[ / / / / / / / / / ] [ dir / asmr / civ / cute / ita / liberty / say / tk / v9k ] [Options]

ygolonhceT - /hcet /
Catalog

Posting mode: Reply [Return] [Go to bottom]

Name
Email
Subject New Reply

Comment *

File Choose File No file selected

* = required field [ Show post options & limits]
Confused? See the FAQ.

File: 8c68c500190483c .jpg (9.88 KB, 640x345, 128:69, bb4403dbaeed7c5b21e85575f3.jpg)

CIA has compromised Linux Anonymous 03/07/17 (Tue) 19:10:20 No.720743

>The CIA has developed automated multi-platform malware attack and control systems covering Windows, Mac OS X, Solaris, Linux and more, such as
EDB's "HIVE" and the related "Cutthroat" and "Swindle" tools, which are described in the examples section below.
what do we do now?
looks live even linux is kill
Anonymous 03/07/17 (Tue) 19:19:27 No.720753
>>720743
You could always just kill yourself.
Or you can accept that people are always watching, will always be watching, and have always been watching. The most you can do is to encrypt
files and use VPNs and Proxychains. Alternatively, just disconnect from the internet. But even that won't work because data can be ex-filtrated
from your hdd LED.

Anonymous 03/07/17 (Tue) 19:32:47 No.720761

>>720753
Fuck off CIA nigger agent

Anonymous 03/07/17 (Tue) 20:51:11 No.720856

When we seL4?

Anonymous 03/07/17 (Tue) 21:05:49 No.720868

The reason was never to be secure against nation states, the reason people care about security is to keep random hacker kids/groups out. The
CIA/FBI/NSA have gorillions of dollars to spend on fucking you over.
Same reason you buy a gun to stop Jamal from robbing and murdering you. You just can't stop the CIA from sniping you from a mile away or
blowing your car up, that's not the point. So why try to protect against it?

Anonymous 03/07/17 (Tue) 21:14:21 No.720877

Well you can protect yourself from the state. You mostly just have to avoid doing whatever the normies are doing. Then they can't just target you
easily and have to eactually expend a lot of effort, and it probably won't be worth their trouble.

converted by Web2PDFConvert.com
 Anonymous 03/07/17 (Tue) 21:32:28 No.720890
>>720743
>what do we do now?
Patch the vulnerabilities?

Anonymous 03/07/17 (Tue) 21:41:50 No.720894

>>720743
We need information on how the attack is executed, which distros it targets(or if it literally targets the bloated beyond examinable kernel) and then
figure out counter measures.
Fucking CIA niggers are at it again

Anonymous 03/07/17 (Tue) 21:57:14 No.720903

Welp time for BSD
Any BSD variations worth the try?

Anonymous 03/07/17 (Tue) 21:59:59 No.720906

>>720903
Maybe TrueOS, but they are on the list anyway.

Anonymous 03/07/17 (Tue) 22:00:14 No.720907

>>720903
Considering OS X is based on the BSD kernel I doubt they would have much difficulty breaking into BSD itself.

Anonymous 03/07/17 (Tue) 22:06:56 No.720915

>>720903
>>720906
>>720907
You know what needs to be done. We need to gather at the templeOS and pray for help. Maybe based terry will hear our prayers

Uriel was right! Anonymous 03/07/17 (Tue) 22:09:43 No.720917

File: abd8bc148717fb5 .jpg (7 KB, 190x222, 95:111, Plan9bunnysmblack.jpg)

Maybe it's time to give it another shot.

Anonymous 03/07/17 (Tue) 22:14:26 No.720919

>>720743
>>720903
>Welp time for BSD
>what do we do now?
Install a distro without binary blobs the attacks are always focused on non-free binaries and hardware backdoors.

Anonymous 03/07/17 (Tue) 22:24:14 No.720931

>>720743
>holy shit guys, operating system vulnerabilities and computer viruses exist, and governments use them
How about we focus on the areas of this leak that are actually something new like the CIA experimenting with hacking vehicles, potentially as a
method of covertly assassinating people.

