/tech/ - Technology

Brought to you by archive.org

Boards | Catalog | Bottom

Check to confirm you're not a robot
Name
Email
Subject
Comment
Password
Drawing x size canvas
File(s)

Remember to follow the rules

Max file size: 350.00 MB

Max files: 5

Max message length: 4096


(174.38 KB 800x600 1423378028165-0.gif)
Hax0r Thread Anonymous 07/09/2017 (Sun) 20:22:29 [Preview] No. 9089 [Reply] [Last 50 Posts]

Message too long. Click here to view full text.

44 posts and 10 images omitted.


Anonymous 07/13/2017 (Thu) 16:36:41 [Preview] No. 10371 del
bump


IT security ruchiroshni 09/03/2017 (Sun) 05:56:18 [Preview] No. 11009 del
Please visit our website at https://infosecaddicts.com/ for more information on Offensive and defensive security, linux security and many more related topics.


IT security ruchiroshni 09/03/2017 (Sun) 06:13:30 [Preview] No. 11010 del
Hereby i am sharing our website to know more about IT security related topics https://infosecaddicts.com/


Anonymous 09/03/2017 (Sun) 11:16:02 [Preview] No. 11011 del


Anonymous 09/03/2017 (Sun) 18:59:34 [Preview] No. 11017 del
>>11009
>>11010
>>11011
Fuck off with your advertising and samefagging, cocksucker.



(13.06 KB 150x120 tuz-logo.png)
Linux has been pozzed Anonymous 09/02/2017 (Sat) 17:02:41 [Preview] No. 10991 [Reply] [Last 50 Posts]
LINUX POZZED

A stand-idn mascot that has appeared in the latest Linux kernel isn’t intended to push out the traditional penguin named Tux but to benefit the plight of the Tasmanian devil.

A meat-eating marsupial, the devil is bordering on extinction as the animal has been ravaged over the past decade by a transmittable cancer, one of only two known in the world. The devil is found only in the Australian island state of Tasmania.

Tuz was the mascot for January’s Linux conference in Australia, which was held in Tasmania and where the show’s annual charity auction was dedicated to raising funds to research devil facial tumor disease (DFTD).

DFTD over the past decade has wiped out up to 50% of devils, known for their offensive odor when under stress and their loud and disturbing screech.

https://www.networkworld.com/article/2265522/applications/linux-penguin-mascot-gives-way-to-tuz.html
5 posts omitted.


sage Anonymous 09/02/2017 (Sat) 20:44:36 [Preview] No. 11001 del


sage sage 09/02/2017 (Sat) 21:08:33 [Preview] No. 11002 del
sage


Anonymous 09/02/2017 (Sat) 21:20:24 [Preview] No. 11003 del
>>11001
>>11002

Excellent saging.

ffs


Anonymous 09/02/2017 (Sat) 21:46:33 [Preview] No. 11004 del
(6.77 KB 308x164 RC.jpeg)
Sage bombing run ...


GO GO GO GO GO GO GO GO GO GO GO GO GO GO GO GO


sage Sage 09/03/2017 (Sun) 03:33:13 [Preview] No. 11006 del
(96.38 KB 1024x681 Sage.jpg)
sage



(99.67 KB 1280x720 video_wuc.jpg)
Anonymous 08/30/2017 (Wed) 17:44:56 [Preview] No. 10940 [Reply] [Last 50 Posts]
In a move to increase diversity in the bitcoin community, bitcoin.org updates its branding to include images of goat people. One of the latest moves in what /pol/ is calling, "a clampdown on the internet".
1 post omitted.


Anonymous 08/30/2017 (Wed) 22:24:05 [Preview] No. 10942 del
(57.11 KB 720x552 retarded-jap.jpg)
>>10940
Since when the bitcoin is a national currency?
The funder of bitcoin is Satoshi Nakamoto, so I don't actually understand, if we had to chose any nationality, why is there americans/europeans/arabs and not only japaneses on this pic.
I'm against multiculturalism but your point is retarded.


Anonymous 08/31/2017 (Thu) 05:42:44 [Preview] No. 10950 del
>>10942
I believe OP was not being post-ironic in his meanings.


