Domain: youtube.com
Stories and comments across the archive that link to youtube.com.
Comments · 87,129
-
Re:Give the money to Elon
Link:
"SpaceX Merlin (& Raptor ) Engine R&D, GPU-Powered"
https://www.youtube.com/watch?... -
I disagree
Hilary was awful, to be sure. But Trump is a whole order of magnitude worse. Trump to this day won't release his tax returns. The reason you want those isn't to see how rich he really is, it's so you know where all his money comes from and who could buy him off. Trump ran a scary, hate filled campaign with exactly the kinds of tactics dictators have used since the 40s (really trying to avoid Godwining the thread here but...). Trump literally said during his campaign he wanted to curtail freedom of press. He Bragged about sexual assault. I can't even remember all the horrible things he said/did.
Here's a good video of Jimmy Carter explaining why Trump won. -
Naw, check these out
This one and this one. Also this
-
Naw, check these out
This one and this one. Also this
-
Re:Give the money to Elon
ITS has an unusually large gamble involved, even by the standards of Musk's companies. Just to pick issue one of many: it's cryogenic composite tanks. Composites and cryogenics don't play well together; there have been attempts in the past, and they were failures. Musk is wanting to take us from "zero launch vehicles of any size using composite cryogenic tanks" to "by far the largest launch vehicle ever built, fully reusable up to a thousand times (for the booster), out of composites". That's a huge jump.
...They're also working on insanely high pressure, full flow staged combustion engines with a rarely used propellant mix, used up to a thousand times each with low maintenance...
Ordinarily I'd agree with you. If we were talking about the usual suspects (NASA/Boeing/LockMart), they'd have a pile of paper at this stage and not much else.
But SpaceX has (had) a giant carbon fiber tank which they successfully burst tested to 2/3rds the design pressure back in November, then blew up testing with liquid nitrogen on February 17th 2017. (Judging by the pictures, it failed at the equatorial seam.)
They've built and tested a 1/3rd scale Raptor engine (which I presume you already knew, but other readers might not). It's the first full flow methane fueled rocket engine ever to be test fired, and only the second full flow design in history. (The first was Russia's RD-270, tested back in 1967.)
Having done those things is impressive enough, but the absurdly fantastic part is how rapidly they've done it. They were in Mississippi at the Stennis Space Center in late 2013 to refurbish and modify the E2 test stand to handle methane. Slashdot covered that. They were done with that process April 21st, 2014. Slashdot didn't notice that part. They used that test stand to validate their design and conducted the scale model test firing on September 26th, 2016, just 2 years, 5 months, and 5 days later. And it worked. They were so sure it would work, they didn't even bother with the customary 'burp' test to be sure it would ignite properly. That's a ridiculously rapid development process for any rocket motor, let alone for a design that's been done only once before in history and never for the fuel they selected. For comparison, development of the F-1 used on the Saturn V started in 1955 for the Air Force and it wasn't until 1965 that it underwent a successful test firing without destroying itself, after three years of self-destructive test firings.
SpaceX have definitely set themselves some very hard tasks, but their demonstrated ability to actually get to the test article stage, and from there to the production stage, and to do so quickly, is unmatched in modern times.
-
I Like Big Endian
And I cannot lie!
-
Wrong you pseudo-intellectual Hipsters
You probably pictured someone droning on and on in front of a chalkboard or PowerPoint presentation. No way that is more engaging or interesting than an episode of The Mechanical Universe
Wrong.
Beyond Wrong.
"The Mechanical Universe", what the fuck I don't even.Fuck off with your hipster pseudo-intellectualism. Here is a lecture on hydrostatic pressure by Walter Lewin. It is more interesting, more entertaining, and more educational than ANY of your pop-science crap. I don't care what privatised iCloud lecture service you are trying to hock, or your bullshit smear stories against Lewin either. The traditional lecture format is better than anything you can come up with with your cheap credit funding and fly by night websites and social media scam promotions.
