/tech/ - Technology

Technology & Computing


New Thread
Name
×
Sage
Subject
Message*
Files* Max 5 files32MB total
Tegaki
Password
Captcha*Select the solid/filled icons
[New Thread]


3c24a910338f9638ac155d6692149b0d-imagejpeg.jpg
[Hide] (34KB, 474x237)
ITT we discuss how technology will assist in our survival during various SHTF scenarios
36 replies and 2 files omitted. View the full thread
>>3597 (OP) 
>SHTF
Hidden abin in the woods with 3 months of canned and pickled food. I'm not a fighter.
>>3597 (OP) 
Does fully-armed & armored robowaifus count, OP?
Replies: >>7546
>>7543
How are you planning to charge it?
Replies: >>10979
1492443959446.jpg
[Hide] (117.3KB, 1005x794)
>>3597 (OP) 
>boil acorns to get tannic acid out then eat with dandelion tea
>distill pee and run it through preheated soil to not die of dehydration
<so I need a still and hot pot that can run post nuclear winter..... fire go brrrrrr?

>>3776
Just save enough autistics with acorns and dandelion tea and it will work itself out.
>>7546
With acorns and dandelions. >>3675
>booze has no value 
lol

SHA384.jpg
[Hide] (468KB, 1000x667)
Thoughts on a new standard for cross-site tripcodes for open-source imageboard software.

The current implementation of tripcodes (as used by futaba channel -> 4chan, tinyboard/vichan boards, and many others including this site) uses an ancient method involving a very strange DES system that has many collisions and has a password limit of 8 characters, with an output of 9.25 characters encoded in pseudo-base64 for a total of 10 displayed characters with the last character space having only 16 of 64 possible values. It's still used to this day for its software support including the ability to generate vanity tripcodes for use with cross-site verification, but it is quickly showing its age and the entire thing does not seem very well thought out.

I have a proposition for a new cross-site or "insecure" tripcode standard. By "insecure" i am referring to the fact that it is not salted and therefore would be able to work across websites which is actually a desirable feature; "secure" tripcodes which are salted and only work on a per-site basis. This is not to say my methodology is not secure: mathematically, my "insecure" tripcode would be far more secure than, say, 4chan's "secure" tripcodes.

My proposition is to use SHA-384 and instead of encoding the digest into hexadecimal (which would be longer) you would instead encode it into base64 to make it shorter. This has many advantages:
-Base64 is very similar to the character space of existing tripcodes. The only difference in character space would be the removal of the "." character and the addition of the "+" character.
-Would contain the entire english alphabet unlike hexadecimal, same as old tripcodes.
-Pretty secure, low chance of collisions, I don't see why there would have to be a password length limit either.
-SHA is pretty fast and therefore the generation of vanity tripcodes should be possible, while still being considerably secure.

The use of SHA-384 is due to the fact that you would be able to encode the digest into base64 without the need for padding. The total tripcode length would be 64 characters long after the "!" but fear not, because I propose that using CSS and/or HTML, you would hide the last 75% of the tripcode (but not actually truncate in a destructive way) and only display the first 16 characters for appearance reasons. Vanity tripcodes would still be rather attractive as it would be easier to attain an attractive-looking first 16 characters, however, the entire 64 character tripcode could be displayed to anons by either hovering over the tripcode or clicking on the tripcode. Someone wishing to impersonate you would still be inclined to "crack" this entire 64 character string, which would be quite a feat. As far as hiding most of the tripcode and hovering or clicking to display the entire thing, I do not believe that this would require javascript to implement for any reason.