Anonymous 08/31/2017 (Thu) 22:38:28 [Preview] No. 10969 del
>>10940
Why have you reported on these revelations as if they are a malicious change?

Increasing diversity is not bad, it attempts to include all races of people using the service, if it was only one specific race using the software, images depicting diversity would not be needed, but the fact that all races use the internet means that they should all be represented. If all of the people in the picture were white, it would piss off everyone else. If they were all black, it would piss off everyone else. The internet is a medium where ones actions are of more importance than ones ability, if you act stupid, your going to be treated badly regardless of race.

Including people in the logo was a mistake, it should simply be the typical bitcoin logo with some decorations around it.


Anonymous 09/01/2017 (Fri) 20:16:56 [Preview] No. 10977 del
>>10969
>If they were all black, it would piss off everyone else
Not as much, and even if it did it'd piss different groups off, but I agree with your main point.
Not to mention that most people there are still white, so really /pol/ is bitching about nothing.
I think too often people see something that's not "pro-X" as somehting that's "anti-X". Which is naturally what happens with idpol.
sage since nothing of this has to do with /tech/


Anonymous 09/02/2017 (Sat) 16:56:57 [Preview] No. 10990 del
>>10969
b-but there is no Uyghur representation in that picture



(21.56 KB 500x500 sxj9bJ7.jpg)
Anonymous 09/01/2017 (Fri) 02:18:04 [Preview] No. 10971 [Reply] [Last 50 Posts]
>email provider offers onion imap and smtp
>the certificate doesn't include the onions
What's her name /tech/ ?
2 posts and 1 image omitted.


Anonymous 09/01/2017 (Fri) 21:48:02 [Preview] No. 10978 del
What about the the part between the exit node and the server ?


Anonymous 09/01/2017 (Fri) 22:38:23 [Preview] No. 10981 del
>>10973
Wow rude.


Anonymous 09/01/2017 (Fri) 23:14:35 [Preview] No. 10982 del
>>10978
Tor hidden services do not use exit nodes. They are within the Tor network and do not need to exit from it. Therefore, no exit node.

>>10981
What's rude is making an OP that is nearly incomprehensible and contributes nothing to the board.


Anonymous 09/02/2017 (Sat) 01:14:56 [Preview] No. 10984 del
>>10982
OP here, I just realized I'm retarded. Sorry everyone.


Anonymous 09/02/2017 (Sat) 04:03:58 [Preview] No. 10986 del
>>10984
It's alright, bro. We're with you. We all do dumb shit sometimes.

For example, I got married.



Steem Anonymous 08/16/2017 (Wed) 20:47:05 [Preview] No. 10768 [Reply] [Last 50 Posts]
Thoughts on Steem?

Post/curate content -> get upvoted -> get cryptocurrency.
8 posts and 3 images omitted.


Anonymous 08/25/2017 (Fri) 15:34:34 [Preview] No. 10893 del
>>10891
>Pseudonymous identity is needed when you want your readers to follow your publications and posts without settling down to stylometry or some obscure sekrit klub shit because ordinary people, you know, are accustomed to trusting an authority rather than random anonymous especially when they see him in the first time.
These people are oblivious to the benefits of the anonymous imageboard, judging a post based on it's quality rather than the creator behind it. It doesn't matter if posts on here are made by bots, intelligent users, shills, etc., they are all perceived as the same and will be interpreted accordingly.

>Of course it does some job on profiling this identity to le ebil gubmints much easier, but they have more advanced ways on tracking you, like packet flow and time correlations which doesn't really make a difference whether you post anonymously, pseudonymously or with your state ID and photo as profile pic.
While they may have more advanced tools and tactics for identifying website visitors and users, it doesn't mean I should go ahead and make it a little easier for them by creating an account just because they already possess the tools to reveal my identity. Higher level tools don't make the seemingly weaker dangers of an account trivial, they all have the potential to fuck you over, and protecting your identity means eliminating as many risks as possible.

