Domain: youtube.com
Stories and comments across the archive that link to youtube.com.
Comments · 87,129
-
Pai is only where he is because the Republicans
wanted him to be. Trump could have kept the FCC as is. The law only says 3 Republican _appointees_, it says nothing about the personal party affiliations of those appointees.
And as for Trump, he was in favor of single payer healthcare until the Republicans talked him out of it with what looks like one meeting. He's pretty obviously just doing what the party tells him.
Bottom line, this _is_ a partisan issue. The Dems favor NN and the Republicans oppose it. To suggest otherwise is to ignore mountains of evidence to the contrary; and this is a site for nerds. The one thing we should hold sacred is evidence. -
Obligatory:Intel CPU Backdoor Report (Jan 1 2018)
Change log:
2018/01/01 - Added 14 Useful Links. Disable Intel ME 11 via undocumented NSA "High Assurance Platform" mode, Blackhat Dec 2017 presentation, Intel ME CVEs (CVSS Scored 9.0-10.0)Intel CPU Backdoor Report
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
[Video] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
@21:43, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.[Quotes] Vortrag:
"the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker"."We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.2017 Dec Update:
Intel ME on recent CPUs may be disabled by enabling the undocumented NSA HAP mode.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links (Added 2018 Jan 1):
Disabling Intel ME 11 via undocumented mode (NSA High Assurance Platform mode)
Blackhat 2017: How To Hack A Turned Off Computer Or Running Unsigned Code In Intel Management Engine
EFF: Intel's Management Engine is a security hazard, and users need a way to disable it
Sakaki's EFI Install Guide/Disabling the Intel Management Engine
Intel ME bug storm: Hardware vendors race to identify and provide updates for dangerous Intel flaws.
CVE-2017-5689: An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs
CVE-2017-5705: Multiple buffer overflows in kernel in Intel Manageability Engine Firmware
CVE-2017-5706: Multiple buffer overflows in kernel in Intel Server Platform Services Firmware -
Re:Finally
The Republican Party's southern strategy consisted of embracing racism and bigotry in order to gain political power. The Democratic Party's position during this time was to *shed* its Dixiecrat racist wing by supporting civil rights.
Except that didn't happen
https://www.youtube.com/watch?...
You can see that more Republicans than Democrats supported the Civil Rights act
-
Re:Donald Trump - White Affirmative Action
Would an incoherent barely literate black man with kids by 3 different women and a life time of Bankruptcies even have the opportunity to collude with Russia to steal the election?
Well since Obama won I guess the answer is Yes?
-
Re:CustomersDontMatter
A vast majority of what? People in a survey that probably had leading questions? If you think that 80% of Americans have an opinion on Net Neutrality or even know what that is, you need to get out more.
-
Re:I hope AMD keep making desktop/server chips
but it's clear that when AMD is competitive Intel produces better chips.
No, they don't. What they do is resort to anticompetitive behavior. You clearly do not know the history of Intel.
-
Oh boy, this makes my last video more interesting
I noticed the bricking reports cropping up like crazy. At the end of the last video I made about this CPU bug fiasco and the bricking reports all over MS Answers I walked away saying "now if you'll excuse me, I have to turn off the Windows Update service on all my computers" and after a few seconds of outro I dropped in a joke cut saying "JUST KIDDING ALL MY STUFF RUNS AMD, HAHAHA!"
Looks like I narrowly averted disaster though. I am glad that my WU humor was not entirely a joke and the Win10 stuff I have all has HKLM\CCS\services\wuauserv normally deleted and restored when I manually decide to allow updates to happen. I don't have time to reinstall everything from scratch at the start of a new year. If After Effects ran on Linux then I'd probably stop using Windows entirely at this point. There is no excuse for a "security update" murdering the entire OS and the incompetence shown throughout this whole Spectre/Meltdown thing by several big players is pretty paranoia-worthy stuff. It's especially troublesome because Win10 Pro actually IGNORES ALL of the system policies that prevent updates from happening automatically behind your back and prevent automatic rebooting for updates while users are logged on. AMD owners are forced to let their computers commit suicide.
Given this gross incompetence from Microsoft plus the nVidia datacenter hostility, maybe this will be The Year Of Desktop Linux(tm). Somehow I doubt it. -
Re:Awesome
The point is that you can't discriminate and refused to sell a good to someone but you can refuse to perform a service.
Actually, you can do both. There are many reasons that are acceptable to refuse to sell a good or perform a service. But you can't do so for certain reasons that are discriminatory in ways that are prohibited. Not if you don't want to violate the law.
Besides, in the cases of Arlene's Flowers, Masterpiece Cakes, and Sweetcakes by Melissa, they categorically refused to sell goods for the purposes of same-sex weddings, and even to allow their other employees to do such services.