Anonymous 03/07/17 (Tue) 22:30:26 No.720936

We can't eternally keep playing this cat and mouse game of patching bugs that get found. We need to change the game somehow, to break out of
this cycle that puts attackers at an advantage.
seL4 was mentioned, I think that might be a smart idea. More for the extreme minimality of the code than the proofs themselves. Imagine an OS
that could be audited. Small enough source code that you can actually look through it all by yourself.

converted by Web2PDFConvert.com
 Anonymous 03/07/17 (Tue) 22:30:44 No.720937
>>720931
What is there to even know? They have compromised proprietary hardware, firmware and software in modern vehicles to the point where they can
remotely access your car and kill you.
All that's left is who have they done this to

Anonymous 03/07/17 (Tue) 22:31:18 No.720939

>>720931
> actually something new like the CIA experimenting with hacking vehicles, potentially as a method of covertly assassinating people.
The people that think this is "new" are the same retards that make fun of alex jones infowars

Anonymous 03/07/17 (Tue) 22:32:11 No.720940

>>720939
You mean Alex "Cia nigger" jones. Yeah he's a credible (((source))) I'm sure.

Anonymous 03/07/17 (Tue) 22:33:23 No.720941

>>720940
sheer stupidity. he disseminated cia car hacked years ago.

Anonymous 03/07/17 (Tue) 22:58:09 No.720964

>>720939
While it has been demonstrated to be possible, government agencies actually doing it is new.

Anonymous 03/07/17 (Tue) 23:02:42 No.720969

>>720939
>alex jones
You have to say that he his pretty fun and that he would be more credible if he wasn't going full retard all the time.

Makise Kurisu 03/07/17 (Tue) 23:06:26 No.720974

>>720868
Spoken like a true cuck
>>720877
/this
Security thru obscurity
>>720936
Hear hear, this anon is correct

Anonymous 03/07/17 (Tue) 23:13:11 No.720985

>>720936
>Small enough source code that you can actually look through it all by yourself.
DELETE THIS IF YOU DO THAT YOUR COMPUTER GETS A VIRUS AND YOUR DOG WILL DIE ON CHRISTMAS
AAAAAAAAAA
This is the ultimate pill against sabotage by "accidental" bugs, but unfortunately, you'd have to nuke a massive minority of current programmers
and maybe even users to make it work. Just look at where Linux is going with its happy band of retards applauding bloated turdware in the name
of Linux Desktop 2013 2014 2015 2016 2017.

retard 03/07/17 (Tue) 23:14:16 No.720988

>>720985
>massive minority
Massive MAJORITY, obviously.

Anonymous 03/07/17 (Tue) 23:16:40 No.720992

File: d42ffe8d5749f45 .jpg (31.33 KB, 642x413, 642:413, 1488854987569.jpg)

Correct me if I'm wrong but wasn't the creator of ubuntu a CIAnigger ?

converted by Web2PDFConvert.com
 Makise Kurisu 03/07/17 (Tue) 23:18:23 No.720996
File: f7cead90e20c196 .jpg (62.1 KB, 564x798, 94:133, 0269b5911e33db203cb38575a6.jpg)

>>720992
Yes
Also, that image is degenerate.

Anonymous 03/07/17 (Tue) 23:18:26 No.720997

>>720936
No the answer is obvious. We need an OS built on a high level language. More can be done with less code. LispOS is the future. The code base
should be small enough to audit by a couple of people or less.

Anonymous 03/07/17 (Tue) 23:30:08 No.721007

>>720903
>security through obscurity
yeah until they know everybody worth tracking moved to BSD.
>>720919
THIS

Anonymous 03/07/17 (Tue) 23:31:02 No.721008

>>720753
>Or you can accept that people are always watching, will always be watching, and have always been watching.
These are the words of a coward

Anonymous 03/07/17 (Tue) 23:41:07 No.721022

>>720997
why not RustOS? Rust is the safest language and would make the safest os. it would be immune to cia niggers.

Anonymous 03/07/17 (Tue) 23:44:03 No.721026

>>720761
>>721008
Don't blame the messenger. If you want to fight a political battle, do it with the truth. Don't do it with half truths and memespeak.

Anonymous 03/07/17 (Tue) 23:49:29 No.721035

File: 157c6219e060cf9 .jpg (170.67 KB, 640x840, 16:21, 1484945758551.jpg)

>>720997
>>721022
>the future of computers is revisiting 80s home computers with modern hardware and running newer scripting languages in place of BASIC
The future can't possibly be this comfy!!~

Makise Kurisu 03/08/17 (Wed) 00:18:07 No.721088

>>721035
Running GNU/Linux on a SBC is extremely comfy.