Get the fuck out of of my fields. Get the fuck out of my hobbies. Get the fuck off the internet you anti-intellectual Hipster frauds!
-
Millennials
-
Doooo bomp bomp
-
Kid heartbroken by surveillance.Recently we had a career fair for high school kids. Everybody was there. The kids loved it.
For one of our displays, we displayed the traffic of a wireless network using a network visualization tool: https://www.youtube.com/watch?... When the kids connected to the wifi, they could see their traffic. They loved doing different things and seeing what happened.
Somebody had surreptitiously placed a surveillance tracker on a kid's phone. Every thing he did caused a burst of traffic to a remote IP. When he scrolled a screen there was a burst of traffic to that IP, When he typed a character there was a burst of traffic to that IP.. He was absolutely heartbroken when he realized what was going on. His wonderful toy instantly became a treacherous enemy. His friends all took a step back and stared at him like he had become contagious.
I didn't know how to make it better. The best I could say was: "If he is being monitored by a government, they didn't really care what he was doing." Nobody seemed reassured..
-
Durability
The new NOKIA line is pretty good. Build like a tank.
But the S8 is faster. So think what you want. A phone that is fragile but fast or a phone that is reasonably fast for internet use, but does not brake.Nokia 6 Teardown - Build Quality Review - Repair Video
From youtube -> The Nokia 6 is one of the STRONGEST phones I have ever tested. It is time to see what makes this phone so ridged. What gives the Nokia 6 its structural strength? Thick metal? A zillion screws? Lets find out in this complete disassembly and teardown video of the Nokia 6.
-
Wakefield discovered this and was villified...
Google Wakefield's discovery of the gut-brain connection in the 90s.
He was destroyed by media and scientists around the world, yet they didn't even seem to notice he wasn't even studying vaccines at all.
Take some time to listen to a very reasonable explanation about his discovery. If you can be patient hearing about anti-vaccine slant, you will hear a fascinating story of discovery about the gut-brain connection.
https://www.youtube.com/watch?v=SeMXlh-f7p8
He's a calm and reasonable man that explains simply and clearly what he did and how he came to his conclusions. If we could all be patient and calm, and listen to all sides of an argument, we may end up at the truth sooner (20 years ago) instead of just today...
-
For a more objective breakdown
-
So What?
Do you want to know why no one cares about whatever "ties" might exist between Clinton and the Russians?
It's because no one thinks that Clinton is in the pocket of Putin. No one has reason to doubt just how clear a line of separation Clinton has drawn between herself and the Putin regime. The record speaks for itself.
This is Trump's problem. Trump keeps making bromance moves and statements about Putin. Trump seems to imply that he likes Putin and would like to be besties. Trump acts weirdly like Chester to Putin's Spike.
https://www.youtube.com/watch?v=UVNHcob3oJg
All this suggests that Trump deeply wants to cozy up with Putin, while Clinton has no such desire. And that's why any such ties between Clinton and the Russians raises no red flags. Too bad for your little conspiracy theory there.
-
Re:You get what you deserve.
https://www.youtube.com/watch?...
Looks like he's on the right track if you ask me.
-
Re:Thank the Universe (I don't believe in a god)
I have yet to see any of the "nothing to see here, move along" partisans come up for an explanation for why Kristian Saucier is serving hard time for having classified information on his unsecured, unauthorized cell phone - despite zero intent to distribute them - while Hillary remains free. Despite having a vastly larger amount of classified information on her unsecured, authorized email server.
Your own link says that he was charged with "one count of unauthorized retention of defense information" and "one count of obstruction of justice."
Was the information on Clinton's server defense information? Was she not authorized to have it? Did she destroy defense (or classified, or U.S. government-owned) information to thwart investigation?
And no, her lawyers decision to withhold personal emails does not qualify as Clinton herself destroying information that is relevant to the investigation.
-
Re:False Flag, or just an idiot?
