Slashdot Mirror

← Back to Stories (view on slashdot.org)

The "Rickmote Controller" Can Hijack Any Google Chromecast

Posted by samzenpus on from the never-going-to-give-you-up dept.

redletterdave writes Dan Petro, a security analyst for the Bishop Fox IT consulting firm, built a proof of concept device that's able to hack into any Google Chromecasts nearby to project Rick Astley's "Never Gonna Give You Up," or any other video a prankster might choose. The "Rickmote," which is built on top of the $35 Raspberry Pi single board computer, finds a local Chromecast device, boots it off the network, and then takes over the screen with multimedia of one's choosing. But it gets worse for the victims: If the hacker leaves the range of the device, there's no way to regain control of the Chromecast. Unfortunately for Google, this is a rather serious issue with the Chromecast device that's not too easy to fix, as the configuration process is an essential part of the Chromecast experience.

79 of 131 comments (clear)

  1. Maybe it's just me ... by caferace · · Score: 2
    But I find that kind of awesome. :)

    Kind of.

    1. Re:Maybe it's just me ... by Isca · · Score: 1

      It's awesome except for the 35 dollars someone is out.

      Hopefully it has a tool in it that deauth's it again when you are done to make it just inconvenient.

    2. Re:Maybe it's just me ... by caferace · · Score: 2

      There is always a fix. I doubt people are going to be wardriving for Chromecasts. Does it suck from a security standpoint? Yes. But the guys at least have a sense of humour. Better than goatse, right?

    3. Re:Maybe it's just me ... by CanHasDIY · · Score: 4, Funny

      Per TFA - you can totally point it to goatse rather than Rick Astley.

      Although for some people, there's little actionable difference between the two.

      --
      An enigma, wrapped in a riddle, shrouded in bacon and cheese
    4. Re:Maybe it's just me ... by caferace · · Score: 2

      But think of the children! Oh. Wait. Yeah. They'd be scarred for life either way.

    5. Re:Maybe it's just me ... by 2muchcoffeeman · · Score: 4, Informative

      That's not what it says in the post: "The 'Rickmote,' which is built on top of the $35 Raspberry Pi single board computer, finds a local Chromecast device, boots it off the network, and then takes over the screen with multimedia of one's choosing. ... But it gets worse for the victims: If the hacker leaves the range of the device, there's no way to regain control of the Chromecast."

      So ... yeah, it's never gonna give you up.

      --
      Prevent Windows piracy. Use Linux instead.
    6. Re:Maybe it's just me ... by Anonymous Coward · · Score: 1

      The story is sort of bullshit though; Chromecasts have a factory reset function. So getting control back is not as simple as fire up Netflix and tell it to cast - but it IS as simple as firing up the Chromecast app itself and resetting the Chromecast and configuring it back to your network. Not that big of a deal really. No, my mom wouldn't get through it until she called me for help first. But my kids would get through it on their own.

    7. Re:Maybe it's just me ... by Anonymous Coward · · Score: 2, Informative

      I wondering if that part of the article is correct. There is a hard reset button on the chromecast that you can use to force it into initialization mode. I'm wondering if that could be used to gain back control of it.

    8. Re:Maybe it's just me ... by gbjbaanb · · Score: 1

      Did you even read the summary?!

      But it gets worse for the victims: If the hacker leaves the range of the device, there's no way to regain control of the Chromecast

    9. Re:Maybe it's just me ... by Anonymous Coward · · Score: 5, Funny

      Holy shit! I was pretty surprised to hear about a security hole in Chromecast, but I was really flabbergasted to hear about your DOG THAT CAN FUCKING READ!

    10. Re:Maybe it's just me ... by Altus · · Score: 2

      Once you have set a chrome cast playing some media it is doing it all on its own and it requires commands from another device to get it to stop... or it comes to the end of the media but it could be set up to repeat over and over. If you can't control the chromecast anymore its pretty useless.... I'm guessing there is a way to factory reset the device and start over.

      --

      "In America, first you get the sugar, then you get the power, then you get the women..." -H. Simpson

    11. Re:Maybe it's just me ... by chuckugly · · Score: 1

      I doubt it - I suspect the CC merely has no way to reenter deauth without outside intervention; you'd probably need a non-malicious version of Rickmote to re-deauth it and have it ready to set up again.

