Disqus - Latest Comments for nitro2k01

Re: Why The Security of USB is Fundamentally Broken

nitro2k01 — Fri, 01 Aug 2014 07:51:56 -0000

The fact that some USB devices can be reprogrammed is old news. What I'll be looking forward to learning is how they do the host controller attack. If the exploit holds up to its promise, this will be good. I can think of two distinct ways this could be done.
1) Sending a malformed packet which triggers a vulnerability in the USB controller firmware, assuming that method is commonplace. Such an exploit would be implementation specific, but if this thing is really made of gold, you can expect that all of them got it wrong.
2) Or in the case of ASICs, maybe it's possible to send a malformed package to trick the USB controller to do DMA to or from arbitrary, ot fixed but useful locations in RAM to leverage an exploit in the OS. If something like this is the case, I expect it to be fixed by putting the USB controller under IOMMU, just as was done for the Firewire DMA attack a couple of years back.

On the other hand, it could just be a Windows USB stack exploit that will be hotfixed in one day, and we were all excited for nothing.

Re: Can’t Remember Your Password? - Issue 6: Secret Codes - Nautilus

nitro2k01 — Fri, 01 Nov 2013 09:08:21 -0000

Funnily enough, this HAS happened to me. I tried to remember a long password consisting of random characters, but couldn't recall it. It's not until I started typing it that it came out.

Re: The Hidden Dangers of Chop-Shop Electronics

nitro2k01 — Fri, 25 Oct 2013 12:07:09 -0000

I'm not reading the gist of the article as saying that it's illegal to recycle chips, but that it's risky. You WILL get ripped off sooner or later. Ergo, for mission critical circuits, such as control systems in airplanes, it's easier to eliminate the problem across the board by specifying new chips directly from the manufacturer, which carries the smallest possible risk.

Re: 57 fires scorch eastern Australia; state of emergency declared

nitro2k01 — Sun, 20 Oct 2013 17:26:53 -0000

True, but sometimes humans are the cause of fires. Sometimes deliberately, but more often a camp fire that hasn't been put out properly or someone throwing a cigarette out the car window and thinking nothing of it.

Re: Is This Another North Korean Photoshop Goof Up?

nitro2k01 — Tue, 15 Oct 2013 05:59:17 -0000

"But the difference between that photo and this is that this one doesn’t seem to be controversial enough to require any Photoshop, leading many to accuse detractors of imagining manipulation where there is none."

This in in itself is no reason for them not to fake a photo. It's all propaganda, and they simply have no reason to care. Also note that even though KCNA publishes news globally, the real target is probably domestic news, probably printed in paper news. Ie, that image was probably meant to prove to those living in this area how much the Supreme Leader cares about their home town.

See also the image of three Chinese officials inspecting a road from 2011. Different country, but what I believe is the same phenomenon, state officials fishing for some local goodwill.

Re: Webb TV-avgift införs till hushåll med dator eller surfplatta

nitro2k01 — Tue, 22 Jan 2013 10:10:09 -0000

Faktiskt eller hypotetiskt samtal?

Re: Mobiloperatörerna tvingar dig till WyWallet

nitro2k01 — Mon, 14 Jan 2013 15:56:35 -0000

Vilken del av lagen tvingar dem att spara data som "underlag för marknads- och kundanalyser" eller riskhantering som innefattar kreditbedömning?

Re: Gör din WordPress ännu säkrare

nitro2k01 — Fri, 28 Sep 2012 17:03:51 -0000

Den artikeln är ju tagen direkt härifrån: http://nerijuso.lt/protect-... (Samma kod verkar finnas publicerad över hela internetz, så det där är säkert inte originalkällan.)
Det är inte så illa i sig, men en del av reglerna är överflödiga och/eller byggda på dålig förståelse för hur .htaccess funkar. Detta inlägg borde i min mening inte ha publicerats i nuvarande form.

Re: 7 Internet Words You’ve Been Mispronouncing Like “GIF”

nitro2k01 — Tue, 08 May 2012 10:19:40 -0000

I like to proclaim that unless something is the name of a detergent (such as Jif (GIF) or Ajax) it's not Internet terminology.

Re: The "catch" with try...catch

nitro2k01 — Thu, 10 Nov 2011 21:33:28 -0000

Is there any form of standard that actually describes the "right" way? This is ugly, but is there something that you can slap in IE's face and say that it's actually wrong?

Re: The Pirate Bay Adds Domain to Bypass Court Order

nitro2k01 — Wed, 05 Oct 2011 22:34:02 -0000

Over here in Sweden, there's a list of child porn sites that most ISPs block. Most of these sites would not be considered cp by Swedish law (there are people who have actually investigated this) but in 2008 TPB was added to this list, of course on false grounds.

