[ home / rules / faq ] [ overboard / sfw / alt ] [ leftypol / siberia / hobby / tech / edu / games / anime / music / draw / AKM ] [ meta / roulette ] [ cytube / git ] [ GET / ref / marx / booru / zine ]

/tech/ - Technology

"Technology reveals the active relation of man to nature" - Karl Marx
Password (For file deletion.)

Join our Matrix Chat <=> IRC: #leftypol on Rizon

| Catalog | Home

File: 1642709808886.png (254.94 KB, 600x562, 08e.png)



>Google is recommending that the US government devote more resources to securing open-source software in light of the Apache Log4J 2 vulnerability, which has affected countless business applications and servers.

>On Thursday, Google and other tech companies, including Apple and Amazon, attended a White House briefing about securing open-source software. The meeting was called to help the US avoid a repeat of the Log4J vulnerability, which can make hacking an affected software program trivial for a malicious computer hacker.

>One reason the vulnerability is so bad is because the open-source Log4J 2 utility is used across the IT industry as a freely available tool. However, the same vital software is maintained merely through volunteers from the nonprofit Apache Software Foundation.

>According to Google, the lack of maintenance and IT support surrounding open-source projects leaves the US vulnerable to exploitation.

>“For too long, the software community has taken comfort in the assumption that open-source software is generally secure due to its transparency and the assumption that ‘many eyes’ were watching to detect and resolve problems,” Google’s Chief Legal Officer Kent Walker wrote in a blog post. “But in fact, while some projects do have many eyes on them, others have few or none at all,” he added.
16 posts and 3 image replies omitted. Click reply to view.


>brainwashed by FSF
the Toe-chew-rian Candidate?


> Who even is Langley?
lol good one


File: 1646800401477.jpg (289.73 KB, 1151x959, cuckedliscenses.jpg)


sauce on the astolfo pic


Open source was created by venture capitalists at the turn of the millennium because they were pissed off at the initial triumphs of free software in the 1990s (beginning w/ the adoption of the Linux kernel). They were allowed to do this, because free software principally relies on bourgeois copyright law as the bulwark for its continued existence. As it turns out, creating alternative networks parallel to capitalist production (comprised entirely of unpaid contributors) wasn't quite as revolutionary as those classic /g/ memes made it seem.


Functional programming was a craze.

I've learned scheme and common lisp and scala and haskell in classes at uni/grad school and although in the 2010s the functional programming craze was huge eventually it died out and people just decided that low level languages like go and rust were better and that even java could be good if you add lambdas and first class functions/function objects to it. I was a full on FP cultist from 2010 to like 1-2 years ago.

After writing actual functioning apps in functional languages I've concluded that old fashioned OOP/java and now low level multi paradigm languages like go are probably better than the languages like clojure or haskell which force functional style and take up huge amounts of memory due to immutable data structures, despite the compiler writers best efforts. The concurrency benefits can simply be gotten by adding a few functional features to mainstream languages which they have already done, for example, C# and Java. Although C# does it way better imo.

I see literally no reason to write an app in haskell, clojure, scala, etc. over basic Java/C# or rust/golang
45 posts and 2 image replies omitted. Click reply to view.


>C on the other hand is simple enough to have a tiny unoptimized compiler and still be fast enough to be used by a not insignificant operating system.
And whether or not GCC exists to make it super super fast is irrelevant.


Friendly reminder that Erlang (a functional language) is one of the most widely deployed languages other than C and C++, as the application stack of nearly every telephone (both your personal cell phone and the 4G tower it talks to) is written in it


>There is no "tiny haskell compiler"
No there actually is and it ties into C anyways https://github.com/bkomuves/nanohs
>It should be common knowledge that OpenBSD uses it.
I have an OpenBSD system right next to me and it uses both gcc 4.2.1 and LLVM/Clang. I was there at one point and tried to bootstrap a source-based distro with tcc and ran up against countless gcc-isms. These are not accidental but an integral part of its practical use. Clang has the benefit of mostly being gcc compatible.
>Maybe take a step back and remember what is the point you are trying to make.
>>10944 said functional languages and by extension language concepts above a certain level were "forced to be extremely complex to get semi-decent performance". Lisp has been the object of optimizations for a long time and it shows the freedom high-level concepts allow for implementation, hence some not using cons cells at all. In contrast, C has both unnecessarily rigid definitions (storage directives, implicit type casts, padding, function) and leaky abstractions an optimizer might trip over (see the use of volatile). And while large parts of C may map onto most instruction sets, it was not designed with concurrency in mind.
I know comparing the size of the source is inaccurate. Can you come up with a better comparison on code complexity?