    12. Re:Maybe it's just me ... by Anonymous Coward · · Score: 5, Informative

      25 seconds of holding a button, and your device is yours again. It's annoying, but it's not like an attacker is stealing your identity and financial information with this.

      https://support.google.com/chr...

      There are two ways to Factory Data Reset (FDR) your Chromecast:
      - Factory Data Reset your Chromecast from the Chromecast app. You will find the option to FDR under ‘Settings’ or ‘Menu’ or
      - Physically hold down the button on your Chromecast for at least 25 seconds or until the solid light begins flashing.

    13. Re:Maybe it's just me ... by profplump · · Score: 2

      But you can just hard-reset the Chromecast and reconfigure it for the network you want it to use. If the article says otherwise it's wrong.
      https://support.google.com/chr...

      To quote the manual:
      "There are two ways to Factory Data Reset (FDR) your Chromecast: Factory Data Reset your Chromecast from the Chromecast app. You will find the option to FDR under ‘Settings’ or ‘Menu’ or Physically hold down the button on your Chromecast for at least 25 seconds or until the solid light begins flashing."

    14. Re:Maybe it's just me ... by JDeane · · Score: 2

      We could combine the two... maybe a Rick Roll Goatse mega combo?

    15. Re:Maybe it's just me ... by khellendros1984 · · Score: 1

      I suspect that the article and summary are inaccurate. There's a factory reset button on the Chromecast, and it from the description of the device, it's just de-authing the CC from the network it's connected to, configuring it to connect to the Pi, and sending a command to display a link. I've used that button to delete the config and set up the CC at a friend's house, and none of the text descriptions on this story make it sound like the Rickmote is doing anything else.

      --
      It is pitch black. You are likely to be eaten by a grue.
    16. Re:Maybe it's just me ... by viperidaenz · · Score: 4, Informative

      ... there's no way to regain control of the Chromecast unless you RTFM and press the reset button

    17. Re:Maybe it's just me ... by exomondo · · Score: 1

      Unlikely sir. They spell and pronounce their name differently.

    18. Re:Maybe it's just me ... by Anonymous Coward · · Score: 1

      goatse is a much better analogy to depict large security holes.

    19. Re:Maybe it's just me ... by deek · · Score: 5, Funny

      Hence, for the vast majority, there's no way to regain control of the Chromecast.

    20. Re:Maybe it's just me ... by davester666 · · Score: 2

      yes, the reset procedure is to apply a significant amount of force using a blunt object.

      --
      Sleep your way to a whiter smile...date a dentist!
  2. Goatse by tippe · · Score: 1

    Couldn't he have just displayed a Goatse and have been done with it? What he did was in poor taste; don't security researchers have any professionalism any more? Seriously, there should be a law against this sort of thing...

    1. Re:Goatse by gmagill · · Score: 1

      With most web-email showing previews of enclosed links, it's much harder to accomplish the rolling of Rick via email. This guy deserves our praise for seeking out creative alternatives.

    2. Re:Goatse by viperidaenz · · Score: 1

      I just get a message saying "You've been rickrolled! EPIC EPIC EPIC" followed by "This plugin is disabled"

      Rickfail?

  3. What an awesome security hole! by NoNonAlphaCharsHere · · Score: 4, Funny

    That's right up there with the Windows Explorrer thing that executed arbitrary code from a bitmap file when you visited the directory it lived in. Kudos to Google for keeping up.

  4. Better version of TFA by fph+il+quozientatore · · Score: 5, Informative

    Article in original content format, without ads: here

    --
    My first program:

    Hell Segmentation fault

    1. Re:Better version of TFA by NoNonAlphaCharsHere · · Score: 2, Insightful

      Gosh, I wonder what item on YouTube THAT could point to...

    2. Re:Better version of TFA by paiute · · Score: 2

      Article in original content format, without ads:

      It just isn't the same with a 15 second ad tacked on the front.

      --
      If Slashdot were chemistry it would look like this:Cadaverine
    3. Re:Better version of TFA by Anonymous Coward · · Score: 1

      It has been modded informative. Therefore, it must be safe to . . . Noooooooooooooooooooooooooooooooooooooooooooooooooooooo!

  5. Secure pairing is hard by Animats · · Score: 4, Interesting

    This is a general problem with devices that are "paired". How do you securely establish the initial connection, when neither side knows anything about the other?

    The secure solutions involve some shared secret between the two devices. This requires a secure transmission path between the devices, such as typing in a generated key (like a WPA2 key) or physically carrying a crypto key carrier to each device (this is how serious cryptosystems work).