They also admitted that baking cakes for others did not constitute an endorsement, and stated that they never investigated other weddings.
As Ben Shapiro put it "If you're the one forcing me to do something, you're the bad person because that's tyranny"
https://www.youtube.com/watch?...
So Ben Shapiro is confused, and doesn't realize that operating a business and taking money for it, is not somehow tyranny when you're told under what conditions your business needs to operate
Is that really what you want to go with? Empty, vacuous rhetoric that expects us to ignore reality?
Besides it's the bakers, florists, and others are the ones who want to force people not to use their readily available commercial services, with an odd and particular fixation on homosexuals. And they expect the state to endorse it, just like in the past.
Probably because they want to pretend that their arguments aren't the same as this one.
And if it's all so stupid, why doesn't your side back down?
That's what we keep asking all the people clamoring to support these bakers, pizzerias, and florists. Not to mention chancellors, judges, and court clerks. What's with sinking hundreds of thousands of dollars into these self-serving panderers and con-artists? Can't they find something worthwhile besides screaming that a "gay" wedding cake will give you cooties? Do they really have to call the police because some homosexual asked them to put their name on a cake?
Then again, they got upset that Wal-Mart wouldn't bake them a Confederate flag cake.
How's that freedom doing you? Glorious liberty of thee I sing!
-
Re:Awesome
The point is that you can't discriminate and refused to sell a good to someone but you can refuse to perform a service.
Actually, you can do both. There are many reasons that are acceptable to refuse to sell a good or perform a service. But you can't do so for certain reasons that are discriminatory in ways that are prohibited. Not if you don't want to violate the law.
Besides, in the cases of Arlene's Flowers, Masterpiece Cakes, and Sweetcakes by Melissa, they categorically refused to sell goods for the purposes of same-sex weddings, and even to allow their other employees to do such services.
They also admitted that baking cakes for others did not constitute an endorsement, and stated that they never investigated other weddings.
As Ben Shapiro put it "If you're the one forcing me to do something, you're the bad person because that's tyranny"
https://www.youtube.com/watch?...
So Ben Shapiro is confused, and doesn't realize that operating a business and taking money for it, is not somehow tyranny when you're told under what conditions your business needs to operate
Is that really what you want to go with? Empty, vacuous rhetoric that expects us to ignore reality?
Besides it's the bakers, florists, and others are the ones who want to force people not to use their readily available commercial services, with an odd and particular fixation on homosexuals. And they expect the state to endorse it, just like in the past.
Probably because they want to pretend that their arguments aren't the same as this one.
And if it's all so stupid, why doesn't your side back down?
That's what we keep asking all the people clamoring to support these bakers, pizzerias, and florists. Not to mention chancellors, judges, and court clerks. What's with sinking hundreds of thousands of dollars into these self-serving panderers and con-artists? Can't they find something worthwhile besides screaming that a "gay" wedding cake will give you cooties? Do they really have to call the police because some homosexual asked them to put their name on a cake?
Then again, they got upset that Wal-Mart wouldn't bake them a Confederate flag cake.
How's that freedom doing you? Glorious liberty of thee I sing!
-
Re:Awesome
The point is that you can't discriminate and refused to sell a good to someone but you can refuse to perform a service.
Actually, you can do both. There are many reasons that are acceptable to refuse to sell a good or perform a service. But you can't do so for certain reasons that are discriminatory in ways that are prohibited. Not if you don't want to violate the law.
Besides, in the cases of Arlene's Flowers, Masterpiece Cakes, and Sweetcakes by Melissa, they categorically refused to sell goods for the purposes of same-sex weddings, and even to allow their other employees to do such services.
They also admitted that baking cakes for others did not constitute an endorsement, and stated that they never investigated other weddings.
As Ben Shapiro put it "If you're the one forcing me to do something, you're the bad person because that's tyranny"
https://www.youtube.com/watch?...
So Ben Shapiro is confused, and doesn't realize that operating a business and taking money for it, is not somehow tyranny when you're told under what conditions your business needs to operate
Is that really what you want to go with? Empty, vacuous rhetoric that expects us to ignore reality?
Besides it's the bakers, florists, and others are the ones who want to force people not to use their readily available commercial services, with an odd and particular fixation on homosexuals. And they expect the state to endorse it, just like in the past.
Probably because they want to pretend that their arguments aren't the same as this one.
And if it's all so stupid, why doesn't your side back down?
That's what we keep asking all the people clamoring to support these bakers, pizzerias, and florists. Not to mention chancellors, judges, and court clerks. What's with sinking hundreds of thousands of dollars into these self-serving panderers and con-artists? Can't they find something worthwhile besides screaming that a "gay" wedding cake will give you cooties? Do they really have to call the police because some homosexual asked them to put their name on a cake?