These should be able to work across any imageboard, textboard, or any kind of website that implements it. You would be able to cross-site verify with ease. The developer of whatever imageboard software would need to run the password through sha384 and encode the binary output as base64. It would need support from the open source IB developers (lynxchan and jschan, possibly others) who are not exactly good company. It would also not need, but very much benefit from, the same kinds of tools that are used to generate vanity onion addresses and current tripcodes. A tool that could generate vanity tripcodes for this new standard being made would be a significant help to its implementation.
Message too long. View the full text
40 replies and 2 files omitted. View the full thread
>cross site tripcodes
what the fuck wiggery am i reading
of course a webshitter would choose to rely on this bullshit when they could literally just PGP the message (inb4 pgp bad yeah i know it is its you retarded wiggoids who made this a thing)
Replies: >>10595 >>10597
>>10590
Authentication != Signing
Replies: >>10620
>>10590
Take your meds
Thanks for the enjoyable cryptography thread, when everyone pools together to discuss things in good faith, best practices and solutions can be found. Really great discussion.
>>10595
Signing does provide authentication. Just post a public key in the first message signed, then sign subsequent messages (cross-site). The server can even detect this and add the fingerprint as tripcode.

PinePhone-3.jpg
[Hide] (129.9KB, 1024x1024)
pinetab_KB_P64_UT_2.png
[Hide] (1MB, 1220x945)
PineTime_leaflet.jpg
[Hide] (122.9KB, 745x731)
Cube.png
[Hide] (1.5MB, 1611x1539)
librem-5-side-angle.png
[Hide] (748.7KB, 1920x1080)
I think it's worth having a thread about ARM linux as it's on the verge of becoming viable in phones and mobile devices. Discussion around whether or not this hardware is or will ever be worth actually buying is important. I understand that a lot of the PINE64 hardware is explicitly not consumer ready, but I've seen some videos of the recently officially launched Librem5 that shipped the product with a fucked screen protector that wasn't applied properly, and that's a fucking $800+ device. I'll try to get around to making a webm of it.
28 replies and 15 files omitted. View the full thread
1679932671507.png
[Hide] (174.4KB, 703x600)
>>10173
>I really like the idea of having an E-ink tablet that isn't sold by Google or Amazon for reading manga
I have a Kobo (Libra 2, specifically) e-Reader and it fits this description (not sure what you mean by "doing some light weight work" though).
It's not open source, but it doesn't lock you into a jewish ecosystem (unlike Kindle), and it's very easy to hack and customize, and it's much more affordable that what I predict something PineNote would be. Probably also applies to most or all Kobo e-Readers in general.
Though if by E-ink tablet you mean an actual tablet with Android or something similar, for doing various tasks other than reading, then I don't know.
<PICTURE UNRELATED (also my opinion about the picture: the person who made it is probably a homo, lol)>
>>10175
Yeah, guy who made that image is definitely a queer. If you have to point that kind of stuff out to bystanders, then it wasn't a big problem in the first place.
>>10175
>this isn't realistic 
>this isn't realistic 
>this isn't realistic 
>this isn't "artistically necessary"
If you're going to complain about bullshit at least keep it consistent, this is just disappointing.
Replies: >>10190
>>10175
>Satoko should not have hips wide enough for a gap. She's fucking 10, not 18.
Why are normalniggers obsessed with the age of fictional characters?
3820ee5f88715421a4b4a11d3a94d8fb.jpg
[Hide] (59.9KB, 600x676)
Nintendo_PC-Engine.jpg
[Hide] (659.7KB, 2976x2976)
>>10175
I like the art, but funny.

>>10187
Reality is realistic, and it fucking sucks.

images.jpeg
[Hide] (6.6KB, 256x256)
GoSeek has been unusable since Nougat. It's s real shame there isn't a functional client for Android.
6 replies and 1 file omitted. View the full thread
Replies: >>4592 + 4 earlier
>>1616
Don't feel bad for yourself.
use seeker anon, it's on play store, izzydroid and aurora store
>>1606 (OP) 
a pathetic existance of a zoom zoom
>>1616
Why? There is lno reason not to own a computer. Buy a Thinkpad, those are like 200-300$. Go on craigslist, ebay, kikebook marketplace and you will find loads of cheap laptops and desktops. Go to goodwill or you local thrift store and look there. Don't tell you don't even have 200$ to spare? Fuck off right now and buy a computer.
Replies: >>9480
>>9462
In places like india and africa there is no 2nd hand pc/laptop market they basically jumped straight to smartphones.