>I have an OpenBSD system right next to me and it uses both gcc 4.2.1 and LLVM/Clang
What does world build with?


File: 1646861302118.mp4 (7.11 MB, 320x240, erlang_the_movie.mp4)

I'm running the 6.9 release, https://man.openbsd.org/cc says current is still using clang though.
Is it widespread outside of telecommunications? I heard there was some new language called elixir for its vm.

File: 1608526080361-0.png (58.33 KB, 1200x1200, hacktivism.png)

File: 1608526080361-1.pdf (307.87 KB, rs1.pdf)

 No.2934[Reply][Last 50 Posts]

pdf on left wing hacktivism
122 posts and 7 image replies omitted. Click reply to view.


TLS is very weak in comparison to the encryption on secured Matrix rooms. The older chat protocol that is up to par with Matrix on this is XMPP with specifically OMEMO, but IRC with TLS is way weaker to be quite clear.


element is kinda janky, and the matrix bullshit about your keys every time you log out basically makes it impossible to have multiple accounts (tho i think i saw a thing that advertized u could be logged in to multiple acconts at the same, time, idk if nheko or some cli matrix bullshit)
i used to use it n got all my anarchist friends to use it, but its just not that great

i use xmpp now p much exclusively and i dont get the hype of matrix when this shit has existed forever lmao. Shit's more polished (not shiny, but works well and is stable), and you can use it over tor easily so wtf matrix??

the only thing is that omemo might not work in mucs? or is difficult at least? idk

can u do omemo in group chats?


File: 1644965129528.png (461.36 KB, 800x388, ClipboardImage.png)


>Early last week TechCrunch revealed that security researchers had discovered 50GB of unsecured GiveSendGo data including scans of passports and driver’s licenses. The crowdfunding platform said it fixed the issue, but the Daily Dot reported Thursday that the data was still accessible.

Fucking lol


I think a lot of what you said here is interesting and a good injection of reality into this thread. A few comments
He's ok I think, I think I read his blog on "freetardism" which left a bad taste in my mouth, because it was stupid. Only other problem is that we have no idea who he is and whether his cybersecurity background is. Looking at his stuff now most of it seems to be informed, detailed, and mostly not cringe.
>IMO don't even begin unless you have at least 3-4 transhumanistbooted xx00-series thinkpads with either gentoo, trisquel, arch or heads, and know how to flash new MAC addresses and know how to use aircrack-ng/airsnort and know basic tradecraft.
Libreboot with "insert le epic super duper hard linux distro here" may be going a bit far in terms of baseline (speaking as a libreboot user), but the overall point is valid because all modern computers have hardware vulnerabilities in the IME and starting to switch over to linux generally is valid (but you don't need to use, literally mint or ubuntu is fine to start and then work your way up to a more hardened system, whoonix, tails, trisquel, whatever.). If anyone is interested in libreboot/old thinkpad stuff, start here:
You can also just buy one on ebay but the prices have gone up in the past little while.


File: 1646771931996.png (225.34 KB, 326x643, jobhereisdone.png)

"yeah bro the nation state is omnipotent, there's nothing you can do, so anyways just mindlessly fetishize cryptography and proxying and LARP as cypherpunk. btw i hate trans people" thanks, i guess

File: 1643689176054.jpg (46.79 KB, 565x664, FIIedifWUAIN4tl.jpg)


>be me, former 4chin user
>hadn't browsed 4chin in at least 9 months
>unblock it one day from hosts file
>go to /g/
>mfw /g/ is seething and coping as the result of NFT discourse
>mfw /g/entoomen are debating value
>mfw /g/entoomen are this must closer to bracing Marxism
>i have no face
>instead of Libertarianism
How do we accelerate their education?
30 posts and 6 image replies omitted. Click reply to view.