Then again, they got upset that Wal-Mart wouldn't bake them a Confederate flag cake.
How's that freedom doing you? Glorious liberty of thee I sing!
-
Re:Awesome
The point is that you can't discriminate and refused to sell a good to someone but you can refuse to perform a service.
Actually, you can do both. There are many reasons that are acceptable to refuse to sell a good or perform a service. But you can't do so for certain reasons that are discriminatory in ways that are prohibited. Not if you don't want to violate the law.
Besides, in the cases of Arlene's Flowers, Masterpiece Cakes, and Sweetcakes by Melissa, they categorically refused to sell goods for the purposes of same-sex weddings, and even to allow their other employees to do such services.
They also admitted that baking cakes for others did not constitute an endorsement, and stated that they never investigated other weddings.
As Ben Shapiro put it "If you're the one forcing me to do something, you're the bad person because that's tyranny"
https://www.youtube.com/watch?...
So Ben Shapiro is confused, and doesn't realize that operating a business and taking money for it, is not somehow tyranny when you're told under what conditions your business needs to operate
Is that really what you want to go with? Empty, vacuous rhetoric that expects us to ignore reality?
Besides it's the bakers, florists, and others are the ones who want to force people not to use their readily available commercial services, with an odd and particular fixation on homosexuals. And they expect the state to endorse it, just like in the past.
Probably because they want to pretend that their arguments aren't the same as this one.
And if it's all so stupid, why doesn't your side back down?
That's what we keep asking all the people clamoring to support these bakers, pizzerias, and florists. Not to mention chancellors, judges, and court clerks. What's with sinking hundreds of thousands of dollars into these self-serving panderers and con-artists? Can't they find something worthwhile besides screaming that a "gay" wedding cake will give you cooties? Do they really have to call the police because some homosexual asked them to put their name on a cake?
Then again, they got upset that Wal-Mart wouldn't bake them a Confederate flag cake.
How's that freedom doing you? Glorious liberty of thee I sing!
-
Re:Awesome
The point is that you can't discriminate and refused to sell a good to someone but you can refuse to perform a service.
Actually, you can do both. There are many reasons that are acceptable to refuse to sell a good or perform a service. But you can't do so for certain reasons that are discriminatory in ways that are prohibited. Not if you don't want to violate the law.
Besides, in the cases of Arlene's Flowers, Masterpiece Cakes, and Sweetcakes by Melissa, they categorically refused to sell goods for the purposes of same-sex weddings, and even to allow their other employees to do such services.
They also admitted that baking cakes for others did not constitute an endorsement, and stated that they never investigated other weddings.
As Ben Shapiro put it "If you're the one forcing me to do something, you're the bad person because that's tyranny"
https://www.youtube.com/watch?...
So Ben Shapiro is confused, and doesn't realize that operating a business and taking money for it, is not somehow tyranny when you're told under what conditions your business needs to operate
Is that really what you want to go with? Empty, vacuous rhetoric that expects us to ignore reality?
Besides it's the bakers, florists, and others are the ones who want to force people not to use their readily available commercial services, with an odd and particular fixation on homosexuals. And they expect the state to endorse it, just like in the past.
Probably because they want to pretend that their arguments aren't the same as this one.
And if it's all so stupid, why doesn't your side back down?
That's what we keep asking all the people clamoring to support these bakers, pizzerias, and florists. Not to mention chancellors, judges, and court clerks. What's with sinking hundreds of thousands of dollars into these self-serving panderers and con-artists? Can't they find something worthwhile besides screaming that a "gay" wedding cake will give you cooties? Do they really have to call the police because some homosexual asked them to put their name on a cake?
Then again, they got upset that Wal-Mart wouldn't bake them a Confederate flag cake.
How's that freedom doing you? Glorious liberty of thee I sing!
-
Re:Next up - Falcon Heavy!!
You appear to have missed the point in Elon's introduction or BFRv2 where he stated that BFR will be cheaper to fly than F9 or FH.
OK, Elon is an optimist and clearly thinks that the re-usability aspects of the platform are already reachable or will be by the time BFR is regularly flying. So, unless you are claiming that you know better than Elon does, my statement stands: Once BFR is debugged, Space-X will transition to it ASAP shutting down F9 & FH ASAP.
The transition from F9/FH to BFR for DOD launches will take longer than that for commercial flights as Space-X as Space-X will need to get BFR certified. I assume that having suffered through the reams of paperwork for it took for F9 certification, that getting BFR certified will be easier as Space-X is getting used to DOD procedures & vice-versa.
-
Re:For some use cases everything else is too big
I used an Eee 901HA to do image editing while out and about. Digital drawings, mostly...until I looked at a drawing I had colored using it, on a device with a better screen--the colors were all wonky. A cartoon character that was supposed to be a light cream color came out looking a sickly greenish somethingoranother.