c3be462f1e920fda7cd33180cb2689fb4dd0ff2c82f732a0769854aa9d373f0d.jpg
[Hide] (717.9KB, 1920x2560)
IMG_20220104_132257.jpg
[Hide] (676.7KB, 1920x2560)
IMG_20220104_132143.jpg
[Hide] (786.2KB, 1920x2560)
IMG_20220103_092028.jpg
[Hide] (2.2MB, 3120x4160)
Do you like shiny lasers that blind people?
Because I like shiny lasers that blind people.
4 replies omitted. View the full thread
bumo just gonna leave this here greetings from shandemic forums all we need left is a drone to take down other drones 
https://shamdemic.exposed/viewtopic.php?p=428#p428 https://www.bitchute.com/video/U6e4FXy8jn6U/
will ordinary toy green/red lasers work or do i need one of those burning purple hobby lasers? its gonna be a matter of time before the globohomo invades my country
Replies: >>4857 >>9463
>>4820
>namefagging
I think I remember you from lc. Lol
>>4820
>LOOK AT ME EVERYONE
>I NEED ATTENTION
Replies: >>9470
>>9463
>he dosen't know how to sage
>onionsbooru 30000 laughing-cobson (dot) jpg
(can janny just merge this to the main offtopic thread like you did with the torrah chan mascot)

mumble.png
[Hide] (62.9KB, 2556x1401)
170-zoom.png
[Hide] (898.4KB, 2556x1383)
>have imperfect vision
>sit about 1 meter (3 feet) from the computer monitor
>be in video gaming clan
>they use mumble
>pic related is mumble
>can't just scale up fonts and elements by ctrl + scroll up like i can with my terminal emulator or web browser
>have to lean in every time I need to do something with the program

Is this why javascript and web apps are subsuming desktop application development? It is trivial to define a general page layout and theme and let the user zoom in as needed. Is it not the same for GUI frameworks?

second pic is comfortable reading siz except for the URL and title bar.
24 replies and 5 files omitted. View the full thread
>>9249
Pic not related
DSC_0472.JPG
[Hide] (4MB, 4000x3000)
>>9249
Picrelated
Replies: >>9255
>>9251
based old samsung syncmaster 3:4s.  bought a bunch of them back in the day when you still had to worry about a dead pixel here or there, and from the nice white balance to the resolution they remained my favorites despite everybody going for yucky widescreens.  just dual them up for more betteration :D
Replies: >>9263
>>9255
Actually, the one on the picture is 16:9 lol. But I have plenty of 4:3s. Just found a 1600:1200 high end IPS a few days ago. Great monitor. Downside is the high latency (not for gayming) and 80w power draw.
Replies: >>9264
>>9263
Though I'm aware 1600*1200 is not exactly low res anymore. 
Point is there are plenty of low res fuckers being thrown away and OP wouldn't have to bother with annoying scaling shit.

jefferson-santos-9SoCnyQmkzI-unsplash.jpg
[Hide] (17.2KB, 640x427)
There is a criminal organization in Brazil using NSO Group's Pegasus to infect devices for hack for hire, to incite terrorism, blackmail people, produce illegal pornography and assist in assassinations. They also have other advanced malware, like UEFI implants and even persistent implants for Kindle and Raspberry Pi. Plus face/voice recognition on every camera and microphone they can get into, in public or private places.

Brazil won't do anything to stop them. Only the FBI, CIA and NSA can stop them.

There is also the possibility that they were engaged on the hack of Bezos' smartphone.

If you know of any security researcher who wants to reverse engineer the exploits they are using, I am more than willing to help them.

