Profile cover photo
Profile photo
Georg Bauer
408 followers -
Hacker. Photographer. Geek. Tinkerer.
Hacker. Photographer. Geek. Tinkerer.

408 followers
About
Posts

Post has shared content
Mal wieder einen Oldie auf den Tisch: 7 Wonders: Duell ist auch nach 92 Mal spielen noch interessant. Definitiv eines unserer Favoritenspiel.
Interesting game of 7 Wonders: Duel - I got a science win in the last epoch with tons of green cards and science tokens. I don't think I had ever such a weird board state at the end. Due to only base game, my win was inevitable, as the statue of liberty promo showed me the last two green cards were both on the board and so I could count what card it must have been. Fun game, and we still only play the base game, it has enough replay value even after 92 plays of it.
PhotoPhotoPhotoPhoto
21.01.18
4 Photos - View album
Add a comment...

Post has attachment
Interesting game of 7 Wonders: Duel - I got a science win in the last epoch with tons of green cards and science tokens. I don't think I had ever such a weird board state at the end. Due to only base game, my win was inevitable, as the statue of liberty promo showed me the last two green cards were both on the board and so I could count what card it must have been. Fun game, and we still only play the base game, it has enough replay value even after 92 plays of it.
PhotoPhotoPhotoPhoto
21.01.18
4 Photos - View album

Post has attachment
that escalated quickly.
Photo
Add a comment...

Post has shared content
Wieder einmal 13 Tage gespielt, und dieses Mal habe ich nicht versehentlich den Nuklearkrieg ausgelöst. Gewonnen hat aber trotzdem Juliana, der Persönliche Brief war der tie breaker.
13 Days again, it slowly makes it into our game rotation. Juliana still has problems to grok the link of agendas and VP, but to counter that I totally forgot my selected agenda in one round ;) - great game, packs tons of very tight decisions into quick setup and short play time.
Photo
Add a comment...

Post has attachment
13 Days again, it slowly makes it into our game rotation. Juliana still has problems to grok the link of agendas and VP, but to counter that I totally forgot my selected agenda in one round ;) - great game, packs tons of very tight decisions into quick setup and short play time.
Photo

Post has shared content
Erste zwei Spiele von Tao Long, einem wirklich optisch wunderschön realisierten abstrakten Strategiespiel. Witzig daran: es ist eine brettspielgewordene Variante des guten alten Snakes (bekannt von Nokia Telefonen). Erstaunlich interessant in dieser Form, ein wirklich interessantes Puzzle.
Tao Long arrived yesterday and I played its solo variant today, to get a feel. For solo, the game is more a puzzle solving exercise, as you manipulate the rondel and can prevent actions of the opponent dragon. Since there is nothing random, the replay ability might be a bit limited, since each setup can essentially be solved. But you can just use rocks, portals and other stuff to switch the layout and have a new puzzle to solve. I played a setup not in the book, having the mountain out, but no portals, for example. Kinda fun brain twister, but probably more so when played multiplayer, so I wouldn't buy it for solo alone. But the deluxe version is absolutely gorgeous.
Photo
Add a comment...

Post has attachment
Tao Long arrived yesterday and I played its solo variant today, to get a feel. For solo, the game is more a puzzle solving exercise, as you manipulate the rondel and can prevent actions of the opponent dragon. Since there is nothing random, the replay ability might be a bit limited, since each setup can essentially be solved. But you can just use rocks, portals and other stuff to switch the layout and have a new puzzle to solve. I played a setup not in the book, having the mountain out, but no portals, for example. Kinda fun brain twister, but probably more so when played multiplayer, so I wouldn't buy it for solo alone. But the deluxe version is absolutely gorgeous.
Photo

Post has shared content
Holy Fuck, that bug is toxic.
http://pythonsweetness.tumblr.com/post/169217189597/quiet-in-the-peanut-gallery has been talking about an upcoming Intel Kernel vulnerability.

https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/ expands on this, and links to https://cyber.wtf/2017/07/28/negative-result-reading-kernel-memory-from-user-mode/

That article discussses a hypothetical instruction sequence such as

1. Mov rax, [somekerneladdress]
2. And rax, 1
3. Mov rbx,[rax+Someusermodeaddress]

Instruction 1 tries to read some kernel mode byte from user mode. By default that's mapped, but because it's protected, it will eventually fail.

Instruction 2 AND's that byte with 1, so RAX is 0 or 1 depending on Somekerneladdress containing an even or odd value. As long as Instruction 1 has not failed, instruction 2 is being speculatively executed.

Instruction 3 calculates some address as Someusermodeaddress or Someusermodeaddresss+1 depending on the outcome of Instruction 2. When execution of Instruction 3 begins, either Someusermodeaddress or Someusermodeaddress+1 is being loaded into the cache.

Then Instruction 1 fails, and because Instruction 2 is dependent on that, also fails. And because 3 is dependent on Instruction 3, that one fails, too. All of that is rolled back, successfully and correctly.

Except the cache.

So it's either Someusermodeaddress or Someusermodeaddress+1 that's primed in the cache, depending on the content of a memory location that we are not allowed to see.

And we can detect that.

We get a device that very slowly can read the content of arbitrary memory locations in the kernel, from user mode.

A PoC from Javascript in a browser exists.

So a web server can read, slowly, and at horrible cost, arbitrary bytes from your kernel memory.

That's not just a KASLR problem. Shit's on fire.
Add a comment...

Post has attachment
Holy performance-breaking CPU design fuckup, batman!
Add a comment...

Post has shared content
Warum ich nie Staatschef werden sollte: versehentlich bei 13 Tage den Atomkrieg ausgelöst. Oops. 😆
Silly me gave away the win in 13 Days by triggering Nuklear War as the USSR. Didn't see the trap of losing dominance on TV and so unable to whitewash my military dominance when the last round military agenda triggered - which I myself actually chosen! Oh my. Luckily I am not a head of state. A really great and tight design, that I really enjoy.
Photo
Add a comment...
Wait while more posts are being loaded