After that, I went to other machines with better LCD's (eyes his 17" Toshiba P850 on another table) and the netbook served just to run an old portable Canon scanner until I found out how to bamboozle my Surface Pro 2 (Win 8.1) into running an older driver to access it. The image editors I was (and still use) didn't tax the Eee, but the color fidelity of its display ended its career as a portable image editor.
I'm keeping an eye on the Eve V. in the meantime. Given what I'm carrying now though, I'm probably not in the same boat as the OP.
---PCJ
-
Re:Alexa Flush.,,
That's nothing. Check out the thumbnail for creimer's channel trailer. Notice the Alien Trespass movie poster that is cutoff in the background?
LIEN - A right to keep possession of property belonging to another person until a debt owed by that person is discharged.
SPASS - Whenever sperm inside a womens anus returns out with connected wind. Frequently features a brown tinge.
-
Re:Why would you have to take off a helmet??
Taking off a glove to get TouchID going is a lot less work than taking off my helmet to get FaceID working.
Counterpoint: Far more people (myself included) benefit from being able to use touch-enabled gloves in winter and being able to unlock the phone without taking them off...
But I don't I understand why you think a helmet would prevent your face from unlocking the phone. If IR light can get through the visor FaceID can read your face even in a full helmet.
With TouchID, I put my finger on the reader as I pull the phone out of my pocket
I'm really confused as to why it's easier to remove a glove (that you may easily lose) than lifting a visor or raising your helmet (which, again, you should not even have to do).
So you have exactly one use case where FaceID is more convenient than TouchID. But there are plenty of counter examples where it is worse than TouchID, like paying at a credit card terminal, or any time your face may be obscured enough that it can't identify you. And what do you gain from losing the fingerprint sensor and the home button? A notch at the top of the screen. And as the AC who replied earlier said, it's far easier to take a glove off than a motorcycle helmet and if FaceID recognizes you in your helmet then it is no security at all. The helmet covers basically everything but the fringes of your cheek and your eyes. Mine even covers my nose to prevent air from the chin vents from blowing into your eyes.
I have an Android phone without a physical home button and I hate it. You can't tell which way the phone is oriented when you pick it up. You have to look at it. Now with FaceID you can't unlock your phone without having to look at it, either.
-
Obligatory:Intel CPU Backdoor Report (Jan 1 2018)
Change log:
2018/01/01 - Added 14 Useful Links. Disable Intel ME 11 via undocumented NSA "High Assurance Platform" mode, Blackhat Dec 2017 presentation, Intel ME CVEs (CVSS Scored 9.0-10.0)Intel CPU Backdoor Report
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
[Video] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
@21:43, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.[Quotes] Vortrag:
"the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker"."We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.2017 Dec Update:
Intel ME on recent CPUs may be disabled by enabling the undocumented NSA HAP mode.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links (Added 2018 Jan 1):
Disabling Intel ME 11 via undocumented mode (NSA High Assurance Platform mode)
Blackhat 2017: How To Hack A Turned Off Computer Or Running Unsigned Code In Intel Management Engine
EFF: Intel's Management Engine is a security hazard, and users need a way to disable it
Sakaki's EFI Install Guide/Disabling the Intel Management Engine
Intel ME bug storm: Hardware vendors race to identify and provide updates for dangerous Intel flaws.
CVE-2017-5689: An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs
CVE-2017-5705: Multiple buffer overflows in kernel in Intel Manageability Engine Firmware
CVE-2017-5706: Multiple buffer overflows in kernel in Intel Server Platform Services Firmware -
Re:"I want repaired processors for free"
A recall of every CPU since 2006 would decimate (if the recall isn't heavily utilized) or likely even bankrupt Intel. The Core 2 generation is the oldest practical Intel CPU (yes, I know this is a subjective statement, thus "practical") on which you can run Windows 10 and modern software. Every computer running Windows 10 and an Intel chip would need CPU replacement. We are talking quite literally several billion processors since Intel sells a few hundred million per year. Intel's market cap is over 200 billion dollars, but even if they were expected to replace 1 billion $100 processors that's half of the company's value. Since we're talking about 11 years worth of processors there is potential for the number to be more like 3-4 billion processors. This is purely the financial side and ignores all of the logistics which would be a totally separate nightmare. Intel is incapable of manufacturing anywhere close to that many processors in a year ESPECIALLY if they continue to sell new processors while doing the recall.
Intel simply cannot afford to recall all affected processors. Do not expect it to happen because it won't. They will obscurity-by-corporate-speak their way out of this in a way that could make Enron's obfuscated lies look tame. If there were no software mitigation they would have few straws to grasp at, but the OS workarounds give them a tiny escape door and you better believe that they'll hire a whole crew of bulldozers to force this massve elephant through it. -
Re:It's not a datacenter.