If you want a story about how they operate, I am willing to work with you to expose them.
22 replies and 2 files omitted. View the full thread
10.jpg
[Hide] (22.5KB, 500x389)
Did you finally lose it anon?
It's ok, Anon.
These criminal organizations are in bed with local government, or rather, they ARE an unofficial branch of the local rule. Every backwater shithole like Brazil has its own arm of technological pseudo-intelligence engaging in similar behavior (it should also be noted a good deal of them are led by CIA plants, themselves Mossad plants, etc.)
"Misuse", though? Come on, really? lol
Replies: >>9220
>>9217
>>9217
 
Thats a little creepy when you think about how far of a reach certain countries have. Does the same think happen in European countries too? Mainly Northern, Western, Scandinavian, etc..? It never gets this far from what I have read, unless im missing something. Serious question anon
Replies: >>9260
>>9220
Organized crime is always conjoint with governments. It's ultimately about power. Wasn't there a scandal about human trafficking and pedo rings in Europe not too long ago? What do you think is the backbone of those operations? It sure is gets creepy to think about, but it's pretty much an open secret at this point.

new_mascot.png
[Hide] (192.6KB, 530x398)
marshall_mcluhan_on_the_anti-christ.jpeg
[Hide] (68.5KB, 680x628)
We talk all the time about our preferred operating systems, programs, and window managers, but how do you think software affects people beyond productivity? Can an operating system push people towards creativity or make them lazy? Can chat protocols or different kinds of message boards shape how people think and act? Does using a window manager or the raw virtual console benefit you as a person more than suffering through Gnome Shell? Or are all our software choices just personal tastes that don't affect anything?
56 replies and 12 files omitted. View the full thread
>>9020
>have multiple frames of input lag that is almost always due to the engine, which is almost always UE4.
Is UE really that bad?
Replies: >>9022
>>9021
>>9020
I'd like to know if any /tech/nicians had worked with UE can attest to this. I worked with UE4 in the past, but I never got very far due to inexperience, the lack of meaningful tutorials that taught you how to use the damn engine, and just how confusing the entire process/system was.

I mean, I shouldn't expect it to work like gamemaker or construct, but damn, so many pieces to get shit working.
>>9017
Read it again, he specifically mentions Apple 2 and how they feel more responsive than any modern shits, even though their CPU have less transistors than modern keyboard. xD
And that's before even bringing in the lag of modern terminal emulators. It gets even more shitty than just the keyboard.

>>9020
I never played any modern games, so whatever. But still, reaction time in arcade systems can't have lag. Emulators of course are shit and keep getting shittier on their own, in addition to the shittiness introduced by modern hardware and OS.
>muh input lag
>no mention of Redditarch's runahead
It's one of the few good things the libretro trannies have put into their bloated nigger frontend, its AoT execution method may be a meme but it werks provided you have enough computer.
On that note, how much of a shitshow is MiSTer in regards to input lag when using actual system-appropriate input devices via SNAC?
Replies: >>9084
C128_and_Amiga_2000.jpg
[Hide] (389.4KB, 2124x1195)
>>9083
I wouldn't buy the MISTer tbh. At that price I'd just get the real thing and be done with it. Either is pretty expensive right now, ever since the retro bubble happened (I guess youtube videos started this shit?) But since there's an economic meltdown coming, maybe I'll have opportunities to finally get some real 1980's gear. Been stacking silver bigly, so my savings will remain intact no matter how many banks go under.

vapier.png
[Hide] (31.4KB, 161x161)
OpenRC Embraces The CoC

The OpenRC maintainer https://github.com/williamh, together with the user https://github.com/vapier (nicknamed vapier) discuss how to be handle their incoming megaqueer reports with the new pull request which is titled add CoC based on the Contributor Covenant project #453

The community manifests their disagreement, but the repository owners completely ignore it.

