/tech/ - Technology

>>915
Going to do a little tweak.
language: css
:root {
    --attachment-img: url(/file/attachment.png);
    --spoiler-img: url(/file/892f0e19be86903095a88668849f0f0c844f960f43c27a38c455775c53f1c370.gif);
    --audio-img: url(/file/audio.png);
    --thumbnail-size: 250px;
    --captcha-w: 150px;
    --captcha-h: 150px;
    --bypass-height: 330px;
}

>>918
Nice that's a bit cleaner. I know there's a way, but I don't know what that way is, to address the loadbar and have something behind it when it's active, if you're interested in such a thing.

>building a bare bones personal website recently
>decide to try CSS grids because I'd heard they were useful from a classmate a couple years ago
>spend some time dicking around
>it just werks
It isn't a perfect solution for centring everything on every page, but it helps a lot and avoids a lot of the traditional stupid problems of raw CSS/HTML elements.  As long as you "pad" each grid with a row/column surrounding it, those rows/columns will resize as the page/viewport are resized.  It's very responsive and feels good.

I don't know if anyone will actually benefit from this revelation, but I just wanted to post about it since learning how to use these was a real eye-opener for me.  Infinitely better than using tables or stacking wrappers inside of each other.

>>1343
Horizontal centering at least is very easy and doesn't need all that, you just do margin: auto or margin: x auto y auto where x and y are the top and bottom margins, and you're done. Vertical centering however is much trickier and there are multiple ways to do it depending on your content, so I don't know if using a grid makes it any easier.
Show us that website of yours.

Loadbar

language: css
.post-file-src[style*='loading'] {
    background:url(/file/ENTERFILENAMEHERE) no-repeat center;
    background-size:150px
}

>>986 (OP) 
>This is an exciting development for the open hardware community
i agree but it's a shame risc-v sbc/computers are not widely available for normalfags like me
>>987
it's better than nothing

>>1414
There are some around on crowdsourcing sites. It costs a lot though.
https://www.crowdsupply.com/sutajio-kosagi/precursor

OPEN SOURCE THIS NOW

>>1269
No, it's not. It's proprietary.
There is a stripped down version called AOSP that is FLOSS, but with each new Android version Google releases a new component that apps rely on and only exist's in Google's proprietary version of Android which OEMs base themselves off of.

>>1423
Don't forget the firmware blobs (especially for the modem) and vendor patched kernel.

>>1274
>"""White"""
>(((Germans)))
Anything that is (((German))) today should be classify as a Non-human being.

> Celebrate International Women's Day
It's all so tiresome.

>>1331
What?

>>1268
>>1274
Icebergs sound jewish.

>>691 (OP) 
I don't get this meme. What was the function supposed to do, and how did it get ruined by context free grammar?

how is that tree flying

If the last attack on V3 onions has shown anything, it's that nothing aside from this exists and everything will disappear if something permanent happens to the main infrastructure of Tor.

Tor's design is defected.

Only several authorities servers' down causes the whole network's down!

>>1100
Don't get your panties in a know bro. It's just good manners where I'm from.

So, I think BitTorrent's DHT mechanism should suffice for peer discovery across the onion service distributed system. I figure the project code repo itself will maintain a known list of trusted peers to bootstrap a new node into the system.
Can someone here point out a solid reason this wouldn't work? Or suggest a better approach than DHT?

>>860
>how to come up with a new pseudonymous identity that doesn't reveal much about the poster
This has been on my mind for a few years now, and I think I've got a decent solution via cryptography.

Associate each user post with a unique asymmetric key pair and divide posts into "good" and "bad" sets. In order to submit a new post, a user must provide a ring signature over the set of "good" posts - anonymously proving that at least one of those posts was made by them. This scheme by itself isn't particularly compelling, since a user can simply rely on a single "good" post. However, by restricting the maximum ring size and/or invalidating posts over a certain age, correlation attacks are made possible. If the correlation is something that the user can measure, the user is forced to decide between continued "bad" posting and their anonymity; the only way to decrease correlation is to create "good" posts. A user with no valid posts or only posts with an undesirably high correlation from re-use is effectively banished without having been de-anonymised. Users who don't care about their anonymity will end up with extremely high correlation which can then be used to automatically invalidate their posts.

