#trilema | 2018-03-22

pest - 2d 14h
trilema - 1032d

Show Idle (>14 d.) Chans

← 2018-03-21 | 2018-03-23 → ↓

02:11	mircea_popescu	BingoBoingo ftr, it's euphEmisms and venezuEla. are your voewls shifting from all the tuna you're eating or what!
		↖
		~ 2 hours 40 minutes ~
04:52	douchebag	Alright, I still haven't written a V implementation. I would like to help, however programming is not my main area of expertise. I feel like writing a V implementation would not waste my time, but yours as well considering d
04:52	douchebag	others have written V implementations that would be much better than the one I would write.
		~ 1 hours 34 minutes ~
06:26	mircea_popescu	you're a twenty year old, what "area of expertise".
06:30	douchebag	I've been focused on web application security for the past decade, just becase I'm only 20 doesn't mean I'm not skilled.
06:31	mircea_popescu	whether you're skilled or not has no bearing on this whole "area of expertise" nonsense. i've been writing for twenty years, doesn't mean i'll sit with my laptop while the girls eat each other out because fucking "isn't my area of expertise".
06:31	mircea_popescu	the whole point, not just of the "write a v" task, but of the republic altogether, is to make this sort of non-thinking you're going for both ridiculous and impossible.
06:32	mircea_popescu	i get it, it's hard and especially unpleasant in that it requires your getting off your ass, and god forbid confronting the unpleasant side of things. hurr.
06:34	douchebag	It would not be unpleasant if it had not already been done before multiple times, what's the point of reinventing the wheel?
		↖
06:34	mircea_popescu	that it will force you to abandon your current mental rut. hopefully before it does any permanent damage.
06:35	mircea_popescu	you understand most people aren't ~born~ stupid, but become stupid through systematic effort over long intervals. do you ?
06:39	douchebag	No, I constantly put effort towards learning more and improving my skills as well as my self.
06:39	mircea_popescu	good for you.
06:43	douchebag	I'd like to be helpful, I am generally a pretty helpful person. However, I just feel like I could be of more use if I focused on something I'm better suited to help with
06:44	mircea_popescu	what you're actually saying is "i opt to waste my youth". which is fine, it's yours to waste.
06:45	douchebag	How though?
06:46	mircea_popescu	because you're sitting there waiting for reality to change so it may be admitted in yoru movie. that's not how reality works, though there's a bunch of people still waiting for bitcoin to be what they thought of it, back in 2015 or 2013 or 2011 or w/e the fuck they first heard of it, formed a fantasy and adhered to it.
		↖
06:51	douchebag	Well I don't understand how I'm sitting here waiting for reality to change? Are you saying there's absolutely nothing that I could help with here in regards to Information Security?
06:51	mircea_popescu	i'm saying that your notion of helping is so constructed so as to preclude helping, yes.
06:52	douchebag	Okay, and suppose I do write a V. What's next?
06:53	mircea_popescu	i don't know.
06:55	douchebag	Like I said, I would like to help. I know how to code but I would be much better at helping w/ security related topics. I would not want to write a V just to find out that the only way for me to help would be for me to code stuff
06:56	mircea_popescu	right.
07:00	douchebag	So, do you think I should even bother?
07:00	douchebag	or do you think I would just be disappointed
07:01	mircea_popescu	i don't think you can be anything but disappointed, in your current state.
07:03	douchebag	What is my current state?
07:04	douchebag	I love what I do
07:04	douchebag	I'm good at what I do
07:04	mircea_popescu	http://btcbase.org/log/2018-03-22#1788499
07:04	a111	Logged on 2018-03-22 10:46 mircea_popescu: because you're sitting there waiting for reality to change so it may be admitted in yoru movie. that's not how reality works, though there's a bunch of people still waiting for bitcoin to be what they thought of it, back in 2015 or 2013 or 2011 or w/e the fuck they first heard of it, formed a fantasy and adhered to it.
07:05	diana_coman	douchebag, learning something is never a waste of time; and learning what you "are not good at" is quite doubly NOT a waste of time; "outcome" as you currently define it doesn't enter into it at all; and for that matter: http://trilema.com/2015/causes-and-purposes/
07:09	douchebag	diana_coman: I agree with you. The reason I'm a bit hesitant is because I know what I'm not good at. I know how to code, I write code almost every single day. However, I don't code for the same reasons most people do
07:10	mircea_popescu	what reason is that ?
07:10	diana_coman	what are the "same reasons most people do" and ..how did you figure out "most people" in there and why they do what they do?
07:10	douchebag	I write code for the simple purpose of making my life easier. 95% of the code I write will never be ran by anyone else except myself
07:11	mircea_popescu	im pretty sure that's how it goes for most everyone here.
07:11	diana_coman	douchebag, why do you concern yourself with what other people do or not do after something you didn't even yet do; it's a recipe for insanity this
07:12	diana_coman	mircea_popescu, heh, remember WHY I wrote foxybot?
07:12	diana_coman	out of frustration with click-click-click
07:13	diana_coman	douchebag, your problem still seems to have as root the approach "towards purpose" instead of from causes; try and digest that post
07:14	douchebag	Okay, to clarify what I meant by saying "most people" is that people write code to publicly release and be used by others ect..
07:14	diana_coman	douchebag, nope
07:14	diana_coman	now what?
07:14	douchebag	I don't understand what a V is I have read about it, I have looked at examples and I still don't understand
		↖
07:15	mircea_popescu	diana_coman aha
07:15	douchebag	If I understood it completely it would be no problem coding it.
		↖
07:15	mircea_popescu	so then there youi go.
07:15	diana_coman	douchebag, that already sounds healthier at any rate
07:17	diana_coman	douchebag, write somewhere a summary of what you understand of it and what you don't - it will help you formulate some clear questions to...ask in here, so people can help you understand
07:17	douchebag	I literally do not understand anything. I don't know what a vpatch is or anything. The concept just does not make sense
07:18	douchebag	From what I can tell
07:18	diana_coman	what concept?
07:18	diana_coman	there are plenty of vpatches around - have a look at them for "what a vpatch is"
07:19	douchebag	It just appears to be way of updating code, pgp signing the updates
07:19	douchebag	and displaying the difference
07:20	diana_coman	so it does make some sense after all
07:20	douchebag	that's all that I understand
07:20	douchebag	if that is even correct
07:21	mircea_popescu	it is.
07:21	diana_coman	douchebag, it's fine, you just need to expand now from that
07:22	douchebag	Alright
07:22	douchebag	So here's the next thing
07:23	douchebag	If I do this and I am successful, am I going to be expected to work on programming projects or could I find something that I would be able to help with in regards to information security
07:24	mircea_popescu	depends what you mean by the latter.
07:27	douchebag	I can identify security flaws & help with properly remediating the issue
07:28	douchebag	I primarily focus on web application and network based penetration testing
07:28	mircea_popescu	right.
07:29	douchebag	So, would those skills be of use here?
07:31	douchebag	Also, I would be interested in starting a security firm
07:32	mircea_popescu	sigh.