>Anon you really don't understand why web 2.0 javascript memery is in action, well it's because web servers don't have unlimited powers and bandwidth to serve every animation as css style and give out full html on every page for 500000 users every second, this is what cdns and (((le ebil cloud))) are used for combined with dynamic page content. It is easier for server to give out 1KB pointer to js library on amazon cdn and a 20KB script, then feed you with small portions of text 100KB each on demand, instead of giving you 1MB page every time you click a button, because internet overall is shit too, but sure, it works out for little imageboards like this one, and still tinyboard doesn't display post replies without javascript, ask devs and admins why.
Perhaps I didn't thoroughly explain what I meant by "enhance the appearance". Websites are moving towards animated and bloated pages with loads of "features" and drop down menus to appeal to mainstream website frequenters, and as a consequence, static web pages are being phased out. Why fix something that isn't broken? The static web page worked perfectly and can be interpreted by the majority of browsers, including extremely light text only browsers, and they don't overload your computer in the process. I shouldn't need a modern computer (Which is basically a supercompuer when compared to technology around 10-15 years ago) to view websites.

>let me guess, you are 20-35 years old, right? Then stop larping, okay, you ARE millenial.
I am not, and my age is not relevant to this discussion. It is evident that the new animated websites with unnecessary "features" are aimed towards the groups who typically only frequent a few select mainstream websites, and these groups are typically composed of individuals classified as "millenials". The internet for the average person is only around 20-30 websites, they only seen a few trees in the massive forest that is the internet.


Anonymous 08/26/2017 (Sat) 16:11:30 [Preview] No. 10894 del
>>10893
>judging a post based on it's quality rather than the creator behind it
It is much easier for a newcomer to judge posts by creator because he can clearly see the posting history, ordinary people are accustomed to pseudonymous identities which they understand.
There must be some sort of identity if you want to gain credibility and trust also.
Users will be turned off when they see a bunch of trolling slide inane comments with corporate spam like there is on fourchan for example.

>Websites are moving towards animated and bloated pages
Well, you were the one who said this website's target audience are redditors, and reddit is not an "animated website with unnecessary "features"", it is rather old-fashioned and sometimes cryptic. All fashionable animations you see there are usually present in rare subreddits and done with pure html5 css, which simple graphic browsers (what web was actually designed for, markup and graphics) like Dillo support very well (oh, don't tell me that you have an urgent need to read entertainment web sites in links framebuffer mode because your X server is down again :^)
Web was not meant to be universally accessible, first web browser didn't have support for Apple II or IBM 5150 and was rather bloated compared to gui gopher/bbs clients. As I said, modern web clients are fast on average, mobiles even have javascript hardware acceleration, there is no need for most webdevs to fire up their neurons and write super efficient code if they can launch a site in 15 minutes with preconfigured frameworks and themes. Human nature is laziness. However, it doesn't mean there are no good static webpage sites, it means they can afford to be static because their servers/internet connection are fast and their audience is not that big.

>tfw my average internet is 20-30 imageboards and irc channels
fuck

Oh, by the way we both use le reddit spacing as they call it on 8ch, probably because text is too tiny and lack of tabulations. This board clearly needs some good modern styles, a markdown support and drop-down menus :^)


Anonymous 08/27/2017 (Sun) 00:58:19 [Preview] No. 10901 del
>>10894
>There must be some sort of identity if you want to gain credibility
>Users will be turned off when they see a bunch of trolling slide inane comments with corporate spam like there is on fourchan for example.
Trying to gain credibility is as bad as trolling, both are relapses to a normalfag pattern of behaviour where it has become a hindrance simply due to force of habit. Both handle the new internet environment as a novelty that is only to be crushed like windows in a bus stop until you get bored and return to your real life as a cuck for the jew.


Anonymous 08/27/2017 (Sun) 01:22:42 [Preview] No. 10904 del
Not the dude you're replying to, but the original web was in fact usable by someone on an Apple II or IBM 5150. All you needed was a modem and a Unix shell account from which you could run Lynx, Pine/Elm, Tin, ircII, and so forth.
Now it's no longer the case, because many pages are non-functional without javascript. Even the wayback machine (web.archive.org) has gone in that direction, which is pretty ironic.
I think the web is too far gone to save at this point, so I'm abandoning it for the most part. I no longer login to the old web forums I used to frequent, especially after they changed to become more "modern". And I don't even bother to fill out captchas, so the popular chans are written off. Anyway those things don't work in a plain vt220 console.


