/tech/ - Technology

Brought to you by archive.org

Boards | Catalog | Bottom

Check to confirm you're not a robot
Name
Email
Subject
Comment
Password
Drawing x size canvas
File(s)

Remember to follow the rules

Max file size: 350.00 MB

Max files: 5

Max message length: 4096


DolphinAtack: Inaudible Voice Commands Anonymous 09/02/2017 (Sat) 08:40:52 [Preview] No. 10987 [Reply] [Last 50 Posts]
Speech recognition (SR) systems such as Siri or Google Now have become an increasingly popular human-computer interaction method, and have turned various systems into voice controllable systems(VCS). Prior work on attacking VCS shows that the hidden voice commands that are incomprehensible to people can control the systems. Hidden voice commands, though hidden, are nonetheless audible. In this work, we design a completely inaudible attack, DolphinAttack, that modulates voice commands on ultrasonic carriers (e.g., f > 20 kHz) to achieve inaudibility. By leveraging the nonlinearity of the microphone circuits, the modulated low frequency audio commands can be successfully demodulated, recovered, and more importantly interpreted by the speech recognition systems. We validate DolphinAttack on popular speech recognition systems, including Siri, Google Now, Samsung S Voice, Huawei HiVoice, Cortana and Alexa. By injecting a sequence of inaudible voice commands, we show a few proof-of-concept attacks, which include activating Siri to initiate a FaceTime call on iPhone, activating Google Now to switch the phone to the airplane mode, and even manipulating the navigation system in an Audi automobile. We propose hardware and software defense solutions. We validate that it is feasible to detect DolphinAttack by classifying the audios using supported vector machine (SVM), and suggest to re-design voice controllable systems to be resilient to inaudible voice command attacks.
4 posts and 1 image omitted.


Anonymous 09/03/2017 (Sun) 03:35:54 [Preview] No. 11007 del
>>10987
Another reason why voice-activation is not ready to be used, and is a major security hole. They already save recordings of your voice, and this just adds onto the bullshit.


Anonymous 09/03/2017 (Sun) 05:07:51 [Preview] No. 11008 del
I remember reading an article from some security conference about extracting data from infected computer through inaudible sound signals, perfect for some airgapped machines. This is basically the opposite, you can send commands with data streams, and since it runs proprietary voice recognition software, you may consider it a malware.


Anonymous 09/03/2017 (Sun) 18:19:33 [Preview] No. 11013 del
>>10999
This isn't scary stuff at all. It's exactly what's expected when you try and use algorithms on the real world. Only consumerist robots fall for idiotic technology like "biometrics" and "voice control". The same will happen for self-memeing cars (well it already has happend with both Lidar and Tesla).


Anonymous 09/05/2017 (Tue) 10:28:23 [Preview] No. 11024 del
>>11008
like TEMPEST?


Anonymous 09/06/2017 (Wed) 03:44:20 [Preview] No. 11028 del
(406.15 KB 1100x1335 2017-08-23-addie-weed.jpg)
>>11024

In essence, yes, but I think that technically TEMPEST is just about shielding and preventing the interception of natural side-channel information that results from computing, i.e. a system's normal EM emissions, sound production, etc.

If I remember what anon is referring to correctly, it was a computer that was actually infected with malware that was designed to exfiltrate information from the computer using sound, so it wasn't about purely passive interception. A successful attack of this kind would require getting your malware onto the machine first. It was a neat proof of concept, though.



(15.51 KB 299x169 X.jpeg)
Search Engines Anonymous 08/19/2017 (Sat) 15:56:08 [Preview] No. 10837 [Reply] [Last 50 Posts]
The majority of them are garbage.

Has anyone discovered or created a search engine that allows the user to set parameters to exclude certain websites? The massive majority of search engines have little features and space for user input (Searx is probably the closest to what is ideal).

General search engine/ideas thread.
1 post omitted.


Anonymous 08/19/2017 (Sat) 21:37:54 [Preview] No. 10841 del
>>10840
I already use Searx (Not my own instance, but searx.me), but you cannot filter out certain websites (Which means that results are bloated with crap normies click on).


