How to make Bash fail badly on Ubuntu 16.04 by typo'ing a command name
https://utcc.utoronto.ca/~cks/space/blog/linux/BashNotFoundHang [utcc.utoronto.ca]
2021-01-14 06:29
tags:
admin
linux
sh
turtles
The simple thing to say about this is that it only happens on Ubuntu 16.04, not on 18.04 or 20.04, and it happens because Ubuntu’s normal /etc/bash.bashrc defines a command_not_found_handle function that winds up running a helper program to produce this ‘did you mean’ report. The helper program comes from the command-not-found package, which is installed because it’s Recommended by ubuntu-standard.
The mystery of the lost Roman herb
http://www.bbc.com/future/story/20170907-the-mystery-of-the-lost-roman-herb [www.bbc.com]
2017-09-11 01:24
tags:
article
biology
food
history
Plus lasers and huckleberries.
source: MR
KARL - kernel address randomized link
https://marc.info/?l=openbsd-tech&m=149732026405941&w=2 [marc.info]
2017-06-13 15:45
tags:
defense
openbsd
random
security
Over the last three weeks I’ve been working on a new randomization
feature which will protect the kernel.
The Quest for Netflix on Asahi Linux
https://www.da.vidbuchanan.co.uk/blog/netflix-on-asahi.html [www.da.vidbuchanan.co.uk]
2023-03-09 21:59
tags:
browser
cloud
development
investigation
library
linux
turtles
Thus begins the “do not violate the DMCA challenge 2023”. The goal of this challenge is to figure out how to watch Netflix on Asahi Linux without bypassing or otherwise breaking DRM. You may notice that this article is significantly longer than my 280-character publication on doing the latter, from 2019.
We’re on the home stretch now, right? Right??? Not quite, there is one last showstopper for Asahi users, and it’s a big one: Asahi Linux is built to use 16K page sizes. The Widevine blobs available to us only support 4K pages.
source: HN
Donald Knuth Was Framed
https://buttondown.email/hillelwayne/archive/donald-knuth-was-framed/ [buttondown.email]
2020-02-24 19:50
tags:
development
factcheck
programming
retro
Knuth writes 8 pages and McIlroy writes six lines.
A damning counter. But neither of us had ever read the paper. And as you know, I’m all about primary sources. We pulled up the paper here and read through it together. And it left us with a very different understanding of literate programming, and the challenge, than the famous story gave.
source: HN
How many floating-point numbers are in the interval [0,1]?
http://lemire.me/blog/2017/02/28/how-many-floating-point-numbers-are-in-the-interval-01/ [lemire.me]
2017-03-02 17:58
tags:
math
random
And how to uniformly pick one.
source: L
Hands-on with the PocketBeagle: a $25 Linux computer with lots of I/O pins
http://www.righto.com/2017/12/hands-on-with-pocketbeagle-tiny-25.html [www.righto.com]
2017-12-04 01:44
tags:
hardware
linux
The PocketBeagle is a tiny but powerful key-fob-sized open source Linux computer for $25. It has 44 digital I/O pins, 8 analog inputs, and supports multiple serial I/O protocols, making it very useful as a controller. In addition, its processor includes two 200-MHz microcontrollers that allow you to implement low-latency, real-time functions while still having the capabilities of a Linux system. This article discusses my experience trying out the PocketBeagle, with details of how to use its different features.
No networking though, neither ethernet nor wifi.
The Languages Which Almost Became CSS
https://blog.cloudflare.com/the-languages-which-almost-became-css/ [blog.cloudflare.com]
2017-08-03 18:14
tags:
development
html
retro
web
So then I get to tell people, “Well, you get to learn this language to write your document, and then you get to learn that language for actually making your document look like you want it to.” Oh, they’ll love that.
Ten Things I Wish I’d Known About bash
https://zwischenzugs.com/2018/01/06/ten-things-i-wish-id-known-about-bash/ [zwischenzugs.com]
2018-01-06 22:58
tags:
programming
sh
unix
You don’t have to look hard on the internet to find plenty of useful one-liners in bash, or scripts. And there are guides to bash that seem somewhat intimidating through either their thoroughness or their focus on esoteric detail. Here I’ve focussed on the things that either confused me or increased my power and productivity in bash significantly, and tried to communicate them (as in my book) in a way that emphasises getting the understanding right.
source: L
Testing out snapshots in Apple’s next-generation APFS file system
https://arstechnica.com/apple/2017/02/testing-out-snapshots-in-apples-next-generation-apfs-file-system/ [arstechnica.com]
2017-02-12 17:02
tags:
beta
investigation
mac
storage
systems
We brave beta software and do some cautious testing—and it looks like it works.