07:32	douchebag	Offering remote & in person security solutions both offensive and defensive
07:32	douchebag	That was a plan of mine to do later down the road
07:33	douchebag	However, if you guys would be interested in doing that sort of thing I would be more than happy to help.
07:33	mircea_popescu	you really think you're going to eat out of blabla.php?=<alert whatever ?
07:34	douchebag	Can you elaborate?
07:35	mircea_popescu	information security is what apeloyee's been doing on alf's blog, or ave1 on diana_coman 's or so on and so forth.
07:35	douchebag	Could I read the blogs?
07:35	mircea_popescu	sure.
07:36	douchebag	Link pls
07:37	mircea_popescu	do you read the logs douchebag ? or just stumble in this window now and again and that's it ?
07:37	mircea_popescu	http://btcbase.org/log/2018-02-04#1781038 ; http://btcbase.org/log/2018-03-21#1788335 etc
07:37	a111	Logged on 2018-02-04 18:21 asciilifeform: !~later tell apeloyee http://www.loper-os.org/?p=2118&cpage=1#comment-19228
07:37	a111	Logged on 2018-03-21 13:36 diana_coman: found it: http://www.dianacoman.com/2017/12/28/eucrypt-chapter-3-miller-rabin-implementation/#selection-169.0-169.1019 <- ave1
07:38	douchebag	I've read the logs partially, however I haven't finished them
07:42	douchebag	Alright, yes that is some very interesting research. However, that's not exactly the same area of InfoSec that I have been studying.
07:43	mircea_popescu	certainly not.
07:45	douchebag	Yes, and that's one of the reasons why I'm not too sure if the areas I focus would even be relevant to the projects you guys work on
07:46	douchebag	For instance, what you mentioned in regards to XSS. XSS is the sort of thing that would have little to no impact on a site like trilema.com
07:47	douchebag	However, if it was found on an online banking platform it would be very serious.
07:47	mircea_popescu	for some definitions of serious.
07:48	diana_coman	I can't help but read that as "I'm not too sure if my focus on finding rats in take-aways would even be relevant to your actual cooking"
07:52	douchebag	Well, I've stated previously that I intend on learning more about some of the more low level attack vectors
07:56	douchebag	Most of the work I currently do is focused around protecting customers
07:58	douchebag	Perhaps I would be able to help w/ Pizzaro ISP?
		~ 3 hours ~
10:59	asciilifeform	http://btcbase.org/log/2018-03-22#1788491 << lol >> http://trilema.com/2011/la-ce-imi-serveste-mie-radicalurile/
10:59	a111	Logged on 2018-03-22 10:34 douchebag: It would not be unpleasant if it had not already been done before multiple times, what's the point of reinventing the wheel?
11:00	asciilifeform	douchebag are you ok with eurolangs or do you need this englishized
11:03	asciilifeform	!~ticker --market all
11:03	jhvh1	asciilifeform: Bitstamp BTCUSD last: 8552.65, vol: 14072.22693838 \| Bitfinex BTCUSD last: 8550.8, vol: 60153.85681754 \| Kraken BTCUSD last: 8558.0, vol: 12690.6100365 \| Volume-weighted last average: 8552.15078783
		~ 16 minutes ~
11:19	douchebag	englishized i guess
11:22	asciilifeform	i'ma let mircea_popescu give the one-troo summary if he feels like ( it's his article ) but will say, it was about the archetypical f-student schoolbois's canonical lament 'what good will learning square roots do for me'
		↖
11:25	mod6	I would say, douchebag, that if you don't know how to, at minimum, ~use~ V, you'll find it very difficult to participate.
11:26	mod6	I've said this to others, I'm sure, that before even contemplating writing a V, you should be well versed in it ~use~.
11:26	mod6	*its
11:26	asciilifeform	ftr this applies to everybody. incl. asciilifeform , who had been 'using v' by hand-crank for year+ prior to writing the actual one
		~ 30 minutes ~
11:57	mircea_popescu	asciilifeform can't say i'm tempted. the structure still can not be predicated on the meaning, what am i going to do, argue with the "rationally skeptical" http://btcbase.org/log/2014-02-16#509012 ?
11:57	a111	Logged on 2014-02-16 22:04 asciilifeform: old man: 'drown him, father, drown, drown.'
11:58	asciilifeform	at the risk of abusing proverb -- teacher can lead horse to water, but cannot make him take square roots
11:58	shinohai	!!invoice danielpbarron 0.016496929 Ecu trade (ecu not settled yet )
11:58	deedbot	Get your OTP: http://p.bvulpes.com/pastes/i0x5U/?raw=true
12:00	shinohai	!!v 24A9E807E62D1F734080DD09045384C75311E123677AB55D72CB6BC4EB21F2AA
12:00	deedbot	Invoiced danielpbarron 0.016496929 << Ecu trade (ecu not settled yet )
12:00	asciilifeform	mircea_popescu: my impression is, some folx like 'pumping' their head, like muscle men pump muscles, others -- not. and who's who, is apparent from early childhood.
12:01	mircea_popescu	maybe.
12:01	mircea_popescu	i do however believe the foregoing statement, that high quality, sterling stupidity is always manufactured, never inborn. most people are poorly socialized from birth.
12:02	asciilifeform	fwiw asciilifeform does a few things (not really worth writing about) in his ( not overly abundant ) sparetime that wouldn't make any sense whatsoever to a 'la ce imi serveste mie...' pov , strictly to 'stretch muscle'
12:02	BingoBoingo	http://btcbase.org/log/2018-03-22#1788483 << Vowels shift, R's roll faster, but still trying to find an ethnic slur that can stick to the Uruguayos (fucking self delusion of white priviledge)
12:02	a111	Logged on 2018-03-22 06:11 mircea_popescu: BingoBoingo ftr, it's euphEmisms and venezuEla. are your voewls shifting from all the tuna you're eating or what!
12:02	mircea_popescu	the unsustainable, unacceptable etc systematically misrepresented to them as socially acceptable, the necessary, correct etc equally systematically misrepresented as socially unacceptable... it's true that this is grade A child abuse, but then again it's also true the children so abused carry on the sad smoldering stumps of what's left of their lives
		↖
12:02	mircea_popescu	in turn perpetuating the abuse cycle upon others.
12:04	asciilifeform	most folx are no more capable of conceiving an ~original~ abuse than of original symphony or theorem, lol
12:04	asciilifeform	so naturally propagates.
12:04	mircea_popescu	not even sure how original the whole "nopenopenope" thing is.
12:04	mircea_popescu	or could be, at that.
