Uspol, birdsite 

Uspol, birdsite 

Fun facts: Alan Turing came up with a mathematical formula to explain how chemical reactions produce spots, stripes and swirls in a variety of mammals. Also, leopards DO change their spots (as they mature), and Turing's formula was not able to account for this. Researchers have since built on Turing's model to explain the transformation.


Y'all get a heads up early, where it's still an incomplete PoC :-P

Classifying protocols is just the first step. Prior art (the "spot me if you can" paper) claims to be able to recognize words in encrypted VoIP traffic when a variable bit rate codec is in use. I expect similar tactics could be used to determine what someone is watching on Nexflix, or what they are doing online in general. The only system I have seen which I expect to defeat this analysis is Tor, which uses a fixed packet size. This is done specifically to thwart this type of analysis!

I will be quietly posting the code for EyeOfProvidence soon. It's a tool that analyzes network traffic based on packet size and timing. It should be able to recognize underlying protocols even if they are TLS encrypted or running on nonstandard ports. After about a week's worth of effort, it is doing every well on my test data. We will see how well it generalizes as testing continues. If it does what I expect it will be able to do, it's going to be interesting.

If you ever wondered how gardens planned, built and maintained by hackers grows... the answer is: pretty well. Those are peas there in the front.

There is going to be a good release soon. Very excited. :-D

Car on the right is legally parked in a handicapped stall. Car on the left is not only not displaying any indication of being handicapped, but they're not even in a parking spot. They are in the reserved area between handicapped spots. Don't be this person.

I got this from

Apparently features kernel 0 anti-cheat driver from Denuvo which got "certification from renown[ed] kernel security researchers, completed regular whitebox and blackbox audits, was penetration-tested by independent cheat developers"

I, for one, am excited to hear that the other anti-cheat technologies take shellcode from the internet and run it in ring-0!

"You know what my beard needs? Anti-rust coating!" --No One... Ever

Twitter screenshot, patriot act 

Twitter screenshot 

I am sad to see that the Mattermost Beta app in F-Droid relies on undisclosed upstream non-free software. I went to the GitHub project page to learn about how I would build the client from source, and there were instructions to configure a Firebase server (apparently a Google service). I wish it didn't rely on services I can't run myself. :-(

Working a reasonable number of hours, not having constant meetings, and taking breaks when they make sense makes me tremendously more efficient and I think even more effective. There's also been external factors that have significantly lowered my stress at the same time. Overall, it's been a huge positive change in my life. I need to make this stick!

For more technical details and causes for concern, see what Moxie Marlinspike wrote:

There is talk about using tech to automatically track who comes in contact with whom in order to inform people when they may have been near someone who later was diagnosed with COVID. Sounds pretty good, right? Here's one reason why I am concerned:

20.04 is out now! Some brave soul should update straight away and report back to the rest of us know if it's safe. Just think of yourself as the . 🙂

Show more

Mostly hackers, mostly in Urbana, IL, talking to each other & our friends on like-minded servers without giving our personal data to the marketing machine.