Anonymous 08/30/2017 (Wed) 17:02:08 [Preview] No. 10939 del
>>10904
>Even the wayback machine (web.archive.org) has gone in that direction, which is pretty ironic.
I hate that the wayback machine needs JavaScript now.
I tried using a browser with JavaScript for the wayback machine and it is no better than before, just slower and shinier.



MOZILLA SELLS OUT! Anonymous 08/16/2017 (Wed) 00:02:50 [Preview] No. 10727 [Reply] [Last 50 Posts]
Mozilla To Build New Browsers That Conform To Internet Censorship

https://web.archive.org/web/20170815234815/http://www.naturalnews.com/2017-08-15-censorship-alert-mozilla-planning-kill-shot-for-entire-independent-media-by-blocking-all-non-approved-news-in-the-firefox-browser.html#

In November of 1737, decades before America officially declared its independence from the king of England, a young Benjamin Franklin published an essay in The Pennsylvania Gazette entitled, “On Freedom of Speech and the Press.” In it, Franklin wrote, “Freedom of speech is a principal pillar of a free government; when this support is taken away, the Constitution of a free society is dissolved, and tyranny is erected on its ruins.” Franklin went on to write, “An evil magistrate entrusted with power to punish for words, would be armed with a weapon the most destructive and terrible.”

Although this was written in an article published more than two and a half centuries ago, Franklin’s words are quite possibly more relevant today than they ever have been. Indeed, there is an ongoing effort by the progressive left and extremists such as George Soros to silence speech that doesn’t align with the liberal agenda. This effort to effectively gut the First Amendment is taking place virtually everywhere you look, from the mainstream media, to Hollywood, to college campuses, and perhaps most frequently, across the Internet.

Recently, the popular Internet web browser Mozilla Firefox announced that it plans on joining the fight against what it considers to be “fake news,” a term that to leftists means nothing more than news that is written by conservatives. Mozilla said that it was “investing in people, programs and projects” in an effort to “disrupt misinformation online.”

The first question that every constitutionalist and liberty-loving American should be asking is as follows: How does Mozilla define “fake news?” Are they only talking about suppressing radical websites such as sites run by white supremacists, or are they talking about any news that comes from conservatives? At the very least, it should worry you that companies like Mozilla are often reluctant to thoroughly define “fake news” – it is highly unlikely that this is unintentional.

Furthermore, what exactly gives Mozilla the right or the authority to determine what is misinformation and what is not? The United States Constitution is the law of the land, and the freedom of speech is an inalienable right from God. The fact that Mozilla thinks it has sweeping authority to select which speech is censored and which speech is not runs contrary to everything that America was founded upon.

With the assault on independent media getting increasingly aggressive, many Internet bloggers and website owners are desperately looking for ways they can continue voicing their opinions without being harassed, suppressed or silenced. If you are one of these people, you may want to consider using “Brave,” a relatively new web browser founded by former Mozilla CEO Brendan Eich.

On its website, Brave states that its goal is “to transform the online ad ecosystem with micropayments and a new revenue-sharing solution to give users and publishers a better deal, where fast, safe browsing is the path to a brighter future for the open web.”

Message too long. Click here to view full text.

27 posts and 7 images omitted.


Anonymous 08/29/2017 (Tue) 01:21:47 [Preview] No. 10928 del
>>10925

>I heard that in hacking contest, they don't even dare try to hack firefox because of how easy it is.

I heard your mother has put the lot lizards at the local truck stop out of business because she loves sucking strange, sweaty dicks so much that she takes on all the truckers for free.

Looks like we both heard some stuff.


Anonymous 08/29/2017 (Tue) 08:16:56 [Preview] No. 10932 del
OP is a useless bundle of sticks
I followed the links from the retarded NN he started with and ended up with
http://uk.businessinsider.com/mozilla-new-initiative-counter-fake-news-2017-8

Still shit but not as dramatic


Anonymous 08/29/2017 (Tue) 12:32:34 [Preview] No. 10934 del
>>10928
He's not talking completely out his ass.
http://www.eweek.com/security/pwn2own-hacking-contest-returns-as-joint-hpe-trend-micro-effort
They did come back in 2017 though


Anonymous 08/29/2017 (Tue) 19:18:42 [Preview] No. 10936 del
>>10934
It was in a video about pwn2Own that I heard that, indeed.