Butterfly Effect and Program Mistake
https://github.com/secmob/pwnfest2016 [github.com]
2017-06-15 02:17
tags:
browser
exploit
javascript
paper
pdf
security
slides
Exploit an “Unexploitable” Chrome Bug
full exploit for cve-2016-9651 used in pwnfest2016, slide and full text of syscan360 2017
source: grugq
How Not To Release Historic Source Code
https://www.os2museum.com/wp/how-not-to-release-historic-source-code/ [www.os2museum.com]
2024-04-28 02:30
tags:
development
format
retro
text
windows
For practical purposes, old source files are not text files. They are binary files, and must be preserved without modification. It is not OK to take an old source file and convert it to UTF-8. For one thing, UTF-8 didn’t even exist in the times of MASM 5.10 and Microsoft C 5.1, of course old tools can’t deal with it!
source: L
Plundervolt
https://plundervolt.com/ [plundervolt.com]
2019-12-11 02:25
tags:
cpu
exploit
paper
security
sidechannel
Modern processors are being pushed to perform faster than ever before - and with this comes increases in heat and power consumption. To manage this, many chip manufacturers allow frequency and voltage to be adjusted as and when needed. But more than that, they offer the user the opportunity to modify the frequency and voltage through priviledged software interfaces. With Plundervolt we showed that these software interfaces can be exploited to undermine the system’s security. We were able to corrupt the integrity of Intel SGX on Intel Core processors by controling the voltage when executing enclave computations. This means that even Intel SGX’s memory encryption/authentication technology cannot protect against Plundervolt.
Not sure anyone should care about SGX anymore, all things considered, but for completeness, here’s another one.
source: grugq
A Warm Welcome to ASN.1 and DER
https://letsencrypt.org/docs/a-warm-welcome-to-asn1-and-der/ [letsencrypt.org]
2020-04-28 00:35
tags:
format
networking
security
web
This document provides a gentle introduction to the data structures and formats that define the certificates used in HTTPS. It should be accessible to anyone with a little bit of computer science experience and a bit of familiarity with certificates.
“Gentle.”
source: L
1963 Chrysler Turbine: Ultimate Edition - Jay Leno's Garage
https://www.youtube.com/watch?v=b2A5ijU3Ivs [www.youtube.com]
2021-01-04 17:06
tags:
cars
energy
retro
video
1963 Chrysler Turbine: Ultimate Edition. It’s the amazing car Jay’s lusted after since he was 14 years old, and today’s episode is packed with all kinds of amazing footage! We’ve got a book review, a road test, and Chrysler’s original promotional video.
HoTTSQL: Proving query rewrites with univalent SQL semantics
https://blog.acolyer.org/2017/10/05/hottsql-proving-query-rewrites-with-univalent-sql-semantics/ [blog.acolyer.org]
2017-10-07 03:12
tags:
compsci
database
paper
perf
sql
Query rewriting is a vital part of SQL query optimisation, in which rewrite rules are applied to a query to transform it into forms with (hopefully!) a lower execution cost. Clearly when a query is rewritten we still want it to mean the same thing as the original – we call this semantic preserving. If you take Q1 and turn it into Q2, then for all database schemas and table instances Q1 and Q2 need to return the same results. Since query rewriting is used extensively in SQL engines, it may come as a surprise to you to learn that we don’t actually have proofs that many of the common rewrite rules actually are semantic preserving! Until now.
Sensation Seeking and Hedge Funds
https://onlinelibrary.wiley.com/doi/abs/10.1111/jofi.12723 [onlinelibrary.wiley.com]
2018-09-26 14:25
tags:
cars
finance
paper
pdf
We show that motivated by sensation seeking, hedge fund managers who own powerful sports cars take on more investment risk but do not deliver higher returns, resulting in lower Sharpe ratios, information ratios, and alphas. Moreover, sensation‐seeking managers trade more frequently, actively, and unconventionally, and prefer lottery‐like stocks. We show further that some investors are themselves susceptible to sensation seeking and that sensation‐seeking investors fuel the demand for sensation‐seeking managers. While investors perceive sensation seekers to be less competent, they do not fully appreciate the superior investment skills of sensation‐avoiding fund managers.
The empirical results are striking. We find that hedge fund managers who purchase performance cars take on more investment risk than do fund managers who eschew performance cars. Specifically, sports car drivers exhibit annualized return standard deviations that are 1.80 percentage points, or 16.61%, higher than those of nonsports car drivers. Similarly,funds managed by drivers of high horsepower and high torque automobiles deliver more volatile returns. Conversely, we find that managers who acquire practical but unexciting cars take on less investment risk relative to managers who shun these cars. Minivan owners,for example, generate annualized return standard deviations that are 1.28 percentage points,or 11.74%, lower than do other owners. Moreover, managers who purchase cars with high passenger volumes and excellent safety ratings also produce more stable returns.
source: ML
Tig: text-mode interface for Git
https://jonas.github.io/tig/ [jonas.github.io]
2019-02-14 21:01
tags:
git
swtools
tty
Tig is an ncurses-based text-mode interface for git. It functions mainly as a Git repository browser, but can also assist in staging changes for commit at chunk level and act as a pager for output from various Git commands.
https://github.com/jonas/tig
source: L
The Intel Optane SSD 900P 280GB Review
https://www.anandtech.com/show/11953/the-intel-optane-ssd-900p-review [www.anandtech.com]
2017-10-29 22:04
tags:
benchmark
hardware
release
storage
Optane SSD 900P isn’t for everyone and won’t be displacing any existing products - it exists alone in a new product tier, with prices that are more than twice what the fastest flash memory based SSDs are selling for.
Hot and expensive, but fast.
F# Pain Points
http://www.colinbellmore.work/post/fsharp-pain/ [www.colinbellmore.work]
2016-12-07 19:38
tags:
dotnet
fsharp
functional
programming
type-system
Some well reasoned gripes.