12:15	ben_vulpes	i'm going to hand crank ^^ for now
12:19	ben_vulpes	http://logs.bvulpes.com/trilema?d=2018-3-22#317063 << you showed up, said 'help, what do i do', and i said 'go, son, and this thing.' it's a severalfold test: can you wrap your head around the concepts in v? can you take orders when you ask for them? it's a layered pile of crash course in not flunking out of the republic. in re 'what am i expected to do', look either you eventually grow up and start picking
12:19	mimisbrunnr	Logged on 2018-03-22 11:17 douchebag: If I do this and I am successful, am I going to be expected to work on programming projects or could I find something that I would be able to help with in regards to information security
12:19	ben_vulpes	your own research targets in which case you're a man and can make your own decisions or you need orders and will be told what to do. picking your own targets is an act of creativity, which i muchly doubt i'll see much of from a metasploit crank-puller. as it stands i don't really expect you to do anything but it's a low bar and a single task to show me wrong.
12:21	mircea_popescu	now on to the issue of the vps. is pizarro coming up with something in short enough order it's worth having the whole genesis mp-wp wait on it, or rather should more business go away and hanbot pick herself yet another rando vps host ?
12:21	douchebag	ben_vulpes: Like I've said, I focus primarily on web application exploitation and I do everything manually.
12:21	douchebag	Where did you get this notion that I am a 'metasploit crank-puller'
12:21	douchebag	?
12:22	ben_vulpes	mircea_popescu: working with asciilifeform to vpsify the idle box now
12:22	mircea_popescu	so the eta is on the order of days ?
12:22	ben_vulpes	i'll get you an eta mircea_popescu
12:22	mircea_popescu	ty
12:22	mircea_popescu	can the eta on the eta be today-ish then, plox/
12:24	ben_vulpes	yessir
12:24	ben_vulpes	douchebag: well it's what it looks like from here, take the ad hominem and show me it's wrong yeah?
12:25	mircea_popescu	douchebag if 13 yo kid comes to psychologist's office because insomnia, and after some hymenlick maneouvering on the part of the professional comes out with the story that has "terrifying and disturbing dreams", thereuponwhich recounts numerous instances of dreamed tits, nipples and areola but 0 clits, labia or vaginal openings, the psychologist can safely thereby infer 13yo kid is a virgin.
		↖
12:26	ben_vulpes	in unrelated "mouths of babes", "what's daddy doing? having a penis?" "every day, kiddo"
12:26	mircea_popescu	should however same kid in same situation describe anal beads with nubbins on them and other arcana 13yo kids notably (and notedly, throughout history of civilisation) can NOT on their own come up with, psychologist similarily has a solid child abuse referral case.
12:26	douchebag	Well, I've been paid thousands of dollars in bug bounties. All of which I have found manually.
		↖
12:26	douchebag	I also work for a security firm at the moment.
12:27	mircea_popescu	there is no certificate of ontology.
12:27	ben_vulpes	douchebag: you realize you're "telling and not showing" and that nobody cares about your fiatland sekyooridee credentialing?
12:27	mircea_popescu	ben_vulpes in fairness he tried to show, and inexplicably it didn't work.
12:27	douchebag	I've showed mircea_popescu some of my blogs before
12:27	douchebag	Which were SSRF & SSRF + XXE
12:28	mircea_popescu	http://btcbase.org/log/2018-03-08#1787452 and all that.
12:28	a111	Logged on 2018-03-08 21:29 mircea_popescu: meditation upon http://btcbase.org/log/2018-03-08#1787343 yields the interesting result that problem spaces are not continuous. problem spaces are discrete, and there exists such a thing as problem spans.
12:28	ben_vulpes	mircea_popescu: musta been jarring
12:28	ben_vulpes	douchebag: i dunno man, i'm going to weary of picking things for you in short order but maybe try to sidechannel the mpi lib?
12:28	shinohai	Here I thougt one got a certificate in monology
12:28	ben_vulpes	webshit is just uninteresting, like mcdonalds
12:29	mircea_popescu	it's interesting to me, honestly. i expect from his pow we appear as half insane half irresponsible, and the question of where's the hole the day comes in through quite poignant.
12:31	ben_vulpes	sure does not look like he's putting any time into figuring out why nobody cares about his boy scout badges.
12:34	douchebag	ben_vulpes: It's interesting to me, and considering pretty much any large company or organization has a web application in their infrastructure I feel like it's a pretty good area to focus on in terms of security research.
12:34	mircea_popescu	right. i expect it's the first time anyone even said within earshot this whole pantsuit badge collecting isn't even socially accepted, let alone required.
12:35	mircea_popescu	douchebag this is not unlike becoming a dermatologist because most people have skin.
12:35	mircea_popescu	it's somehow funny when the md says it.
12:35	ben_vulpes	douchebag: do you understand why it's uninteresting to this particular group of terrorists?
12:35	douchebag	You guys sure do feel great about yourselves don't you?
12:36	ben_vulpes	oh baby don't take it personally, sit with the discomfort for an hour and figure out the root of it.
12:36	shinohai	douchebag: Project much?
12:37	douchebag	How am I projecting? You're the ones who are acting like you're somehow better because you have different interests.
		↖
12:41	douchebag	"i don't know how you think you know better what to do with your time than mp"
		↖
12:41	douchebag	"mp is better than you; stop pretending like he isn't"
		↖
12:41	shinohai	http://btcbase.org/log/2018-01-23#1774684 , http://btcbase.org/log/2018-01-23#1774709 , http://btcbase.org/log/2018-03-22#1788626
12:41	a111	Logged on 2018-01-23 06:43 douchebag: I can sit in front of my computer for 36 hours straight researching a specific topic
12:41	a111	Logged on 2018-01-23 06:53 douchebag: I also have an extremely good memory compared to most people, I can remember very specific details about events and conversations that happened years prior
12:41	a111	Logged on 2018-03-22 16:26 douchebag: Well, I've been paid thousands of dollars in bug bounties. All of which I have found manually.
12:41	douchebag	danielpbarron said this earlier
12:42	shinohai	I could continue, but what do I care? I'm on my way out here myself.
12:43	douchebag	https://i.imgur.com/2Tn47SJ.png
		↖
12:44	douchebag	Oh yeah, and I'm the one projecting.
12:44	ben_vulpes	you did come here and ask for guidance, lol
12:45	douchebag	No, I came here so that I could help.
12:45	ben_vulpes	this "all hobbies are equally valid" thing ain't gonna carry water fwiw
12:45	asciilifeform	douchebag: iirc you came and 'i am very good at finding bugs in php' and found a few and folx said 'thanx' and what do you want now ?
12:46	shinohai	A merit badge obviously.
12:46	asciilifeform	there is not a future with vastly moar php in it
12:46	douchebag	No, I figured that maybe I could help more
12:46	asciilifeform	douchebag you trained as a technician and the tubes you trained on are on their way out. sad (for you) but true. consider learning something else.
12:46	douchebag	but instead you jerkoffs just told me to write a v implementation
12:47	asciilifeform	douchebag: didja ever go to school of any sort ? did they give you Great Unsolved Problems to solve in school ? or old, solved ones ?
12:47	douchebag	asciilifeform: I can find bugs in just about any web framework, not just php.
12:47	mod6	douchebag: did you ever build trb?