I would agree 110% with you. Bot or not, the statement that was being repeated on the site was not false.
Looks false to me.
"The unprecedented regulatory power the Obama Administration imposed on the internet is smothering innovation, damaging the American economy and obstructing job creation. I urge the Federal Communications Commission to end the bureaucratic regulatory overreach of the internet known as Title II and restore the bipartisan light-touch regulatory consensus that enabled the internet to flourish for more than 20 years."
Except it is precedented, from the days of John Adams, to Abe Lincoln, to Woodrow Wilson, there is no evidence of any innovation smothered, economy damaged, or job creation obstructed. Furthermore, the Internet was not subject to a bipartisan light-touch, but rather a mixed regulatory reform and openness effort.
Perhaps the frustrating part was the bot-writer realizing the only way the FCC site was going to get enough feedback to be forced to address was to automate it
Any bot-writer who thought an automatic spam screed was worthwhile is only demonstrating their own stupidity.
Sadly, if we were to remove all of the automated bot-driven content, there is likely a pathetic amount of feedback being posted from actual citizens who care enough.
Fine, we'll poll every American.
-
Re:Color Accuracy
Dont forget the vitameatavegemin commercials. I watched the blooper reel of the filming of that commercial. Truly a work of art. Especially that curly haired red haired model who was pitching it... But I don't think that commercial ever ran.
-
Re:120 fps .. someone FINALLY groks UI !
The difference in the UFO test is like night and day to me -- 120 fps is "sharp" and in focus. The lower the frame rate the more "blurry" and "stuttery" it looks.
This isn't rocket science -- just simple physics.
* At 120 Hz refresh rate the UFO moves 1 pixels per quantum.
* At 60 Hz the UFO has to move 2 pixels per quantum.
* At 30 Hz the UFO has to move 4 pixels in the same quantum.Now 4 px/quantum it looks jerky and stuttery-as-hell compared to 1 px/quantum. Not everyone is as blind as you.
When I'm gaming I can _instantly_ tell when the frame rate drops from 60 Hz to 30 Hz. 120 Hz is harder to tell, but it is still noticeable.
First, maybe if you actually _listened_ to professional gamers they would tell you the _exact_ same thing -- micro-stuttering IS important -- maintaining a SOLID, consistent framerate is THE most important thing in UI. Setting the bar low means people don't step up to the plate -- instead they will half-ass it with shitty 30 fps.
Here is a demo of why 30 Hz is crap -- holy lag batman!
* https://www.youtube.com/watch?...
Second, as alluded above with the video, 120 Hz is important to minimize lag input. If you actually knew anything about rendering you would understand LATENCY. Not only rendering latency but INPUT latency.
http://www.anandtech.com/show/...
If Apple's marketing material is accurate, it mentions a change from the 120 Hz sampling rate of the capacitive touch screen in normal use to 240 Hz when the stylus is detected.
Having a sampling rate of 120 Hz when the display is only 30 or 60 Hz is laggy as hell. You want to keep BOTH at high rates, preferably in sync.
If you would listen to artists using tablets they say the same thing. Minimizing input lag along with a high frame rate is extremely important for artists to have a "natural" feel. THAT is the one of the strengths of traditional art forms -- they have 0 ms lag in pencil, brush, etc.
* http://www.cultofmac.com/38847...
Again, go read the Anand review of the iPad Pro Page 9
After a few trials I measured an approximate latency for the iPad Pro of roughly 49ms or 3 frames of delay, while the Wacom Cintiq in this configuration had roughly 116ms or ~7 frames of delay. Itâ(TM)s worth mentioning here that the camera I used was recording at 240 FPS, so these figures could be off by around 4ms even before accounting for human error. Although the Cintiq 22 HD does have higher latency, I wouldnâ(TM)t put too much into this as itâ(TM)s likely that a more powerful computer driving the display would narrow, if not eliminate the gap entirely.
