Posts
4417
Following
315
Followers
471
Linux kernel hacker and maintainer etc.

OpenPGP: 3AB05486C7752FE1
Edited 11 months ago

The PsychoPAC put up a new billboard outside Mar-a-Lago, and it is beautiful.

Thanks @gtconway3.

1
7
0
@ljs @oleksandr ill read your bible next time and call it a day 🙂
0
0
1

viznut | Ville-Matias Heikkilä

Edited 11 months ago

I ended up first in the oldskool demo competition of this year's Assembly. This wasn't self-evident, as there were several high-quality entries in the compo.

Technically, it's a one-file C-64 demo mostly consisting of character-mode animation made with the same tools I've used for a few VIC-20 demos. As for the social/poltical message, I also feel I'm repeating things I've said earlier, but perhaps I'm somewhat clearer this time.

"Transcend the Game" by PWP (which turned 30 years old a couple of weeks ago)
csdb.dk/release/?id=244634
youtube.com/watch?v=9HqOD1QUP3…
#demoscene

3
1
1
@viznut Congrats and well deserved! Cool demo.
0
0
1
There is something endearing in that many people still post their computer specs and highlights of their on the KVR Forum as part of their signature :-------)
0
0
0
@oleksandr @ljs For my defense, at the time when SGX was started I did not have a reference, and thus it was based on nothing :-) So it was a huge fight with mm to get it do something it was never designed for...
1
0
1
Edited 11 months ago
@katzenmann The main sponsors #Microsoft and #Google for Rust based kernel features have only the interest of closing ecosystems wherever they can. That power can be only mitigated by having defense in depth. Neither company has great history with Linux - except when you ask from their marketing people.
0
0
0
None of those help with governance. I don't think it is unstable and I neither care where it is hosted.
1
0
0
@ljs @oleksandr sgx took me over 40 revisions ;-)
1
0
0
@ssundell @bestest @anuko @iju Se on ollut halvin vaihtoehto kaljatilauksissa, ja paras. DHL on ollut taas kallein ja huonoin.
0
0
1
@pinkforest very nice :-)
0
0
0
I think AI might be death of social engineering at least because its odds/risks ratio is worse.
0
0
0
Edited 11 months ago
One idea for fully legal #ransomware alike software that could exploit #AI code generation:

1. Do the initial research where the code is scavenged for the ML consumption.
2. Do the initial research on how generate meaningless code with the property that it has a signature that could be detected.
3. Create automatically and in volumes malicious and meaningful Git repositories or fake profiles that contain seemingly legit projects but actually are not.
4. License projects with GPL3.
5. Create a framework for scanning binaries from which you can detect your signature.
6. Sue all the parties with conflict with the licensing.

Some steps have open holes but I think this pattern could potentially made to work in some form.

The future of #malware lies strongly in conning the AI. Why bother with social engineering (e.g. calling to the company) and risking yourself when you can just con the AI through the Internet. AI does not only make producing bad quality code easier - it also makes hacking systems factors easier.

Another angle would be to con AI to pick a pattern that leaves a backdoor to the implementation. People who rely on Copilot are not that likely to review the generated code, I'd guess.

#infosec
1
0
0

Glad to finally have compression enabled for 's linux-firmware package exactly half a year (minus a few hours) after originally opening the merge request during our post-Fosdem hackathon!

If you're running Alpine (or postmarketOS) and have all linux-firmware packages installed, the on-disk space will go down from around a gigabyte to around half a gigabyte or so, which I think is pretty decent.

1
6
2
LOL, apparently toml is in the title already
0
0
0
I've used a tool call yq for some time. It is like jq but parses also the document types that I have actually use for such as CSV, XML and yaml (not sure about toml):

https://github.com/mikefarah/yq

I've never used jq because I haven't parsed a single JSON file in my lifetime so cannot really compared to that.
1
0
0
Wondering how #Bevy implements the parameter discovery for e.g. add_systems.

#rust #rustlang
2
0
1
The first job interview was today of many that I'm going to have after the holidays. It included also live coding but since I did not expect it I passed it ;-)

If I had knew it, I would probably have failed. I'm really bad dealing with that type of stress even tho can stand a lot of pressure in IRL situatation.
0
0
0
@argv_minus_one Especially AI stealing code has raised the importance of copyleft licenses and we should rely more heavily in them in core components of Internet. Then you have a chance to sue a company if it contains provably GPL'd code (AI putting it there does not matter). Great example of governance.
0
0
0
Show older