12:47	mircea_popescu	douchebag no, actually : we are explicit about the [little] we feel good about ourselves. the "alternative" such as it misrepresents itself, is very successfully implicit about how [grandiosely] it feels good about itself. but somehow you don't go up to some clueless dork pretending to run a "security business" and be "your boss" and ask him whence he feels that insanely overstretchedkly good about himself. for SOME reason.
12:49	mircea_popescu	http://btcbase.org/log/2018-03-22#1788651 << amusingly enough, i'm probably a better "website security" dood than you, if that's what you mean, or at least so the folk in the know believe, on the strenght of the various website fuckings / wp ddos writeups etc i've piled up over the years. but this is a little like disputing the sackrunning competition.
12:49	a111	Logged on 2018-03-22 16:41 douchebag: "mp is better than you; stop pretending like he isn't"
12:49	asciilifeform	douchebag: why limited to 'web framework' ? if you consider yerself fit for work in hard/unsolved problems -- why not go and find remotely exploitable boojum for trb
12:49	asciilifeform	douchebag: will be taken seriously quite quickly.
12:50	douchebag	trb?
12:50	douchebag	link
12:50	asciilifeform	douchebag: therealbitcoin.org
12:50	mod6	you have never read the logs 'eh
12:50	mod6	you can't say that you read the logs, and also do not know where trb is or what it is.
12:50	douchebag	mod6: not in full, I don't have a ton of time on my hands to read 6 months of logs
12:50	ben_vulpes	douchebag: see dude this is why i can't take you seriously, you have zero context for what's going on here and yet you insist on strutting around as though you matter
12:51	douchebag	ben_vulpes: How am I supposed to take anything in here seriously if nobody can tell me anything besides
12:51	douchebag	"
12:51	mircea_popescu	ben_vulpes "here is everything". he was promised his context is universal by teh universalist party.
12:51	douchebag	"read the logs"
12:51	mircea_popescu	you're not saying he was scammed, do you.
12:51	ben_vulpes	mircea_popescu: haw haw haw
12:52	mircea_popescu	ayup
12:52	ben_vulpes	douchebag: you did just get a link to trb
12:52	ben_vulpes	no fucking way anyone's going to try to enumerate the holes in your education
12:52	asciilifeform	ben_vulpes: i suspect that 'chukcha is not a reader, he is a writer'
12:52	douchebag	I didn't get a link to trb.
12:53	mod6	i gotta look this up now
12:53	shinohai	>Can't be annoyed to read logs, yet "can sit in front of computer 36 hours straight researching a specific topic"
12:53	shinohai	http://thebitcoin.foundation/trb-howto.html
12:53	mircea_popescu	http://btcbase.org/log/2018-03-22#1788649 << this is actually very true ; if theres a predicate for republican superiority, is the better choice of interests.
12:53	a111	Logged on 2018-03-22 16:37 douchebag: How am I projecting? You're the ones who are acting like you're somehow better because you have different interests.
12:53	ben_vulpes	also i don't give one watt of credence to this 'no time' thing; i've read logs daily for what, four years? started and sold out of a company, had more than one 'job' at points, manage a family and still keep up and contribute
12:53	asciilifeform	shinohai: he'll, apparently, read for 36 months if it's webgarbage by microshit press etc
12:53	mod6	I have personally, at least, posted 'thebitcoin.foundation' in here 196 times.
12:54	ben_vulpes	douchebag: if you cannot read through thebitcoin.foundation website and get to trb i do not know what future there is for you
12:54	asciilifeform	i dun think more than a week has gone by, at any point since trb first proclaimed , when trb was not mentioned in some way
12:56	douchebag	Okay, suppose I can get remote code execution w/ trb
12:57	mod6	then tell us for christsakes
12:57	mircea_popescu	that'd be interesting.
12:57	asciilifeform	douchebag: then you have various options. and you don't need me or anyone to tell you what these are.
12:57	asciilifeform	use imagination.
12:57	douchebag	Okay, I'll look into that.
12:58	asciilifeform	point being that a student who is tired of 'solved problems' can demonstrate mastery any time he's ready and able.
		↖
12:58	asciilifeform	by solving unsolved one.
12:58	mircea_popescu	http://btcbase.org/log/2018-03-22#1788650 << this is also interesting. note however it's misstated. whether you know better or not what to do with your time is not generally touched ; but you sure as fuck don't know better what NOT to do with your time, which is time and again the crux of the matter.
12:58	a111	Logged on 2018-03-22 16:41 douchebag: "i don't know how you think you know better what to do with your time than mp"
13:00	douchebag	I just don't see what was so damn difficult about that? If you guys told me to look for RCE in trb this conversation could have ended hours ago
13:00	shinohai	Because the Republic isn't in the business of tard wrangling?
13:00	ben_vulpes	i thought this was too obvious to point out, did not want to further insult douchebag's intelligence
13:00	asciilifeform	this is why 'technician'. an actual adept does not have to be told.
13:01	asciilifeform	technician -- told. 'my tv lost vertical raster, tell me what do'
13:02	asciilifeform	it is not insult to intelligence, either. technicians have a place. but douchebag gotta decide which it is that he wants to be, and stop pretending to be the other.
13:02	ben_vulpes	douchebag: until you wrap your head around what goes on here, you're going to be fighting this negative impression where you insist that you're smart and educated etc, just...not in any topics that anyone here cares about eg trb as a basis for murdering the megastate and all barnacles like ecommerce/ssl/securitycircus hanging off the side
13:03	ben_vulpes	not to insult your trade, but to try and hammer home the paradigms you're missing
13:04	ben_vulpes	man i can't even find the juice to beat this kind of thinking into the heads of people at $work; they gotta come preconfigured for utility
13:05	douchebag	ben_vulpes: Why do you write web applications if you're going to allow vulnerabilities in your code?
13:06	asciilifeform	douchebag: since you do not read logs, you may be surprised and interested to find out that folx like you show up regularly, e.g. http://btcbase.org/log/2017-03-24#1632239
13:06	a111	Logged on 2017-03-24 03:17 gabriel_laddel_p: BingoBoingo: "I should study more" isn't a winning idea. GTFO.
13:06	douchebag	Wouldn't it make sense to make sure you're doing something the right way before you go ahead and do it?
		↖
13:06	ben_vulpes	bit of a nonsensical question
13:06	mircea_popescu	ahahaha he got you there didn't he ?
13:06	ben_vulpes	why bother fucking if your dick's going to pop out?
13:07	mircea_popescu	yes douchebag. the whole point is to do things right.
13:07	douchebag	Good, I'm glad someone is on the same page as me.
13:07	ben_vulpes	mircea_popescu: yeah i care quite deeply about folks clicking links with b58 encoded piles of trash in the url
13:07	mircea_popescu	indeed, this may be the first shared prior unearthed yet. but it's solid.
13:08	mircea_popescu	ben_vulpes ok, but it's not DIRECTLY obvious, this.
13:08	ben_vulpes	mircea_popescu: doing things correctly also implies knowing what hairballs of stupid to cut off and not consider.
13:08	mircea_popescu	kinda like... how he does ?
13:09	mircea_popescu	yues, fucking obviously, kuhn's notion of "paradigm" in research is precisely that, what beds to not look under.
