agent_flounder @ agent_flounder @lemmy.world

Posts

1

Comments

1,867

Joined

2 yr. ago

Let's see em doordash that

"When he reached the New World, Cortezh burned hish ships. Ash a reshult hish men were well motivated." —Capt. Ramius, played by Sean Connery in The Hunt for Red October

Mint is a good recommendation. I've used it for most of a decade because I just want my system to work.

wntd t rspnd prprly bt my vwl sbscrptn xprd. Ds nyn hv $5?

Right? Like someone is going to put a chair or bench in a public space like a park. Ha! Call it a "park bench" or something... and let people sit on it for free?? Ludicrous! It'll never happen! /s

That'll be £1.00 for reading this response. Please advise where to send the invoice.

Nobody is both that bored and that motivated. Unless paid.

I found this on skeptics stack exchange. Supposedly, it's a hoax/urban legend that goes back way before the internet. (The entire stack exchange page on this topic is fun to read, btw)

The quote originally came from Prof. George T.W. Patrick of University of Iowa, who translated an ancient stone tablet into modern English and published in "Popular Science Monthly", May 1913. The full text of the original can be found online at archive.org: https://archive.org/details/popularsciencemo82newy, page 493.

One writer found this same quote in a slightly earlier source dating to 1908.

Yet another writer noted that there was no Chaldea but ...

... there was a stele of a King Naram-Sin of Akkad which has been exhibited in the Istanbul Archaeological Museum since 1892. The inscription on this stele is fragmentary and has nothing to do with degeneration.

https://skeptics.stackexchange.com/questions/4923/was-this-quote-on-a-clay-tablet-about-unruly-kids-written-by-an-assyrian

No one will dig up our Lemmy posts in 1000s of years. :(

Don't even get me started on finding decent copper.

Emotionally? No. Linguistically, sure.

It's seriously insane growing up on star trek and then seeing it come to life.

Still holding out for flying cars.

And warp drive!

This feels very "just found out about politics and damn" tbh.

Ok.

I think this would be of value for sharing with people that aren't aware (my kid when she was younger).

Or is there a better resource to do this?

This is all I've run across on reverse engineering, so far but it is quite interesting.

https://bsky.app/profile/filippo.abyssdomain.expert/post/3kowjkx2njy2b

You sure made no bones about your opinion there.

I have a feeling there are a lot of busy people trying to answer that question, now. Yikes.

Yeah it sounds pretty wild already with some kind of, like, door knock mechanism using certificates? So you can't scan for it. And some reverse engineering countermeasures.

Like everyone else, I have to wonder what libraries have been compromised in a way that nobody has noticed yet.

Some of the trust comes from eyes on the project thanks to it being open source. This thing got discovered, after all. Not right away, sure, but before it spread everywhere. Same question of trust applies to commercial software too.

Ideally, PR reviews help with this but smaller projects esp with few contributors may not do much of that. I doubt anyone has spent time understanding the software supply chain (SSC) attack surface of their product but that seems like a good next step. Someone needs to write a tool that scans the SSC repos and flags certain measures like the # of maintainers.

PS: I have the worst allergies I've had in ages today and my brain is in a histamine fog so maybe I shouldn't be trying to think about this stuff right now lol cough uuugh blows nose

Is there really anything they couldn't collect?

Very annoying - the apparent author of the backdoor was in communication with me over several weeks trying to get xz 5.6.x added to Fedora 40 & 41 because of it's "great new features". We even worked with him to fix the valgrind issue (which it turns out now was caused by the backdoor he had added). We had to race last night to fix the problem after an inadvertent break of the embargo.

He has been part of the xz project for 2 years, adding all sorts of binary test files, and to be honest with this level of sophistication I would be suspicious of even older versions of xz until proven otherwise.

Damn. I would love to see a full post mortem on this compromise.

Well maybe they aren't experienced info security professionals :)