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 00:20:27 No.721092
>>721022
Rust kernel and Scheme/Lisp userland. Boom.

Anonymous 03/08/17 (Wed) 01:12:00 No.721174

>>720868
>promoting half-assed security
>implying the only real hackers belong to intelligence agencies
What the fuck are you even doing on /tech/. That is some of the most retarded shit I have heard, generally spun by either intelligence shills or
incompetents.
>>720903
They're trying to penetrate all the major unix variants. If you really need to move to an obscure unix-like OS, go try minix3, but generally you need
to try to make your shit as secure as possible by reducing exploit vector surface area.

Anonymous 03/08/17 (Wed) 01:15:52 No.721178

>>721088
>comfy is synonymous with poorfag
lol no

Anonymous 03/08/17 (Wed) 01:20:26 No.721183

File: e639acb0c0ba13d .jpg (17.48 KB, 480x360, 4:3, 1477420261575.jpg)

>>720743
I'd just like to interject for a moment. What you're referring to as Linux, is in fact, GNU/Linux, or as I've recently taken to calling it, GNU plus Linux.
Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU
corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.
Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of
GNU which is widely used today is often called "Linux", and many of its users are not aware that it is basically the GNU system, developed by the
GNU Project.
There really is a Linux, and these people are using it, but it is just a part of the system they use. Linux is the kernel: the program in the system
that allocates the machine's resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by
itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system:
the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called "Linux" distributions are really distributions of GNU/Linux.

Anonymous 03/08/17 (Wed) 01:21:12 No.721185

>>720919
>>721007
I have debian and just removed the non-free lines in my sources.list. did apt-get update but it isn't asking for anything to be removed. I am certain I
have some non-free blobs, such as nvidia proprietary though. I don't know what to do.
At any rate, maybe I should go back to nouveau

Anonymous 03/08/17 (Wed) 01:22:39 No.721187

>>721185
You just told your system to stop looking in the non-free repo for updates and new packages. You still need to remove non-free packages you
have left. vrms gives you a list.

Anonymous 03/08/17 (Wed) 01:23:22 No.721189

I'm more worried about an illegal Putin-backed leak of American government secrets to be honest...

Anonymous 03/08/17 (Wed) 01:24:11 No.721190

>>721187
Thanks. I'll have a look at vrms

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 01:53:31 No.721243
File: 3f149d86500fd2d .jpg (59.24 KB, 1011x630, File: 037fea328374c55 .gif (392.7 KB, 312x241, File: d041cea106dc536 .png (1.15 MB, 886x773,
337:210, 3f149d86500fd2dec2a11e09bb.jpg) 312:241, 8i7urc4i31r4n82eo.gif) 886:773, d041cea106dc536413168cdfef.png)

There war-ngs about systemd but did u leastned , no!

fuk u

Anonymous 03/08/17 (Wed) 02:26:06 No.721320

File: f3523d5003ea301 .jpg (4.59 KB, 142x165, 142:165, e2fbb30b9509295f197a6f3b29.jpg)

>>721187
>>721190
The kernel of debian is a bit of a conflict there.
You see even if you can use nouveau witch is free-software all the long.
It might let some binary blob be installed because some GPUs nowadays requires other small bit to have some specific functionalities like
decoding mp4 and other patented shit.
So you best choice is to go with the linux libre kernel.
The best solution is to reinstall everything imo.
Besides devuan is going to be 100% free like Trisquel.
It would be a blast tho.
Every sysadmin must be shiting their pants because of one blobs they had to use for X raid pci card.
I am being smug has fuck for those who didn't listened and thought "you're too paranoid"

Anonymous 03/08/17 (Wed) 02:27:52 No.721324

>>721320
Shit typo
>Besides devuan is going to be 100% free like Trisquel.
Besides debian there's devuan but I don't know if it's going to be 100% free like Trisquel.

Anonymous 03/08/17 (Wed) 03:03:10 No.721393

>>720856
When TempleOS is ported, and a proper network stack is bolted on.

Anonymous 03/08/17 (Wed) 03:22:25 No.721416

>>720903
OpenBSD is the most secure operating system in existence.
It is the only contemporary operating system for desktops and servers that is not listed in the lists of compromised OSes by the alphabet soup
agencies.

Anonymous 03/08/17 (Wed) 03:30:26 No.721427

>>720917
Only when self-programming AI become advanced enough, not enough developer manpower right now.

