir should be complicated either. isn't keeping users cloistered like...the fucking reason a "users" system even exists? what else is it for, personalized wallpaper?
a111: Logged on 2018-04-19 18:26 mircea_popescu: "i can't identify you so here's the oval office"
spyked: ^ my point in the first place. POSIX ACL was designed from the idea that "all users are equal, except /a/b can be accessed only by X and /c/d only by Y etc.". while saying that "Z can only access /e/f" can only be implemented as "/a/b and /c/d and etc. can't be accessed by Z". and sure, there's chroot, that sets /e/f to /, but in practice this introduces other issues
spyked: I can't help but http://archive.is/TRrOE again
mircea_popescu: heh.
mircea_popescu: assholes.
mircea_popescu: mp's morning adventure : the curse of the shapely bottles.
mircea_popescu: bereft of female support, i woke this morning among empty vast halls, ruin already gnawing silently in their corners.
mircea_popescu: to eat, to eat, but what to eat! there's no fire going happily in the hearth, there's no water splashing on nude thighs unintentionally and aggravatingly, the kitchen's dead and i must have leftovers!
phf: a bironian tragedy
mircea_popescu: so i pick the yesterday's chicken pilaf, and dump on it three spooning heapfuls of the mango-raisin-ginger jam in the half gallon jar. then a spoonlet of chilera. and then... a small and kinda tired&old but very ripe aguacate.
mircea_popescu: i must now retire and meditate in sadness over the miserable fate fate had in store for me this morn.
douchebag: !!up Starrrcx
deedbot: Starrrcx voiced for 30 minutes.
Starrrcx: I have titties
Starrrcx: !!register http://p.bvulpes.com/pastes/elJkg/?raw=true
deedbot: 20063837E6C0CB9F6FAFA48CCF3286C05B1D2494 registered as Starrrcx.
douchebag: Starrrcx: you'll have to wait for mircea_popescu
jurov: mod6: ack
mod6: Thanks jurov
deedbot: http://qntra.net/2018/04/deutsche-bank-fat-fingers-35-billion-usd-payment/ << Qntra - Deutsche Bank Fat Fingers 35 Billion USD Payment
trinque: need moar practice with titties eh?
BingoBoingo: Defo
douchebag: Fuzz via Titties all day long
BingoBoingo: In other weird https://apartamento.mercadolibre.com.uy/MLU-452797695-apartamento-en-pocitos-nuevoloft-con-terraza-contra-frente-_JM
phf: http://btcbase.org/log/2018-04-19#1803375 << i have ipsec subnets to essentially identical openbsd installs, but egress is to wan. i use pf to route specific things through the ipsec subnets. i've never benchmarked it though. it's good enough to watch an occasional regioned youtube, or pull a torrent at 5mbit saturation
a111: Logged on 2018-04-19 17:11 ckang: what have you managed to push encrypted on the board?
ckang: phf: ah if you have a spare board you can run on a local net, i would be curious how it stacks up
mircea_popescu: Starrrcx, 8d539ed5.
ckang: its become an obsession of mine almost
mircea_popescu waves
ckang: even more so after the recent changes in gov policy in regards to information harvesting by ISPs
ckang: hi mircea_popescu
mircea_popescu: heya.
ckang: if you get a min, had an issue with the bots on 1 girl, pheeby
ckang: i think it may have been when the code registration issue was happening
douchebag: yo mircea_popescu
douchebag: im gonna let Starrrcx you're on
mircea_popescu: aite.
mircea_popescu: ckang, she's not been paid ?
ckang: mircea_popescu: yea, i found the !!pay but !!ledger shows nothing
mircea_popescu: aite, ima re-add her in next batch.
ckang: re: chroot/$PATH stuff, is there any reason not to opt for a container model and leave that abstraction up to a dedicated system?
ckang: performance hit is fairly negligible
mircea_popescu: depends how you count the hit. complexity hit is significant.
mircea_popescu: metaphorically speaking, the solution to spilling some food in front of the fridge is not to attach a mechanical broom to it.
ckang: my experience with chrooted/jailed setups has been, overall, messy
mircea_popescu: yeah. the whole stygian stable has to be cleanned out. no more PATH and no more bash-style calls. apache style calls.
ckang: PATH turns into a a cluster fuck, always
ckang: openvz i didnt care much for, docker has been solid though
ckang: and being able to control the network gives way more flexibility in limiting what someone can/cant do
mircea_popescu: you ever read docker ?
ckang: the source? or what aspect
mircea_popescu: yes the source.
ckang: no, i have not, pretty iffy?
mircea_popescu: so in what sense "has it been solid" then ?
ckang: oh, in terms of stability and usability
mircea_popescu: understand how the empire of idiots' euphemism threadmill works : they noticed that you go by the heuristic of "published holes", and they've adapted to that (because that's what the idiots are all about, "Exam taking", ie optimizing for the measurement not for the variable measured). so, they keep publishing strainers and calanders, except the sort where YOU don't know the holes. it gives you the warm fuzzy feeling that "The
mircea_popescu: y're reasonablyt safe, as far as we know" ; and as we learn better... they just come up with a new piece of shit.