This scheme can be extended by requiring an additional signature over the user accounts (asymmetric keypairs, again) in order to maintain exclusivity. This is because the private ke

>>1148
All good posts, and I appreciate the effort Anon. But if you end up with "And no, no way to get there from here" and just leave it hanging at that, then it's all just a nigger-pill tarbaby.

I have a feeling you don't actually think it's impossible though (your apparent conclusion notwithstanding) so even if you don't feel qualified to, why not take a whack at it? Or at least a more detailed description of the requirements? You certainly have more to offer on the topic than most of the rest of us do Anon.

>>1224
>just leave it hanging
>your apparent conclusion 
It appears there's been a miscommunication; I was just listing out further obstacles in the hopes of additional discussion, or for someone more knowledgeable to pick up the torch. While the Sybil attack is a serious issue in the age of GPT-3, everything else is definitely manageable for someone with formal cryptographic experience. To give some ideas:
>have an audited ring signature implementation to build this with
This is important because there are many non-obvious side-channel attacks in even the most innocuous cryptosystems. However, if post generation is performed offline, then perhaps Cryptol (https://cryptol.net) could be used as a decent compromise since it eliminates large classes of programming errors and opens the code to scrutiny.
>the set of posts the user is aware of or has downloaded serves as a fingerprint
This can potentially be mitigated by either Freenet or Private Information Retrieval techniques. I didn't mention these because the former has other issues related to the way it provides plausible deniability, and the latter because it has serious performance issues.
>the server can mount a Sybil attack on the user to reduce their anonymity set
The issue with this one is it's essentially the same kind of catch-22 as trying to ban people while preserving anonymity. Even if everyone knew eachother IRL, and then the account extension to the scheme was used, a user could still flood the forum with fake posts. In principle, PoW could be applied, but given that even relatively large cryptos are "cheap" to 51% attack, I doubt anything short of 4chan or reddit-sized populations would benefit from it. The only thing working in our favor here is that GPT-3 is still discernible in conversations, so users could potentially notice such attacks in action.
>the user's client can itself be fingerprinted.
Freenet also solves this problem, since everyone's using the same client. However, I would prefer to build on a simpler protocol that allows people to write or use clients that they trust, instead of relying on a large centralized project that may be compromised. Then again, I use and rely on tor. As for the possibility of just doing it all in the browser, the issue here is that you have to trust the server to send uncompromized code. There might be a solution in using bookmarklets to act as a trusted codebase that bootstraps the rest, but I don't know of any research that confirms it as a valid tool; in the very least, there's a tension between allowing updates to the code and keeping old, well-verified code around. There's also the fact that javascript is a trash fire.

>why not take a whack at it?
Because it feels like an overwhelming task and I'm terrified that I'm full of shit and could put a lot of people in serious danger. I am also not in a good position to provide hosting, unless people are willing to donate enough XMR for me to anonymously buy it. If people are seriously interested in the idea, I guess I could give it a stab if only to raise awareness. That is, it bears repeating:

>>981
Yes thanks for replying to my post I deleted.
The deleted post was something like this:
>>932
>are void linux and devuan good alternatives to gentoo?

First time witching to new GNU+Linux, planning on trying Debian as a daily driver while setting up LFS on a different parition as an excercise and to get to know Linux better.
Is this a good idea or should I try something braindead like de-GNOMEd Ubuntu first?

>>1110
You need only to be able to complete the install process and, in case you can't find the solution to something in man pages, connect to the Internet and install a web browser. You shouldn't need to try Ubuntu first. The more something is made easy to use, the more its functionality is obscured, the more it retards your learning. LFS seems to be a lot of instruction following and waiting, something to do when you're very experienced and have nothing better to do with your time. You could probably learn more quickly from books.
My opinion as a beginner.

>>1110
I tried using Debian for a while, but the biggest issue I had was not knowing the difference between DEs when I first installed it, so I chose XFCE which I absolutely hated. KDE is the closest to Win10 so choose that for a good middle ground. Also if you're using an Nvidia card you're going to have a miserable time dealing with nouveau or Nvidia's nonexistant proprietary drivers.