Fortran Anonymous 08/29/2017 (Tue) 07:13:59 [Preview] No. 10930 [Reply] [Last 50 Posts]
Let's talk Fortran. It has been around since 1957, and has gone through numerous revisions. The first version was designed by John Backus at IBM. The most recent standard is Fortran 2008 (see attachment).

Fortran is reputed to be excellent for a number of science and math applications, from crunching numbers for weather simulations to linear algebra.

Here's one guy's take on Fortran as a modern computing language: https://bitbucket.org/eric_t/modern-fortran/wiki/Home

The example on that page compiles so fast with gfortran, even on my 2010-era system, that I thought there must have been some silent error when I compiled it, because it couldn't have compiled that fast. But, no, it was just that fast, even with bounds checking enabled.

Anyone else interested in Fortran here? Have any good tutorials? I've found _a lot_ of material about updating your skills from Fortran 77 to Fortran 90/95 or 2003/2008, but not much for the non-novice programmer who doesn't already do Fortran in some form.


Anonymous 08/29/2017 (Tue) 07:16:43 [Preview] No. 10931 del
Though I did find this F95-oriented tutorial.



(204.38 KB 806x709 question.jpg)
Anonymous 08/28/2017 (Mon) 00:51:34 [Preview] No. 10912 [Reply] [Last 50 Posts]
Does Kali Linux offers tools for Phreaking? If not, where can I get tools for testing security of mobile phones, SIM Cards, etc?


Anonymous 08/28/2017 (Mon) 02:25:31 [Preview] No. 10914 del
It does, but most of us here would not suggest you use it. Instead, use Debian and install the tools from apt-get. You can get the list of tools from Kali website.
Also, protect yourself. Do not scan devices using your real IP. Use a public wifi and/or Tor.


Anonymous 08/28/2017 (Mon) 02:36:35 [Preview] No. 10916 del
>>10914
Thanks for the advices. Yes, I don't use kali as main distro, just plug USB and start it. Can you tell me some programs it contains for this purpose?


Anonymous 08/28/2017 (Mon) 02:41:35 [Preview] No. 10917 del
(23.65 KB 400x400 xmas-14.jpg)
>>10914

>It does, but most of us here would not suggest you use it

O RLY? "Most of us" being 4 of the 6 people who use this board?

>>10916

I wouldn't use Kali as my main system, but I'd use it for pentesting. There's no reason to install something else then try to replicate a Kali environment, like >>10914 is suggesting. Waste of time.


Anonymous 08/28/2017 (Mon) 06:46:22 [Preview] No. 10919 del
>>10917
>"Most of us" being 4 of the 6 people who use this board?
Yes, you got the point.

>>10916
https://tools.kali.org/tools-listing


Anonymous 08/28/2017 (Mon) 20:45:21 [Preview] No. 10924 del
>>10919

Quality other quantity.



(90.45 KB 640x360 cloud.jpg)
Cloud Encryption Best Practices? Anonymous 08/23/2017 (Wed) 23:28:21 [Preview] No. 10882 [Reply] [Last 50 Posts]
Say I need to store private files on some public cloud service because reasons. I'm going to encrypt the shit out of it, I want that crypto to hold up against reasonable opportunistic adversaries, and I want it to hold up for the foreseeable future.

"Reasonable opportunistic adversaries" means I don't expect to be the personal target of a well-funded spook agency. Law enforcement dragnets, opportunistic hackers and snooping providers are all relevant however.

"Foreseeable future" should be decades.

My instinct is to rely on something straightforward and established like gpg --symmetric, but it doesn't feel nearly autistic enough to be truly secure.

Should I consider non-standard ciphers? AES has theoretical attacks now, but 2^256 -> 2^254.4 is barely scratching it. Twofish and Serpent have only been attacked with reduced rounds. All are already over a decade old but nothing truly new seems to be on the horizon. Quantum comp apparently isn't the huge threat here that it is to public key.

Is it worthwhile cascading ciphers like Veracrypt does? Can this be done competently with gpg/other tools? I see mixed opinions out there about the benefits vs the risk to new attacks.