Re: Ipad 2 Review! Möt mannen bakom Youtubehiten: Eskild Fors!

nitro2k01 — Wed, 09 Mar 2011 02:24:16 -0000

Cool shit! After Effects är något man borde lära sig...

Re: http://tinycartridge.com/post/3407878932

nitro2k01 — Wed, 23 Feb 2011 09:38:04 -0000

"Play the super cool story", it says. Am I the only one who thinks "super cool story bro"?

Re: Varning! Webmail-bedragare!

nitro2k01 — Thu, 17 Feb 2011 05:50:45 -0000

Jag undrar snarare vad det är för mähän som går på den här typen av automatöversatt svenska. Spääämarna borde ju logiskt sett tjäna på att investera max ett par tusen på att få skiten bättre översatt. Men, näe...

Re: Google Starts Censoring BitTorrent, RapidShare and More

nitro2k01 — Sun, 06 Feb 2011 08:49:15 -0000

Now here's a funny thing. While megaupload is removed from the auto-complete, MegaVideo (MegaUpload's video service) is still there.

Re: Driftsstörningen 2010-12-22

nitro2k01 — Fri, 24 Dec 2010 14:48:47 -0000

Två avbrott på kort tid samt att det tar lång tid att flytta alla till 2.0 tär ju lite på förtroendet. Om jag hade drivit någon form av affärskritisk verksamhet hade jag nog flyttat vid det här laget. Jo, det fanns vettiga förklaringar till båda tillfällena, och jo, även den bäste kan göra misstag, men det är inte utan att man funderar på när det kommer hända nästa gång.

Sen det där med 2.0. Det är självklart rätt tänkt att man inte ska hasta fram något sådant, men det tar ju tid. Jag brukar säga till mig själv på skämta att om jag inte har blivit flyttad vid nästa fakturering (oktober 2011) så flyttar jag. Snälla, låt mig inte uppleva den händelsen...

Re: http://lmm.yodar.us/post/737474857

nitro2k01 — Sat, 16 Oct 2010 23:34:55 -0000

This is actually correct. "Men" is the plural of "man" and "'s" is a correct genitive marker.

Re: Top 10 Myths About Domain Names

nitro2k01 — Fri, 15 Oct 2010 14:34:30 -0000

The scenario that I've seen a number of times is that a private person (note: not a company) has a private site on an address and for some reason neglects the site so he loses his domain name, thinking he can just register it again if he needs it. After the domain is released, it obviously gets squatted within microseconds by a hoarder, who gets to display the generic template ad page that we all (?) know and hate. The domain is also put on the market for anywhere between $100-$1000. The person, after some time decides he wants to relaunch his site, but obviously doesn't want to pay a high price to get the domain back, especially since his site isn't commercial and he doesn't make any money off of it.

Most domains are never sold, but held indefinitely by the hoarder. Of course this business model still makes sense for the hoarder, since the revenue from the few domains that he does manage to sell, combined with ad/SEO revenue, covers the maintenance costs for keeping his other domains by far.

Is the hoarder allowed to this? Of course. Is the neglecting person at fault for losing his domain? Of course. But that doesn't change the fact that large-scale domain hoarding is unethical, or in plain language, a shitty thing to do. Something isn't ethical just because it is legal and technically possible to do.

Re: Top 10 Myths About Domain Names

nitro2k01 — Fri, 15 Oct 2010 12:32:49 -0000

My point is that it's an annoying practice.

Re: Top 10 Myths About Domain Names

nitro2k01 — Fri, 15 Oct 2010 07:42:05 -0000

As for point 8... The REALLY annoying squatters are the ones buying expired domains and basically holding them hostage. It's almost impossible to let a domain expire (by accident or deliberately) and not have it squatted by one of those people. If I ever see the picture of that smiling girl on a campus with a backpack and the text "what you need, when you need it", where a site I used to visit once was, I'll kill someone.

Re: lmm

nitro2k01 — Thu, 19 Nov 2009 22:43:18 -0000

What about this one then?

"Simulating the true styles and making carefully !
Many colours a lot, selected freely by you !"

Heard on teh intarwebz.

Re: lmm

nitro2k01 — Sun, 25 Oct 2009 11:04:24 -0000

"Go and lurk in the darkness and we'll scream at you"?

Re: lmm

nitro2k01 — Sun, 25 Oct 2009 11:03:30 -0000

Look Around You is great stuff, but I much prefer the first season, where they did a parody of science education videos.

Re: lmm

nitro2k01 — Wed, 02 Sep 2009 04:24:04 -0000

Is this, ehm, what you're led to believe it is?

Re: lmm

nitro2k01 — Wed, 02 Sep 2009 04:21:25 -0000

I love those "Please do it in" signs.