https://github.com/OpenRC/openrc/pull/453
30 replies and 3 files omitted. View the full thread
>>9034
>It doesn't matter if you believe me or not
I fully believe that you tried to configure an init system without even knowing which one it was, failed and rage quit. It doesn't mean anything except that you're an idiot.
Replies: >>9038
>>9035
>Your incontinence
ftfy
>>9036
>I fully believe that you tried to configure an init system without even knowing which one it was
You're allowed to believe whatever you'd like, even if its braindead and entirely wrong. I've always selected Sysvinit when configuring Devuan. Its shitware and a relic of time, but guaranteed to work as the default. You potentially being better at using it than me, assuming you're not just an annoying troll, doesn't mean a thing for your intelligence or competence which is obviously lacking based on your posts in this thread. I wouldn't expect someone like you to understand though since you're probably the kind of person who gains a false sense of pride and accomplishment in dealing with the inane like so many others in Linux circles. How sad!
To end this point less arguing, I ( >>9024 )  think that sysvinit had to go but systemd is even worse (but for different reasons). Also, I want to clarify one thing. All *BSD operating systems use init, too. But instead of using SysVinit, they use BSD init (/etc/rc). That being said, almost no one says that sysvinit is better than BSD init (or better alternatives, like OpenRC, Runit, S6, dinit or GNU Shepherd). A problem with sysvinit is that's it's even messier than BSD init. But both are worse than something like Runit or OpenRC because they are slower (they don't start services in parallel) and they don't do any kind of service supervision.
systemd for life

laura-ockel-RoZWxeFL27k-unsplash.jpg
[Hide] (153.3KB, 640x966)
Title gives my conclusion from empirical events I witnessed and inside info. PSP runs on the same circuit, but isn't the backdoor per se, which has been around for much longer.

The same way AMD was able to change the crypto algorithms for the Zen chip they licensed to China, they can change how the CPU behaves at any system, even those already deployed. This can also be used to sabotage any program or computation, making BadBIOS vastly nastier than Stuxnet.

American military made a grave mistake to partner with the morons of the Brazilian military, who are letting knowledge of this spread like a fire (and misusing it for petty profit and inside jobs to justify a police state). Israel, UK and France also have access, but are much more professional.
5 replies and 2 files omitted. View the full thread
Replies: >>1585 + 1 earlier
>>1509 (OP) 
>what is network monitoring and DPI?
bcc365a38a40fce7c015ffba8d2a1f26.jpg
[Hide] (56KB, 744x744)
>>1537
They probably just rootkit the uefi-bios. Most uefi can boot to network, so they must have network libraries to read and decode packets. You're telling me the Fed CIA can't implant someone at one of the 3 companies that make motherboard software?
nerd.png
[Hide] (2MB, 1000x1600)
*laughs in ARM Cortex-A7*
Replies: >>8952
>>8945
Isn't ARM has something similar like PSP or ME? They called it the TrustZone and I quite skeptical about what it does. Also, just few years ago ARM processor has some major outbreak of CVE related to side channel attack.
Replies: >>8953
trustzone-explained-cic2016.pdf
(232.8KB)
>>8952
It's not equivalent to ME/PSP, which is why I bought an ARM system. :-)
Some ARM processors are vulnerable to Spectre class attacks, and others that exploit the speculative execution nature of the affected processors. Most newer ARM Cortex-A series are speculative, in fact, which is why I avoid them.  But Cortex-A7 and Cortex-A53 simply do linear fetch/decode/execute, without any kind of speculation.
That's not to say there can't be other CPU bugs, but I'm not aware of any major processor exploits for those two (A7 and A53) or older ones like ARM7 & ARM9 (but those ones are much less powerful).
And of course, other components can be attacked, like for example as Rowhammer does the DDR3/DDR4 memory. I thought about buying an old board Olimex sells that has non-vulnerable DDR2 memory, but it's a pretty big drop in performance from my 1 GHz dual core Cortex-A7 to that board's ARM926J clocked at 454 MHz, and since it only has 64 MB RAM the board can only run very old kernels specifically built for embedded Linux (and forget about OpenBSD, they just don't support it at all!)

Show Post Actions

Actions:

Captcha:

Select the solid/filled icons
- news - rules - faq -
jschan 1.4.1