>>1110
Debian's fine, and if you want a non-systemd alternative there's Devuan. You'll get a nice ISO with a DE pre-installed so you can get started quickly, but you can always change anything you don't like later.

>>1120
Nvidia's proprietary driver works nicely on laptops that are officially supported tbh

>>1130
>except by looking on the clearnet
Find a hidden service that aggregates known onion addresses I guess. There's no way to discover onion addresses other than someone posting about them somewhere. They're called hidden services for a reason.

>>1103 (OP) 
This shouldn't be in it's own thread. The answer is that the header provides an 'onion-location:' tag, as this anon indicated. >>1106 It's from the source, not the browswer, and btw you don't need Tor Browser to read this (or any other tag). Just read the header itself with any suitable program (cURL, for example). Next time, put something like this in QTDDTOT, OP.

>>1133
BO/Mods can move posts and threads into other threads relatively easily if necessary.

>>1133
My opinion of *TDDTOTs has soured, as it had with generals. I find them to be stifling. There's no ephemerality, no chance for bad threads to be pushed off the board as good threads rise. I dislike how they encourage obsessives to backseat moderate. It puts more control for shaping the atmosphere into the hands of the moderators.

anyway, tor-chan has a cute face!

>instant messaging
>for whistleblowers
Choose one. The sheer amount of metadata instant chat generates is enough to fuck you over.

>>507 (OP) 
>It's a decentralized imageboard that runs on top of BitMessage.
I didn't have time to try it out yet but that seems like a really good idea. A much better one than blockchan or zeronet.
>Owners can do much of the same moderation, CSS changes etc. as they can do on boards.
That's a lot of stuff that's already in there. Can't I just use it like newsgroup?

>>541
So this is in essence zeronet with secure defaults like everything routed through tor? Question to OP if he is the developer, can users engage with it without seeding back?

I think one of the larger concerns with zeronet and I2P is that while yes you might have "plausible deniability", that doesn't actually mean anything when we're dealing with the kinds of glow niggers that might target users. I think if acting as a seeder, or essentially having your network function as a "node" be an opt-in feature rather than default would ease the opsec concerns. Though this would be a hindrance to the efficiency of the network so maybe it's retarded.

Being routed through tor by default may be enough to alleviate concerns of being essentially a node for CP distribution if a board decides that's what it wants to be, but the optics of this reality are also terrible and why I think I2P has not taken off despite being at its core better technology than tor.

>>507 (OP) 
I'd better use I2P or Lokinet.

>[meme]meme[/meme]

>>999
>I'd better use I2P or Lokinet.
I2P is superior to Tor!

>>959
>They aren't tied to OOP at all.
They are conceptually tied. If you have generics, you need types with associated operations. That's an object (by the OOP definition at least.) Even in Haskell or C, you can write OOP code. Not necessarily a good idea of course, but feasible.

>>960
That definition seems uselessly broad. What can you even say about OOP in the abstract at that point?

>>961
>OOP is uselessly broad
It's a cult anon

>>961
To answer more less vaguely: Objects are a formalized construction in CS, while OOP is just a set of practices that emerged over the last few decades. An OOP language is a language that facilitates and encourages various arbitrary design decisions using objects. Just because you have one or two data structures with some function pointers, that doesn't mean your code is object oriented; you just used some objects. Object oriented programming is the process of building a program entirely (mostly) out of objects, and the "best practices" around doing that. 

Of course, most code bases aren't fully OOP, because it's not a particularly helpful tool for modelling the structure of software. It's really only useful for interfacing between high-level components. Most commonly, it's just a set of practices to build software out of pajeet tier lego blocks without having the whole thing collapse. I suppose that's some kind of merit, but it's definitely not good design.

>>574 (OP) 
Seems you have good intentions and an interest in doing a good job as well as learning your field OP. If this guess is true I assume you already know C and haven't touched the likes of C++, Python, Rust, and so on for that reason.

You should go learn some assembly language, read Practice of Programming, Programming With POSIX Threads, C Interfaces and Implementations, source code from OpenBSD and Suckless, and other books and source I don't know.
Assembly will give you a better understanding of what compiled programs are like, it's useless to wank over progarm design when your program isn't the source but rather the machine code it compiles into. The other suggestions should be self evident.