13:10	danielpbarron	!!pay-invoice shinohai 1
13:10	deedbot	Get your OTP: http://p.bvulpes.com/pastes/kbxJb/?raw=true
13:16	ben_vulpes	!~later tell hanbot drop by #pizarro sometime soon and opine re http://logs.bvulpes.com/pizarro?d=2018-3-22#317360 please
13:16	mimisbrunnr	Logged on 2018-03-22 17:08 asciilifeform: i for instance do not see why , if it's wot l1 people living in it, it has to expend the cpu overhead to pretend-isolate and vm-ize. why not simply traditional unix accounts.
13:16	jhvh1	ben_vulpes: The operation succeeded.
13:18	mircea_popescu	^
13:19	mircea_popescu	use linux accounts. the "isolation" bs is bs.
13:19	ben_vulpes	mircea_popescu: tru tru; what objections would you field to sharing a host with l2?
13:19	mircea_popescu	if there's actual demand for some reason, can always stand up a box with all that crap later. or entreprising fellow can just resell one.
13:20	mircea_popescu	ben_vulpes depends what host. a blog ? i dunno man, what sikrits can they glean!!!!
13:20	asciilifeform	in general engineering practice, one of the very few good heuristics asciilifeform knows for 'improve X' is 'discard pretenses'
13:20	mircea_popescu	^
13:20	asciilifeform	as for example fg discards whitening
13:21	mircea_popescu	makes for spectacularly improved items, too.
13:21	asciilifeform	'if there ain't any entropy, there wont be any fucking output, take it or leave'
13:26	asciilifeform	in asciilifeform's experience with shared unix boxen in youth, the most typical problem is not 'seekritz' but 'hamfist hoses the box'
13:26	mircea_popescu	meanwhile in unexpected lulz, http://trilema.com/2018/why-african-americans-can-never-excel-at-anything-relative-to-the-white-majority-they-cant-be-the-smartest-nor-the-poorest-nor-the-best-nor-the-neediest-nor-the-anything-else-est-not-ever/#comment-125050
13:27	mircea_popescu	asciilifeform i've not yet managed to properly speaking hose a modern box (hosed as in, root can't log in to fix it)
13:28	mircea_popescu	not even sure what it'd take, but we could have a competition, "shorters bash line that hoses box"
13:28	ben_vulpes	heh, this'll turn into our bitbet moderation cost center without care
13:28	asciilifeform	'hose' perhaps was poor word. more of a 'root MUST come and fix because d00d decided to eat all of cpu' in box without quota-'fascism'
13:28	asciilifeform	ben_vulpes yes, potential risk
13:29	mircea_popescu	asciilifeform how will anyone eat all the ram, apache runs as nobody anyway.
13:29	asciilifeform	in scenario where the only user proggy is apache -- correct, cannot eat
13:29	asciilifeform	but once you introduce 'i want to run XYZ' -- can eat
13:29	mircea_popescu	well if you're not using it to publish web shits, get a proper box.
13:29	ben_vulpes	yo trinque can i get you to opine on http://logs.bvulpes.com/pizarro?d=2018-3-22#317403 please
13:29	mimisbrunnr	Logged on 2018-03-22 17:18 ben_vulpes: can we leverage chroot for this?
13:31	asciilifeform	back to the 'let's remove pretenses' -- let's put on record for the log: the 'traditional' style of vps is quite heavy in overhead, because pointlessly emulates for each inhabitant 'you have a i-cant-believe-its-not-a-physical-box-with-physical-nic-and-disks-etc' item
		↖
13:32	mircea_popescu	yes, i expect 60% of the box goes to that wastage by now.
13:32	asciilifeform	this is 1) costly , vmization imposes continuous context-switching for cpu, even with the acceleration garbage it is ruinous 2) pointless, because readily 'escaped' from
13:32	ben_vulpes	60%!?
13:32	mircea_popescu	which 60% can also be used to... you know, buffer the occasional mass mysql rewrite or w/e user needs
13:32	asciilifeform	ben_vulpes: correct. what do you suppose duplicate multi-GB linuxen in ram at all times, cost nothing ??
13:32	mircea_popescu	ben_vulpes yes. fucks up everything, cache, etc
13:33	mircea_popescu	it's the pantsuit gift of "progress", tends to soak up about 60% of the living life to do nothing at all. much like their tax system.
13:33	ben_vulpes	asciilifeform: does the 'cgroups' 'containerization' sharedhosting approach waste the same amount?
13:33	ben_vulpes	it's been some time since i gave a shit but the 'docker' folks were very proud of the resource sharing that linus wrote for them
13:33	asciilifeform	ben_vulpes: afaik that's more of an asymmetric-multiprocessing flavour of thing
13:34	asciilifeform	but i have not personally tried
13:34	asciilifeform	basic problem remains, if each inhabitant is given illusion of 'i have a comp', this is not free
13:34	asciilifeform	you have now N instances of the multi-GB garbage shitpile that is modern linux, instead of 1, in memory.
13:34	asciilifeform	and on disk.
13:34	mircea_popescu	particularly ill suited application for ibm compatible designed hardware.
13:34	ben_vulpes	sure, walls in highdensity apartment building also wasteful of square footage
13:34	mircea_popescu	because cpu is so small comparatively.
13:34	asciilifeform	and N kernels being run instead of 1 (each of which thinks that it owns an actual iron comp)
13:35	asciilifeform	not only cpu; they all share bus, and nic
13:35	mircea_popescu	ben_vulpes nah, walls in apt building is the linux user system. you're thinking of english "cottages" piled up in town, each with their 3 sq ft "garden" in front.
13:35	asciilifeform	and the friction is substantial and is in fact not 60 but 90+% of the resources spent at shitazon etc
13:35	ben_vulpes	heh oh okay
13:35	mircea_popescu	ever been to england btw ? worse wastage of construction materials never was seen.
13:35	ben_vulpes	not even japan with the traditional every-30-year rebuild of housing stock?
13:36	mircea_popescu	not even.
13:36	ben_vulpes	last time i was in england i was like 14
13:36	mircea_popescu	imo brits are the dumbest of animals, and for two reasons : the constant rape the muslims put them through, and the constant rape the real estatists put them through.
13:36	asciilifeform	japan at least has excuse of resource-impoverished godforsaken island with 0 minerals
13:36	ben_vulpes	was more interested in the adults with beer and teenaged girls
13:39	lobbes	Ah okay. Thank you asciilifeform, this http://btcbase.org/log/2018-03-22#1788767 satisfied my http://logs.bvulpes.com/pizarro?d=2018-3-22#317425 inquiry sufficiently
13:39	a111	Logged on 2018-03-22 17:31 asciilifeform: back to the 'let's remove pretenses' -- let's put on record for the log: the 'traditional' style of vps is quite heavy in overhead, because pointlessly emulates for each inhabitant 'you have a i-cant-believe-its-not-a-physical-box-with-physical-nic-and-disks-etc' item
13:39	mimisbrunnr	Logged on 2018-03-22 17:23 lobbes: To run with the house analogy: my current vps arrangements feel more like 'condominium' than 'roomies sharing a house'. E.g. I could set up a cronjob to blow away /var/www/ every hour if I felt like it. No need to consult (nor do I see) other renters
13:40	asciilifeform	the ~other~ engineering heuristic that's absolutely imho grand, and that i stole from mircea_popescu , is 'there is not a mechanical substitute for coming to an understanding with the people you live and work with'
13:41	asciilifeform	cpu quotas and other 'systems that can be exam-gamed' are not substitute for talking to people.