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 03:41:35 No.721447
File: 8c5733b67e61b30 .png (949.51 KB, 1000x669, 1000:669, Gno.png)

>>721183
Oh shut up.

Anonymous 03/08/17 (Wed) 03:47:52 No.721453

Just hide in plain sight. Playing like your some special agent: encrypting files, VPNs, TOR, cryptocurrency, just get you red-flagged. Oh and
stop doing illegal shit like stealing software, music, talking to terrorists, etc.

Anonymous 03/08/17 (Wed) 03:48:18 No.721455

File: 2a1debd3ed60b23 .gif (789.93 KB, 480x320, 3:2, 7db4c55d487e566d7a6d67ab28.gif)

>>720743
You will never escape us

Anonymous 03/08/17 (Wed) 03:50:04 No.721456

>>720903
Since FreeBSD is the most used I would avoid using it it sucks anyway and it's derivatives can't say anything about the others but TrueOS is just
the shittieness of FreeBSD with it's own shitty DE and assorted bloat bolted on, since that's what the alphabets are trying to crack. I know for a
fact that both Open and Net BSD support truly full disk encryption, instead of leaving a boot partition unencrypted like Linux. I haven't used
NetBSD so I can't attest to it's quality, but OpenBSD is a solid comfy/10 however it's package management is aneurysm-inducing.

Anonymous 03/08/17 (Wed) 03:53:24 No.721461

>>720936
The only thing that's fully operation now that's somewhat like that is Minix3, which is compatible with NetBSD software, but I heard from people on
the board that, if we discount networking, even Temple-OS has more features

Anonymous 03/08/17 (Wed) 04:06:40 No.721480

File: 8f9066a88ca0f9b .gif (1.94 MB, 371x331, 371:331, 1452986705236.gif)

>>720753
>>720868
>>721189
>>721453

Anonymous 03/08/17 (Wed) 04:24:04 No.721493

How secure is gentoo?

Anonymous 03/08/17 (Wed) 04:27:27 No.721499

>>721493
You should be okay if your kernel is 100% proprietary software free

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 04:30:10 No.721504
>>720743
>CIA has compromised Linux
ALL THIS MEANS IS THAT LINUX HAS UNPATCHED EXPLOITS.
Everyone knew this. Literally everything has unpatched exploits. That's still a far-cry from Windows, which is reporting everything you do
automatically to the CIA. And it's still a problem for whatever snowflake OS you choose, like BSD.

Anonymous 03/08/17 (Wed) 04:33:15 No.721505

>>721504
you do realize the mainline linux kernel ships with non-free blobs with deliberate backdoors right? they're never going to get 'patched'.

Anonymous 03/08/17 (Wed) 04:35:35 No.721507

>>721505
Use linux-libre in that case.
Or the hurd
It works now.

Anonymous 03/08/17 (Wed) 04:38:17 No.721509

If you want to run an openbsd workstation, here's a script to automate some useful tasks.
It sets your pkg.conf file, sets up encrypted dns, adds some useful packages, optionally does some other stuff. Very easy to modify to your own
use, also gives a good overview of how some basic openbsd config works, if you are new to it.
Don't run this on a pre-existing system as it will just overwrite various things.
http://walkran.com/wugs.txt

Anonymous 03/08/17 (Wed) 04:42:51 No.721514

File: 394b10ace6d862c .jpg (13.11 KB, 800x600, 4:3, NSA Smiley.jpg)

You don't get to bring freedoms.

Anonymous 03/08/17 (Wed) 04:45:49 No.721518

>>721514
They're not my freedoms.

Anonymous 03/08/17 (Wed) 04:48:59 No.721520

https://www.qubes-os.org/
qubes?

Anonymous 03/08/17 (Wed) 04:53:37 No.721524

>>721520
They still can use the hardware backdoor if you use a intel chip

Anonymous 03/08/17 (Wed) 04:55:46 No.721525

>>721524
>AMD it is then

Anonymous 03/08/17 (Wed) 04:55:55 No.721526

>>720743
I don't think you really understand how security works. Even OpenBSD has had security exploits.