>we need to lure /g/fags to the cause
<but your /tech/ board is amateurish and unconvincing
>shut up no one cares STEM is bourgeoisie anyway
Is that what just happened?


you're a retard


your retardeder


<we need to lure /g/fags to the cause
no one wants this except for deranged people like OP


>muh workplace democracy
pick one

File: 1636186618705.jpeg (6.61 KB, 210x240, letöltés.jpeg)


Help a uygha out.

I've been stuck with my gmail account since I was 17 or so, when it first started. I'm trying to find a new online mail provider that
1) is safe
2) close as possible to GNU philosophy
3) not likely to be shut down soon
3.1) preferably is on the rise
4) won't leak my shit to the CIA
5) it's okay if it's Chinese (with Eng interface), because I'm okay with the PRC having access to my shit

(pic randomly chosen)
12 posts omitted. Click reply to view.


No OP but I unironically tried to do that a few years ago, configured a zimbra instance in some throwaway ubuntu server comp I got but after a few weeks the battle against spammers and assorted security threats was too much to handle for my inexperienced ass.

Server admin is hard lol.


>>12256 >>12295
For the historical record, to see Tutanota's true colors:

"""Tutanota Team
Helping Ukraine / s.u. für deutsche Version
Thu, Mar 3 • XX:XX

Dear Privacy Fan,

The Russian invasion in Ukraine is an attack on a free, democratic country. We stand with the people in the Ukraine and are donating 25% of revenue from new subscriptions in February and March to humanitarian aid in Ukraine. Spread the word about our initiative and upgrade your account now!

As the war in Ukraine relentlessly gathers pace and has already reached large parts of the country, many civilians are trying to get to safety. More than half a million people have already fled to neighboring Poland, Slovakia and Hungary. Many have been on the road for several days, traveled across the country and then had to stand for hours in front of the clogged border, often without food, in the cold. At the border, families need to separate from husbands, fathers and sons as only women, children and old people are allowed to leave the country. The need for humanitarian aid is multiplying and increasing by the hour, says UNICEF. In these dark times, we are thankful that we can support humanitarian aid in Ukraine with your help!

Thank you,
your Tutanota Team
Post too long. Click here to view the full text.



File: 1646394735895.png (107.67 KB, 817x895, posteo.png)



File: 1646589906228.png (292 KB, 1400x933, pngegg.png)

Just set up virtual mail with Postfix/Dovecot/Spamassassin/ClamAV/amavis/postfixadmin/roundcube or rainloop preferably with a DB and maildir storage OP, and set up proper mail signing to secure it, and you can host your own mail.
I've been using that for several years and it works just fine for me for multiple domains. I even helped my office out once in a pinch for outgoing mails when they ran into a quota limit with their usual mail provider.

I was going to package this whole setup as a docker container a while ago but never got around to it, maybe will do it one of these days.

File: 1623203634171.jpg (42.83 KB, 720x480, 1564180497890.jpg)


Youtubers who spike prices of old hardware should jump off a cliff, people out here thinking their shitty thinkpad that their dog pissed on is worth $500
69 posts and 9 image replies omitted. Click reply to view.


retard spotted


File: 1645516810311.png (250.52 KB, 973x690, 1645503383118.png)

"youtuber" faggot should stop making videos about old hardware


>just get a hackable smartphone that you can install gnu+linux on
I'd just like to interject for a moment. What you're referring to as gnu+linux, is in fact, bionic+linux (android) or musl+linux (postmarkeros). There is no gnu.


that phone is running arch, so it is gnu+linux


could be running busybox instead though

File: 1643492661163.jpg (126.59 KB, 800x547, terminals.jpg)


A thread for advice on setting up and configuring linux systems, especially for desktop

Here's a solid manual from the Debian wiki: https://www.debian.org/releases/stable/amd64/
Rufus is a good way to create a bootable USB on Windows: https://rufus.ie/en/
This is a good guide on partitioning for a PC with an SSD and a storage HDD if you wanna go full desktop: https://neurite.github.io/debian-setup/0201-partitions.html
7 posts omitted. Click reply to view.


alternatively, https://wiki.nftables.org/wiki-nftables/index.php/Main_Page
fork of SpaceFM that continues to be maintained a bit:
graphical media converters:
shell script built on youtube-dl that downloads youtube videos and plays them in mpv:
graphical IM:
Post too long. Click here to view the full text.