For reference, I estimated the Surface Pro 3 to have about 87 ms or 5-6 frames of delay, and the Surface Book to have about 69 ms or around 4 frames of delay. However, in the case of the Surface devices I was using Fresh Paint, which is a drawing application that isn't exactly comparable to Photoshop but is sufficient for comparison purposes. To give an idea for how much the application has an effect on latency, the Apple Notes app has roughly 38 ms or around 2 frames of latency from when the stylus tip passes over one point to when the inking reaches the same point.
Third, GEE, why are the VR guys targeting 90+ Hz? Because it makes for less nausea.
* http://www.roadtovr.com/sony-c...
Fourth, you are not an Graphics / UI / UX expert. You don't have a fucking clue about the importance of why _every_ millisecond matters in jank free animation -- so stop pretending that you do a
-
"Computer says no"
-
Re:Prior Art?
This isn't a new concept. Actually it is a less efficient version of a method introduced well over a decade ago. https://www.youtube.com/watch?... in that one, the single large "safe zone" is replaced with a grid of car-sized zones which only one vehicle is allowed to enter at a time.
I implemented it with Roombas during a class for my MS, back in 2006 I believe. Others have done similar things with robotic cars.
-
Re:Who is the enemy?
Even non-criminal US citizens (queue the five felonies a day website or whatever it is) should be more worried about the US government than the faraway Russian government. If you haven't noticed the US has over 20% of the prisoners on Earth while only having 5% of the world population.
They're trying to build a prison.
captcha: bleaklyWe have such a high prison population because of that pesky 14th amendment. The USA was founded on slavery and many of the people in power have managed to not only bring back the institution, but make it not only palatable but desirable.
Black guy speeding--gets pulled over for speeding. Black guy driving below the speed limit--gets pulled over for driving suspiciously. Black guy driving exactly the speed limit--gets pulled over for not going with the flow of traffic. Black guy ends up taking public transport and walking--gets harassed because he's called in for being a suspicious person. Black guy gets some weed to take a load off because he's being harassed by police--gets busted for possession and sentenced 20 years in a private prison because he's a hardened criminal with multiple police run-ins.
-
And Demolition Man is prophetic again...
https://www.youtube.com/watch?...
(Okay it's not quite AI assessing of a subject but can this type of AI assist be far behind?)
-
Re:"Russia's growing aggression toward the USA..."
-
Re:Seems like Microsoft isn't ready for USB-C
Aside from Thunderbolt (which is pointless with USB 3.1), micro USB already does all of that. The only benefit USB-C has is that it can be connected upside down, which isn't enough to outweigh the benefits of micro USB.
MicroUSB does NOT provide video capability, unless you use one of those crappy dongles that does video compression. USB-C not only does actual full bandwidth video, but in the Thunderbolt 3 configuration it even provides a friggin PCI-e interface. They even make external GPU enclosures that allow you to run an actual desktop GPU on a laptop if you'd like, and it works pretty well.
https://www.youtube.com/watch?...
Not only that, but in terms of physical durability, USB-C will WAY outlast MicroUSB.
-
Re:Who is the enemy?
Even non-criminal US citizens (queue the five felonies a day website or whatever it is) should be more worried about the US government than the faraway Russian government. If you haven't noticed the US has over 20% of the prisoners on Earth while only having 5% of the world population.
They're trying to build a prison.
captcha: bleakly -
Here's an example
Patriots' head coach Bill Belichick taking care of his luxury product.
-
Re:Well, it's been a few years now.
They've gone to plaid!
-
Re:Stallman is RIGHT.
Distribution IS a use of the code. What are you distributing if not code? And unlike the *BSD licenses, I am restricted in how I distribute it. The minute I sell it to someone else, they can do whatever with the source code, including giving it away. This is a disincentive to incorporating GPL'd code into projects that you're trying to make a living off. And please, don't start with the "sell support bs." Very few products make money that way - which is one reason why there's so much abandoned code out there - you can't make enough money supporting it to eat. Just look at all the distros that died trying to make that work.