Anonymous 09/03/2017 (Sun) 14:26:29 [Preview] No. 11012 del
what about startpage?


Anonymous 09/03/2017 (Sun) 18:37:45 [Preview] No. 11015 del
>a search engine that allows the user to set parameters to exclude certain websites
It's a basic feature for all of them.
https://support.google.com/customsearch/answer/70323?hl=en
or [-site:example.com]


Anonymous 09/03/2017 (Sun) 22:29:49 [Preview] No. 11018 del
>>11012
"Supports" open source programs but isn't open source


Anonymous 09/03/2017 (Sun) 23:08:21 [Preview] No. 11019 del
>>11018

Even if they said their software was open source, it would be irrelevant. There would be no way to tell whether or not that's what they were actually running unless its behaviour deviated in a noticeable way from the code they claimed to be running. Then you'd only know that they weren't. You can never be sure they are.



(174.38 KB 800x600 1423378028165-0.gif)
Hax0r Thread Anonymous 07/09/2017 (Sun) 20:22:29 [Preview] No. 9089 [Reply] [Last 50 Posts]

Message too long. Click here to view full text.

44 posts and 10 images omitted.


Anonymous 07/13/2017 (Thu) 16:36:41 [Preview] No. 10371 del
bump


IT security ruchiroshni 09/03/2017 (Sun) 05:56:18 [Preview] No. 11009 del
Please visit our website at https://infosecaddicts.com/ for more information on Offensive and defensive security, linux security and many more related topics.


IT security ruchiroshni 09/03/2017 (Sun) 06:13:30 [Preview] No. 11010 del
Hereby i am sharing our website to know more about IT security related topics https://infosecaddicts.com/


Anonymous 09/03/2017 (Sun) 11:16:02 [Preview] No. 11011 del


Anonymous 09/03/2017 (Sun) 18:59:34 [Preview] No. 11017 del
>>11009
>>11010
>>11011
Fuck off with your advertising and samefagging, cocksucker.



(13.06 KB 150x120 tuz-logo.png)
Linux has been pozzed Anonymous 09/02/2017 (Sat) 17:02:41 [Preview] No. 10991 [Reply] [Last 50 Posts]
LINUX POZZED

A stand-idn mascot that has appeared in the latest Linux kernel isn’t intended to push out the traditional penguin named Tux but to benefit the plight of the Tasmanian devil.

A meat-eating marsupial, the devil is bordering on extinction as the animal has been ravaged over the past decade by a transmittable cancer, one of only two known in the world. The devil is found only in the Australian island state of Tasmania.

Tuz was the mascot for January’s Linux conference in Australia, which was held in Tasmania and where the show’s annual charity auction was dedicated to raising funds to research devil facial tumor disease (DFTD).

DFTD over the past decade has wiped out up to 50% of devils, known for their offensive odor when under stress and their loud and disturbing screech.

https://www.networkworld.com/article/2265522/applications/linux-penguin-mascot-gives-way-to-tuz.html
5 posts omitted.


sage Anonymous 09/02/2017 (Sat) 20:44:36 [Preview] No. 11001 del


sage sage 09/02/2017 (Sat) 21:08:33 [Preview] No. 11002 del
sage


Anonymous 09/02/2017 (Sat) 21:20:24 [Preview] No. 11003 del
>>11001
>>11002

Excellent saging.

ffs


Anonymous 09/02/2017 (Sat) 21:46:33 [Preview] No. 11004 del
(6.77 KB 308x164 RC.jpeg)
Sage bombing run ...


GO GO GO GO GO GO GO GO GO GO GO GO GO GO GO GO


sage Sage 09/03/2017 (Sun) 03:33:13 [Preview] No. 11006 del
(96.38 KB 1024x681 Sage.jpg)
sage



(99.67 KB 1280x720 video_wuc.jpg)
Anonymous 08/30/2017 (Wed) 17:44:56 [Preview] No. 10940 [Reply] [Last 50 Posts]
In a move to increase diversity in the bitcoin community, bitcoin.org updates its branding to include images of goat people. One of the latest moves in what /pol/ is calling, "a clampdown on the internet".
1 post omitted.