Maybe, but just in case it wasn't.
https://www.youtube.com/watch?... -
Re:Upcoming earnings call
The best unboxing video of all is the My Little Pony Happy Meal Unboxing Video.\
It simply rocks. Nothing else comes close.
-
Why would you have to take off a helmet??
Taking off a glove to get TouchID going is a lot less work than taking off my helmet to get FaceID working.
Counterpoint: Far more people (myself included) benefit from being able to use touch-enabled gloves in winter and being able to unlock the phone without taking them off...
But I don't I understand why you think a helmet would prevent your face from unlocking the phone. If IR light can get through the visor FaceID can read your face even in a full helmet.
With TouchID, I put my finger on the reader as I pull the phone out of my pocket
I'm really confused as to why it's easier to remove a glove (that you may easily lose) than lifting a visor or raising your helmet (which, again, you should not even have to do).
-
Re:Quit calling it a moon
That's no moon; that's yo mama https://www.youtube.com/watch?...
-
Re:Rugby players don't wear high tech helmets
I can tell you that the brain-damaged behaviour usually starts long before they start playing the game - and conversely, that the top players (even the forwards) are skillful and intelligent. (Basically, the ability to be thuggish on the field attracts thugs, but thugs seldom if ever move out of the bottom rung sports teams. Paradoxically a lot of top cricketers are thugs when off the field.)
It reminds me of the old joke "Rugby is a game for animals played by gentlemen. Football is a game for gentlemen played by animals"
See also Roy of the Roasters
-
Obligatory:Intel CPU Backdoor Report (Jan 1 2018)
Change log:
2018/01/01 - Added 14 Useful Links. Disable Intel ME 11 via undocumented NSA "High Assurance Platform" mode, Intel CPU CVE links (CVE-2017-5689 CVSS Score 10.0)Intel CPU Backdoor Report
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
[Video] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
@21:43, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.[Quotes] Vortrag:
"the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker"."We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.2017 Dec Update:
Intel ME on recent CPUs may be disabled by enabling the undocumented NSA HAP mode.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links (Added 2018 Jan 1):
Disabling Intel ME 11 via undocumented mode (NSA High Assurance Platform mode)
Blackhat 2017: How To Hack A Turned Off Computer Or Running Unsigned Code In Intel Management Engine
EFF: Intel's Management Engine is a security hazard, and users need a way to disable it
Sakaki's EFI Install Guide/Disabling the Intel Management Engine
Intel ME bug storm: Hardware vendors race to identify and provide updates for dangerous Intel flaws.
CVE-2017-5689: An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs
CVE-2017-5705: Multiple buffer overflows in kernel in Intel Manageability Engine Firmware
CVE-2017-5706: Multiple buffer overflows in kernel in Intel Server Platform Services Firmware -
Obligatory:Intel CPU Backdoor Report (Jan 1 2018)
Change log:
2018/01/01 - Added 14 Useful Links, Intel CPU CVE links (CVE-2017-5689 CVSS Score 10.0), how to disable Intel ME 11 via undocumented NSA "High Assurance Platform" mode.Intel CPU Backdoor Report
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
[Video] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
@21:43, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.[Quotes] Vortrag:
"the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker"."We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.2017 Dec Update:
Intel ME on recent CPUs may be disabled by enabling the undocumented NSA HAP bit.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links (Added 2018 Jan 1):
Disabling Intel ME 11 via undocumented mode (NSA High Assurance Platform mode)
Blackhat 2017: How To Hack A Turned Off Computer Or Running Unsigned Code In Intel Management Engine
EEF: Intel's Management Engine is a security hazard, and users need a way to disable it
Sakaki's EFI Install Guide/Disabling the Intel Management Engine
Intel ME bug storm: Hardware vendors race to identify and provide updates for dangerous Intel flaws.
CVE-2017-5689: An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs
CVE-2017-5705: Multiple buffer overflows in kernel in Intel Manageability Engine Firmware
CVE-2017-5706: Multiple buffer overflows in kernel in Intel Server Platform Services Firmware -
40MHz SPARCstation 2, 16 MB RAM
I have similar projects ongoing, e.g. 40MHz SPARCstation 2, 16 MB RAM: https://www.instagram.com/p/Bd... I wonder about the 486 boot time, the vintage SPARC needs a minute or two to text login. maybe theirs include X,
... or systemd, ... Video and such next: https://youtube.com/renerebe -
Re:Proposition Bet
Not sure why you're defending this. It's only a matter of time before something stupid is wired in, and abused. Already, there's this idea of an amazon thing that lets delivery guys - and any decent hackers - into your house. Some idiot will do the moral equivalent of putting what should be internal sub-functions out in the cloud to save money - along the lines of (but no one will do this actual example of course) the pilot light and safety vs the main gas valve on your heater. Turn on the gas, then light the light - boom. See Dan Tentler about stupid things ALREADY on the internet, found by Shodan searches. https://www.youtube.com/watch?... This isn't made up. It's already here. My friends who do SCADA for small companies that do things like distill ethanol tell me their customers won't let them do it safely/securely (because what else, $$$), and right there you have a few train car loads of boiling alcohol. What could go wrong?
