Profile

Cover photo
pixel fairy
141 followers|146,708 views
AboutPostsPhotosYouTubeReviews

Stream

pixel fairy

Shared publicly  - 
 
If this is true, the geek squad has financial incentive to plant evidence on innocent users.
 
Der Techniker, dem man sein Gerät zur Reparatur bringt, kann in den USA eventuell nebenbei Geld verdienen, indem er die Daten auf dem Gerät für das FBI ohne Durchsuchungsbefehl durchschnüffelt. Im berichteten Fall hat er in unbelegten Blöcken einer Festplatte eine Datei gefunden,auf deren Grundlage das FBI dann mit Durchsuchungsbefehl seine Wohnung und den Arbeitsplatz durchsucht hat.

Allerdings hat das FBI dabei den Richter belogen, indem es verschwiegen hat, daß die Daten in freien Blöcken waren, denn es ist etablierte Rechtslage, daß das keine Rechtsgrundlage für eine Durchsuchung ist. Das FBI hat auch gelogen, als es um die Frage geht, ob der Techniker vom FBI bezahlt war oder ob es sich um einen "Zufallsfund" handelt und hat die Untersuchung der Umstände durch den Richter behindert. 
 ·  Translate
12 comments on original post
1
1
Add a comment...

pixel fairy

Shared publicly  - 
 
if you have skylake or kaby lake laptop (basically in the last year), you're probably screwed. this cant be fixed in software. this might be fixable in bios / uefi but that was unclear in the talk. if your buying now, i would go with amd.

basically, intel screwed up big this time. remains to be seen if they'll own up to it.

apple has enough control over their platform that they probably can fix it, will probably do so silently (like they did with rowhammer), and may already have. but the only way to know for sure is to try it.

the attack takes a $5 cable, $6 with free shipping on amazon prime.

https://www.scmagazine.com/debugging-mechanism-in-intel-cpus-allows-seizing-control-via-usb-port/article/630480/

Researchers are warning that an Intel chip debugger leaves the chip open to hacking and because it sits below the software layer isn't easily detected.
1
Add a comment...

pixel fairy

Discussion  - 
 
finally got ipv6 at home, a /64 from the cable company. internally, i have 2 networks. my router is a linux box with 3 ethernet 1 wifi.

is there an easy way to still get to use slaac on the internal networks? i dont care if they're all in the same network space, but i do want some filtering.

at the moment, all forward traffic from dmz to not external is blocked. higher up, all established forward is allowed, so hosts on the internal or external can connect to those on the dmz, but the dmz cant reach out to hosts on internal. id like to keep it that way.

ebtables looks like it can do this. has anyone here done this? would it be better to subnet and use dhcp6?

the other alternative is getting a /48 from HE, which i need for my laptop when traveling anyway, but then its another moving part to break, another hop, and me or a guest might want to use netflix in the future. they dont like tunnels.
1
Alexandru Juncu's profile photoLouis Kowolowski's profile photopixel fairy's profile photo
8 comments
 
the one i want to separate runs an ssh server open to the outside. so, yes, theres a strong incentive to isolate.

another possibility, just thought of is switching the router to openbsd, which filters based on interface. so either that, or ebtables.

if not, then the other networks could use HE while the main one uses the isp directly. that way, if anything happens with the tunnel, we can still reach the outside.

as mentioned before, netflix has issues with tunnelbroker. but the real solution to such nonsense is the middle finger. there are plenty of non tunnel blocking competitors.
Add a comment...

pixel fairy

Shared publicly  - 
 
 
»Your threat model just changed.« Eigentlich nicht, aber naja.
 ·  Translate
EFF's full-page Wired ad: Dear tech, delete your logs before it's too late
2 comments on original post
1
Add a comment...

pixel fairy

Shared publicly  - 
 
 
»Smart car = vulnerable car
Smart watch = vulnerable watch
Smart home = vulnerable home«
-- https://twitter.com/mikko/status/808291700921737216
7 comments on original post
1
Evan S. Tallas's profile photo
 