13:41	asciilifeform	and suddenly when you apply this you get flexibility that you could never get from mechanical fences.
13:42	mircea_popescu	i suppose a logical next step for pizarro is to have a bot dedicated to listing who's on boxes, what the load is like etc.
13:42	asciilifeform	unix even has helpful commandline items for this..
13:42	mircea_popescu	yup. and trinque made the bot, it's a pipe job.
13:42	asciilifeform	state of the art 1974!11
13:42	mircea_popescu	asciilifeform which may be the last time this (ie, sane people working) even occured.
13:42	mircea_popescu	very evidently same winds blew those sails up.
13:43	asciilifeform	aha exactly
13:47	mircea_popescu	http://btcbase.org/log/2018-03-22#1788711 << this reminds me of ye famous euler story, when he was punished to add all numbers up to 100.
13:47	a111	Logged on 2018-03-22 16:58 asciilifeform: point being that a student who is tired of 'solved problems' can demonstrate mastery any time he's ready and able.
13:47	asciilifeform	and observe, mircea_popescu does not pack his harem gurlz 2-3 to a room by sawing off their beaks
13:47	asciilifeform	but by getting'em to get along.
13:47	lobbes	Honestly, my knee-jerk reaction against sharing a box is probably based on the old idea of sharing it with $random_orcs. Sharing it with L1s may actually be a Good Thing (I'd probably learn a few useful things)
13:47	asciilifeform	mircea_popescu: gauss
13:48	mircea_popescu	o was it ?
13:48	mircea_popescu	lobbes considering what the level of committment required to try it is... what, waste 20 bux ?
13:49	asciilifeform	mircea_popescu: http://bit-player.org/wp-content/extras/gaussfiles/gauss-snippets.html
13:49	mircea_popescu	i believe, i believe.
13:49	asciilifeform	^ somebody sat and tried to collect all known versions of the legend
13:49	asciilifeform	because he asked 'how the fuck do we know it ~was~ gauss'
13:50	asciilifeform	earliest mention seems to be an 1877 item.
13:54	ben_vulpes	lobbes: i think it'll be great; will push everyone on the box to standardize on known-ok package versions. "we support weechat 1.4 and fuckyou"
13:54	ben_vulpes	s/fuckyou/for your benefit, dear customer/
13:54	mircea_popescu	kinda the idea.
13:55	mircea_popescu	faux choice of meaninglessness is the cornerstone of that entire http://btcbase.org/log/2018-03-22#1788602 system.
13:55	a111	Logged on 2018-03-22 16:02 mircea_popescu: the unsustainable, unacceptable etc systematically misrepresented to them as socially acceptable, the necessary, correct etc equally systematically misrepresented as socially unacceptable... it's true that this is grade A child abuse, but then again it's also true the children so abused carry on the sad smoldering stumps of what's left of their lives
13:55	mircea_popescu	consider hanbot's problem : there is "An abundance" of vps hosten to "choose" from. with the aforegiven knowledge that buttpay and shitsandwich. "but it's our policy to suck" and http://btcbase.org/log/2018-03-21#1788393 dedication and so on.
13:55	a111	Logged on 2018-03-21 14:41 a111: Logged on 2018-03-08 00:21 mircea_popescu: this entire exercise in idiocy has, practically speaking, resulted in me paying various hard working ticos a grand or so, to the people fucking in the ass the "security" paradigm of pantsuit.fetlife. IN LIEU of having paid that much, and rather more, to the fetlife itself.
13:56	mircea_popescu	fuck this "choice".\
13:59	mircea_popescu	http://btcbase.org/log/2018-03-22#1788658 << loller where's that from
13:59	a111	Logged on 2018-03-22 16:43 douchebag: https://i.imgur.com/2Tn47SJ.png
14:13	*	mircea_popescu looks into the logs, sees 62 instances of eg - http://testasp.vulnweb.com/t/fit.txt%3F.jpg and similar garbage. this, of course, is "web security" or "penetration testing", or however you'd call it. a set of "tools", no doubt "professional" that permit one A CERTAIN KIND of cargo-cultish periphrastic cvasi-but-not-really involvement in their chosen field.
14:14	mircea_popescu	it is sold to ignorant youths on the basis that "hey, SOMETIMES it yields results, when applied randomly to the web". that may be, as Framedragger 's ssh tests or phuctor dredged up, everything, every last bit of nonsense can be found "on the web".
14:14	mircea_popescu	http://trilema.com/2017/the-incidental-humiliation-of-obamas-clean-energy-policies-marc-andreessens-internet-of-farts-and-other-such-comedic-gold-bricks/ y compris.
14:15	mircea_popescu	nevertheless... do you expect the 62nd application of the same magic wand upon trilema is liable to yield anything more, or better, than the previous 61 ?
14:15	mircea_popescu	that's the problem with pantsuit "tools", branded however they may be branded : there's 0 marginal utility to them.
14:15	asciilifeform	seealso naggum , in http://btcbase.org/log/2017-02-09#1612656 , http://btcbase.org/log/2017-02-09#1612657
14:15	a111	Logged on 2017-02-09 18:03 asciilifeform: the expulsion of 'In all likelihood, there was no change at all to the labor-intensiveness, but the labor was more "fun" for a certain class of people. Now, industrious retards can be a horrible thing. Over a number of years, close to a decade, Perl accreted bits and pieces from programming languages and became usable in lieu of a programming language by people who lacked the mental wherewithall to do programming. Tinkerers, repair
14:15	a111	Logged on 2017-02-09 18:03 asciilifeform: ers, handymen, the auto mechanics of the IT industry, all flocked to Perl because they could tinker so well with it with no required knowledge or skills.' ( http://www.xach.com/naggum/articles/3241270848355795@naggum.no.html ) would go a long way.
14:16	mircea_popescu	the situation is approximately the same as of a "young aspiring gold prospector" who goes to the designated ROOM in his local community center, where he spits on some pebbles / digs through the plasticine cubes.
14:16	mircea_popescu	very fucking definitionally a room is not a mine.
14:16	mircea_popescu	and the only folk to whom the difference is immaterial are our stone age friends from the cargo-cult, cave dwellers as they find themselves.
14:17	mircea_popescu	to them -- room is mine and mine is room, sure thang.
14:18	asciilifeform	https://archive.is/xqalm << illustration.