>Since Wheezy, Debian kernel on x86 contain their own BootLoader called EFI stub. Therefore it is possible to load the kernel directly, without any additional bootloader (like grub-efi).
oh this is cool


this is really good tbh


this. if there's something linux has too much of, it's helpful and easily available documentation and guides. real powerusers stare at man pages until they can pretend to know what something does


Manpages are easy enough to digest. I suspect most people just dislike the viewers. Real unix wizards can deduce everything a program does from its usage.

File: 1646274433674-0.jpg (45.31 KB, 594x270, 1.jpg)

File: 1646274433674-1.png (255.13 KB, 768x420, 2.png)

File: 1646274433674-2.jpg (51.51 KB, 640x306, 3.jpg)


So it seems that nvidia got all their shit stolen.


Order of events as far as I can tell:
>Hackers (lapsus$) steal 1tb worth of shit from nvidia because nvidia implemented hash limiter anti cryptocurrency bullshit into their 30x series
>The hackers demand that nvidia remove the hash limiter so that they can do their mining crypto shit
>Nvidia counter hacks and encrypts/ransomwares the hacker's machines
>However they've already backed up the data so no biggie
>Hackers up the ante and demand nvidia also open source all of their graphics card drivers by friday, march 4th
>Also they leak the DLSS source code
>Also they're now selling a workaround to the hash rate limiter


whomever wins we lose.


Oh boy does this mean floss drivers?

File: 1644554479410-0.jpg (4.94 KB, 234x215, images.jpg)

File: 1644554479410-1.jpg (217.4 KB, 1200x600, eagle-2b.jpg)


>Earlier today, the Senate Judiciary Committee voted to advance the dangerous EARN IT bill. We’re disappointed to see the committee advance this misguided bill. If enacted, EARN IT will put massive legal pressure on internet companies both large and small to stop using encryption and instead scan all user messages, photos, and files.

>The bill could now be voted on by the full Senate at any time, or worse, included as part of a different “must-pass” legislative package. We need you to contact your representatives in Congress today to tell them to vote against this bill.

>We have expanded our action tool to contact both Senators and members of the House of Representatives. If you have already taken our action to contact your Senators, please take it again to make sure you contact lawmakers in both houses.

>The bill sponsors have falsely stated that the EARN IT Act is needed to protect children. But the kind of abusive images they’re concerned about are already highly illegal under federal law. Any internet platforms that knows about child sexual abuse material (CSAM) being distributed or received are required to take action on it, and can be prosecuted if they do not.

>EARN IT will allow states to lower the legal standard required for prosecutions over CSAM, and it will let the use of encryption be evidence in lawsuits and criminal trials. The overt goal of EARN IT is to pressure internet companies to start doing widespread scanning of user messages and photos. This scanning is incompatible with strong encryption.

>The harms will fall on the most vulnerable people. Once we allow encryption to be compromised to scan for CSAM,, authoritarian regimes will demand the same capabilities to track information shared by activists and journalists. People subject to domestic abuse, including children, won’t have secure channels of communication to report and reach out for trusted help.

>We’re glad to see that several senators echoed concerns raised by human rights groups throughout the U.S. and the world. They suggested they might not support the bill if it doesn’t strike a proper balance between fighting crimes against children, and user rights to privacy and encryption.

Post too long. Click here to view the full text.
1 post omitted. Click reply to view.