    Semi-secure systems involve things like creating a short period of temporary vulnerability (as with Bluetooth pairing). There's a scheme for sharing between cellphones where you bump the phones together, and they both sense the deceleration at close to the same time.

    1. Re:Secure pairing is hard by Anonymous Coward · · Score: 1

      "The secure solution involve some shared secret between the two devices." You mean like the TV displaying a code and the user entering it on the device he's pairing with?
       
        Of course that's probably incredibly difficult to implement and places such a huge burden on the user. /sarcasim

    2. Re:Secure pairing is hard by tlhIngan · · Score: 2

      This is a general problem with devices that are "paired". How do you securely establish the initial connection, when neither side knows anything about the other?

      The secure solutions involve some shared secret between the two devices. This requires a secure transmission path between the devices, such as typing in a generated key (like a WPA2 key) or physically carrying a crypto key carrier to each device (this is how serious cryptosystems work).

      Semi-secure systems involve things like creating a short period of temporary vulnerability (as with Bluetooth pairing). There's a scheme for sharing between cellphones where you bump the phones together, and they both sense the deceleration at close to the same time.

      Or, given the nature of the device as it's physical, it can be a sticker on the device itself. Or given that it has to be connected to a TV, the security pairing code can be displayed on the TV as well and the user enters that code in.

      The nature of the Chromecast means there is a secure physical channel to allow such communications to take place.

    3. Re:Secure pairing is hard by discord5 · · Score: 1

      This is a general problem with devices that are "paired". How do you securely establish the initial connection, when neither side knows anything about the other?

      The problem isn't the initial connection really. Sure, there's an attack window there, but if it weren't for the actual problem it wouldn't have been as easily exploitable as it appears to be. The problem is that it is trivial once the Chromecast is connected to the WLAN to force it to reconfigure.

      The Youtube video of his presentation (no transcript, sorry, go listen to it in the background while doing something else) makes it clear that it's trivially simple to get the device looking for a suitable partner again. If I understand it correctly the attacker sends one (or several) deauth frame(s) to the network and within 5 seconds the Chromecast will start looking for a new network at which point the attacker can take over control of the device.

      The thing is, this was a userfriendly feature for when you're using your Chromecast device on other networks. If the developers had required a physical button press (on that nice reset button would've been fine), the attack window would've been just during the pairing, which is a much smaller attack window. While it doesn't take away the pairing issues you mentioned, but the beauty of this attack really lies in how easy it is to make Chromecast hop onto another network.

      Semi-secure systems involve things like creating a short period of temporary vulnerability (as with Bluetooth pairing).

      Which is the case as far as I understand it. The chromecast is vulnerable until it is configured. The attack just makes reconfiguration trivial because there's no physical intervention required.

    4. Re:Secure pairing is hard by bill_mcgonigle · · Score: 1

      Or given that it has to be connected to a TV, the security pairing code can be displayed on the TV as well and the user enters that code in.

      Anything the Chromecast can connect to is at least 720p - plenty for a QR code with a fairly beefy key.

      --
      My God, it's Full of Source!
      OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
    5. Re:Secure pairing is hard by viperidaenz · · Score: 1

      How does Diffie-Hellman key exchange provide identification of the other party?
      It allows the exchange of secret data (keys) over an insecure link.
      It is not possible to determine who the other party is. That's where PKI comes in, which doesn't require Diffie-Hellman key exchange at all.

    6. Re:Secure pairing is hard by tepples · · Score: 1

      Good luck taking a picture of a QR code with a desktop computer. A 40-bit key fingerprint using eight base32 characters should be enough for home use.

    7. Re:Secure pairing is hard by Miamicanes · · Score: 3, Insightful

      Canonical Diffie-Hellman is vulnerable to MITM attacks when both parties are mutually-anonymous. There are ways to reduce the risk, but at the end of the day, unless at least one party knows who it's supposed to be talking to & can independently verify the other party's identity and the integrity of key-exchange traffic supposedly taking place with it, you can never know for sure that you aren't having a securely-encrypted conversation with an attacker.

      AFAIK, there's no currently known way to achieve 100% mutually-anonymous key exchange that isn't also vulnerable to MITM. Every few months, someone proposes one, and someone like Schiener usually takes one look at it and casually mentions a half-dozen ways it can be defeated in between sips of coffee.

