* Posts by randon8154

25 posts • joined 3 Jul 2018

My life as a criminal cookie clearer: Register vulture writes Chrome extension, realizes it probably breaks US law

randon8154

live system

I'm using knoppix/tails, fresh system at every boot

I don't mean to cheat your paywall, this is the way how work live system.

Taiwan to stay ahead of China as top chip manufacturing titan

randon8154

Re: War

+1 for your comment

The simple fact that we depends of China for everything at the point that we concede when they pressure us (recent example : report of the UE for the covid) should be enough to wake up and see the incoming danger.

Military force is one of the many tools they use to dominate : debt trap, flood of dangerous drugs, harassment of boat in their own territorial water... Today this happen in south china, but tomorrow...

Ps : When I said China, I meant the CCP not the global chiness population

Linux Foundation starts new group to build pandemic-popping software

randon8154

Re: Not invented here syndrome?

"so why is the Linux Microsoft Foundation reinventing the wheel?"

Fixed for u

Philippines to install 23,000 free public Wi-Fi hotspots

randon8154

Deleted my previous message : (I though it was 15 M USD instead of 155 M)

You are right... 6700 USD is overpriced, unless something can explain it...

randon8154

Would probably never known it if theregister hasn't made an article about it, thanks

Do you known which ISP will be used ? The article don't mention it

Twitter hackers busted 2FA to access accounts and then reset user passwords

randon8154

Re: 2 Fiddle All

"it's just another hacking"

Like any other security...

"it's just an illusion of security "

From this point of view, why even bother with all security....

2FA is a security layer, it may not be perfect, but it make harder to compromise the account, the goal being to discourage the haxor... The more layer you a have, the more you will stay "undisturbed,"

I'm not a fan of 2FA either, especially using a app on a smartphone where you have no control and can't possibly known how many time a day it get access by unknown people... A system used by Localbitcoins the "printed paper codes" simple and "imo" more secure.

Seven 'no log' VPN providers accused of leaking – yup, you guessed it – 1.2TB of user logs onto the internet

randon8154

Do you guys keep any logs ?

The nordvpn provider look like a honest one if you compare with this one : they deliberately log everything from their customer, even data with no use for debug / technical monitoring.

I can't see anything else than shady reason, if it is obvious that communication privacy, activity free of any log, anonymat... are purely commercial statement, the goal of this provider is far beyond making a juicy business. Another obvious red flag for this provider : VPN client closed source.

A efficient way to prove that the no log / ultimate privacy is a lie : Mass TCP port scan over a large netrange. If they don't log, monitor or trace who is doing what, you shouldn't be banned.

Torproject is one of the only service who can legitimately claim what all those brainwashing vpn provider said

As using a vpn rely on a blind trust of a third party, I would go for Mullvad

Linksys forces password reset for Smart Wi-Fi accounts after router DNS hack pointed users at COVID-19 malware

randon8154

Got one linksys but never used the "smart wifi" nor the oem firmware.

If we can blame those features for having security problem or being privacy invader, Linksys work with openwrt and the quality of the hardware is good.

NordVPN quietly plugged vuln where an HTTP POST request without authentication would return detailed customer data

randon8154

Nobody want to meet NordLynx ?

https://nordvpn.com/blog/nordlynx-protocol-wireguard/

They claim to have implemented wireguard in a safe way : by making your system run the NordLynx binary, with root permission and going against everything what wireguard is made for...

The quote :

"However, it’s not all as great as it sounds. There’s been a lot of buzz about WireGuard lately. The protocol is still under heavy development, and it’s far from perfection. Yes, WireGuard can promise better connection speeds already, but its capabilities to keep users anonymous fall behind. "

Said by deceptive, misleading rogue company... They just need to pay third party website to spam of fake good review/comment, (they are legion on Google) .

Damn them.

Linux in 2020: 27.8 million lines of code in the kernel, 1.3 million in systemd

randon8154

"Everybody who has ever worked at that level in the operating system has agreed that systemd is the proper solution"

I can do it too :

Everybody who I speaking to agreed that's you are...

Everybody who has ever worked with systemd known how it suck, that gnome3 and all stuff you are making belong to the trash. But anybody is wheeling to do your craps when redhat and ms push it with $...

10 years from now Microsoft will own all this stuff.

EU wouldn't! Uncle Sam brandishes 'up to 100%' tariffs over France's Digital Services Tax

randon8154

Retour de bâton

I would have in other circumstances, take a stand against this, but the French president sold himself to China last month for more than 13 billions, without giving a damn about the situation in Hong Kong.

https://www.diplomatie.gouv.fr/en/french-foreign-policy/human-rights/events/article/human-rights-france-s-international-strategy-10-12-18

"stepping up the fight for the universality of civil and political rights." <--- Yeah right...