-
Re:highlight
-
Re:Bright shiny objects
Our "real" human visual algorithms are distracted by bright, shiny objects in a similar way. It's not just AI that can be fooled.
Not only bright shiny objects.
-
Re:It's the old "who owns your hardware" story aga
Apple's license famously has a 'cannot be used to design weapons' clause.
-
They should also try magnets.
They seem to mess Bender up a bit.
-
But Not In Dreams
-
Re:Why so much animosity?
That's it? That's all you can respond to? I mean, I'm glad you have no valuable arguments to make against all the things I said and had to attack my anonymity. Kinda sucks for you that the messenger doesn't change the value of the message.
I'm calling those specific douches out because the messages they choose to carry into discussions are always supreme bullshit. There are rare occasions where I agree with them and what they say is a net positive but it is quite rare and if social justice can be dragged into the conversation in any way they ALWAYS end up spouting irrational SJW garbage.
Example in the comments on this Slashdot post: "If you stay on topic and don't be a wanker, you won't violate the code of conduct" while willfully ignoring that Codes of Conduct are exploited by identity politics-pushing SJWs to attempt to use the letter of the law without reference to the spirit, usually in order to gain an advantage within that environment. serviscope_minor knows good and damned well that this horseshit happens in any open source project that SJWs try to overtake.
The Code of Conduct shit is the foothold used to convert the project from a programming one to a political agenda enforcement one. The best move is to refuse to adopt a code of conduct at all since it legitimizes them and takes away the power to enforce the spirit of "don't be a dick" from the admins, but if one must be adopted, the Contribute In any Fucking Way You Want Code Of Conduct, the WTFPL of CoCs is definitely the best choice.
By the way, I'm logged in, asshole. I choose to post anonymously because there are very dangerous people in the SJW world who would be happy to harass and threaten me and attempt to destroy my completely unrelated livelihood for the cardinal sin of showing that they are a societal cancer in an irrefutable way. -
Re:Awesome
The point is that you can't discriminate and refused to sell a good to someone but you can refuse to perform a service.
As Ben Shapiro put it "If you're the one forcing me to do something, you're the bad person because that's tyranny"
https://www.youtube.com/watch?...
And if it's all so stupid, why doesn't your side back down?
-
Re:Linus is Einstein Jr.
Linus created an operating system, while Trump got caught committing treason colluding with a foreign hostile adversary's attack on our democracy.
I don't see the comparison.
Trump is going to prison.
Linus is a good person.
Nearly right!
Linus created an operating system
Linus wrote a kernel. Most of the rest of Linux distributions comes from elsewhere, hence the preferred title GNU/Linux.
while Trump got caught committing treason
No he didn't. If you think otherwise, please give details of what exactly he did and why it is legally treasonous.
treason
n noun
1 (also high treason) the crime of betraying one's country, especially by attempting to kill or overthrow the sovereign or government.
2 (petty treason) historical the crime of murdering a master or husband.colluding with a foreign hostile adversary's attack on our democracy.
collude
n verb come to a secret agreement in order to deceive others; conspire.Governments (like corporations) always collude; in terms of foreign policy, they do little else. But what is this "foreign hostile adversary"? (a multiply redundant expression, by the way). Russia is in no way hostile to the USA, and the only way in which it is an adversary is that it competes in trade - which is what capitalism enjoins - and sometimes declines to do what the US government orders it to do.
Needless to say, there was no "attack on our democracy". First because there was obviously no "attack", and second because there is obviously no "democracy".
https://www.thenation.com/arti...
https://consortiumnews.com/201...
https://www.youtube.com/watch?...
https://www.strategic-culture....
https://scholar.princeton.edu/...
yournewswire.com/jimmy-carter-the-u-s-is-completely-subverted-by-oligarchs/Trump is going to prison.
No, he isn't.