Anonymous 08/30/2017 (Wed) 22:24:05 [Preview] No. 10942 del
(57.11 KB 720x552 retarded-jap.jpg)
>>10940
Since when the bitcoin is a national currency?
The funder of bitcoin is Satoshi Nakamoto, so I don't actually understand, if we had to chose any nationality, why is there americans/europeans/arabs and not only japaneses on this pic.
I'm against multiculturalism but your point is retarded.


Anonymous 08/31/2017 (Thu) 05:42:44 [Preview] No. 10950 del
>>10942
I believe OP was not being post-ironic in his meanings.


Anonymous 08/31/2017 (Thu) 22:38:28 [Preview] No. 10969 del
>>10940
Why have you reported on these revelations as if they are a malicious change?

Increasing diversity is not bad, it attempts to include all races of people using the service, if it was only one specific race using the software, images depicting diversity would not be needed, but the fact that all races use the internet means that they should all be represented. If all of the people in the picture were white, it would piss off everyone else. If they were all black, it would piss off everyone else. The internet is a medium where ones actions are of more importance than ones ability, if you act stupid, your going to be treated badly regardless of race.

Including people in the logo was a mistake, it should simply be the typical bitcoin logo with some decorations around it.


Anonymous 09/01/2017 (Fri) 20:16:56 [Preview] No. 10977 del
>>10969
>If they were all black, it would piss off everyone else
Not as much, and even if it did it'd piss different groups off, but I agree with your main point.
Not to mention that most people there are still white, so really /pol/ is bitching about nothing.
I think too often people see something that's not "pro-X" as somehting that's "anti-X". Which is naturally what happens with idpol.
sage since nothing of this has to do with /tech/


Anonymous 09/02/2017 (Sat) 16:56:57 [Preview] No. 10990 del
>>10969
b-but there is no Uyghur representation in that picture



(21.56 KB 500x500 sxj9bJ7.jpg)
Anonymous 09/01/2017 (Fri) 02:18:04 [Preview] No. 10971 [Reply] [Last 50 Posts]
>email provider offers onion imap and smtp
>the certificate doesn't include the onions
What's her name /tech/ ?
2 posts and 1 image omitted.


Anonymous 09/01/2017 (Fri) 21:48:02 [Preview] No. 10978 del
What about the the part between the exit node and the server ?


Anonymous 09/01/2017 (Fri) 22:38:23 [Preview] No. 10981 del
>>10973
Wow rude.


Anonymous 09/01/2017 (Fri) 23:14:35 [Preview] No. 10982 del
>>10978
Tor hidden services do not use exit nodes. They are within the Tor network and do not need to exit from it. Therefore, no exit node.

>>10981
What's rude is making an OP that is nearly incomprehensible and contributes nothing to the board.


Anonymous 09/02/2017 (Sat) 01:14:56 [Preview] No. 10984 del
>>10982
OP here, I just realized I'm retarded. Sorry everyone.


Anonymous 09/02/2017 (Sat) 04:03:58 [Preview] No. 10986 del
>>10984
It's alright, bro. We're with you. We all do dumb shit sometimes.

For example, I got married.



Steem Anonymous 08/16/2017 (Wed) 20:47:05 [Preview] No. 10768 [Reply] [Last 50 Posts]
Thoughts on Steem?

Post/curate content -> get upvoted -> get cryptocurrency.
8 posts and 3 images omitted.


Anonymous 08/25/2017 (Fri) 15:34:34 [Preview] No. 10893 del
>>10891
>Pseudonymous identity is needed when you want your readers to follow your publications and posts without settling down to stylometry or some obscure sekrit klub shit because ordinary people, you know, are accustomed to trusting an authority rather than random anonymous especially when they see him in the first time.
These people are oblivious to the benefits of the anonymous imageboard, judging a post based on it's quality rather than the creator behind it. It doesn't matter if posts on here are made by bots, intelligent users, shills, etc., they are all perceived as the same and will be interpreted accordingly.