mircea_popescu: this is precisely the "crypto progress" of http://btcbase.org/log/2018-04-16#1800039 ; and everything else.
a111: Logged on 2018-04-16 16:05 zx2c4: mircea_popescu: i take it now that mostly you're skeptical because the nsa was pushing ecc in the early years, before everyone else woke up to it
mircea_popescu: usg trying to leverage the fact that idiots stick together whereas intelligent people jwz, into this situation where they keep shitting turds larger than what you can fit in head and so "one man's guess is as good as any other's" and "we don't actually know it's a scam" hurr durr.
ckang: purposely or by buying 0days ?
mircea_popescu: huh ?
mircea_popescu: they WRITE the holes lmao.\
ckang: ahhhh
ckang: im surprised we haven't heard more about that, someone with a email or offer publishing it
ckang: i could totally see them buying up new 0days and letting them go unpatched for future use
mircea_popescu: the sad story of tor is a good primer in this sense.
ckang: ahh yea, it was just recently they had the torbrowser svg stuff too
mircea_popescu: http://trilema.com/2013/dear-guardian-stop-being-retarded/ << this is the historical moment when the usg's "technology" machine got killed.
mircea_popescu: now, of course they've been pretending like "it never happened" for five years now ; but then again they're also pretending to be solvent, and militarily relevant, and whatnot.
ckang: i imagine to infiltrate a project successfully they need to 'invest' into it before it becomes too large so theres not 1000s of nerds reviewing commits
mircea_popescu: yup.
ckang: has there been any documented cases of such happening recently? or attempts
mircea_popescu: and also they need a certain sort of fucktard mindset. like this : http://trilema.com/2018/and-in-todays-lulz-the-obnoxious-cocksucker/
mircea_popescu: ckang, what's your standard for "documented" ?
mircea_popescu: contrary to what you might think, it's 9x% the function of nsa, trolling on github all day.
ckang: just someone publicly calling someone out at trying to inject malicious code into a project
mircea_popescu: think about it -- the sort of people who'd publish idiotic crap a la tor docker etc LIKE the meat injection. and the sort of people who'd protest don't get involved with that.
ckang: one of my favs
mircea_popescu: hey.
mircea_popescu: he is right, though.
douchebag: !!up Starrrcx
deedbot: Starrrcx voiced for 30 minutes.
douchebag: lmfao
mircea_popescu: !!pay Starrrcx
deedbot: Get your OTP: http://p.bvulpes.com/pastes/KWeTR/?raw=true
mircea_popescu: Starrrcx, so what do you think of bitcoin ?
Starrrcx: internet money
mircea_popescu: well sure. but i mean... how's it sound to you ?
Starrrcx: i dont have much of an opinion besides it being money can you tell me more about it?
mircea_popescu: notrly much more than what's already at http://trilema.com/category/bitcoin/
Starrrcx: i hear the price on it went crazy high since it was started
mircea_popescu: it did.
Starrrcx: how high will it go
douchebag: mircea_popescu: was her photo valid?
mircea_popescu: whose ?
douchebag: Starrrcx:
douchebag: you only did !!pay Starrrcx
mircea_popescu: oh oh
mircea_popescu: !!pay Starrrcx 0.02
mircea_popescu: ty
deedbot: Get your OTP: http://p.bvulpes.com/pastes/CKb59/?raw=true
douchebag: mircea_popescu: Safe to say this is the oldest participant in the "i will pay for your tits" campaign
douchebag: eh?
mircea_popescu: possibly, yeah. how old are you Starrrcx ?
Starrrcx: im 72 years young
ben_vulpes: mircea_popescu: elaborate on "apache calls"?
mircea_popescu: ben_vulpes, http://btcbase.org/log/2018-04-19#1803392
a111: Logged on 2018-04-19 18:29 mircea_popescu: and it all came from original idiocy, "oh, to have bash AT ALL you must have access to /sbin/bash or else a copy of it somewhere". bullcrap. look at what apache does -- somehow it DOES manage to run all users' php crapolade from whatever directories. bash can (and obviously should fucking have) worked the exact same way. of course you can run bash from your homedir even if that is /home/users/f/u/c//k/t/h/i/s/l/u/s/e/r/john.
mircea_popescu: Starrrcx, yeah, i think you're the years young-est person in there.
douchebag: lol
esthlos: hanbot: said I'd get back to you: getting mp-wp running was relatively painless, most of my issues were with LAMP. I wrote down most of what I did here: http://blog.esthlos.com/mp-wp-setup/
ckang: !!up haleyyyyy
deedbot: haleyyyyy voiced for 30 minutes.
haleyyyyy: Hi, here for picture 😀
ckang: wait for mircea_popescu
trinque: btw ckang and douchebag, withdrawals are being processed midday now
mircea_popescu: didn't i see that name before ?
mircea_popescu: haleyyyyy, 0f9a63b5 ; but mind that you only get it once.
ckang: she dipped out before she could before but got back with me
mircea_popescu: ah
douchebag: sounds good trinque
douchebag: What time roughly central time?
douchebag: USA