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 05:00:45 No.721529
File: b866feeb2d80a08 .png (78.29 KB, 952x551, 952:551, macbook-pro-1.png)

>>721524
>all that legacy crap
>UEFI/BIOS
>chipsets
They still can use the hardware backdoor if you use x86* PC

Anonymous 03/08/17 (Wed) 05:02:09 No.721530

File: 10f43e85ccf0887 .png (3.35 MB, 3840x2160, 16:9, 10f43e85ccf08874d3cddd7050.png)

>>721525
>AMD
>Not backdoor'd

Anonymous 03/08/17 (Wed) 05:03:52 No.721531

>>721518
Why would I want them?

Anonymous 03/08/17 (Wed) 05:23:51 No.721551

>>720997
there is already a pretty good forthos out there
this is the way to go
http://www.forthos.org

Anonymous 03/08/17 (Wed) 05:26:07 No.721553

>>721453
Fewer than 10000 people visit this site. I'm sure every IP that touches this place is on some list. Information suggests that TPTB can
decrypt/intercept VPN and Tor traffic like you can unzip a file, so those are no protection either.

Anonymous 03/08/17 (Wed) 05:26:57 No.721554

>>720868
If it's not even an issue why shill against it?
Rhetorical question, no need to answer just chew shit and kill yourself.

Anonymous 03/08/17 (Wed) 05:30:14 No.721555

>>720907
>Considering OS X is based on the BSD kernel I doubt they would have much difficulty breaking into BSD itself.
OS X is based on the Mach kernel. Userland stuff however is largely BSD. It however still has targets for Solaris which is BSD.

Anonymous 03/08/17 (Wed) 05:33:33 No.721556

>>721555
>Solaris which is BSD
It's considerably more complicated than that.

Anonymous 03/08/17 (Wed) 05:37:54 No.721558

I am trying to discover how to determine if a system has been compromised by Hive.
If you are running a Linux system, please run the following command and report suspicious results:
>sudo find / -name *hive* | grep -vi archive
If you have multiple Linux systems, please run this test on all of them. A file named hived would be extremely suspicious. Other places to look
include /etc/rc*.d
Acquaint yourself with the guides for Hive:
https://wikileaks.org/ciav7p1/cms/files/UsersGuide.pdf
https://wikileaks.org/ciav7p1/cms/files/DevelopersGuide.pdf

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 05:41:27 No.721559
>>721524
they kind of have to know where to look though

Anonymous 03/08/17 (Wed) 05:50:07 No.721560

I just had a genius idea for uncircumventable security:
> (((Internet))) -----> Chinese-made router ----(in front of)---> U.S.-made router ----(in front of)---> Services
In this configuration, the outer firewall can be breached by the Chinese using their backdoors, but they wont be able to penetrate the U.S.-made
router. The U.S., would be able to penetrate the U.S. router, but because it is behind the Chinese router, they cannot access it.
Thoughts?

Anonymous 03/08/17 (Wed) 05:52:20 No.721562

>>721560
For a third layer of security, include a Russian-made router:
https://www.theregister.co.uk/2016/08/23/kasperskyos/

Anonymous 03/08/17 (Wed) 05:52:55 No.721563

>>721560
> U.S. made router
made me raff 7/10

Anonymous 03/08/17 (Wed) 05:54:42 No.721564

>>721563
Cisco are still made locally, aren't they?

Anonymous 03/08/17 (Wed) 05:58:13 No.721565

>>721564
sorry I'm just cynical, would be neat if true though.

Anonymous 03/08/17 (Wed) 06:51:59 No.721577

>>721564
Even if they are, they get intercepted during shipment and bugged.

Anonymous 03/08/17 (Wed) 08:31:46 No.721605

>>720856
SUSE Enterprise Linux 4?

Anonymous 03/08/17 (Wed) 08:44:28 No.721610

>>720743
But it's not. You didn't even read the file.

Anonymous 03/08/17 (Wed) 08:57:07 No.721615

File: 42d8c35a89e04dd .jpg (1.4 MB, 2448x2448, 1:1, IMG_20150406_140058.jpg)

>>721564
>Cisco are still made locally, aren't they?
No, whats odder still i've seen US made Nexus 3064 switches with labels with Chinese product labels on them, and Chinese made Nexus 3064s.

Anonymous 03/08/17 (Wed) 08:59:29 No.721616

>>721615
>Chinese made Nexus 3064s.
I mean to include the Chinese ones did not contain the same labels product labels in Chinese. That blue one in the upper right

converted by Web2PDFConvert.com
Anonymous 03/08/17 (Wed) 09:01:59 No.721618
>>721416
The vault 7 shit said hald was an attack vector.
OpenBSD certainly uses the HAL daemon.
I'm not saying that the version of hald in the latest OpenBSD is vulnerable, but it's possible.