Is it worth obfuscating the ciphertext? Would using non-standard cipher settings, memorizing them then stripping headers protect the data in practice even if the cipher becomes weak in the future? Would wrapping it in other containers make it look more innocent to an adversary find/grepping for "interesting" files to analyze?

Tell me how wrong I am, /tech/.


Anonymous 08/24/2017 (Thu) 00:44:56 [Preview] No. 10883 del
>Should I consider non-standard ciphers?
No. Use AES-256 from a good library like libsodium. It's resistent from even quantum attacks.

I'd suggest:
- Set up a openbsd server
- Close all connections using pf(4), except the SSH port
- Change securelevel(7) to level 2 (so the pf rules can't be changed):
https://man.openbsd.org/securelevel.7

- Encrypt files on your computer with reop or gpg (reop uses AES256 by default)
- Use scp(1) to transfer files:
https://man.openbsd.org/scp


Anonymous 08/24/2017 (Thu) 07:52:49 [Preview] No. 10887 del
>>10883
>Set up a openbsd server

OP is premised on the data being stored by someone else, in an uncontrollable environment. You're right that this would be easy otherwise.


Anonymous 08/24/2017 (Thu) 15:26:05 [Preview] No. 10890 del
>>10882

The best practice would be not to store your data in "the cloud" in the first place.

But if you insist, use AES-256.

>Should I consider non-standard ciphers?

No.

Other ciphers, like Camellia and Serpent, probably offer similar security, but Rijndael (the cipher in AES) has been subjected to a lot more cryptanalytic effort _because_ it was chosen for AES, and it remains unbroken.

>Quantum comp apparently isn't the huge threat here that it is to public key.

Mostly correct. A quantum computer that is able to run Shor's algorithm efficiently will be able to quickly recover the private key for data encrypted with a public-key cryptosystem that relies on the factorization of large integers or the discrete logarithm problem. There are public-key cryptosystems that are not based on these problems, and are not vulnerable to Shor's algorithm, but they are not in common use. All of the ones in common use (e.g. in SSL/TLS and PGP) are vulnerable, so it's important to note that quantum computing is currently projected to be a threat to some kinds of public-key encryption, not _all_ public-key encryption per se.

The PQCrypto group is currently refining a number of public-key cryptosystems that will remain secure even if efficient quantum computing is realized.

Message too long. Click here to view full text.




Web servers/ async programming Anonymous 08/23/2017 (Wed) 15:48:45 [Preview] No. 10881 [Reply] [Last 50 Posts]
I've been practicing network programming lately and was reading about the different web servers, how they work and so on.
I was wondering how Windows and windows based web servers perform compared to Linux since it has no epoll/kqueue. It turned out it has I/O Completion Ports. Then I searched for web server benchmark comparisons but there were no credible ones. Why has nobody compared these products yet?

>https://www.rootusers.com/linux-vs-windows-web-server-benchmarks/
This one implies that IIS outperforms nginx in every way and if that is true I want to know how it does that.

>http://gwan.com/benchmark
This one implies that g-wan is the fastest one (obviously, it's their product, therefore isn't a credible source).

>https://www.webperformance.com/load-testing-tools/blog/2011/11/what-is-the-fastest-webserver/
That one also shills for IIS, but it's probably fake since the author doesn't mention anything about hardware or server configuration.

So my questions are:
- Does Windows' IOCP perform better than epoll/kqueue and if so - why? And why don't we implement it for *nix?
- Does IIS outperform nginx/apache and if so - how does it do it and is it related to the IOCP?

I cannot find credible sources and I hope someone here has more experience than me.

Message too long. Click here to view full text.



Anonymous 08/24/2017 (Thu) 01:04:38 [Preview] No. 10884 del
I don't have enough knowledge about http servers to answer you. But, I don't think performance is the only thing that matters.
And, it's also affected by many other configurations, such as where your cache is being written (this will depend on your disk write speed and your filesystem).
Open source unix-based systems have more flexibility to work with. You can compile linux, for example, to the bare minimum to work with and the resource usage will be trivial. Not like windows, where you can't disable low level stuff and need to have useless memory usage.
Morpheus with rwasa, for example, will give you very good performance:
https://2ton.com.au/rwasa/
http://morpheus.2f30.org/

Or, use NuttX. It's a realtime OS, and has it's on http server on base system:
http://www.nuttx.org/