    8. Re:Secure pairing is hard by Sloppy · · Score: 1

      How does Diffie-Hellman key exchange provide identification of the other party? .. It is not possible to determine who the other party is

      It's possible. It requires an extra piece beyond the DH, but that extra piece isn't PKI. The user is the trusted introducer. The user looks around and says "Yep, these are the only two devices physically here that I have ordered to peer, right now." They are identified by being in the right place at the right time, triggered by the user saying "Now." That's a pretty good way to do things unless you're just totally surrounded by spies.

      --
      As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
    9. Re:Secure pairing is hard by viperidaenz · · Score: 1

      Yes, because a user physically looking around can see all the wifi devices in range.

      Don't know about you but I can't see any electromagnetic radiation below 400THz

  6. Nowhere in TFA by OverlordQ · · Score: 3, Insightful

    If the hacker leaves the range of the device, there’s no way to regain control of the Chromecast

    Nowhere in TFA does it say why a Factory Data Reset wont fix that.

    --
    Your hair look like poop, Bob! - Wanker.
    1. Re:Nowhere in TFA by Anonymous Coward · · Score: 1

      So Rick is only going to give you up after a Factory Data Reset?

    2. Re:Nowhere in TFA by rsborg · · Score: 1

      So Rick is only going to give you up after a Factory Data Reset?

      The lyrics take on a whole new meaning with this exploit :)

      --
      Make sure everyone's vote counts: Verified Voting
    3. Re:Nowhere in TFA by reg · · Score: 1, Informative

      http://allaboutchromecast.com/chromecast-how-to-guide/reset-chromecast-factory-data-reset-fdr/

    4. Re:Nowhere in TFA by Anonymous Coward · · Score: 1

      It's not really much of a fix if the attacker can just do the same attack again immediately.

    5. Re:Nowhere in TFA by rreay · · Score: 2

      Because the summary is wrong. The article says exactly the opposite of the summary. (bold mine)

      But it gets worse for the victims: If the hacker's Rickmote stays within the range of the device, even if you turn the Chromecast off and on again, it will constantly reconnect to the Rickmote â" "thus the Rickroll keeps going indefinitely," Petro told BI.

    6. Re:Nowhere in TFA by davidwr · · Score: 1

      It's not really much of a fix if the attacker can just do the same attack again immediately.

      From TFS:

      If the hacker leaves the range of the device...

      --
      Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  7. Re:Doesn't this require access to your network by Anonymous Coward · · Score: 5, Informative

    Quote the article: "When the Chromecast receives the “deauth” command, it returns to its configuration mode, leaving it open for a device — in this case, the Rickmote — to configure it. At that point, the Rickmote tells the Chromecast to connect to its own WiFi network, at which point, Google’s streaming stick is effectively hacked."

    Imagine Dr. Evil making air quotes: "Security."

  8. Where's the factory-reset button? by davidwr · · Score: 2, Interesting

    If the hacker leaves the range of the device, there's no way to regain control of the Chromecast.

    Where's the factory-reset button when you need it?

    Consumer-electronics that aren't so cheap they are "disposable" should have a "reset to last known good state" hardware button and for some types of devices, a "save current state as known good state" hardware button. If the second button is missing, the "factory fresh state" will forever be the only "last known good state."

    The second button is needed for installing "bios-level" anti-theft software and the like that can't be undone by the first button, if the customer wants to make that software non-uninstallable by a security-savvy thief should it be stolen.

    For some products, one or both of these buttons may require opening the case and breaking tamper-evident seals, but they should exist, and they should be true hardware buttons, not defeat-able by software.

    They need to be hardware buttons so a virus or malware doesn't "press" them, defeating the purpose of being able to "roll back" the machine to a previous state.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
    1. Re:Where's the factory-reset button? by Anonymous Coward · · Score: 5, Informative

      http://www.tnet.com/products/devices/chromecast/resetbutton

      it does.

    2. Re:Where's the factory-reset button? by Threni · · Score: 5, Informative

      > Where's the factory-reset button when you need it?

      It's on the Chromecast.

      > They need to be hardware buttons

      It's a hardware button.

    3. Re:Where's the factory-reset button? by davidwr · · Score: 1

      Please forgive me for taking the article summary at face value when it said

      If the hacker leaves the range of the device, there's no way to regain control of the Chromecast.