14:19	asciilifeform	( 'chukcha computing' )
14:20	mircea_popescu	but hey -- vulnweb "works" and therefore... "works". the confusion between these workings is lost to the noob. and yet... magic also "works" in the first case -- when magician/warlock/condoleeza rice walk into room with sickman and wave magic wand, SOMETIMES IT HEALS IT!!!
14:20	mircea_popescu	yet magic doesn't work in the working sense of the verb to work, as found in hospitals as opposed to magic shaman nigger hut.
14:20	mircea_popescu	asciilifeform rather.
		~ 20 minutes ~
14:41	mircea_popescu	in other webs, big bang empire is moderately amusing. you're a pornstar looking for work.
14:43	douchebag	mircea_popescu: Anyone who uses scanners such as acunetix or whatever that is called is not a professional.
14:44	douchebag	There is nothing professional about running a scanner and reading the results.
14:45	asciilifeform	douchebag: if you indeed do something moar than running scanners, it still remains to be seen here
14:45	asciilifeform	douchebag: consider to demonstrate some skilled work.
14:45	asciilifeform	as discussed, re e.g. trb.
14:46	mircea_popescu	douchebag aha.
14:46	douchebag	Yes, I'm going to be looking into that ater work
14:47	asciilifeform	possibly funnily , early in trb life , asciilifeform on a lark put it through a $maxint scamolade 'cpp security auditor' proggy that the imperial slavegalley he was working in, had bought. the result -- unsuprisingly to tuned-in folx, i expect -- was so unremarkable that i did not bother to post it.
14:49	asciilifeform	( evidently , shitoshi -- for whatever his other flaws -- knew how to run 'lint' )
14:53	douchebag	Yeah generally speaking when it comes to security, you should never depend on a scanner or set of 'tools' to comprehensively perform an audit
14:55	asciilifeform	douchebag: i suspect that your idea of 'comprehensive audit' is exaggeratedly painless
14:56	asciilifeform	if it's in any kind of way influenced by 'industry best practice'(tm)(r) in particular.
14:57	douchebag	what do you mean by that?
14:58	asciilifeform	douchebag: do you, for example, think that it is easier to audit a program, than to write it ?
14:59	douchebag	It depends on the complexity of the program
14:59	douchebag	it also depends on who wrote the program
14:59	asciilifeform	so evidently douchebag you think that it is possible to speak of 'having audited' a program that you did not fully understand, in the sense where you could sit down in a room with a 'clean' comp and write it again ?
15:00	asciilifeform	if you think that it suffices to look for 'known types of questionable code', you are then a meat scanner
15:00	asciilifeform	exactly like the idjit payware linter, but more expensive because you are made of meat
15:00	asciilifeform	at least the linter only wants a few watts to run
15:01	asciilifeform	whereas meat linter wants 100+watt, and house, and gurlz, and fast cars, and hell knows what else
15:01	douchebag	No, I think if you're auditing code you should understand exactly what, why and how that code is doing what it is doing
15:02	asciilifeform	then from whence came the 'it depends...' ?
15:02	BingoBoingo	In other campus rape, In Saint Louis the sexual predators target the Fratbois http://www.stltoday.com/news/local/crime-and-courts/suspect-in-rape-of-male-umsl-student-had-been-arrested/article_e886f53b-6589-5ab4-8320-80409a5ef78c.html
15:03	douchebag	Because sometimes people use complex solutions for simple problems - complexity doesn't necessarily mean it is better
15:04	asciilifeform	how does this connect to the thread ?
15:05	asciilifeform	in what case, douchebag , is proper audit somehow easier than writing the program from empty space to solve the same problem. describe one.
15:05	asciilifeform	audit is in all cases ~considerably harder~
15:06	mircea_popescu	BingoBoingo by now i suspect they're pasty enough to make great bottoms.
15:07	douchebag	asciilifeform: If the audit reveals that everything was done properly and to a high standard
15:08	asciilifeform	douchebag: auditor studies three separate ( and usually in cases where audit is called for, quite disjoint ) items -- a) the problem the program is solving b) what the author ~declared~ to be the solution to (a) c) what the program he wrote, ~actually does~, under the closure of all possible inputs
15:09	asciilifeform	douchebag: from whence comes the idea in your head of 'high standard' ? what program have you read that 'was written to high standard', wouldja know it 'if it bit you' ??
15:09	douchebag	I agree with that
15:10	asciilifeform	this is a genuine problem with whole fucking field, not a personal flaw of douchebag
15:10	asciilifeform	there is ~precious~ little 'high standard' anything to learn from.
15:11	asciilifeform	and so, without any ill will to douchebag , i would put the likelihood that he had learned from something worth learning from, as somewhere near 0
15:12	douchebag	asciilifeform: In my head an idea of 'high standard' is when functionality and security are both taken into consideration during implementation
15:12	asciilifeform	douchebag: recall http://btcbase.org/log/2018-03-22#1788623 ?
15:12	a111	Logged on 2018-03-22 16:25 mircea_popescu: douchebag if 13 yo kid comes to psychologist's office because insomnia, and after some hymenlick maneouvering on the part of the professional comes out with the story that has "terrifying and disturbing dreams", thereuponwhich recounts numerous instances of dreamed tits, nipples and areola but 0 clits, labia or vaginal openings, the psychologist can safely thereby infer 13yo kid is a virgin.
15:13	asciilifeform	douchebag: you speak of 'program written to high standard' as if it were a concrete item that you have actually seen or touched
15:13	asciilifeform	rather than empty words. which i suspect , in your head, it right now is.
15:13	asciilifeform	like the smooth doll vulvas of the boy's dream.
15:15	douchebag	asciilifeform: You're not even worth responding to at this point, I think you're the one who wouldn't know 'if it bit you'
		↖
15:16	asciilifeform	so no shared priors then ?
15:16	asciilifeform	and no response to the very imho concrete q, of what exactly 'to high standard' program douchebag has seen, read, used ?
15:18	mod6	DISQUALIFIED.
15:18	asciilifeform	mod6: maybe miracle -- of miracles -- d00d will... answer ?
15:18	mod6	I've read enough of this for today.
15:18	*	mod6 bangs gavel.
15:18	douchebag	I have plenty of priors, I work with a team of highly trained security professionals every day and we have audited all sorts of applications
15:19	asciilifeform	ahahahahaha
15:19	asciilifeform	nao to be fair maybe d00d dun speak the king's english, whoknows
15:19	douchebag	I can tell you for instance
15:20	asciilifeform	but apparently does not know what is 'shared priors'
15:20	douchebag	nginx cares about security
15:20	douchebag	Apache doesn't - that's why it's called A patch e
15:21	ben_vulpes	that's ancient and incorrect apocrypha
15:21	asciilifeform	and hillary clitler 'cares about the children' ahahaha.
15:22	mircea_popescu	douchebag "shared priors" is a term of art, denoting those useful notions that two participants to a discussion share identically.
15:22	douchebag	I can tell you Yahoo is a less secure company than Google
15:22	douchebag	Uber also has a very good security team, despite recent press
15:23	mircea_popescu	two people in euclidean geometry share the priors noted down by euclid. some other guy on a bannach sphere somewhere, does not.