>Of course it does some job on profiling this identity to le ebil gubmints much easier, but they have more advanced ways on tracking you, like packet flow and time correlations which doesn't really make a difference whether you post anonymously, pseudonymously or with your state ID and photo as profile pic.
While they may have more advanced tools and tactics for identifying website visitors and users, it doesn't mean I should go ahead and make it a little easier for them by creating an account just because they already possess the tools to reveal my identity. Higher level tools don't make the seemingly weaker dangers of an account trivial, they all have the potential to fuck you over, and protecting your identity means eliminating as many risks as possible.

>Anon you really don't understand why web 2.0 javascript memery is in action, well it's because web servers don't have unlimited powers and bandwidth to serve every animation as css style and give out full html on every page for 500000 users every second, this is what cdns and (((le ebil cloud))) are used for combined with dynamic page content. It is easier for server to give out 1KB pointer to js library on amazon cdn and a 20KB script, then feed you with small portions of text 100KB each on demand, instead of giving you 1MB page every time you click a button, because internet overall is shit too, but sure, it works out for little imageboards like this one, and still tinyboard doesn't display post replies without javascript, ask devs and admins why.
Perhaps I didn't thoroughly explain what I meant by "enhance the appearance". Websites are moving towards animated and bloated pages with loads of "features" and drop down menus to appeal to mainstream website frequenters, and as a consequence, static web pages are being phased out. Why fix something that isn't broken? The static web page worked perfectly and can be interpreted by the majority of browsers, including extremely light text only browsers, and they don't overload your computer in the process. I shouldn't need a modern computer (Which is basically a supercompuer when compared to technology around 10-15 years ago) to view websites.

>let me guess, you are 20-35 years old, right? Then stop larping, okay, you ARE millenial.
I am not, and my age is not relevant to this discussion. It is evident that the new animated websites with unnecessary "features" are aimed towards the groups who typically only frequent a few select mainstream websites, and these groups are typically composed of individuals classified as "millenials". The internet for the average person is only around 20-30 websites, they only seen a few trees in the massive forest that is the internet.


Anonymous 08/26/2017 (Sat) 16:11:30 [Preview] No. 10894 del
>>10893
>judging a post based on it's quality rather than the creator behind it
It is much easier for a newcomer to judge posts by creator because he can clearly see the posting history, ordinary people are accustomed to pseudonymous identities which they understand.
There must be some sort of identity if you want to gain credibility and trust also.
Users will be turned off when they see a bunch of trolling slide inane comments with corporate spam like there is on fourchan for example.

>Websites are moving towards animated and bloated pages
Well, you were the one who said this website's target audience are redditors, and reddit is not an "animated website with unnecessary "features"", it is rather old-fashioned and sometimes cryptic. All fashionable animations you see there are usually present in rare subreddits and done with pure html5 css, which simple graphic browsers (what web was actually designed for, markup and graphics) like Dillo support very well (oh, don't tell me that you have an urgent need to read entertainment web sites in links framebuffer mode because your X server is down again :^)
Web was not meant to be universally accessible, first web browser didn't have support for Apple II or IBM 5150 and was rather bloated compared to gui gopher/bbs clients. As I said, modern web clients are fast on average, mobiles even have javascript hardware acceleration, there is no need for most webdevs to fire up their neurons and write super efficient code if they can launch a site in 15 minutes with preconfigured frameworks and themes. Human nature is laziness. However, it doesn't mean there are no good static webpage sites, it means they can afford to be static because their servers/internet connection are fast and their audience is not that big.

>tfw my average internet is 20-30 imageboards and irc channels
fuck

Oh, by the way we both use le reddit spacing as they call it on 8ch, probably because text is too tiny and lack of tabulations. This board clearly needs some good modern styles, a markdown support and drop-down menus :^)


Anonymous 08/27/2017 (Sun) 00:58:19 [Preview] No. 10901 del
>>10894
>There must be some sort of identity if you want to gain credibility
>Users will be turned off when they see a bunch of trolling slide inane comments with corporate spam like there is on fourchan for example.
Trying to gain credibility is as bad as trolling, both are relapses to a normalfag pattern of behaviour where it has become a hindrance simply due to force of habit. Both handle the new internet environment as a novelty that is only to be crushed like windows in a bus stop until you get bored and return to your real life as a cuck for the jew.