      The only way that could be true is if there was no properly functioning hardware reset button.

      I've been around /. awhile, I really should know better than to assume article summaries are accurate.

      --
      Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  9. Note to Google Users: by Jane+Q.+Public · · Score: 1, Insightful

    If Google can "remotely configure" your device, then so can someone else if they're determined enough.

    Duh.

    1. Re:Note to Google Users: by gl4ss · · Score: 1

      sure, if you care that much about taking over the raspberry pi of the attacker..

      --
      world was created 5 seconds before this post as it is.
  10. Secure pairing is hard by QuantumReality · · Score: 1

    If you would know anything about cryptography possibilities then you would know that you can exchange data even using unsecured channel... Use standard with asymmetric key encryption. Even simple DiffieÃ"Hellman key exchange solves all your problems.

  11. Re:Pardon for clearification by sjames · · Score: 1

    With a Pringles can.

  12. Re:Doesn't this require access to your network by Xylantiel · · Score: 2

    Seems like this is trivial to fix by requiring a physical button press to return to the configuration mode after the Chromecast is successfully configured onto a wifi network.

  13. Re:Soylent News: By white people for white people. by ArcadeMan · · Score: 1

    I was waiting for an ironic "Pepperidge Farm Remembers" ending.

    --
    Get free satoshi (Bitcoin) and Dogecoins
  14. Wardriving + Rickmoting = ?? by Baby+Duck · · Score: 1

    Cruisin' down the street
    Real slow
    While the Chromecasters be yellin'
    RICKROLLED!

    --

    "Love heals scars love left." -- Henry Rollins

  15. Re:Doesn't this require access to your network by m00sh · · Score: 2

    Quote the article: "When the Chromecast receives the “deauth” command, it returns to its configuration mode, leaving it open for a device — in this case, the Rickmote — to configure it. At that point, the Rickmote tells the Chromecast to connect to its own WiFi network, at which point, Google’s streaming stick is effectively hacked."

    Imagine Dr. Evil making air quotes: "Security."

    In order to give the deauth command, you have to be in the same network as the Chromecast.

    So, you can't rick roll a chromecast unless you find a way to get into the network that has the chromecast.

    I can see this being a problem in offices and other places where a large number of people connect to the same wifi hotspot but this is not a problem at home.

    An easier way to rick roll would be to just pull out your youtube app and then start rick roll on the chromecast. This will stop whatever it is playing before and play the rick roll video.

  16. News just in by viperidaenz · · Score: 1

    Person with access to your local network can configure network configurable device.

  17. Google is eternally "Beta" by default by Bob_Who · · Score: 1

    I think I read that in a EULA somewhere....

  18. Re:Doesn't this require access to your network by Anonymous Coward · · Score: 1

    You do not have to be on the network to broadcast deauth commands.

  19. Mario Goatse by tepples · · Score: 2

    I'm not sure kids should be exposed to Mario Goatse.

  20. Anti-glasshole version by Stickerboy · · Score: 4, Interesting

    Waiting for the Google Glass version Rickmote. That one has endless possibilities...

    --
    Light a fire for a man and he'll be warm for a day. Light a man on fire and he'll be warm for the rest of his life.
  21. BROWqjuTM0g is a Rickroll. This isn't. by tepples · · Score: 1

    That's a looped Rickroll. Instead, have this video about music on android.

  22. The point is the 35 USD by tepples · · Score: 1

    If it was built around a $200 Dell Laptop with an Intel Atom Processor, would you list all of that, too?

    No. And the reason is that a $200 netbook costs a lot more than $35. Part of the perceived embarrassment is how cheap it is to build a rig that remotely 0wns someone's Chromecast device. If mentioning the Raspberry Pi brand is too much of a Slashvertisement to you, would "a $35 single-board computer" sound more honest?

  23. Re:Pardon for clearification by Lehk228 · · Score: 1

    because google potato'd the security

    --
    Snowden and Manning are heroes.
  24. Re:Doesn't this require access to your network by Anonymous Coward · · Score: 1

    wtf are you talking about? at what point did you get the impression that you have to be on the network?

    The process is to use a deauth attack (you don't have to be on the network to do that) to knock the chromecast off the network at which point you can connect to the chromecast's own wifi network that is used for setup and take control of it.

  25. It's not his canine that can read by davidwr · · Score: 1

    It's his deity. He's dyslexic.

