Notices by Matthew Garrett (mjg59@nondeterministic.computer), page 3

@Suiseiseki Emacs doesn't integrate with lldb because it's under a permissive license

"We can't allow users to make use of non-free software, because they might think it's better and that would defeat the aims of free software" is *not* a flex

Especially in this case, where it's not even non-free software, merely software under a license that allows non-free derivatives asdfjjkadfsadf

https://righteousit.com/2024/07/24/hiding-linux-processes-with-bind-mounts/ is beautiful and obvious and is someone now going to rewrite an eBPF-based version of ps

80s UNIX was just a psyop to encourage people to adopt autotools and fuck up the rest of history

"Linux would have prevented this!" literally true because my former colleague KP Singh wrote a kernel security module that lets EDR implementations load ebpf into the kernel to monitor and act on security hooks and Crowdstrike now uses that rather than requiring its own kernel module that would otherwise absolutely have allowed this to happen, so everyone please say thank you to him

It's been the sort of day where I discover that I have a surprisingly useful ability to intuit fields in headers that are probably uuids and figure out what this structure is as a result

Did you know that you can impress people by just pasting some bytes into github search and then saying "Ah yes that's an EFI-spec RSA2048-SHA256 signature" (you do not need to do the github bit in front of them)

Anyway simply mechanically copying potentially interesting looking sequences of bytes into search engines is an incredibly underrated part of reverse engineering work

Secretly funding a "Memory safety is woke" campaign to ensure that just the worst fucking people keep getting hacked over and over again

Occasionally I re-read some website full of technical stories that I originally read 25 years ago and thought "Wow I wish my life was like that" and realise that actually my life now *is* like that and I now understand the psychic damage associated with it

Website: "And here's how I diagnosed this bizarre bug"
Me: Ha wow that's kind of like the time I figured out how Apple entirely broke PKCS#11 for P-256 keys wait fuck FUCK

@GossiTheDog We wrote our own and it's lovely but it'd be more lovely if more of our infrastructure was internal

Someone asked "What are the best practices for real world implementations of Beyondcorp" and it's depressing to realise that the actual answer is that it's literally impossible unless you're Google scale

As phone storage grows faster than wifi speed increases, the time taken to transfer Signal history to a new phone will tend towards infinity

How is the documentation around hardware-backed key management on Android *so* bad

@ryanc yeah you need an LTE base station but it turns out that Helium made these cheap and easily available

On the off-chance anyone was especially invested in our plumbing travails last year, I'm sure you'll be pleased to know that everything worked on the first attempt this time round - the couplers we used to connect the intake pipes made it easy to disconnect stuff over winter and remain leakless now stuff is hooked up again, the pump had not exploded from freezing, and we apparently successfully emptied all the plumbing this time because there are no burst pipes

The pump monitoring stuff I set up (basically a z-wave switch that reports current draw to Home Assistant) seems to work perfectly! When operating correctly the pump draws current in a relatively narrow band, so I have an automation to turn it off if the draw is outside the expected range (which might indicate that all the water has fallen out), and also gives an indication of whether there's a leak anywhere (if the pump is turning on without any water being used, that's a bad sign)

This year we're trying to reconstruct the rather more straightforward solution of a spring-fed cistern, but that's on the opposite side of a river and we need to get a pipe across the ravine (we share the water rights with three other cabins - all the infrastructure on our side of the river is fine, the stuff on the other side burned down in the Caldor fire back in 2021, so we need a new cistern and pipe and then just plug that into the stuff on this side and suddenly everyone has water)