Anonymous 08/27/2017 (Sun) 01:22:42 [Preview] No. 10904 del
Not the dude you're replying to, but the original web was in fact usable by someone on an Apple II or IBM 5150. All you needed was a modem and a Unix shell account from which you could run Lynx, Pine/Elm, Tin, ircII, and so forth.
Now it's no longer the case, because many pages are non-functional without javascript. Even the wayback machine (web.archive.org) has gone in that direction, which is pretty ironic.
I think the web is too far gone to save at this point, so I'm abandoning it for the most part. I no longer login to the old web forums I used to frequent, especially after they changed to become more "modern". And I don't even bother to fill out captchas, so the popular chans are written off. Anyway those things don't work in a plain vt220 console.


Anonymous 08/30/2017 (Wed) 17:02:08 [Preview] No. 10939 del
>>10904
>Even the wayback machine (web.archive.org) has gone in that direction, which is pretty ironic.
I hate that the wayback machine needs JavaScript now.
I tried using a browser with JavaScript for the wayback machine and it is no better than before, just slower and shinier.



MOZILLA SELLS OUT! Anonymous 08/16/2017 (Wed) 00:02:50 [Preview] No. 10727 [Reply] [Last 50 Posts]
Mozilla To Build New Browsers That Conform To Internet Censorship

https://web.archive.org/web/20170815234815/http://www.naturalnews.com/2017-08-15-censorship-alert-mozilla-planning-kill-shot-for-entire-independent-media-by-blocking-all-non-approved-news-in-the-firefox-browser.html#

In November of 1737, decades before America officially declared its independence from the king of England, a young Benjamin Franklin published an essay in The Pennsylvania Gazette entitled, “On Freedom of Speech and the Press.” In it, Franklin wrote, “Freedom of speech is a principal pillar of a free government; when this support is taken away, the Constitution of a free society is dissolved, and tyranny is erected on its ruins.” Franklin went on to write, “An evil magistrate entrusted with power to punish for words, would be armed with a weapon the most destructive and terrible.”

Although this was written in an article published more than two and a half centuries ago, Franklin’s words are quite possibly more relevant today than they ever have been. Indeed, there is an ongoing effort by the progressive left and extremists such as George Soros to silence speech that doesn’t align with the liberal agenda. This effort to effectively gut the First Amendment is taking place virtually everywhere you look, from the mainstream media, to Hollywood, to college campuses, and perhaps most frequently, across the Internet.

Recently, the popular Internet web browser Mozilla Firefox announced that it plans on joining the fight against what it considers to be “fake news,” a term that to leftists means nothing more than news that is written by conservatives. Mozilla said that it was “investing in people, programs and projects” in an effort to “disrupt misinformation online.”

The first question that every constitutionalist and liberty-loving American should be asking is as follows: How does Mozilla define “fake news?” Are they only talking about suppressing radical websites such as sites run by white supremacists, or are they talking about any news that comes from conservatives? At the very least, it should worry you that companies like Mozilla are often reluctant to thoroughly define “fake news” – it is highly unlikely that this is unintentional.

Furthermore, what exactly gives Mozilla the right or the authority to determine what is misinformation and what is not? The United States Constitution is the law of the land, and the freedom of speech is an inalienable right from God. The fact that Mozilla thinks it has sweeping authority to select which speech is censored and which speech is not runs contrary to everything that America was founded upon.

With the assault on independent media getting increasingly aggressive, many Internet bloggers and website owners are desperately looking for ways they can continue voicing their opinions without being harassed, suppressed or silenced. If you are one of these people, you may want to consider using “Brave,” a relatively new web browser founded by former Mozilla CEO Brendan Eich.

On its website, Brave states that its goal is “to transform the online ad ecosystem with micropayments and a new revenue-sharing solution to give users and publishers a better deal, where fast, safe browsing is the path to a brighter future for the open web.”