Software doesn't just write itself, you know. It's also no different than any other product - it's a product, not a religion or a way of life. And look at how Android is now being abandoned by Google. It's like in Spaceballs - "We're not doing it for the money. We're doing it for a shit load of money."
I guess they got tired of paying a royalty to Microsoft on every phone sold, so this was the way to kill two birds with one well-placed rock.
-
SquareTrade Video
Here's a video of the drop tests:
https://www.youtube.com/watch?...
It has a high dislike ratio and comments are disabled, which are often major red flags. Anyone know why? -
Re:Pencil "lead" trick
Like this: https://www.youtube.com/watch?...
-
Re:120 fps .. someone FINALLY groks UI !
I was an early adapter of 4K and my one monitor only does 30 Hz. It SUCKS compared to my other 120 Hz monitor. At least 4K in portrait mode makes for beautiful reading of PDFs.
Just because you are blind to the differences between 30, 60, and 120 fps doesn't mean the rest of us are.
But I guess it is easier to criticize something you don't know what the fuck you are talking aboutt then to admit your ignorance.
-
Obama said your job is not coming back
A) It's not "progressives" that said their jobs weren't coming back, it's the industry leaders.
Obama telling people their jobs are not coming back, specifically to Carrier people in Indiana. He made a joke about what is Trump going to do, he doesn't have a magic wand. Trump used this new fangled device called a PHONE to help those people, something apparently beyond Obama's ability.
Second Obama video where he says he is going to kill off coal mining jobs. Since Trump took over about half the jobs Obama got rid of in that area have been brought back.
So YES, it is PROGRESSIVES saying the jobs are not coming back and that THEY are going to be responsible for it. Meanwhile Trump is using a PHONE CALL to get them back. Obama should be embarrassed, and so should you for making your comment.
-
Obama said your job is not coming back
A) It's not "progressives" that said their jobs weren't coming back, it's the industry leaders.
Obama telling people their jobs are not coming back, specifically to Carrier people in Indiana. He made a joke about what is Trump going to do, he doesn't have a magic wand. Trump used this new fangled device called a PHONE to help those people, something apparently beyond Obama's ability.
Second Obama video where he says he is going to kill off coal mining jobs. Since Trump took over about half the jobs Obama got rid of in that area have been brought back.
So YES, it is PROGRESSIVES saying the jobs are not coming back and that THEY are going to be responsible for it. Meanwhile Trump is using a PHONE CALL to get them back. Obama should be embarrassed, and so should you for making your comment.
-
Re: The Author is Dead
You've seen a white supremacist with a Pepe pin?
"[W]e've all seen at least one white supremacist wearing a Pepe badge." Maybe a punch in the head would jog your memory?
-
Re:Brain surgery
They will be "Alternative Facts".
https://www.youtube.com/watch?v=OdV_8TGswRA -
And my meth dealer told me coke was bad for me...
I don't know which idea is more laughable, that Facebook is the altruistic corporation truly concerned about the greater good or that Facebook has any credibility as an authority on "news". Facebook (and Twitter for that matter) knowingly and willingly turned a blind eye to many of the anti-vaxxer, 9-11 truther, etc. groups in pursuit of the almighty subscriber count and the ad revenue. Fake news is now the cause celeb and they are shocked, shocked that there is gambling going on in here.
-
Re:Sounds Familiar...
Normally I'd agree with you but since you are trying to compare putting Obama in the White House to putting Donald Trump in the White House I'm going to have to disagree here.
So when you don't like the outcome you think being a hypocrite is ok.
Obama, whatever you may think of him, at least had a multi digit IQ that allowed him to answer questions from reporters
Trump answers them too.
skin that was too thick for his soul to be injured by Saturday Night Live skits
I'm not sure that his "soul" is being "injured". Also, Obama had his own personal feud with Fox News.
and had a clear idea of which countries he had bombed
But apparently didn't know how many states were in the country he was the President of.
