@gsuberland@chaos.social titelbild
@gsuberland@chaos.social avatar

gsuberland

@gsuberland@chaos.social

he/him

Into electronics, windows internals, cryptography, security, high speed networking, compute hardware, physics, colourimetry, lasers, stage lighting, D&B, DJing, demoscene, socialism.

Heavily ADHD.

Laser team @ EMF Camp, lasers & lighting orga @ NOVA Demoparty.

I sell parody warning stickers at Unsafe Warnings: https://unsafewarnings.etsy.com/

For a day job I hack stuff, I guess. Embedded tech, ICS/SCADA, marine stuff, x86 platforms, etc.

All posts encrypted with ROT256-ECB.

Dieses Profil is von einem föderierten Server und möglicherweise unvollständig. Auf der Original-Instanz anzeigen

arstechnica , an Random Englisch
@arstechnica@mastodon.social avatar

Shopping app Temu is “dangerous malware,” spying on your texts, lawsuit claims

Temu "surprised" by the lawsuit, plans to "vigorously defend" itself.

https://arstechnica.com/tech-policy/2024/06/shopping-app-temu-is-dangerous-malware-spying-on-your-texts-lawsuit-claims/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

gsuberland ,
@gsuberland@chaos.social avatar

@arstechnica I'll be honest, my bullshit detector is going off pretty loud. they're claiming that the malicious behaviour is in a "cryptically named function [... that] is not visible to security scans before or during installation of the app, or even with elaborate penetration testing" - then how did they find it? most of the claims read as if they've never seen an app permissions list before, looked at Temu's, and assumed malice because China Bad™

SwiftOnSecurity , an Random Englisch
@SwiftOnSecurity@infosec.exchange avatar

There’s all these unfair asymmetries in the universe like how it’s easier to grow a pitbull than a replacement toddler

gsuberland ,
@gsuberland@chaos.social avatar

@SwiftOnSecurity your posts get more incomprehensible every day and I am here for it

SwiftOnSecurity , an Random Englisch
@SwiftOnSecurity@infosec.exchange avatar

Just got report back on an analysis of security flaws in a product.

gsuberland ,
@gsuberland@chaos.social avatar

@SwiftOnSecurity the Sankey diagram is just fuckin sending me, top tier

TechConnectify , an Random Englisch
@TechConnectify@mas.to avatar

I'd like to tell a quick story about successful troubleshooting.

A few months ago I rented a scissor lift to install lighting at my new office. When it arrived, the delivery person gave me a quick demo and off he went.

Well, when I went to actually use it - the lift went up by about a foot then stopped and screamed beeps of terror. It was broken!

But the display on the control read "18"

Rather than call the rental company, I searched "sinoboom fault code 18" to see what that meant.

gsuberland ,
@gsuberland@chaos.social avatar

@TechConnectify I had that happen at about 3ft off maximum extension, except the whole thing just stopped without error code. I assumed it had reached maximum extension and did the remainder of the gig lighting install by hand with a ladder, which was truly awful. Didn't find out until the last moment of teardown that the lift could go the full height.

foone , an Random Englisch
@foone@digipres.club avatar

It's funny how I've seen multiple people talking about how Microsoft Recall doesn't take pictures of DRM media, as if this was a conscious decision the Recall team made, and not just a natural consequence of how screenshots already work on modern windows.

gsuberland ,
@gsuberland@chaos.social avatar

@foone yeah it's literally just a case of "the DXGI stack can't see it because the image isn't decoded until it hits the hardware", and naturally they're using DXGI for the screenshot stuff because that's where everything gets composited.

foone , an Random Englisch
@foone@digipres.club avatar

My hobby? Disassembling and reassembling 3d printers.

Most people just call that "3D printing" but I want to be truthful to which part of the hobby I spend most of my time doing

gsuberland ,
@gsuberland@chaos.social avatar

@foone it's refreshing to see someone who uses 3D printers being honest about what using 3D printers is actually like.

foone , an Random Englisch
@foone@digipres.club avatar

I saw this voltmeter at the electronics flea market. Look at that massive probe! It looks like you need to check your back blast before using it.
Apparently it's for REALLY high voltages? Like, 3kV?

gsuberland ,
@gsuberland@chaos.social avatar

@foone you're probably an order of magnitude low on that number

foone , an Random Englisch
@foone@digipres.club avatar

Terrible idea: Christian programmer who comments their code with references to Bible verses which are applicable to the code's situation

gsuberland ,
@gsuberland@chaos.social avatar

@foone there's a guy on YouTube who does this occasionally, although he's Jewish so he quotes the old testament

foone , an Random Englisch
@foone@digipres.club avatar

Here's something cool I never realized existed:

PCBs distributed through magazines!

From Radio Electronics (June 1987):

https://archive.org/details/radio_electronics_1987-06/page/n68/

gsuberland ,
@gsuberland@chaos.social avatar

@foone iirc one of the tricks was to add some sort of clear oil (like baby oil) to stick it to the PCB, which made the white paper go kinda clear.

the actual home etching process is super messy though. ferric chloride stains eeeeeverything, it's bad for your skin, and you have to neutralise it before disposal which also creates a lot of mess. I used to own a kit and used it only a couple of times because the cleanup is horrible.

foone , an Random Englisch
@foone@digipres.club avatar

I've got a special level of hate for sites which make you select which location you mean before you can enter your username & password.

screw that! FIX YOUR ACCOUNT SYSTEM SO IT KNOWS WHERE I AM

gsuberland ,
@gsuberland@chaos.social avatar

@foone also, two-step logins where you enter your username or email, click next, then get prompted for a password, because they've accumulated a bunch of different auth providers and also have different "estates" for individual orgs with conflicting requirements and can't figure out how to glue all of those together in a coherent fashion.

foone , an Random Englisch
@foone@digipres.club avatar

I wonder if you can make jewelry-safe PCBs.

I was thinking you could make a flexible-pcb choker. My neck can run Doom!

gsuberland ,
@gsuberland@chaos.social avatar

@foone yes. ENIG is safe for jewellery, I have made a bunch for my wife's etsy store.

foone , an Random Englisch
@foone@digipres.club avatar

When are they gonna make a smartphone with a built in RFID cloner? It'd make managing all those fobs easier

gsuberland ,
@gsuberland@chaos.social avatar

@foone one of my older phones (one of the Samsung Galaxy ones, but I can't recall which) had an NFC chipset where you could get it to present an arbitrary UID, although you needed to sideload an APK to make it work because the original app got taken off the store. was useful though. I used to store hotel keys on it because most of them in that era just used the UID and didn't do any actual cryptographic handshake.

foone , an Random Englisch
@foone@digipres.club avatar

Why is the Bart diesel? Do they not have electricity in the bay area?

gsuberland ,
@gsuberland@chaos.social avatar

@foone presumably they're diesel-electric? if so for any electrified areas they can run without the diesel. no idea if any of it is electrified though.

foone , an Random Englisch
@foone@digipres.club avatar

You know,

gsuberland ,
@gsuberland@chaos.social avatar

@foone I do, but I forget.

foone , an Random Englisch
@foone@digipres.club avatar

The Roman empire fell because their Roman numerals weren't a form of positional notation, so they couldn't figure out binary. Their computers were terrible.

gsuberland ,
@gsuberland@chaos.social avatar

@foone yeah I mean imagine setting your monitor resolution to MXXIVxDCCLXVIII

  • Alle
  • Abonniert
  • Moderiert
  • Favoriten
  • random
  • haupteingang
  • Alle Magazine
    •