Message too long. Click here to view full text.

27 posts and 7 images omitted.


Anonymous 08/29/2017 (Tue) 01:21:47 [Preview] No. 10928 del
>>10925

>I heard that in hacking contest, they don't even dare try to hack firefox because of how easy it is.

I heard your mother has put the lot lizards at the local truck stop out of business because she loves sucking strange, sweaty dicks so much that she takes on all the truckers for free.

Looks like we both heard some stuff.


Anonymous 08/29/2017 (Tue) 08:16:56 [Preview] No. 10932 del
OP is a useless bundle of sticks
I followed the links from the retarded NN he started with and ended up with
http://uk.businessinsider.com/mozilla-new-initiative-counter-fake-news-2017-8

Still shit but not as dramatic


Anonymous 08/29/2017 (Tue) 12:32:34 [Preview] No. 10934 del
>>10928
He's not talking completely out his ass.
http://www.eweek.com/security/pwn2own-hacking-contest-returns-as-joint-hpe-trend-micro-effort
They did come back in 2017 though


Anonymous 08/29/2017 (Tue) 19:18:42 [Preview] No. 10936 del
>>10934
It was in a video about pwn2Own that I heard that, indeed.



Fortran Anonymous 08/29/2017 (Tue) 07:13:59 [Preview] No. 10930 [Reply] [Last 50 Posts]
Let's talk Fortran. It has been around since 1957, and has gone through numerous revisions. The first version was designed by John Backus at IBM. The most recent standard is Fortran 2008 (see attachment).

Fortran is reputed to be excellent for a number of science and math applications, from crunching numbers for weather simulations to linear algebra.

Here's one guy's take on Fortran as a modern computing language: https://bitbucket.org/eric_t/modern-fortran/wiki/Home

The example on that page compiles so fast with gfortran, even on my 2010-era system, that I thought there must have been some silent error when I compiled it, because it couldn't have compiled that fast. But, no, it was just that fast, even with bounds checking enabled.

Anyone else interested in Fortran here? Have any good tutorials? I've found _a lot_ of material about updating your skills from Fortran 77 to Fortran 90/95 or 2003/2008, but not much for the non-novice programmer who doesn't already do Fortran in some form.


Anonymous 08/29/2017 (Tue) 07:16:43 [Preview] No. 10931 del
Though I did find this F95-oriented tutorial.



(204.38 KB 806x709 question.jpg)
Anonymous 08/28/2017 (Mon) 00:51:34 [Preview] No. 10912 [Reply] [Last 50 Posts]
Does Kali Linux offers tools for Phreaking? If not, where can I get tools for testing security of mobile phones, SIM Cards, etc?


Anonymous 08/28/2017 (Mon) 02:25:31 [Preview] No. 10914 del
It does, but most of us here would not suggest you use it. Instead, use Debian and install the tools from apt-get. You can get the list of tools from Kali website.
Also, protect yourself. Do not scan devices using your real IP. Use a public wifi and/or Tor.


Anonymous 08/28/2017 (Mon) 02:36:35 [Preview] No. 10916 del
>>10914
Thanks for the advices. Yes, I don't use kali as main distro, just plug USB and start it. Can you tell me some programs it contains for this purpose?


Anonymous 08/28/2017 (Mon) 02:41:35 [Preview] No. 10917 del
(23.65 KB 400x400 xmas-14.jpg)
>>10914

>It does, but most of us here would not suggest you use it

O RLY? "Most of us" being 4 of the 6 people who use this board?

>>10916

I wouldn't use Kali as my main system, but I'd use it for pentesting. There's no reason to install something else then try to replicate a Kali environment, like >>10914 is suggesting. Waste of time.


Anonymous 08/28/2017 (Mon) 06:46:22 [Preview] No. 10919 del
>>10917
>"Most of us" being 4 of the 6 people who use this board?
Yes, you got the point.

>>10916
https://tools.kali.org/tools-listing


Anonymous 08/28/2017 (Mon) 20:45:21 [Preview] No. 10924 del
>>10919

Quality other quantity.