Let's get real here. As much as I think Trump is prone to buffoonery, he managed to become a billionaire. And after years of political correctness and a President who refused to use the phrase Islamic terrorism, a guy like Trump was needed to call a spade a spade and shake things up.
-
He's not a likable person
I've listened to a few interviews e.g. this one https://www.youtube.com/watch?..., and it's hard to bear his hostility and his insisting on not being interrupted while interrupting the interviewers constantly. As much as I value many of his arguments for Free Software â" his behavior is not suitable for promoting his cause, or make it easy for people not already convinced to endorse Free Software.
-
Relevant video:
You can watch the segment on youtube here.
-
Ted Cruz nailed it in the primaries
With this ad. Cruz even nailed the look: it's the professional industries where the suits run everything. Very effective rhetoric.
Consistently, the people I have seen who are the biggest backers of any public policy or tech trend that reduces the need for people in the workplace are either:
1. The rich.
2. People in industries that seem to be semi-immune.We might now get some real traction on a democratic debate over efficiency vs human cost because at some point, optimizing for efficiency leads to dystopian results.
-
Re:Just the beginning
"So. People are stupid if they disagree with you?"
You make it sound like its not complicated, it is VERY complicated because science is discovering people are NOT authorities on what they do and don't know about themselves and the errors in their own views and reasoning. See the science:
-
Obligatory:Intel CPU Backdoor Report (May 5 2017)
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.
What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel.""the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."
"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."
"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."
"We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software1. Introduction, what is Intel ME
Short version, from Intel staff:
Re: What Intel CPUs lack Intel ME secondary processor?
Amy_Intel Feb 8, 2016 9:27 AMThe Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit
-
Obligatory:Intel CPU Backdoor Report (May 5 2017)
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.
What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel.""the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."
"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."
"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."
"We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software1. Introduction, what is Intel ME
Short version, from Intel staff:
Re: What Intel CPUs lack Intel ME secondary processor?
Amy_Intel Feb 8, 2016 9:27 AMThe Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit
-
Obligatory:Intel CPU Backdoor Report (May 5 2017)
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.
What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel.""the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."
"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."
"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."
"We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software1. Introduction, what is Intel ME
Short version, from Intel staff:
Re: What Intel CPUs lack Intel ME secondary processor?
Amy_Intel Feb 8, 2016 9:27 AMThe Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit
-
Obligatory:Intel CPU Backdoor Report (May 5 2017)
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.
What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel.""the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."
"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."
"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."
"We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software1. Introduction, what is Intel ME
Short version, from Intel staff:
Re: What Intel CPUs lack Intel ME secondary processor?
Amy_Intel Feb 8, 2016 9:27 AMThe Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit
-
Obligatory:Intel CPU Backdoor Report (May 5 2017)
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.
What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel.""the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."
"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."
"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."
"We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software1. Introduction, what is Intel ME
Short version, from Intel staff:
Re: What Intel CPUs lack Intel ME secondary processor?
Amy_Intel Feb 8, 2016 9:27 AMThe Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit
-
Obligatory:Intel CPU Backdoor Report (May 5 2017)
The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.
What we know about Intel CPU backdoors so far:
TL;DR version
Your Intel CPU and Chipset is running a backdoor as we speak.
The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.
30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel.""the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."
"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."
"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."
"We can permanently monitor the keyboard buffer on both operating system targets."
Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).
Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software1. Introduction, what is Intel ME
Short version, from Intel staff:
Re: What Intel CPUs lack Intel ME secondary processor?
Amy_Intel Feb 8, 2016 9:27 AMThe Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit
-
Re:Commercial?
Meh, that's for wooses. Russian solution is more economical.
-
I guess someone was at DEFCON 23.
Someone evidently saw this talk and decided to try it at home. These vulnerabilities have been public for a couple years now.