>Time for the U.S. Government
Not just them.
"""Campaign aims to stop Facebook encryption plans over child abuse fears

No Place to Hide drive funded by Home Office to warn social media firms over dangers of end-to-end encryption
Tue 18 Jan 2022 00.01 GMT

A government-backed campaign has stepped up the pressure on plans by Mark Zuckerberg’s Facebook Messenger and Instagram apps to introduce end-to-end encryption, warning that millions of cases of child sex abuse could go undetected.

The new campaign warns that social media companies are “willingly blindfolding” themselves to abuse if they implement end-to-end encryption for private messaging.

Although the No Place to Hide campaign does not refer directly to plans for end-to-end encryption on Messenger and Instagram, they were strongly criticised by the home secretary, Priti Patel, last year, who described them as “not acceptable”. The campaign has been launched by abuse survivors, child safety campaigners and charities including Barnardo’s and is funded by the Home Office.

Post too long. Click here to view the full text.


Govt. cant pass any meaningful legislation, but if there’s an opportunity to spy on people mad at the shifty job they’re doing, you can bet it will be fast tracked to the presidents desk.


So any encryption is now suspect of being CP.

>Protect the children!

This fucking state of exception shit will be our reckoning. Same thing with covid shit. The trojan horse of public health to bring in sweeping biopower and control.

What next?


>They suggested they might not support the bill if it doesn’t strike a proper balance between fighting crimes against children, and user rights to privacy and encryption.
if they werent retarded enough to realize the protection of children is just a facade theyd oppose it completely instead of pulling this "w-w-we need to reach a middle point between both sides"

god i hate politicians


>Facebook, Google and other tech firms must verify identities under proposed UK law
>It's part of a new 'Online Safety Bill' aimed at protecting users from harmful content.
>February 25th, 2022

>New plans to protect people from anonymous trolls online
>Social media users will have more control over what they see online and who can interact with them as the government steps up the fight against anonymous trolls.

>Under a new duty announced today, ‘category one’ companies with the largest number of users and highest reach - and thus posing the greatest risk - must offer ways for their users to verify their identities and control who can interact with them. This could include giving users options to tick a box in their settings to receive direct messages and replies only from verified accounts. The onus will be on the platforms to decide which methods to use to fulfil this identity verification duty but they must give users the option to opt in or out. When it comes to verifying identities, some platforms may choose to provide users with an option to verify their profile picture to ensure it is a true likeness. Or they could use two-factor authentication where a platform sends a prompt to a user’s mobile number for them to verify. Alternatively, verification could include people using a government-issued ID such as a passport to create or update an account. Banning anonymity online entirely would negatively affect those who have positive online experiences or use it for their personal safety such as domestic abuse victims, activists living in authoritarian countries or young people exploring their sexuality. The new duty will provide a better bal
Post too long. Click here to view the full text.

File: 1644292270134-0.jpg (143.34 KB, 1200x800, 1644268924220.jpg)

File: 1644292270134-1.png (382.05 KB, 1280x720, where.png)


26 posts and 7 image replies omitted. Click reply to view.


File: 1645943786823.png (404.89 KB, 1080x1080, reallyexcitesthesenses.png)

>"Universal" Serial Bus
>every several years they push a new form factor on people


File: 1645985953924.png (65.33 KB, 945x809, usb.png)

USB fucking sucks it only exists to kill other interfaces like Thunderbolt and FireWire and replace it with a confusing mess of cheaply made shit


Why is USB-A to USB-A hazardous?


USB-A is host with USB-B the client yet there are devices that break the standard so both ends are USB-A.


New T14s Gen 3 AMDooking pretty good.

Delete Post [ ]
[ home / rules / faq ] [ overboard / sfw / alt ] [ leftypol / siberia / hobby / tech / edu / games / anime / music / draw / AKM ] [ meta / roulette ] [ cytube / git ] [ GET / ref / marx / booru / zine ]
[ 1 / 2 / 3 / 4 / 5 / 6 / 7 / 8 / 9 / 10 / 11 / 12 / 13 / 14 / 15 / 16 / 17 / 18 / 19 / 20 / 21 / 22 / 23 / 24 / 25 / 26 / 27 / 28 / 29 / 30 / 31 / 32 / 33 / 34 / 35 / 36 ]
| Catalog | Home