"No - US companies should pay tax in the country where profits are earned, simple as that!"

Agree nothing to add. As much it is wrong , France got what it deserve however.

Tor pedos torpedoed again, this time Feds torpedo four Tor pedos – and keep how they unmasked dark-web scumbags under wraps

randon8154

Another theory

Less than month ago : https://www.rappler.com/nation/236280-europe-most-wanted-child-sex-offender-arrested-cebu-july-2019

I wouldn't be surprise to learn he was related with them and gave them out

Or tor is compromised by the reptilian humanoids...

No Telegram today, protestors: Chinese boxes DDoS chat app amid Hong Kong protest

randon8154

I really hope they will fight for it before foreign country decide to end the chinese expansionism, this is sadly the only issue, no talk, justice, compromise, fairness possible with this government, violating treaty, international law, ingerence, censorship, propaganda, murder... domination by any means at any cost.

Hongkongers knew it was only a matter of time, as it is for the rest "free world".

This is grim, Vim and Neovim: Opening this crafty file in your editor may pwn your box. Patch now if not already

randon8154

Saved me again

https://packages.gentoo.org/useflags/minimal

Ex-Mozilla CTO: US border cops demanded I unlock my phone, laptop at SF airport – and I'm an American citizen

randon8154

Re: Could this work to avoid legal action ?

So which jurisdiction am I subject ?

If I only transit, they can do the same ?

Even though this story is true, it sound unrealistic...

randon8154

Could this work to avoid legal action ?

"Sorry I would like to give you my password but I unfortunately can't remember it"

Linus Torvalds pulls pin, tosses in grenade: x86 won, forget about Arm in server CPUs, says Linux kernel supremo

randon8154

Re: "Torvalds abandoned his commitment to civil discourse.."

Personal opinion : Never been choc or never found him particularly insulting by his way of talking.

"agreeing with everyone and avoiding profanity is the only thing that will satisfy some people."

This is sadly the behavior to have today, not long ago, I have the misfortune to trigger a reaction over proportionate for placing 1 "bullshit" in a of 2 hours argument with some dev on their IRC channel (widely used distro). The reaction wasn't natural, too pathetic for be true.

But it is useful to get rid of disturbing question...

Oh Snapd! Gimme-root-now security bug lets miscreants sock it to your Ubuntu boxes

randon8154

Re: Who the hell uses Linux

"Google had to replace the whole user space with a copy of Java to make it usable"

Omg... make it usable by replacing the whole with Java ? Java is buggy as hell, it's slow and heavy, it's a language that should not even exist ! I have hard masked it to make sure never a single piece of java will get into my system

It's since Google, Oracle and other corporation mass pull their code on Linux the thing go wrong ! Take a look of debian, ubuntu, fedora with their gnome-shell, systemd, dbus (the worth of all), it's full of bugs, unmaintainable, exacly like windows and other commercial os based

You like Google ? The company that rape your privacy in exchange of a free closed source browser, with the only goal to better target their ads, owned by this guy https://www.eff.org/deeplinks/2009/12/google-ceo-eric-schmidt-dismisses-privacy, are just a Google worker or a moron ?

randon8154

Re: Am I Sam Beckett?

Having flash on Debian nowadays would be the least of my worried in matter of security...

:D

The D in SystemD stands for Danger, Will Robinson! Defanged exploit code for security holes now out in the wild

randon8154

Systemd is fine...

... for a system not requiring security, stability or any serious control. Like gamer pc with steam / nvidia proprietary / graphics / media video, skype...

Now using it on a environment where security is critical, it is inconsistent. Working with a minimal distro, openrc, hardened kernel, strict rules MAC, permission... doesn't even guarantee a security breach, what more with systemd.

Heads up: Debian's package manager is APT for root-level malware injection... Fix out now to thwart MITM hijacks

randon8154

Same as portage ?

It remind me https://security.gentoo.org/glsa/201507-16

The D in Systemd stands for 'Dammmmit!' A nasty DHCPv6 packet can pwn a vulnerable Linux box

randon8154

I still don't understand on what systemd, gnome3, Networkd or all the stuff shiped with most of the distribution Linux available has in some point, improved efficiency, security, and management of the system... I experienced the exact reverse of this : system unstable, bug, loss of performance and control.

Finally ended with Gentoo which is finally the easiest distribution to manage and control amd offer something the other don't : Freedom.

Et tu, Gentoo? Horrible gits meddle with Linux distro's GitHub code

randon8154

Re: Where's Hardened Gentoo when needed?

musl hardened profile, update several time a week

https://wiki.gentoo.org/wiki/Project:Hardened_musl

- What is going on there?

Don't known what to reply... wiki.gentoo, forums.gentoo will help you.

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020