-
Obligatory:Intel CPU Backdoor Report (Jan 1 2018)
Obligatory:Intel CPU Backdoor Report (Jan 1 2018)
Change log:
2018 Jan - Added 14 Useful Links, Intel CPU CVE links (CVE-2017-5689 CVSS Score 10.0), how to disable Intel ME 11 via undocumented NSA "High Assurance Platform" mode.Intel CPU Backdoor Report
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
[Video] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
@21:43, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.[Quotes] Vortrag:
"the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker"."We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.2017 Dec Update:
Intel ME on recent CPUs may be disabled by enabling the undocumented NSA HAP bit.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links (Added 2018 Jan 1):
Disabling Intel ME 11 via undocumented mode (NSA High Assurance Platform mode)
Blackhat 2017: How To Hack A Turned Off Computer Or Running Unsigned Code In Intel Management Engine
EEF: Intel's Management Engine is a security hazard, and users need a way to disable it
Sakaki's EFI Install Guide/Disabling the Intel Management Engine
Intel ME bug storm: Hardware vendors race to identify and provide updates for dangerous Intel flaws.
CVE-2017-5689: An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs
CVE-2017-5705: Multiple buffer overflows in kernel in Intel Manageability Engine Firmware
CVE-2017-5706: Multiple buffer overflows in kernel in Intel Server Platform Se -
Re: Police didn't care
Never seen the Hillary "we came, we saw, he died" clip, did ya?
Evil, evil woman, she is.
-
Re:Flamebait Summary
-
Re: Linus is Einstein Jr.
YMCA Linus, YMCA
-
Water and corn starch
Isn't this what you get when you mix water with corn starch?
Some of the science behind it explained here: https://www.youtube.com/watch?...
-
Hard mode:
It's a corporations video describing how they make steel tubes. The subtlety is extraordinary (except for the part where they say "final solution heat bath". That's just lingual gymnastics. https://www.youtube.com/watch?...
-
Re:We all know the reason why
Trump tweets about moving the capital of Israel and the next day there are protests in the streets. The body count for that tweet was, I believe, 4 dead Palestinians.
He didn't just tweet that out though. They actually formally announced it during a press conference :
https://www.youtube.com/watch?v=yk596vBap7c
So no, in this case, it's not a tweet. And let's go further on that, something the media didn't do. This wasn't a Trump decision. It was a bi-partisan vote in congress that made legislation forcing the executive branch to move the embassy to Jerusalem. The Jerusalem Embassy Act of 1995 established this :
https://www.congress.gov/104/plaws/publ45/PLAW-104publ45.pdf
So really, your beef and those "4 bodies" are on the hands of Congress, which voted 90% in favor of said legislation, on both sides of the aisle (Democrats and Republicans). So you know, just the little things you might want to know about what Trump does, before you accuse "Tweeting". This is far bigger than a single tweet.
Do you have a better example ?
-
Re:Should be looking for Che Guevara
Wait -- so some Buzzfeed editor's twitter feed
...I offered two links, not one. And there are lots more. Communism is cool again — even if not everyone at Buzzfeed think so.
Heck, most of the "Antifa" are not-so-crypto Communists...
... is how you find out what is socially acceptable?
Make an experiment — walk through Greenwich Village in a Che Guevara T-shirt. Then change and walk back in a Trump one. Keep track of the number of middle-fingers and other expressions of hostility.
-
Re: God bless America!!
ME! ME! ME! (probably NSFW, unless you do drugs)
-
Re:Or another way of seeing it
"But now gay people want to force bakers to bake them cakes "
How about another way of seeing it? How about gay people don't want to be denied basic commercial services provided to everyone else? If a baker can tell a gay couple they won't make them a cake they can tell a black couple the same.
A whole bunch of bakeries have been found for you to go and protest and wage lawfare on! I'll be waiting with baited breath while you stir up the left wing mobs to run these folks out of business.
-
Re:Why even bother with deadlines?
Yes, I agree that your plan should have wiggle room. I think that's what you mean. I've always padded my estimates for timelines and budgets, and I try to underplay what I expect to be able to deliver. Not to be dishonest or get away with anything, but more like operating on the Scotty Principle.(definition, source, source)
But basically, I'll take the amount of time that I think something will take. Then I double it. Then I pad it some more. And then, even then, I expect that I'm not actually going to meet my deadline. I run the whole project on the expectation that things will go far worse then expected, even when I'm planning for everything to go wrong, and then I plan ahead for what sacrifices I can live with.
One of the glib ways I've described my whole process is, "I don't make plans. I make contingency plans." That is, I don't spend too much time trying to figure out how things will work if everything goes according to plan. I put my effort into figuring out all the various ways things could go wrong, what I should prioritize in case of a disaster, and various ways I can delivery my highest priorities in the worst-case scenario. Over the years, I've found that it's a much more effective way to think about projects.
-
Re:Why even bother with deadlines?