Anonymous 03/08/17 (Wed) 09:10:57 No.721621

>>721562
>https://www.theregister.co.uk/2016/08/23/kasperskyos/
They're not real routers but rather layer 3 switches which generally have far simpler feature sets
https://eugene.kaspersky.com/2016/11/15/finally-our-own-os-oh-yes/
And even then the product is so laughably immature they cant even provide any specifications.

Anonymous 03/08/17 (Wed) 09:15:44 No.721624

>>721189
Too bad there's not a shred of evidence for that.

Anonymous 03/08/17 (Wed) 09:57:13 No.721634

>>721456
Why all this hate on FreeBSD. Iirc they work together with OpenBSD on lots of things.
The focus of FreeBSD looks more general purpose and more feature rich, while OpenBSD is security focus, but might have less features?
Going from linux to freebsd would still be a major upgrade right?

Anonymous 03/08/17 (Wed) 10:01:50 No.721638

>>721634
i don't think openbsd lacks any feature for desktop use and it has god-tier documentation, but it's really slow. especially firefox.
http://www.tedunangst.com/flak/post/firefox-vs-rthreads

Anonymous 03/08/17 (Wed) 10:10:03 No.721640

>BSD
>secure
Nice meme.
https://aboutthebsds.wordpress.com/2013/01/25/20/

Anonymous 03/08/17 (Wed) 10:16:13 No.721641

>>721509
># echo "Increasing volume level."
># echo "outputs.master=225,225" >> /etc/mixerctl.conf
why?
>pkg_add -I firefox-esr
use iridium/chromium
># Install Gnome
>pkg_add -I vlc
>vlc
>gnome
>pkg_add -I youtube-dl
don't use youtube-dl from the repo

doas pip install --upgrade youtube-dl

Anonymous 03/08/17 (Wed) 10:29:41 No.721646

>>721641
btw

#!/bin/ksh
# $HOME/bin/ksh/vol
# usage: vol num
mixerctl outputs.master=$1,$1

doesn't need root

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 10:51:44 No.721651
File: 10d7ddd48a78666 .png (138.21 KB, 1280x1024, 5:4, pocketputin.png)

>>721558
>sudo find / -name *hive* | grep -vi archive
/usr/share/terminfo/b/beehive
/usr/share/terminfo/b/beehive3
/usr/share/terminfo/b/beehiveIIIm
/usr/share/terminfo/b/beehive4
but these are only files of ncurses

Anonymous 03/08/17 (Wed) 10:59:16 No.721652

>>721641
>>721558
>*hive*
doesn't this get expanded by the shell?
i don't think it's necessary

Anonymous 03/08/17 (Wed) 11:15:03 No.721656

Well.

Anonymous 03/08/17 (Wed) 11:16:54 No.721657

>>721640
https:// arstechnica.com/information-technology/2010/12/fbi-accused-of-planting-backdoor-in-openbsd-ipsec-stack/
thx for clearing up on this one. im searching for a reliable distro now that we know we need to harden up. what do you think of the qubes os
concept? any other suggestions for a productive & secure OS?

Anonymous 03/08/17 (Wed) 11:20:24 No.721659

>>721657
https://www.qubes-os.org/intro/
for anyone wondering

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 11:31:42 No.721666
>>721657
>accused
from Jason Wright (the one accused of putting the backdoor):