    As to whether his deity can copulate or not... well, what happens on Mount Olympus stays on Mount Olympus... except in the case of pregnancies - those are the things of which legends are born.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  26. Comment removed by account_deleted · · Score: 1

    Comment removed based on user account deletion

  27. Re:Pardon for clearification by exomondo · · Score: 2

    "boots it off the network"

    How exactly is that accomplished?

    Through a deauthorization attack

  28. or not ... Re:Secure pairing is hard by davidwr · · Score: 1

    unless at least one party knows who it's supposed to be talking to & can independently verify the other party's identity and the integrity of key-exchange traffic supposedly taking place with it,

    For short-range communications between devices operated by human beings, this isn't as hard as one might think.

    Let's say I want my cell phone to communicate with a kiosk at McDonald's, without having to rely on the phone network to do the authentication.

    Behind the counter, McDonalds has a poster-sized, easy-to-photograph representation of the kiosk's public key.

    Now to exchange keys, I walk up to the kiosk and press a button. It puts a random picture on the screen. My phone takes a picture of it, combines it with a random picture I create, my public key, and a suggested random private key, then it encrypts it with the kiosk's public key. My phone tells me to turn it towards the kiosks's camera. It displays the random picture the kiosk created for a few seconds, then the random picture I created for a few seconds, then a pictorial representation of my public key for a few seconds, then a pictorial representation of the entire encrypted message for a few seconds. After all of this is done my phone tells me to flip it around again. The kiosk sends me new shared key that is based on the suggested shared key that I sent to it, but this time it is encrypted with my public key.

    Now we can talk and I can place my order and provide my credit card information securely.

    This all works because I got the Kiosk's public key from a trusted, independent source - the sign behind the counter that some human being put up and which the McDonald's employees would've noticed if it had changed recently (e.g. if a hacker had replaced the real sign with his own fake one and concurrently replaced the kiosk's public key with one he controlled).

    By the way, this is a hypothetical example - there are easier ways to buy burgers than to spend half a minute or more playing "can we trust each other" with a kiosk.

    Can this method be defeated? Yes - but you defeat it by removing the assumption that the McDonald's employees are paying attention to their surroundings for any suspicious changes and the assumption that the McDonald's employees are loyal enough to their employer to not "look the other way" if they notice a change or worse, collude with each other to BE the "man in the middle." But at this point, it's no different than walking into a bank and dealing with a crooked bank teller.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  29. Re:Doesn't this require access to your network by Cley+Faye · · Score: 1

    Why? It's a matter of updating the firmware. There already is a physical button on chromecast devices. It's also stated that holding the button down 25 seconds will factory reset a chromecast.

  30. Finally this can be achieved easily by darkNeko · · Score: 1

    The ultimate trolling (obligatory xkcd) http://xkcd.com/351/

  31. "Python Code" by khundeck · · Score: 1

    First: This is awesome. Of course I love this little hack that exploits some pretty serious default misconfguration.

    Second: I hate seeing "code" which is really just a 'wrapper' around other tools. This isn't 'Python code' as much as a 'glorified shell script that relies on Linux free tools!".. maybe some attrition for:

    airplay-ng

    line 138: os.system("aireplay-ng -D -0 0 -a" + network.MAC + " mon0 &")

    Linux Wireless Network tools????

    line 255: 'iwlist wlan0 scan 2>/dev/null',

    Third: It really doesn't matter, because 1) Did I mention this is COOL shit. :-)

    KPH

    1. Re:"Python Code" by superwiz · · Score: 1

      did you say line 138? And then line 255? That's a LOT for a python script. Sounds like python is doing most of the setup work.

      --
      Any guest worker system is indistinguishable from indentured servitude.
  32. somebody should start a petition by superwiz · · Score: 1

    The White House takes suggestions, doesn't it? Someone should start a petition to treat Rick Rolling as a capital offense. Oh, and yeah, get OFF MY LAWN!! Damn dumb millennials.

    --
    Any guest worker system is indistinguishable from indentured servitude.
  33. Original Rickroll YouTube is now disabled by billstewart · · Score: 1

    Actually, yes, this might be because a Rickfail due to the copyright goons telling YouTube to take down the original RIckroll video.

    --

    Bill Stewart
    New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
    1. Re:Original Rickroll YouTube is now disabled by viperidaenz · · Score: 1

      Actually, no, this is because I have disabled the Flash plugin, hence "This plugin is disabled"