Yes, I agree that your plan should have wiggle room. I think that's what you mean. I've always padded my estimates for timelines and budgets, and I try to underplay what I expect to be able to deliver. Not to be dishonest or get away with anything, but more like operating on the Scotty Principle.(definition, source, source)
But basically, I'll take the amount of time that I think something will take. Then I double it. Then I pad it some more. And then, even then, I expect that I'm not actually going to meet my deadline. I run the whole project on the expectation that things will go far worse then expected, even when I'm planning for everything to go wrong, and then I plan ahead for what sacrifices I can live with.
One of the glib ways I've described my whole process is, "I don't make plans. I make contingency plans." That is, I don't spend too much time trying to figure out how things will work if everything goes according to plan. I put my effort into figuring out all the various ways things could go wrong, what I should prioritize in case of a disaster, and various ways I can delivery my highest priorities in the worst-case scenario. Over the years, I've found that it's a much more effective way to think about projects.
-
How to disabuse them of the notion
people actually arguing that if you are of any non-white color they you by definition can NOT be a racist.
Yes, there are lots of people who actually believe that.
Those people have never been confronted as follows:
Have them view this video, then ask them if there's any way they can say, with a straight face, that the video's subject is not a racist.
-
Re:dont mess with my thermostat GNAA GAY NIGGERG_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) is the first organization which
gathers G.A.Y N1GGERS from all over America and abroad for one common goal - being G.A.Y N1GGERS.
Are you G.A.Y ?
Are you a N1GGER ?
Are you a G.A.Y N1GGER ?
If you answered "Yes" to any of the above questions, then G_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) might be exactly what you've been looking for!
Join G_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) today, and enjoy all the benefits of being a full-time G_N_A_A member.
G_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) is the fastest-growing G.A.Y N1GGER community with THOUSANDS of members all over United States of America. You, too, can be a part of G_N_A_A if you join today!
Why not? It's quick and easy - only 3 simple steps!First, you have to obtain a copy of G.A.Y N1GGERS FROM OUTER SPACE THE MOVIE and watch it.
You can watch G.A.Y N1GGERS FROM OUTER SPACE on Youtube.Second, you need to succeed in posting a G_N_A_A "first post" on slashdot.org , a popular "news for trolls" website
Third, you need to join the official G_N_A_A irc channel #G_N_A_A on EFNet, and apply for membership.
Talk to one of the ops or any of the other members in the channel to sign up today!
If you are having trouble locating #G_N_A_A, the official G.A.Y N1GGER ASSOCIATION OF AMERICA irc channel, you might be on a wrong irc network. The correct network is EFNet, and you can connect to irc.secsup.org or irc.easynews.com as one of the EFNet servers.
If you do not have an IRC client handy, you are free to use the G_N_A_A Java IRC client by clicking here.
If you have mod points and would like to support G_N_A_A, please moderate this post up.
This post brought to you by Penisbird , a proud member of the G_N_A_A
G_____________________________________naann_______ ________G
N_____________________________nnnaa__nanaaa_______ ________A
A____________________aanana__nannaa_nna_an________ ________Y
A_____________annna_nnnnnan_aan_aa__na__aa________ ________*
G____________nnaana_nnn__nn_aa__nn__na_anaann_MERI CA______N
N___________ana__nn_an___an_aa_anaaannnanaa_______ ________I
A___________aa__ana_nn___nn_nnnnaa___ana__________ ________G
A__________nna__an__na___nn__nnn___SSOCIATION_of__ ________G
G__________ana_naa__an___nnn______________________ ________E
N__________ananan___nn___aan_IGGER________________ ________R
A__________nnna____naa____________________________ ________S
A________nnaa_____anan____________________________ ________*
G________anaannana________________________________ ________A
N________ananaannn_AY_____________________________ ________S
A________ana____nn_________IRC-EFNET-#G_N_A_A________ ________S
A_______nn_____na_________________________________ ________O
*_______aaaan_____________________________________ ________C
Gary Niger gary_niger@G_N_A_A.us G_N_A_A Corporate Headquarters 143 Rolloffle Avenue Tarzana, California 91356
Enid Al-Punjabi enid_al_punjabi@G_N_A_A.us G_N_A_A World Headquarters No.33 Kyutei Bld. 2F, Shinjuku 2-11-7, Shinjuku-ku, Tokyo, Japan ????????2??11-6
Copyright (c) 2003-2015 G.A.Y N1GGER Association of AmericaIch Bindawalross (London) - G_N_A_A (NYSE:
-
Re:"I disapprove of what you say, but..."
...People really need to listen to their elders' take on free speech and democracy and not be a sucker.
What I love about the sucker video is that its intent was to combat fascism, by explaining that fascists segregate a population into groups. Which is exactly what the identity politics is all about. Back then it was the Jews, Free Masons, Catholics and 'Negros' Today it's the Jews, Blacks, LGBT, and Rich people. History is doomed to repeat itself, it seems.