15:23	mircea_popescu	asciilifeform did you do this thing as a kid, where you'd go about the parked cars in the street after leaving school to see "asta cit prinde ?!?!" ie, "how fast does this one go ???"
15:23	mircea_popescu	to be established by the number written on the rightmost spot on the odometer.
15:23	asciilifeform	mircea_popescu: worse, with pictures of carz. from 'turbo' chewing gum.
15:23	douchebag	When working with extremely large codebases, vulnerabilities are going to occur
15:24	douchebag	Nothing is 'perfect'
15:24	mircea_popescu	douchebag how do you know yahoo is more secure than alphabet ?
15:24	douchebag	Because I've worked on pentesting both of them
15:24	mircea_popescu	as a subplot, why would a large company require a large codebase ?
15:24	ben_vulpes	the holding company?
15:25	douchebag	I never said large companies require large codebases
15:25	mircea_popescu	douchebag so you covered say 80% of google's code and 70% of yahoos, and on this basis the 8`844`644 holes you found with yahoo makes you suspect the mere 2`333`156 holes found in google's schweitzer reflect a lesser per-cubit average of holes ?
15:26	mircea_popescu	(sub-subplot : calculate the probability of that statement being true ; show the math you used.)
15:27	mod6	How many man hours are being wasted on this?
15:27	mircea_popescu	mod6 im just going to bed o.O
15:27	mircea_popescu	laters.
15:27	mod6	C-ya
15:27	mod6	!!down douchebag
15:29	lobbes	Tsk. Shame
15:29	lobbes	http://btcbase.org/log/2018-03-22#1788893 << you know this wasn't personal right? (Pantsuitism trains emotional response to criticism, I know). He's trying to lead you to realise an important point for yourself (this is a true beauty of this place, incidentally; can meaningfully confront the Self, if you are willing)
15:29	a111	Logged on 2018-03-22 19:15 douchebag: asciilifeform: You're not even worth responding to at this point, I think you're the one who wouldn't know 'if it bit you'
15:30	lobbes	Though, some simply are not willing
15:30	ben_vulpes	im kinda surprised to see the indoctrination so thick in a twenty year old
15:31	ben_vulpes	although i suppose it comes with a decade of 'security community' baggage
15:31	BingoBoingo	!!up douchebag Have you considered getting hard, poking around the internet for warm receptive holes, and submitting writeups to Qntra?
15:31	deedbot	douchebag voiced for 30 minutes.
15:32	lobbes	Right? Sucks, because he has more knowledge at 20 than I do now at 30. Sadly, also moar cockroaches
15:33	douchebag	I could submit writeups
15:33	BingoBoingo	lobbes: It's a hazard of pantsuit education. Fellow can get loaded up with training as a technician while being sideloaded with broken priors
15:33	mod6	BingoBoingo: re !!down that man. I don't have time to read through all this nonsense to pick out 3 important lines to pizarro.
15:33	ben_vulpes	lobbes: you should see the girls; i swear the only ones who aren't wholly corrupted by the anxiety machine are the 1st-generation ethnic imports who take care of my kid
15:34	mod6	We need to get to work, this is getting in the way. 0 signal, max noise.
15:34	BingoBoingo	douchebag: Find a hole, have your fun and profit. Leave a note about the aftermath for Qntra.
15:34	BingoBoingo	!!down douchebag
15:35	asciilifeform	ben_vulpes: in my experience 20yo who already took home xxx,xxx $ 'for' doing The Wrong Thing , is incurable. but it was worth a try.
		↖
15:37	BingoBoingo	mod6: Had to give the fellow a lead. Perhaps dude finds a vulnerability in Fedwire and resets the UnifiedStandardDosiedo chain? Submits article. For the young and broken that might be more productive homework than "write a V to understand why you are writing a V"
15:39	ben_vulpes	oh and twist, douchebag skip the responsible disclosure fingertrap and fuck 'em hard.
		~ 31 minutes ~
16:10	BingoBoingo	What is a Qntra submission if not the most responsible possible disclosure
16:10	mod6	Sure.
		~ 21 minutes ~
16:32	mod6	Ok finally caught up now.
16:32	mod6	!!up douchebag
16:32	deedbot	douchebag voiced for 30 minutes.
16:35	mod6	douchebag: Let's raise the sig/noise ratio. Try to heed your betters in here. And do take some time to read the logs, they're enriching.
16:46	deedbot	http://qntra.net/2018/03/rising-african-political-star-criticises-poor-australia-no-black-people-to-exploit/ << Qntra - Rising African Political Star Criticises "Poor" Australia: "No Black People To Exploit"
		~ 3 hours 35 minutes ~
20:21	asciilifeform	meanwhile, in not-wholly-ridiculous academics , http://babble-rnn.consected.com/docs/babble-rnn-generating-speech-from-speech-post.html
20:22	asciilifeform	^ 'analogue' shannonizers
20:23	asciilifeform	http://babble-rnn.consected.com/docs/current-audio.html << for the impatient.
		~ 15 minutes ~
20:38	mod6	wb! you don't sleep much huh
20:53	mircea_popescu	i guess not huh!
20:54	mod6	:]
		~ 2 hours 32 minutes ~
23:27	ben_vulpes	credit where credit is due, douchebag went from http://btcbase.org/log/2018-01-26#1777226 to http://btcbase.org/log/2018-03-22#1788527 (albeit a stealth admission of personal shortcomings) but contextual lulz of the week go to http://btcbase.org/log/2018-03-22#1788529
23:27	a111	Logged on 2018-01-26 19:46 douchebag: Well, I'm just trying to figure out where my skillset could be best put to use, I would be more than capable of writing a V implementation or setting up an IRC bot. I'm trying to leave it to you guys to tell me where my skillset could best be put to use
23:27	a111	Logged on 2018-03-22 11:14 douchebag: I don't understand what a V is I have read about it, I have looked at examples and I still don't understand
23:27	a111	Logged on 2018-03-22 11:15 douchebag: If I understood it completely it would be no problem coding it.
23:31	ben_vulpes	oh and other obvious pentesting targets douchebag: qrrqobg jnyyrg (rot13)
		~ 18 minutes ~
23:49	ben_vulpes	!!reputation douchebag
23:49	deedbot	http://p.bvulpes.com/pastes/RwZvf/?raw=true
23:50	ben_vulpes	guten tag, trinque !
23:50	trinque	hola ben_vulpes!
23:50	trinque	yeah sure poke her holes
23:50	ben_vulpes	douchebag: you can voice yourself you know
23:51	trinque	I seem to recall this kid being told to do things, came back with his snowflake personality and american dream.
23:51	ben_vulpes	i'm a softie what can i say
23:52	ben_vulpes	mighta been asking an infantryman to fly a helicopter, who knows
23:52	trinque	if he could discover where the wallet actually lives, I'd be mighty impressed.
23:57	ben_vulpes	douchebag: don't tell me you lost your key

← 2018-03-21 | 2018-03-23 → ↑