Lol. "Secure" 
Add a comment...

pixel fairy

Discussion  - 
 
Repurposing existing virtual machine hosts to create a Proxmox VE Cluster with Ceph (read hyper-convergence on a budget)
View original post
1
Add a comment...

pixel fairy

Discussion  - 
 
got a weird issue from my cable company. ipv6 and a /64 works fine, except that dhcp on the external doesnt receive a default route.
i have to set that manually on the router.

said router is ubuntu 16.04 with 3 nics. using wide-dhcpv6-client.

tried calling isp, the "support specialist" thought ipv6 had something to do with firmware on the web browser and only worked in windows.


2
Jeremy Visser's profile photoMichael Richardson's profile photopixel fairy's profile photo
6 comments
 
its cable.
Add a comment...

pixel fairy

Compositor  - 
 
maybe this is obvious, but i couldnt find it in the docs,

how do you logout of weston? 
1
Herry Sugiharto's profile photopixel fairy's profile photo
2 comments
 
thanks!
Add a comment...

pixel fairy

Shared publicly  - 
 
she makes a good point. due to the spread of fake news and hyperbole thats plauged us lately, i feel a need to state that im unfamiliar with her and dont know how accurate her predictions are. but history suggests shes right, and may even be optimistic.

https://thecorrespondent.com/5696/were-heading-into-dark-times-this-is-how-to-be-your-own-light-in-the-age-of-trump/1611114266432-e23ea1a6
Having studied authoritarian states for over a decade, I would never exaggerate the severity of the threat we now face. But an American kleptocracy is exactly where president-elect Trump and his backers are taking us. That’s why I have a favor to ask you, my fellow Americans.
1
Add a comment...

pixel fairy

Discussion  - 
 
is there a way to advertise the lack of a default route?

in other words, how do you deal with dragging your laptop full of vms in and out of networks with v6?
1
Dave Taht's profile photoJeremy Visser's profile photopixel fairy's profile photo
6 comments
 
oh, duh, if the router binats, its actaully acting as a router, and can just send that 'no route' signal at will. could probably tie to the post down command on the wifi nic. need to find a v6 network to try this.

my isp had v6 for a bit, then took it back down because of routing issues like a year ago.
Add a comment...

pixel fairy

Discussion  - 
 
is there a web browser that works in wayland? chrom(ium) just crash on startup.
1
Markus S.'s profile photoCédric Briner's profile photoLaurent Tromeur's profile photopixel fairy's profile photo
5 comments
 
gnome web works now, at least on intel hardware no javascript blocker, but its still a proof that a web browser can work in wayland. with everything else working in wayland, the lack of a web browser was really sticking out!

hope chromium / firefox can get there soon.
Add a comment...
Story
Tagline
This is not the pixel your looking for.
Basic Information
Gender
Decline to State
Work
Occupation
flesh instrument
Links
The hotel wi-fi is weak and cuts out often. Some rooms have Ethernet. Get one one of those and bring your own wi-fi. T-Mobile only gets an occasional roaming signal in this area. Rooms are good. Staff is friendly and helpful. Great pizza near by.
Public - 5 months ago
reviewed 5 months ago
smoothest espresso shots ever
Public - 7 months ago
reviewed 7 months ago
Friendly staff, esp for this area. Foods better than youd expect. When i ordered a side of bacon, they gave me a plate! They even made a custom smoothie for me. Only way this place could be better is by offering pasture raised / grass fed meat and eggs
Public - a year ago
reviewed a year ago
one of the few places in LA to get grassfed bison. they also have sweet potato fries (unfortunately fried in canola oil). paleo and vegan friendly. them and the burger lounge are the best burgers in LA.
Public - 2 years ago
reviewed 2 years ago
7 reviews
Map
Map
Map
great espresso shots and mocha! perfect microfoam
Public - 8 months ago
reviewed 8 months ago