I will point out that Greg did not even work at NETSEC while the Subject: Allegations regarding OpenBSD IPSEC
Every urban lengend is made more real by the inclusion of real names,
dates, and times. Gregory Perry's email falls into this category. I
cannot fathom his motivation for writing such falsehood (delusions
of grandeur or a self-promotion attempt perhaps?)
I will state clearly that I did not add backdoors to the OpenBSD
operating system or the OpenBSD crypto framework (OCF). The code I
touched during that work relates mostly to device drivers to support
the framework. I don't believe I ever touched isakmpd or photurisd
(userland key management programs), and I rarely touched the ipsec
internals (cryptodev and cryptosoft, yes). However, I welcome an
audit of everything I committed to OpenBSD's tree.
I demand an apology from Greg Perry (cc'd) for this accusation. Do
not use my name to add credibility to your cloak and dagger fairy
tales.
I will point out that Greg did not even work at NETSEC while the OCF
development was going on. Before January of 2000 Greg had left NETSEC.
The timeline for my involvement with IPSec can be clearly demonstrated
by looking at the revision history of:
src/sys/dev/pci/hifn7751.c (Dec 15, 1999)
src/sys/crypto/cryptosoft.c (March 2000)
The real work on OCF did not begin in earnest until February 2000.
Theo, a bit of warning would have been nice (an hour even... especially
since you had the allegations on Dec 11, 2010 and did not post them
until Dec 14, 2010). The first notice I got was an email from a
friend at 6pm (MST) on Dec 14, 2010 with a link to the already posted
message.
So, keep my name out of the rumor mill. It is a baseless accusation
the reason for which I cannot understand.
--Jason L. Wright

Thread: https://marc.info/?t=129236639300001&r=5&w=2
After the audit: https://marc.info/?l=openbsd-tech&m=129296046123471&w=2
https://www.schneier.com/blog/archives/2010/12/did_the_fbi_pla.html

Anonymous 03/08/17 (Wed) 11:32:59 No.721668

File: 26f43a951bfa4d7 .png (15.76 KB, 500x250, 2:1, Oekaki.png)

>>721652
>doesn't this get expanded by the shell?
Only if there's something matching *hive* in the current directory
>i don't think it's necessary
Don't the files have *.so extension or something? -name hive will only find "hive". Though I haven't read the hive manual... do they really just put
their files on the disk like that? I'd assume they'd want to disguise it somehow.
>>721640
Is that supposed to be a parody?

Anonymous 03/08/17 (Wed) 11:35:32 No.721671

>>721668
> -name hive will only find "hive"
doesn't 'find -name' search for patterns? like grep?

Anonymous 03/08/17 (Wed) 11:39:33 No.721672

>>721671
no

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 11:54:52 No.721675
File: d3477e4dda9937c .png (57.32 KB, 794x921, 794:921, hiddenfiles.png)

not sure if pic it is related but it probably

is interesting OC for you
>>721666
thx

Anonymous 03/08/17 (Wed) 12:42:36 No.721687

>BSD
It's mentioned multiple times in vault 7.

Anonymous 03/08/17 (Wed) 12:54:02 No.721691

>>721687
There's no "BSD".
FreeBSD != OpenBSD != NetBSD
https://wikileaks.org/ciav7p1/cms/page_17072429.html
reddit thread:
https://www.reddit.com/r/openbsd/comments/5y3td8/only_result_of_searching_for_openbsd_in_the_vault/

Anonymous 03/08/17 (Wed) 12:55:59 No.721692

File: 3a0d61b709eaea0 .png (47.33 KB, 794x921, 794:921, forbidden.png)

who wants to guess where the tools are?

Anonymous 03/08/17 (Wed) 13:05:51 No.721696

File: 1d6617aab2195bd .png (120.61 KB, 1280x1024, 5:4, openbsd.png)

>>721691
>reddit thread:
>Only result of searching for "OpenBSD" in the Vault 7 Leak
what about no? pic related

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 13:06:52 No.721698
>>721514
story on pic?

Anonymous 03/08/17 (Wed) 13:10:12 No.721701

>>721696
>what about no? pic related
that's why i posted a link to that thread

Anonymous 03/08/17 (Wed) 13:10:21 No.721702

YEAR OF DESKTOP BSD

Anonymous 03/08/17 (Wed) 13:12:14 No.721703

File: 778b8d9c56dfe11 .png (25.77 KB, 959x460, 959:460, reddit.png)

>>721701
wrong image, here

Anonymous 03/08/17 (Wed) 13:19:19 No.721707

File: 8471140f18c70bc .png (172.67 KB, 1280x1024, 5:4, puffy.png)

>>721703
isnt puffy connected to qubes os i just read about? also this mentions openbsd as well.

Anonymous 03/08/17 (Wed) 13:25:25 No.721711

>>721659
"You are absolutely deluded, if not stupid, if you think that a worldwide collection of software engineers who can't write operating systems or
applications without security holes, can then turn around and suddenly write virtualization layers without security holes."
--theo

Anonymous 03/08/17 (Wed) 13:26:24 No.721713

>>721707
my bad, puffy was openbsd of course

Anonymous 03/08/17 (Wed) 13:29:47 No.721717

>>721711
one day two fags went inna woods. then a fucking bear appears. fag A puts on his running shoes.
B: u wont be faster than the bear.
A: but i might be faster than you.

Anonymous 03/08/17 (Wed) 13:41:10 No.721730

File: 9e2ac2095ff60c1 .png (8.72 KB, 660x180, 11:3, gay.png)

>>721717
:^)

Anonymous 03/08/17 (Wed) 14:13:08 No.721746

>>721525
Who are you quoting?

converted by Web2PDFConvert.com
Anonymous 03/08/17 (Wed) 14:18:03 No.721750
>>721746
u

Anonymous 03/08/17 (Wed) 14:19:43 No.721753

>>721641
Thank you for all the insight.
># echo "outputs.master=225,225" >> /etc/mixerctl.conf
My sound output is low on a particular machine, so I find it handy to have in there. I took it out though, it's not really appropriate for a general use
script.
>use iridium/chromium
Agreed.
>pkg_add -I vlc
>vlc
>gnome
I pulled gnome and vlc right out of it entirely. People can choose this bit on their own.
>don't use youtube-dl from the repo
That's a good suggestion. My next cut will do that.
Everything else is in though, or out, as the case may be.

Anonymous 03/08/17 (Wed) 14:33:50 No.721755

>>721753
other suggestions:
gnash
sxiv instead of feh (supports animated gifs)
mupdf/zathura
mplayer/mpv
pcmanfm

Anonymous 03/08/17 (Wed) 14:35:05 No.721756

Why are all openbsd packages outdated?

Anonymous 03/08/17 (Wed) 14:38:27 No.721759

>>721756
Because you are using -stable, updated every six months or so.

Anonymous 03/08/17 (Wed) 14:41:27 No.721762

>>721759
s/stable/release/g
https://www.openbsd.org/faq/faq5.html#Flavors

Anonymous 03/08/17 (Wed) 14:49:18 No.721766

>>721755
Agree. I don't know how I missed pcmanfm and a pdf reader. Updated version available at same spot:
http://walkran.com/wugs.txt

Anonymous 03/08/17 (Wed) 14:54:04 No.721770

>>721753
>>721641
>use iridium/chromium
>using anything chrome based
https://github.com/nylira/prism-break/issues/169

converted by Web2PDFConvert.com
 Anonymous 03/08/17 (Wed) 14:55:16 No.721771
File: 1236af8874b7f4e .png (5.64 MB, 2993x2197, 2993:2197, CIA Anon Vault 7 8Chan.png)

CIA WIKILEAKS VAULT 7 IMAGE FILES.pdf

CIA WIKILEAKS VAULT 7 IMAGE FILES.docx
https://archive.org/details/CIAWIKILEAKSVAULT7IMAGEFILES

Anonymous 03/08/17 (Wed) 15:03:37 No.721777

>>721770
Because there seems to be some question here, in the thread, and in my own "all browsers suck" experience, the WUGS script will not install a
browser by default, but will contain commented options for ff-esr and chromium. Pick your own poison.
Or, let's restore gopher to its former glory.

Anonymous 03/08/17 (Wed) 15:05:36 No.721778

>>721766
>chromium
Jesus fuck. you go through all that effort to install a debotnetted system and then install chromium. that's like buying a car solely for its saftey
features and then never putting on your seatbelt and always texting while driving.
>gnash
abandonware, doesn't even play anything relatively modern. Better to just not include it
I also think it would be better to set the dnscrypt to a openNIC server and auto configure unbound too

[Return] [Go to top] [Catalog]

[ / / / / / / / / / ] [ dir / asmr / civ / cute / ita / liberty / say / tk / v9k ]

- Tinyboard + vichan + infinity -

Tinyboard Copyright 2010-2014 Tinyboard Development Group
vichan Copyright 2012-2014 vichan-devel
infinity Copyright 2013-2017 N.T. Technology, Inc. based on sources from Fredrick Brennan's "Infinity Development Group"
All posts on 8chan are the responsibility of the individual poster and not the administration of 8chan, pursuant to 47 U.S.C. 230.
We have not been served any secret court orders and are not under any gag orders.
To make a DMCA request or report illegal content, please email dmca@8ch.net.

converted by Web2PDFConvert.com